Privacy Policy

Welcome to our website and thank you for your interest in our company. We take the protection of your personal data very seriously. We process your data in accordance with applicable personal data protection legislation, in particular the GDPR and our country-specific implementation laws, which provide comprehensive information about the processing of your personal data by KOSMETIK international Messe GmbH and your rights.

Personal data is any information that makes it possible to identify a natural person. This includes, in particular, your name, date of birth, address, telephone number, email address and IP address. Anonymous data is available if no personal reference to the individual/user can be made.

Responsible body and data protection officer
KOSMETIK international Messe GmbH
Medienplatz 1
76571 Gaggenau
Managing director: Nathalie Bock
Phone +49 (0) 7225 916-159, Fax +49 (0) 7225 916-179
besucher@ 8< SPAM-Schutz, bitte entfernen >8

Contact info of the data protection officer: datenschutz@ 8< SPAM-Schutz, bitte entfernen >8

Your rights as a data subject
We would first like to notify you of your rights as a data subject. These rights are set out in Articles 15 - 22 GDPR, and include:

  • The right of access (Art. 15 GDPR),
  • The right to rectification (Art. 16 GDPR),
  • The right to data portability (Art. 20 GDPR),
  • The right to object to data processing (Art. 21 GDPR),
  • The right to erasure / right to be forgotten (Art. 17 GDPR),
  • The right to restriction of data processing (Art. 18 GDPR).

To exercise these rights, please contact: datenschutz@ 8< SPAM-Schutz, bitte entfernen >8 The same applies if you have any questions regarding data processing in our company or when you withdraw your consent. You also have a right of appeal to the relevant data protection supervisory authority.

Right to object
Please note the following with respect to your right to object:

When we process your personal data for the purpose of direct marketing, you have the right to object to this data processing at any time without providing the reasons for such objection. This also applies to profiling insofar as it is associated with direct marketing.

If you object to the processing for direct marketing, we will no longer process your personal data for such purposes. The objection is free of charge and can be made informally, where appropriate to: datenschutz@ 8< SPAM-Schutz, bitte entfernen >8

Should we process your data to protect legitimate interests, you may object to such processing at any time for reasons that arise from your specific situation; this also applies to profiling based on these provisions.

We will then cease to process your personal information unless we can demonstrate compelling legitimate grounds for processing such information that outweigh your interests, rights and freedoms, or the processing is intended to assert, exercise or defend legal claims.

Purposes and legal bases of data processing
The processing of your personal data complies with the provisions of the GDPR and all other applicable data protection regulations. Legal bases for data processing arise in particular from Art. 6 GDPR.

We use your data to initiate business, to fulfil contractual and legal obligations, to conduct the contractual relationship, to offer products and services and to consolidate customer relationships, which may include marketing and direct marketing.

Your consent also constitutes a data protection regulation. In this respect, we will inform you of the purposes of data processing and the right to withdraw your consent. If the consent also relates to the processing of special categories of personal data, we will explicitly notify you in the consent process, Art. 6 (1) lit. f GDPR.

Processing of special categories of personal data within the meaning of Art. 9 (1) GDPR may only take place where necessary on the grounds of legal regulations and there is no reason to assume that your legitimate interests should prevail to the exclusion of processing such data, Art. 6 (1) lit. f GDPR.

Data transfers / Disclosure to third parties
We will only transmit your data to third parties within the scope of given statutory provisions or based on consent. In accordance with your consent, the transfer is made to KOSMETIK international Verlag GmbH, Medienplatz 1, 76571 Gaggenau and TOP HAIR International GmbH, Medienplatz 1, 76571 Gaggenau. In all other cases, information will not be transferred to third parties unless we are obliged to do so owing to mandatory legal regulations (disclosure to external bodies, including the supervisory authorities or law enforcement authorities).

Data recipients / categories of recipients
In our organisation, we ensure that only individuals who are required to process the relevant data to fulfil their contractual and legal obligations are authorised to handle personal data.

In many cases, service providers assist our specialist departments to fulfil their tasks. The necessary data protection contract has been concluded with all service providers. We use service providers for order processing for our trade fairs, in the advertising environment (direct mailing, newsletter distribution) as well as for customer surveys by phone and online. The order processing for our trade fairs takes place via the company doo GmbH, Hultschiner Straße 8, 81677 Munich. The privacy policy of doo GmbH with more detailed information on the collection and use of your data can be found at Another service provider is VSB-Verlagsservice Braunschweig GmbH, Georg-Westermann-Allee 66, 38104 Braunschweig, the privacy policy can be found at

Transfers of personal data to third countries
A transfer of data to third countries (outside the European Union or the European Economic Area) shall only take place if required by law or if you have provided your consent for such a transfer.

Period of data storage
We store your data for as long as such is required for the relevant processing purposes. Please note that numerous retention statutory periods require that data must be stored for a specific period of time. This relates in particular to retention obligations for commercial or fiscal purposes (e.g. commercial code, tax code, etc.). The data will be routinely deleted after use unless a further period of retention is required.

We may also retain data if you have given us your permission to do so, or in the event of any legal disputes and we use the evidence within the statutory limitation period, which may be up to 30 years; the standard limitation period is 3 years.

Secure transfer of data
We implement the appropriate technical and organisational security measures to ensure the optimal protection of the data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorised persons. The security levels are continuously reviewed in collaboration with security experts and adapted to new security standards.

The data exchange to and from our website is encrypted. We provide https as a transfer protocol for our website, and always use the current encryption protocols. In addition, we offer our users content encryption in our contact forms and applications. We alone can decrypt this data. It is also possible to use alternative communication channels (e.g. surface mail).

Obligation to provide data
A range of personal data is required to establish, implement and terminate the obligation and the fulfilment of the relevant contractual and legal obligations. The same applies to the use of our website and the various functions we provide.

We have summarised the relevant details in the above point. In some cases, legal regulations require data to be collected or made available. Please note that it will not be possible to process your request or execute the underlying contractual obligation without this information.

Data categories, sources and origin of data
The data we process is defined by the relevant context: it depends on whether, for example, you place an order online, enter a request on our contact form or if you want to send us an application or submit a complaint.

Please note that we may also provide information at specific points for specific processing situations separately where appropriate, e.g. when uploading application documents or when making a contact request.

We collect and process the following data when you visit our website:

  • Name of the Internet service provider
  • Web browser and operating system used
  • Information on the website from which you visited us
  • The IP address by your allocated Internet service provider
  • Files accessed, volume of data transferred, downloads/file export
  • Information on websites accessed on our site, including date and time

For reasons of technical security (in particular to safeguard against attempts to attack of our web server), this data is stored in accordance with Article 6 (1) lit f GDPR. Anonymisation takes place no later than after seven days by abbreviating the IP address so that no reference is made to the user.

Where applicable: we collect and process the following data as part of a contact request:

  • Last name, first name (eventually: title),
  • Contact information,
  • Info on wishes and interests,

Where applicable: we process the following data as part of the ordering process:

  • Last name, first name (eventually: title),
  • Date of birth
  • Delivery address, Invoice address,
  • Contact data (email address),
  • Area of Expertise
  • Payment

You can revoke your consent at any time without stating reasons via e-mail datenschutz@ 8< SPAM-Schutz, bitte entfernen >8 or by post to KOSMETIK international Messe GmbH, Medienplatz 1, 76571 Gaggenau.

Where applicable: we collect and process the following data for newsletters:

  • Last name, first name (eventually: title),
  • Email address,
  • Analysis data from newsletter evaluation

Where applicable: we collect and process the following data for lotteries:

  • Last name, first name (eventually: title),
  • Mailing address or street address,
  • Email address (depending on the communication channel)

Contact form / Contact via email (Article 6 (1) lit a, b GDPR)
A contact form is available on our website which can be used to contact us electronically. If you write to us using the contact form, we will process the data you submitted in the contact form to respond to your queries and requests.

In so doing, we respect the principle of data minimisation and data avoidance, such that you only have to provide the information we require to contact you, which is your email address and the message field itself. Your IP address will also be processed for technical reasons and for legal protection. All other data is voluntary, and additional fields are optional (e.g. to provide a more detailed response to your questions).

If you contact us by email, we will process the personal information provided in the email solely for the purpose of processing your request. If you do not contact us using the forms provided, no additional data will be collected.

Newsletter (Article 6 (1) lit a GDPR)
You can subscribe to a free newsletter on our website. The email address and name you provided when you subscribed to the newsletter will be used to send the personalised newsletter.

The principle of data minimisation and data avoidance is observed here, as only the email address (where appropriate the name in the case of a personalised newsletter) is mandatory. Your IP address will also be processed when you subscribe to the newsletter for technical reasons and legal protection.

You can of course terminate the subscription at any time via the opt-out option provided in the newsletter and therefore withdraw your consent. You can also unsubscribe from the newsletter via datenschutz@ 8< SPAM-Schutz, bitte entfernen >8

Competition / advertising consent (Article 6 (1) lit a, b GDPR)
You can participate in various lotteries we offer on our website. If you complete the competition form, we process the relevant data you provided for the sole purpose of operating the competition.

The principle of data minimisation and data avoidance is observed here, as we only request data that is required to operate the competition. This is, for example, your name and email address and for mailing in case of win your postal address.

The mandatory fields are marked with an asterisk (*). Your IP address will also be processed for technical reasons and legal protection. The additional fields are optional and can be completed on a voluntary basis. We cannot operate the competition without the mandatory fields, as users will not be able to participate.

You can also give your consent to publicity as part of the competition screen. You can of course, enter the competition without granting consent to publicity.

If you click the relevant checkbox to give your consent, we will also process your data to send you information and offers for our products and services by telephone, email or post.

You can withdraw your consent at any time without stating the reasons for such by contacting via email to datenschutz@ 8< SPAM-Schutz, bitte entfernen >8 or via surface mail to KOSMETIK international Messe GmbH, Medienplatz 1, D-76571 Gaggenau

Web shop (Article 6 (1) lit b GDPR)
We process the data provided by you within the scope of the order form solely to execute and fulfil the underlying contractual relationship, unless you agree to further use. The principle of data minimisation and data avoidance is observed here, as we only request data that is required to perform the contract or fulfil our contractual obligations (i.e. your name, address, email address, area of Expertise and the payment data for the specific payment method you have chosen) or to collect data that is mandatory under the law.

Your IP address will also be processed for technical reasons and legal protection. If this data is not provided, we will have to decline the conclusion of the contract, as we cannot then perform the contract or will be obliged to terminate an existing contract, where appropriate. You can of course provide additional data on a voluntary basis.

Registration / Customer account (Article 6 (1) lit a, b GDPR)
Users can provide personal data to enable them to register on our website. The advantage here is that you can, in particular, view your order history and save your data to use for your next order, without having to re-submit it.

Registration is therefore necessary to perform a contract (via our online shop) with you or required to implement pre-contractual measures, or possible if guest access is provided as an option.

The principle of data minimisation and data avoidance is observed here, as only the mandatory data fields required for registration are marked with an asterisk (*). This is e.g. the email address, password and password re-entry.

When ordering in our online shop, we also require the billing address information for the delivery (title, first name, last name, address). If the delivery address is different from the billing address, the delivery address details mentioned above must also be provided.

For your order without access code, we also need proof from the beauty industry.

When you register on our website, the user’s IP address and the date and time of registration are also stored (technical background data). Activate the "Register now" to consent to the processing of your data.

Upon completion of the registration process, your data will be stored with us for use in the protected customer area. When you log in to our website with your email address as your username and your password, this data will be made available to you on our website (e.g. for orders in our online shop).

Payment systems / credit check (Article 6 (1) lit a, b, f GDPR)
In our online shop you can select to pay on invoice, by credit card, PayPal. In order to proceed accordingly, the relevant payment data is collected to perform and process your order. The payment system we use implements SSL encryption to protect your data. Your IP address will also be processed for technical reasons and legal protection.

The principle of data minimisation and data avoidance is observed in a manner that you only submit the data we need to process the payment and therefore fulfil the contract or to collect the payment for which we are under a legal obligation. We cannot fulfil the contract without this data, and we will therefore have to decline it.

The payment system we use uses SSL encryption to protect your data.

Note on credit card payment: As a standard procedure with credit card payments, your credit card details will be checked and a credit check is carried out.

Note on PayPal: PayPal is a PayPal (Europe) S.à.r.l. et Cie, S.C.A company, 22-24 Boulevard Royal, L-2449 Luxembourg. If the data subject selects “PayPal” as an option during the order process in our online shop, the data subject’s information will be automatically sent to “PayPal”.

By selecting this payment option, the data subject consents to the transfer of personal data required for payment processing. The personal data transmitted to PayPal is generally a first name, last name, address, email address, IP address, telephone number, mobile phone number or other data required for payment processing.

Personal data associated with the relevant order is also necessary to execute the purchase contract. Details on data protection at PayPal can be found at:

Marketing purposes (Article 6 (1) lit f GDPR)
KOSMETIK international Messe GmbH is keen to nurture the customer relationship with you and to send you information and offers about our product / services about our trade fairs. We therefore process your data to send you the relevant information and offers via email.

You may object to the use of your personal data for the purpose of direct marketing at any time; this also applies to profiling insofar as it is associated with direct marketing. If you object, we will cease processing your personal information for this purpose.

You can withdraw your consent at any time free of charge and informally without stating the reasons for such and should be sent via email to datenschutz@ 8< SPAM-Schutz, bitte entfernen >8 or via surface mail to KOSMETIK international Messe GmbH, Medienplatz 1, D-76571 Gaggenau.

Automated decisions in individual cases
We do not use purely automated processing to make decisions.

Our website uses “cookies” at various locations, which serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are placed on your computer and stored by your browser (locally on your hard disk).

Cookies enable us to analyse how users use our websites so we can design the website content in accordance with the visitor’s needs. Cookies also allow us to measure the effectiveness of a particular ad and, for example, to place it based on the user's interests.

Most of the cookies we use are "session cookies", which will be automatically deleted after your visit. Persistent cookies are automatically deleted from your computer when their validity period (generally six months) has expired or you delete them yourself prior to expiry.

Most web browsers automatically accept cookies. You can generally change your browser's settings if you prefer not to send the information. You can still use the offers on our website without restrictions (exception: configurators).

We use cookies to make our offers more user-friendly, effective and secure. We also use cookies to analyse how users use our websites so we can design the website content in accordance with the visitor’s needs. Cookies also allow us to measure the effectiveness of a particular ad and, for example, to place it based on the user's interests.

Cookies are stored on the user’s computer which then transmits them to us. As a user, you therefore exercise full control over the use of cookies. You can change the settings in your Internet browser to disable or restrict the sending of cookies. In addition, cookies that have already been saved on your computer can be deleted at any time via an Internet browser or other software programs. All this is possible in all the current Internet browsers.

Please note: If you deactivate the placing of cookies on your device, you may not be able to access all our website functions in certain circumstances.

Web tracking

Piwik Pro is used to analyze how visitors use the website. For this purpose, Piwik PRO Analytics Suite collects customer data on the basis of page views, events or comparable actions, which relate to technical properties or activities of website visitors. This data is evaluated by Piwik PRO in order to create reports over different time intervals, which contain, among other things, statements about the geographical origin, length of stay, interaction with the website or the origin. Own purposes are not pursued.

The collection and storage of personal data takes place exclusively in member states of the European Union or in other contracting states of the Agreement on the European Economic Area.

You can prevent the use of cookies by setting your browser software accordingly or in the consent banner, but in this case you may not be able to use all the functions of this website to their full extent.

The data will be deleted after 6 months.

Further information and the applicable data protection regulations can be found at”

Privacy settings

Google Web Fonts
This site uses so-called web fonts provided by Google for the uniform representation of fonts. When you call up a page, your browser loads the required web fonts into your browser cache to correctly display texts and fonts.

To do this, the browser you use must connect to Google's servers. As a result, Google learns that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a consistent and attractive presentation of our online services. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

If your browser does not support web fonts, a default font will be used by your computer. For more information on Google Web Fonts, see and Google's Privacy Policy:

Social plugins
Our website uses social plugins ("plugins") from the social network, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). The plugins are marked with a Facebook logo or the addition "Facebook Social Plugin".

If you visit a website of our website that contains such a plug-in, your browser can set up a direct connection with the Facebook servers when the button is activated. The content of the plugin is then transmitted by Facebook directly to your browser and incorporated by him into the website.

Two clicks for more privacy. Only by clicking the button is this active and your browser establishes the connection described with the servers of Facebook. The first click on the button thus means that you give your consent to the data transmission to Facebook.

By activating the plugin, Facebook receives the information that you have accessed the corresponding page of our website. If you are logged in to Facebook, Facebook can assign the visit to your Facebook account from this moment, even if you do not confirm the Facebook button a second time. If you interact with the plugins, for example, press the "Like" button again or leave a comment, the information is transmitted from your browser directly to Facebook and stored there.

Even if you do not have a Facebook account, Facebook may have data such as: As the IP address, about you collect. The purpose and scope of data collection and the further processing and use of the data by Facebook, as well as your rights and options to protect your privacy, please refer to the privacy policy of Facebook.

If you do not want Facebook to collect data about you via our website, you must log out of Facebook before visiting our website. In addition, you can also install add-ons to blockers for your browser.

YouTube Plugins (Videos)
We incorporate on this website via YouTube plugins videos from the Internet video portal of YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA ("YouTube"), represented by Google Inc.

Each time you visit a page on this site that offers one or more YouTube video clips, a direct connection is established between your browser and a YouTube server in the United States. The information that you have visited this page with your IP address is transmitted by your browser directly to the YouTube server and stored there. Through interactions with the YouTube plug-ins (for example, launching the video), the information generated by the interaction is transmitted to and stored on YouTube.

If you have a YouTube user account and do not want YouTube to collect information about you from this website and associate it with your membership information stored on YouTube, you must first sign out of YouTube before visiting this website.

For more information about YouTube's collection and use of your information, your rights to it, and privacy settings for YouTube, please visit

This website uses a Revive Adserver to embed advertisements. Revive uses so-called "cookies", text files that are stored on your computer and that allow an analysis of the use of the website. Revive also uses counting pixels. Through this information about the traffic is recorded and analyzed.

The data generated by cookies and pixels on the use of this website and the delivery of advertising formats are transmitted to a separate server and stored there anonymously. This information may be shared with contractors but will not be merged with your IP address. You can prevent the storage of cookies by a corresponding setting of your browser software.

However, we have no influence on the use of so-called "AdServer" cookies through the broadcast of advertising banners via third parties. Please compare the privacy policy of our partners to the use of such cookies and the information stored on them.

Online offers for children
Persons under the age of 16 may not submit personal data to us or give a declaration of consent without the authorisation of their legal guardian. We encourage parents and guardians to actively participate in the online activities and interests of their children.

Links to other providers
Our website also contains clearly identifiable links to the Internet sites of other companies. Although we provide links to websites of other providers, we have no influence on their content, and no guarantee or liability can therefore be assumed for such. The content of these pages is always the responsibility of the respective provider or operator of the pages.

The linked pages were checked at the time of linking for potential legal violations and identifiable infringements. No illegal content was identified at the time of linking. However, a permanent content control of the linked pages is not reasonable without concrete evidence of an infringement and, upon notification of a violation of rights, such links will be promptly removed.