Privacy Policy

This Privacy Policy explains how IASRE GmbH processes personal data when you use our website or purchase tickets for our events, in accordance with the General Data Protection Regulation (GDPR) and applicable German data protection laws.

1. Controller

IASRE GmbH
Martinshardt 15
57074 Siegen
Germany

Email: info@iasre.com
Phone: +31 6 46 26 22 08

2. Personal Data We Process

We may process the following categories of personal data:

  • Contact data (name, email address, phone number)

  • Communication data (messages sent via contact forms or email)

  • Contract data (ticket or exhibitor orders, billing details)

  • Technical data (IP address, browser type, device type, access times)

  • Usage data (pages viewed, interactions, referring sites)

Payment data is processed exclusively by external payment providers.

3. Purposes of Processing

We process personal data for:

  • Providing and operating our website

  • Handling inquiries and communication

  • Managing ticket sales and exhibitor registrations

  • Fulfilling contractual obligations

  • Improving website security and performance

  • Complying with legal retention requirements

  • Preventing abuse and fraud

4. Legal Bases

We process data based on:

  • Art. 6(1)(b) GDPR – performance of a contract

  • Art. 6(1)(f) GDPR – legitimate interests (security, optimisation)

  • Art. 6(1)(c) GDPR – legal obligations

  • Art. 6(1)(a) GDPR – consent (e.g., cookies, newsletter)

5. Cookies and Similar Technologies

Our website uses cookies and similar technologies to:

  • Provide essential website functions

  • Optimise performance

  • Analyse usage patterns

Where legally required, we obtain your consent via a cookie banner.

6. Ticket Sales via Pretix

We use Pretix (rami.io GmbH) to manage ticket sales for IASRE events. The Pretix ticket shop may be embedded directly on our website.

When purchasing tickets, Pretix processes:

  • Name

  • Email address

  • Billing information

  • Ticket selection and order data

  • Payment information (processed by Pretix/payment providers)

  • Technical and device data (security logs, fraud prevention)

Service provider:
rami.io GmbH
Markgräfler Straße 16
69126 Heidelberg
Germany
Website: https://pretix.eu

Payment data is not processed by IASRE GmbH.

Legal basis: Art. 6(1)(b) GDPR (contract for ticket purchase)

Pretix operates under a GDPR-compliant Data Processing Agreement.

7. Contact Form and Email Communication

When you contact us, the data you provide is processed to handle your request.

Legal basis:

  • Art. 6(1)(b) GDPR (pre-contractual communication)

  • Art. 6(1)(f) GDPR (legitimate interest in responding to inquiries)

Data is deleted once your inquiry is resolved unless legal retention applies.

8. Data Sharing

We only share personal data with:

  • Service providers (hosting, IT services, Pretix)

  • Payment processors (via Pretix)

  • Event partners when contractually necessary

  • Public authorities when legally required

All processors are bound by Art. 28 GDPR.

We do not sell personal data.

9. International Data Transfers

If personal data is transferred to countries outside the EU/EEA, this is done only:

  • under an adequacy decision (Art. 45 GDPR), or

  • based on EU Standard Contractual Clauses (Art. 46 GDPR)

10. Storage Duration

We store personal data:

  • for the duration of the contractual relationship

  • according to statutory retention periods (e.g., 10 years for tax documents)

  • for as long as needed for security, analytics, or operational purposes

Afterwards, data is deleted or anonymised.

11. Your Rights (GDPR)

You have the right to:

  • Access your personal data (Art. 15 GDPR)

  • Rectification (Art. 16 GDPR)

  • Erasure (Art. 17 GDPR)

  • Restriction of processing (Art. 18 GDPR)

  • Data portability (Art. 20 GDPR)

  • Object to processing (Art. 21 GDPR)

  • Withdraw consent at any time (Art. 7(3) GDPR)

To exercise your rights, contact: info@iasre.com

You may also lodge a complaint with your local supervisory authority.

12. Security

We use appropriate technical and organisational measures to protect personal data from unauthorised access, loss, or misuse.

13. Changes to This Policy

We may update this Privacy Policy from time to time.
The latest version is published on this website.