Data Protection Declaration

Status: September 2019

1. Name of the party responsible

The responsible party in the context of the data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

Nürnberg Institut für Marktentscheidungen e.V.
Entered in the Nuremberg Association Register 
(No. VR 200665)

2. Executive board, managing directors or other management personnel appointed by law or in accordance with the constitution of the association and members of staff tasked with managing data processing are:

Nürnberg Institut für Marktentscheidungen e.V. Executive Board:

President: Manfred Scheske

Vice Presidents: Ralf Klein-Bölting, Dr. Andreas Neus, Prof. Dr. Raimund Wildner

Managing Director, Nürnberg Institut für Marktentscheidungen e.V.

Dr. Andreas Neus

3. Address of the party responsible

Nürnberg Institut für Marktentscheidungen e.V.

Steinstr. 21

90419 Nuremberg


Tel. +49 (0) 911 9 51 51 983

Fax +49 (0) 911 37677 872


4. Definition of the purpose of data capture, processing and use

The collection, processing and use of data relating to our members shall be for the sole purpose of administration and communication with members.

The collection, processing and use of data for our Compact information service shall be for the sole purpose of administration and communication with interested parties and newsletter subscribers (with double opt-in when registering for the newsletter).

The collection, processing and use of data for the invitation to attend events organized by the Nürnberg Institut für Marktentscheidungen e.V. shall be for the sole purpose of inviting participants and communicating with them, such as for invoicing purposes.

Other personal data shall be retained solely for ancillary purposes (see below), otherwise such information shall not be retained.

Our studies are carried out under contract and in this regard, we do not obtain any personal data.

Ancillary purposes:

Management of supplier and service provider data (contact details and relevant business issues)

Management of applicant data

Management of data relating to press contacts

Management of user data relating to the closed members’ area (login data)

5. Description of the parties and groups of parties affected and associated data and data categories

In line with the defined purposes indicated above, the personal data relating to the parties or groups of parties below are collected, processed and used:

- Employees

- Applicants

- Members

- Interested parties, suppliers, press representatives, service providers (contact details and relevant business issues)

- Visitors to our website (communication and login data)

Under the terms of the GDPR, the parties affected shall be entitled to request details on the collection, processing or use of their personal data free of charge from us. This includes also – where applicable, justifiable and providing there are no contradictory statutory duties of retention or other rights pertaining to this entitlement – the right to correction, data transferability, deletion, limitation or revoking of consent granted. The affected parties shall also be entitled to lodge complaints to the supervisory authority. The competent supervisory authority shall be determined by the German Federal State (Bundesland) place of residence, work or of the alleged infringement. A list of supervisory authorities (for the non-public sector) with addresses is indicated under: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links....

Affected parties wishing to exercise their rights are requested to email: mail@nim.org

6. Recipients or categories of recipients who may receive data

Personal data relating to ancillary purposes may be used by internal technical departments solely for the performance of corresponding ancillary purposes.

Additional recipients of personal data may constitute external contractors (e.g. for the purposes of invitations to events and for website hosting). Such contractors shall be contractually obliged not to pass on personal data to third parties and to use the data solely for the intended purpose and to delete it immediately afterwards, unless there is a statutory period of retention (e.g. for accounting purposes).

7. Data deletion deadlines

Personal data shall be deleted when the purpose for which it was retained no longer applies and on expiry of the statutory data deletion deadlines.

8. Scheduled data transfer to third countries

No data transfers of personal data to third countries have been scheduled.

9. General contact form

By contacting us with any type of query by email or using the contact form, you are granting us your voluntary consent for the purposes of making contact with you. This requires you to give a valid email address which serves for assignment of your query and the reply accordingly. Giving further details is optional. The details you give for the purposes of processing your query and any potential supplementary queries shall be retained. When the query you raise has been resolved, any personal data shall be automatically deleted.

10. Contact form for membership applications

By contacting us for the purposes of applying for membership using the contact form, you are granting us your voluntary consent for the purposes of making contact with you. This requires you to give a valid email address, your first name(s), surname, company name where applicable and your address or the company address. This information is required in order to examine the application and make a decision. The details you give for the purposes of processing your enquiry shall be retained for potential supplementary queries. If your application for membership is accepted, the data shall be retained for the period of your membership and in line with the specified periods of retention. In cases where the application is rejected, the data shall be deleted on expiry of 90 days.

11. Use of Google Analytics

This website uses Google Analytics, a web analysis service operated by Google Inc. (“Google“). Google Analytics uses cookies, which constitute text files that are stored on your computer and which facilitate analysis of your use of the website. The information obtained by the cookie on your use of the website is generally transferred to a Google server located in the USA, where it is stored.

However, in cases where member states of the European Union or other states party to the EEA agreement are concerned, IP anonymization is activated on the website, meaning that Google will first abbreviate the IP address before transferring it. Solely in exceptional cases will the full IP address be transferred to a Google server in the USA, for abbreviation there.

Google will use this information on behalf of the website operator in order to analyze website use, prepare reports on website activities and to provide the website operator with services relating to website use and online use of associated services. The IP address supplied by your browser in the context of Google Analytics will not be merged with other Google data. You may prevent retention of cookies by adjusting the settings of your browser software: however, we point out that in this case, it may not be possible to make full use of all the functions offered by the website.

Furthermore, you may prevent the transfer of data obtained by cookies and relating to your use of website (incl. your IP address) to Google and the processing of such data by Google, by downloading and installing the browser plug in available by clicking on the following link: (http://tools.google.com/dlpage/gaoptout?hl=de).

For more information, please visit: visit http://tools.google.com/dlpage/gaoptout?hl=de or https://support.google.com/analytics/answer/6004245?hl=de (general information on Google Analytics and data protection). We refer you to the fact that on this website, Google Analytics have added the code “gat. _anonymizeIp();“ in order to ensure that IP addresses are captured in anonymized form (i.e. IP masks).

12. Embedded YouTube videos

Our website features embedded YouTube videos. The operator of the corresponding plugins is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit a page with a YouTube plugin, a connection to YouTube servers will be activated and YouTube will be advised which page you are visiting. When you are logged into your YouTube account, YouTube can identify your personal surfing habits. You may also prevent this by logging out of your YouTube account beforehand.

When a YouTube video is launched, the service provider will use cookies to capture information on user behavior.

Anyone deactivating the cookie options for the Google-Ad program is unlikely to have cookies popping up when watching YouTube videos. However, Youtube also captures non-personal information on website use using other cookies. If you would like to prevent this, you need to block your browser from retaining cookies.

For more information on data protection relating to YouTube, check out the data protection declaration of the service provider under: https://www.google.de/intl/de/policies/privacy/

13. Links to Facebook and Twitter

Our website carries the logo (no plug-Ins) of the social network, Facebook (Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA). By clicking on the logo, you will be transferred to our Facebook account. Since this is just a link and not a plug-in, unlike the case of the latter, no data can be lifted from it.

Our website carries the logo (no plug-Ins) of the micro-blogging service, Twitter (Twitter Inc., 1355 Market St, Suite 900, San Francisco, CA 94103, USA). By clicking on the logo, you will be transferred to our Twitter account. Since this is just a link and not a plug-in, unlike the case of the latter, no data can be lifted from it.

14. Use of cookies

Like many other websites, we also use cookies. These are small text files that can be transferred from a website server to your fixed disk. This gives us automatic access to certain data, such as IP address, browsers used, operating system and your connection to the internet.

Cookies cannot be used to launch a program or to transfer a virus to a computer. The information contained in cookies enables us to facilitate navigation and show you how to find your way around our website pages.

In no case will data we have obtained be passed on to any third party or a connection made to any personal data without your consent.

Of course, it is perfectly possible to navigate our website without cookies. Internet browsers are generally set to accept cookies. As a rule, you can deactivate the use of cookies at any time by adjusting your bowser settings accordingly. Please use the help functions of your internet browser to find out how to change the settings. Kindly note that individual functions of our website may not work if you deactivate the use of cookies.

15. SSL encryption

To protect the security of your data during transfer, we use state-of-the-art HTTPS encryption methods (e.g. SSL) via HTTPS.

Amendment of our data protection regulations

We reserve the right to adapt the present data protection declaration so that it conforms to current legal prescription or to reflect any changes in the performance of our data protection declaration, for example, when new services are introduced. In these cases, the new data protection declaration will apply to your website visits.

Queries pertaining to data protection

If you have any queries on data protection, please contact us by email mail@nim.org.