The controller, as defined by the General Data Protection Regulation and other national data protection laws of the Member States and other data protection regulations, is:
AUMAAssociation of the German Trade Fair Industry Littenstrasse 9, 10179 BerlinPhone +49 (0) 30 email@example.com/
The controller’s data protection officer is: Silvia Bauermeister (solicitor) Phone +49 (0) 30 24000-103 firstname.lastname@example.org
Insofar as we obtain the data subject’s consent for processing personal data, Article 6 Para. 1(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis. In processing personal data necessary for the performance of a contract to which the data subject is the contractual party, Article 6 Para. 1(b) of the GDPR serves as legal basis. This also applies to processing necessary for executing pre-contractual measures.
If the processing of personal data is necessary to fulfil a legal obligation our company is subject to, Article 6 Para. 1(c) of the GDPR serves as the legal basis.
Where vital interests of the data subject or of another natural person make processing personal data necessary, Article 6 Para. 1(d) of the GDPR serves as the legal basis. If the processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, and the interests or fundamental rights and freedoms of the data subject do not override the former interest, Article 6 Para. 1(f) of the GDPR serves as legal basis for the processing.
Whenever this website is visited our system automatically collects data and information about the visiting computer’s system.
This process involves the collection of the following data:
The data are saved in our system’s log files. These data are not stored together with other personal data of the user.
The temporary storage of the IP address by the system is necessary in order to facilitate delivery of the website to the user’s computer. The user’s IP address must therefore be stored for the duration of the visit.
This is stored in log files to ensure the website’s functionality. In addition, we use the data to ensure the security of our IT systems.
Pursuant to Article 6 Para. 1(f) of the GDPR these aims also constitute our legitimate interest in the data processing.
The data are erased as soon as they are no longer required for the purpose for which they were collected. This happens when data collected for the purpose of providing the website are erased at the end of each visit.
The log files are disassociated after seven days so that they can no longer be allocated to the visiting client.
The collection of the data for providing the website and storing the data in log files is absolutely essential for the operation of the website. The user therefore has no option to object.
The data stored and transmitted in the cookies include: Language settings, item in a shopping cart, book/reading list.
The user data collected by technically necessary cookies are not used to create user profiles.
The session cookies are automatically deleted at the end of a visit.
The newsletter subscription can be cancelled at any time by the user concerned. Every email with which the newsletter is sent will contain a corresponding link for this purpose.
This also allows revocation of consent for storage of the personal data collected during the registration process.
We can be contacted electronically on our website via an order form in the Publications and Trade Fair Library area. If the user makes use of this option, the data entered into the order form are sent to us and stored.
Alternatively, we can be contacted via the email addresses provided. In this case, the user’s personal data sent with the email are stored.
The data are not shared with third parties in this process. The data are used exclusively for processing the conversation.
The legal basis for processing the data transmitted when using order forms is Article 6 Para. 1(b) of the GDPR.
The legal basis for processing the data transmitted when sending an email is Article 6 Para. 1(f) of the GDPR. If the email communication is for the purpose of entering into a contract, the additional legal basis for processing is Article 6 Para. 1(b) of the GDPR.
The user may at any time revoke his or her consent to the processing of his or her personal data. If the user contacts us via email, he or she can object to the storage of his or her personal data at any time. In this case, the conversation cannot be continued.
All personal data stored during the communication are erased in this case.
More information on data protection with etracker can be found
We use the open source software tool Matomo (formerly PIWIK) on auma.blog.de to analyse our users’ surfing habits. The software places a cookie on the user’s computer (see above for cookies). When individual pages of our website are accessed, the following data are stored:
The software only runs on the servers of our website. Users’ personal data is only stored there. The data will not be disclosed to third parties.
At auma.de and blog.auma.de we use buttons to social media platforms such as Twitter, Facebook, Xing and LinkedIn. These are simple links to AUMA's presence within the respective platform or links that allow the user to share AUMA pages on the social media platform. No plugins are used, so that no data is automatically transmitted to the platform operators when the AUMA pages containing the buttons are visited.
Furthermore, we use widgets from Walls.io on auma.de. When calling up the respective AUMA websites, IP address and cookie information are transmitted to Walls.io. Walls.io is operated by Walls.io GmbH in Vienna, Austria.
When your personal data is processed, you are the data subject as defined by the GDPR, and you have the following rights in relation to the controller:
You may demand from the controller confirmation as to whether personal data relating to you is processed by us. If such processing takes place, you may demand the following information from the controller:
You have the right to demand information concerning whether your personal data is transferred to a third country or an international organisation. In this connection you may demand to be informed about suitable guarantees pursuant to Article 46 of the GDPR in connection with the transfer.
Under the following conditions you may demand restriction of processing of personal data relating to you:
If processing of the personal data relating to you has been restricted, this data may – apart from storage – be processed only with your consent or for assertion, exercise or defence of legal claims or for the protection of rights of another natural person or legal entity or for reasons of an important public interest of the European Union or of a Member State.
If processing has been restricted in accordance with the above conditions, you will be informed by the controller before the restrictions are lifted.
a) Duty of erasure
You may demand from the controller that personal data relating to you be erased immediately, whereupon the controller is required to erase these data without undue delay insofar as one of the following reasons applies:
b) Information to third parties
Where the controller has made your personal data public and is obliged pursuant to Article 17 Para. 1 of the GDPR to erase the personal data, the controller must take reasonable steps, including technical measures, taking into account the available technology and the cost of implementation, to inform controllers which are processing the personal data that you as the data subject have requested erasure by such controllers of any links to, or copy or replication of, these personal data.
The right to erasure does not exist insofar as the processing is necessary
If you have asserted the right to rectification, erasure or restriction of processing in relation to the controller, the latter is required to notify all recipients, to whom the personal data relating to you have been disclosed, about this rectification or erasure of data or restriction of processing unless it proves to be impossible or entails disproportionate effort.
You have the right in relation to the controller to be informed about these recipients.
You have the right to receive the personal data relating to you, which you have provided to the controller, in a structured, commonly used and machine-readable format. You also have the right to transfer these data to another controller, without hindrance by the controller to whom you have provided the personal data, insofar as
When exercising this right you also have the right to arrange, where this is technically feasible, to have the personal data relating to you transmitted directly from one controller to another controller. Rights and freedoms of other persons must not be affected by this.
The right to data portability does not apply to processing of personal data required to carry out a task in the public interest or in the exercise of official authority vested in the controller.
You have the right, for reasons arising from your particular situation, to lodge an objection at any time to processing of personal data relating to you which takes place on the basis of Article 6 Para. 1(e) or (f) of the GDPR; this also applies to profiling based on these provisions.
The controller will no longer process the personal data relating to you unless he can prove compelling reasons for the processing that warrant protection that outweigh your interests, rights and freedoms or the processing serves the purpose of asserting, exercising or defending legal claims.
If the personal data relating to you are processed for the purpose of direct advertising, you have the right at any time to lodge an objection against the processing of the personal data relating to you for the purpose of such advertising; this also applies to profiling insofar as it is directly connected with such direct advertising.
If you object to processing for the purposes of direct advertising, the personal data relating to you will no longer be used for these purposes.
You have the option in connection with the use of services of the information society – notwithstanding Directive 2002/58/EC – to exercise your right of objection by means of automated processes in which technical specifications are used.
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or the place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.
The supervisory authority with which the complaint has been lodged will inform the complainant about the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Article 78 of the GDPR.
We only use technically necessary cookies on our website.
Information on data protection at AUMA can be found here.