Historisches Museum Frankfurt

Privacy policy

Privacy policy

Responsible and
Data Protection Officer

Responsible for this website is
Dr. Doreen Mölders
Historical Museum Frankfurt
Saalhof 1
60311 Frankfurt am Main
E-mail:
You can contact the data protection officer by e-mail at .
or at the address: Data Protection and IT Security Department of the City of Frankfurt am Main, Sandgasse 6, 60311 Frankfurt am Main.

Type of data

Every time you access content on the website, data is temporarily stored that may allow you to be identified. The following data is collected:

- Date and time of access
- IP address
- Host name of the accessing computer
- Website from which the website was accessed
- Websites accessed via the website
- Page visited on our website
- Message as to whether the retrieval was successful
- Amount of data transferred
- Information about the browser type and version used
- operating system

The temporary storage of the data is necessary for the course of a website visit in order to enable the website to be delivered to the person accessing it. Further storage in log files takes place in order to ensure the functionality of the website and the security of the information technology systems. Our legitimate interest in data processing also lies in these purposes.
You must log in to use the password-protected areas of the website. This requires you to create an account yourself and enter an e-mail address. You can then create a new password and we can contact you. When using contact forms and comment fields, entering an e-mail address is voluntary. Entering your e-mail address is a prerequisite for the museum team to be able to contact you to answer your request.

Legal bases & purposes

The data is processed on the basis of Art. 6 para. 1 lit. f GDPR.
The stored data is used exclusively for data security purposes.
This website uses other cookies that are necessary for accessing the website and the tracking tool Matomo, which is not necessary for the operation of the website. These tools enable us to provide a user-friendly website with content that is tailored to your preferences. We can only partially deactivate the services mentioned for your visit; you will find more detailed information further on in this explanation.
Further data processing takes place when you register for our newsletter. If you are interested in our newsletter, you will find the relevant explanations on the page before completing the registration process.

Storage period

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the provision of the website, this is the case when the respective session has ended. The log files are stored for a maximum of 24 hours directly and only accessible to administrators. They are not passed on to third parties for commercial or non-commercial purposes. After that, they are only available indirectly via the reconstruction of encrypted backups, which are permanently deleted after 14 days. Email addresses that are stored for a user account can be deleted by users themselves by deleting the account.

Rights of the data subjects

Right to information

You can request information about your personal data that we process in accordance with Art. 15 GDPR.


Right to rectification

If the information concerning you is not (or no longer) correct, you can request a correction in accordance with Art. 16 GDPR. If your data is incomplete, you can request that it be completed.


Right to erasure

In accordance with Art. 17 GDPR, you can request the erasure of your personal data if the requirements for this are met.


Right to restriction of processing

In accordance with Art. 18 GDPR, you have the right to request that the processing of your personal data be restricted if the conditions for this are met.


Right to lodge a complaint

If you believe that the processing of your personal data violates data protection law, you have the right to lodge a complaint with a data protection supervisory authority of your choice in accordance with Art. 77 (1) GDPR. This also includes the data protection supervisory authority responsible for the controller:
The Hessian Commissioner for Data Protection and Freedom of Information, P.O. Box 3163, 65021 Wiesbaden, 0611/1408-0, poststelle@datenschutz.hessen.de.

Cookie information

We use cookies on this website to recognize the settings and preferences of visitors and to be able to further adapt the design of the website to the needs of visitors. Cookies are small text files that are stored locally in the cache of the visitor's internet browser. As the https protocol (Hypertext Transfer Protocol secure) is by definition a stateless protocol and therefore each access is independent of all others for the web server, cookies make it possible to recognize the Internet browser with which you are visiting us.

There are, for example, so-called session cookies, which serve to identify users of the website during a longer-lasting web application over several accesses without having to re-enter the password each time a subpage is accessed, for example. Session cookies are also required to enable the "My favorite object" watch list on our websites. The validity of the cookie information for the web server depends on the settings of the individual cookie. The duration of cookie storage by the user depends on when the cookies are deleted in the user's web browser.

Cookies used

The following cookies are used on our website

Cookie information accepted (cookie-agreed)

When you access the website https://historisches-museum-frankfurt.de and https://stadtlabor-digital.de for the first time, an info box appears regarding the use of cookies in accordance with the EU ePrivacy Directive. The cookie-agreed cookie is set in order to be able to recognize whether the same user has taken note of the cookie information when the aforementioned websites are called up later. If the user deletes the cookies in their browser, the cookie-agreed cookie is also deleted. Otherwise it will be stored for a maximum of 100 days.


Data collection for the presentation of the website (has-js)

To build up the website during your visit, the information is processed in .json format. This is the abbreviation for JavaScript Object Notation. Although JSON is based on JavaScript, it is used independently of the programming language. The underlying CMS system Drupal uses the Batch API module; this batch processing for processing your website call requires the has-js cookie. If deactivated, the processing for displaying the website would not work and the view would end with a white screen page.
If the user deletes the cookies in their browser, the has-js cookie is also deleted. Otherwise, it will be deleted at the latest at the end of the visit to the website (end of session).


Orientation on the website (lastActiveElement)

This cookie allows you to return to the last element regardless of the browser's ability to go back a page.
If the user deletes the cookies in their browser, the lastActiveElement cookie is also deleted. Otherwise it is stored for a maximum of 1 day.


Session cookie (SSESS...)

During a visit to the websites https://historisches-museum-frankfurt.de and https://stadtlabor-digital.de, a session cookie is set when the user logs in to enable navigation on the site and access to certain content and functions within the site.
If the user deletes the cookies in their browser, the session cookie is also deleted. Otherwise, it will be deleted on the web server after 23 days at the latest.

Our newsletter

We send out our newsletter by e-mail on request. It offers you tips and news about exhibitions, projects and special events at the Historical Museum, the Young Museum and the Porcelain Museum Frankfurt. Your registration is a prerequisite for receiving the newsletter. Your data will not be processed in any other way or passed on to third parties. You can unsubscribe from the newsletter and revoke your consent to the storage of your e-mail address at any time.


Registration procedure

On the registration page, you simply enter your e-mail address; no further data is required. Before you subscribe to the newsletter, click to give us your consent to store and use your e-mail address for sending the newsletter.

You will then receive an e-mail from us at the address provided. This contains a link - to confirm your subscription to this newsletter mailing list, click on the "subscribe" confirmation link.

You can unsubscribe from the newsletter at any time, in which case we will immediately delete the email address you have provided (revocation in accordance with Art. 17 para. 1 lit. b GDPR). At the end of each newsletter email you will find a text with the note "you can unsubscribe here". Or you can send us an email to .