Privacy legislation & Cookies

Data Protection at a Glance

General Information The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data includes all data with which you can be personally identified. For detailed information on the topic of data protection, please refer to our privacy policy listed below this text.

Data Collection on this Website Who is responsible for the data collection on this website? The data processing on this website is carried out by the website operator. Their contact details can be found in the section "Notice concerning the responsible party" in this privacy policy.

How do we collect your data? Your data is collected firstly by you providing it to us. This can be, for example, data that you enter into a contact form.

Other data is automatically collected by our IT systems when you visit the website. This mainly includes technical data (e.g., internet browser, operating system, or time of the page visit). This data is collected automatically as soon as you enter this website.

Is there an age restriction for data collection? We do not intend to collect data from visitors to our website who are younger than 16 years old. However, we cannot check the age of our visitors. We recommend that parents monitor their children's online activities to prevent data from being collected without parental consent.

What do we use your data for? We use your data (name, address, email address, telephone number) to:

Send you offers and conclude agreements with you;
Perform agreements that you have made with us or our customers (e.g., delivery of your tickets or processing your registration for a trade fair or event);
Share your registration for a trade fair or event with exhibitors by scanning your visitor badge, provided you have given your prior permission;
Send you information about our products and services, offers, events, and any changes related to an event, for example through our newsletter or social media;
Customize our product and service offerings to your personal preferences;
Inform you if you participate in a competition;
Analyze your visit to events;
Improve our services, for example through market research and surveys;
Conduct sales and marketing activities, such as developing and improving our products and/or services, customer service, customer segmentation, and profiling, as well as carrying out (targeted) marketing activities.

We use your IP address to:

Improve and protect our website;
Show you tailored advertisements through our advertising networks, including third-party websites;
Analyze your visit to our website;
Conduct sales and marketing activities, such as developing and improving our products and/or services, customer service, customer segmentation, and profiling, as well as carrying out (targeted) marketing activities.

What rights do you have regarding your data? You have the right at any time to receive free information about the origin, recipient, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given consent for data processing, you can revoke this consent at any time for the future. You also have the right to request the restriction of processing your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

For this and other questions about data protection, you can contact us at any time.

Analytics and Third-Party Tools When visiting this website, your browsing behavior can be statistically analyzed. This happens primarily using so-called analysis programs.

Detailed information about these analysis programs can be found in the following privacy policy.

Hosting and Content Delivery Networks (CDN)

External Hosting This website is hosted externally. The personal data collected on this website is stored on the servers of the host. This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website access, and other data generated through a website.

External hosting occurs for the purpose of fulfilling contracts with our potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of a secure, fast, and efficient provision of our online offer by a professional provider (Art. 6(1)(f) GDPR). If a corresponding consent was requested, the processing takes place exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TTDSG, provided the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) as defined in the TTDSG. The consent can be revoked at any time.

Our host(s) will process your data only to the extent necessary to fulfill their performance obligations and follow our instructions regarding this data.

We use the following host(s): Oxilion M.H. Tromplaan 52 A, 7513 AB Enschede, Netherlands.

Contract Processing We have concluded a contract on order processing (AVV) to use the above-mentioned service. This is a data protection contract required by law that ensures this service processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

Cloudflare We use the service "Cloudflare." The provider is Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA (hereinafter "Cloudflare").

Cloudflare provides a globally distributed content delivery network with DNS. Technically, the information transfer between your browser and our website is routed through Cloudflare's network. This enables Cloudflare to analyze the data traffic between your browser and our website and act as a filter between our servers and potentially malicious data traffic from the Internet. Cloudflare may also use cookies or other technologies for recognition of internet users, but these are only used for the purposes described here.

The use of Cloudflare is based on our legitimate interest in the most error-free and secure provision of our website offering (Art. 6(1)(f) GDPR).

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://www.cloudflare.com/privacypolicy/.

More information on security and data protection at Cloudflare can be found here: https://www.cloudflare.com/privacypolicy/.

The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Each company certified under the DPF commits to comply with these data protection standards. More information can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000GnZKAA0&status=Active.

General Information and Mandatory Information

Data Protection The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

When you use this website, various personal data are collected. Personal data is data that can personally identify you. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this happens.

We would like to point out that data transmission over the Internet (e.g., when communicating by email) may have security vulnerabilities. Complete protection of the data from access by third parties is not possible.

Notice concerning the responsible party The responsible party for data processing on this website is: Rotterdam Ahoy N.V. Ahoyweg 10 3084 BA Rotterdam Netherlands Phone: +31 (0) 10 29 33 300 Email: [email protected]

The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Storage Duration Unless a more specific storage period has been specified within this privacy policy, your personal data will remain with us until the purpose for the data processing ceases to apply. If you assert a legitimate request for deletion or revoke consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods); in the latter case, the deletion will take place after these reasons cease to apply.

General Information on the Legal Basis for Data Processing on this Website If you have consented to data processing, we process your personal data based on Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR if special categories of data are processed according to Art. 9(1) GDPR. In case of explicit consent to the transfer of personal data to third countries, data processing is also based on Art. 49(1)(a) GDPR. If you have consented to the storage of cookies or the access to information in your end device (e.g., via device fingerprinting), data processing is additionally based on § 25(1) TTDSG. The consent can be revoked at any time. If your data is necessary for the fulfillment of a contract or for the implementation of pre-contractual measures, we process your data based on Art. 6(1)(b) GDPR. Furthermore, if your data is necessary for the fulfillment of a legal obligation, we process it based on Art. 6(1)(c) GDPR. The data processing may also be based on our legitimate interest according to Art. 6(1)(f) GDPR. The relevant legal bases for each case are provided in the following paragraphs of this privacy policy.

Data Protection Officer We have appointed a data protection officer. Rotterdam Ahoy N.V. Desiré van der Wilt Ahoyweg 10 3084 BA Rotterdam Netherlands Phone: 0031 (0)10 293 33 00 Email: [email protected]

Notice regarding data transfer to unsafe third countries and the transfer to US companies not certified under DPF We use tools from companies based in unsafe third countries from a data protection perspective and US tools whose providers are not certified under the EU-US Data Privacy Framework (DPF). If these tools are active, your personal data can be transferred to these states and processed there. We would like to point out that in unsafe third countries no data protection level comparable to that in the EU can be guaranteed.

We would like to point out that the USA as a safe third country generally has a data protection level comparable to that of the EU. Data transfer to the USA is permissible if the recipient is certified under the "EU-US Data Privacy Framework" (DPF) or has suitable additional guarantees. Information on transfers to third countries, including the data recipients, can be found in this privacy policy.

Recipients of Personal Data As part of our business activities, we work with various internal and external entities. This sometimes also requires the transmission of personal data to internal entities (subsidiaries/sister companies within the Ahoy group) and external entities (e.g., co-production organizers). We only pass on personal data to external entities if this is necessary for the fulfillment of a contract, if we are legally obliged to do so (e.g., transfer of data to tax authorities), if we have a legitimate interest in the transfer (Art. 6(1)(f) GDPR), or if another legal basis permits the data transfer. When using processors, we only transfer personal data of our customers based on a valid order processing contract. In the case of joint processing, a joint processing contract is concluded.

Revocation of Your Consent to Data Processing Many data processing operations are only possible with your express consent. You can revoke an already given consent at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to Object to Data Collection in Special Cases and to Direct Advertising (Art. 21 GDPR) IF DATA PROCESSING IS BASED ON ART. 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OUTWEIGH YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS (OBJECTION UNDER ART. 21(1) GDPR).

IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING; THIS ALSO APPLIES TO PROFILING TO THE EXTENT THAT IT IS RELATED TO SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR DIRECT ADVERTISING PURPOSES (OBJECTION UNDER ART. 21(2) GDPR).

Right to Lodge a Complaint with the Competent Supervisory Authority In the event of breaches of the GDPR, the data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, their place of work, or the place of the alleged breach. The right to lodge a complaint is without prejudice to any other administrative or judicial remedies.

Right to Data Portability You have the right to have data that we process based on your consent or in fulfillment of a contract automatically processed to yourself or a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done to the extent technically feasible.

Access, Rectification, and Deletion Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, their origin and recipients, and the purpose of the data processing and, if necessary, a right to rectification or deletion of this data. For this, as well as for further questions on the topic of personal data, you can contact us at any time.

If you wish to exercise any of the rights mentioned above, please contact us by sending an email to [email protected]. We will endeavor to process your request within four weeks of receipt.

Right to Restriction of Processing You have the right to request the restriction of the processing of your personal data. For this, you can contact us at any time. The right to restriction of processing exists in the following cases:

If you dispute the accuracy of your personal data stored with us, we usually need time to verify this. For the duration of the verification, you have the right to request the restriction of the processing of your personal data.
If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of deletion.
If we no longer need your personal data, but you need it to exercise, defend, or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
If you have filed an objection under Art. 21(1) GDPR, a balance must be struck between your and our interests. As long as it is not yet clear whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, this data - apart from being stored - may only be processed with your consent or for asserting, exercising, or defending legal claims or for protecting the rights of another natural or legal person or for reasons of important public interest of the European Union or a member state.

SSL or TLS Encryption This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by changing the browser's address line from "http://" to "https://" and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Objection to Promotional Emails We hereby object to the use of contact data published within the scope of the imprint obligation to send unsolicited advertising and information materials. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam emails.

Data Collection on This Website

Cookies Our internet pages use so-called "cookies." Cookies are small data packages that do not harm your end device. They are either stored temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your end device. Session cookies are automatically deleted after your visit. Permanent cookies remain on your end device until you delete them yourself or until your web browser deletes them automatically.

Cookies can be from us (first-party cookies) or third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain services of third-party companies within websites (e.g., cookies for processing payment services).

Cookies have various functions. Numerous cookies are technically necessary since certain website functions would not work without them (e.g., the shopping cart function or the display of videos). Other cookies may be used to evaluate user behavior or for advertising purposes.

Cookies required for the electronic communication process, the provision of certain functions you desire (e.g., for the shopping cart function), or the optimization of the website (e.g., cookies for measuring the web audience) are stored based on Art. 6(1)(f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in the storage of necessary cookies for the technically error-free and optimized provision of its services. If consent to the storage of cookies and comparable recognition technologies has been requested, processing is carried out exclusively on the basis of this consent (Art. 6(1)(a) GDPR and § 25(1) TTDSG); the consent can be revoked at any time.

You can set your browser to inform you about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. When cookies are deactivated, the functionality of this website may be limited.

Which cookies and services are used on this website can be found in this privacy policy.

Consent with Cookiebot Our website uses the consent technology of Cookiebot to obtain your consent to store certain cookies on your end device or use certain technologies and to document this in a data protection-compliant manner. The provider of this technology is Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter "Cookiebot").

When you enter our website, a connection to the Cookiebot servers is established to obtain your consent and other declarations regarding cookie use. Cookiebot then stores a cookie in your browser to assign the consents given or their revocation. The collected data is stored until you ask us to delete it, the Cookiebot cookie is deleted, or the purpose for data storage no longer applies. Mandatory legal retention periods remain unaffected.

The use of Cookiebot takes place to obtain the legally required consents for the use of cookies. The legal basis is Art. 6(1)(c) GDPR.

Server Log Files The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

Browser type and browser version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of the server request
IP address

This data is not merged with other data sources.

The collection of this data is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website - for this, the server log files must be recorded.

Contact Form If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. We do not pass on this data without your consent.

The processing of this data is based on Art. 6(1)(b) GDPR if your request is related to the fulfillment of a contract or necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in effectively processing the inquiries addressed to us (Art. 6(1)(f) GDPR) or your consent (Art. 6(1)(a) GDPR) if this has been requested; the consent can be revoked at any time.

The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your inquiry has been processed). Mandatory legal provisions - especially retention periods - remain unaffected.

Inquiry by Email, Telephone, or Fax If you contact us by email, telephone, or fax, your inquiry, including all resulting personal data (name, inquiry), will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.

The data you send us via contact requests remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal provisions - especially legal retention periods - remain unaffected.

Social Media

Facebook Elements of the social network Facebook are integrated on this website. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. According to Facebook, the collected data is also transferred to the USA and other third countries.

An overview of the Facebook social media elements can be found here: https://developers.facebook.com/docs/plugins/?locale=en_US.

When the social media element is active, a direct connection is established between your end device and the Facebook server. Facebook thereby receives the information that you have visited this website with your IP address. If you click the Facebook "Like" button while logged into your Facebook account, you can link the content of this website to your Facebook profile. This allows Facebook to assign the visit to this website to your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Facebook. For more information, see Facebook’s privacy policy: https://www.facebook.com/privacy/explanation.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. The consent can be revoked at any time.

Insofar as personal data is collected on our website using the described tool and forwarded to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). The joint responsibility is limited to the collection of the data and its forwarding to Facebook. The processing by Facebook that takes place after the forwarding is not part of the joint responsibility. The obligations we share have been set out in a joint processing agreement. The text of the agreement can be found here: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing the data protection information when using the Facebook tool and for implementing the tool on our website in a data protection-compliant manner. Facebook is responsible for the data security of the Facebook products. Data subject rights (e.g., access requests) regarding the data processed by Facebook can be asserted directly with Facebook. If you assert the data subject rights with us, we are obliged to forward them to Facebook.

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://www.facebook.com/help/566994660333381, and https://www.facebook.com/policy.php.

X (formerly Twitter) Functions of the X service (formerly Twitter) are integrated on this website. These functions are offered by the parent company X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. For the data processing of persons outside the USA, the Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland, is responsible.

When the social media element is active, a direct connection is established between your end device and the X server. X (formerly Twitter) thereby receives information about your visit to this website. By using X (formerly Twitter) and the "Re-Tweet" or "Repost" function, the websites you visit are linked to your X (formerly Twitter) account and made known to other users. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by X (formerly Twitter). For more information, see the X (formerly Twitter) privacy policy: https://twitter.com/privacy.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. The consent can be revoked at any time.

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://gdpr.twitter.com/en/controller-to-controller-transfers.html.

You can change your privacy settings at X (formerly Twitter) in the account settings at https://twitter.com/account/settings.

LinkedIn This website uses elements of the LinkedIn network. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

Each time you access a page on this website that contains LinkedIn elements, a connection to LinkedIn’s servers is established. LinkedIn is informed that you have visited this website with your IP address. If you click the "Recommend" button on LinkedIn and are logged into your LinkedIn account, LinkedIn can associate your visit to this website with you and your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by LinkedIn.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. The consent can be revoked at any time.

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://www.linkedin.com/help/linkedin/answer/1343190/data-transfers-from-the-eu-eea-and-switzerland?lang=en.

For more information, see LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy.

Analytics and Advertising Tools

Google Tag Manager We use Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Tag Manager is a tool that allows us to integrate tracking or statistical tools and other technologies on our website. Google Tag Manager itself does not create user profiles, store cookies, or perform any independent analyses. It only manages and plays out the tools integrated through it. However, Google Tag Manager records your IP address, which may also be transferred to Google's parent company in the United States.

The use of Google Tag Manager is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the quick and uncomplicated integration and management of various tools on their website. If a corresponding consent was requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TTDSG, provided the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) as defined in the TTDSG. The consent can be revoked at any time.

Google Analytics This website uses features of the web analytics service Google Analytics. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the website operator to analyze the behavior of website visitors. The website operator receives various usage data, such as page views, duration of visit, operating systems used, and origin of the user. This data is assigned to the respective end device of the user. No assignment to a user ID takes place.

We can also use Google Analytics to record your mouse and scroll movements and clicks. Furthermore, Google Analytics uses various modeling approaches to complement the data sets collected and applies machine learning technologies in data analysis.

Google Analytics uses technologies that allow the recognition of the user for the purpose of analyzing user behavior (e.g., cookies or device fingerprinting). The information collected by Google about the use of this website is generally transferred to a Google server in the USA and stored there.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. The consent can be revoked at any time.

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/.

IP Anonymization The IP anonymization feature is activated on this website. As a result, your IP address will be truncated by Google within member states of the European Union or other states party to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, compile reports on website activities, and provide other services related to website and internet usage to the website operator. The IP address transmitted by your browser within the scope of Google Analytics will not be merged with other Google data.

Browser Plugin You can prevent the collection and processing of your data by Google by downloading and installing the browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

More information on handling user data with Google Analytics can be found in Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.

Google Signals We use Google Signals. When you visit our website, Google Analytics collects, among other things, your location, search history, YouTube history, and demographic data (visitor data). This data can be used to provide personalized advertising with the help of Google Signal. If you have a Google account, the visitor data from Google Signal will be linked to your Google account and used for personalized advertising messages. The data is also used to create anonymized statistics on user behavior.

Contract Processing We have concluded a contract for order processing with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

Clarity This website uses Clarity. The provider is Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland, https://docs.microsoft.com/en-us/clarity/ (hereinafter "Clarity").

Clarity is a tool for analyzing user behavior on this website. Clarity, in particular, records mouse movements and creates a graphical representation of which parts of the website users scroll through frequently (heatmaps). Clarity can also record sessions so that we can view the usage of the site in video form. Furthermore, we receive information about the general user behavior within our website.

Clarity uses technologies that allow the recognition of the user for the purpose of analyzing user behavior (e.g., cookies or device fingerprinting). Your personal data is stored on the servers of Microsoft (Microsoft Azure Cloud Service) in the USA.

If consent was requested, the use of the above-mentioned service is based exclusively on Art. 6(1)(a) GDPR and § 25 TTDSG. The consent can be revoked at any time. If no consent was requested, the use of this service is based on Art. 6(1)(f) GDPR; the website operator has a legitimate interest in effective user analysis.

More details on Clarity’s privacy can be found here: https://docs.microsoft.com/en-us/clarity/faq.

Contract Processing We have concluded a contract for order processing (AVV) to use the above-mentioned service. This is a data protection contract required by law that ensures this service processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

Google Ads The website operator uses Google Ads. Google Ads is an online advertising program of Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Ads allows us to display advertisements in the Google search engine or on third-party websites when the user enters certain search terms on Google (keyword targeting). In addition, targeted advertisements can be played out based on the user data available on Google (e.g., location data and interests) (audience targeting). We can quantitatively evaluate this data by analyzing which search terms led to the display of our advertisements and how many ads led to corresponding clicks.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. The consent can be revoked at any time.

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://policies.google.com/privacy/frameworks and https://business.safety.google/controllerterms/.

Google Ads Remarketing This website uses the functions of Google Ads Remarketing. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

With Google Ads Remarketing, we can assign people who interact with our online offering to specific target groups to subsequently show them interest-based advertising within the Google advertising network (remarketing or retargeting).

Furthermore, the advertising target groups created with Google Ads Remarketing can be linked to Google’s cross-device capabilities. This allows interest-based, personalized advertising messages that have been customized based on your previous usage and browsing behavior on one end device (e.g., cell phone) to be displayed on another of your devices (e.g., tablet or PC).

If you have a Google account, you can opt out of personalized advertising under the following link: https://adssettings.google.com/authenticated.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. The consent can be revoked at any time.

Further information and the privacy policy can be found in Google’s privacy policy: https://policies.google.com/technologies/ads.

Audience Creation with Customer Matching To create target audiences, we use, among other things, Google Ads Remarketing’s customer matching. Here we transfer certain customer data (e.g., email addresses) from our customer lists to Google. If the respective customers are Google users and logged into their Google account, they will be shown appropriate advertising messages within the Google network (e.g., on YouTube, Gmail, or in the search engine).

Google Conversion Tracking This website uses Google Conversion Tracking. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

With the help of Google Conversion Tracking, we and Google can recognize whether the user has performed certain actions. For example, we can evaluate which buttons on our website were clicked and how often and which products were particularly often viewed or purchased. This information is used to create conversion statistics. We learn the total number of users who clicked on our ads and what actions they performed. We do not receive any information with which we can personally identify the user. Google itself uses cookies or comparable recognition technologies for identification.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. The consent can be revoked at any time.

More information on Google Conversion Tracking can be found in Google’s privacy policy: https://policies.google.com/privacy?hl=en.

Meta Pixel (formerly Facebook Pixel) This website uses the visitor action pixel from Facebook/Meta for conversion measurement. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. According to Facebook, the collected data is also transferred to the USA and other third countries.

This allows the behavior of the site visitors to be tracked after they have been redirected to the provider’s website by clicking on a Facebook advertisement. This enables the effectiveness of the Facebook advertisements to be evaluated for statistical and market research purposes and future advertising measures to be optimized.

The collected data is anonymous to us as the operator of this website; we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Facebook, so that a connection to the respective user profile is possible and Facebook can use the data for its advertising purposes, according to the Facebook data usage policy (https://www.facebook.com/about/privacy/). This allows Facebook to enable ads to be displayed on Facebook pages and outside of Facebook. This use of the data cannot be influenced by us as the site operator.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. The consent can be revoked at any time.

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://www.facebook.com/help/566994660333381.

More information on protecting your privacy can be found in Facebook’s privacy notices: https://www.facebook.com/about/privacy/.

You can also deactivate the remarketing function "Custom Audiences" in the ad settings section at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you must be logged into Facebook.

If you do not have a Facebook account, you can opt-out of Facebook-based advertising on the European Interactive Digital Advertising Alliance website: http://www.youronlinechoices.com/.

LinkedIn Insight Tag This website uses the LinkedIn Insight Tag. The provider of this service is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

Data Processing by LinkedIn Insight Tag With the help of the LinkedIn Insight Tag, we receive information about the visitors of our website. If a website visitor is registered with LinkedIn, we can analyze the professional data (e.g., career level, company size, country, location, industry, and job title) of our website visitors and thus better tailor our site to the respective target groups. We can also measure whether visitors to our websites perform a purchase or other action (conversion measurement). The conversion measurement can also take place across devices (e.g., from PC to tablet). LinkedIn Insight Tag also offers a retargeting function, with which we can show visitors to our website targeted advertising outside the website, whereby, according to LinkedIn, no identification of the advertising addressee takes place.

LinkedIn also collects so-called log files (URL, referrer URL, IP address, device and browser properties, and time of access). IP addresses are shortened or, if used to reach LinkedIn members across devices, hashed (pseudonymized). The direct identifiers of the LinkedIn members are deleted after seven days by LinkedIn. The remaining pseudonymized data will then be deleted within 180 days.

The data collected by LinkedIn cannot be assigned to specific individuals by us as the website operator. LinkedIn will store the collected personal data of website visitors on its servers in the USA and use it for its own advertising purposes. For details, please refer to LinkedIn’s privacy policy at https://www.linkedin.com/legal/privacy-policy#choices-oblig.

Legal Basis If consent has been requested, the use of the above-mentioned service is based exclusively on Art. 6(1)(a) GDPR and § 25 TTDSG. The consent can be revoked at any time. If no consent was requested, the use of this service is based on Art. 6(1)(f) GDPR; the website operator has a legitimate interest in effective advertising measures, including social media.

More information can be found in LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy.

If consent has been obtained, the use of the aforementioned service is based solely on Art. 6(1)(a) GDPR and § 25 TTDSG. Consent can be revoked at any time. If no consent has been obtained, the use of this service is based on Art. 6(1)(f) GDPR; the website operator has a legitimate interest in effective advertising measures, including social media.

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: LinkedIn Data Processing Agreement and LinkedIn EU SCCs.

Objection to the Use of LinkedIn Insight Tag

You can object to the analysis of your usage behavior and targeted advertising by LinkedIn using the following link: LinkedIn Retargeting Opt-Out.

LinkedIn members can also control the use of their personal data for advertising purposes in their account settings. To prevent LinkedIn from linking data collected on our website with your LinkedIn account, you must log out of your LinkedIn account before visiting our website.

Contract Processing

We have concluded a contract for order processing (AVV) to use the above-mentioned service. This is a data protection contract required by law that ensures this service processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

6. Newsletter

Newsletter Data

If you would like to receive the newsletter offered on the website, we require your email address and information that allows us to verify that you are the owner of the provided email address and agree to receive the newsletter. No further data will be collected or only on a voluntary basis. We use newsletter service providers described below to handle the newsletter.

Actito

This website uses Actito for sending newsletters. The provider is Actito S.A., Avenue Athéna 1, 1348 Louvain-la-Neuve, Belgium. Actito is a service that organizes and analyzes the sending of newsletters, among other things. The data you enter for the purpose of subscribing to the newsletter will be stored on Actito S.A.'s servers in Belgium.

Data Analysis by Actito

With the help of Actito, we can analyze our newsletter campaigns. For example, we can see if a newsletter message was opened and which links were clicked, if any. This allows us to determine which links were clicked particularly often. Additionally, we can identify whether certain predefined actions were taken after opening/clicking (conversion rate).

Actito also allows us to segment the newsletter recipients based on various categories ("clustering"). For example, the newsletter recipients can be divided by target group. This way, the newsletters can be better tailored to the respective target groups.

If you do not want your data to be analyzed by Actito, you must unsubscribe from the newsletter. We provide a corresponding link in every newsletter message for this purpose.

Legal Basis

The data processing is based on your consent (Art. 6(1)(a) GDPR). You can revoke this consent at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.

Storage Duration

The data you provide for subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and deleted from the newsletter distribution list after you unsubscribe. Data stored by us for other purposes remains unaffected.

After unsubscribing from the newsletter distribution list, your email address may be stored in a blacklist by us or the newsletter service provider to prevent future mailings. The data from the blacklist will only be used for this purpose and not merged with other data. This serves both your interest and our interest in complying with legal requirements when sending newsletters (legitimate interest as per Art. 6(1)(f) GDPR). The storage in the blacklist is indefinite. You can object to the storage if your interests outweigh our legitimate interest.

For more details, please refer to Actito's privacy policy: Actito Privacy Policy.

Contract Processing

7. Plugins and Tools

YouTube

This website incorporates videos from the website YouTube. The operator of the site is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit one of our websites with YouTube integration, a connection to YouTube's servers is established. The YouTube server is informed about which of our pages you have visited.

Additionally, YouTube can store various cookies on your end device or use similar technologies for recognition (e.g., device fingerprinting). This allows YouTube to obtain information about visitors to this website. This information is used, among other things, to gather video statistics, improve user-friendliness, and prevent fraud attempts.

If you are logged into your YouTube account, you enable YouTube to directly associate your browsing behavior with your personal profile. You can prevent this by logging out of your YouTube account.

The use of YouTube is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. If consent has been requested, the processing is based solely on Art. 6(1)(a) GDPR and § 25(1) TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g., device fingerprinting) as defined by TTDSG. Consent can be revoked at any time.

For more information on handling user data, please refer to YouTube's privacy policy: YouTube Privacy Policy.

Google Fonts (Local Hosting)

This site uses so-called Google Fonts for the uniform representation of fonts, provided by Google. The Google Fonts are installed locally. No connection to Google servers takes place.

For more information on Google Fonts, see Google Fonts FAQ and Google’s privacy policy: Google Privacy Policy.

8. Audio and Video Conferences

Data Processing

We use online conference tools, among other things, to communicate with our customers. The specific tools we use are listed below. When you communicate with us via video or audio conference over the Internet, your personal data will be collected and processed by us and the provider of the respective conference tool.

The conference tools collect all the data you provide/use to use the tools (email address and/or your telephone number). The conference tools also process the duration of the conference, start and end (time) of participation in the conference, the number of participants, and other "context information" related to the communication process (metadata).

Furthermore, the provider of the tool processes all the technical data required for the processing of online communication. This includes, in particular, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone, or speaker, as well as the type of connection.

If content is exchanged, uploaded, or otherwise provided within the tool, it is also stored on the servers of the tool providers. Such content includes, in particular, cloud recordings, chat/instant messages, voicemails, uploaded photos and videos, files, whiteboards, and other information shared while using the service.

Please note that we have no full control over the data processing operations of the tools used. Our options are significantly determined by the corporate policy of the respective provider. Further information on data processing by the conference tools can be found in the privacy statements of the respective tools used, which we have listed below this text.

Purpose and Legal Bases

The conference tools are used to communicate with prospective or existing contract partners or to offer certain services to our customers (Art. 6(1)(b) GDPR). Additionally, the use of the tools serves to generally simplify and accelerate communication with us or our company (legitimate interest within the meaning of Art. 6(1)(f) GDPR). Insofar as consent has been requested, the use of the tools in question is based on this consent; consent can be revoked at any time with effect for the future.

Storage Duration

Data directly collected by us via the video and conference tools will be deleted from our systems as soon as you request us to delete it, revoke your consent to storage, or the purpose for data storage no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal retention periods remain unaffected.

We have no influence on the storage duration of your data that is stored by the operators of the conference tools for their own purposes. For details, please refer directly to the privacy statements of the operators of the conference tools.

Conference Tools Used

We use the following conference tools:

Microsoft Teams

We use Microsoft Teams. The provider is Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland. Details on data processing can be found in the privacy statement of Microsoft Teams: Microsoft Privacy Statement.

Contract Processing

9. Changes to the Privacy Policy

Rotterdam Ahoy reserves the right to change this privacy policy. We encourage users to regularly review this privacy policy to stay informed about any changes.

Last updated: June 2024