Dear Sir or Madam
With this data protection statement we would like to inform you about the processing of your personal data by "Bayern International – Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH" as well as the rights you are entitled to under data protection law. In doing so, we first want to provide you with information under the heading "General information", which applies to all data processed by "Bayern International – Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH". Under the heading "Special data processing" you will then find more detailed information on selected data processing operations.
Third parties such as online platforms like Facebook or YouTube, to which links are provided on our websites, may also collect, use or pass on information. This data protection statement does not apply to such third parties or their services and we cannot assume any responsibility for how these third parties may use any information they collect.
1 General information
1.1 Who is responsible for data processing and who is the data protection officer?
Responsible for data processing:
Bayerische Gesellschaft für
Internationale Wirtschaftsbeziehungen mbH
Rosenheimer Str. 143C
81671 Munich, Germany
Telephone: +49 89 660566-0
Fax: +49 89 660566-150
Contact details of the data protection officer:
Herr Andreas Bornhagen
1.2 Which personal data do we have from you and where does it come from?
The following data in particular belong to the categories of personal data processed:
- Your master data (first name, last name, name affixes, functions, date of birth if applicable)
- Contact details (postal address, landline and mobile telephone numbers, e-mail address and links to Xing, Linkedin and Facebook)
- If you provide us with further personal data (such as passport data) in order to participate, e.g. in an entrepreneur or delegation trip, at a joint company stand, or a KonferenzPlus measure abroad, we will use the data only for that particular trip or trade fair.
Your personal data are always collected directly from you when you contact us. In some cases, we also collect personal data from publicly accessible sources (such as the internet, trade fair catalogues, lists of participants at events, targeted contact searches with the help of sources such as the Bavarian foreign representative offices and technology networks in Germany and abroad).
When you hand us your business card or calling card, we assume that you have also given us your consent for your data to processed, in order to keep you informed about our services and offerings. We base this on Article 7 of the GDPR (conditions for consent) and regard the handover of your card as an unequivocal confirmatory act according to recital 32 of the GDPR. Subsequently, you can revoke your consent at any time, without stating your reasons, effective into the future.
1.3 For which purposes and on what legal basis are my data processed?
We process your personal data in compliance with the provisions of the EU General Data Protection Regulation (GDPR), the German Data Protection Act and all other relevant laws.
The purpose of data processing is to promote foreign trade and attract investors. These include in particular:
- The organisation of Bavarian participation in trade fairs and exhibitions as well as our own Bavarian events, including technical symposia within the framework of the Bavarian trade fair participation programme
- The organisation of cooperation exchanges in Germany and abroad, working together with various chambers and associations, and the promotion of local business cooperation
- The organisation of visits to Bavaria by foreign business delegations and Bavarian business delegations abroad
- The promotion of Bavaria as a business location
- The support of domestic and foreign companies in setting up and developing locations in Bavaria
- The organisation and management of basic and further training programmes for the benefit of the Bavarian export industry
Your personal data will be processed:
- If you have consented to processing on the basis of article 6(1a) GDPR
- If we perform public duties in the context of foreign trade and investor advertising on the basis of article 6(1e) GDPR
- On the basis of article 6(1f) GDPR, in order to safeguard Bayern International's legitimate interests in promoting foreign trade and attracting investors.
1.4 How long will your data be stored?
We regularly check and update our databases. We delete your personal data as soon as they are no longer required for the above-mentioned purposes. We also delete your data whenever you exercise your right of revocation or objection, unless we are legally obliged to store the data.
1.5 Who receives your data?
Within "Bayern International – Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH", the persons and entities that require your personal data to perform the above-mentioned tasks performed by Bayern International will receive them.
Furthermore, we employ external service providers such as trade fair management companies, marketing and event agencies, travel agencies and publishing houses to perform work on our behalf. In order to send you information, invitations and newsletters we commission service providers to process your data in accordance with our instructions. We oblige these service providers to protect your data in accordance with the law.
If applicable, your data will be transmitted to the competent supervisory and audit authorities in order to exercise the respective control rights.
1.6 Which rights can you assert as a data subject?
You have the rights provided for under articles 15 to 22 GDPR:
- Right of access by the data subject (article 15 GDPR): If your personal data are processed, you have the right to obtain information about the data stored pertaining to your person.
- Right to rectification (article 16 GDPR): Should incorrect personal data be processed, you have a right to rectification.
- Right to erasure ('right to be forgotten'), right to restriction of processing and right to object (articles 17, 18 and 21 GDPR): If the legal requirements are met, you can request the deletion or restriction of processing and file an objection against the processing.
- Right to data portability (article 20 GDPR): If you have consented to data processing or a contract for data processing exists and data processing is carried out using automated procedures, you may have a right to data portability.
Right of revocation in case of consent
If the data processing is based on your consent in accordance with article 6(1a) GDPR, it can be revoked at any time for future use. The legality of data processing prior to your revocation of consent is not affected.
If we process your data to safeguard legitimate interests in accordance with article 6(1) sentence (1f) GDPR, you may object to such processing for reasons arising from your particular situation.
If you wish to revoke or assert any of the above rights, please contact us at:
Bayern International –
Bayerische Gesellschaft für
Internationale Wirtschaftsbeziehungen mbH
Rosenheimer Str. 143C
81671 Munich, Germany
For further information on the processing of your personal data, please contact us using the contact details above.
1.7 Where can you complain?
You also have the option to contact the data protection officer (for contact options please see above) or the data protection supervisory authority if you have a complaint. The data protection supervisory authority responsible for us is:
Bayerisches Landesamt für Datenschutzaufsicht
91522 Ansbach, Germany
Telephone: +49 981 53 1300
Fax: +49 981 53 98 1300
1.8 Will your data be transferred to a third country?
We collaborate with partners in foreign countries who assist us in our work (e.g. chambers of commerce abroad, travel agencies; see also number 5). We transmit your personal data to foreign countries to the extent required to perform this work.
1.9 Are you obliged to provide your data?
You are not obliged to provide your personal data either by law or by contract. You are not obliged to provide us with your personal data. However, if you do not provide your data, you will no longer receive any information, invitations, etc. from us.
1.10 To what extent are automated individual decisions made or profiling measures carried out?
We do not use fully automated processing to bring about a decision.
2 Special data processing
2.1 Internet website of "Bayern International – Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH"
Data subjects can prevent our website from placing cookies at any time by means of a respective setting in their internet browser and thus permanently object to the placing of cookies. Furthermore, cookies that have already been placed can be deleted at any time via an internet browser or other software programs. This is possible in all common internet browsers. If the data subject disables the placing of cookies in the internet browser used, some functions of our website may not be fully usable.
2.1.2 Collection of general data and information
The website of "Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH" collects a series of general data and information each time a data subject or an automated system accesses the website. This general data and information is stored in the log files of the server. The website may record (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system is referred to our website (a so-called referrer), (4) the subwebsites that are accessed via an accessing system on our website, (5) the date and time of access to the website, (6) an internet protocol address (IP address), (7) the internet service providers of the accessing system, and (8) other similar data and information that are used for security purposes in the event of attacks on our information technology systems.
"Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH" does not draw any conclusions about the data subject when using this general data and information. In fact, this information is required to (1) correctly deliver the contents of our website, (2) optimise the contents of our website and the advertising for it, (3) ensure the permanent functionality of our information technology systems and the technology of our website, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in the event of a cyber attack. These anonymously collected data and items of information are therefore analysed statistically by "Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH" with the aim of increasing data protection and data security within our company in order to ultimately ensure an optimal level of protection for the personal data processed by us. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.
2.1.3 Use of databases and applications
On the website of "Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH", users are given the opportunity to use various databases and services provided by our company. Details of the type of personal data transmitted to the data controller when using the respective service or database depends on the input masks used for this purpose.
- Event database
The information entered in the forms "Registration", "Interested?" and "Interested in further events?" including the contact data provided will be stored for the purpose of processing the registration or request and in order to answer any follow-up questions.
The data entered in the user profile will only be used to automatically complete the respective form fields and to contact the data subject if the need arises.
The information in the forms for travel registration, booking and entry in the delegation brochure may be passed on to the service provider entrusted with the implementation.
The data stored in the user profile is used exclusively for logging in and to answer any queries that may arise.
The information entered in the registration forms, including contact details, will be stored for the purpose of processing the registration and in order to answer any follow-up questions.
- Key-to-Bavaria database
The names of the managing directors of the companies and institutions recorded in the Key-to-Bavaria database appear publicly on the details page of the entry. Exceptions are entries that are excluded from publication.
The contact data of the registered contact person and the company e-mail address entered are also used for event-related information about activities, services, events and other news, for information on data maintenance and database extensions and also for the administration of the database entry via the Key-to-Bavaria application: www.bayern-international.de/firmendatenbank/eintrag-aendern-loeschen/
The data entered in the order form will be used exclusively for processing orders and deliveries and to answer any queries that may arise.
2.1.4 Subscription to our newsletter
On the website of "Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH", users are given the opportunity to subscribe to our organisation's newsletter. The type of personal data transmitted to the data controller when ordering the newsletter depend on the input mask used for this purpose.
"Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH" informs its customers and business partners at regular intervals about the products and services it offers by means of a newsletter. The data subject can only receive the company newsletter if (1) the respective data subject has a valid e-mail address and (2) the data subject registers to have the newsletter sent to them. For legal reasons, a confirmation e-mail using the double opt-in procedure is sent to the e-mail address entered by a data subject for the first time prior to sending the newsletter. This confirmation e-mail serves to check whether the owner of the e-mail address has authorised the receipt of the newsletter as the data subject.
Furthermore, when a registration for the newsletter is received, we store the IP address of the computer system used by the data subject at the time of registration assigned by the Internet Service Provider (ISP) as well as the date and time of registration. The data need to be collected in order to trace any (possible) misuse of a data subject's e-mail address at a later point in time and therefore serves the legal protection of the data controller.
The personal data collected when a data subject registers for the newsletter will be used for sending our newsletter. Moreover, subscribers to the newsletter may be informed by e-mail to the extent necessary for operating the newsletter service or for registration purposes, as could be the case in the event of changes to what the newsletter offers or changes in technical conditions. Data subjects can cancel their subscription to our newsletter at any time. Consent to the storage of personal data, which the data subject gives us prior to sending the newsletter, can be revoked at any time. A corresponding link is available in every newsletter for the purpose of revoking consent. It is also possible at any time to unsubscribe directly from the newsletter on the website of the data controller or to inform the person responsible for the data processing in another way.
2.1.5 Newsletter tracking
The newsletters sent by "Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH" contain so-called tracking bugs. A tracking bug is a miniature graphic embedded in e-mails that is sent in HTML format to enable log file recording and analysis. It enables the success or failure of online marketing campaigns to be statistically analysed. Using the embedded tracking bug, "Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH" can determine whether and when an e-mail was opened by a data subject and which links in the e-mail were accessed by the data subject.
Personal data collected via tracking bugs contained in newsletters are stored and analysed by the data controller in order to optimise the sending of the newsletter and to adapt the content of future newsletters even more closely to suit the interests of the data subject. Data subjects are entitled to revoke the respective separate declaration of consent given via the double-opt-in procedure at any time. After revocation, these personal data will be deleted by the data controller. "Bayerische Gesellschaft für Internationale Wirtschaftsbeziehungen mbH" automatically interprets the act of unsubscribing from the newsletter as a revocation.
2.1.6 Data protection regulations regarding the use of Matomo
The data controller has integrated the Matomo component on this website. Matomo is an open source software tool designed for the purpose of web analysis. Web analysis is the collection and evaluation of data regarding the behaviour of visitors to internet websites. Among other information, a web analysis tool collects data on which website referred a data subject to a website (a so-called referrer), which subpages of the website were accessed and how often and for how long a subpage was viewed. A web analysis is mainly used to optimise a website and for the cost-benefit analysis of internet advertising.
The software is operated on the server of the data controller. The data protection-sensitive log files are stored exclusively on this server.
The purpose of the Matomo component is to analyse the flow of visitors to our website. Among other reasons, the data controller uses the data and information obtained to analyse the use of this website in order to compile online reports showing the activities on our website.
Matomo places a cookie on the information technology system of the data subject. The meaning of the term 'cookies' has already been explained above. The placing of cookies enables us to analyse the use of our website. Each time one of the individual pages of this website is accessed, the Matomo component causes the internet browser on the data subject's information technology system to automatically transmit data to our server for the purpose of online analysis. As part of this technical procedure, we obtain knowledge of personal data such as the data subject's IP address, which enables us to trace the origin of visitors and clicks, among other things.
Cookies are used to store personal information such as access time, the location from which the website was accessed and the frequency of visits to our website. Whenever a data subject visits our website, these personal data, including the IP address of the internet connection used by the data subject, is transmitted to our server. This personal data is stored by us.
As previously described above, data subjects can prevent our website from placing cookies at any time by using the appropriate setting in their internet browser and thus permanently object to the placing of cookies. Setting the internet browser accordingly will also prevent Matomo from placing a cookie on the data subject's information technology system. Moreover, a cookie previously placed by Matomo can be deleted via an internet browser or other software programs at any time.
The data subject also has the option to object to the collection of data generated by Matomo relating to the use of this website and to prevent the data from being collected. In order to do so, the data subject needs to set "Do Not Track" in his or her browser.
However, by placing the opt-out cookie, the data controller's website may no longer be fully usable by the data subject.