Privacy Policy

Börsenverein Stiftung


I. Controller of the data file

The controller of the data file according to Art. 4 Abs. 7 EU-GDPR is:

Stiftung Buchkultur und Leseförderung des Börsenvereins des Deutschen Buchhandels
Braubachstr. 16
60311 Frankfurt am Main

represented by business executives Karin Schmidt-Friderichs, Klaus Gravemann, Peter Kraus vom Cleff

Tel.: +49 69 13 06 0
Fax: +49 69 13 06 20 1
E-Mail: infoNO SPAM SPAN!

II. Data collection when visiting our website

1. Data collection when calling our website

(1) If you only visit our website to inform yourself (i.e. if you do not register or otherwise inform us, e.g. by entering in a form), we only collect the personal data that your browser sends to our server transmitted. If you wish to view our website, we collect data that is technically necessary for us to be able to view the website and to ensure stability and security. These are:

We also store the aforementioned data in the log files of our system. Storage with other data concerning you will not take place.

(2) The temporary storage of the IP address by our system is necessary to improve the stability and functionality of the website as well as for troubleshooting in case of need. Legal basis for this is Art. 6 (1) sentence 1 (f) EU-GDPR.

(3) The aforementioned data will be deleted as soon as their storage is no longer necessary to achieve the purpose. In the event of the website being made available, this is the case after the page visit has ended. The log files are deleted after a maximum of 30 days.

2. Use of cookies

(1) Our website uses cookies. These are small text files that are stored in your browser or by your browser in your computer system. Based on the string contained in the cookie, your browser can be uniquely identified when you visit our website again.

(2) We use transient and persistent cookies.

(a) Scope and functionality of transient cookies: Transient cookies are automatically deleted when the browser is closed. This includes in particular the session cookies. These store a so-called session ID, with which various requests from your browser can be assigned to the common session. This will allow your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser.

(b) Scope and functionality of persistent cookies: Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie. You can delete the cookies in the security settings of your browser at any time.

(3) We use cookies to identify you for follow-up visits if you have an account with us. Otherwise you would have to log in again for each visit. The legal basis for the processing of personal data using cookies is Art. 6 (1) sentence 1 (f) EU-GDPR.

(4) You can set your browser so that you are informed about the setting of cookies, decide on a case-by-case basis, or rule out the acceptance of cookies. Already saved cookies can be deleted at any time. If you want to make settings for your browser, note that the way you manage your cookie settings differs from browser to browser. You'll find descriptions on how to change cookie settings in each browser's Help menu. For the respective browser you can find this under the following links:

If you do not accept cookies, the functionality of our website may be limited.

(5) Your cookie setting

3. Web analysis by Matomo (formerly PIWIK)

(1) On our website we use the open-source software tool Matomo (formerly PIWIK) to analye the surfing behaviour of our users. The software sets a cookie on the user's computer (for how cookies work, see II.2. above). If individual pages of our website are called, the following data is stored:

The software runs exclusively on the servers of our website. A storage of the personal data of the users takes place only there. A transfer of the data to third parties does not take place. The software is set so that the IP addresses are not completely saved but 2 bytes of the IP address are masked (example: In this way, an assignment of the shortened IP address to the calling computer is no longer possible.

(2) The processing of users' personal data enables us to analyze the surfing behaviour of our users. By analyzing the obtained data, we are able to compile information about the use of the individual components of our website. This helps us to constantly improve our website and its user-friendliness. For these purposes, our legitimate interest lies in the processing of data according to Art. 6 (1) sentence 1 (f) GDPR. The anonymisation of the IP address sufficiently takes into account the interest of users in their protection of personal data.

(3) Legal basis for the processing of personal data of users is Art. 6 (1) sentence 1 (f) EU GDPR.

(4) The data will be deleted as soon as they are no longer needed for our recording purposes. In our case, this is the case after 3 months.

(5) Cookies are stored on the user's computer and transmitted to us by the user. Therefore, as a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Already saved cookies can be deleted at any time. This can also be done automatically. If cookies are disabled for our website, it may not be possible to use all the functions of the website to the full.

(6) We offer our users the option of opting out of the analysis process on our website. For this you must follow the appropriate link. In this way, another cookie is set on your system, which signals our system not to save the data of the user. If the user deletes the corresponding cookie in the meantime from his own system, he must set the opt-out cookie again.

(7) For more information on the privacy settings of the Matomo software, see the following link:

4. Embedding of YouTube videos

(1) In some cases, our online services embed YouTube videos, which are saved on the portal and can be viewed directly on our website.

(2) When you visit the website, YouTube is informed that you accessed the corresponding subpage of our website. In addition, the data mentioned in II.1. and 2. of this privacy policy is transmitted. This occurs irrespective of whether YouTube provides a user account that you have logged into or there is no existing user account. If you are logged into Google, your data is directly associated with your account. If you do not want there to be an association with your YouTube profile, you must log out using the corresponding buttons prior to activation. YouTube saves your data as a user profile and uses it for the purposes of advertising, market research and/or demand-oriented design of its website. This analysis is carried out in particular (even for users who are not logged in) for the purpose of providing targeted advertising and informing other users of social networks about your activities on our website. You have the right to object to the creation of such user profiles by contacting YouTube directly.

(3) For more information about why and to what extent data is collected, you can consult YouTube’s privacy policy directly. There you will also find further information about your rights and configuration options for protecting your privacy: Google also processes your personal data in the USA and is compliant with the EU-US Privacy Shield:

III. Data collection when you contact us

(1) If you contact us by e-mail or through a contact form provided by us, the information provided by you (your e-mail address and, if applicable, your name, address and telephone number) will be stored by us to: To process your request and to answer any questions you may have.

(2) The legal basis for this is Article 6 (1) sentence 1 (f) EU GDPR. If the purpose of making a contact is to conclude a contract with us, the legal basis is additionally Article 6 (1) sentence 1 (b) EU GDPR.

(3) We will delete the accumulated data after the storage is no longer required, or we restrict the processing if there are statutory storage requirements.

IV. Right to object

(1) You have the right to object to the processing of your personal data for the purposes of direct advertising or data analysis.

(2) If we process your data to protect legitimate interests, you have the right to object to this processing provided that there are grounds related to your particular situation for objecting to the processing of this data.

V. Processing of data by external service providers

In part, we use to process your data from external service providers. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly inspected.

VI. Data processing in the corporate group

(1) Areas of the Börsenvereins Unternehmensgruppe perform certain tasks of data processing centrally for the affiliated companies. Insofar as there is a contractual relationship between you and us or between you and one or more companies in our group, your data may be processed centrally. This happens, for example, for the central administration of address data, for contract and service processing, for the collection and disbursement or for the joint processing of mail. More information about the companies affiliated with the group can be found here: More information about Börsenverein des Deutschen Buchhandels Stiftung can be found here:

(2) The legal basis for this is Article 6 (1) sentence 1 (f) EU GDPR.

VII. Other recipients of personal information

We may transfer your personal information to other recipients, such as government agencies, for compliance with legal reporting obligations (such as tax authorities, social security agencies or law enforcement agencies).

VIII. Your privacy rights

(1) You can request information about the data stored about you at the address mentioned above under I. In addition, you may request the correction of data if we have stored incorrect personal information about you. In addition, you have the right to require the completion of personal data in consideration of the purposes of processing, if we have stored incomplete data. In addition, under certain conditions, you may request the deletion of your data. You may also be entitled to restrict the processing of your data and have the right to disclose the data you provide in a structured, common and machine-readable format.

(2) You have the right to lodge a complaint with a data protection authority. The supervisory authority responsible for us is: Der Hessische Beauftragte für Datenschutz und Informationsfreiheit, Gustav-Stresemann-Ring 1, 65189 Wiesbaden.

IX. Duration of data storage; Reference to tax and commercial storage requirements

(1) Unless otherwise stated in this privacy statement, we will erase your personal information as soon as it is no longer required for the purposes specified.

(2) It may happen that we retain personal data for the period in which claims can be asserted against us (legal limitation period of up to three years). The legal basis for this is Article 6 (1) sentence 1 (f) EU GDPR.

(3) In addition, we store your personal data as far as we are legally obliged to do so. Such proof and retention obligations arise, among other things, from the Commercial Code or tax regulations and provide for periods of up to ten years. The legal basis for this is Article 6 (1) sentence 1 (f) EU GDPR.


Logo Stiftung Buchkultur und Leseförderung des Börsenverein des Deutschen Buchhandels

Main Supporter

Logo Deutsche Bank Stiftung