Data privacy policy of Wirtschaftsgemeinschaft Zoologischer Fachbetriebe GmbH (WZF)

Thank you for visiting our website and for your interest in our company. We are very serious about protecting your personal data. We process your data in compliance with the laws and regulations applicable to the protection of personal data, particularly including the EU General Data Protection Regulation (EU GDPR) and the country-specific implementing laws that apply to us. In this data privacy policy, we provide you with comprehensive information about how WZF GmbH processes your personal data and what rights you have in this respect.

Personal data means information that makes it possible to identify a natural person, particularly including name, date of birth, address, telephone number, e-mail address and IP address.

Anonymous data means data from which no one can establish a personal connection to the user.

1. Controller and Data Protection Officer

The controller as defined in the General Data Protection Regulation and other national data protection laws of the EU member states and other data protection regulations is:
Wirtschaftsgemeinschaft Zoologischer Fachbetriebe GmbH (WZF)
Mainzer Str. 10
65185 Wiesbaden
Germany
T +49 61 14 47 55 30
E-Mail: info@zzf.de
Website: www.zzf.de

Contact information of the Data Protection Officer: datenschutz@zzf.de

2. Your rights as a data subject

First, we would like to inform you of your rights as a data subject. These rights are codified in Art. 15 – 22 EU-GDPR. They are:

• the right of access (Art. 15 EU-GDPR),
• the right to erasure (Art. 17 EU-GDPR),
• the right to rectification (Art. 16 EU-GDPR),
• the right to data portability (Art. 20 EU-GDPR),
• the right to restriction of data processing (Art. 18 EU-GDPR),
• the right to object to data processing (Art. 21 EU-GDPR).

To assert these rights, please contact: datenschutz@zzf.de. Any questions about data processing at our company should be directed to the same e-mail address. You also have the right to lodge a complaint with the supervisory authority for data protection.

3. Rights of objection

Please note the following with respect to the rights of objection:

When we process your personal data for purposes of direct advertising, you have the right to object to such data processing at any time, without stating reasons. The same applies to profiling, to the extent that it is related to direct advertising.

When you object to processing for purposes of direct advertising, we will no longer process your personal data for such purposes. You can notify us of your objection free of charge and with no particular requirements of form, preferably at: datenschutz@zzf.de.

When we process your data for the sake of legitimate interests, you can object to that processing at any time for reasons having to do with your particular situation; the same applies to any profiling on the basis of these provisions.

We will no longer process your personal data unless we can demonstrate compelling, legitimate grounds for the processing that override your interests, rights and freedoms, or when the processing serves for the establishment, exercise or defence of legal claims.

4. Purposes and legal grounds of data processing

In processing your personal data, we comply with the EU-GDPR and all other applicable provisions of data protection law. The legal basis for data processing is particularly set out in Art. 6 of the EU-GDPR.

We use your data to initiate business, fulfil contractual and statutory obligations, perform on contracts, to protect our property, offer products and services and strengthen customer relationships, including with analyses for marketing and direct advertising purposes. This particularly pertains to conducting trade fairs, exhibitions, conferences and similar events and to operating the Nuremberg Exhibition Center. Specifically, we use data for the following purposes, although this list is not exhaustive:

• Processing orders and payments that we place and receive
• Application as exhibitor
• Registration as visitor / Purchase of tickets
• Voucher redemptions: Vouchers can be redeemed online and an e-ticket can be printed out. That will save you waiting times at the site.
• Registering future tickets “at a click”: For some trade fairs attended primarily by industry professionals, information for prior authentication is sent by e-mail or letter (registration as an industry professional), to simplify repeat ticket purchases.
• Delivering, paying for, and online publication of trade fair directories and catalogues (e.g., exhibitor and product database)
• Verifying your status as an industry professional (industry professional registration)
• Administrative personalisation of identification cards: exhibitor IDs, setup and tear-down IDs, tickets
• Booking and management of time slots via the trade fair logistics system
• Planning your trade fair visit with announcements and targeted professional information sent by e-mail and conventional mail
• Ensuring trouble-free trade fair attendance for exhibitors by providing targeted information about various services
• Subscribing to newsletters
• Voluntary participation in surveys for market and opinion research
• Verifying qualifications for accreditation as a media representative or blogger
• Analysis of our website usage for performance, user-friendliness and offer improvement and also for marketing purposes.

We also process your personal data to fulfill legal obligations, such as regulatory requirements under commercial and tax law, retention obligations or the comparison of your data with so-called sanction lists in order to comply with anti-terrorism legislation (e.g. Regulation (EC) 2580/2001). In this case, the legal basis for the processing is the respective legal regulations in conjunction with Art. 6 para. 1 letter c EU-GDPR.

In addition, for security reasons, registration is required before each visit or entry to the exhibition grounds in order to determine who is on the exhibition grounds. Your contact details are therefore collected when you register. We process this data on the basis of Art. 6 para. 1 letter f EU-GDPR to protect the legitimate interests of WZF GmbH, in particular to protect property and to prevent and investigate criminal offenses. The principle of data economy and data avoidance is observed here, as only the data required for registration is marked with an asterisk (*) as a mandatory field. The data will not be passed on to third parties. The data will be deleted as soon as the described purpose no longer applies.

On our behalf and as the operator of the websites, Google will use various information to evaluate your pseudonymous use of the website and to compile reports on website activity. The reports provided by Google Analytics are used to analyze the performance of our website and the success of our marketing campaigns.

Your consent is also equivalent to a statutory permission under the German data protection laws. In asking for your consent, we will inform you about the purposes for which your data will be processed and your right to revoke your consent. If your consent also applies to processing special categories of personal data, we will expressly point this out in the consent declaration.

Special categories of personal data within the meaning of Art. 9(1) of the EU GDPR will be processed only when required by law and when there is no reason to believe that you have an overriding interest in preventing that processing.

5. Transfer to third parties

We will transfer your data only within the limits provided by law or when you have given your consent. Otherwise, your personal data will not be transferred to third parties unless we are obligated to do so by mandatory requirements of law (transfer to external entities such as regulatory or criminal prosecution authorities).

6. Recipients of data / categories of recipients

Some of the tasks that we, WZF GmbH, must perform in connection with Interzoo are handled by NürnbergMesse GmbH. For that reason, we will send NürnbergMesse GmbH your data so they can process your order or request. Because NürnbergMesse GmbH operates all over the world, we may also send your data to subsidiaries or international representatives of the NürnbergMesse Group, and specifically to the subsidiary or international representative that is located in your country or is responsible for your territory, in order to process your order or request or to send you event-specific information and offers.

In many cases, service providers and service partners support us, NürnbergMesse GmbH and its departments in performing their and our tasks, such as registering visitors, management of the trade fair logistics system, sending out newsletters and e-mailings, handling payments and incoming or outgoing orders, credit checks, web hosting, and data maintenance and analysis. All service providers and service partners have been carefully selected and have entered into the necessary data protection agreements. They process personal data in compliance with the applicable data protection regulations in order to provide support and information to customers and interested parties and to provide the offered services.

Your data may be transferred to exhibitors in the following cases:

• If you use a voucher to attend a trade show, you agree for the data you provide in your visitor registration to be sent to the exhibitor who invited you to attend at no charge. This may assist with billing for the tickets between the exhibitor and NürnbergMesse GmbH and with monitoring redeemed vouchers, and can help exhibitors make contact with their visitors.
• If you participate in what is known as “lead tracking”. You will be participating in lead tracking if during a visit to an event, you permit an exhibitor to scan the bar code on your ticket for the event. Similarly to when you leave a business card, when the bar code is scanned the exhibitor will receive the contact data you provide in your visitor registration (company name, form of address, title, first and last names, registered corporate name, street, postal code, city, e-mail address, business sector information if applicable, and other information you may have provided), irrespective of whether the exhibitor comes from Germany, an EU country, or another third country. Your participation in lead tracking is voluntary, and you will not be tracked without your further cooperation.

Recipients of the web analytics data are/may be:

• Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as a processor according to Art. 28 EU-GDPR)
• Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
• Alphabet Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

It cannot be excluded that US authorities access the data stored by Google.

7. Transmission of data / Intent to transmit data to third countries

Data is transferred to third countries (outside of the European Union or the European Economic Area) only when necessary to fulfil our obligations, or if required by law, or if you have given your consent.

In some cases we may transfer your personal data to subsidiaries or international representatives of NürnbergMesse GmbH outside of the European Economic Area: India, China, Brazil, United States. The international representatives of NürnbergMesse can be found online at www.nuernbergmesse.de/representatives. Standard EU contract terms ensure an appropriate level of data protection.

8. Duration of data storage

We will store your data for as long as needed for the given processing purpose. Please note that numerous retention periods require data to be kept on file for longer times. We are particularly required to do so by retention obligations under commercial law or tax law (e.g. the German Commercial Code, Tax Code, etc.). Unless some further retention obligation is in effect, data are routinely erased once they have served their purpose.

We will store your data for as long as needed for the given processing purpose. Please note that numerous retention periods require data to be kept on file for longer times. We are particularly required to do so by retention obligations under commercial law or tax law (e.g. the German Commercial Code, Tax Code, etc.). Unless some further retention obligation is in effect, data are routinely erased once they have served their purpose.

The data sent by us and linked to cookies are automatically deleted after 50 months (but no later than 31.12.2023) by using Universal Analytics (Google Analytics 3) and after 14 months by using Google Analytics 4. The deletion of data whose retention period has been reached takes place automatically once a month.

9. Secure transmission of your data

We employ appropriate technical and organisational safeguards to ensure that the data on file with us have the best possible protection against accidental or intentional manipulation, loss, destruction or access by unauthorised persons. The level of security is continually reviewed and revised to meet new security standards in collaboration with security experts.

Data transfers from and to our website are always encrypted. We offer HTTPS as the transfer protocol for our websites, and we always use the latest encryption protocols. There is also the option of using alternative communication channels (e.g. the postal service).

10. Obligation to provide data

Some personal data is necessary for the establishment, performance and termination of the obligation and the fulfilment of the related contractual and statutory obligations. The same applies to the use of our website and the various functions it provides.

We summarised the details in the section above. In certain cases, data must also be collected and/or provided due to statutory provisions. Please note that it is not possible to process your request or perform the underlying contractual obligations without having this data provided to us.

11. Categories, sources and origin of data

The data we process is determined by the context: This depends, for example, on whether you place an order online or make a request to send us a job application or submit a complaint in our contact form.

Please note that we may also separately provide information for special processing situations in an appropriate place, as when uploading job application documents or making a contact request, for example.

When you visit our website and web shops, we collect and process the following data using "Google Analytics":

Google Analytics uses cookies that enable an analysis of your use of our website. The information collected by means of the cookies about your use of this website is usually transferred to a Google server in the USA and stored there.
We use Google Signals. This allows Google Analytics to collect additional information about users who have activated personalized ads (interests and demographics) and ads can be delivered to these users in cross-device remarketing campaigns.
In Google Analytics 4, IP address anonymization is enabled by default. For Universal Analytics (Google Analytics 3), we have enabled the IP anonymization feature at all times. Due to IP anonymization, your IP address will be truncated by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
During your website visit, your user behavior is recorded in the form of "events". Events can be:

• Page views incl. date and time
• First visit to the website
• Start of session
• Your "click path", interaction with the website
• Scrolls (page depth: 25%, 50%, 75% and 90%)
• Clicks on external links
• internal search queries
• Interaction with videos
• file downloads
• ads seen / clicked
• language setting
• your approximate location (region)
• your IP address (in shortened form)
• technical information about your browser and the devices you use (e.g. language setting, screen resolution)
• your internet service provider
• the referrer URL (via which website/ via which advertising medium you came to this website)
• files requested, amount of data transferred, downloads/file exports
• your client ID
• gclid and dclid set by Google Analytics

For reasons of technical security (in particular to defend against attack attempts on our web server), this data is stored in accordance with Art. 6 (1) lit. f. EU-GDPR stored. After 7 days at the latest, anonymization takes place by shortening the IP address so that no reference to the user is made.

When you make a contact request, we collect and process the following data:

• Last name, first name
• Contact data
• Title
• Indications of desired information

When you place an order, we process the following data:

• Title
• Last name, first name
• Date of birth
• Shipping address
• Billing address
• E-mail address
• Data that may be permissibly processed from other sources

When you file online job applications, we collect and process the following data:

• Last name, first name
• Address
• Contact data
• We also use data that we have permissibly obtained from publicly available directories (e.g. professional networks).

For newsletters, we collect and process the following data:

• Title
• Last name, first name
• E-mail address

12. Contact form / Contact by e-mail (Art. 6 para. 1 letter a, b EU-GDPR)

Contact form / Contact by e-mail with Interzoo / WZFGmbH / NürnbergMesse GmbH

A contact form that you can use to contact us electronically is available on our website. When you write to us using the contact form, we will process the data you enter in the form to contact you and respond to your questions and requests.

Here we observe the principle of data minimisation and data avoidance, in that you only need to enter the data that we absolutely need to contact you. That includes your e-mail address and the message field itself. Additionally, your IP address will also be processed as a matter of technical necessity and for legal protection. All other data is requested in optional fields and can be provided or not, as you choose (e.g. so we can answer your questions more specifically for your situation).

If you contact us by e-mail, we will process the personal data you communicate in the e-mail only for the purpose of processing your request.
 

Contact form for direct contact with exhibitors

On our website, you will find a contact form for each exhibitor in the exhibitor and product database. You can use this form to make direct contact electronically with the exhibitor. If you contact the exhibitor using the form, the data you enter in the input mask will be sent directly to the exhibitor, and stored there. The exhibitor will process the data you provide on the contact form to make appointments, make contact, and respond to your questions and requests.
The principle of data minimisation and data avoidance applies here as well, in that you only need to enter the data that the exhibitor absolutely needs to contact you. That includes your e-mail address and the message field itself. Additionally, your IP address will also be processed as a matter of technical necessity and for legal protection. All other data is requested in optional fields and can be provided or not, as you choose (e.g. so the exhibitor can answer your questions more specifically for your situation).

13. Newsletter (Art. 6 para. 1 letter a EU-GDPR)

You can also subscribe to a free newsletter on our website. The e-mail address indicated in the newsletter application and your name will be used to send you this personalised newsletter.

Here we observe the principle of data minimisation and data avoidance, in that only the e-mail address is an obligatory field (and if applicable, your name for a personalised newsletter). When you order the newsletter, your IP address will also be processed as a matter of technical necessity and for legal protection.

Of course you can always cancel the subscription, and thus revoke your consent, by exercising the cancellation option provided in the newsletter. You can also always cancel your newsletter subscription directly on our website.

14. Online Exhibitor Shop / TicketShop / TicketCenter (Art.6 para 1 s. 1 letter b, f EU-GDPR) 

Unless you consent to a further use, we will process the data you entered on the order form only for the purpose of performing or processing the contractual relationship.

The principle of data minimisation and data avoidance is observed in that you only need to enter the data that we absolutely need to perform the contract and fulfil our contractual obligations (in other words, your name, address, e-mail address and the payment data required for your chosen form of payment), or data that we are legally required to collect.

As part of data collection, we request the salutation in order to ensure appropriate and personal communication. This information is processed on the basis of our legitimate interest in accordance with Art. 6 para. 1 s. 1 letter f EU-GDPR. Our legitimate interest lies in addressing our customers and business partners in a professional and respectful manner. When making your selection, you naturally have the option of selecting “no information”. Your data will be used exclusively for this purpose and will not be passed on to unauthorized third parties

As a matter of technical necessity and for legal protection, your IP address will also be processed. Without this data, we would regretfully have to decline to make a new contract or to continue an existing contract, because we would not be able to perform it. You can of course provide more data if you wish.

We offer exhibitors the option of registering with us by providing personal data. A particular advantage of registration is that you can view your order history, and the data you have entered into the order form will be kept on file, so that when you place another order, you will not need to enter the data again. Registration is possible either so we can perform a contract with you (via our online shop) or take steps in advance of making a contract. When the registration process is completed, we will keep your data on file so that you can use the protected customer area of the site. As soon as you log in to our website with your e-mail address as your user name and your password, your data will be available for any action you take on our website (e.g. orders in our online shop). Orders that have been filled can be tracked in the order history. You can enter changes to your billing or shipping address here.

Registered persons can make their own changes or corrections to the billing or shipping address in the order history. Our Customer Service will also gladly make such changes or corrections if you contact them. You can of course also cancel your registration and delete your customer account.

Trade Visitor Verification

As part of the trade visitor verification process, we use an AI-powered system that automatically analyzes submitted proof documents and extracts relevant information to make the verification process more efficient and reliable. In doing so, your personal data is processed to ensure the functionality and accuracy of the system and to continuously improve it. The optimization of the AI system is not an end in itself but directly serves to enhance the authorization experience.

The legal basis for this processing is our legitimate interest pursuant to Art. 6 para. 1 s. 1 letter f EU-GDPR in providing an efficient and user-friendly authorization process as well as in the technical development of the system used.

The following categories of data are processed in particular:

• Document type (e.g., business registration, service ID card)
• Identification data (e.g., name, company)
• Authorization attributes (e.g., industry sector, professional relevance to the trade fair)
• User-generated content (e.g., uploaded documents)
   

Processing is carried out by our contracted processor ISR Information Products AG, which operates the AI platform Buildsimple. Data processing takes place exclusively in data centers within the EU. Access to the data may also occur from the USA, but only by contracted subcontractors in compliance with the EU-U.S. Data Privacy Framework requirements.

Data is encrypted upon receipt and processed only for a few seconds. For training purposes, data is automatically anonymized so that no personal information is contained in the AI models. Anonymization is subject to a continuous quality process.

Recipients of the data are exclusively internal departments as well as the mentioned processors and their subcontractors (e.g., AWS, Microsoft, Atlassian), who are contractually obligated under Art. 28 EU-GDPR to comply with data protection requirements. No disclosure to third parties outside this constellation takes place.

Personal data is stored for as long as necessary to carry out the authorization process and the technical development of the system. 

No exclusively automated decision-making with legal effect for you as the data subject takes place in connection with the use of the AI system.

15. Data enrichment (Art. 6 para. 1 s. 1 letter f EU-GDPR)

We use the service provider Dealfront Group GmbH to keep our customer data up to date and to complete it with company information that is important to us, such as industry, year of foundation, etc. The service provider supports us in completing our customer data by comparing it with publicly accessible sources such as company websites, public registers or business networks. 

Data processing is carried out on the basis of our legitimate interest in keeping the data up to date, avoiding duplicates and enriching it with important company information (Art. 6 para. 1 s. 1 lit. f EU GDPR). As soon as the purpose for collecting the data and statutory retention obligations have been fulfilled, the data will be deleted.
 

16. Advertising purposes with established customers (Art. 6 para. 1 letter f EU-GDPR)

We have an interest in cultivating customer relationships with our exhibitors and visitors and providing you with information and offers about our own similar events and services. Consequently we, and possibly our service partners, will process the data that are transferred when you register (company name, address, telephone/fax number and e-mail address) so as to be able to send you event-related information and offers by e-mail, in accordance with Art. 6(1)(f) of the EU GDPR.

If this is not something you want, you can object to the use of your personal data for direct advertising purposes at any time; the same applies to profiling, to the extent that it is related to direct advertising. When you notify us of your objection, we will no longer process your data for this purpose.

You can notify us of the objection with no particular formal requirements and without indicating reasons, and at no separate charge aside from customary transmission costs at standard rates. Your objection should be addressed to Wirtschaftsgemeinschaft Zoologischer Fachbetriebe GmbH (WZF), Mainzer Strasse 10, 65185 Wiesbaden, Germany, or datenschutz@zzf.de.

17. Automated decision-making

We do not use purely automated processing in making decisions.

18. Cookies (Art. 6 para. 1 letter f EU-GDPR, § 25 para. 2 number 2 TTDSG / Art. 6 para. 1 letter a EU-GDPR with consent, § 25 para. 1 TTDSG)

Our web pages use so-called “cookies” in several places. They serve the purpose of making our offering more user-friendly, effective and secure. Cookies are small text files that are placed on your computer and stored by your browser (locally on your hard drive).

These cookies make it possible for us to analyse how users use our websites. They allow us to design the website contents to meet the needs of users, for example. Cookies also enable us to measure the effectiveness of a given advertisement and place it in accordance with the user’s topical interests, for example.

Most of the cookies we use are so-called “session cookies.” These are automatically deleted after your visit. Permanent cookies are automatically deleted by your computer when the corresponding period of validity has expired (usually after six months) or when you delete them yourself before the expiration of the period of validity.

Most web browsers accept cookies automatically. Usually, however, you can also change your browser settings if you would rather not send us the information. In this case, you will still be able to use the offerings of our website without restrictions (exception: configurators).

We use cookies to make your offering more user-friendly, effective and secure. We also use cookies so that we can analyse how users use our websites. They allow us to design the website contents to meet the needs of users, for example. Cookies also enable us to measure the effectiveness of a given advertisement and place it in accordance with the user’s topical interests, for example.

Cookies are stored on the user’s computer and transmitted from there to our website. As the user, therefore, you have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the setting in your Internet browser. Furthermore, already placed cookies can always be deleted using the Internet browser or other software programs. This is possible in all commonly used Internet browsers.

The legal basis for the use of technically necessary cookies is our legitimate interest, Art. 6 para. 1 letter f EU-GDPR. The storage of information in your terminal equipment or access to information already stored in your terminal equipment is absolutely necessary so that we can provide the telemedia service expressly requested by you as a user (§ 25 para. 2 number 2 TTDSG).

Otherwise, the legal basis in each case is generally your consent, if no specific legal basis is mentioned below. You can revoke your consent at any time. You can manage your revocation via the cookie icon placed on the bottom left of each of our web pages. Here you can also find more information about the use of cookies.

Insofar as data is processed outside the EU/EEA and there is no level of data protection corresponding to the European standard, we have concluded EU standard contractual clauses with the service provider to establish an appropriate level of data protection. The parent company of Google Ireland, Google LLC, is based in California, USA. A transfer of data to the USA and access by US authorities to the data stored by Google cannot be ruled out. The USA is currently considered a third country from a data protection perspective. You do not have the same rights there as within the EU/EEA. You may not be entitled to any legal remedies against access by authorities.
 

Consentmanager

We have integrated the consent management tool Consentmanager (www.consentmanager.net) from Jaohawi AB (Håltgelvågen 1b, 72348 Västerås, Sweden, info@consentmanager.net) on our website to obtain consent for data processing and use of cookies or comparable functions. With the help of Consentmanager you have the possibility to give your consent for certain functionalities of our website, e.g. for the purpose of integrating external elements, integrating streaming content, statistical analysis, measurement and personalized advertising. With the help of Consentmanager you can grant or reject your consent for all functions or give your consent for individual purposes or individual functions. The settings you have made can also be changed afterwards.
The purpose of integrating Consentmanager is to let the users of our website decide about the above-mentioned things and, as part of the further use of our website, to offer the option of changing settings that have already been made. By using Consentmanager, personal data and information from the end devices used, such as the IP address, are processed.

The legal basis for processing is our legitimate interest in Consent Management, Art. 6 Para. 1 S. 1 lit. lit. f EU-GDPR. By processing the data, we help our customers (according to EU-GDPR this is the responsible party) to fulfill their legal obligations (e.g. obligation to provide evidence). Our legitimate interests in processing lie in the storage of user settings and preferences with regard to the use of cookies and other functionalities. Consentmanager stores your data as long as your user settings are active. After two years after making the user settings, the consent will be asked again. The user settings made are then saved again for this period.

You can object to the processing. You have the right to object to reasons arising from your particular situation.

You can find additional information about the use of cookies and the possibility of objecting to the use of cookies via the cookie icon placed on the bottom left of each of our web pages.

19. User profiles / Web tracking processes

Google Analytics

We use Google Analytics, a web analysis service of Google Inc. (“Google”), on our websites. Google Analytics uses so-called “cookies,” which are text files that are stored on your terminal device and enable us to analyze your use of our websites. The information about your use of our websites that is generated by the cookie is usually transmitted to a Google server in the United States and stored there. Because IP anonymization is activated, however, your IP address is first truncated by Google within the member states of the European Union or in other signatory states of the Agreement on the European Economic Area.

Only in exceptional cases is the full IP address transmitted to a Google server in the United States and truncated there. Google uses this information on our behalf to analyze your use of the website, to compile reports of website activities and to provide other services to us related to website use and Internet use. The IP address transmitted from your browser in connection with Google Analytics is not commingled with other data of Google.

Insofar as data is processed outside the EU/EEA and there is no level of data protection corresponding to the European standard, we have concluded EU standard contractual clauses with the service provider to establish an appropriate level of data protection. The parent company of Google Ireland, Google LLC, is based in California, USA. A transfer of data to the USA and access by US authorities to the data stored by Google cannot be ruled out. The USA is currently considered a third country from a data protection perspective. You do not have the same rights there as within the EU/EEA. You may not be entitled to any legal remedies against access by authorities.

You can prevent the storage of cookies by setting your browser software accordingly; if you do this, however, we point out that you may not be able to fully use all functions on our websites. You can also prevent the reporting of the data generated by the cookie and relating to your use of the website (including your IP address) to Google and the dissemination of these data by Google by downloading and installing the browser plug-in available at the following link: tools.google.com/dlpage/gaoptout?hl=en.

You can object the collection of your data by Google Analytics. This will place an opt-out cookie on your terminal device that will prevent the collection of your data on future visits to this website.

You can manage your objection via the cookie icon placed on the bottom left of each of our web pages. Here you can also find more information about the use of cookies.

We also use Google Analytics to evaluate data from double-click cookies and AdWords for statistical purposes. If you do not want this to happen, you can deactivate this function in the ad settings manager myadcenter.google.com/?hl=en&sasb=true.

We also point out that we use the Google Tag Manager. This function does not collect any personal data. Instead, the Tag Manager makes it easier for us to integrate and manage our tags. Tags are small code elements that serve to measure traffic and user behavior, register the effects of online advertising and social media channels, set up remarketing and the orientation to target groups and test and optimize websites, among other purposes. You can find additional information about the Google Tag Manager here: marketingplatform.google.com/about/analytics/tag-manager/use-policy.

We have turned on the advertising reports features in Google Analytics. The demographic and interest reports contain information on age, gender and interests. This allows us – without being able to assign this data to individual persons – to get a better impression of our users. You can learn more about advertising features at support.google.com/analytics/answer/3450482?hl=en_AT&utm_id=add.

You can stop the use of the activities and information of your Google account under "Settings for advertising" at myadcenter.google.com/?sasb=true via checkbox.

You can find Google’s data protection notice here: policies.google.com/privacy?hl=en.

 

Google-Ads

We use the offering of Google Ads to bring attention to our attractive offerings with the aid of advertisements (so-called Google Ads) on external websites. Based on data from advertising campaigns, we can determine the success of individual advertising measures. We do this in the interest of showing you ads that are of interest to you, making our website more interesting for you and ensuring the fair charging of advertising costs.

Google delivers these ads via so-called “ad servers”. To this end, we use ad server cookies with which certain parameters of success measurements, such as the placement of ads or clicks by the user. If you come to our website from a Google ad, Google Ads stores a cookie on your PC. These cookies usually lose their validity after 30 days and are not meant to identify you personally. Analysis values such as the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (indication that the user no longer wants to be targeted) are generally stored in this cookie.

These cookies allow Google to recognise your Internet browser again. If a user visits certain pages of the website of an Ads customer and the cookie stored on his computer has not yet expired, Google and the customer can tell that the user clicked on the ad and was redirected to this page. A different cookie is assigned to every Ads customer. Therefore, the cookies cannot be traced back to the web sites of Ads customers. We ourselves do not collect or process any personal data in the aforementioned advertisement measures. We only receive statistical analyses from Google. Based on these analyses, we can determine which of our advertising measures are especially effective. We do not receive any data from the use of advertisements and in particular, we are unable to identify users on the basis of this data.

Due to the marketing tools in use, your browser automatically establishes a direct connection with the Google’s server. We have no influence over the scope and further use of data collected from Google’s use of this tool and therefore the following information reflects our current knowledge: Due to the integration of Ads Conversion, Google receives the information that you have visited the corresponding part of our website or clicked on one of our ads. If you are registered for a Google service, Google can attribute the visit to your account. Even if you are not registered with Google or have not logged in, it is possible that the vendor may find out and store your IP address.

You can prevent your participation in this tracking process in different ways: 

a) by changing the corresponding setting of your browser software; in particular, the suppression of third-party cookies means that you will no longer receive ads from third-party vendors; 

b) by deactivating the cookies for conversion tracking by setting your browser in such a way that cookies from the domain “www.googleadservices.com” are blocked, www.google.de/settings/ads, these settings being deleted when you delete your cookies 

c) by deactivating the vendor’s interest-themed ads that are part of the self-regulation campaign “About Ads” at the link optout.aboutads.info, this setting being deleted when you delete your cookies; 

d) by means of permanent deactivation in the browsers Firefox, Internet explorer or Google Chrome at the link support.google.com/My-Ad-Center-Help/answer/12155656?visit_id=638211210935368028-614144487&rd=1. Please note that if you do this, you may not be able to fully use all the functions of this offering.

The legal basis for processing your data is Art. 6 para. 1 S. 1 letter f EU-GDPR. You can find additional information about Google’s data protection policies here: policies.google.com/privacy and services.google.com/sitestats/en.html. Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at thenai.org.

 

Google Remarketing

Besides Ads Conversion, we also use the Google Remarketing application. This is a process by which we would like to address you again. By means of this application, we can place our advertisements in other websites after you visit our website. This is done by means of cookies stored in your browser that enables Google to collect and analyse information about your usage behaviour when visiting different websites. For example, Google can determine your previous visit to our website. According to its own statements, Google does not combine the data collected within the scope of remarketing with any personal data that Google may have stored. In particular, pseudonymisation is employed for remarketing, according to Google.

 

Google DoubleClick

Tracking

This website uses Google DoubleClick (Floodlights) cookies. Doubleclick is a service of Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Cookies are small text files that are stored in the browser of a user. The cookies are used to analyze the usage of the website. The data collected will be used only for statistical purposes and in anonymous form. Your browser will be assigned a pseudonymous identification number (ID). All data is recorded anonymously so that no conclusion can be drawn about specific persons. Users can prevent the use of cookies by downloading and installing the browser plug-in available under this link. Alternatively, the user can disable the Doubleclick cookies on the Digital Advertising website under the following link.

Retargeting

This website uses Google DoubleClick (Floodlights) cookies. Doubleclick is a service of Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Cookies are small text files that are stored in the browser of a user. The cookies are used to advertise products of this website provider (retargeting). At a later time, advertisements (e.g., banner ads, text-picture advertisements, videos, etc.) may be displayed to the users on other websites. Your browser will be assigned a pseudonymous identification number (ID). All data is recorded anonymously so that no conclusion can be drawn about specific persons. Users can opt-out from retargeting by modifying their ads preferences for Google Remarketing Tags. 

Alternatively, users may disable the use of 3rd-party cookies by using the opt-out page of the Network Advertising Initiative.

Use of Google reCAPTCHA

To protect our website from spam and abuse, we use the “Google reCAPTCHA” service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The service checks whether an entry is made by a human or automatically by a program. To do this, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics (e.g., IP address, mouse movements, length of stay, screen resolution, language settings, cookies, etc.).

Data processing is based on your consent in accordance with Art. 6 (1) lit. a EU-GDPR and § 25 (1) TDDDG. Consent is obtained via our consent banner and can be revoked at any time.
The data collected by reCAPTCHA is transmitted to Google servers, which may also be located in the USA. Google is certified under the EU-U.S. Data Privacy Framework, which ensures an adequate level of data protection.

For more information about data processing by Google, please refer to Google's privacy policy.

Facebook & Instagram (Facebook Pixel)

Our Event website use the Facebook pixel to display personalized advertisements from us and third parties for you on the Facebook and Instagram platforms (Facebook Inc., 1601 Willow Road, Menlo Park, California, 94025, USA and Instagram LLC., 1601 Willow Road, Menlo Park, California 94025, USA).

With the help of the Facebook ad manager, we define target groups of users based on certain characteristics, who are subsequently shown ads within the Facebook and Instagram network. Users are selected by Facebook based on the profile information they provide and other data provided through their use of Facebook. If a user clicks on an advertisement and subsequently arrives on our website, Facebook receives the information that users have clicked on our advertising banner via the Facebook pixel embedded on our website. 

The Facebook pixel logs when you take an action on our website. 
Such actions are the addition of an item to the shopping cart, a registration, a search (also location-based), a lead, a contact, a purchase transaction and a purchase completion.

For this purpose, we transmit information about your user activities on our website and certain personal data (such as your pixel ID, Facebook cookie, IP address, browser properties and click data) to Facebook via the pixel. Furthermore, the Facebook Pixel can be used to reach visitors of the social networks Facebook and Instagram whose interests are similar to our previous customers. In addition, visitors who have already interacted with our company in the past can be addressed again with interest-based advertisements ("Facebook Ads" / "Instagram Ads").

Due to the marketing tools used, your browser automatically establishes a direct connection with the Facebook server. We have no influence on the scope and further use of the data collected by Facebook through the use of the pixel. 
Insofar as you have given your consent for the storage of the Facebook pixel, this is done on the basis of Art. 6 para.1 lit. a DSGVO for marketing and optimization purposes, in particular to place relevant and interesting ads for you on Facebook and thus improve our offer.

Further information from the third-party provider on data protection can be found on the following Facebook website: www.facebook.com/about/privacy. 

Information on the Facebook pixel can be found on the following Facebook website: www.facebook.com/business/help/651294705016616.

You can revoke your consent to the use of the Facebook pixel at any time with future effect by accessing this in our cookie settings here and changing your selection there.

Hotjar

We use Hotjar to better understand the needs of our users and to optimize the offer and experience on this website. Hotjar's technology gives us a better understanding of our users' experiences (e.g. how much time users spend on which pages, which links they click on, what they like and dislike, etc.) and helps us to tailor our offering to our users' feedback. 

Hotjar works with cookies and other technologies to collect data about the behavior of our users and their end devices, in particular IP address of the device (is only recorded and stored in anonymized form during your website use), screen size, device type (unique device identifiers), information about the browser used, location (country only), preferred language for displaying our website. Hotjar stores this information on our behalf in a pseudonymized user profile. 

Hotjar is contractually prohibited from selling the data collected on our behalf. For more information, see the ‘about Hotjar’ section on Hotjar's help page.

Outbrain

This website uses the online advertising program Outbrain Conversion Tracking. The cookie for conversion tracking is placed when a user clicks on an ad in the Outbrain network. These cookies do not serve the purpose of personal identification. If the user visits certain pages of this website and the cookie has not yet expired, we and Outbrain can see that the user clicked on the ad and was taken to this page. Further information about the data protection and cookies of Outbrain Inc., 39 West 13th Street, 3rd floor, New York, NY 10011, can be found here: www.outbrain.com/legal/privacy

You can find opt-out information at “Outbrain user types (including deactivation / opt-out)”: www.outbrain.com/legal/#user-types

LinkedIn Analytics and LinkedIn Ads

We use the conversion tracking technology and retargeting function of LinkedIn Corporation on our website.

With the aid of this technology, personalised ads on LinkedIn can be displayed to visitors to this website. This technology also makes it possible to generate anonymous ad performance reports and website interaction information. For this purpose, the LinkedIn Insight Tag is integrated into this website, which creates a connection to the LinkedIn server if you visit this website and are simultaneously logged in to your LinkedIn account.

This informs LinkedIn that you have visited our website, whereby your IP address is also collected. In addition, timestamps and events such as page views are stored. In this way, we learn about which LinkedIn ad or interaction on LinkedIn you came to our website. This allows us to better control the playout of our advertising.
LinkedIn Conversion Tracking logs when you take an action on our website.
Such actions include adding an item to the cart, a registration, a search, a lead, a contact, a purchase transaction, and a purchase completion.

Due to the marketing tools used, your browser automatically establishes a direct connection with LinkedIn's server. We have no influence on the scope and further use of the data collected by LinkedIn through the use of Insight Tag. 
Insofar as you have given your consent for the collection of data, this is done on the basis of Art. 6 para.1 letter a EU-GDPR for marketing and optimization purposes. 

You can find additional information about data collection and data use, as well as privacy protection possibilities and rights, at the LinkedIn data protection policy at: www.linkedin.com/legal/privacy-policy?_l=en_US. 

If you are logged in to LinkedIn, you can always deactivate data collection at the following link: www.linkedin.com/help/linkedin/answer/a1341642?lang=en-US.

Webfonts from fonts.com

This website uses so-called web fonts provided by Monotype GmbH (fonts.com or fast.fonts.net) to display fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly. 

For this purpose, the browser you are using must connect to the servers of fonts.com. This enables fonts.com to know that our website has been accessed via your IP address. The use of Fonts.com Web Fonts is in the interest of a uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 para. 1 s. 1 letter f EU-GDPR. If your browser does not support web fonts, a standard font will be used by your computer. 

You can find more information about these web fonts at www.myfonts.com/de/a/font/legal in the privacy policy of Fonts.com: www.myfonts.com/de/a/font/legal/website-use-privacy-policy and in the privacy policy of Monotype GmbH: www.monotype.com/legal/privacy-policy.
 

20. Social media plug-ins of social networks

We currently use the following social media plug-ins: Facebook, X, Xing, LinkedIn, Instagram. We use the so-called two-click solution for this purpose. This means that when you visit our website, no personal data is transferred to the plug-in provider at first, as a rule. You can recognise the plug-in provider from the marking in the box above its initial letters or its logo. We give you the option of communicating directly with the plug-in provider by clicking on this button. Only when you click on the marked field and thereby activate it will the plug-in provider receive the information that you have visited the corresponding page of our online offering. 

In the case of Facebook and Xing, the IP address is anonymised immediately after collection, according to the providers. When you activate the plug-in, therefore, your personal data is transmitted to the plug-in provider and stored there (with U.S. providers, in the United States). Because the plug-in provider particularly uses cookies to collect data, we recommend that you delete all cookies in your browser’s security settings before clicking on the greyed-out box.

We have no influence on the data collected and the data processing procedures and we also do not know the full extent of data collection, the purposes of processing or the storage periods. We also have no information about the deletion of collected data by the plug-in provider.

The plug-in provider stores the data collected on you in the form of usage profiles and uses them for purposes of advertising, market research and/or designing its websites to meet the needs of users. Such analysis is particularly performed (also for users who are not logged in) to present relevant advertisements and to inform other users of the social network about your activities on our website. You have the right to object to the formation of these user profiles, for which purpose you must contact each plug-in provider. With these plug-ins, we give you the opportunity to interact with the social networks and other users so that we can improve our offering and make it more interesting for you as the user.

The basis for the processing of your personal data is your consent, the legal basis is Art. 6 para. 1 s. 1 letter a EU-GDPR.

The plug-in provider processes and stores your data in the USA. They are obliged by corresponding contractual regulations to comply with the data protection standards and the data protection level of the EU. Data processing or storage in third countries can also take place on the basis of your consent (Art. 49 para. 1 s. 1 letter a EU-GDPR), in which case you will be informed of this separately when obtaining your consent.

You can revoke your consent at any time for the future.

You can manage your revocation via the cookie icon placed on the bottom left of each of our web pages. Here you can also find more information about the use of cookies.

Data is transferred regardless of whether you have an account with the plug-in provider and are logged in to it. When you are logged in to the plug-in provider, your data that is collected by us is directly attributed to your account with the plug-in provider. If you activate the button and link to the page (for example), the plug-in provider will also store this information in your user account and publicly share it with your contacts. We recommend that you always log out after using a social network, but especially before activating the button because this way you can prevent the attribution of information to your profile with the plug-in provider.

You can find additional information about the purpose and scope of data collection and processing by the plug-in provider in the data protection policies of these providers, which are shared in the following. There you will also find additional information about your rights and setting options to protect your privacy.

Addresses of plug-in providers and URLs with their data protection policies:

• Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; www.facebook.com/privacy/policy; additional information on the subject of data collection: www.facebook.com/help/186325668085084
• Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; policies.google.com/technologies/partner-sites?hl=en.
• X Corp., 1355 Market St, Suite 900, San Francisco, CA 94103, USA; x.com/de/privacy.
• Xing AG, Gänsemarkt 43, 20354 Hamburg, DE; privacy.xing.com/en.
• LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA; www.linkedin.com/legal/privacy-policy.
• Instagram, LLC Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA; privacycenter.instagram.com/policy.

Other plug-ins

YouTube

Our website includes links to videos from the external video platform YouTube. The associated plug-ins are operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. By default, only inactivated images from the YouTube channel are embedded and do not provide an automatic connection to YouTube’s servers. Consequently that operator receives no user data when you view these Web pages.

You can decide for yourself whether YouTube videos should be activated. Your consent for the necessary data to be transferred to the operator (including the Internet address of the current page and the user’s IP address) will only be given when you approve for the video to play by clicking “start video.”

To store the setting that a user wishes, we set a cookie that contains these parameters. When we set these cookies, we do not store any personal data – the cookies contain only anonymized data to adjust the browser. Then the videos will be active and you can play them. If you want to inactivate automatic loading for YouTube videos, you can change your Web browser’s settings to reject cookies or limit their acceptance.

You can find out more about data protection on YouTube in YouTube’s data privacy policy at: policies.google.com/privacy?hl=en.
 

21. About data protection on Facebook  

WZF GmbH maintains a Facebook page. To the extent that we have control over how your data are processed, we make sure the applicable data protection regulations are obeyed. 

Below, you can find the most important information about data protection law as it aplies to our company websites. 

Name and address of data controller for business

In addition to WZF GmbH, the following is a data controller for the company’s Web pages under the terms of the EU General Data Protection Regulation (EU-GDPR) and other provisions of data privacy law:

• Facebook  
  (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) 

However, if you use the Facebook platform and its functions, you do so at your own risk. This especially applies to using interactive functions (e.g., Comment, Share, Like). 

Purpose and legal basis

We ourselves maintain the fan pages to communicate with those pages’ visitors and to keep them informed about our latest developments.  

We also gather data for statistical purposes, so that we can refine and optimise content and make our services more attractive. The social networks process the necessary data for this purpose (e.g., total number of page visits, page activities and data provided by visitors, interactions) and make them available. We have no influence over how these data are generated or presented.  

Your personal data will also be processed for market research and advertising purposes by the Facebook providers, and by WZF GmbH as well. It may thus happen that user profiles may be developed from your usage and the interests that usage indicates. These profiles may be used for such purposes as displaying ads that presumably match your interests, both on and off the platforms. As a rule, cookies are stored on your computer for such purposes. Irrespective of those cookies, your user profiles may also store data that are not gathered directly on your devices. Such data may also be stored and analysed across multiple devices, especially – though not only – if you are a registered member and have logged into the platform. 

Other than the above, we do not gather or process any personal data.  
WZF GmbH will process your personal data on the basis of our legitimate interest in effectively providing information and communication under Art. 6 para. 1 letter f of the EU-GDPR.  
If your consent is requested for data processing – in other words, if you indicate your consent by confirming on a button or the like (“opt in”) – your data will be processed on the basis of Art. 6 para. 1 letter a and Art. 7 of the EU-GDPR. 

Your rights / Right to object

If you are a Facebook member and do not want the network to gather data about you by way of our page and to link those data with the member data the network has stored for you, you must: 

• log out of the network before visiting our fan page,
• delete the cookies on your device, and  
• close and restart your browser. 

However, once you log in again, the network will again be able to recognise you as a particular user. 

For a detailed discussion of the various ways in which your data are processed and how you can object to that processing (“opt out”), please see the information in the following links: 

• Facebook Data privacy policy: www.facebook.com/about/privacy/
• Facebook Opt out and youronlinechoices.com
   

Overall, you have the following rights concerning how your personal data are processed: a right of access; a right to rectification; a right to erasure; a right to restrict processing; a right to object to processing; a right to data portability; a right to lodge a complaint with a supervisory authority about unlawful processing of your personal data. 

However, as WZF GmbH does not have full access to your personal data, you should assert your rights directly to the provider of the social media. These providers have access to their users’ personal data, and they are the ones who can take the appropriate measures and provide information.  

Nevertheless, we will of course be happy to assist you if you need help. Please contact mailto:datenschutz@zzf.de.

Further information:
Notes on copyright 
If you wish to publish pictures, text, maps, videos, music, etc. on our site, you should be aware that you may thereby assign all rights of use to the network. This may ultimately have legal consequences for you if you yourself are not the author of the materials or do not hold the rights to them. 

 

22. Links to other providers

Our website contains clearly recognisable links to the websites of other companies. When we link to the websites of other companies, we have no influence over their content, and therefore can also assume no responsibility or liability for that content. Each provider or website operator is responsible for the content of their own websites.

The linked pages were checked for potential legal violations and recognisable infringements at the time when the links were placed. No unlawful content was recognisable at the time when the links were placed. However, we cannot be reasonably expected to permanently monitor the content of linked websites unless there are concrete indications of a legal violation. If we discover a legal violation, the associated links are removed immediately.

23. Interzoo App

Within the scope of the “Interzoo” trade fair that we organise, you will receive access to the “Interzoo App” (hereinafter: App) we provide. This provides publicly available information to enable trade-fair planning, and to search for exhibitors, products, trademarks, and supporting programmes. Furthermore, the App offers an interactive hall plan, news functions and the transmission of so-called push notifications (all the aforementioned functions of the App hereinafter: Basic Functions). If you have acquired an event ticket or hold an exhibitor pass, in addition to the Basic Functions described, the App offers you an integrated ticket wallet and individual profile editing functions. After acquiring an event ticket, if you use the exchange contacts function and the connectivity function you will also be able to exchange data with other users and exhibitors, as well as to network with the help of the networking function (all the functions linked with the acquisition of an event ticket / exhibitor pass hereinafter: Additional Functions).

a. App – use and data protection

The use of the App and the conclusion of a corresponding user agreement are voluntary and are not preconditions for attending the “Interzoo” trade fair. However, when using the App, you can plan your visit to the trade fair using the functions described in the introduction and structured according to your needs.
 

b. Consent

In order to use the App as described above, users are obliged to accept this Privacy Policy. This applies notwithstanding whether you only use the Basic functions of the App or also the Additional Functions. A declaration of consent must be given after downloading the App from the relevant app store and will be requested again on first use of the networking function in the App.

c. Usage data and its use as well as the legal basis for the relevant use of the Basic Functions without acquiring an event ticket / exhibitor pass

While using the App, device information is sent (e.g. device type, system version, etc.). The information is only needed to deliver device-specific content to the App (e.g. graphic formats that are suitable for the device, version-dependent navigation elements). In order to use all of its functions, the App also requires the following permissions, which you can optionally grant:

• Internet access: This is required to load the current trade fair data onto your device. In addition, functions such as sending contact requests (networking) or watching live streams (event program) require Internet access.
• Camera access: This is required so that QR codes can be scanned. These are used to import contact details of scanned trade fair participants (QR code on trade fair ticket or networking QR code in the App) into the networking address book in the App. The function also makes it possible to transfer favorites from the online exhibitor search to the App. Camera access is also required for navigation purposes onsite, provided this service is offered at the respective event.
• Location and Bluetooth access: Access is required for location-based navigation and information purposes onsite, provided this service is offered at the respective event
• Access to the gallery: This is required if you want to upload a profile photo from your photo album.
• Access to the address book: This is required in order to be able to save contacts in your device's address book.
• Calendar access: This is required in order to be able to import/save appointments made via the app into your calendar.
• Access to device storage: This is required to save contact list export files on your device.

The following personal data will be processed during use of the Basic Functions even without acquiring an event ticket / exhibitor pass:

(1) Usage data
When you use our App, we will collect the following data:

• IP address,
• Date and time of the request,
• Time zone difference from Greenwich Mean Time (GMT),
• Contents of the request (concrete page),
• Access status/HTTP status code,
• Data quantity transmitted,
• Website from which the request comes,
• Browser,
• Operating system and its interface,
• Language and version of the browser software,
• Email address.

(2) Use of usage data
By registering to use our App you can receive “In-App notifications”. “In-App notifications” are notifications sent to your App that you as a reader see when you open the App. In addition, it will be possible for you to use the “Message Centre”. You can call up and administer messages with the “Message Centre”. You can also receive “Push notifications” about updates, new App functionalities, information or advertising that we send to end-users on behalf of exhibitors. Push notifications are notifications sent to your App that appear both on the lock screen and the unlocked display in the App.

(3) Firebase
Our App uses the analysis service “Firebase”. With the help of Firebase, we record data about the manner in which functions are used and how they are used within the App. We refer to section 18 of our Privacy Policy in this regard. The following user procedures will be analysed:

• Pages: calls (e.g. lists, detailed pages etc.)
• Favourites: add/delete
• Data: update
• Notes: add/delete
• Contacts: add/delete
• Sponsor banner: displayed/clicked
• Matchmaking/Networking: login/logout
• URLs/Links: open
• Calendar appointments: add
• Search function: apply
• Settings page: call
• Contact information: click on call, email, website
• App contents: use the function “Share” in the social media area

(4) Legal basis for the data usage described above
We process the personal data specified in c) (1) as per Art. 6 (1) 1 b) of the GDPR to initiate, implement and settle the user agreement for use of the App. Furthermore, we process the data we require technically in order to offer you the functions of our App and to be able to guarantee stability and security as per Art 6 (1) 1 f) of the GDPR. Within the scope of the necessary consideration of interests, we have compared your interest in the relevant secrecy of your personal data with our interest in providing the App, making contact and the need for security. Your interest in secrecy is overridden here. Because otherwise, we would not be able to guarantee the IT security and the functionality of our App, as described above. The use of “Firebase” described in c) (3) is intended to continuously optimise our App, its contents and its user-friendliness. These purposes are our legitimate interest in the data processing. Consequently, this processing relates to the legal basis of Art. 6 (1) 1 f) of the GDPR. Within the scope of the necessary consideration of interests, we have compared your interest in the relevant secrecy of your personal data with our interest in providing the App, making contact and the need for security. Your interest in secrecy is overridden here. Because otherwise, we would not be able to guarantee the continued development of improved functionalities of our App, as described above.

(5) Categories of recipient
In using our App, we work together with service providers upon whom we have imposed contractual obligations to treat personal data just as carefully as we do. In this respect, we can also transmit personal data to service providers in third countries. Third countries are countries outside the EU and outside the EEA. Third countries also include the USA, where there is no level of data protection comparable to that in Europe. It is possible for state agencies to access personal data there without you or us finding out. The chances of legal redress are slim. The legal basis for such data transmission is consent pursuant to Art. 49 (1) 1 a) of the GDPR.

(6) Connection to other functions of your smartphone
Registration data can be used with other functions of your smartphone, if you issue the authorisations required for this, for example, to export certain appointments (calendar function).

d) Data for Additional Functions and their use as well as the legal basis for the relevant use on acquiring an event ticket / exhibitor pass within the scope of the Additional Functions

By acquiring an event ticket / exhibitor pass and using the Additional Functions all the data uses apply that are described for the Basic Functions. Therefore, the regulations of c) (1) to (6) also apply when using the Additional Functions. Otherwise, additional data is collected. The following applies to this in addition:

(1) Ticket data
You can upload your event ticket / exhibitor pass to be filed digitally in the App using a code in the ticket wallet. Optionally, it is possible for us to deposit your ticket for you automatically in your ticket wallet. The acquisition of tickets from the TicketShop is also based on our Privacy Policies. We also refer to these at https://www.interzoo.com/en/data-protection. Depositing ticket data in the “ticket wallet” will make entrance to the relevant trade fair event easier.

(2) Contact and connectivity data
Using the QR code scan function you can send your own contact details to another end-user/exhibitor or receive the contact details from another end-user/exhibitor using the same function. By scanning the “exhibitor and product QR codes” the contact details given when buying the ticket or the contact details given in the App can be transferred to an exhibitor in the form of lead reporting. The same applies to exchanging digital business cards between attendees. This personal data includes your first name and surname, email address, company, job title, telephone number/mobile number. The contact and connectivity function makes communication between trade fair attendees and exhibitors easier by giving them the possibility to open simple communication paths and also maintain these during the period of time after the trade fair.

(3) Lead reporting
Lead reporting allows personal data to be exchanged between exhibitors and users using electronic paths. We will only pass personal data to exhibitors by means of lead reporting if you have given your explicit consent to our Privacy Policy in advance and also pass the data to us. If a user scans the QR code, they will automatically pass their data to the relevant exhibitor. The relevant exhibitor will then be obliged to comply with the provisions of data-protection law with regard to this forwarded data after the data has been forwarded to the exhibitor. We explicitly refer to c) (5) with regard to forwarding data to exhibitors from third countries.

(4) Profile data
When you log in to the App a personal profile with the data from your registration in the TicketShop will be automatically set up for you. You can supplement this data with further data, for example, in the fields “Company”, “Position”, “Telephone number”, “Areas of interest”, “Further information and a profile picture”. This data is used to present the relevant user to other users and exhibitors, to describe their interests and make it easier to make contact and keep in contact.

(5) Networking data
Using the networking function, you can communicate with other users of the App in private chatrooms without these being visible to anyone else apart from the attendees you have set for the private chatroom. You can also be individually contacted by other users via a private channel. In order to provide this networking function, we process your personal data, in particular your user account data (surname, first name, company, job title, position, profile picture and country). If you use the networking function, we will use an algorithm for matchmaking. This algorithm will identify matches between your interests and the interests of other users and exhibitors and will display these in the order of matching relevance. If you use networking and matchmaking, we will form a profile derived from the interests you have given. We will compare your interests with the interests of other networking participants and form a list of networking participants with whom you share the most interests, adjusted for you in descending order. These participants will be suggested to you as possible contacts. In this respect your personal data will be processed to carry out the agreement and to provide the networking function.

(6) Camera data
In order to scan QR codes, take image memos and use the integrated selfie camera, we require access to your camera. The data will be stored on your device. You can block this access using the settings in your operating system If you block this access, some of the functions may not be available.

(7) Address data
Access to the address book offers the option of saving the contacts received via the digital business card or the exhibitor directory. The system checks locally on your device whether the contact is already saved in your address book. To save the exhibitor contacts, the app requires access to your address book.

Address book access also offers the option of inviting your own contacts to use the app. As soon as you search for a contact in Networking who is not yet an app user / net-working participant, you can check whether the user exists in the local address book after granting access to the address book and then invite them to use the app.

Access will only take place if you have given your prior consent. The legal basis for this is your consent in accordance with Art. 6 (1) (a) GDPR, which can be revoked at any time. To do so, please deactivate access in the app settings on your device.

(8) Legal basis for the usages of data described above within the scope of the Additional Functions
Ticket data as per d) (1) will be processed to initiate, implement and settle the user agreement on which the application via the App is based, pursuant to Art. 6 (1) 1 b) of the GDPR. The coronavirus proof of vaccination data provided as per d) (2) will be processed to meet legal obligations that we must meet towards government agencies on demand, for example, pursuant to section 16 (2) 3 of the German Prevention and Control of Infections Act (IfSG); the legal basis for this processing results from Art. 6 (1) 1 c), (2) and (3) of the GDPR in conjunction with section 6 of the Bavarian Prevention and Control of Infection Measures Ordinance (BayIfSMV) and sections 1.3 and 1.9 of the framework concept for trade fairs and exhibitions resulting from the joint announcement of the Bavarian State Ministries of Economics, State Development and Energy and of Health and Care of 10 December 2021. In addition, with regard to the processing of coronavirus proof of vaccination data we refer to the explanations in the Privacy Policy in section 4. We process contact and connectivity data as per d) (3) on the basis of your consent to forward data pursuant to Art. 6 (1) 1 a) of the GDPR, as well as to meet the function laid down about the App in the user agreement pursuant to Art. 6 (1) 1 b) of the GDPR. We will only process lead report data as per d) (4) with your consent pursuant to Art. 6 (1) 1 a) of the GDPR. In addition, we will process this data to meet the function laid down in the App to initiate, implement and settle the user agreement pursuant to Art. 6 (1) 1 b) of the GDPR. The legal basis for processing your profile data pursuant to d) (5) and the networking data pursuant to d) (6) is your consent pursuant to Art. 6 (1) 1 a) of the GDPR. We are only permitted to activate the data detailed in d) (7) relating to camera data and in d) (8) relating to address data with your consent.

(9) Categories of recipient
We use service providers in our Ticketshop for acquisitions of tickets through our App. The obligation to forward stored visitor data to the health authorities in connection with Covid-19 infections corresponds with the obligation to notify the competent authority, for example, pursuant to the regulation of section 16 (2) 3 IfSG. Accordingly, there is an obligation to issue the required information and to submit documents to the health authority on request. Further, we provide contact, connectivity and networking data of other users, exhibitors and networking providers. For this purpose, we employ service providers within the scope of the functions described and send personal data to these service providers to do this. We also employ service providers to process personal data within the scope of matchmaking and lead reporting. If we forward personal data to service providers in the aforementioned cases, these service providers are contractually obliged to exercise the same care when handling personal data that we use ourselves. If we also transmit personal data to service providers in third countries, the statements in c) (5) apply.

(10) Connection to other functions of your smartphone
If you issue us the relevant authorisation, other applications on your smartphone, such as the camera, the photo gallery and/or the export of contacts, will be accessed.

e) Reference to the other regulations of the Privacy Policy

The special information about the Privacy Policy for the use of the “Interzoo App” included under this section 21 shall not affect the other regulations of the Privacy Policy of WZF which can be found at https://www.interzoo.com/en/data-protection and merely supplements these to the extent these regulations relate to the use of the App. These statements apply to use of the “Interzoo App”, and consequently in addition to the statements included here under section 21.

Information on data protection for users of the Interzoo app (PDF)

24. Video Conferencing 

Microsoft Teams (Art. 6 para. 1 letter b EU-GDPR)
We use the video conferencing tool Microsoft Teams to communicate with our customers, business partners or exhibitors. We use this tool to conduct video conferences, telephone conferences or online meetings. Microsoft Teams is a service provided by Microsoft Corporation (One Microsoft Way, Redmond, WA 98052-6399, USA). 

Microsoft Teams can be used either via your web browser or, alternatively, via the MicrosoftTeams app installed on your end device.

When using Microsoft Teams, different types of data are processed. Which data is processed also depends on the information you provide. 

When using Microsoft Teams, your user data stored with Microsoft Teams (e.g. name, mail address, profile picture, language, etc.) will be processed. Furthermore, connection data (e.g. IP address) and metadata (e.g. meeting ID, phone numbers, dates, etc.) are collected. Finally, image and sound data from you will be processed. For this purpose, Microsoft Teams obtains access to the camera and microphone of your end device for the duration of the transmission, if you allow this. You can interrupt the image and sound transmission at any time. In addition, it is possible to make text entries (chat) and to transfer files together with their content (in the case of file exchange).

A logging of the chat process does not take place. Likewise, no video or audio recording is made and is prohibited. If, in exceptional cases, a recording is to be made, the express consent of all persons concerned will be obtained in advance.

The processing of data is carried out for the purpose of conducting video conferences and serves to carry out pre-contractual measures or contract performance, Art. 6 para. 1 letter b EU-GDPR.

The data will only be stored for as long as is necessary to achieve the purpose and no legal retention obligations prevent deletion. Please note that the data may have to be stored for verification purposes based on legal retention obligations. In this case, the data will be deleted at the latest after expiry of the respective retention obligation. 

The processing of personal data takes place exclusively within the EU/EEA. Only in certain exceptional cases (e.g. creation of a support ticket), it cannot be excluded that personal data is also processed outside the EU/EEA. Microsoft is obligated by corresponding contractual regulations to comply with EU data protection standards and to guarantee the European level of data protection. The necessary contractual framework for data processing by Microsoft Teams has been concluded.

Further information on data processing by Microsoft Teams can be found at: privacy.microsoft.com/de-de/privacystatement