We take the protection of your personal data very seriously and treat your personal data confidentially and in accordance with the legal data protection regulations as well as this data protection declaration.
Below is some information on our processing of your personal data and your rights.
1. Who processes my data and who can I contact about this processing?
Beuth Verlag GmbH
Saatwinkler Damm 42/43
Dominik Grau, Dr Mario Schacht, Marion Winkenbach
Contact our external data protection officer at:
Beuth Verlag GmbH
Data Protection Officer
3. Which data do we use?
You can visit our sites without telling us who you are, except when you send us an e-mail or contact information, register for and use our online services, or order our products and/or services. We generally only use such data as necessary to answer your query or for providing online services. Necessary data is always indicated as required fields in online forms. Any further information we request is given by you on a voluntary basis. This optional information helps us customize our services and better suit the needs of our customers.
4. Why do we collect your data and on which legal basis?
We process your personal data in accordance with the EU's General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG), as follows:
a) To fulfil contractual obligations (Art. 6 (1) point (b) GDPR)
Your personal data is processed for the performance of a contract , and to take steps at your request prior to entering into the contract. Examples:
- Processing orders via the Beuth Webshop
- Providing online services and apps
- Customer service
- Processing online contact forms
b) To fulfil legitimate interest/balancing of interests conditions (Art. 6 (1) point (f) GDPR)
Where necessary, we process your data for reasons beyond fulfilling the contract, e.g. for the purposes of the legitimate interests pursued by us or by a third party. Examples:
- For marketing purposes and public opinion research
- Customer satisfaction surveys
- Recruiting new DIN Members, standards experts, authors and speakers
- Establishing legal claims or for their defence in cases of dispute
- Direct advertising
- Ensuring IT security, particularly in terms of access control
c) Where you have given your consent (Art. 6 (1) point (f) GDPR)
Where you have given us your consent to process your personal data for specific purposes, the processing of this data based on your consent is legitimate. The consent can be revoked at any time. Please note that such revocation of consent only applies from the time of revocation onwards. Any processing that had taken place before that time is not affected. Examples of when you give your consent:
- When you register as a "myBeuth" user on the webshop, you can give your consent for receiving information or offers by email
d) Where we have a legal obligation (Art. 6 (1) point c GDPR) or the processing is in the public interest (Art. 6 (1) point e (GDPR)
DIN is subject to various legal obligations (e.g. in accordance with the German Commercial Code, tax laws, etc.).
5. With whom do we share your data?
Beuth belongs to the DIN Group which also includes DIN, the German Institute for Standardization and DIN Software GmbH. All members of the DIN Group are bound by the same data protection directives. Your data is shared with the departments within the DIN Group who need this data to fulfil our contractual and legal obligations, or to fulfil legitimate interest/balancing of interests. For example, when you send us a contact form or email we will pass it on to the responsible member of the DIN Group. We may also share your data with our service providers and agents for the purposes mentioned above as long as confidentiality is maintained and data protection provisions are met.
5.1 DIN Academy events
In the case of DIN Academy events, the Customer’s name and company/organization will be made available to the other event participants (webinars excepting) in the form of a list of participants. For its webinars, Beuth uses Cisco's cloud-based software "WebEx Event Center" and hosts its din-akademie.webex.com website on Cisco's servers within the EU. For customers to register and take part in the webinar, it is required that their data be made available on this platform. The Customer acknowledges and consents that personal data required for participation in the webinar (e.g. first and last names, e-mail address and invoice address (in cases where the webinar is against payment) are communicated to din-akademie.webex.com.
6. Is my data shared with a third country?
Data is not shared with countries outside the EU or EEA ("third countries"), except where this is necessary when goods and services are delivered to a recipient in a third country.
7. How long do you keep my data?
We process and store your personal data as long as is necessary to fulfil our contractual and legal obligations, or to fulfil legitimate interest/balancing of interests. When this data is no longer necessary for the above purposes, it will be regularly deleted, except where - limited - data retention periods are required by commercial and tax laws such as the German Commercial Code and the German Fiscal Code. The retention periods specified in the above-mentioned Codes is six to ten years.
8. What are my rights in terms of data protection?
In accordance with the General Data Protection Regulation (GDPR) you have the right of access (Art. 15), right of rectification (Art. 16), right to erasure (Art. 17), right to restriction of processing (Art. 18), right to object (Art. 21) and the right to data portability (Art. 20). Furthermore, you have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR in connection with Art. 19 of the German Federal Data Protection Act (BDSG)).
This link gives a list of supervisory authorities in Germany and elsewhere, and their contact information.
Your consent to process personal data can be revoked at any time. Please note that such revocation of consent only applies from the time of revocation onwards. Any processing that had taken place before that time is not affected.
To exercise your rights please contact our Data Protection Officer (see above).
9. Is the provision of personal data obligatory?
If you have a business relationship with us or have ordered our services, you must provide the personal data necessary for performing that business function or service, and for fulfilling all associated contractual obligations or where we are subject to the legal obligation to collect such data. As a rule, without this data we are obliged to reject the order or conclusion of the contract, or cannot continue to carry out an existing contract and may need to end such contract.
10. Do you use any automated decision-making, including profiling ?
We do not use any automated individual decision-making, including profiling, in accordance with Art. 22 of the General Data Protection Regulation (GDPR).
11. Information on your right to object in acc. with Art. 21 of the GDPR
a) Individual right to object
You have the right to object, on grounds relating to your particular situation, at any time to the processing of your personal data. The prerequisite for this is that the processing is in the public interest or on the basis of legitimate interest/balancing of interests. This also applies to profiling. In the case of such an objection, we will no longer process your personal data. An exception to this is if we can demonstrate compelling legitimate grounds for the processing of this data which override your interests, rights and freedoms, or the data serve the establishment, exercise or defence of legal claims.
b) Objections to using your data for direct marketing
In individual cases or where you have given your consent, we use your personal data for direct marketing purposes. You have the right to object at any time to the processing of your data for such marketing; this also applies to profiling to the extent that it is related to direct marketing. In the case of such an objection, we will no longer process your personal data for this purpose. Objections can take any form and should be sent to the address for our Data Protection Officer given above.
12. Which data do you use for the website?
a) Information on use
When you visit one of our websites we receive data related to this use. Such data includes your screen resolution, browser version, internet access, operating system, language, plug-ins, where you are (in terms of country or region), and search engines. This data will only be used for statistical purposes. It will not be passed on to third parties and will not be analysed in relation to the user. Furthermore, we temporarily save internet connection data (IP addresses) to our website for a few days to ensure IT security.
When visiting individual pages, session cookies are used to facilitate navigation on the site. These cookies expire when the session is closed and do not contain personal data (i.e. the content of the cookies is not evaluated in relation to the user). You can adjust your browser settings so that cookies are only allowed on a case-by-case basis, or not at all.
Cookies which are necessary for performing certain functions or for electronic communication processes are stored in accordance with Art. 6 (1) point (f) of the GDPR. In this case cookies are stored to ensure the technically correct, optimized performance of our services. Deactivating the cookies function in your browser may restrict the functionality of our website or online services.
13. How secure is my data?
To protect your personal data, we use a secure transmission process, Secure Socket Layer (SSL) transmission, in order to handle customer data and data of interested parties. All information transmitted by means of this secure method is encrypted before it is sent. Your personal data are stored and processed on computers and other data centre equipment that are protected by industry standard security technology (e.g. firewalls, password protection, access control, etc.).
14. Which plug-ins and tools does your website use?
We use YouTube plug-ins to incorporate videos on our site. YouTube is a product of YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you open a page of our website which contains a YouTube plug-in, your browser establishes a direct connection with YouTube’s servers. YouTube is thus informed that your browser has visited the corresponding page of our website. If you are logged in as a registered user of YouTube, YouTube will add this information to your personal user profile. You can prevent this information from being added to your user account by logging out of YouTube. Further information on data processing by YouTube (Google) can be found in YouTube's privacy statement at https://policies.google.com.
b) XING share button
We would like to inform you about how personal data is processed in connection with the XING share button.
c) Facebook plug-in
Our website uses a plug-in provided by the social network Facebook.com, operated by Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94304, USA.
When you visit a page of our website, your browser does not automatically establish a direct connection to Facebook servers. A connection only takes place if you click the link to Facebook. In this case, Facebook will be informed that you have visited our site with your IP address
We would like to point out that as a provider of our website, we do not receive from Facebook any knowledge of the content of the transmitted data nor its use.
For further information go to Facebook's privacy statement.
d) Twitter plug-in
Our website a uses social plug-in provided by Twitter Inc., 1355 Market St, Suite 900, San Francisco, CA 94103, USA (“Twitter”). When you visit a page of our website, your browser does not automatically establish a direct connection with the Twitter server. A connection only takes place if you click the link to Twitter. Twitter is then informed that you have visited our website and shares this information with other users if you are logged on to your Twitter account. We would like to point out that as a provider of our website, we do not receive from Twitter any knowledge of the content of the transmitted data nor its use. For further information go to Twitter's privacy statement at
We use etracker GmbH technology on this website to analyze visitor data. Cookies are used for this purpose, and to display user-specific content or advertising. Cookies are small text files stored in the visitor’s local browser cache. etracker cookies do not contain any information that enables the identification of a user.
The data generated by etracker on our behalf are processed and saved solely in Germany and are thus subject to strict German and European data privacy laws and standards. etracker has been independently audited and certified in this regard and was awarded the data privacy quality seal "ePrivacyseal".
The processing of data is carried out according to Art. 6 (1) point (f) ("legitimate interests") of the EU General Data Protection Regulation (GDPR). In this case, our legitimate interests are the optimization of our online services and websites. Because your privacy is important to us, data that may allow conclusions to be made about any specific person, such as IP addresses and login or device IDs, are anonymised or pseudonymised as soon as possible. The data are not used for other purposes, etracker does not merge them with its own or other data, and they are not passed on to third parties.
You can revoke the use of your personal data for the processing purposes described above at any time. This will not have any disadvantages for you.
For more information on privacy at etracker go to https://www.etracker.com/en/data-privacy/.
We use the Hotjar web analytics service in order to better understand our users’ needs and to optimize customer experience. Hotjar is a European company located in Malta (Hotjar Limited Level 2, St Julian’s Business Centre, 3, Elia Zammit Street, St Julian’s STJ 1000, Malta). Hotjar can record information such as mouse movements, mouse clicks, and scrolling activity, as well as keystrokes. This data is collected on a non-personal basis and thus guarantees anonymity. Hotjar uses tracking cookies to collect and transmit your data. When you visit a Hotjar-enabled website, the tracking cookies automatically generate data on your activity on the website and saves it on the Hotjar servers in Ireland. In addition, the cookies on your device also collect data. For more information on how Hotjar works, go to https://www.hotjar.com/privacy.
You can opt-out of Hotjar’s storing of data about your usage of our site and Hotjar’s use of tracking cookies on other websites by following this opt-out link.
g) Google Analytics
We only use Google Analytics with activated IP anonymisation . This means that Google will truncate your IP address within Member States of the European Union as well as in other parties to the Agreement on the European Economic Area. Only in exceptional cases is your full IP address transmitted to a Google server in the USA and stored there. Google will not associate your browser’s IP address transmitted for Google Analytics purposes with any other data held by Google. You can adjust your browser settings to prevent cookies from being stored. Furthermore, you can prevent the collection of data generated by the cookie about your use of the website and its processing by Google by downloading and installing the browser plug-in provided at https://tools.google.com/dlpage/gaoptout?hl=en.
Current as of May 2018