Introduction and Overview
This privacy policy (Version 17.04.2024-122764001) has been drafted to comply with the General Data Protection Regulation (EU) 2016/679 and applicable national laws, explaining which personal data we process, and your legal rights. This policy aims to communicate these aspects clearly and simply, providing explanations for technical terms, links to further information, and graphics to aid understanding. We only process personal data when legally permitted to do so.
Scope
This policy applies to all personal data processed by our company and our processors, as defined under Article 4 No. 1 DSGVO, such as names, email addresses, and postal addresses. This includes data processed through websites, social media, email communications, and mobile apps.
Legal Bases
We process your data only when at least one of the following conditions applies:
- Consent (Article 6(1)(a) GDPR): You have given us consent to process your data for a specific purpose.
- Contract (Article 6(1)(b) GDPR): To fulfill a contract or pre-contractual obligations with you.
- Legal obligation (Article 6(1)(c) GDPR): If we are legally required to process your data, such as for tax documentation.
- Legitimate interests (Article 6(1)(f) GDPR): Where our legitimate interests do not override your fundamental rights, such as ensuring the efficient and secure operation of our website.
Duration of Storage
We store personal data only as long as necessary to provide our services and products or as legally required.
Rights Under the General Data Protection Regulation
You have the right to:
- Access the data we process about you (Article 15 GDPR).
- Rectify incorrect data (Article 16 GDPR).
- Erase your data (“right to be forgotten”) under certain conditions (Article 17 GDPR).
- Restrict processing of your data (Article 18 GDPR).
- Data portability, allowing you to receive your data in a standard format (Article 20 GDPR).
- Object to processing (Article 21 GDPR).
Data Transfer to Third Countries
We transfer data to third countries only when you consent or where there is a legal permission. We emphasize that according to the European Court of Justice, adequate data protection level is maintained only if the U.S. company processing data from EU citizens participates in the EU-US Data Privacy Framework.
Data Security
We implement technical and organizational measures to protect personal data, including encryption and pseudonymization where feasible.
Communication
We process personal data from communications via phone, email, or online forms based on your consent, contractual requirements, or our legitimate interests.
Cookies
We use cookies to store user-specific data. The duration and type of cookies vary, and you have control over their use through your browser settings.
Your Rights
You have the right to withdraw consent or object to data processing at any time, particularly concerning direct marketing or profiling. For any concerns or to exercise your rights, please contact our data protection authority at:
- Austria: dsb@dsb.gv.at, Barichgasse 40-42, 1030 Vienna.
- Germany: For local data protection authorities, refer to the Federal Commissioner for Data Protection and Freedom of Information (BfDI).
Data Processing Security
To secure data transfers, we use TLS encryption with HTTPS, ensuring that your data is transmitted securely.
This version aims to keep the privacy policy concise while maintaining the essential points. For detailed explanations of specific terms or further inquiries, please contact the responsible office mentioned in the policy or follow the provided links.