Privacy Policy

1. Privacy at a glance

General information

This Privacy Policy applies to all personal data processed by us in the company and for all personal data, which we processed by us (contractor). With personal data we mean information in the sense of Art. 4 no. 1 DSGVO such as name, e-mail address and postal address of a person. The processing of personal data ensures that we can offer and bill our services and products, be it online or offline. The scope of this privacy policy comprises:

All online appearances (websites, online shops) that we operate
Social media performances and e-mail communication
Mobile apps for smartphones and other devices

In short, the privacy policy applies to all areas in which personal data is structured in the company via said channels. If we enter into legal relationships outside of these channels, we will inform you separately.

Austria Data Protection Authority

Head: Mag. Andrea Jelinek

Address: Barichgasse 40-42, 1030 Vienna

Phone No.: +43 1 52 152-0

E-mail address: dsb@dsb.gv.at

Website: https://www.dsb.gv.at/

Data collection on this website

Who is responsible for the data acquisition on this website?

Data processing on this website is done by the website operator. Its contact data can be found in this privacy policy in this privacy policy.

How do we capture your data?

Your data will be charged on the one hand that you will tell us these. This can be z. For example, to act data that you enter into a contact form.

Other data is automatically recorded or after your consent when visiting the website through our IT systems. These are above all technical data (eg Internet browser, operating system or time call time). The acquisition of this data takes place automatically as soon as you enter this website.

What do we use your data for?

Part of the data is charged to ensure error-free deployment of the website. Other data can be used to analyze your user behavior.

What rights do you have regarding your data?

You have the right to obtain the right to provide free information about the origin, recipient and purpose of your stored personal data. You also have a right to demand the correction or deletion of this data. If you have given a consent to data processing, you can revoke this consent at any time for the future. In addition, they have the right to demand subsequent circumstances to restrict the processing of their personal data. Furthermore, a dirt of compliance with the competent supervisory authority.

For further questions about data protection, you can contact us at any time.

Analysis tools and third-party tools

When visiting this website, your surf behavior can be statistically evaluated. This happens mainly with so-called analysis programs.

Detailed information about these analysis programs can be found in the following privacy policy.

2. Hosting

Squarespace

We host our website at Squarespace Ireland Ltd., Le Pole House, Ship Street Great, Dublin 8, Ireland (hereinafter Squarespace).

Squarespace a tool for creating and hosting websites. If you visit our website, your data will be processed on the SquaresPace servers. Personal data can also be transmitted to the parent company of Squarespace, the Squarespace Inc., 8 Clarkson St, New York, NY 10014, USA. Squarespace also stores cookies that are required to represent the site and ensure security (necessary cookies).

The use of squarespace is based on Art. 6 para. 1 lit. F DSGVO. We have a justified interest in the most reliable presentation of our website. If a corresponding consent was queried, the processing takes place exclusively on the basis of Article 6 (1) lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent of the storage of cookies or access to information in the terminal of the user (eg , B. Device fingerprinting) in the sense of the TTDSG. The consent is revocable at any time.

Data transfer to the United States is supported on the standard contract clauses of the EU Commission. Details can be found here: https://support.squarespace.com/hc/en/articles/360000851908-dsgvo-und-squarespace.

Order processing

We have concluded a contract for contract processing (AVV) with the above-mentioned provider. This is a privacy-prescribed contract, which ensures that it processes the personal data of our website visitors only according to our instructions and in compliance with DSGVO.

3. General information and compulsory information

Privacy

The operators of these pages take the protection of their personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations as well as this privacy policy.

If you use this website, various personal data will be charged. Personal data are data that allows you to be personally identified. The present privacy policy explains which data we collect and what we use it for. It also explains how and for what purpose that happens.

We point out that the data transmission on the Internet (eg during communication by e-mail) may have security gaps. A complete protection of the data before access by third parties is not possible.

Note on the responsible body

The responsible body for data processing on this website is:

Muria Hutle

Weidachstraße 16

A 6858 Schwarzach

E-Mail: office@muriahutle.com

Responsible body is the natural or legal person who decides alone or together with others about the purposes and means of processing personal data (eg names, e-mail addresses or similar).

Memory

Insofar as no more specific storage period has been mentioned within this privacy policy, its personal data remains with us until the purpose for data processing is eliminated. If you assert a legitimate extinguishing search or revoking a consent to data processing, your data will be deleted, provided we have no other legally permissible reasons for storing your personal data (eg tax or commercial retention periods); In the latter case, the deletion takes place after contination of these reasons.

General information on the legal bases of data processing on this website

If you have agreed in data processing, we process your personal data based on Art. 6 para. 1 lit. a DSGVO or Article 9 (2) lit. a DSGVO, provided special data categories under Art. 9 para. 1 DSGVO are processed. In the case of an explicit consent to the transfer of personal data in third countries, data processing is also based on Art. 49 (1) lit. a DSGVO. If you have consented to the storage of cookies or access to information in your device (eg via Device fingerprinting), data processing takes place in addition to § 25 Abs. 1 TTDSG. The consent is revocable at any time. If your data for the fulfillment of the contract or for the implementation of pre-contractual measures are required, we process your data based on Art. 6 para. 1 lit. b DSGVO. Furthermore, we process your data if they are required to fulfill a legal obligation based on Art. 6 para. 1 lit. C DSGVO. Data processing can also be carried out on the basis of our legitimate interest under Article 6 (1) lit. F DSGVO. About the relevant legal basis is informed in the individual case in the following paragraphs of this privacy policy.

Note on data transfer to the US and other third countries

We use tools of companies based in the US or other data protection law not secure third countries. If these tools are active, their personal data can be transferred to these third countries and processed there. We point out that in these countries no data protection level comparable to the EU can be guaranteed. For example, US companies are obliged to issue personal data to security authorities, without they could proceed as an affected person. It can therefore not be ruled out that US authorities (eg intelligence services) process, evaluate, evaluate and permanently store their data on US servers for monitoring purposes. We have no influence on these processing activities.

Revocation of your consent to data processing

Many data processing operations are only possible with their explicit consent. You can revoke an already granted consent at any time. The legality of data processing to be revoked to the revocation remains unaffected by the revocation.

Opposition law against data collection in special cases and against direct advertising (Art. 21 DSGVO)

When data processing based on Art. 6 ABS. 1 lit. E or F DSGVO takes place at any time the right to object to the processing of their personal data for reasons, which arise from their special situation; This also applies to a profiling assisted on these provisions. The legal basis for which processing is based on this privacy policy. If you invoke contradiction, we will no longer process your affected personal data, unless we can prove compelling relevant reasons for the processing, which outweigh your interests, rights and freedoms or processing serves to assert, exercise or defense of legal claims ( Contradiction under Article 21 (1) DSGVO).

If their personal data is processed to operate direct advertising, they have the right to at any time contradict the processing of personal data for the purpose of such advertising; This also applies to profiling, as far as this is associated with such direct advertising. If you contradict, your personal data will then no longer be used for the purpose of direct advertising (contradiction under Article 21 (2) DSGVO).

Complaint in the competent supervisory authority

In the case of violations of the DSGVO, the person concerned is a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their workplace or the place of alleged violation. The obstacle is without prejudice to other administrative or judicial remedies.

Right to data transferability

You have the right to handle data that we automatically hand over to your consent or in fulfillment of a Treaty, or to a third party in a common, machine-readable format. If you require the direct transfer of the data to another responsible person, this is done only as far as it is technically feasible.

SSL or TLS encryption

This site uses for security reasons and protection of the transfer of confidential content, such as orders or inquiries that you send to us as a page operator, SSL or TLS encryption. An encrypted connection tells you that the address bar of the browser from "http: //" changes to "https: //" and at the lock icon in your browser line.

If SSL or TLS encryption is enabled, the data that you submit to us can not be read from third parties.

Information, deletion and correction

In the context of the applicable statutory provisions, they have the right to free information on their stored personal data, their origin and recipient and the purpose of data processing and, if necessary, a right to correction or deletion of this data. For further questions about personal data, you can contact us at any time.

Right to restriction of processing

You have the right to demand the limitation of processing your personal data. For this you can contact us at any time. The right to restrict processing consists in the following cases:

If you deny the correctness of your personal data stored with us, we usually need time to check this. For the duration of the exam you have the right to demand the limitation of processing your personal data.
If the processing of your personal data happens illegally, you can demand the restriction of data processing instead of the deletion.
If we no longer need your personal information, but you need it to exercise, defense or assertion of legal claims, you have the right to demand the restriction of the processing of your personal data instead of deletion.
If you have filed a contradiction under Article 21 (1) DSGVO, a balancing between yours and our interests must be made. As long as it is not yet established, whose interests predominate, they have the right to demand the limitation of processing their personal data.

If you have restricted the processing of your personal data, these data - apart from your storage - only with your consent or for assertion, exercise or defense of legal claims or to protect the rights of another natural or legal person or for reasons of an important public interest the European Union or a Member State.

4. Data collection on this website

Cookies

Our websites use so-called "cookies". Cookies are small text files and no harm on your device. They are either temporarily stored for the duration of a session (session cookies) or permanently (permanent cookies) on their terminal. Session cookies are automatically deleted after your visit. Permanent cookies are stored on your terminal until you delete them yourself or an automatic deletion takes place by your web browser.

Partially, third-party cookies can also be stored on your device when you enter our site (Third-Party Cookies). These allow us or the use of certain third-party services (eg cookies for the processing of payment services).

Cookies have different functions. Numerous cookies are technically necessary, as certain websites would not work without them (eg the shopping cart function or the display of videos). Other cookies serve to evaluate or advertise the user behavior.

Cookies that are required to carry out the electronic communications operation, for providing certain functions of them (eg for the shopping cart function) or to optimize the website (eg cookies for measuring the web audience) (necessary cookies) Based on Art. 6 para. 1 lit. F DSGVO stored, unless other legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for technically error-free and optimized provision of its services. If a consent to the storage of cookies and comparable recovery technologies has been queried, processing shall be carried out exclusively on the basis of this consent (Article 6 (1) lit. a DSGVO and § 25 Abs. 1 TTDSG); The consent is revocable at any time.

You can set your browser so that you will be informed about setting cookies, allowing cookies only in individual cases to make the acceptance of cookies for specific cases or generally exclude and enable automatic deletion of cookies when closing the browser. When deactivating cookies, the functionality of this website can be restricted.

Insofar as cookies are used by third parties or for analysis purposes, we will inform you separately within this privacy policy and, if necessary, query a consent.

Contact form

If you send us inquiries by contact form, your information will be stored from the inquiry form including the contact details you specified there for processing the request and for the case of connection questions. We do not give this data without your consent.

The processing of this data is based on Art. 6 para. 1 lit. b DSGVO, provided that your request is related to the fulfillment of a Treaty or is required to carry out pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective processing of the inquiries directed to us (Article 6 (1) Lit. F DSGVO) or on its consent (Article 6 (1) Lit. a DSGVO) if this was queried; The consent is revocable at any time.

The data you entered in the contact form remain with us until you call us for deletion, revoking your consent to the storage or the purpose for data storage is eliminated (eg after completing your request.). Mandatory statutory provisions - especially retention periods - remain unaffected.

Inquiry by e-mail, Phone or fax

If you contact us by e-mail, telephone or fax, your request will be stored and processed for the purpose of editing your request for the purpose of editing your request. We do not give this data without your consent.

The data sent to us by contact requests remain with us until you call us for deletion, revoking your consent to the storage or the purpose for data storage is eliminated (eg after completing your concern). Mandatory statutory provisions - in particular statutory retention periods - remain unaffected.

Online form

If you communicate with us via online form, data is stored on our web server and, if necessary, forwarded to an e-mail address. The data is deleted as soon as the business case has ended and there are legal requirements.

What are Google Fonts?

We use Google Fonts on our website, “Licorice” and “Gowun Dodum”. These are the "Google Fonts" of Google Inc. For the European region, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is responsible for all Google services. You do not need to log in or enter a password to use Google Fonts. Furthermore, no cookies are stored in your browser. The files (CSS, fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, requests for CSS and fonts are completely separate from all other Google services. If you have a Google Account, you don't need to worry about your Google Account data being transmitted to Google while using Google Fonts. Google records the use of CSS (Cascading Style Sheets) and the fonts used and stores this data securely. We will look at the exact details of data storage later. Google Fonts (formerly Google Web Fonts) is a directory of over 800 fonts that Google makes available to its users free of charge. Many of these fonts are published under the SIL Open Font License, while others are published under the Apache License. Both are free software licenses.

Why do we use Google Fonts on our website?

With Google Fonts, we can use fonts on our own website without having to upload them to our own server. Google Fonts is an important component in maintaining the high quality of our website. All Google Fonts are automatically optimized for the web, which saves data volume and is a major advantage, especially for use on mobile devices. When you visit our site, the small file size ensures fast loading times. Furthermore, Google Fonts are secure web fonts. Different image synthesis systems (rendering) in different browsers, operating systems, and mobile devices can lead to errors. Such errors can visually distort text or entire web pages. Thanks to the fast Content Delivery Network (CDN), there are no cross-platform issues with Google Fonts. Google Fonts supports all common browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). We use Google Fonts so that we can present our entire online service as beautifully and consistently as possible.

What data does Google store?

When you visit our website, the fonts are loaded via a Google server. This external call transmits data to the Google servers. This is how Google recognizes that you or your IP address are visiting our website. The Google Fonts API was developed to reduce the use, storage, and collection of end-user data to what is necessary for proper font provision. API stands for "Application Programming Interface" and serves, among other things, as a data transmitter in the software sector. Google Fonts securely stores CSS and font requests with Google and is thus protected. The collected usage figures allow Google to determine how well individual fonts are received. Google publishes the results on internal analysis sites, such as Google Analytics. Google also uses data from its own web crawler to determine which websites use Google Fonts. This data is published in the Google Fonts BigQuery database. Entrepreneurs and developers use Google's BigQuery web service to examine and manipulate large amounts of data. However, it's important to note that every Google Font request automatically transmits information such as language settings, IP address, browser version, browser screen resolution, and browser name to Google's servers. Whether this data is actually stored is unclear, and Google doesn't clearly communicate this.

How long and where is the data stored?

Google stores requests for CSS assets for one day on its servers, which are primarily located outside the EU. This allows us to use the fonts using a Google stylesheet. A stylesheet is a formatting template that allows you to quickly and easily change, for example, the design or font of a website. The font files are stored by Google for one year. Google's goal is to fundamentally improve the loading time of websites. If millions of websites link to the same fonts, they are cached after the first visit and immediately appear on all other websites visited subsequently. Google sometimes updates font files to reduce file size, increase language coverage, and improve design.

How can I delete my data or prevent data storage?

The data that Google stores for one day or one year cannot simply be deleted. The data is automatically transmitted to Google when a page is accessed. To delete this data prematurely, you must contact Google Support at https://support.google.com/?hl=de&tid=137404436. In this case, you can only prevent data storage if you do not visit our site. Unlike other web fonts, Google allows us unrestricted access to all fonts. This gives us unlimited access to a sea of fonts and thus gets the most out of our website. You can find more information about Google Fonts and other questions at https://developers.google.com/fonts/faq?tid=137404436. While Google addresses data protection-related issues there, it does not contain truly detailed information about data storage. It is relatively difficult to obtain truly precise information about stored data from Google.

Legal Basis

If you have consented to the use of Google Fonts, this consent forms the legal basis for the corresponding data processing. According to Art. 6 (1) (a) GDPR (consent), this consent constitutes the legal basis for the processing of personal data, as may occur when data is collected by Google Fonts. We also have a legitimate interest in using Google Fonts to optimize our online service. The corresponding legal basis for this is Art. 6 (1) (f) GDPR (legitimate interests). However, we only use Google Fonts if you have given your consent. Google processes your data, among other places, in the USA. Google is an active participant in the EU-US Data Privacy Framework, which regulates the correct and secure transfer of personal data of EU citizens to the USA. You can find more information at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

In addition, Google uses so-called standard contractual clauses (= Art. 46 (2) and (3) GDPR). Standard contractual clauses (SCCs) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to and stored in third countries (such as the USA). Through the EU-US Data Privacy Framework and the standard contractual clauses, Google undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de The Google Ads Data Processing Terms, which refer to the standard contractual clauses, can be found at https://business.safety.google/intl/de/adsprocessorterms/. You can also read about the data Google generally collects and what this data is used for at https://www.google.com/intl/de/policies/privacy/.

5. Transactions

Privacy Policy for the use of PayPal as a payment transducer

The responsible for processing has integrated components from PayPal on this website. PayPal is an online payment service provider. Payments are handled via so-called PayPal accounts that represent virtual private or business accounts. PayPal is also able to process virtual payments via credit cards if a user has no PayPal account. A PayPal account is guided via an e-mail address, which is why there are no classical account numbers. PayPal makes it possible to trigger online payments to third parties or receive payments. PayPal also takes over trust functions and offers buyer protection services.

The European Operator Society of PayPal is the PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.

Selects the affected person during the ordering process within the online shop as payment option "PayPal", we automatically transmit data from the person concerned to PayPal. With the selection of this payment option, the affected person agrees to the transmission of personal data required for payment processing.

The personal data transmitted to PayPal is usually first name, last name, address, e-mail address, IP address, telephone number, mobile phone number or other data necessary for payment processing. To settle the purchase contract, such personal data is required, which are related to the respective order.

The transmission of the data is used for payment processing and fraud prevention. The person responsible for processing will transmit personal data to PayPal, especially if a legitimate interest in the transmission is given. The personal data exchanged between PayPal and the personal data exchanged for processing are transmitted by PayPal to commercial news items. This transmission is used for the identity and credit check.

PayPal, where appropriate, passes on personal information to affiliated companies and service providers or subcontractors, as far as this is necessary to fulfill the contractual obligations or the data should be processed on behalf.

The person concerned has the opportunity to revoke consent to dealing with personal data at any time compared to PayPal. A revocation does not affect personal data, which must be processed, used or transmitted to (contractual) payment processing.

The applicable privacy policy of PayPal can be accessed at https://www.paypal.com/us/webapps/mpp/ua/privacy-full.

Privacy Policy for using Stripe

What is Stripe?

We use a payment tool of the American technology company and online payment service Stripe on our website. For customers within the EU, Stripe Payments Europe (Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland) is responsible. That is, if you choose Stripe as payment method, your payment will be handled via Stripe Payments. In doing so, data that is necessary for the payment transaction will be forwarded to Stripe and stored. In this privacy policy, we give you an overview of this data processing and storage through Stripe and explain why we use Stripe on our website.

The technology company Stripe offers payment solutions for online payments. With Stripe it is possible to accept credit and debit card payments in our webshop. Stripe takes over the entire payment process. A big advantage of Stripe is, for example, that you never have to leave our website or the shop during the payment transaction and the payment processing is very fast.

Why do we use Stripe for our website?

Of course, we want our website and our integrated online shop to offer the best possible service so you will feel well on our site and use our offers. We know that your time is precious and therefore especially payment transactions have to work quickly and smoothly. In addition to our other payment providers, we have found a partner with Stripe, which ensures safe and fast payment processing.

Which data is stored by Stripe?

If you choose Stripe as payment method, personal data will also be transmitted by you to Stripe and stored there. These are transaction data. These data include, for example, the payment method (ie credit card debit cards or account number), bank code, currency, amount and date of payment. For a transaction, your name, your e-mail address, your billing or shipping address and sometimes your transaction course can be transmitted. These data are needed for authentication. Furthermore, Stripe can be able to fully offer fraud defense, financial reporting and to fully capture its own services, also in addition to technical data for your device (like IP address) name, address, phone number and your country.

Stripe does not sell any of your data to independent third parties, such as marketing agencies or other companies that have nothing to do with the Stripe company. However, the data can be forwarded, for example, to internal departments, a limited number of external STRIPE partners or compliance with legal regulations. Stripe uses cookies to detect data.

How long and where are the data stored?

Personal data is generally stored for the duration of the service delivery. That is, the data is stored so long until we resolve cooperation with Stripe. However, in order to meet the legal and official obligations, Stripe can also store personal data over the duration of service delivery. Since Stripe is a global company, the data can also be stored in any country where Stripe offers services. Thus, data outside of your country can also be stored, for example in the US.

How can I delete my data or prevent data storage?

Please note that data from you can also be stored and processed from you outside the EU when using this tool. Most third countries (including the USA) are not safe according to current European data protection law. Data on unsafe third countries should not be easily transmitted, stored and processed there, unless there are suitable guarantees (such as EU standard contract clauses) there are between us and the non-European service provider.

You always have the right to information, correction and deletion of your personal data. If you have any questions, please contact the Stripe team at any time via https://support.stripe.com/contact/email.

Cookies that use stripe for your functions can be deleted, deactivated or managed in your browser. Depending on which browser you use, this works in different ways. Under the section "Cookies" you will find the corresponding links to the respective instructions of the most famous browser.

Legal basis

We therefore offer the payment service provider Stripe to the settlement of contractual or legal relationships (Article 6 (1) lit. b DSGVO) in addition to the traditional bank / credit institutions. The successful use of the service also requires their consent (Article 6 (1) lit. a DSGVO), as far as the approval of cookies is necessary for use.

Stripe processes data from you, etc. also in the USA. We point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be accompanied by different risks for the legality and security of data processing.

The basis of data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the US) or a data transfer there, Stripe uses so-called standard contract clauses (= Art. 46. Abs. 2 and 3 DSGVO). Standard Contract Clauses (Standard Contractual Clauses - SCC) are model templates provided by the EU Commission and should ensure that their data will meet the European data protection standards even if they are handed down and stored in third countries (such as US) and stored there. Through these clauses, STRIPE undertakes to comply with the processing of their relevant data to comply with the European data protection level, even if the data stores, processed and managed in the USA. These clauses are based on a decision-making decision of the EU Commission. You will find the decision and the corresponding standard contract clauses, etc. here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=en

More information about the standard contract clauses and about the data processed by the use of Stripe can be found in the Privacy Policy on https://stripe.com/at/privacy.

6. Online Marketing

What is online marketing?

Online marketing, all measures that are carried out online to achieve marketing goals such as the increase in brand awareness or business accounts. Furthermore, our online marketing measures to make people attentive to our website. So we can show our offer many interested people, so we operate online marketing. Mostly this is online advertising, content marketing or search engine optimization. So that we can use online marketing efficiently and purposefully, personal data are stored and processed. On the one hand, the data helps us show our content only to show those people who are interested in it and on the other hand we can measure the advertising success of our online marketing measures.

Why do we use online marketing tools?

We want to show every person who is interested in our offer, our website. We realize that this is not possible without a deliberately set measures. That's why we make online marketing. There are different tools that make us work on our online marketing measures and additionally deliver enhancements to information. So we can tell our campaigns more closely to our target audience. The purpose of these used online marketing tools is therefore ultimately the optimization of our offer.

Which data is processed?

For our online marketing to work and the success of the measures can be measured, user profiles are created and data is stored, for example, in cookies (which are small text files). With the help of this data, we can not only turn on advertising in classical terms, but also directly on our website, our content shows how it is best. There are several third-party tools that offer these functions and also collect and save data from them. In the named cookies, for example, the websites you have visited on our website how long have these pages viewed, which links or buttons you click or from which website you have come to us. In addition, technical information can also be stored. For example, your IP address, which browsers you use from which terminal you visit our website or the time when you have called to our website and when you have left it again. If you agree that we can also determine your location, we can also save this and process this.

Your IP address is stored in pseudonymised form (so shortened). Unique data that you directly identify as a person, such as name, address or e-mail address, are stored only in pseudonymised form as part of the advertising and online marketing procedures. So we can not identify them as a person, but we have only stored the pseudonymised, stored information in the user profiles.

The cookies may also be used on other websites that work with the same promotional tools and used for advertising purposes. The data can then be stored on the servers of the Werbetools providers.

In exceptional cases, unique data (name, mail address, etc.) can also be stored in the user profiles. This storage is about if you are a member of a social media channel that we use for our online marketing measures and the network already previously entered into the user profile.

For all Advertisingtools used by us, which stores data from you on their servers, we always receive only summarized information and never data that you make as a single person. The data show only how well-set advertising measures worked. For example, we see what measures you or other users have made to come to our website and acquire a service or product there. On the basis of the analyzes, we can improve our advertising offer in the future and even more closely adapt to the needs and wishes of interested persons.

Duration of data processing

About the duration of the data processing, we inform you below, if we have more information. In general, we only process personal data as long as it is necessary for the provision of our services and products. Data stored in cookies are stored differently. Some cookies are re-deleted after leaving the website, others can be stored in your browser for a few years. In the respective privacy statements of the individual providers, you will usually receive detailed information about the individual cookies that the provider uses.

Right to object

You also have the right and the possibility to revoke your consent to the use of cookies or third party providers. This works either via our cookie management tool or other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting the cookies in your browser. The legality of processing until the revocation remains unaffected.

Since cookies can usually be used in online marketing tools, we also recommend our general privacy policy on cookies. To find out which data is stored and processed by you exactly, you should read the privacy statements of the respective tools.

Legal basis

If you agree that third-party providers may be used, the legal basis of the relevant data processing is this consent. According to Article 6 (1) lit. a DSGVO (consent), this consent is the legal basis for the processing of personal data, as can occur when recognizing online marketing tools.

From our site, there is also a justified interest in measuring online marketing measures in anonymous form in order to optimize our offer and measures using the data obtained. The legal basis for this is Art. 6 para. 1 lit. F DSGVO (legitimate interests). Nevertheless, we only use the tools as far as they have given one consent.

Information on special online marketing tools is available - if available - in the following sections.

7. Social media

What is social media?

In addition to our website, we are also active in various social media platforms. Data from users can be processed so that we can target users who are interested in our social networks. In addition, elements of a social media platform can also be embedded directly in our website. This is about the case if you click on a so-called social button on our website and forward directly to our social media appearance. As a so-called social media or social media, websites and apps are referred to using the registered members to produce content, exchanging content open or in certain groups and networked with other members.

Why do we use social media?

For years, social media platforms have been the place where people communicate online and contact them. With our social media performances, we can access our products and services interested in interested parties. The social media elements integrated on our website help you to switch to our social media content quickly and without complications.

The data stored and processed by using a social media channel are primarily the purpose of being able to carry out web analyzes. The aim of these analyzes is to develop more accurate and personal marketing and advertising strategies. Depending on your behavior on a social media platform, with the help of the evaluated data, suitable conclusions can be made to your interests and so-called user profiles can be created. So it is also possible for the platforms to present them tailor-made advertisements. Mostly, cookies are set in your browser for this purpose that save data for your usage behavior.

We usually assume that we remain responsible for data protection, even if we use services of a social media platform. However, the European Court of Justice has decided that in certain cases the operators of the social media platform together with us together can be responsible for the purposes of Art. 26 DSGVO. As far as this is the case, we point out separately and work on the basis of a relevant agreement. The essence of the agreement is then played further down in the affected platform.

Please note that the use of social media platforms or our built-in items can also be processed by you outside the European Union, as many social media channels, for example Facebook or Twitter, are American companies. This allows you to no longer demand or enforce your rights in terms of your personal information.

Which data is processed?

Which data is stored and processed accurately depends on the provider of the social media platform. But usually it is data such as phone numbers, e-mail addresses, data that you enter into a contact form, user data such as which buttons you click who you like or we follow when you have visited your pages, information Your device and your IP address. Most of these data are stored in cookies. Specifically, if you yourself have a profile in the visited social media channel and are logged in, data can be linked to your profile.

All data collected via a social media platform are also stored on the providers' servers. Thus, even the providers have access to the data and can give you the appropriate information or make changes.

If you want to know exactly what data is stored and processed in the social media providers and how they can contradict the data processing, you should read the company's data protection statement carefully. Even if you have questions for data storage and data processing or to assert appropriate rights, we recommend that you turn directly to the provider.

Duration of data processing

About the duration of the data processing, we inform you below, if we have more information. For example, the social media platform Facebook stores data until it is no longer needed for its own purpose. Customer data, which will be adjusted with your own user data, but are already deleted within two days. In general, we only process personal data as long as it is necessary for the provision of our services and products. If, as, for example, in the case of accounting, is required by law, this storage period can also be exceeded.

Right to object

You also have the right and the possibility to revoke your consent to the use of cookies or third-party suppliers such as embedded social media elements. This works either via our cookie management tool or other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting the cookies in your browser.

Since cookies can be used with social media tools, we also recommend our general privacy policy on cookies. To find out which data is stored and processed by you exactly, you should read the privacy statements of the respective tools.

Legal basis

If you agree that data can be processed and stored by you through integrated social media elements, this consent is considered the legal basis of data processing (Article 6 (1) lit. a DSGVO). In principle, their data will be stored and processed at the foundation of a consent on the basis of our legitimate interest (Article 6 (1) lit. f dsgvo) at a rapid and good communication with you or other customers and business partners. Nevertheless, we only use the tools as far as they have given one consent. Most social media platforms also use cookies in your browser to save data. That's why we recommend that you can read our privacy text through cookies exactly and to look at the privacy policy or the cookie guidelines of the respective service provider.

Information on special social media platforms is experienced - if available - in the following sections.

Facebook Plugins (Like & Share Button)

On this website, plugins of the social network Facebook are integrated. Supplier of this service is the Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, the data collected will also be transferred to the US and other third countries in accordance with Facebook.

The Facebook plugins can be found on the Facebook logo or the "Like button" ("Like") on this website. An overview of the Facebook plugins can be found here: https://developers.facebook.com/docs/Plugins/?Locale=en_en.

If you visit this site, the plugin is a direct connection between your browser and the Facebook server. This will give the information that you have visited this site with your IP address. If you click on the Facebook "Like button" while logged in to your Facebook account, you can link the contents of this website on your Facebook profile. This allows Facebook to assign the visit to your user account to visit this website. We point out that as a provider of the pages we will not be aware of the content of the transmitted data as well as their use by Facebook. For more information, see the Privacy Policy from Facebook at: https://de-de.facebook.com/privacy/explanation.

If you do not want Facebook to assign the visit to this website to your Facebook user account, log out of your Facebook user account.

The use of the Facebook plugins is based on Art. 6 para. 1 lit. F DSGVO. The website operator has a legitimate interest in the most extensive visibility as possible in the social media. If a corresponding consent was queried, the processing takes place exclusively on the basis of Article 6 (1) lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent of the storage of cookies or access to information in the terminal of the user (eg , B. Device fingerprinting) in the sense of the TTDSG. The consent is revocable at any time.

If personal data is recorded on our website with the help of the tool described here and forwarded to Facebook, we and the meta platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland is responsible for this data processing (Art. 26 DSGVO). Common accountability is limited exclusively to the collection of the data and their transfer to Facebook. The processing under the forwarding by Facebook is not part of the shared responsibility. The obligations incumbent on us were recorded in an agreement on joint processing. The text of the agreement can be found at:

https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for the issuing of privacy information when using the Facebook tool and the reliable implementation of the tool on our website for data protection law. Facebook is responsible for the data security of the Facebook products. Affected Rights (eg information requests) With regard to the data processed on Facebook, you can assert you directly on Facebook. If you assert the affected rights with us, we are obliged to forward them to Facebook.

Data transfer to the United States is supported on the standard contract clauses of the EU Commission. Details can be found here:

https://www.facebook.com/legal/eu_data_transfer_addendum,

https://de-de.facebook.com/help/566994660333381 and

https://www.facebook.com/Policy.php.

Facebook Conversions API

We use on our website Facebook Conversions API, a server-side event tracking tool. Service provider is the American company Meta Platforms Inc. For European room, the company Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland) is responsible.

Facebook processes data from you, etc. also in the USA. We point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be accompanied by different risks for the legality and security of data processing. As the basis of data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, in particular in the US) or a data transfer there, Facebook uses so-called standard contract clauses (= Art. 46. Abs. 2 and 3 DSGVO). Standard Contract Clauses (Standard Contractual Clauses - SCC) are model templates provided by the EU Commission and should ensure that their data will meet the European data protection standards even if they are handed down and stored in third countries (such as US) and stored there. Through these clauses, Facebook commits to the processing of their relevant data to comply with the European data protection level, even if the data stores, processed and managed in the USA. These clauses are based on a decision-making decision of the EU Commission. You will find the decision and the corresponding standard contract clauses, etc. here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=en

The Facebook data processing condition that match the standard contract clauses can be found at https://www.facebook.com/legal/terms/DataProcessing.

More about the data processed by using Facebook Conversions API can be found in the Privacy Policy on https://www.facebook.com/about/privacy.

Facebook Custom Audiences

We use on our website Facebook Custom Audiences, a server-side event tracking tool. Service provider is the American company Meta Platforms Inc. For European room, the company Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland) is responsible.

As the basis of data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, in particular in the US) or a data transfer there, Facebook uses so-called standard contract clauses (= Art. 46. Abs. 2 and 3 DSGVO). Standard Contract Clauses (Standard Contractual Clauses - SCC) are model templates provided by the EU Commission and should ensure that their data will meet the European data protection standards even if they are handed down and stored in third countries (such as US) and stored there. Through these clauses, Facebook commits to the processing of their relevant data to comply with the European data protection level, even if the data stores, processed and managed in the USA. These clauses are based on a decision-making decision of the EU Commission. You will find the decision and the corresponding standard contract clauses, etc. here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=en

The Facebook data processing condition that match the standard contract clauses can be found at https://www.facebook.com/legal/terms/DataProcessing.

More about the data processed by the use of Facebook Custom Audiences can be found in the Privacy Policy on https://www.facebook.com/about/privacy.

Instagram plugin

On this website functions of the service Instagram are integrated. These features are offered by the Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland integrated.

If you are logged in to your Instagram account, you can link the contents of this site to your Instagram profile by clicking on the Instagram button. This allows Instagram to assign the visit to this website to your user account. We point out that as a provider of the pages we do not receive a knowledge of the content of the transmitted data and their use by Instagram.

The storage and analysis of the data is based on Art. 6 para. 1 lit. F DSGVO. The website operator has a legitimate interest in the most extensive visibility as possible in the social media. If a corresponding consent was queried, the processing takes place exclusively on the basis of Article 6 (1) lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent of the storage of cookies or access to information in the terminal of the user (eg , B. Device fingerprinting) in the sense of the TTDSG. The consent is revocable at any time.

If personal data is recorded on our website with the help of the tool described here and forwarded to Facebook or Instagram, we and the meta platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland is responsible for this data processing ( Art. 26 DSGVO). The shared accountability is limited exclusively to the collection of the data and its transfer to Facebook or Instagram. The processing processed after the forwarding by Facebook or Instagram is not part of the common responsibility. The obligations incumbent on us were recorded in an agreement on joint processing. The wording of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for issuing privacy information in the use of the Facebook or Instagram tool and for the data protection against data protection complementing the tool on our website. Facebook is responsible for the data security of Facebook or Instagram products. Affected Rights (eg information requests) With regard to the data processed on Facebook or Instagram, you can assert you directly on Facebook. If you assert the affected rights with us, we are obliged to forward them to Facebook.

Data transfer to the United States is supported on the standard contract clauses of the EU Commission. Details can be found here:

https://www.facebook.com/legal/eu_data_transfer_addendum,

https://help.instagram.com/519522125107875 and

https://de-de.facebook.com/help/566994660333381.

Further information can be found in the Privacy Policy of Instagram: https://instagram.com/about/legal/privacy/.

Pinterest plugin

On this website we use social plugins of the Social Network Pinterest, which is operated by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

When you call a page that contains such a plugin, your browser produces a direct connection to the servers of Pinterest. The plugin transmits log data to the Pinterest server in the USA. These log data may include your IP address, the address of the visited websites that also contain Pinterest functions, type and settings of the browser, date and time of the request, their uses by Pinterest and cookies.

If a corresponding consent was queried, the processing takes place exclusively on the basis of Article 6 (1) lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent of the storage of cookies or access to information in the terminal of the user (eg , B. Device fingerprinting) in the sense of the TTDSG. The consent is revocable at any time.

Further information on the purpose, scope and further processing and use of the data by Pinterest as well as your relevant rights and ways to protect your privacy can be found in the privacy policy of Pinterest: https://policy.pinterest.com/en/privacy-policy.

Pinterest Web Analytics

We use Pinterest Web Analytics, a web analysis program on our website. Service provider is the American company Pinterest Inc. The company also has an Irish company headquarters with the address Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

Pinterest processes data from you, etc. also in the USA. We point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be accompanied by different risks for the legality and security of data processing.

As the basis of data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, in particular in the US) or a data transfer there, Pinterest uses so-called standard contract clauses (= Art. 46. Abs. 2 and 3 DSGVO). Standard Contract Clauses (Standard Contractual Clauses - SCC) are model templates provided by the EU Commission and should ensure that their data will meet the European data protection standards even if they are handed down and stored in third countries (such as US) and stored there. Through these clauses, Pinterest undertakes to comply with the European data protection level when processing their relevant data, even if the data stores, processed and managed in the USA. These clauses are based on a decision-making decision of the EU Commission. You will find the decision and the corresponding standard contract clauses, etc. here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=en

More information about the standard contract clauses at Pinterest can be found at https://policy.pinterest.com/en/privacy-policy#Section-residents-of-theeea.

More about the data processed by the use of Pinterest Web Analytics can be found in the entire Privacy Policy on https://policy.pinterest.com/en/privacy-policy.

Xing plugin

Our website uses functions of network XING. Supplier is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. Each retrieval of one of our pages containing functions of XING will connect to XING servers. A storage of personal data does not take place according to our knowledge. In particular, no IP addresses are stored or the usage behavior evaluated.

Further information on privacy and XING Share button can be found in the XING privacy policy at: https://www.xing.com/app/share?op=Data_Protection

Tumblr plugin

Our pages use buttons of the Tumblr service. Supplier is the Tumblr, Inc., 35 East 21st, 10th Floor, New York, NY 10010, USA. These buttons allow you to share a post or a page at Tumblr or to follow the provider at Tumblr. When you call one of our websites with Tumblr button, the browser builds a direct connection with the tumblr servers. We have no influence on the scope of the data that Tumblr with the help of this plugin raises and transmitted. According to the current state, the IP address of the user and the URL of the respective website are transmitted.

Further information can be found in the privacy policy of Tumblr at: https://www.tumblr.com/policy/en/privacy.

8. Newsletter & donations

Newsletter data

If you would like to receive the newsletter offered on the website, we need an e-mail address as well as information that allows us to verify that you are the owner of the specified e-mail address and agrees to receive the newsletter . Further data will not be collected or only on a voluntary basis. We use this data exclusively for sending the requested information and do not give them to third parties.

The processing of the data entered into the newsletter sign form is based solely on their consent (Article 6 (1) lit. a DSGVO). The granted consent to the storage of the data, the e-mail address and their use for sending the newsletter can be revoked at any time, for example about the "discharge" link in the newsletter. The legality of the data processing operations already occurred remains unaffected by the revocation.

The data from you for the purposes of the newsletter reference with us are stored by us until your departure from the newsletter or the newsletter service provider and deleted after the unsubscribe of the newsletter or for useful safety from the newsletter distribution list. We reserve the right to delete or block e-mail addresses from our newsletter distributor at its sole discretion within the framework of our legitimate interest in Article 6 (1) lit. F DSGVO.

Data stored for us for other purposes remain unaffected.

After issuing the newsletter distribution list, your e-mail address will be stored in a blacklist with us or the newsletter service provider, if necessary for preventing future mailings. The data from the blacklist is used only for this purpose and merged with other data. This serves both its interest and our interest in compliance with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 para. 1 lit. F DSGVO). The storage in the blacklist is not temporary in time. You can contradict the storage unless your interests outweigh our legitimate interest.

Donations

If you send me a donation by bank transfer, I am legally obliged to maintain name and amount of the transfer for the tax office. The transfer data:

Surname

Usage

Booking date

IBAN

BIC

amount

Are automatically recorded by Hypo Vorarlberg Bank and are then part of the account statement I have to hold for a legal retention period of 10 years. After the end of the 10 years, the bank statements are deleted. A contradiction or right to deletion of this data according to Art.17 DSGVO is not possible, as this would violate the statutory retention period.

9. Plugins and tools

YouTube with extended privacy

This website binds videos of the Youtube. Operator The pages is the Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

We use YouTube in extended privacy mode. This mode causes YouTube that YouTube does not store information about the visitors on this website before they watch the video. The transfer of data to YouTube partner, however, is not absolutely excluded by the extended privacy mode. This is how YouTube - regardless of whether you look at a video - connects to the Google DoubleClick network.

Once you start a YouTube video on this website, connect to the servers of YouTube. The YouTube server will be communicated which our pages you visited. If you are logged in to your YouTube account, you enable YouTube to directly assign your surfing behavior to your personal profile. This allows you to prevent yourself by logging out from your YouTube account.

Furthermore, after starting a video, YouTube can store various cookies on your terminal or use comparable recovery technologies (eg Device fingerprinting). That way, YouTube can get information about visitors to this site. This information is u. A. Used to capture video statistics, to improve the user-friendliness and prevent fraud attempts.

Optionally, after starting a YouTube video, further data processing operations can be triggered to which we have no influence.

The use of YouTube takes place in the interest of an appealing representation of our online offers. This represents a legitimate interest within the meaning of Article 6 (1) lit. F DSGVO. If appropriate consent has been queried, the processing is carried out exclusively on the basis of Article 6 (1) lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's device (eg Device fingerprinting) in the sense of the TTDSG. The consent is revocable at any time.

For more information about data protection at YouTube, see the Privacy Policy at: https://policies.google.com/privacy?hl=en.

Vimeo without tracking (Do-Not-Track)

This website uses plugins of the video portal Vimeo. Supplier is Vimeo Inc., 555 West 18th Street, New York, New York 10011, United States.

When you visit one of our Vimeo-Video pages, a connection to the Vimeo servers will be established. The Vimeo server is communicated, which of our pages you visited. In addition, Vimeo gains your IP address. However, we have set Vimeo so that Vimeo does not track your user activities and will not set cookies.

The use of Vimeo takes place in the interest of an appealing representation of our online offers. This represents a legitimate interest within the meaning of Article 6 (1) lit. F DSGVO. If a corresponding consent was queried, the processing is carried out exclusively on the basis of Article 6 (1) lit. a DSGVO; The consent is revocable at any time.

Data transfer to the United States is based on the standard contract clauses of the EU Commission and according to Vimeo on "legitimate business interests". Details can be found here: https://vimeo.com/privacy.

Further information on how to deal with user data can be found in the privacy policy of Vimeo at: https://vimeo.com/privacy.

Google Maps

This page uses the Map Service Google Maps. Supplier is the Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transferred to Google's server in the US and stored there. The provider of this site has no influence on this data transmission. If Google Maps is enabled, Google can use for the purpose of uniform representation of the Google Web Fonts fonts. When calling Google Maps your browser loads the required web fonts in your browser cache to display texts and fonts correctly.

The use of Google Maps takes place in the interest of an appealing representation of our online offers and a slight findability of the places we specified on the website. This represents a legitimate interest within the meaning of Article 6 (1) lit. F DSGVO. If appropriate consent has been queried, the processing is carried out exclusively on the basis of Article 6 (1) lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's device (eg Device fingerprinting) in the sense of the TTDSG. The consent is revocable at any time.

Data transfer to the United States is supported on the standard contract clauses of the EU Commission. Details can be found here:

https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

More information on how to deal with user data can be found in the privacy policy of Google: https://policies.google.com/privacy?hl=en.

Soundcloud

On this site, plugins of the Social Network Soundcloud (Soundcloud Limited, Berners House, 47-48 Berners Street, London W1T 3NF, Great Britain.) Be integrated. The SoundCloud plugins recognize them on the SoundCloud logo on the affected pages.

If you visit this website, a direct connection between your browser and the SoundCloud server will be established after the plug-ins is activated. Soundcloud gives the information that you have visited this site with your IP address. If you click on the "Like button" or "Share button" while logged in to your SoundCloud user account, you can link the contents of this website with your SoundCloud profile and / or share. This allows SoundCloud to assign your user account to visit this website. We point out that as a provider of the pages we will not receive a knowledge of the content of the transmitted data and their use by SoundCloud.

Great Britain is considered a data protection law. This means that Great Britain has a data protection level that complies with the data protection level in the European Union.

For more information, see the Privacy Policy of Soundcloud at: https://soundcloud.com/pages/privacy.

If you do not want Soundcloud to visit this website your SoundCloud user account, log in from your SoundCloud user account before you enable content of the SoundCloud plug-in.

10. Messenger and communication

What are Messenger & Communication Features?

We offer various possibilities on our website (such as messengers and chat functions, online or contact forms, e-mail, telephone) to communicate with us. It also becomes processed and saved your data, if necessary for answering your request and our subsequent measures.

We also use chats or messenger in addition to classic communications such as e-mail, contact forms or telephone. The currently most commonly used Messenger feature is WhatsApp, but of course there are many different providers specifically for websites offering Messenger features. If content ends are encrypted to an end, it is pointed out in the individual privacy texts or in the privacy policy of the respective provider. An end-to-end encryption does not mean anything differently than that the content of a message itself is not visible to the provider. However, information about your device, location settings and other technical data can still be processed and stored.

Why do we use messengers & communication functions?

Communication possibilities with you are of great importance for us. After all, we want to talk to you and answer all sorts of questions about our service in the best possible way. A well-functioning communication is an important part of our service. With the practical messenger & communication functions, you can at any time choose those who are most likely. In exceptional cases, however, it can also happen that we do not answer certain questions about chat or messenger. This is the case when it comes to internal contractual affairs. Here we recommend other communication possibilities such as e-mail or phone.

Please note that when using our built-in items, data from you can also be processed outside the European Union, as many providers, for example Facebook Messenger or WhatsApp are American companies. This allows you to no longer demand or enforce your rights in terms of your personal information.

Which data is processed?

Which data is stored and processed accurately depends on the respective provider of Messenger & Communication functions. Basically, it is data such as name, address, telephone number, e-mail address, and content data such as all the information you enter into a contact form. Mostly information about your device and the IP address are stored. Data collected via a Messenger & Communication function are also stored on the servers of the provider.

If you want to know exactly which data is stored and processed in the respective providers and how they can contradict the data processing, you should carefully read the company's privacy policy.

How long will data be stored?

How long the data is processed and stored, depends primarily on our tools used. Learn more about the data processing of the individual tools. The privacy policy of the provider is usually exactly what data is stored and processed as long as long. In principle, personal data is processed only as long as it is necessary for the provision of our services. When data is stored in cookies, the storage time varies greatly. The data can be deleted immediately after leaving a website, but you can also stay stored for several years. Therefore, you should see each individual cookie in detail if you want to know about the data storage more accurate. Mostly you will also find instructive information about the individual cookies in the privacy statements of each provider.

Right to object

You also have the right and the possibility to revoke your consent to the use of cookies or third party providers. This works either via our cookie management tool or other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting the cookies in your browser. For more information, we refer to the consent section.

Since cookies can be used in Messenger & Communication functions, we also recommend our general privacy policy on cookies. To find out which data is stored and processed by you exactly, you should read the privacy statements of the respective tools.

Legal basis

If you agree that data can be processed and stored by you through integrated messenger & communication functions, this consent is considered the legal basis of data processing (Article 6 (1) lit. a DSGVO). We process your request and manage your data within the framework of contractual or pre-contractual relationships to meet or request our pre-contractual and contractual obligations. The basis for this is Art. 6 para. 1 p. 1 lit. b. DSGVO. In principle, their data will be stored and processed at the foundation of a consent on the basis of our legitimate interest (Article 6 (1) lit. f dsgvo) at a rapid and good communication with you or other customers and business partners.

Facebook Messenger

We use the communication tool Facebook Messenger on our website. Service provider is the American company Meta Platforms Inc. For European room, the company Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland) is responsible.

The Facebook data processing condition that meets the standard contract clauses can be found at https://www.facebook.com/legal/terms/DataProcessing.

More about the data processed by the use of Facebook will be found in the Privacy Policy on https://www.facebook.com/about/privacy.

We also use the instant messaging service Telegram. Service provider is the international company Telegram Messenger LLP, which is led under a London address (71-75 Shelton Street, Covent Garden, London, Great Britain). More about the data processed by the use of telegram can be found in the Privacy Policy on https://telegram.org/privacy.

We use the instant messaging service WhatsApp on our website. Service provider is the American company WhatsApp Inc. A subsidiary of Meta Platforms Inc. For the European room, the company Whatsapp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland is responsible.

WhatsApp processes data from you, etc. also in the USA. We point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be accompanied by different risks for the legality and security of data processing.

As the basis of data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, in particular in the US) or a data transfer there, WhatsApp uses so-called standard contract clauses (= Art. 46. Abs. 2 and 3 DSGVO). Standard Contract Clauses (Standard Contractual Clauses - SCC) are model templates provided by the EU Commission and should ensure that their data will meet the European data protection standards even if they are handed down and stored in third countries (such as US) and stored there. These clauses committed WhatsApp to comply with the European data protection level when processing their relevant data, even if the data stores, processed and managed in the USA. These clauses are based on a decision-making decision of the EU Commission. You will find the decision and the corresponding standard contract clauses, etc. here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=en

For information about data transmission at WhatsApp, which match the standard contract clauses, see https://www.whatsapp.com/legal/business-data-transfer-addendum-20210927

More about the data that is processed by the use of WhatsApp can be found in the Privacy Policy on https://www.whatsapp.com/privacy

11. Blog posts and comment functions

There are several online communication tools that we can use on our website. For example, we use blog contributions and comment functions. So you have the opportunity to comment on content or to write posts. If you use this feature, your IP address can be saved for security reasons. In this way, we protect ourselves from illegal content such as insults, unauthorized advertising or forbidden political propaganda. To see if there are comments about spam, we can also store and process user information based on our legitimate interest. If we start a survey, we also save your IP address for the duration of the survey so that we can certainly go that all those involved really vote only once. Cookies can also be used for the purpose of storing. All data we store from you (such as content or information about your person) remain stored up to your opposition.

12. Video conferencing and streaming

What are video conferencing & streamings?

We use software programs that enable us to hold video conferencing, online memeeting, webinars, display sharing and / or streaming. For a video conferencing or streaming, information is transmitted simultaneously via sound and moving image. With the help of such video conferencing or streaming tools, we can quickly and easily communicate with customers, business partners, clients and employees via the Internet. Of course, in the selection of the service provider, we pay attention to the given legal framework conditions.

Basically, third-party providers can process data as soon as they interact with the software program. Third party providers of videoconference or streaming solutions use their data and metadata for different purposes. The data helps to make the tool safer and improve the service. Mostly the data may also be used for third party marketing purposes.

Why do we use video conferencing & streaming on our website?

We want to communicate with you, with our customers and business partners digitally quickly, uncomplicated and securely. It works best with videoconferencing solutions that are easy to use. Most tools also work directly through their browser and after just a few clicks they are in the middle of a video vet. The tools also offer helpful additional features such as a chat and screensharing function or the ability to share content between meeting participants.

Which data is processed?

If you participate in our videoconference or streaming, data is also processed by you and stored on the servers of the respective service provider.

Which data is stored accurately depends on the solutions used. Each provider stores and processes different and different data. However, most of most providers are stored their name, address, contact details such as their e-mail address or phone number and IP address. Furthermore, information about your device used can also visit usage data such as which web pages you visit when to visit a web page or to which buttons you click is stored. Also data shared within the video conference (photos, videos, texts) can be saved.

Duration of data processing

The duration of the data processing will inform you below in connection with the service used, provided we have more information. In general, we only process personal data as long as it is necessary for the provision of our services and products. It may be that the provider is storing data from you according to your own scale, whereupon we have no influence.

Right to object

You always have the right to information, correction and deletion of your personal data. If you have any questions, you can also contact anytime responsible for the video conferencing or streaming tool used. Contact details can be found either in our specific privacy policy or on the website of the corresponding provider.

Cookies that use providers for their functions can be deleted, deactivated or managed in your browser. Depending on which browser you use, this works in different ways. Please note, however, that then no longer all functions work as usual.

Legal basis

If you have consented that data from you can be processed and stored by the video or streaming solution, this consent is considered the legal basis of data processing (Article 6 (1) Lit. a DSGVO). In addition, we can also offer a videoconference as part of our services if this was contractually agreed in advance (Art. 6 para. 1 lit. b DSGVO). Basically, your data is also stored and processed on a fast and good communication with you or other customers and business partners based on our legitimate interest (Article 6 (1) Lit. F DSGVO), but only as far as you have consented. Most video or streaming solutions also use cookies in your browser to save data. That's why we recommend that you can read our privacy text through cookies exactly and to look at the privacy policy or the cookie guidelines of the respective service provider.

Information on special video conferencing and streaming solutions, see - if available - in the following sections.

Zoom

We use the video conferencing tool zoom for our website of the American software company Zoom Video Communications. The company headquarters is located in California San Jose, 55 Almaden Boulevard, 6th Floor, CA 95113. Thanks to "Zoom" we can with customers, business partners, clients and also employees easily and without software installation a video conferencing. In this privacy policy, we are closer to the service and inform you about the most important privacy-relevant aspects.

Zoom is one of the world's best known video conferencing solutions. For example, with the "Zoom Meetings" service, we can hold an online video conferencing with you, but also with employees or other users through a digital conference room. So we can easily contact digitally, sharing us over various topics, send or call text messages. Furthermore, you can also share the screen via zoom, replace files and use a whiteboard.

Why do we use zoom on our website?

It is important to us that we can communicate with you quickly and easily. And exactly this possibility offers us zoom. The software program also works directly via a browser. That means we can simply send you a link and start with the videoconferencing. In addition, of course, additional functions such as screensharing or exchanging files are very practical.

Which data is stored by zoom?

If you are using Zoom, data is also charged from you so that Zoom can provide your services. These are data that you deliberately make available to the company. These include, for example, name, telephone number or your e-mail address. However, data is also automatically transmitted to zoom and stored. These include, for example, technical data of your browser or your IP address. Below we go more closely on the data that can raise and save zoom from you:

If you specify data like your name, your username, e-mail address or phone number, this data is stored at Zoom. Contents that you upload during zoom use are also saved. These include, for example, files or chat protocols.

For the technical data that Zoom automatically stores, next to the IP address already mentioned above, the MAC address, other device IDs, device type, which operating system you use, count which client you use, camera type, microphone and speaker type. Your approximate location is also determined and saved. Furthermore, Zoom also stores information about how to use the service. For example, whether you "zoom" via Desktop or Smartphone, whether you use a phone call or VoIP, whether you take part with or without video or request a password. Zoom also records so-called metadata such as the duration of the meeting / call, start and end of the meeting participation, meeting name and chat status.

Zoom mentions in your own privacy policy that the company does not use advertising cookies or tracking technologies for your services. Only on your own marketing websites such as https://explore.zoom.us/docs/de-de/home.html These tracking methods are used. Zoom does not sell personal data and does not use them for advertising purposes.

How long and where are the data stored?

Zoom does not know a concrete time frame in this regard, but emphasizes that the collected data remains stored as long as it is necessary to provide services or for its own purposes. For longer, the data is stored only if this is required for legal reasons.

Basically, Zoom stores the collected data on American servers, but data can arrive worldwide on different data centers.

How can I delete my data or prevent data storage?

If you do not want data to be stored during the zoom meeting, you must renounce the meeting. But you always have the right and the possibility to delete all your personal data. If you have a zoom account, see https://support.zoom.us/hc/en-us/articles/2013632243-how-do-delete-terminate-my-account a guide as your account can delete.

Legal basis

Zoom processes data from you, etc. also in the USA. We point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be accompanied by different risks for the legality and security of data processing.

As the basis of data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, in particular in the US) or a data transfer there, ZOOM uses so-called standard contract clauses (= Art. 46. Abs. 2 and 3 DSGVO). Standard Contract Clauses (Standard Contractual Clauses - SCC) are model templates provided by the EU Commission and should ensure that their data will meet the European data protection standards even if they are handed down and stored in third countries (such as US) and stored there. Through these clauses, zoom is committed to maintaining the European data protection level when processing their relevant data, even if the data stores, processed and managed in the USA. These clauses are based on a decision-making decision of the EU Commission. You will find the decision and the corresponding standard contract clauses, etc. here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=en

We hope to have an overview of the data processing by Zoom. Of course, it can always happen that the company's privacy policies change. Therefore, for more information on the processed data and standard contract clauses, we also recommend the privacy policy of Zoom at https://explore.zoom.us/en/privacy/?tid=111968821.

Jitsi Meet

What is Meet.jit.si?

8 × 8 provides the main contribution to the open source solution for Jitsi.org VideoTings. Meet.jit.si is an application of the open source video conferencing solution Jitsi.org, which is hosted from 8 × 8 and enables users to hold free video conferencing.

Which personal data processes Meet.jit.si?

To provide the Meet.jit.si service processes 8 × 8 network and usage information, including IP addresses of the meeting users, the URL specified by the user, which is used to host the meeting, and information about the telephone numbers that connect to Make a meeting (if audio is connected via a telephone call). In some cases, meeting-related content that may include personal data may be temporarily stored to enable user functions in a Meet.jit.si VideoTeting. Examples include:

If you use the chat function, chat content is stored during the meeting.

When you record a meeting, the recording of the meeting is temporarily stored until it is uploaded to your file hosting service (eg Dropbox). If you stream your Meeting live, video content is temporarily stored to buffer the live stream.

In addition, Meet.jit.si users have the ability to specify the name, e-mail address and a link to an image that appears to the participants of the meeting.

How are this information used?

8 × 8 does not sell personal data to third parties.

8 × 8 uses this information to provide the Meet.jit.Si service to identify and resolve problems with the Meet.jit.Si service and to improve the Meet.jit.si service. In addition, 8 × 8 can use this information to investigate fraud or abuse.

13. Survey and survey systems

What are survey and survey systems?

We also like to conduct various surveys and surveys through our website. These are always evaluated anonymous. A survey or survey system is a tool integrated into our website, which questions you (for example about our products or services), which you can answer, if you participate. Your answers are always evaluated anonymously. However, after your consent to data processing, personal data can also be stored and processed.

Why do we use survey and survey systems?

We want to offer you the best products and services in our industry. With surveys we get perfect feedback from you and experience what you expect from us or our services. Based on these anonymous evaluations, we can adapt our products or services to their wishes and ideas. Furthermore, the information also serves to address our advertising and marketing measures goal-oriented to those persons who are really interested in our offer.

Which data is processed?

Personal data will only be processed if it is necessary for technical implementation or if you agree that personal data may be processed. Then, for example, your IP address is stored so that, for example, the survey can be displayed in your browser. Cookies can also be used so that you can easily resume your survey after a later time.

If you have consented to data processing, contact information such as your e-mail address or phone number can also be processed in addition to your IP address. Also, data that you enter into an online form will also be saved and processed. Some providers also store information about their visited websites (on our website) when you have started and finished the survey and have a variety of technical information about your computer.

How long will data be stored?

Right to object

You also have the right and the possibility to revoke your consent to the use of cookies or embedded survey systems. This works either via our cookie management tool or other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting the cookies in your browser.

Since cookies can be used for survey systems, we also recommend our general privacy policy on cookies. To find out which data is stored and processed by you exactly, you should read the privacy statements of the respective tools.

Legal basis

The use of survey systems requires their consent, which we have obtained with our cookie popup. According to Article 6 (1), this consent, this consent is the legal basis for the processing of personal data, as may occur when recognizing by survey and survey systems.

In addition to consent, our site has a legitimate interest in performing survey on our topic. The legal basis for this is Art. 6 para. 1 lit. F DSGVO (legitimate interests). Nevertheless, we only use the tools as far as they have given one consent.

Since cookies are used for survey systems, we also recommend reading our general privacy policy to cookies. To find out which data is stored and processed by you exactly, you should read the privacy statements of the respective tools.

Information about the individual survey systems, you will receive - if available - in the following sections.

Google form

We use for our website Google form, a service for Google Cloud forms. Service Provider is the American company Google Inc. For the European room, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services.

Google processes data from you, etc. also in the USA. We point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be accompanied by different risks for the legality and security of data processing.

As the basis of data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, in particular in the US) or a data transfer there, Google uses so-called standard contract clauses (= Art. 46. Abs. 2 and 3 DSGVO). Standard Contract Clauses (Standard Contractual Clauses - SCC) are model templates provided by the EU Commission and should ensure that their data will meet the European data protection standards even if they are handed down and stored in third countries (such as US) and stored there. Through these clauses, Google undertakes to maintain the European data protection level when processing their relevant data, even if the data stored, processed and managed in the USA. These clauses are based on a decision-making decision of the EU Commission. You will find the decision and the corresponding standard contract clauses, etc. here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=en

The Google Ads Data Processing Terms (Google Ads Data Processing Terms), which match the standard contract clauses and are also asserted for Google form, see https://business.safety.google/adsprocessorterms/.

More about the data that is processed by the use of Google will be found in the privacy policy on https://policies.google.com/privacy.

SurveyMonkey

We use SurveyMonkey for our website, a survey management software. Service provider is the American company Momentive Inc. The Irish company is responsible for the European Economic Area Momentive Europe UC (2nd Floor, 2 Shelbourne Buildings, Shelbourne Road, Dublin, Ireland).

SurveyMonkey processes data u.a. also in the USA. We point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be accompanied by different risks for the legality and security of data processing.

The basis of data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, in particular in the US) or a data transfer there, SurveyMonkey uses standard contract clauses from the EU Commission (= Art. 46. Abs. 2 and 3 DSGVO). These clauses oblige SurveyMonkey to comply with the EU privacy level in the processing of relevant data outside the EU. These clauses are based on a decision-making decision of the EU Commission. You will find the decision as well as the clauses, etc. here: https://engermany.representation.ec.europa.eu/index_en

More about the data that is processed by the use of SurveyMonkey can be found in the privacy policy on https://www.surveymonkey.de/mp/legal/privacy/.

All texts are copyrighted.

Source: Created with the Privacy Generator of Adsimple

14. Contact

Please contact us if you have questions or complaints about this policy. If you are a final customer (ie an individual who makes business or transactions with a business user), please read the privacy policy or hints of the business user to provide information about the privacy practices, options and control options of the business user, Or contact the business user directly.

Source: https://www.e- law24.de and Trusted Shops GmbH

Translation: https://translate.google.com

Privacy Policy

1. Privacy at a glance

General information

Austria Data Protection Authority

Data collection on this website

Who is responsible for the data acquisition on this website?

How do we capture your data?

What do we use your data for?

What rights do you have regarding your data?

Analysis tools and third-party tools

2. Hosting

Squarespace

3. General information and compulsory information

Privacy

Note on the responsible body

Memory

General information on the legal bases of data processing on this website

Note on data transfer to the US and other third countries

Revocation of your consent to data processing

Opposition law against data collection in special cases and against direct advertising (Art. 21 DSGVO)

Complaint in the competent supervisory authority

Right to data transferability

SSL or TLS encryption

Information, deletion and correction

Right to restriction of processing

4. Data collection on this website

Cookies

Contact form

Inquiry by e-mail, Phone or fax

Online form

What are Google Fonts?

Why do we use Google Fonts on our website?

What data does Google store?

How long and where is the data stored?

How can I delete my data or prevent data storage?

Legal Basis

5. Transactions

Privacy Policy for the use of PayPal as a payment transducer

Privacy Policy for using Stripe

6. Online Marketing

7. Social media

Facebook Conversions API

Facebook Custom Audiences

Instagram plugin

Pinterest plugin

Pinterest Web Analytics

Xing plugin

Tumblr plugin

8. Newsletter & donations

Newsletter data

Donations

9. Plugins and tools

YouTube with extended privacy

Vimeo without tracking (Do-Not-Track)

Google Maps

Soundcloud

10. Messenger and communication

Facebook Messenger

Telegram

Whatsapp

11. Blog posts and comment functions

12. Video conferencing and streaming

Zoom

Jitsi Meet

13. Survey and survey systems

Google form

SurveyMonkey

14. Contact

Standort / Location

Mitglied bei / Member of

Kontakt / Contact