Privacy Policy

D A T A   P R O T E C T I O N   I N F O R M A T I O N


The provision of a Search engine to access information on contemporary fine art from European archives

Responsible partner institutions (stand 15.03.2020)

basis wien - Forschungs- und Dokumentationszentrumfür moderne und zeitgenössische Kunst
Fünfhausgasse 5
1150 Vienna
+43 (0)1 522 6795 by Kunstbulletin / Schweizer Kunstverein
Neufrankengasse 4
CH-8031 Zurich
+41 (0)44 298 3030

Schweizerisches Institut für Kunstwissenschaft (SIK-ISEA)
Zollikerstrasse 32
PO Box 1124
CH-8032 Zurich
+41 (0)44 388 51 51

documenta und Museum Fridericianum GmbH
documenta archiv
Untere Karlsstr. 434117
+49 (0)561 70727 3100

Muzeul Național de Artă Contemporană al României (MNAC)
Documentation and Digital Memory Department
Palace of ParliamentIzvor 2-4 St., Wing E
4050563 Bucharest
+40 (0)21 318 9137

Institut für moderne Kunst Nürnberg e.V.
Informations- und Dokumentationszentrum für zeitgenössische Kunst
Luitpoldstrasse 5
D-90402 Nuremberg
+49 (0)911/240 2120

Moderna galerija/Museum of Modern Art
Windischerjeva ulica 2
SI-1000 Ljubljana
+386 (0)1 241 6826
386 (0)1 241 6840

Zentralarchiv für deutsche und internationale Kunstmarktforschung ZADIK
Universität zu Köln
D-50923 Cologne
+49 (0)221 470-0

Zentrum für Künstlerpublikationen
Weserburg Museum für moderne Kunst
Teerhof 20
D-28199 Bremen
Germany+49 (0)421 598 3940

Kunst- und Museumsbibliothek der Stadt Köln
Stadt Köln
Rathaus — Spanischer Bau
D-50667 Cologne
+49 (0)221/221-0

Garage Museum of Contemporary Art
9/32 Krymsky Val st.,
119049 Moscow
+7 495 645-05-20

Archive of Fine Art/ Archiv výtvarného umění
Pod Terebkou 1139/15
140 00 Praha
4 Nusle
Czech Republic
+420 222 942 718

Skulptur Projekte Archives
LWL — Museum für Kunst und Kultur
Domplatz 10
D-48143 Münster
+49 (0) 251 5907 367



Contact details for issues relating to data protection

basis wien Archiv und Dokumentationszentrum für moderne und zeitgenössische Kunst, ZVR 617763005
Fünfhausgasse 5, 1150 Vienna, Austria

Purposes of data processing based on the freedom of communication

The primary purpose of data processing by the responsible institutions is to provide a central search engine for information on contemporary fine art in the form of the public archives. Data processing in this sector is subject to the protection of the freedom of the press, freedom of expression and the freedom of communication guaranteed by convention and by the Austrian Constitution (Art 13 StGG; Art 10 EMRK).

  • Contractual obligation

Provision of a search engine to access information on contemporary fine art from European archives. The accuracy of information provided by the Search engine is the shared responsibility of the institutions involved, whereby each institution is responsible for the information from their own archives' database. 

Please note: Responsibility for the Search engine and the mediation of information is shared by the participating institutions. Each institution bears sole responsibility for the information contained in their own archives' databases.

Provision of channels of communication for sharing content and to service user relations.

Provision of information on the

  • Legitimate interests

The maintainance and increase of user satisfaction and user integration through analysis of user behaviour with the aim of improving the services provided. Web analytics are provided by Logaholic.

Legal basis of the data processing

1) Contractual basis: The use of the online Search engine is based on a contract between the responsible parties, iSd Art 6 Paragraph 1 lit b DS-GVO.

2) Additional services: Consent. The responsible party receives explicit consent from the user for individual services (e.g. Newsletters). This consent can be revoked at anytime with effect for the future.

3) Legitimate prevailing interests (see Point 6)

Description of the (prevailing) legitimate interests for purposes of 

  • IT security

The responsible parties store users' IP addresses for 7 days to safeguard against targeted attacks geared to overload the servers (denial of service attacks) and cause other systemic damage. The responsible party has an overriding legitimate interest in the data processing for purposes of maintaining the functionality of its online services. (Recital 49 of the DSGVO).

Evaluation of users' personal profiles

Users are NOT subjected to any form of evaluation of their personal profiles.

Obligation to provide information

The user is NOT obliged to provide any information.

Automatic decisions

NO automatic decisions with any legal ramifications are made on the user's behalf.

Processed types of data

Compiled by the responsible institution's database

IP Addresses (log files)

Terminal Data

Browser used

Device used

Communication protocols

Data source

(when not divulged by the user or compiled by the responsible intitution's system)



Type of Data


External Data Recipients

A) The inclusion of content on the website from third parties: Sharing of electronic identification data, especially IP addresses, is only done with explicit consent:


B) Outsourced data processing

Website management/System administration: e-hist Gerold Ritter, Zurich, Switzerland

Host provider: Hostpoint AG, Rapperswil/Switzerland

The principle responsible parties retain the right to avail themselves of contractual data processors. Should this occur, any additional data processors will be listed in the next subsequent update of the Data Protection Information. Any data processing by contractual data processors remains the responsibility of the principle responsible parties.

Internal recipients

System administrator


Third state transferal

The following data will be shared with non-EU states during processing:






Data type


Storage period

Unregistered users: Personal data (esp. IP address) of (unregistered) website visitors are stored for a period of seven days for IT security purposes, after which time all such data is erased.

Rights concerned Parties



Art 15 DSGVO 'Disclosure'

The customer has the right to request information concerning whether and/or the extent of personal data they are processing.

Art 16 DSGVO 'Amendments'

The customer has the right to demand the immediate amendment of incorrect personal data, and/or that such data be accurately amended.

Art 17 DSGVO 'Deletion' 

The customer has the right to demand that personal data be immediately deleted insofar as valid reasons apply as outlined in Art 17 Paragraph 1 DSGVO .

Art 18 DSGVO „Einschränkung“

The customer has the right to demand that the processing of personal data is limited insofar as valid reasons apply as outlined in Art 18 Paragraph 1 DSGVO .

Art 20 DSGVO 'Data portability'

The customer has the right to receive notification of all their own personal data in a structured, accessible and machine-readable format.

Art 21 DSGVO 'Objections'

The customer has the right to object to the processing of their personal data on the basis of overriding legitimate interest.

Right of appeal 

Art 77 DSGVO § 24 DSG

Should a customer believe that the processing of their personal data is in violation of this regulation, they have the right to lodge a complaint with the regulatory body.

Regulatory body

Österreichische Datenschutzbehörde
Barichgasse 40-42
1030 Vienna
+43 1 52 152-0


This site uses only first party cookies:
ean_session: Session-cookie to identify your session
XSRF-TOKEN: Used to protect form submission from Cross-Site-Request-Forgery
ean_cookie_consent: Stores your cookie consent (so you won’t be asked again)