Privacy policy

This Privacy policy provides you with an overview concerning our collection and processing of your personal data as well as your rights under the privacy law.  

Name and contact information for the data controller

The data controller is:

Messe Frankfurt France S.A.S
1 Avenue de Flandres
75019 Paris
Téléphone : +33 1 55 26 89 89
Email :

You can reach our data protection officer at:

Messe Frankfurt France S.A.S
Délégué à la protection des données
1 Avenue de Flandres
75019 Paris
Téléphone : +33 1 55 26 89 89
Email :

Messe Frankfurt France S.A.S. may, within this Privacy Policy, be referred to by its name "Messe Frankfurt" or by the pronoun "we".

I Our commitments

We are committed to complying with the applicable regulations for all processing of personal data that we carry out.

This means that we respect the principles set out in these regulations, and in particular

  • that we only carry out lawful processing;

  • that we respect your rights and comply with your requests, when they are justified;

  • that we ensure that any transfers of personal data to countries outside the European Union and the European Economic Area are covered by appropriate safeguards;

  • that we comply with our transparency obligations, and in particular keep you informed of the entities to which we entrust your personal data;

  • that we do not process your personal data beyond the necessary retention period;

  • that we implement appropriate security measures, taking into account the risks.

Messe Login

The Messe Frankfurt Group offers a wide range of digital services. Access to these is via a personal account using the authentication portal Messe Login, as a single sign-on system. To open an account, you need to enter your title, name, e-mail address and country. Depending on the services used, further details may be required. If the use of the Messe Login involves the transfer of data to foreign companies of the Messe Frankfurt Group, we will inform you of this in advance. The legal basis is point (b) of Article 6 (1) GDPR. You can delete your Messe Login at any time, but you will then no longer be able to use the digital services.

To delete your account please select the burger menu in the app, then choose Messe-Login. There you’ll find a link to directly delete your account.

II Purposes, legal bases and retention periods

Your personal data may be processed by authorised Messe Frankfurt staff for a number of different purposes.

Each of these purposes has a "legal basis", which justifies our processing.

Your data is also stored for a predetermined period of time, which depends on the purpose of the processing.

The purposes, legal bases and retention periods are detailed in the table below:


Purpose of the processing

Legal basis

Duration of data retention

Accounting management

Our legal obligations regarding accounting

10 years from the end of the tax year


Pre-contractual measures taken at the request of a candidate

2 years from the date we decide on your application.

Business development

Pursuit of our legitimate interest in increasing our business

3 years from the last contact from you

Customer relationship management (exhibitors or visitors)

The contract we have concluded with our client

3 years from the end of the business relationship

Organisation of trade shows and exhibitions

The contract we have with our exhibitor or visitor

3 years from the end of the business relationship

Suppliers management

The contract we have with our supplier

5 years from the end of the business relationship

III Recipients of the data

Only authorised third parties and persons whose duties require them to process your personal data will have access to such data.

This may include:

  • Messe Frankfurt Group companies;

  • Subcontractors processing data on behalf of Messe Frankfurt, namely:

  • Messe Frankfurt GmbH Ludwig-Erhard-Anlage 1, the company in charge of hosting this website, as well as, more broadly, the service providers in charge of hosting our personal data;

  • DATA2S, our outsourcing provider;

  • ARICE, our accounting firm;

  • ARCHIVECO, our service provider in charge of archiving operations;

  • Our recruitment firm ;

  • STORY PROTECTION, our remote maintenance provider;
  • LENI, our provider of software in the cloud;
  • Odity, the phoning company we use;
  • La Poste or Siman, the companies that manage the delivery of mail;
  • Sarbacane, our emailing and sms mailing supplier
  • Our commercial partners, who may be responsible for issuing visitor badges;

  • Associations in the trade fair and exhibition sector;

  • Exhibitors, to whom we may send visitor information;

  • Public authorities, e.g. in the event of a legal obligation.

IV Transmissions to third countries

With your consent or to fulfil contractual, legal or regulatory obligations, we transfer data to our group companies. Insofar as these entities sign the Commission's standard contractual clauses, they are obliged to comply with the European data protection standard. You can find an overview of all companies and sales representatives on our Global Network page.

V Your rights

You have a right of access, rectification, opposition, deletion, limitation and portability. You also have the right to define directives as to the fate of your data after your death and, if necessary, the right to revoke your consent.

To exercise these rights, please contact us at the following address:

You also have the right to lodge a complaint with the competent supervisory authority (the CNIL).

VI Indirect collections

We may collect the personal data necessary for the registration of trade fair participants ( last name, first name, company, email address, telephone number, preferences, etc.) indirectly, through our partner LENI.

Our recruitment agencies may also send us the personal data of job applicants. This is the personal data necessary for the processing of these applications, in particular the data contained in their CVs and covering letters. We may also collect data relating to your career via Linkedin.