path navigation

Data Protection

What happens to your data when you visit the DIHK website or subscribe to a newsletter? Here you will find our information on data protection.

1. Name and address of the responsible person

Responsible within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:

German Chamber of Commerce and Industry (DIHK) / Deutsche Industrie- und Handelskammer (DIHK)
Breite Straße 29
D-10178 Berlin
telephone +49 30 20308-0
fax +49 30 20308-1000

2. Name and address of the data protection officer

The data protection officer of the data controller is:

Kei-Lin Ting-Winarto
German Chamber of Commerce and Industry (DIHK) / Deutsche Industrie- und Handelskammer (DIHK)
Breite Straße 29
D-10178 Berlin
telephone +49 30 20308-2706

3. General information on data processing

3.1 Scope of the processing of personal data

As a matter of principle, we collect and process personal data of our users only to the extent that this is necessary for the provision of a functional website as well as our contents and services. The processing of personal data of our users is regularly only carried out with the consent of the user. An exception applies in those cases in which obtaining prior consent is not possible for actual reasons and the processing of the data is permitted by legal regulations.

4. Provision of the website and creation of log files

4.1 Description and scope of data processing

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer.

The following data is collected:

  • The IP address of the user
  • Date and time of access

This data is also stored in the log files of our system. This data is not stored together with other personal data of the user.

4.2 Legal basis for data processing

The legal basis for the temporary storage of the data and the log files is Art. 6 para. 1 lit. f DSGVO.

4.3 Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session.

The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimise the website and to ensure the security of our information technology systems.

These purposes are also our legitimate interest in data processing according to Art. 6 Para. 1 lit. f DSGVO.

4.4 Duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

In the case of storage of data in log files, this is the case after seven days at the latest. Storage beyond this period is possible.

5. Use of cookies

5.1 Description and scope of data processing

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's computer system. When a user calls up a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again.

We use cookies on our website that enable an analysis of the user's surfing behaviour.

The following data can be transmitted in this way:

  •  Search terms entered
  •  Frequency of page views
  •  Use of website functions

The user data collected in this way is made anonymous by technical precautions. It is therefore no longer possible to allocate the data to the calling user. The data is not stored together with other personal data of the user.

When accessing our website, users are informed by an information banner about the use of cookies for analysis purposes and are referred to this data protection declaration. In this context, there is also an indication of how the storage of cookies can be prevented in the browser settings.

5.2 Legal basis for data processing

The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 lit. f DSGVO. The legal basis for the processing of personal data using cookies for analysis purposes is Art. 6 para. 1 lit. a DSGVO.

5.3 Purpose of the data processing

The analysis cookies are used for the purpose of improving the quality of our website and its content. Through the analysis cookies, we learn how the website is used and can thus continuously optimise our offer. These purposes are also our legitimate interest in processing the personal data according to Art. 6 para. 1 lit. a DSGVO.

On this website, we use the web analysis service Matomo to analyse and check the use of our website. The statistics obtained enable us to improve our offer and make it more interesting for you as a user.

We operate Matomo in a version that does not require cookies. Therefore, no Matomo cookies are stored on your computer for the purpose of web analysis. For the analysis of website usage, your IP address and information such as time stamp, web pages visited and your language settings are collected. We store the information collected in this way on our server.

This website uses Matomo with the extension "AnonymizeIP". This means that IP addresses are processed in a shortened form and a direct link to a person is excluded. The IP address transmitted by your browser via Matomo is not merged with other data collected by us. The legal basis for the use of Matomo is Art. 6 para. 1 p. 1 lit. f DS-GVO.

The Matomo programme is an open source project. Information from the third-party provider on data protection is available at

5.4 Duration of storage, possibility of objection and elimination

Cookies are stored on the user's computer and transmitted to our site by the user. Therefore, you as a user also have full control over the use of cookies. By changing the settings in your internet browser, you can deactivate or restrict the transmission of cookies. Cookies that have already been stored can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all the functions of the website to their full extent.

6. Social media

DIHK maintains social media offerings on Facebook, Instagram, Twitter, LinkedIn and YouTube. You can find detailed data protection information here: (German)

7. Disclosure of personal data to third parties

The service providers for the technical support of the application have access to the data.

In order to tailor the design as well as to optimise this website, anonymised data is collected and stored by solutions and technologies and usage profiles are created from this data using pseudonyms. Cookies may be used for this purpose, which enable the recognition of an Internet browser. However, usage profiles are not merged with data about the bearer of the pseudonym. In particular, IP addresses are made unrecognisable immediately after receipt, which means that it is not possible to assign usage profiles to IP addresses. Visitors to this website can object to this data collection and storage at any time for the future. The objection only applies to the device and web browser on which it was set, please repeat the process on all devices if necessary. If you delete the opt-out cookie, requests will be sent to the tracking tool again.

The following data will be collected:

Information about the browser type and version used.

  • The user's operating system
  • The user's internet service provider
  • The user's IP address
  • Date and time of access
  • Websites from which the user's system accesses our website
  • Websites that are accessed by the user's system via our website

8. Rights of the data subject

Under the EU General Data Protection Regulation, you have the following rights:

  • If your personal data are processed, you have the right to obtain information about the data stored about you (Art. 15 DSGVO).
  • If inaccurate personal data is processed, you have the right to rectification (Art. 16 GDPR).
  • If the legal requirements are met, you may request erasure or restriction of processing as well as object to processing (Art. 17, 18 and 21 DSGVO).
  • If you have consented to the data processing and the data processing is carried out with the help of automated procedures, you may have a right to data portability (Art. 20 DSGVO).

Should you make use of your above-mentioned rights, DIHK will check whether the legal requirements for this are met.

8.1 Right to information

If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to inform all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.

You have the right to be informed of these recipients by the controller.

8.2 Right to revoke your declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of the consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

8.3 Right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.

The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.


Porträtfoto Kei-Lin Ting-Winarto
Kei-Lin Ting-Winarto Director Economical Administrative Law, Public Procurement, Data Privacy Law