Data protection when using IAA webpages

We take the protection of your personal data very seriously. Below you will find an overview of how we process your personal data, as well as of your rights afforded to you by data protection law.

We take the protection of your personal data very seriously. Below you will find an overview of how we process your personal data, as well as of your rights afforded to you by data protection law.

Data protection when using IAA webpages

We take the protection of your personal data very seriously. Below you will find an overview of how we process your personal data, as well as of your rights afforded to you by data protection law.

For more details on video surveillance at the Open Space during the IAA, click here.

1. Contact information

The following party is responsible for data protection:
Verband der Automobilindustrie e. V. (VDA)
Behrenstr. 35
10117 Berlin
Tel.: +49 30 897842-0
Fax: +49 30 897842-600
Email: [email protected]

Please contact our Data Protection Officer with any questions about data protection and to exercise your rights afforded to you by data protection law (see section 7).

You can reach our Data Protection Officer in the following ways:

Rechtsanwalt Nikolaus Bertermann
daspro GmbH,
Kurfürstendamm 21,
10719 Berlin
[email protected]

2. Video surveillance

Event areas will be video-monitored as part of the IAA. These areas are marked by appropriate signs. The recordings as well as their storage are made for the purposes of protecting vital interests of the data subject or other natural persons, managing visitor flows, coordinating rescue operations, exercising house and site rights, preventing, detecting and prosecuting criminal offences and enforcing civil claims. The legal basis for the processing of the data is the legitimate interest of the controller in the protection of life, health and freedom (prevention of overcrowding scenarios), in ensuring sufficient escape routes and the requirements of the Ordinance on Places of Assembly, in the detection and prevention of criminal acts, in the preservation of evidence in the event of an incident, in the prosecution of criminal acts, in the protection of property and possessions, and in the safeguarding of the house right and the rules of the square pursuant to Art. 6 (1) para. f GDPR.

Recordings made by video surveillance systems will be deleted after one hour during IAA opening hours and at the latest by 12:00 noon the following day outside opening hours. The recordings are only evaluated in the event of a suspected criminal offense. In such cases, the relevant data may be forwarded to law enforcement agencies, courts and lawyers. In the case of civil claims, the recordings are stored until the legal conclusion of the proceedings. Service providers are used for data processing, in each case within the framework of commissioned processing in accordance with Art. 28 DSGVO. Only selected employees have access to the recordings. There is no transfer of data to third countries.

It is not possible to enter the monitored area without being recorded by the video surveillance.

3. Which sources and data we use

We only process the personal data required for the specific purpose of the processing (see section 3). These are data that we have received directly from you (e.g., that you have provided when registering for the newsletter).

4. Why we process your data (purpose of processing) and the legal basis for this processing

We process the aforementioned personal data in compliance with the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). The Verband represents and promotes the interests of the entire German automotive industry. This is why the VDA organizes the IAA, which has grown into a leading trade fair for the mobility industry. The two trade fairs IAA MOBILITY and IAA TRANSPORTATION are held on an alternating, annual basis:

Internet presence

The VDA seeks to use a properly functioning web presence and optimized rendering of its services on the IAA webpages, among other things, to ensure the proper organization of an appealing trade fair, and thus represent the interests of the automotive industry. This constitutes a justified interest as defined in Art. 6 para. 1 f) GDPR for the following types of data processing (provided these concern the processing of personal data by the VDA):

Server log files

Every visit to our web presence and any access to a file located therein is logged. Storage hereof intends to serve system-related and statistical purposes. The following data are logged: name of the accessed file, data and time of access, amount of data transmitted, report of successful access, web browser, and requesting domain. The IP addresses of the requesting computers are also logged. Art. 6 para. 1 f), which authorizes the processing of data to fulfill a contract or pre-contractual measures, serves as the legal basis for this.

Cookies

Some of the webpages use cookies. Cookies do not harm your computer, nor do they contain any viruses. Cookies serve to make our presence more user-friendly, effective, and secure. Cookies are small text files that are saved by your browser and stored on your computer.
Most of the cookies we use are called “session cookies”, which are deleted automatically after your visit. Other cookies remain on your end device until you delete them or they expire. These cookies allow us to recognize your browser when you visit our website again in the future.

Your consent is required for all cookies that are not necessary. Such cookies are only used if you have granted your consent for their use.
We show you a “cookie banner” when you visit our website to inform you that we use cookies and other tracking technology to improve the user experience on our website, as well as for purposes of web analysis and interest-based advertising. You are also able to adjust your cookie preferences and to consent to the use of optional cookies.

As stated in the cookie banner, you consent to this use by clicking the “Allow all” button on the cookie banner. However, if you click “Allow selection” or “Reject” without clicking on all possible cookies, or don’t make a decision at all, no optional cookies will be used.

We also store your consent and any selection of cookies in another cookie on your end device so that, when you visit our website again in the future, we can recognize whether you have granted your consent. This means that the cookie banner is not shown every time you return to our website.

Cookie settings

You can partially or entirely revoke your consent with effect for the future at any time. Below is a detailed overview of your options in this regard.

The following link lets you view your cookie settings and change them if necessary:

Mandatory cookies cannot be disabled via this link.

You can also configure your browser so that you are informed of the use of cookies and you can allow cookies only on a case-by-case basis, reject the use of cookies in certain cases or in general, or automatically delete cookies when you close your browser. The deactivation of cookies may limit the functionality of this website.

Social media and plugins

Function "Recommend page":
Our website offers the following social media function: Share or recommend page to the following social media platforms: Facebook, Twitter, LinkedIn

Our website lets users of social media platforms share the IAA website via links on the social media platforms, which are designated by their respective icons. Clicking on the links will direct you away from the IAA website and to the website of the respective social media platform. Only if you click on the respective icon will data be transmitted with the respective social media administrators. If you click on such an icon, a webpage of the respective social media platform will open in a pop-up window. Clicking on this icon may result in a data transfer between the user and the provider of the social media platform, and this does occur if the user logs in on the social media platform after clicking on the icon. We have no knowledge of nor influence over which data are transmitted to the respective provider when activating the social plugins, nor for which purposes these providers use said data.

Twitter

Our website contains content from Twitter. This content is provided by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. If you visit a subpage that contains content from Twitter, a connection is formed with Twitter’s servers in order to display the content. Data are transferred to Twitter during this process. If you are logged in to your Twitter account, Twitter may allocate your browsing behavior with your account. Learn more about Twitter’s processing of data and how you can protect your privacy at https://twitter.com/en/privacy. The integration of Twitter content is based on Art. 6 para. 1 f) GDPR so that we can configure our web presence in an appealing manner.

YouTube

Our website uses plugins for Google’s YouTube website. These pages are operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. Whenever you visit one of our webpages that has a YouTube plugin, a connection is formed with YouTube’s servers. The YouTube server is notified of which of our pages you have visited. If you are logged in to your YouTube account, you are allowing YouTube to directly allocate your browsing behavior to your personal profile. You can prevent this by logging out of your YouTube account. The use of YouTube serves to make our web presence more appealing, which constitutes a justified interest as per Art. 6 para. 1 f) GDPR. Learn more about the handling of user data in YouTube’s Privacy Policy at: https://policies.google.com/privacy?hl=en-US

Podigee Podcast

We use the podcast hosting service provided by Podigee GmbH, Schlesische Straße 20, 10997 Berlin, Germany. Podigee uploads or broadcasts the podcasts. Usage of this service is based on our justified interests, i.e., interest in the secure and efficient provision, analysis, and optimization of our podcast service pursuant to Art. 6 para. 1 (f) GDPR.

Podigee processes IP addresses and device information in order to facilitate the download/playing of podcasts and to record statistical data, such as the number of listens. Podigee anonymizes or pseudonymizes these data before saving them in the database if these data are not required to provide the podcast. Data are not transmitted to states outside of the EU. Further information, including about the right of objection, can be found in Podigee’s privacy policy: https://www.podigee.com/de/about/privacy/.

Analysis tools

Google Analytics

This website uses functions from the web analysis service Google Analytics, provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses cookies, which are small text files stored on your computer that allow analysis of your use of the website. The information about your use of this website generated by the cookie is sent to a Google server in the USA and stored there.

The storage of the Google Analytics cookies and the use of this analysis tool are compliant with Art. 6 para. 1 f) GDPR. The website administrator has a justified interest in the analysis of user behavior in order to optimize their web presence as well as their advertising.

We have enabled IP anonymization on this website. This means that Google truncates your IP address within member states of the European Union or in other signatory states of the Agreement on the European Economic Area before transmission to the USA. In exceptional cases, the full IP address is sent to a Google server in the USA and truncated there. The administrator of this website has commissioned Google to use this information to evaluate your use of the website, compile reports on website activities, and render further services pertaining to website and Internet use for the website administrator. Google does not consolidate the IP address transmitted by your browser via Google Analytics with other data.

You can prevent the storage of cookies by configuring your browser software accordingly. However, if you do so, you may not be able to use all functions of this website in their entirety. You can also prevent the recording of the data generated by the cookie pertaining to your use of the website (including IP address) and the transmission thereof to Google, as well as the processing of these data by Google, by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

Matomo

This website uses the open-source web analysis service Matomo. Matomo allows us to evaluate your use of the website in compliance with data protection regulations in order to gauge the success of our web presence, improve our services, and make the content thereof more interesting. Matomo does not store cookies on your end device for this purpose, and instead uses a process known as “fingerprinting”, which records website use with automatically transmitted information (e.g., IP address, screen resolution, page URL) in combination with the user’s browser settings. The IP address is immediately pseudonymized. Due to these requirements, visits to the website and to individual webpages may be recorded, but it is not possible to identify the individual user. If you would like to prevent the recording of your page visits in general, you can enable the “do not track” function in your browser. This applies to every page belonging to the “iaa-transportation.com” domain that you visit. The legal basis for this data processing is Art. 6 para. 1 f) GDPR. Because only automatically transmitted information can be used for the evaluation and no additional information is stored or read on end devices, § 25 para. 1 TTDSG does not apply to our use of Matomo.

You can also use the following opt-out option to prevent the recording of your page visits on this website. Please note that enabling this option will store a cookie on your system:

SalesViewer

We use the tool SalesViewer on this website. This employs a JavaScript-based code that serves to record company-related data and the corresponding use. The data recorded with this technology are encrypted via a non-recurring, one-way function (“hashing”). The data are immediately pseudonymized and not used to personally identify the visitor to this website.

The data stored for purposes of SalesViewer are deleted once they are no longer needed for their intended purpose and there are no legal retention obligations preventing said deletion.

The legal basis for the data processing is Art. 6 para. 1 a) and f) GDPR.

You can revoke your consent for the recording and storage of data at any time with effect for the future by clicking on this link https://www.salesviewer.com/opt-out so that SalesViewer® will not record data within this website. An opt-out cookie for this website is then stored on your device. If you delete the cookies in this browser, you will have to click this link again. Yan can also revoke your consent at any time via the “Privacy/cookies” function.

 

Trade Desk Retargeting Cookies

If the relevant consent has been provided, we use retargeting cookies from the Trade Desk advertising network on our website. For this purpose, we store in a cookie on the users’ devices that they have visited our website and viewed certain products. This enables us to display personalized advertising for our products on other websites within the Trade Desk advertising network.

Users can disable data processing by Trade Desk Retargeting for the browser they are currently using at any time in our "Cookie Board." You can also object to retargeting through this link: https://www.adsrvr.org/?AspxAutoDetectCookieSupport=1. Alternatively, users can disable Trade Desk Retargeting for the browser they are currently using by disabling the storage of cookies in the browser settings.

The purpose of data processing is to display targeted advertising for products that users have viewed on our website through the Trade Desk advertising network. We can only recognize clicks on our own ads, not any clicks on ads from other Trade Desk customers. Trade Desk uses the cookies, among other things, to invoice advertising costs to us. A change in purpose is not planned.

The processed data includes:
Trade Desk Retargeting HTTP Data:
This refers to data that is technically necessary when using the Trade Desk Retargeting tool on the website over the Hypertext Transfer Protocol (Secure) (HTTP(S)). This includes IP address, type and version of the users’ internet browser, operating system used, the page accessed, the previously visited page (referrer URL), date and time of access.

Trade Desk ID: The Trade Desk ID (TDID) is used to recognize web browser profiles over time across different websites.

Usage Data:
Usage data includes clicks on ads, the time spent on the website, and information about visited websites.

The legal basis for the processing of personal data on our website using Trade Desk Retargeting is consent (Art. 6 para. 1 lit. a) GDPR, § 25 para. 1 TTDSG).

The data is automatically provided by the user’s browser.

The recipient of the data within the scope of order processing is UK Trade Desk Ltd. (10th Floor, 1 Bartholomew Close, London EC1A 7BL, United Kingdom). UK Trade Desk Ltd. uses Trade Desk, Inc. in the USA (42 N. Chestnut St, Ventura, CA 93001, USA) as a service provider. UK Trade Desk Ltd. has entered into EU Standard Contractual Clauses (2021/914; Module 3) with Trade Desk, Inc. in the USA to protect users’ data. Users can request a copy of the essential contractual content of the EU Standard Contractual Clauses at any time. Additionally, Trade Desk, Inc. is certified under the EU-US Data Privacy Framework (Article 45 GDPR).

The Trade Desk ID expires 1 year after the last interaction with Trade Desk.

The provision of data is not legally or contractually required, nor is it necessary for the conclusion of a contract. There is no obligation to provide the data. If the data is not provided, we cannot perform Trade Desk Retargeting.

Adform

We use the tool Adform from Adform A/S Wildersgade 10B, sal. 1 DK-1408 Copenhagen, Denmark. Adform records data for analysis, marketing, and optimization purposes, thereby helping us to improve our marketing measures on our website. Adform uses these data to link marketing contacts and clicks on advertisements with the resulting use of our website. This allows us to determine whether Internet users who have seen our advertisements then visit our website, and to recognize which products they are interested in, thereby helping us optimize our marketing budget. We can also use the collected data to adjust advertisements on the basis of your interests (such as products you have viewed). Pseudonymous online identification numbers (online IDs) like cookie IDs, IP address, device IDs, marketing ID / IDFA (such as on Android or Apple smartphones) are used for this recording of data. No data that allow clear identification of a user, such as name or address, are stored. Every ID we use solely allows identification of your device, your Internet browser, or the app you are using. The recorded data are not used to personally identify you as a user of our website or app without your explicit consent. The legal basis for the data processing is Art. 6 para. 1 a) and f) GDPR in conjunction with § 15 para. 2 Telemedia Act (TMG). If you do not want Adform to record your data, follow the steps listed below:


The following links provide an explanation of how you can disable the recording of data on your computer or mobile end device:


German version:
https://site.adform.com/de/privacy-center/platform/widerrufsrecht/
English version:
https://site.adform.com/privacy-center/platform-privacy/opt-out/


Webmetic

If the corresponding consent has been given, we use the web analytics tool Webmetic on our website. With the help of Webmetic, we can analyze user behavior on our website in pseudonymized form.

Users can disable data processing by Webmetic at any time in our cookie settings or install a browser plug-in from Webmetic, which prevents data collection by Webmetic: https://t.webmetic.de/opt-out/. Alternatively, Webmetic cookies can be disabled for the currently used browser by disabling the storage of cookies in the browser settings.

The purposes of data processing are the analysis of user behavior and the measurement of reach on our website and of advertisements displayed to optimize our web offering. A change of purposes is not planned.

The processed data includes:

  • HTTP data: These are log data that accrue technically when using the web analytics tool Webmetic on the website via the Hypertext Transfer Protocol (Secure) (HTTP(S)): This includes IP address, type and version of your internet browser, operating system used, the page called up, the previously visited page (referrer URL), date and time of access.
  • End device data: Data generated by the web analytics tool Webmetic and assigned to your end device: This includes a unique ID for (re-)identifying recurring users (so-called "client ID"), as well as certain technical parameters for controlling data collection for web analytics.
  • Visitor behavior (e.g., visited subpages, time of visit, duration of visit)

The legal basis for processing is consent (Art. 6 para. 1 lit. a) GDPR, § 25 para. 1 TTDSG). The data is automatically provided by the user's browser.

The recipient of the data within the scope of order processing is Intent GmbH, Orionweg 5, 85609 Aschheim. The data will be deleted after 6 months.

The provision of data is not legally or contractually required or necessary for a contract conclusion. There is no obligation to provide the data. In the event of non-provision of the data, we cannot perform an analysis of user behavior using Webmetic.

Online exhibitor registration for IAA
If you are visiting online registration pages for exhibitors at IAA, we would like to inform you of the following additions, as you are leaving the www.iaa-mobility.com domain: The VDA would like to ensure smooth and convenient registration for IAA with properly functioning IAA exhibitor registration pages, among other things, thereby fulfilling the interests of the automotive industry. This constitutes a justified interest as defined in Art. 6 para. 1 f) GDPR for the following types of data processing (provided these concern the processing of personal data by VDA):
Server log files: Each visit to our web presence and access to a file stored therein is logged. This storage servers internal, system-related and statistical purposes. The name of the accessed file, data and time of access, quantity of data transmitted, notification of a successful visit, web browser, and requesting domain are logged. IP addresses of the requesting computers are also logged. The basis for this data processing is Art. 6 para. 1 f) GDPR, which authorizes the processing of data to fulfill a contract or pre-contractual measures.

Cookies:
We use three cookies in order to offer our service:
•    a session cookie in order to recognize you as a general user of our services
•    an authentication cookie in order to ensure that you are also able to access our content
•    an identity cookie in order to recognize you as an individual
All cookies are encrypted and do not contain any information specific to your person. All cookies must be accepted in order for our service to work properly. Your data remain stored in the cookie file in your browser while the connection is in place, but will be deleted upon closing your browser depending on the settings of your browser program. If you do not want to allow any cookies, you must reconfigure your browser settings accordingly. This may result in you being unable to utilize all of our website's interactive features as well as all of our services.
You can prevent Google Analytics from recording your data by clicking on the link: Deactivate Google Analytics. An opt-out cookie that will prevent the recording of your data during future visits to this website will be installed.
Learn more about how Google Analytics handles user data in Google’s Privacy Policy: https://support.google.com/analytics/answer/6004245?hl=en.
We have formed an order processing contract with Google, and fully implement the German data protection authorities’ strict requirements when using Google Analytics.
b) IAA Services
The VDA also offers various IAA-related services on its websites in order to organize the IAA and increase the trade fair’s appeal:
Exhibitor and co-exhibitor registration:

Interested companies sign up for the IAA via the exhibitor and co-exhibitor registration form. The exhibitors provide the necessary information when filling out the online registration. These data are processed for purposes of contract fulfillment as per Art. 6 para. 1 b) GDPR. The VDA commissions service providers for this purpose as per section 4.
List of exhibitors

Exhibitors and co-exhibitors at the IAA are listed on the IAA website and in the official app. The company’s name and booth number must be provided. The exhibitor/co-exhibitor can decide whether additional information about the company will be published. The legal basis for this data processing is Art. 6 para. 1 b) GDPR (contract fulfillment).
List of innovations

Exhibitors and co-exhibitors have the option of publishing innovations/debuts, and must fill out a form online to do so. The data required for this list will be processed in accordance with the legal basis of contract fulfillment as per Art. 6 para. 1 b) GDPR.
Press accreditation
Journalists are able to obtain credentials for the IAA. The data required for this can be entered in an online form. These data are processed for purposes of accreditation as per Art. 6 para. 1 b) GDPR.

Electronic press boxes

Exhibitors can publish their own press releases on the IAA website. The data provided by the exhibitors are processed in order to render this service as per Art. 6 para. 1 b) GDPR.

Newsletter
You are able to subscribe to a free newsletter on our website. The processing is based on Art. 6 para. 1 a) GDPR, with your consent. You can revoke your consent at any time without affecting the lawfulness of the processing rendered on the basis of your consent before you revoked it. You can unsubscribe from the newsletter at any time by using the link in the newsletter or by notifying us. Your email address and name will be removed from the mailing list. You also declare your consent to us evaluating individual user behavior via newsletter tracking, for which we evaluate your user behavior with tracking pixels and specific link URLs.

We use the double-opt-in process for registration to our newsletter. This means that after you register, we send an email to the email address you have provided in which we ask you to confirm that you would like to receive the newsletter.

Your data will be processed by a service provider we have commissioned for email marketing.
 

Organizing trade shows and informational events

For purposes of IAA, trade shows and informational events for which participants can register are held for professional and political discourse about the automotive industry. The required data must be entered into a contact form. The data are processed in order to fulfill contractual obligations (Art. 6 para. 1 b) GDPR). Should film recordings and/or photographs be taken during this event, you declare with your participation in VDA to the creation, processing, and use of the image, video, audio recordings for documentation purposes as well as for press and public relations pertaining to IAA. Your data are stored until you declare the revocation of your consent to us. Should you not consent, please contact [email protected]


School class promotion
Teachers can purchase discounted tickets for their classes or course groups via online pre-sale, or via certification of participation at the daytime ticket offices after pre-sale ends as of September 5. The teachers will provide the data required for the registration when signing up online, and these data will be processed for purposes of the registration and subsequent verification of the statements as per Art. 6 para. 1 b) GDPR.


Contact form
VDA can be contacted directly. To do so, you must enter the data required for communication in a contact form. VDA will only process the data you enter in the form for purposes of direct communication with you, and on the basis of your consent (Art. 6 para. 1 a) GDPR). The data you enter in the contact form remain with us until you request that we delete these data, you revoke your consent to the storage of these data, or the purpose for which these data were stored is no longer applicable (e.g., after your request has been fully processed and resolved). Compulsory legal regulations, such as retention periods, remain hereby unaffected.
 
5. Who receives my data
Access to your data within VDA is limited to those parties who require access in order to fulfill the purpose of the processing. VDA sometimes commissions third parties (such as for hosting services, newsletter dispatch, etc.) that process these data at our behest. We only employ these service providers if they follow our written data protection instructions and adhere to the EU General Data Protection Regulation (and the Federal Data Protection Act).

Banks and payment service providers
Banks and payment service providers may receive data for the processing of payments and credit checks. One of the payment service providers we utilize in the web shop is PAYONE (PAYONE GmbH, Lyoner Straße 15, 60528 Frankfurt am Main). When you pay on site at a stand during an event, we use the payment terminals provided by PAYONE to process the payment. In these instances, PAYONE also functions as an acquirer. PAYONE is solely responsible for its data processing. Further information on the processing of data by PAYONE can be found in its data privacy statement: https://www.payone.com/DE-de/dsgvo

The legal basis for the forwarding of payment information to payment service providers is fulfilment of the contract and the justified interest in conducting payments for purchases (Art. 6 clause 1 b) and f) GDPR). The legal basis for the retention of your data – that may be relevant for certain legal disputes – for the standard period of three years (legal standard limitation period) is the justified interest in protecting ourselves against potential claims (Art. 6 clause 1 f) GDPR). Personal data must be provided for the contract to come into effect.

Sale of products at events (IAA)
This is where we process data relevant to contracts. The legal basis for the forwarding of payment information to payment service providers is fulfilment of the contract and the justified interest in conducting payments for purchases (Art. 6 clause 1 b) and f) GDPR). The legal basis for the retention of your data – that may be relevant for certain legal disputes – for the standard period of three years (legal standard limitation period) is the justified interest in protecting ourselves against potential claims (Art. 6 clause 1 f) GDPR). Personal data must be provided for the contract to come into effect.

6. Security notice
We strive to take all technical and organizational measures to store your data such that they are not accessible to third parties.


7. How long will my data be stored?
How long your data are stored depends on the purpose of the processing. We then only store your data for as long as is required for the purposes for which they are being processed.

Should the data no longer be necessary to fulfill the intended purpose, they will be deleted, unless further processing is required for purposes of fulfilling commercial or fiscal retention obligations or to preserve evidence for statute of limitations requirements.

All data pertaining to contracts and bookkeeping are retained for ten calendar days after the end of the respective contract in accordance with the pertinent fiscal and commercial retention periods. Data relevant to the defense against potential claims are retained for three years (legal statute of limitations).


8. Your data protection rights
Disclosure, correction, deletion, limitation of processing, objection, data portability, complaints
You always have the opportunity to receive information on the origin, recipient, and purpose of personal data stored on you for free as per Art. 15 GDPR. Furthermore, you have the right to correction as per Art. 16 GDPR, deletion and erasure as per Art. 17 GDPR, limitation of processing as per Art. 18 GDPR, objection to processing as per Art. 21 GDPR, and the right to data portability as per Art. 20 GDPR. The limitations of §§ 34 and 35 BDSG apply to the rights to disclosure and deletion. You can contact [email protected] at any time with questions about your data protection rights. Contact information for the data controller and Data Protection Officer can be found in section 1. In the event of violations of data protection law, you have the right to file a complaint with a responsible supervisory authority as per Art. 77 GDPR in conjunction with § 19 BDSG.


Revocation
You can informally revoke your consent to data processing at any time by sending an email to [email protected] (further contact information in section 1). Your revocation is only effective for the future and is not retroactive, meaning that the processing of your data that occurred before you revoked your consent remains lawful.
Right to object pursuant to Art. 21 GDPR
You can object to the processing of your personal data for marketing purposes – including any profiling associated with the direct marketing – at any time without the need to specify why.

You also have a general right of objection (cf. Art. 21 para. 1 GDPR). In this instance, you are obligated to justify your objection to data processing.