Data protection
General
As the operator of this website and as a company, we come into contact with your personal data. This refers to all data that says something about you and with which you can be identified. In this privacy policy, we would like to explain to you how, for what purpose and on what legal basis we process your data.
We are responsible for data processing on this website and in our company:
venusandmoon
Mozartstrasse 6
2214 Auersthal
Austria
Phone: +43 (0) 660 939 33 17
E-mail: office@osed.at
General information
SSL or TLS encryption
When you enter your data on websites, place online orders or send e-mails over the Internet, you must always be prepared for unauthorized third parties to access your data. There is no complete protection against such access. However, we make every effort to protect your data in the best possible way and to close security gaps as far as possible.
An important protection mechanism is the SSL or TLS encryption of our website, which ensures that data that you transmit to us cannot be read by third parties. You can recognize the encryption by the lock icon in front of the Internet address entered in your browser and by the fact that our Internet address begins with https:// and not with http://.
Encrypted payment transactions
Payment data, such as account or credit card numbers, are particularly sensitive. For this reason, payment transactions with common means of payment are made exclusively via an encrypted SSL or TLS connection.
How long do we store your data?
In some places in this privacy policy, we inform you about how long we or the companies that process your data on our behalf store your data. If no such information is provided, we will store your data until the purpose of the data processing no longer applies, you object to the data processing or you withdraw your consent to the data processing.
However, in the event of an objection or revocation, we may continue to process your data if at least one of the following conditions is met:
- We have compelling legitimate grounds for continuing the data processing that outweigh your interests, rights and freedoms (only if you object to the data processing; if the objection is directed against direct marketing, we cannot provide any legitimate grounds).
- Data processing is necessary in order to assert, exercise or defend legal claims (does not apply if your objection is directed against direct advertising).
- We are legally obliged to store your data.
In this case, we will delete your data as soon as the requirement(s) cease(s) to apply.
Data transfer to the USA
We also use tools on our website from companies that transfer your data to the USA and store and, if necessary, process it there. The European Commission has adopted an adequacy decision for the EU-US data protection framework. This establishes that the USA guarantees an adequate level of protection for personal data from the EU that is transferred to US companies. This decision is based on new safeguards and measures introduced by the US to meet data protection requirements. The adequacy decision includes, among other things, restrictions and safeguards on access to the data by US intelligence services. Binding safeguards have been introduced to limit the access of US intelligence agencies to what is necessary and proportionate to protect national security. In addition, increased oversight of the activities of the US intelligence services has been established to ensure that the restrictions on surveillance activities are complied with. An independent redress mechanism has also been established to handle and resolve complaints from European citizens about access to their data. The EU-US Privacy Shield Framework thus allows European companies to transfer data to certified US companies without having to introduce additional data protection safeguards. You can view a list of all certified companies at the following link: https://www.dataprivacyframework.gov/s/participant-search
A change to the European Commission's decision cannot be ruled out.
Your rights
Objection to data processing
IF YOU READ IN THIS DATA PROTECTION DECLARATION THAT WE HAVE LEGITIMATE INTERESTS FOR THE PROCESSING OF YOUR DATA AND THEREFORE BASE THIS ON ART. 6 ABS. 1 SENTENCE 1 LIT. F) GDPR, YOU HAVE THE RIGHT UNDER ART. 21 GDPR YOU HAVE THE RIGHT TO OBJECT TO THIS. THIS ALSO APPLIES TO PROFILING BASED ON THE AFOREMENTIONED PROVISION. THE PREREQUISITE IS THAT YOU STATE REASONS FOR THE OBJECTION THAT ARISE FROM YOUR PARTICULAR SITUATION. NO JUSTIFICATION IS REQUIRED IF THE OBJECTION IS DIRECTED AGAINST THE USE OF YOUR DATA FOR DIRECT ADVERTISING.
THE CONSEQUENCE OF THE OBJECTION IS THAT WE MAY NO LONGER PROCESS YOUR DATA. THIS ONLY DOES NOT APPLY IF ONE OF THE FOLLOWING CONDITIONS APPLIES:
- WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS.
- THE PROCESSING SERVES THE ASSERTION, EXERCISE OR DEFENSE OF LEGAL CLAIMS.
THE EXCEPTIONS DO NOT APPLY IF YOUR OBJECTION IS DIRECTED AGAINST DIRECT ADVERTISING OR AGAINST PROFILING IN CONNECTION WITH THIS.
Further rights
Revocation of your consent to data processing
Many data processing operations are based on your consent. You give this consent, for example, by ticking the appropriate box on online forms before you send the form or by allowing certain cookies when you visit our website. You can withdraw your consent at any time without giving reasons (Art. 7 para. 3 GDPR). We may then no longer process your data from the time you withdraw your consent. The only exception: We are legally obliged to retain the data for a certain period of time. Such retention periods exist in particular in tax and commercial law.
Right to lodge a complaint with the competent supervisory authority
If you believe that we are in breach of the General Data Protection Regulation (GDPR), you have the right to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR. You can contact a supervisory authority in the member state of your place of residence, your place of work or the place where the alleged infringement took place. The right to lodge a complaint exists in addition to administrative or judicial remedies.
Right to data portability
Data that we process automatically on the basis of your consent or in fulfillment of a contract must be handed over to you or a third party in a commonly used, machine-readable format if you request this. We can only transfer the data to another controller if this is technically possible.
Right to data access, erasure and rectification
In accordance with Art. 15 GDPR, you have the right to receive information free of charge about what personal data we have stored about you, where the data comes from, to whom we transmit the data and for what purpose it is stored. If the data is incorrect, you have the right to rectification (Art. 16 GDPR); under the conditions of Art. 17 GDPR, you may request that we erase the data.
Right to restriction of processing
In certain situations, you can request that we restrict the processing of your data in accordance with Art. 18 GDPR. The data may then - apart from storage - only be processed as follows:
- with your consent
- for the assertion, exercise or defense of legal claims
- to protect the rights of another natural or legal person
- for reasons of important public interest of the European Union or a Member State
The right to restriction of processing exists in the following situations:
- You have disputed the accuracy of your personal data stored by us and we need time to check this. Here you have the right for the duration of the review.
- The processing of your personal data is unlawful or was unlawful in the past. In this case, you have the alternative right to erasure of the data.
- We no longer need your personal data, but you need it for the exercise, defense or assertion of legal claims. Alternatively, you have the right to have the data erased.
- You have lodged an objection pursuant to Art. 21 para. 1 GDPR and now your and our interests must be weighed against each other. You have the right to do so as long as the result of the balancing process has not yet been determined.
Hosting and Content Delivery Networks (CDN)
External hosting
Our website is hosted on a server of the following internet service provider (hoster):
Domain technology (Ledl.net GmbH)
Lederergasse 6
5204 Straßwalchen
Has an order processing contract been concluded with the hoster or are standard contractual clauses (SCC) used?
Yes
How do we process your data?
The host stores all data from our website. This also includes all personal data that is collected automatically or through your input. This may include in particular Your IP address, pages accessed, names, contact details and inquiries as well as meta and communication data. When processing data, our hoster complies with our instructions and only ever processes the data to the extent that this is necessary to fulfill the service obligation to us.
On what legal basis do we process your data?
Since we address potential customers via our website and maintain contact with existing customers, data processing by our hoster serves to initiate and fulfill contracts and is therefore based on Art. 6 para. 1 lit. b) GDPR. In addition, it is our legitimate interest as a company to provide a professional website that meets the necessary requirements for security, speed and efficiency. In this respect, we also process your data on the basis of Art. 6 para. 1 lit. f) GDPR.
Data collection on this website
Use of cookies
Our website places cookies on your device. These are small text files that are used for different purposes. Some cookies are technically necessary for the website to function at all (necessary cookies). Others are required to perform certain actions or functions on the site (functional cookies). For example, without cookies it would not be possible to use the benefits of a shopping basket in an online store. Other cookies are used to analyze user behavior or to optimize advertising measures. If we use third-party services on our website, e.g. to process payment transactions, these companies may also leave cookies on your device when you access the website (so-called third-party cookies).
How do we process your data?
Session cookies are only stored on your device for the duration of a session. As soon as you close the browser, they disappear automatically. Permanent cookies, on the other hand, remain on your device if you do not delete them yourself. This can lead, for example, to your user behavior being permanently analyzed. You can use the settings in your browser to influence how it handles cookies:
- Do you want to be informed when cookies are set?
- Do you want to exclude cookies in general or for certain cases?
- Do you want cookies to be deleted automatically when you close your browser?
If you deactivate or do not allow cookies, the functionality of the website may be restricted.
If we use cookies from other companies or for analysis purposes, we will inform you about this in this privacy policy. We also ask for your consent in this regard when you visit our website.
On what legal basis do we process your data?
We have a legitimate interest in ensuring that our online services can be used by visitors without technical problems and that all desired functions are available to them. The storage of necessary and functional cookies on your device therefore takes place on the basis of Art. 6 para. 1 lit. f) GDPR. We set all other cookies on the basis of Art. 6 para. 1 lit. a) GDPR, provided that you give us your consent to do so. You can revoke this consent at any time with effect for the future. If you have consented to the placement of necessary and functional cookies when your consent was requested, these cookies will also be stored exclusively on the basis of your consent.
Cookie consent with Borlabs Cookie
What is Borlabs Cookie?
Cookie plugin for compliance with the GDPR and ePrivacy
Who processes your data?
Only we, not the provider of Borlabs Cookie
Where can you find more information about data protection at Borlabs Cookie?
https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/
How do we process your data?
We use Borlabs Cookie to obtain your consent to the storage of cookies on your device. When you visit our website and close the Borlabs Cookie window with the request for consent, a Borlabs cookie with the following content is stored in your browser:
- Cookie runtime
- Cookie version
- Domain and path of the website
- Consents
- a randomly generated ID
This data is not transmitted to the provider of Borlabs Cookie.
We store the data until the purpose of the data storage no longer applies, you delete the Borlabs cookie or request us to delete the data. This only does not apply if we are legally obliged to store the data.
On what legal basis do we process your data?
We are legally obliged to obtain the consent of our website visitors for the use of certain cookies. To fulfill this obligation, we use Borlabs Cookie. The legal basis for data processing is therefore Art. 6 para. 1 lit. c) GDPR.
Server log files
Server log files log all requests and access to our website and record error messages. They also contain personal data, in particular your IP address. However, this is anonymized by the provider after a short time so that we cannot assign the data to you personally. The data is automatically transmitted from your browser to our provider.
How do we process your data?
Our provider stores the server log files in order to be able to track the activities on our website and to detect errors. The files contain the following data:
- Browser type and version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address (anonymized if necessary)
We do not merge this data with other data, but only use it for statistical analysis and to improve our website.
On what legal basis do we process your data?
We have a legitimate interest in ensuring that our website runs smoothly. It is also in our legitimate interest to obtain an anonymized overview of access to our website. The data processing is therefore in accordance with Art. 6 para. 1 lit. f) GDPR lawful.
Contact form
You can send us a message using the contact form on this website.
How do we process your data?
We store your message and the information from the form in order to be able to process your request, including follow-up questions. This also applies to the contact details provided. We will not pass the data on to other persons without your consent.
How long do we store your data?
We delete your data as soon as one of the following points occurs:
- Your request has been finally processed.
- You ask us to delete the data.
- You revoke your consent to storage.
This only does not apply if we are legally obliged to retain the data.
On what legal basis do we process your data?
If your request is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the basis of Art. 6 para. 1 lit. b) GDPR. In all other cases, it is in our legitimate interest to process inquiries addressed to us effectively. The legal basis for data processing is therefore Art. 6 para. 1 lit. f) GDPR. If you have consented to the storage of your data, Art. 6 para. 1 lit. a) GDPR is the legal basis. In this case, you can withdraw your consent at any time with effect for the future.
Request by e-mail, telephone or fax
You can send us a message by e-mail or fax or give us a call.
How do we process your data?
We store your message and the contact details you have provided or the telephone number you have transmitted so that we can process your inquiry, including any follow-up questions. We will not pass the data on to other persons without your consent.
How long do we store your data?
We delete your data as soon as one of the following points occurs:
- Your request has been finally processed.
- You ask us to delete the data.
- You revoke your consent to storage.
This only does not apply if we are legally obliged to retain the data.
On what legal basis do we process your data?
If your request is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the basis of Art. 6 para. 1 lit. b) GDPR. In all other cases, it is in our legitimate interest to process inquiries addressed to us effectively. The legal basis for data processing is therefore Art. 6 para. 1 lit. f) GDPR. If you have consented to the storage of your data, Art. 6 para. 1 lit. a) GDPR is the legal basis. In this case, you can withdraw your consent at any time with effect for the future.
Analysis tools and advertising
We use the following tools to analyze the behavior of our website visitors and to show you advertising.
WP Statistics
How do we process your data?
We are always interested in optimizing our website for users and placing advertising in the best possible way. The WP Statistics plugin, which analyzes user behavior and thus provides us with the necessary database for adjustments, helps us to do this. The provider is Veronalabs, ARENCO Tower, 27th Floor, Dubai Media City, Dubai, Dubai 23816, United Arab Emirates. WP Statistics collects the following data, among others:
- IP address
- Referrer
- Browser used
- Origin of the user
- Search engine used
- Clicks, page views and other actions
The data is only stored locally.
On what legal basis do we process your data?
As a website operator, we have a legitimate interest in analyzing user behavior for the purpose of optimizing our website and the advertising placed on it. Data processing is therefore permitted under Art. 6 para. 1 lit. f) GDPR lawful. In the event that you have consented to the storage of cookies, for example, or have consented to data processing in some other way, only Art. 6 para. 1 lit. a) GDPR is the legal basis. You can revoke your consent at any time with effect for the future.
Plugins and tools
Ninja Firewall
What is Ninja Firewall?
Firewall and security scanner
Who processes your data?
NinTechNet Limited, Unit 1603, 16th Floor, The L. Plaza 367 - 375 Queen's Road Central Sheung Wan, Hong Kong
Where can you find more information about data protection at Ninja Firewall?
https://nintechnet.com/about/#privacy
How do we process your data?
Ninja Firewall is used to protect our website from unwanted access or malicious cyberattacks. For this purpose, Ninja Firewall also records your IP address, the time and source of login attempts and log data (e.g. the browser used).
Ninja Firewall is integrated on our own servers and does not transmit any personal data to the provider of the tool or other third parties. We have activated IP anonymization in Ninja Firewall so that the tool only records the IP address in abbreviated form.
On what legal basis do we process your data?
As a website operator, we have a legitimate interest in protecting ourselves from malicious data traffic. The data processing is therefore permissible pursuant to Art. 6 para. 1 lit. f) GDPR lawful.
If you have consented to data processing, we process your data exclusively on the basis of Art. 6 para. 1 lit. a) GDPR. You can withdraw your consent at any time. We may no longer process your data from the time you withdraw your consent.
Google Drive
What is Google Drive?
Cloud storage
Who processes your data?
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Where can you find more information about data protection at Google Drive?
https://policies.google.com/privacy
On what basis do we transfer your data to the USA?
Based on the adequacy decision of the European Commission and the corresponding certification of the company.
How do we process your data?
You can upload files to our website. We use the Google Drive cloud storage service for this purpose. The files are stored on the servers of the US company Google. When you visit our website, a connection to Google is also established. The cloud storage registers that our website has been accessed via your IP address.
On what legal basis do we process your data?
We have a legitimate interest in offering a reliable upload area on our website. The processing of your data therefore takes place on the basis of Art. 6 para. 1 lit. f) GDPR. If you have consented to data processing, we process your data exclusively on the basis of Art. 6 para. 1 lit. a) GDPR. You can withdraw your consent at any time with effect for the future.
Online store - eCommerce and payment provider
Customer and contract data
How do we process your data?
When we conclude a contract with you, we require certain personal data from you. We collect, process and use this data only insofar as it is necessary to establish our legal relationship, to shape its content or to change it. If you can only use our services via our website or if the services are billed via the website, we also collect usage data if this is necessary to enable you to use our services or to bill you for the service used.
How long do we store your data?
We store your data until our legal relationship ends, unless we are legally obliged to store the data for longer.
On what legal basis do we process your data?
We store your data in order to fulfill the contract with you or to carry out pre-contractual measures. The basis for data processing is therefore Art. 6 para. 1 lit. b) GDPR.
Data transmission for shipment of goods
How do we process your data?
When you order goods from us, we transmit your data to companies that we commission with the delivery and/or through which we process the payment. Only data that is necessary for the commissioned company to carry out the specific order will be transmitted. If we wish to pass on data beyond this, we will obtain your consent. We do not pass on your data for advertising purposes.
On what legal basis do we process your data?
We pass on your data in order to fulfill the contract that we have concluded with you. The basis for data processing is therefore Art. 6 para. 1 lit. b) GDPR.
Payment services
So that you can conveniently pay for your purchases on our website, we use the services of payment services, i.e. external companies that process payments for us. You can find a list of these companies at the end of this section.
How do we process your data?
You must provide certain personal data for the payment process, e.g. your name, bank account details or credit card number. We pass this data on to the respective payment service. The respective contractual and data protection provisions of the respective services apply to the transaction itself.
On what legal basis do we process your data?
We pass on your data in order to fulfill the contract that we have concluded with you. The basis for data processing is therefore Art. 6 para. 1 lit. b) GDPR. We also have a legitimate interest in processing purchases as quickly, conveniently and securely as possible. In this respect, the legal basis is also Art. 6 para. 1 lit. f) GDPR. If you have consented to the transfer of your data, the data processing is based on Art. 6 para. 1 lit. a) GDPR. You can revoke your consent at any time with effect for the future.
Which payment services do we use?
PayPal
What is PayPal?
Online payment service
Who processes your data?
PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg
Where can you find more information about data protection at PayPal?
https://www.paypal.com/de/webapps/mpp/ua/privacy-full
On what basis do we transfer your data to the USA?
PayPal complies with the standard contractual clauses of the European Commission (see https://www.paypal.com/de/we bapps/mpp/ua/pocpsa-full)
Stripe
What is Stripe?
Online payment service
Who processes your data?
Stripe Payments Europe Ltd, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland
Where can you find more information about data protection at Stripe?
On what basis do we transfer your data to the USA?
Based on the adequacy decision of the European Commission and the corresponding certification of the company
Klarna
What is Klarna?
Payment service
Who processes your data?
Klarna AB, Sveavägen 46, 111 34 Stockholm, Sweden
Where can you find more information about data protection at Klarna?
Data processing on social media
What is social media?
By social media, we mean the social networks on which we have created publicly accessible profiles. You can find out which social networks these are below.
Who processes your data?
The respective operating companies of the social networks. The individual operators can be found below under the respective networks.
How is your data processed?
The operators of social networks are generally able to collect and evaluate comprehensive data about the behavior of visitors and users of the network. It is not possible for us to track all processing operations in the social networks we use, which is why further processing operations that are not listed here may be carried out by the operators of the social networks. You can find more information on this in the terms of use and privacy policies of the respective social networks.
The processing of your data can be triggered by visiting the website of the social network or our profile page there. Even if you visit a website that uses certain network content, e.g. like or share buttons, data may already be transferred to the operators of the social network. If you yourself are a user of the social network and are logged into your user account, your visit to our profile page can be assigned to your account by the operator of the social network. Even if you have not registered a user account yourself or are not logged in, the operator of the network may still collect your personal data, e.g. by collecting your IP address or setting cookies. With this data, the operators can create user profiles tailored to your behavior and interests and show you interest-based advertising inside and outside the network. If you are a registered user of the network, interest-based advertising may also be displayed on all devices on which you are or were logged in.
What is the legal basis for processing your data?
Our profiles on social networks are intended to ensure that our company has the widest possible presence on the Internet. As a company, we have a legitimate interest in this. The data processing is therefore in accordance with Art. 6 para. 1 lit. f GDPR lawful.
The data processing operations and analyses carried out by the social network operators themselves may be based on other legal bases. These must be specified by the operators of the social networks.
Who is responsible for processing your data and how can you assert your rights?
If you visit one of our profiles in the social networks, we are jointly responsible with the operator of the respective network for the data processing operations triggered during this visit. In principle, you can assert your rights against both us and the operator of the respective network.
Despite the joint responsibility with the operators of the social networks, our influence on the data processing operations of the respective operator is limited and is primarily based on the specifications of the operator.
How long will your data be stored?
If we collect data via our profiles in the social networks, these are deleted from our systems as soon as the purpose for their storage no longer applies, you request us to delete them or you revoke your consent to their storage. Stored cookies remain on your end device until you delete them. Mandatory legal provisions - esp. retention periods - remain unaffected.
We have no influence on how long the operators of the social networks store your data, which the operators collect for their own purposes. You can obtain information on this directly from the operator of the respective social network, e.g. in the respective privacy policy.
Which social media do we use?
What is Facebook?
A social network
Who processes your data?
Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Will your data be transferred to third countries?
Yes, to the USA and also to other third countries
Where can you find more information about data protection on Facebook?
https://www.facebook.com/about/privacy/
As a Facebook user, where can you adjust your advertising settings?
As a registered Facebook user, you can adjust your advertising settings in your user account.
To do this, click on the following link and log in:
https://www.facebook.com/settings?tab=ads.
What is Instagram?
A social network specializing in photos and videos
Who processes your data?
Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Will your data be transferred to third countries?
Yes
Where can you find more information about Instagram privacy?
https://help.instagram.com/519522125107875/?helpref=hc_fnav&bc[0]=Instagram help section&bc[1]=Guidelines and notifications
Where can you as a user adjust your privacy settings?
As a registered Instagram user, you can adjust your privacy settings in your user account.
To do this, click on the following link and log in:
https://www.instagram.com/accounts/privacy_and_security/
What is LinkedIn?
A social network for business contacts
Who processes your data?
LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
Will your data be transferred to third countries?
Yes
Where can you find more information about data protection at LinkedIn?
https://de.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy
Where can you as a user adjust your data protection settings?
As a registered LinkedIn user, you can adjust your privacy settings in your user account.
To do this, click on the following link and log in:
https://www.linkedin.com/psettings/
YouTube
What is YouTube?
A social network in the form of an online video portal
Who processes your data?
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Will your data be transferred to third countries?
Yes
Where can you find more information about data protection on YouTube?
https://policies.google.com/privacy?hl=de
Where can you as a user adjust your data protection settings?
https://policies.google.com/privacy?hl=de#infochoices
© Status 2024
Data protection
General
As the operator of this website and as a company, we come into contact with your personal data. This refers to all data that says something about you and with which you can be identified. In this privacy policy, we would like to explain to you how, for what purpose and on what legal basis we process your data.
We are responsible for data processing on this website and in our company:
venusandmoon
Mozartstrasse 6
2214 Auersthal
Phone: +43 (0) 660 939 33 17
E-mail: office@osed.at
General information
SSL or TLS encryption
When you enter your data on websites, place online orders or send e-mails over the Internet, you must always be prepared for unauthorized third parties to access your data. There is no complete protection against such access. However, we make every effort to protect your data in the best possible way and to close security gaps as far as possible.
An important protection mechanism is the SSL or TLS encryption of our website, which ensures that data that you transmit to us cannot be read by third parties. You can recognize the encryption by the lock icon in front of the Internet address entered in your browser and by the fact that our Internet address begins with https:// and not with http://.
How long do we store your data?
In some places in this privacy policy, we inform you about how long we or the companies that process your data on our behalf store your data. If no such information is provided, we will store your data until the purpose of the data processing no longer applies, you object to the data processing or you withdraw your consent to the data processing.
However, in the event of an objection or revocation, we may continue to process your data if at least one of the following conditions is met:
We have compelling legitimate grounds for continuing the data processing that outweigh your interests, rights and freedoms (only if you object to the data processing; if the objection is directed against direct marketing, we cannot provide any legitimate grounds).
Data processing is necessary in order to assert, exercise or defend legal claims (does not apply if your objection is directed against direct advertising).
We are legally obliged to store your data.
In this case, we will delete your data as soon as the requirement(s) cease(s) to apply.
Your rights
Objection to data processing
IF YOU READ IN THIS DATA PROTECTION DECLARATION THAT WE HAVE LEGITIMATE INTERESTS FOR THE PROCESSING OF YOUR DATA AND THEREFORE BASE THIS ON ART. 6 ABS. 1 SENTENCE 1 LIT. F) GDPR, YOU HAVE THE RIGHT UNDER ART. 21 GDPR YOU HAVE THE RIGHT TO OBJECT TO THIS. THIS ALSO APPLIES TO PROFILING BASED ON THE AFOREMENTIONED PROVISION. THE PREREQUISITE IS THAT YOU STATE REASONS FOR THE OBJECTION THAT ARISE FROM YOUR PARTICULAR SITUATION. NO JUSTIFICATION IS REQUIRED IF THE OBJECTION IS DIRECTED AGAINST THE USE OF YOUR DATA FOR DIRECT ADVERTISING.
THE CONSEQUENCE OF THE OBJECTION IS THAT WE MAY NO LONGER PROCESS YOUR DATA. THIS ONLY DOES NOT APPLY IF ONE OF THE FOLLOWING CONDITIONS APPLIES:
WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS.
THE PROCESSING SERVES THE ASSERTION, EXERCISE OR DEFENSE OF LEGAL CLAIMS.
THE EXCEPTIONS DO NOT APPLY IF YOUR OBJECTION IS DIRECTED AGAINST DIRECT ADVERTISING OR AGAINST PROFILING IN CONNECTION WITH THIS.
Further rights
Revocation of your consent to data processing
Many data processing operations are based on your consent. You give this consent, for example, by ticking the appropriate box on online forms before you send the form or by allowing certain cookies when you visit our website. You can withdraw your consent at any time without giving reasons (Art. 7 para. 3 GDPR). We may then no longer process your data from the time you withdraw your consent. The only exception: We are legally obliged to retain the data for a certain period of time. Such retention periods exist in particular in tax and commercial law.
Right to lodge a complaint with the competent supervisory authority
If you believe that we are in breach of the General Data Protection Regulation (GDPR), you have the right to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR. You can contact a supervisory authority in the member state of your place of residence, your place of work or the place where the alleged infringement took place. The right to lodge a complaint exists in addition to administrative or judicial remedies.
Right to data portability
Data that we process automatically on the basis of your consent or in fulfillment of a contract must be handed over to you or a third party in a commonly used, machine-readable format if you request this. We can only transfer the data to another controller if this is technically possible.
Right to data access, erasure and rectification
In accordance with Art. 15 GDPR, you have the right to receive information free of charge about what personal data we have stored about you, where the data comes from, to whom we transmit the data and for what purpose it is stored. If the data is incorrect, you have the right to rectification (Art. 16 GDPR); under the conditions of Art. 17 GDPR, you may request that we erase the data.
Right to restriction of processing
In certain situations, you can request that we restrict the processing of your data in accordance with Art. 18 GDPR. The data may then - apart from storage - only be processed as follows:
with your consent
for the assertion, exercise or defense of legal claims
to protect the rights of another natural or legal person
for reasons of important public interest of the European Union or a Member State
The right to restriction of processing exists in the following situations:
You have disputed the accuracy of your personal data stored by us and we need time to check this. Here you have the right for the duration of the review.
The processing of your personal data is unlawful or was unlawful in the past. In this case, you have the alternative right to erasure of the data.
We no longer need your personal data, but you need it for the exercise, defense or assertion of legal claims. Alternatively, you have the right to have the data erased.
You have lodged an objection pursuant to Art. 21 para. 1 GDPR and now your and our interests must be weighed against each other. You have the right to do so as long as the result of the balancing process has not yet been determined.
Hosting and Content Delivery Networks (CDN)
External hosting
Our website is hosted on a server of the following internet service provider (hoster):
Domain technology (Ledl.net GmbH)
Lederergasse 6
5204 Straßwalchen
Has an order processing contract been concluded with the hoster or are standard contractual clauses (SCC) used?
Yes
How do we process your data?
The host stores all data from our website. This also includes all personal data that is collected automatically or through your input. This may include in particular Your IP address, pages accessed, names, contact details and inquiries as well as meta and communication data. When processing data, our hoster complies with our instructions and only ever processes the data to the extent that this is necessary to fulfill the service obligation to us.
On what legal basis do we process your data?
Since we address potential customers via our website and maintain contact with existing customers, data processing by our hoster serves to initiate and fulfill contracts and is therefore based on Art. 6 para. 1 lit. b) GDPR. In addition, it is our legitimate interest as a company to provide a professional website that meets the necessary requirements for security, speed and efficiency. In this respect, we also process your data on the basis of Art. 6 para. 1 lit. f) GDPR.
Data collection on this website
Cookie consent with Borlabs Cookie
What is Borlabs Cookie?
Cookie plugin for compliance with the GDPR and ePrivacy
Who processes your data?
Only we, not the provider of Borlabs Cookie
Where can you find more information about data protection at Borlabs Cookie?
https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/
How do we process your data?
We use Borlabs Cookie to obtain your consent to the storage of cookies on your device. When you visit our website and close the Borlabs Cookie window with the request for consent, a Borlabs cookie with the following content is stored in your browser:
Cookie runtime
Cookie version
Domain and path of the website
Consents
a randomly generated ID
This data is not transmitted to the provider of Borlabs Cookie.
We store the data until the purpose of the data storage no longer applies, you delete the Borlabs cookie or request us to delete the data. This only does not apply if we are legally obliged to store the data.
On what legal basis do we process your data?
We are legally obliged to obtain the consent of our website visitors for the use of certain cookies. To fulfill this obligation, we use Borlabs Cookie. The legal basis for data processing is therefore Art. 6 para. 1 lit. c) GDPR.
Server log files
Server log files log all requests and access to our website and record error messages. They also contain personal data, in particular your IP address. However, this is anonymized by the provider after a short time so that we cannot assign the data to you personally. The data is automatically transmitted from your browser to our provider.
How do we process your data?
Our provider stores the server log files in order to be able to track the activities on our website and to detect errors. The files contain the following data:
Browser type and version
Operating system used
Referrer URL
Host name of the accessing computer
Time of the server request
IP address (anonymized if necessary)
We do not merge this data with other data, but only use it for statistical analysis and to improve our website.
On what legal basis do we process your data?
We have a legitimate interest in ensuring that our website runs smoothly. It is also in our legitimate interest to obtain an anonymized overview of access to our website. The data processing is therefore in accordance with Art. 6 para. 1 lit. f) GDPR lawful.
Analysis tools and advertising
We use the following tools to analyze the behavior of our website visitors and to show you advertising.
WP Statistics
How do we process your data?
We are always interested in optimizing our website for users and placing advertising in the best possible way. The WP Statistics plugin, which analyzes user behavior and thus provides us with the necessary database for adjustments, helps us to do this. The provider is Veronalabs, ARENCO Tower, 27th Floor, Dubai Media City, Dubai, Dubai 23816, United Arab Emirates. WP Statistics collects the following data, among others:
IP address
Referrer
Browser used
Origin of the user
Search engine used
Clicks, page views and other actions
The data is only stored locally.
On what legal basis do we process your data?
As a website operator, we have a legitimate interest in analyzing user behavior for the purpose of optimizing our website and the advertising placed on it. Data processing is therefore permitted under Art. 6 para. 1 lit. f) GDPR lawful. In the event that you have consented to the storage of cookies, for example, or have consented to data processing in some other way, only Art. 6 para. 1 lit. a) GDPR is the legal basis. You can revoke your consent at any time with effect for the future.
Google Web Fonts (local hosting)
We use fonts from the US company Google on our website. We have installed the fonts locally so that there is no connection to Google's servers when you visit our website.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy policy: https://policies.google.com/privacy?hl=de.
Data processing on social media
What is social media?
By social media, we mean the social networks on which we have created publicly accessible profiles. You can find out which social networks these are below.
Who processes your data?
The respective operating companies of the social networks. The individual operators can be found below under the respective networks.
How is your data processed?
The operators of social networks are generally able to collect and evaluate comprehensive data about the behavior of visitors and users of the network. It is not possible for us to track all processing operations in the social networks we use, which is why further processing operations that are not listed here may be carried out by the operators of the social networks. You can find more information on this in the terms of use and privacy policies of the respective social networks.
The processing of your data can be triggered when you visit the website of the social network or our profile page there. Even if you visit a website that uses certain network content, e.g. like or share buttons, data may already be transferred to the operators of the social network. If you yourself are a user of the social network and are logged into your user account, your visit to our profile page can be assigned to your account by the operator of the social network. Even if you have not registered a user account yourself or are not logged in, the operator of the network may still collect your personal data, e.g. by collecting your IP address or setting cookies. With this data, the operators can create user profiles tailored to your behavior and interests and show you interest-based advertising inside and outside the network. If you are a registered user of the network, interest-based advertising can also be displayed on all devices on which you are or were logged in.
What is the legal basis for processing your data?
Our profiles on social networks are intended to ensure that our company has the widest possible presence on the Internet. As a company, we have a legitimate interest in this. The data processing is therefore in accordance with Art. 6 para. 1 lit. f GDPR lawful.
The data processing operations and analyses carried out by the social network operators themselves may be based on other legal bases. These must be specified by the operators of the social networks.
Who is responsible for processing your data and how can you assert your rights?
If you visit one of our profiles in the social networks, we are jointly responsible with the operator of the respective network for the data processing operations triggered during this visit. In principle, you can assert your rights against both us and the operator of the respective network.
Despite the joint responsibility with the operators of the social networks, our influence on the data processing operations of the respective operator is limited and is primarily based on the specifications of the operator.
How long will your data be stored?
If we collect data via our profiles in the social networks, these are deleted from our systems as soon as the purpose for their storage no longer applies, you request us to delete them or you revoke your consent to their storage. Stored cookies remain on your end device until you delete them. Mandatory legal provisions - esp. retention periods - remain unaffected.
We have no influence on how long the operators of the social networks store your data, which the operators collect for their own purposes. You can obtain information on this directly from the operator of the respective social network, e.g. in the respective privacy policy.
Which social media do we use?
What is Facebook?
A social network
Who processes your data?
Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Will your data be transferred to third countries?
Yes, to the USA and also to other third countries
Where can you find more information about data protection on Facebook?
https://www.facebook.com/about/privacy/
As a Facebook user, where can you adjust your advertising settings?
As a registered Facebook user, you can adjust your advertising settings in your user account.
To do this, click on the following link and log in:
https://www.facebook.com/settings?tab=ads.
What is Instagram?
A social network specializing in photos and videos
Who processes your data?
Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Will your data be transferred to third countries?
Yes
Where can you find more information about Instagram privacy?
https://help.instagram.com/519522125107875/?helpref=hc_fnav&bc[0]=Instagram help section&bc[1]=Guidelines and notifications
Where can you as a user adjust your privacy settings?
As a registered Instagram user, you can adjust your privacy settings in your user account.
To do this, click on the following link and log in:
https://www.instagram.com/accounts/privacy_and_security/
What is LinkedIn?
A social network for business contacts
Who processes your data?
LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
Will your data be transferred to third countries?
Yes
Where can you find more information about data protection at LinkedIn?
https://de.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy
Where can you as a user adjust your data protection settings?
As a registered LinkedIn user, you can adjust your privacy settings in your user account.
To do this, click on the following link and log in:
https://www.linkedin.com/psettings/
YouTube
What is YouTube?
A social network in the form of an online video portal
Who processes your data?
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Will your data be transferred to third countries?
Yes
Where can you find more information about data protection on YouTube?
https://policies.google.com/privacy?hl=de
Where can you as a user adjust your data protection settings?
https://policies.google.com/privacy?hl=de#infochoices
© Status 2023