Protecting information about you—such as your registration and profile details (so-called “personal data”)—is very important to us. Therefore, we provide the AERO App (the “App”) for AERO in Friedrichshafen in compliance with the applicable data protection laws, in particular the EU General Data Protection Regulation (“GDPR”).
App Usage and Data Processing at a Glance
Using our App and entering into the corresponding App usage agreement is voluntary. You can visit the AERO without using our App. The goal of this App is to enhance, organize, and safeguard your visit.
Below you will find information on how we handle your personal data in this context.
1. Who is the Controller, and Who is the Data Protection Officer?
Controller for this App:
fairnamic GmbH
Neue Messe 1
88046 Friedrichshafen
Germany
P.O. Box 2080
88010 Friedrichshafen
Germany
Phone: +49 7541 95995-0
Fax: +49 7541 95995-10
For more details, please see our imprint:
https://www.fairnamic.com/impressum
If you have any questions or comments about data protection at fairnamic GmbH, or if you would like to object to the use of your personal data for advertising, market research, or opinion research, please contact us at:
Email: datenschutz@fairnamic.com
2. What Do We Do with Your Personal Data?
a) When You Register in the App and Use It
Registration
You can download the App from the relevant app stores, and you are free to register in the App.
Use of the App
The AERO App allows you to access all relevant information about exhibitors, products, events, and experiences. For example, you can view exhibitor and product pages, find out about events and program items, and use the map function to navigate the event grounds on your own. Users also have the option to use the matchmaking function within the App: they can send contact requests to other users, and if those requests are accepted, both parties can chat with each other. To do so, users log in with their email address. Locking the App on your device uses your device password or a biometric password (such as fingerprint); these details are stored only on your device, and we do not process them.
(1) Legal Basis
We process your personal data for the initiation, performance, and execution of the relevant App usage contract (Art. 6(1)(b) GDPR). In addition, the processing of your personal data takes place due to our overriding legitimate interest (Art. 6(1)(f) GDPR) in the secure operation of the App.
(2) Categories of Recipients and Transfer to Third Countries
We employ service providers in operating our App. We share personal data with these providers only as necessary for them to meet their contractual obligations to us. These service providers are contractually required to treat your personal data with the same care that we do. Personal data may also be sent to service providers in non-EU/EEA (“third”) countries (see the “Data Transfer to Third Countries” section below).
(3) Access to Other Applications on Your Smartphone
If you choose to upload a profile photo after registration, the App will ask for access to:
- Camera
- Photo Gallery
b) When You Create a Profile
Once you have downloaded the App, you can set up a personal profile. You can also use the App’s core features without creating a profile. When creating your profile, you will be asked for certain details—e.g., your interests, which you can modify in the App at any time.
(1) Legal Basis
The processing of your mandatory information is necessary for the initiation, performance, and execution of the relevant App usage contract (Art. 6(1)(b) GDPR). Any optional profile data you provide is processed on the basis of your consent (Art. 6(1)(a) GDPR).
(2) Categories of Recipients and Transfer to Third Countries
We employ service providers in operating our App. These providers are contractually bound to use your personal data with the same care we do. Such data may also be transferred to service providers in third countries (see “Data Transfer to Third Countries” below).
c) When You Create and Manage Appointments Within Your Profile
Via your profile, you can create and manage appointments—for example, to more easily discover specific AERO events that interest you.
(1) Legal Basis
Your relevant personal data is processed in order to initiate, perform, and execute the relevant App usage contract (Art. 6(1)(b) GDPR). If your profile data (optional) is transmitted to exhibitors, this is based on your consent (Art. 6(1)(a) GDPR).
(2) Categories of Recipients and Transfer to Third Countries
We employ service providers in operating our App; these providers are bound by contract to the same data protection standards we uphold. Where necessary, personal data may also be transmitted to service providers in third countries (see “Data Transfer to Third Countries” below).
(3) Access to Other Applications on Your Smartphone
If you grant the relevant permission, the App may access:
- Calendar Function
d) If You Store Your Ticket in the App
As a visitor, you may store your AERO ticket digitally in the App, if you purchased your ticket through the relevant Ticket Shop. If you purchase a ticket via the App, you will be redirected to the ticket shop’s website (please note that a separate privacy policy applies there). By storing your ticket in the App, you can digitally manage your access to the event grounds and to specific on-site events.
(1) Legal Basis
The processing of your ticket data is necessary for the initiation, performance, and handling of the relevant App usage contract (Art. 6(1)(b) GDPR).
(2) Categories of Recipients
We use service providers in connection with our Ticket Shop. These providers are contractually bound to handle personal data with the same degree of care that we do.
(3) Access to Other Applications on Your Smartphone
If you grant permission, the App may access:
- Camera
Note: Purchasing an AERO ticket occurs outside of the App (via the Ticket Shop). You do not need to store your ticket in the App; you may attend the AERO with a regular ticket regardless. By logging into the App with your email address, you can access networking features such as sending contact requests or chatting with other visitors.
e) If You Allow the Use of Your Location
Within the App, you may enable location-based services and information by granting access to your device’s location. We generally use your location in various ways—such as offering map features or providing relevant notifications.
(1) Legal Basis
The processing of your personal data for these location-based functions is carried out on the basis of our overriding legitimate interest (Art. 6(1)(f) GDPR), for instance to provide notifications or safety updates.
(2) Categories of Recipients
We may employ service providers to pseudonymize and process location data. These providers are contractually required to adhere to the same data protection standards that we do.
(3) Access to Other Applications on Your Smartphone
If you grant permission, the App may access:
- Location
f) If You Allow the Use of Notifications
You can enable push notifications through the App if desired. These notifications can serve different purposes, including informing you of events or offers you have indicated interest in, as well as sharing organizational or safety-related updates (e.g., possible overcrowding in certain areas).
(1) Legal Basis
Your consent forms the legal basis for these notifications (Art. 6(1)(a) GDPR).
(2) Categories of Recipients and Transfer to Third Countries
When you consent to receive notifications, you will be informed about any recipients (e.g., exhibitors) that may receive your personal data in connection with these messages. If a recipient is located outside the EU/EEA, this may constitute a transfer to a third country (see “Data Transfer to Third Countries” below).
(3) Access to Other Applications on Your Smartphone
If you grant permission, the App may access:
- Notifications (push messages)
g) If You Participate in Matchmaking (Including Chat)
As a visitor, you can use the App’s matchmaking feature to network with other users, provided you have registered with your email address. You can enable or disable matchmaking in your profile. If enabled, your interests will be matched with those of other users, and your profile (e.g., name, company, position) will be visible to them.
(1) Legal Basis
Your consent is the legal basis for any data processing in the context of matchmaking (Art. 6(1)(a) GDPR).
(2) Categories of Recipients
Your personal data is shared with other matchmaking participants for networking purposes.
(3) Profile Building
We use an algorithm to compare your interests with those of other participants and display relevant profiles to you in a sorted list. The more interests you share with another participant, the higher they appear in your list of suggested contacts.
h) For Exhibitors to Contact You
If you wish to be contacted by exhibitors, you can enable the relevant setting in the App. Exhibitors, for example, can then see which products you have scanned via the App’s QR code scanner, or send you product-related information if you have completed a lead-qualification questionnaire.
(1) Legal Basis
Your consent is the legal basis for this data processing and any associated transfer of data (Art. 6(1)(a) GDPR).
(2) Categories of Recipients
When giving consent, you will be informed which exhibitors or other recipients may access your personal data.
i) When We Statistically Analyze Your Use of the App (Google Analytics)
We assess App usage data—using pseudonymized information—for statistical purposes. We employ Google Analytics, a service of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland), which processes data on our behalf under contractual obligations of data security and confidentiality. For example, the following data may be collected:
- Randomly generated user ID
- Pages accessed
- How you interact with the App (time spent, clicks, scrolling)
- Approximate location (country/city)
- IP address (deleted promptly after approximate geolocation)
- Technical information (browser, internet provider, device, screen resolution)
We never send names, addresses, or contact details to Google Analytics. Data may be transferred to Google’s servers in the USA. Usage data is retained for two years from your last visit; pseudonymous user profiles are automatically deleted after 14 months. Aggregated data may remain stored indefinitely.
(1) Legal Basis
We process this personal data based on your consent (Art. 6(1)(a) GDPR).
(2) Categories of Recipients
We employ service providers to help pseudonymize and evaluate usage data. These providers are contractually bound to adhere to our data protection requirements.
3. How Long Do We Store Your Personal Data?
You can manage or delete your profile data within the App at any time. We delete personal data once its purpose no longer applies and there is no legal or regulatory requirement (e.g., under tax or commercial law) that obligates us to retain it. If deletion is not possible in a given case, we will restrict further processing instead.
4. What Rights Do You Have?
Please use the above contact information to exercise your rights or to withdraw any consent you have provided.
a) Right of Access: You have the right to request information at any time about all personal data we process about you.
b) Right to Rectification: If your personal data is incorrect or incomplete, you have the right to request that it be corrected or supplemented.
c) Right to Erasure: You may request the deletion of your personal data at any time, unless we are legally obligated or otherwise entitled to continue processing it.
d) Right to Restrict Processing: Where the law allows, you can request that we restrict processing of your personal data.
e) Right to Object: You have the right to object to the processing of your data when it is carried out for direct marketing or profiling. If processing is based on a balancing of interests, you may object on grounds related to your particular situation.
f) Right to Data Portability: If processing is based on your consent or on a contract, you may request that the data you have provided be handed over in a commonly used, machine-readable format, provided this does not affect the rights and freedoms of others.
g) Right to Withdraw Consent: If we process your data based on your consent, you may withdraw this consent at any time, in whole or in part, with future effect. Processing carried out before your withdrawal remains lawful.
h) Technical Limitation on Withdrawal: For technical reasons, withdrawing consent through the App only applies to consent granted via the App itself.
i) Right to Lodge a Complaint: You also have the right at any time to contact a data protection authority if you believe the processing of your personal data breaches applicable law.
5. Data Transfer to Third Countries
Where personal data is transferred to entities in countries outside the EU or EEA, we ensure—unless the law permits an exception—that there is an adequate level of data protection. This may take place via an adequacy decision, by signing the EU’s standard contractual clauses (copies of which are available on request), or via a certification under the EU–US Data Privacy Framework.
6. Data Security
We employ suitable technical and organizational security measures to protect the personal data we process against accidental or intentional manipulation, loss, destruction, or unauthorized access. All data transmissions between your end device and our servers are encrypted during App usage (“end-to-end encryption”).