Information on cookies and tracking technologies

Telemedia provider within the meaning of the Telecommunications Telemedia Data Protection Act (hereinafter "TTDSG") and Controllers for subsequent data processing within the meaning of the General Data Protection Regulation (GDPR): Messe München GmbH, Am Messesee 2, 81829 München, E-Mail: info@messe-muenchen.de and Bundesverband Gesundheits-IT – bvitg e. V, Markgrafenstraße 56, 10117 Berlin, E-Mail: info@bvitg.de.

Data protection officers: data protection officer of Messe München (address: as above; email: dsb@messe-muenchen.de) as well as the data protection officer of Bundesverband Gesundheits-IT – bvitg e. V and bvitg Service GmbH (address: as above; email: datenschutz@bvitg.de). In some cases, especially when integrating social media, Messe München is a joint controller with the respective third-party providers within the meaning of Art. 26 GDPR for certain data processing activities. For more information in this regard, in particular on the roles and relationships of the joint controllers, please see the data protection notices of the respective third-party providers in Section 4.

Messe München uses various types of cookies and tracking technologies such as pixels and local stored objects on its digital services:

• “Cookies” are small text files that are stored on the user's terminal equipment in the web browser when visiting or using the digital services.
• “Web beacons” are small graphic files that are also stored on the user's device.
• “Local storage” means that data is stored locally in the cache, i.e., in a kind of temporary memory of the user's browser. If the cache is not deleted, the data remains there even when the browser window is closed, and the program is terminated and can be read out further.

These cookies and tracking technologies automatically record information such as the date of the page view and surfing behavior and are automatically accessed and read out by Messe München and any third-party providers of cookies and tracking technologies. This information enables, among other things, the recognition of the users at the next time they access the digital services. The information collected differs according to the type of tracking technology used.

For further information on the technologies used, see the Consent Management Tool here.

These automatically collected technical data, especially in connection with the IP address, some device information or online identifiers, can be used to identify data subjects. In this case these technical data amount to personal data.

Cookies and other tracking technologies

On some digital services, first party cookies and other tracking technologies as well as third party cookies and other tracking technologies are used, which can be divided into the following categories:

Essential

The storage of information in the user's terminal equipment (e.g., laptop, computer, cell phone) or access to information already stored in their terminal equipment by means of these technologies is absolutely necessary for the operation and usability of the digital services so that Messe München can provide these digital services expressly requested by the user (legal basis: section 25 (2) TTDSG). This also includes technologies for the use of the Consent Management Tool. These technologies can therefore not be deactivated.

The subsequent processing of any personal data is based on the legitimate interest of Messe München in the functioning, provision and maintenance of the operation, usability, operability and safety/security of the digital services (legal basis: Art. 6 (1) (f) GDPR).

For further information on the technologies used, see the Consent Management Tool here.

For further information on subsequent data processing, see the data protection notice for websites of Messe München

Functional / Statistics / External technologies

Storing information in the terminal equipment of the users or accessing information already stored in their terminal equipment by means of these technologies help to analyse the use of the digital services, measure performance and optimise the digital services for the user and/or dynamically display advertising on own and external websites, personalise content and advertisements and display relevant information in a targeted manner (e.g., via individualised banners on websites) and measure the efficiency of the advertising (e.g., whether an advertisement was clicked on and subsequent actions on the websites). These technologies also provide information to the respective third-party technology provider or advertising partner and are used by them for their own purposes, if applicable, as explained in their privacy notices and cookie notices. The aforementioned storage or access to the information is based on the consent of the users (legal basis: section 25 TTDSG).

The subsequent processing of any personal data is based on the consent of the user (legal basis: Art. 6 (1) (a) GDPR).

For further information on the technologies used, see the Consent Management Tool here.

For further information on subsequent data processing, see the data protection notice for websites of Messe München.

Social Media Plugins

We use so-called social plugins on our website, such as those from social networks. These plugins are disabled by default. This means that no data is transmitted to the operators of the social networks unless you enable the plugins.

How does the 2-click solution work?

1. When you intentionally click the corresponding button, the plugin is first activated (first click).
2. After a second click, you can use the plugin’s features, such as sharing content. Only then is data transmitted to the respective social media platform.

Legal basis for the processing of your data: Your data will only be transferred with your consent in accordance with Art. 6 (1) (a) GDPR.

For further information on the technologies used, see the Consent Management Tool here.

For further information on subsequent data processing, see the data protection notice for websites of Messe München.

Functional Plugins

Functional cookies aren’t required to use the website, but will enhance its usability.

• Adition
  Virtual Minds GmbH, Ellen-Gottlieb-Straße 16, 79106 Freiburg im Breisgau, Deutschland
  Datenschutzhinweise: https://virtualminds.com/de/plattform-datenschutzerklaerung/
  Datenschutzbeauftragter: data.privacy@virtualminds.com

• Google Maps
  Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland
  Datenschutzhinweise: https://policies.google.com/privacy?hl=de
  Datenschutzbeauftragter: https://support.google.com/policies/contact/general_privacy_form

Where necessary, personal data will be disclosed to other companies of the Messe München group for the purposes specified in section 3 below. In order to carry out certain processing activities in connection with the purposes mentioned in section 3 (in particular hosting and IT support, website and content management, data management), external service providers are used which process the personal data on behalf of Messe München (so-called “processors”).

For further information, in particular on the data transfer to third countries, please see section 5 of the data protection notice for the websites of Messe München.

Services and functions of third parties may be integrated on some Messe München digital services in the form of external links. When users click on these links and use these offers, they leave the Messe München digital services and are redirected to the website of the respective third party, which may use its own cookies or tracking technologies. This third party processes the data as a controller within the meaning of the GDPR. For further information, please refer to the data protection and cookie notices of the respective third party.

Social media

Data published in social media accounts are available to all users of the social media channels worldwide. It is also available to the providers of the social media channels (YouTube/Google, LinkedIn, Instagram), which have their own terms of use/general terms and conditions (GTCs) and privacy notices (see below). Users should note the options provided by these providers to restrict the processing of usage or traffic data.

• Instagram
  Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
  Privacy notice: https://www.facebook.com/about/privacy/
  Data Protection Officer: https://www.facebook.com/help/contact/540977946302970
  
  
• LinkedIn
  LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
  Privacy notice: https://de.linkedin.com/legal/privacy-policy
  Data Protection Officer: https://www.linkedin.com/help/linkedin/ask/TSO-DPO
  
  
• YouTube
  Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
  Privacy notice: https://policies.google.com/privacy?hl=de
  Data Protection Officer: https://support.google.com/policies/contact/general_privacy_form

For further information on the recipients of the respective technology, see in the Consent Management Tool here.

Cookies and other tracking technologies can be deleted by users themselves or the setting of cookies can be prevented or blocked. In this case, users must call up the help pages of their web browser in order to make the corresponding browser settings. However, the settings made there only relate to the browser used and set in this way. If users delete or prevent so-called essential tracking technologies, they will not be able to visit or use the corresponding digital services or the functionality of the digital services may be impaired.

If the browser cache is not cleared, the data remains there even when the browser window is closed and the program is terminated and can still be read out.

For more information on the storage period of the respective tracking technology and the possibility to prevent or block the setting of individual cookies, or to delete individual cookies, see in the Consent Management Tool here.

Stored personal data will be deleted once they are no longer necessary for the achievement of the respective purpose of their processing, or after receipt of the objection or the withdrawal of consent will no longer be processed for the associated purpose and, if necessary, subsequently deleted, unless the conditions of applicable statutory exceptions are met. Evidence of consent given is stored for a maximum of three years after the date on which the consent is withdrawn or otherwise becomes invalid.

When visiting the digital services of Messe München, users can actively consent to the use of cookies and tracking technologies that are not necessary for the operation or functioning of the digital services (i.e. the categories Functional, Statistics and External Technologies) via the Consent Management Tool. Users can change their personal settings at any time via the Consent Management Tool and (de-)activate cookies and tracking technologies that are not necessary, either in their entirety or individually, and thus withdraw consent already given with effect for the future or also give their consent at a later point in time.

Rights of the data subjects pursuant to Art. 12-21 GDPR: the right to access personal data, the right to rectification, erasure and data portability as well as to restriction of processing. If consent has been given, this can be withdrawn at any time with effect for the future.

Rights of objection

Insofar as the processing is based on the legal basis of legitimate interest (Art. 6 (1) (f) GDPR) (see section 3 above), the data subject has the right to object to the processing of personal data at any time on grounds relating to the data subject's particular situation.

Furthermore, there is the right to object to the processing and use of data for marketing purposes at any time.

In order to exercise the rights, data subjects can contact the controller (and in case of joint controller, each of the joint controllers) at any time (for contact details, see section 1). If data subjects are of the opinion that the data processing violates data protection law, they have the right to lodge a complaint with the competent supervisory authority of their choice (Art. 77 GDPR in conjunction with section 19 of the German Federal Data Protection Act (Bundesdatenschutzgesetz)).