Privacy policy

Privacy Policy and Consents

  • Table of contents
  • Objectives and responsible body
  • Basic information on data processing
  • Processing of personal data
  • Collection of access data
  • SSL encryption with https
  • Cookies & reach
  • Google Analytics
  • Google Fonts
  • Google Maps
  • Integration of third-party services and content
  • Data security
  • User rights and deletion
  • Changes to the privacy policy

Objectives and responsible body

This data protection declaration clarifies the type, scope and purpose of the processing (including collection, processing and use as well as obtaining consent) of personal data within our online offer and the websites, functions and content associated with it (hereinafter jointly referred to as “online offer” or “Website”) on. The data protection declaration applies regardless of the domains, systems, platforms and devices used (e.g. desktop or mobile) on which the online offer is run.

The provider of the online offer and the entity responsible for data protection is [company_name], owner: [company_owner], [adress_street], [adress_zip_location] (hereinafter referred to as “provider”, “we” or “us”). For contact options, we refer to our imprint.

The term “user” includes all customers and visitors of our online offer. The terms used, such as “user” are to be understood as gender-neutral.

Basic information on data processing

We process personal data of users only in compliance with the relevant data protection regulations in accordance with the requirements of data economy and data avoidance. This means that user data will only be processed if there is legal permission, in particular if the data is required to provide our contractual services and online services, or is required by law, or if consent has been given.

We take organizational, contractual and technical security measures according to the state of the art to ensure that the provisions of the data protection laws are observed and to protect the data processed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons protect.

If content, tools or other means from other providers (hereinafter jointly referred to as “third-party providers”) are used within the scope of this data protection declaration and their registered office is abroad, it can be assumed that data will be transferred to the countries where the third-party providers are domiciled . Data is transferred to third countries either on the basis of legal permission, user consent or special contractual clauses that guarantee the legally required security of the data.

Processing of personal data

In addition to the use expressly mentioned in this data protection declaration, the personal data is processed for the following purposes on the basis of legal permissions or user consent:

– The provision, execution, maintenance, optimization and security of our services, service and user services;

– Ensuring effective customer service and technical support.

We only transmit user data to third parties if this is necessary for billing purposes (e.g. to a payment service provider) or for other purposes if these are necessary to fulfill our contractual obligations towards users (e.g. address notification to suppliers).

When contacting us (via contact form or email), the information provided by the user is stored for the purpose of processing the request and in the event that follow-up questions arise.

Personal data will be deleted if they have fulfilled their purpose and the deletion does not conflict with any storage requirements.

Collection of access data

We collect data about every access to the server on which this service is located (so-called server log files). The access data includes the name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.

We use the log data without assigning the person to the user or other profiling in accordance with the legal provisions only for statistical evaluations for the purpose of operation, security and optimization of our online offer. However, we reserve the right to subsequently check the log data if there is a justified suspicion of illegal use based on specific indications.

 

SSL encryption with https

We use https to transmit data securely on the Internet (data protection through technology design Artikel 25 Absatz 1 DSGVO). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can recognize the use of this protection for data transmission by the small lock symbol in the top left corner of the browser and the use of the https scheme (instead of http) as part of our Internet address.

Cookies & reach calculation

Cookies are pieces of information that are transmitted from our web server or web servers of third parties to the web browser of the user and stored there for later retrieval. Users are informed about the use of cookies in the context of pseudonymous range measurement in the context of this data protection declaration.

Viewing this online offer is also possible with the exclusion of cookies. If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in their browser’s system settings. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.

There is a possibility to manage many of the cookie settings from the American (USA) website: http://www.aboutads.info/choices or the EU-Website http://www.youronlinechoices.com/uk/your-ad-choices/ .

Google Analytics

We use Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google uses cookies. The information generated by the cookie about the use of the online offer by the user is usually transmitted to a Google server in the USA and stored there.

Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with other services related to the use of this online offer and internet usage. Pseudonymous user profiles can be created from the processed data.

We only use Google Analytics with activated IP anonymization. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there.

The IP address transmitted by the user’s browser is not merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; In addition, users can prevent the data generated by the cookie and related to their use of the online offering being collected by Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

You can find out more information about the use of data for advertising purposes by Google, setting and objection options on the Google websites: https://www.google.com/intl/de/policies/privacy/partners (“Use of data by Google when you use our partners’ websites or apps”), http://www.google.com/policies/technologies/ads (“Use of data for advertising purposes”), http://www.google.de/settings/ads (“Manage information that Google uses to show you advertisements”) and http://www.google.com/ads/preferences (“Control what ads Google shows you”).

 

Google Fonts

We use Google Fonts to display external fonts on our website. This is a service provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043 USA, hereinafter referred to as “Google”.

Through certification under the EU-US Privacy Shield (“EU-US Privacy Shield”)

https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

Google guarantees that the data protection regulations of the EU are also observed when processing data in the USA.

In order to enable the display of certain fonts on our website, a connection to the Google server in the USA is established when our website is accessed.

The legal basis is Art. 6 Abs. 1 lit. f) GDPR. Our legitimate interest lies in the optimization and economic operation of our website.

By connecting to Google when you visit our website, Google can determine from which website your request was sent and to which IP address the display of the font is to be sent.

 

Google offers below:

https://adssettings.google.com/authenticated

https://policies.google.com/privacy

further information, in particular on the possibilities of preventing the use of data.

 

Google Maps

We use Google Maps from Google Inc. (1600 Amphitheater Parkway Mountain View, CA 94043, USA) on our website.

By using the functions of this map, data is transmitted to Google. You can find out which data is collected by Google and what this data is used for: https://www.google.com/intl/de/policies/privacy/

Integration of third-party services and content

It may happen that content or services from third-party providers, such as city maps or fonts from other websites, are integrated within our online offer. The integration of content from third-party providers always requires that the third-party providers perceive the IP address of the user, since without the IP address they would not be able to send the content to the user’s browser. The IP address is therefore required for the display of this content. Furthermore, the providers of the third-party content can set their own cookies and process the data of the users for their own purposes. User profiles can be created from the processed data. We will use this content as data-sparingly and data-avoiding as possible and choose reliable third-party providers with regard to data security.

The following presentation offers an overview of third-party providers and their content, along with links to their data protection declarations, which contain further information on the processing of data and, in some cases already mentioned here, possibilities to object (so-called opt-out):

– External fonts from Google, Inc., https://www.google.com/fonts (“Google Fonts”). The Google Fonts are integrated by dialing up a server at Google (usually in the USA). Data protection: https://www.google.com/policies/privacy/, Opt-Out: https://www.google.com/settings/ads/.

– Maps from the “Google Maps” service provided by the third-party provider Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection: https://www.google.com/policies/privacy/, Opt-Out: https://www.google.com/settings/ads/.

– Videos from the “YouTube” platform provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection: https://www.google.com/policies/privacy/, Opt-Out: https://www.google.com/settings/ads/.

User rights and data deletion

Users have the right to request information free of charge about the personal data that we have stored about them.

In addition, users have the right to correct inaccurate data, revoke consent, block and delete their personal data as well as the right to lodge a complaint with the responsible supervisory authority in the event that unlawful data processing is assumed.

The data stored by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory storage requirements.

 

Here again the taxative list of your rights:

  • Right to rectification (Article 16 GDPR)
  • Right to deletion (“right to be forgotten”) (Article 17 GDPR)
  • Right to restriction of processing (Article 18 GDPR)
  • Right to notification – obligation to notify in connection with rectification or deletion of personal data or restriction of processing (Article 19 GDPR)
  • Right to data moveability (Article 20 GDPR)
  • Right to object (Article 21 GDPR)
  • Right not to be subject to a decision based solely on automated processing, including profiling (Article 22 GDPR)

 


If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, you can complain to the supervisory authority, which is the data protection authority in Austria, whose website you can access at https://www.dsb.gv.at/ 

Data security

We take organizational, contractual and technical security measures according to the state of the art to ensure that the provisions of the data protection laws are observed and to protect the data processed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons.

Changes to the privacy policy

We reserve the right to change the data protection declaration in order to adapt it to changed legal situations or to changes in the service and data processing. However, this only applies with regard to declarations on data processing. If user consent is required or parts of the data protection declaration contain provisions of the contractual relationship with the user, the changes will only be made with the consent of the user.

Users are asked to inform themselves regularly about the content of the data protection declaration.