Privacy policy

Privacy policy

Website provider and responsible

Gábor Kerényi
Vienna / Berlin

+43 699 19009535

Scope

This data protection declaration informs users about the type, scope and purpose of the collection and use of personal data by the responsible provider of this website.

We take the protection of your data very seriously and process your data exclusively on the basis of the statutory provisions (GDPR, DSG, TKG 2003).

Responsible person

The name and contact details of the person responsible are:

Gábor Kerényi
Vienna / Berlin

+43 699 19009535

Those affected can contact him with any questions about data protection.

What data we process, for what purposes and on what legal basis

We process your data when you visit our website or are interested in our services.

Data processing of visitors to our website

We either process your personal data

  • to safeguard our legitimate interests (Art 6 Paragraph 1 lit f GDPR), namely to ensure the operation, security and optimization of our website, or
  • To process your inquiries that you send us via the contact form on our website, by email or by telephone (Art 6 Paragraph 1 lit a GDPR).

Access data / server log files

Our web space provider collects data every time the website is accessed (so-called server log files). When you visit our website, your IP address and the beginning and end of the session are recorded for the duration of this session. This is due to technical reasons and thus represents a legitimate interest within the meaning of Art 6 Paragraph 1 lit f GDPR. When using this general data and information, we do not draw any conclusions about the person concerned.

The access data include:

Visited website
Time at the time of access
Amount of data sent in bytes
Source / reference from which you came to the page
Browser used
Operating system used
Used IP address

The processing of this data takes place for the purpose of enabling the use of the website (connection establishment), serves for system security, the technical administration of the network infrastructure and for the optimization of the internet offer. However, the provider reserves the right to check the log data retrospectively if, based on specific indications, there is a legitimate suspicion of illegal use, for example in the event of a hacker attack.

As a rule, server log files are stored for 2 weeks and then deleted. If illegal use is suspected, the respective data are excluded from deletion until the respective incident has been finally clarified.

The web host / provider has undertaken to take appropriate measures in accordance with the GDPR and to ensure the protection of personal data.

Privacy policy of the web host:

https://alfahosting.de/datenschutz/

We have concluded a processor contract with the provider alfahosting.de.

Cookies

Our website uses so-called cookies. These are small text files that are stored on your device with the help of the browser. They do not cause any damage, are functionally necessary and do not save any personal data. They are deleted again after the session has ended.

Most web browsers contain an option in their settings that restricts or completely prevents the storage of cookies.

Data processing when you contact us by email or online form – Encrypted data transmission with SSL

You can contact us using the form on the website or by email.

Contact by form on the website

Entries in forms on the website are transmitted in encrypted form. Data transfers are carried out using the SSL (Secure Socket Layer) method. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http: //” to “https: //” and by the lock symbol in your browser line.

Data processing of emails that are sent to us

We only work with contract processors who offer sufficient guarantees that suitable technical and organizational measures are taken during processing in accordance with the requirements of the GDPR and that guarantee the protection of personal data.

The provider of the email server has undertaken to take appropriate measures in accordance with the GDPR and to ensure the protection of personal data.

Privacy policy of the email server provider:

https://alfahosting.de/datenschutz/

We have concluded a processor contract with the provider alfahosting.de.

We process the following personal data:

Master data (name, address, email address, telephone number)

Data transfer to third parties

The transfer to third parties does not normally take place, if it should be necessary in the course of order processing, then exclusively on the basis of an explicit consent obtained for this purpose.

Storage duration & security measures

Storage period

We only store personal data for as long as it is required for the purpose of processing (in particular for the fulfillment of the contract and the provision of our services). There may also be statutory retention requirements. If your personal data is no longer required, we will delete the data from our databases immediately after the statutory retention periods have expired.

Safety measures

We use suitable technical and organizational measures to protect our website and other systems on which personal data is stored and processed against loss, destruction, access, modification or dissemination of your data by unauthorized persons.

We only work with contract processors (such as the provider / web host of the website) who offer sufficient guarantees that suitable measures are taken in accordance with the GDPR and that the protection of personal data is guaranteed.

List of our processors:

alfahosting.de, web hosting
Martina Bartik, web design

The security measures also include the encrypted transmission of data between your browser and our server.

Appeal Statement

As a data subject, you have the right to information about the stored data in accordance with Art 15 GDPR, to correct inaccurate data in accordance with Art 16 GDPR, to delete data in accordance with Art 17 GDPR, to restrict the processing of data in accordance with Art 18 GDPR, to object unreasonable data processing in accordance with Art 21 GDPR and data portability in accordance with Art 20 GDPR.

If the processing takes place on the basis of a declaration of consent, the person concerned has the option of revoking this at any time without affecting the legality of the processing carried out on the basis of the consent up to the revocation.

You can reach us under the following contact details:

The person concerned has the right to complain to the supervisory authority – in Austria the data protection authority is responsible. The address is:

Austrian data protection authority

Barichgasse 40-42

1030 Vienna

39 / 98-70 / SP / 161-1.docx

Phone: +43 1 52 152-0

Email:

There is no automated decision-making including profiling. Should personal data be processed for a purpose other than that for which the personal data was collected, we have disclosed this information about this other purpose to the data subject.