01 | Fundamentals of data processing
The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the legal provisions (GDPR). This data protection declaration clarifies the type, scope and purpose of the processing of personal data within our online offer and the associated apps, website functions and content (hereinafter collectively referred to as “online service”, “website” or “app”). The data protection declaration applies regardless of the domains, systems, platforms and devices used (e.g. Windows, Mac OS, Android or iOS) on which the online service is executed.
02 | Responsible & contact
Responsible in terms of data protection law is:
CODE black Software GmbH
Technoparkstr. 4
A–5310 Mondsee
Phone: +43 (0) 6232 / 37373
Email: legal@mailjerry.com
03 | Data processing
03a | Terminology
With regard to the terms used (e.g. “personal data” or their “processing”), we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).
03b | General information about data processing
The personal data processed in the context of this online services include usage data (e.g. the pages visited on our online services, interest in our products) and content data (e.g. entries in forms).
The term “user” encompasses all categories of data subjects. They include our business partners, customers, interested parties and other users of our apps.
03c | Legal basis
We only process your personal data in compliance with the relevant data protection regulations. This means that your data will only be processed if we have a legal permit. Ie, in particular if data processing is necessary or legally required to provide our contractual or pre-contractual services (e.g. processing inquiries, billing) and online services, or if you have given your consent, or based on our legitimate interests (ie interest in the analysis, optimization, economic operation and security of our online services (Art. 6 Para. 1 lit. DSGV), in particular in range measurement, creation of profiles for advertising and marketing purposes as well as collection of access data and use of third-party services.
Legal basis:
We refer to the following legal bases:
- Legal basis for consent: Art. 6 para. 1 lit. a. and Art. 7 GDPR
- Legal basis for processing for the performance of our services and implementation of contractual measures: Art. 6 para. 1 lit. b. GDPR,
- Legal basis for processing to fulfill our legal obligations Art. 6 para. 1 lit. c. GDPR
- Legal basis for processing to protect our legitimate interests Art. 6 para. 1 lit. f. GDPR
03d | Provision of contractual services
The provision of personal data for the provisioning of our contractual services and is partly required by law (e.g. through tax regulations) or results from contractual regulations. For example, in order to conclude a contract with you, it may be necessary that you provide us with personal data that we subsequently process. If you want to use one of our chargeable services, you are obliged to provide us with the necessary personal data (e.g. name, address, contact details). If you did not provide this data, this would mean that we would not be able to provide you with our paid services. You enter into a contractual relationship with us by using our e-mail transfer service via the “MailJerry” app for iOS, Android, Windows & Mac OS or by using the transfer service via our online portal. We would be happy to clarify, on a case-by-case basis, whether or which of your personal data is required for a contract.
03e | Forwarding the data to third parties
Your data will only be passed on to third parties within the framework of the legal requirements. We will only pass your data on to third parties if, e.g. it is required for contractual purposes (Art. 6 Para. 1 lit. b) GDPR) or on the basis of our legitimate interests (Art. 6 Para. 1 lit. f. GDPR) in the economic and effective operation of our business.
If we use subcontractors to provide our services, we take appropriate legal precautions and appropriate technical and organizational measures to ensure the protection of your personal data in accordance with the relevant legal regulations.
If content, tools or other means from third-party providers are used in the context of this data protection declaration and their registered office is located in a third country, it can be assumed that data will be transferred to the home countries of the third-party providers. Third countries are countries in which the GDPR is not an immediately applicable law, i.e. basically countries outside the EU or the European Economic Area. The transfer of data to third countries takes place either if there is an adequate level of data protection, user consent or other legal permission.
03f | Data processing in the course of the application process
If you submit your application documents to us, we process your personal data for the purpose of processing the application. The data is processed electronically, especially if you send your data by email or using a web form on our website. If we subsequently conclude an employment contract with you, your personal data will be stored for the purpose of processing the contractual relationship, taking into account the statutory provisions. If we do not conclude an employment contract with you, your application documents will be automatically deleted 6 months after the rejection, unless you want your application documents to be kept in evidence or a deletion conflicts with other legitimate interests occures. Other legitimate interests are e.g. the obligation of proof in proceedings under the General Equal Treatment Act.
04 | Data collection
04a | Collection of general data & information
We collect inventory data (e.g. your name, your e-mail address) and contract data (e.g. services used, your billing address, payment information) to fulfill our contractual obligations and services (Art. 6 Para. 1 lit b GDPR, cf., Section 3d). In addition, we collect usage data (e.g. the pages visited on our websites or apps, interest in our products) for the continuous optimization of our services and content data (e.g. email inquiries, support inquiries) for processing inquiries.
04b | Access data & log files
On the basis of our legitimate interests (Art. 6 Para. 1 lit. GDPR), we collect data about every access to the servers on which our websites are located or which provide the functionality for our email transfer service (so-called server log files). The access data includes the name of the pages accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type & version, your operating system, referrer URL (the page previously visited if our website was opened via a link) and your IP address.
We need this information in order to be able to guarantee that the content of our websites is delivered correctly and that our online services function correctly; and in order to optimize the content and advertising for these pages. In addition, this data helps to ensure the permanent functionality of our IT systems. Log files are stored separately from all other personal data.
For security reasons (e.g. to investigate misuse or fraud, prosecution by law enforcement authorities), log file information is stored for a maximum of three months and then deleted. Data whose further storage is required for evidence purposes are excluded from deletion until the respective incident has been finally clarified.
04c | Contact by email or contact form
If you contact us by email or using a form on our websites or in our apps, your information will be processed to process the contact request and its processing (Art. 6 Para. 1 lit. b) GDPR).
Your information can be stored in our customer relationship management system (“CRM system”) or comparable software. We use the “Jira Service Desk” service desk software from Atlassian Pty Ltd (1098 Harrison Street, San Francisco, CA 93103, USA) based on our legitimate interests (efficient and quick processing of your user request). For this purpose, we have concluded a contract with Atlassian with so-called standard contractual clauses, in which Atlassian undertakes only to process user data in accordance with our instructions and to comply with the EU data protection level.
04d | Cookies
Cookies are information that is transmitted from our web servers or third party web servers to your web browser and stored there for later retrieval. Cookies can be small files or other types of information storage.
We use “session cookies”, which are only stored on our online presence for the duration of the current visit. A randomly generated unique identification number, a so-called session ID, is stored in a session cookie. A cookie also contains information about the origin and storage period. These cookies cannot save any other data. Session cookies are deleted when you have finished using our online services and e.g. close the browser or app. We also use functionality cookies. These store data on your end device and are necessary in order to be able to use our services to their full extent (e.g. storing the preferred language or the e-mail transfers carried out). You will be informed about the use of cookies in the context of pseudonymous range measurement in the context of this data protection declaration.
Objection (“opt-out”): If you do not want cookies to be stored on your computer, please deactivate the corresponding option in the system settings of your browser or delete our app. Cookies stored by our websites can be deleted in the system settings of your browser. You can remove the cookies stored when using our apps by deleting the corresponding app. The exclusion of cookies can lead to functional restrictions on our websites or apps.
You can reject the use of cookies that are used for range measurement and advertising purposes on the deactivation page of the network advertising initiative (http://optout.networkadvertising.org/) and also on the US website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).
04e | Google Analytics
We use Google Analytics, a web analytics service provided by Google Inc. (“Google”) based on our legitimate interests (interest in the analysis, optimization and economic operation of our websites, Art. 6 Para. 1 lit. GDPR). Google uses cookies. The information generated by the cookie about your use of our websites and apps is usually transferred to a Google server in the USA and stored there.
Compliance with European data protection law:
Google guarantees due to its standard contractual clauses (SCSSs) for the transfer of online advertising data and the measurement of personal data outside the EEA, Switzerland and UK, an appropriate level of data protection.
Functionality of Google Analytics:
Google will use the information collected on our behalf to evaluate your use of our websites and apps, to compile reports on your activities within this online services and to provide us with other services related to the use of these websites, apps and internet usage. Pseudonymous usage profiles of your usage can be created from the processed data.
Anonymize your data:
We only use Google Analytics with activated IP anonymization. This means that your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Your full IP address will only be transferred to a Google server in the USA and truncated there in exceptional cases. The IP address transmitted by your browser will not be merged with other Google data.
Objection (“opt-out”):
You can prevent the storage of cookies by setting your browser software accordingly; You can also prevent Google from collecting the data generated by the cookie and relating to your use of our websites and from processing this data by Google by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de. To prevent data collection when using our apps, please delete them from your device.
Further information on data protection:
You can find further information on the use of data by Google, setting and objection options on the Google website: https://www.google.com/intl/de/policies/privacy/partners (“Use of data by Google when you use websites or apps our partners ”), http://www.google.com/policies/technologies/ads (“ Use of data for advertising purposes ”), http://www.google.de/settings/ads (“ Manage information that Google uses to show you advertising “).
04f | Google Marketing & Remarketing Services
On the basis of our legitimate interests (ie interest in the analysis, optimization and economic operation of our websites and apps; Art. 6 Para. 1 lit. GDPR) and your consent, we use the marketing and remarketing services (“Google Marketing Services” for short) of Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, (“Google”).
Compliance with European data protection law:
Google guarantees due to its standard contractual clauses (SCSSs) for the transfer of online advertising data and the measurement of personal data outside the EEA, Switzerland and UK, an appropriate level of data protection.
Marketing services used: “Google Tag Manager”
We use the “Google Tag Manager” to integrate and manage Google Analytics, Google Ads Conversion and Google Remarketing Services in our websites and apps.
Marketing services used: “Google Ads Conversion”
We use “Google Ads Conversion” to draw attention to our services and offers with the help of advertisements (so-called “Google Ads”) on external websites. With Ads Conversion we can determine how successful individual advertising measures are. This enables us to optimize our advertising and show you advertising that is of interest to you. We deliver our advertisements via the so calles “Ad Server”. For this purpose, we use ad server cookies, through which certain values can be measured to measure success (e.g. display of ads, clicks). If you access our websites via a Google ad, Google Ads will store a cookie on your device. These cookies usually lose their validity after 30 days and should not be used to identify you personally. These cookies store analysis values, the unique cookie ID, number of ad impressions per placement, your last impressions and opt-out information.
These cookies enable Google to recognize your browser. If you visit certain pages of the website of an Google Ads customer and the cookie stored on your computer has not yet expired, Google and the customer can recognize that you clicked on the advertisement and were forwarded to this page. A different cookie is assigned to each Google Ads customer. Cookies cannot therefore be tracked via the websites of Google Ads customers. We ourselves do not collect and process any personal data in the advertising measures mentioned, but only receive statistical evaluations from Google. Based on these evaluations, we can see which of the advertising materials used are particularly effective. We receive no further data from the use of the advertisements, in particular we cannot identify you on the basis of the information received.
In addition, we use the remarketing function within Google Ads. With the remarketing function, we can present advertisements based on your interests on other websites within the Google advertising network (in Google Search or on YouTube, so-called “Google Ads” or on other websites). For this purpose, your interaction on our website is analyzed (e.g. which offers you were interested in) in order to be able to display targeted advertising on other pages even after you have visited our website. For this, Google stores cookies on your device. Your visits are recorded via these cookies. The cookies are used to clearly identify your web browser on a specific device and not to identify you personally.
Due to the marketing tools used, your browser automatically establishes a direct connection to the Google servers. We have no influence on the scope and further use of the data collected by Google through the use of this tool and will inform you according to our knowledge: By integrating Ads Conversion, Google receives the information that you are using the corresponding part of our online service or that you clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is a possibility that the provider will find out and save your IP address.
- Objection (“opt-out”): You can object to the processing of your data by Google in different ways:
- By setting your browser software: If you suppress third-party cookies, you can no longer receive third-party ads.
- By installing the plug-in provided by Google at https://www.google.com/settings/ads/plugin
- By deactivating Google’s interest-based ads at http://www.aboutads.info/choices
Further information on data protection:
Further information on Google, setting and objection options can be found at https://www.google.com/intl/de/policies/privacy/partners, http://www.google.com/policies/technologies/ads and http://www.google.de/settings/ads.
04g | YouTube
We use the YouTube.com platform based on our legitimate interests (optimization & economic operation of our websites, Art. 6 Para. 1 lit. GDPR). YouTube is an offer from YouTube LLC, a subsidiary of Google Inc., a third party not affiliated with us.
Compliance with European data protection law:
YouTube guarantees due to its standard contractual clauses (SCSSs) for the transfer of online advertising data and the measurement of personal data outside the EEA, Switzerland and UK, an appropriate level of data protection.
How YouTube works:
Some pages on our websites and apps may contain links to YouTube. As is generally the case for all references from our websites, we are not responsible for the content of these references. If you follow a link to YouTube on our websites, personal data (e.g. personal, information, your IP address) will be stored in accordance with your own data usage guidelines and used for business purposes. This information cannot be assigned to you unless you were logged in to YouTube or another Google service (e.g. GMail) or were permanently logged in before accessing the page.
We embed videos stored on YouTube on our websites and apps. These videos are integrated using a frame and are only called up when you click on the video. If you click on a video, a connection to the YouTube servers is established and the corresponding video is displayed on our website.
Extended data protection mode:
We only integrate YouTube content in the “extended data protection mode”. With this mode provided by YouTube, YouTube ensures that no cookies are initially stored on your device. When you start playing an embedded video, YouTube only saves cookies on your device that do not contain any personal data, unless you were logged in to YouTube or another Google service before accessing it, or you are permanently logged in.
Objection (“opt-out”):
You can object to the processing of your data by making the appropriate setting: https://adssettings.google.com/authenticated
Further information on data protection:
You can find further information on data use by YouTube, setting and objection options on the following website: https://policies.google.com/privacy
04h | Google reCAPTCHA
Due to our legitimate interest in protecting our website from bots and spam software (Art. 6 lit. 1f GDPR), we use the Google reCAPTCHA service from Google Inc. (1600 Amphitheater Parkway Mountain View, CA 94043, USA). reCAPTCHA is a captcha service that protects websites from spam software and abuse by bots. With reCAPTCHA we can differentiate bot and spam requests on our website from real users and thus guarantee the security and spam-free appearance of our website.
Compliance with European data protection law:
Google guarantees due to its standard contractual clauses (SCSSs) for the transfer of online advertising data and the measurement of personal data outside the EEA, Switzerland and UK, an appropriate level of data protection.
How reCAPTCHA works:
ReCaptcha collects personal data from the user in order to be able to determine whether the actions on our website are being carried out by a person. The collected data (e.g. your IP address) are transmitted to Google for the purpose of this evaluation. IP addresses from the EEA are almost always shortened before being transmitted to Google’s server in the USA and are not combined with other Google data, unless you were logged into your Google account before or during the visit of our website. reCAPTCHA checks whether a Google cookie is already stored in your browser, then reCAPTCHA sets a cookie in your browser and creates a screenshot of the current browser window.
Objection (“opt-out”):
You can prevent the collection of your data by not activating the corresponding option in the cookie settings when you visit our website for the first time and additionally logging out of Google in your browser and deleting all cookies set by Google in your browser.
Further information on data protection:
Further information on reCAPTCHA, setting and objection options can be found at https://developers.google.com/recaptcha/ and https://www.google.com/intl/de/policies/privacy/
04i | Newsletter
With the following information, we will clarify the content of our newsletter as well as the registration, shipping and statistical evaluation procedures and your right to object. By subscribing to our newsletter, you agree to the receipt and the procedures described.
Content of the newsletter:
We only send newsletters, e-mails and other electronic notifications with advertising information (hereinafter referred to as “newsletters”) with your consent or legal permission. Insofar as the content of a newsletter is specifically described, this is relevant for your consent. Our newsletters also contain information about our products, offers, promotions and our company.
Double opt-in and logging:
The registration for our newsletter takes place in a so-called double opt-in procedure: after registration you will receive an email in which we ask you to confirm your registration. This confirmation is necessary so that third parties cannot register with your email address. The registrations for the newsletter are logged in order to be able to demonstrate the registration process in accordance with the legal requirements. This includes storing the time of registration and confirmation and the IP address. Changes to your data stored with the shipping service provider are also logged.
Shipping service provider:
Our newsletter is sent via “Sendinblue GmbH”, Köpenicker Str. 126, 10179 Berlin. You can view the data protection regulations of the shipping service provider here:
https://www.sendinblue.com/legal/privacypolicy/
The data you enter for the purpose of receiving our newsletters (e.g. email address) is stored on Sendinblues servers in Germany. The shipping service provider does not use your data to write to you personally or to pass your data on to third parties.
Credentials:
To register for our newsletter, it is sufficient to provide your email address. Optionally, we ask you to enter a name so that we can address you personally in our newsletter.
Statistical survey and analysis:
Our newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from the shipping service provider’s server when the newsletter is opened. As part of this retrieval, technical information such as information about the browser and your system, as well as your IP address and the time of the retrieval are initially collected. This information is used to technically improve the services based on the technical data or the target groups and your reading behaviour, on the basis of the access locations (which can be determined using the IP address) or the access times. The statistical surveys also include determining whether you open our newsletter, when it was opened and which links were clicked. This information can be assigned to you for technical reasons. The evaluations help us to recognise the reading habits of our users and to adapt our content or to send different content according to the interests of our users.
The use of the shipping service provider, the implementation of statistical surveys and analyzes as well as the logging of the registration process are carried out on the basis of our legitimate interests (Article 6 (1) (f) GDPR). We are interested in the use of a user-friendly and secure newsletter system that serves both our business interests and your expectations.
Termination / revocation:
You can cancel the receipt of our newsletter or revoke your consent at any time. At the same time, you revoke your consent to the dispatch by the shipping service provider and the statistical analyzes expires. A separate revocation of the shipment by the shipping service provider or the statistical evaluation is unfortunately not possible. You will find a link to cancel the newsletter at the end of each newsletter. If you have registered for the newsletter and canceled your registration, your personal data will be deleted.
4j | Other third party services
It may happen that other third-party content (e.g. maps from Google Maps, fonts …) is integrated into our websites. This presupposes that the providers of this content (“third-party providers”) perceive your IP address. Without the IP address, the content cannot be sent to your browser. Your IP address is therefore required to display the content.
We strive to only use content whose respective providers only use your IP address to deliver the content. Third-party providers can use so-called pixel tags (invisible graphics, also called “web beacons”) for statistical or marketing purposes. The “pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information can be stored in cookies on your device and contain, among other things, technical information on the browser and operating system, referring websites, time of visit and other information on the use of our online services, as well as being linked to such information from other sources.
Below you will find an overview of third-party providers, their content, a link to the respective data protection declaration (contains further information on the processing of your data) and, in some cases already mentioned here, options for objection (“opt-out”):
- External fonts from Google, Inc., https://www.google.com/fonts (“Google Fonts”). Google Fonts are only integrated on our website by calling up a server on Google (usually in the USA).
Data protection declaration: https://www.google.com/policies/privacy/
Opt-Out: https://www.google.com/settings/ads/
05 | Safety measures
We take state-of-the-art organizational, contractual and technical security measures to ensure that the provisions of the GDPR are complied with and thus to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. Access to the data that you have provided or that have arisen from the use of our online services is only available to employees who are involved in the processing and the process. These people are subject to the duty of confidentiality. Your data is protected against unauthorized access, among other things, by encrypted transmission between your browser and our servers, encrypted data storage, a role authorization and access concept, a data backup concept and physical protective measures for our servers.
06 | Deletion of data
Your data stored by us will be deleted as soon as they are no longer required for their intended purpose and there are no legal storage obligations to prevent deletion. After the statutory retention requirements have expired, your data will be routinely deleted, provided that you are no longer required to fulfill or initiate a contract.
07 | Your rights
Right of providing information: You have the right to request information free of charge about the personal data that we store about you.
Right to correction, deletion, transfer & restriction of processing: Of course, you have the right to rectification of inaccurate data, restrict the processing and delete your personal data. If applicable, you can exercise your right to data portability. In addition, you have the so-called “right to be forgotten”, i.e. you can ask us to delete your personal data, provided that the legal requirements are met (see Art. 17 GDPR).
Right to complain: If you assume that we are processing your data unlawfully, you have the right to submit a complaint to the responsible supervisory authority. In Austria this is the data protection authority.
Right to object: You can object to the future processing of your personal data at any time in accordance with the legal requirements. You can object in particular to the processing for direct marketing purposes.
08 | Changes to the privacy policy
We reserve the right to change our privacy policy in order to adapt it to changes in the legal situation or in the event of changes to the service and data processing. However, this only applies to statements regarding data processing. If your consent is required or parts of the data protection declaration contain provisions of the contractual relationship with you, the changes will only be made with your consent.
We ask you to inform yourself regularly about the content of our privacy protection declaration.
Date: 01/21/2021
Furthermore, the shipping service provider can provide your data in pseudonymous form, i.e. use without assignment to a user, to optimize or improve their own services, e.g. for the technical optimization of the dispatch and presentation of the newsletter or for statistical purposes to determine from which countries the recipients come. However, the shipping service provider does not use your data to write to you personally or to pass your data on to third parties.
Credentials:
To register for our newsletter, it is sufficient to provide your email address. Optionally, we ask you to enter a name so that we can address you personally in our newsletter.
Statistical survey and analysis:
Our newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from the shipping service provider’s server when the newsletter is opened. As part of this retrieval, technical information such as information about the browser and your system, as well as your IP address and the time of the retrieval are initially collected. This information is used to technically improve the services based on the technical data or the target groups and your reading behavior, on the basis of the access locations (which can be determined using the IP address) or the access times. The statistical surveys also include determining whether you open our newsletter, when it was opened and which links were clicked. This information can be assigned to you for technical reasons. The evaluations help us to recognise the reading habits of our users and to adapt our content or to send different content according to the interests of our users.
The use of the shipping service provider, the implementation of statistical surveys and analysis as well as the logging of the registration process are carried out on the basis of our legitimate interests (Article 6 (1) (f) GDPR). We are interested in the use of a user-friendly and secure newsletter system that serves both our business interests and your expectations.
Termination / revocation:
You can cancel the receipt of our newsletter or revoke your consent at any time. At the same time, you revoke your consent to the dispatch by the shipping service provider and the statistical analysis expires. A separate revocation of the shipment by the shipping service provider or the statistical evaluation is unfortunately not possible. You will find a link to cancel the newsletter at the end of each newsletter. If you have registered for the newsletter and canceled your registration, your personal data will be deleted.
4h | Other third party services
It may happen that other third-party content (e.g. maps from Google Maps, fonts …) is integrated into our websites. This presupposes that the providers of this content (“third-party providers”) perceive your IP address. Without the IP address, the content cannot be sent to your browser. Your IP address is therefore required to display the content.
We strive to only use content whose respective providers only use your IP address to deliver the content. Third-party providers can use so-called pixel tags (invisible graphics, also called “web beacons”) for statistical or marketing purposes. The “pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information can be stored in cookies on your device and contain, among other things, technical information on the browser and operating system, referring websites, time of visit and other information on the use of our online services, as well as being linked to such information from other sources.
Below you will find an overview of third-party providers, their content, a link to the respective data protection declaration (contains further information on the processing of your data) and, in some cases already mentioned here, options for objection (“opt-out”):
- External fonts from Google, Inc., https://www.google.com/fonts (“Google Fonts”). Google Fonts are only integrated on our website by calling up a server on Google (usually in the USA).
Data protection declaration: https://www.google.com/policies/privacy/
Opt-Out: https://www.google.com/settings/ads/
05 | Safety measures
We take state-of-the-art organizational, contractual and technical security measures to ensure that the provisions of the GDPR are complied with and thus to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. Access to the data that you have provided or that have arisen from the use of our online services is only available to employees who are involved in the processing and the process. These people are subject to the duty of confidentiality. Your data is protected against unauthorized access, among other things, by encrypted transmission between your browser and our servers, encrypted data storage, a role authorization and access concept, a data backup concept and physical protective measures for our servers.
06 | Deletion of data
Your data stored by us will be deleted as soon as they are no longer required for their intended purpose and there are no legal storage obligations to prevent deletion. After the statutory retention requirements have expired, your data will be routinely deleted, provided that you are no longer required to fulfill or initiate a contract.
07 | Your rights
Right of providing information: You have the right to request information free of charge about the personal data that we store about you.
Right to correction, deletion, transfer & restriction of processing: Of course, you have the right to rectification of inaccurate data, restrict the processing and delete your personal data. If applicable, you can exercise your right to data portability. In addition, you have the so-called “right to be forgotten”, i.e. you can ask us to delete your personal data, provided that the legal requirements are met (see Art. 17 GDPR).
Right to complain: If you assume that we are processing your data unlawfully, you have the right to submit a complaint to the responsible supervisory authority. In Austria this is the data protection authority.
Right to object: You can object to the future processing of your personal data at any time in accordance with the legal requirements. You can object in particular to the processing for direct marketing purposes.
08 | Changes to the privacy policy
We reserve the right to change our privacy policy in order to adapt it to changes in the legal situation or in the event of changes to the service and data processing. However, this only applies to statements regarding data processing. If your consent is required or parts of the data protection declaration contain provisions of the contractual relationship with you, the changes will only be made with your consent.
We ask you to inform yourself regularly about the content of our privacy protection declaration.
Date: 08/04/2022