AI Forum 2025

Privacy Notice for TÜV Association Events

We appreciate your interest in our events and your visit to our website. The following information explains how we handle your personal data in accordance with Article 13 of the General Data Protection Regulation (GDPR).

The TÜV Association (TÜV-Verband e. V.) attaches great importance to protecting your privacy and ensuring that any personal data you provide are used transparently, securely, and in a manner consistent with your expectations. Our aim is to enable the smooth, participant-oriented organization of our events while upholding the highest data protection standards.

1. What data do we collect and for what purposes?

To plan and manage TÜV Association events, we collect and store personal participant data (such as name, address, and email address) electronically and, where necessary, in printed form. This allows us to ensure the smooth running of the event and to provide all necessary services and information at the highest possible quality.

The processing of these data is based on Article 6(1)(b) GDPR, as it is necessary for the performance of a contract to which you are a party. A user profile is created containing your name, email address, position, and organization. Creating this profile is required for participation in the event.

By default, your profile details are not visible to other participants. However, you may choose to make your information visible to foster networking and exchange. You may also voluntarily add additional information (for example, a profile picture). These optional activities are based on your consent pursuant to Article 6(1)(a) and Article 7 GDPR. You may withdraw your consent at any time with effect for the future by contacting dsb@tuev-verband.de. There are no negative consequences if you choose not to provide such optional information.

2. Event updates and newsletters

You may also choose to receive newsletters or information about future events and services by email or post. The legal basis for this processing is your consent in accordance with Article 6(1)(a) and Article 7 GDPR, which you may withdraw at any time with future effect. You can unsubscribe easily by using the link provided in every email.

For documentation purposes, we may store additional information when you subscribe (such as the full IP address at the time of registration or confirmation and a copy of the confirmation email). This is based on Article 6(1)(f) GDPR and serves our legitimate interest in being able to demonstrate the lawfulness of your consent.

3. Newsletter delivery via CleverReach

We use the service CleverReach provided by CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany, to distribute and evaluate our newsletters.

Your personal data are stored on CleverReach’s servers and used by CleverReach solely to send and analyze the newsletters on our behalf. According to CleverReach, the data may also be processed to optimize or improve its own services (for example, improving the technical delivery and display of newsletters or determining from which countries recipients access them). CleverReach does not use your data to contact you directly or share it with third parties.

Processing is carried out on the basis of your consent (Article 6(1)(a) GDPR). You may withdraw your consent at any time by unsubscribing from the newsletter. Any processing that took place before withdrawal remains lawful.

If you do not wish your data to be analyzed, please unsubscribe from the newsletter. An unsubscribe link is included in every issue.

CleverReach takes the protection of your personal data very seriously. For more information, please refer to CleverReach’s privacy policy: https://www.cleverreach.com/en/privacy-policy.

4. Event management via InvitePeople

We use InvitePeople, an end-to-end event platform operated by Matchmeeting AB, Cylindervägen 18, SE-131 52 Nacka Strand, Sweden, to organize and manage our events.

To deliver our events, we collect and store the following personal data: first and last name, address, phone number, email address, and IP address.

If an event is recorded, you will be informed in advance, and your consent will be obtained. The fact that a recording is taking place will be clearly displayed.

Certain data are required for participation in online events. Without this information, participation is not possible. Other data are voluntary but may be necessary to use specific services or features. Mandatory fields are marked accordingly. Failure to provide mandatory information will result in the corresponding service not being available.

Optional information (fields not marked with an asterisk) is processed based on your consent under Article 6(1)(a) GDPR, which you may withdraw at any time by contacting dsb@tuev-verband.de.

For further details, please see InvitePeople’s privacy policy: https://invitepeople.com/en/privacy-policy/.

5. Disclosure of data to third parties

We share your personal data only where a legal basis exists or where you have given your consent, for example, with partner organizations or sponsors involved in the event.

We also work with selected service providers who support us in organizing and running our events and who process data on our behalf under appropriate contractual safeguards.

6. Data transfers to countries outside the EU

Some of our service providers may be located in countries outside the European Union where no adequacy decision by the European Commission exists and where a lower level of data protection may apply. This may result in public authorities having access to your data without your knowledge or ability to exercise your rights effectively.

In such cases, we ensure that an equivalent level of protection is guaranteed through the EU Commission’s Standard Contractual Clauses or other appropriate safeguards. Further details or copies of these safeguards can be obtained from our Data Protection Officer.

7. Storage period

We retain personal data only for as long as necessary to fulfill the purposes described or as required by statutory retention obligations.

Data processed in connection with event participation are stored for the duration of the event and deleted once no longer needed for performance or follow-up purposes, provided no legal retention periods apply.

Your user profile on the event platform remains active until you terminate your account, at which point the data are deleted.

If you have subscribed to our newsletter or agreed to receive mailings, your data are stored until you withdraw your consent. The data retained to prove your consent are stored for up to three years after withdrawal, in line with statutory limitation periods.

8. Data security

We take appropriate technical and organizational measures to protect your data against unauthorized access, loss, misuse, or disclosure. Access to personal data is restricted to authorized staff who require it to fulfill their responsibilities, and such access is limited to the purposes outlined in this notice.

9. Your rights as a data subject

You have the following rights under the GDPR:

Right of access (Article 15 GDPR) – to obtain confirmation and information about the personal data we process about you;
Right to rectification (Article 16 GDPR) – to correct inaccurate or incomplete data;
Right to erasure (Article 17 GDPR) – to request deletion of your data where the legal grounds apply;
Right to restriction of processing (Article 18 GDPR);
Right to data portability (Article 20 GDPR).

Where processing is based on your consent, you may withdraw it at any time with future effect.

You also have the right to object to processing based on Article 6(1)(f) GDPR on grounds relating to your particular situation. In such cases, we will stop processing your data unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms.

To exercise your rights, please contact dsb@tuev-verband.de.

If you believe that the processing of your data violates data protection law, you also have the right to lodge a complaint with a supervisory authority. The competent authority for the TÜV Association is:

Berliner Beauftragte für Datenschutz und Informationsfreiheit

Alt-Moabit 59–61

10555 Berlin, Germany

Email: mailbox@datenschutz-berlin.de

10. Updates to this notice

We may amend this privacy notice from time to time, for example to reflect changes in our procedures, legal requirements, or to further enhance data protection. The most current version is always available on our website. Amendments do not apply retrospectively.

11. Contact

If you have any questions about how your data are processed, please contact us:

TÜV-Verband e. V.

Friedrichstraße 136

10117 Berlin, Germany

Tel: +49 30 760095-400

Email: berlin@tuev-verband.de

Our Data Protection Officer is available at:

Bitkom Servicegesellschaft mbH

Ali Tschakari

Albrechtstraße 10

10117 Berlin, Germany

Tel: +49 30 27576-524

Email: a.tschakari@bitkom-service.de

Last updated: October 2025

Cookie	Category	Provider	Expiry	Legal basis	Intention
_production_session_id	Necessary	InvitePeople	Session	Legitimate interest	Stores a unique ID of the InvitePeople-user session. This will allow the user to login into InvitePeople.
order_id	Necessary	InvitePeople	6 hours	Legitimate interest	Stores a unique ID of the current order (shopping cart). This allows the user to add, view, and manage items in their order during the session.
cookie_consent_[ID]	Necessary	InvitePeople	6 months	Legitimate interest	Stores the user's cookie consent preference for a specific Optional cookie policy. The ID in the cookie name refers to the unique identifier of that policy. This ensures the user’s choice—whether accepting all cookies or only necessary ones—is remembered on future visits.
lang	Necessary	InvitePeople	1 year	Legitimate interest	Remembers the user’s selected language version.
logged_in_user	Necessary	InvitePeople	1 year	Legitimate interest	Stores a unique ID of the InvitePeople-user. This will help the user navigate.
production_auth	Necessary	InvitePeople	1 year	Legitimate interest	Stores a unique ID of the InvitePeople-user. This will help the user with future logins.