privacy policy

Statement on Data Protection

1. Personal Data – Scope of collection of data

We, GmbH collect, process and use your personal data (i.e. personal data of individuals) only with your consent or in relation to an existing business relationship, for the purpose of fulfilling the agreed contractual purposes or in all cases in which there is another legal ground for this which is in conformity with the General Data Protection Directive[1] (GDPR); all this will be done in conformity with data protection and civil law.

Personal data is any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, address, E-Mail-address, telephone number, date of birth, age, sex, social insurance number, video recordings, photographs, voice recordings of persons as well as biometrical data such as finger prints. Also, sensitive information, such as health information or data related to criminal proceedings may be included.

[1] Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)

2. Right of access and erasure

As a business partner, visitor of our website and in general as a data subject you have the right to information about your stored personal data, its origin and its recipient and the purpose of the data processing as well as a right of rectification, data transfer, objection, restriction of processing as well as blocking of access or erasure of incorrect or impermissibly processed data.

In case of changes to your personal data we kindly request you to inform us accordingly.

You have the right at any time to revoke your consent to the use of your personal data. Your request for access, deletion, correction, objection and / or data transfer, in the latter case, provided that this does not cause disproportionate effort, may be addressed to the address of the law firm mentioned at the end of this statement.

If you believe that the processing of your personal data by us violates the applicable data protection law or your data protection rights have been violated in another manner, it is possible to file a complaint with the competent supervisory authority. In Austria, the Data Protection Authority (Datenschutzbehörde) is responsible for this.

3. Data Security

The protection of your personal data is undertaken through appropriate organizational and technical precautions. These precautions relate in particular to protection against unauthorized, unlawful or coincidental access, processing, loss, use and manipulation.

Notwithstanding the efforts to maintain a consistently high level of due diligence, it cannot be ruled out that information you share with us over the internet may be viewed and used by others.

Please note that we, therefore, do not assume or accept any liability whatsoever for the disclosure of information due to errors in data transmission not caused by us and / or unauthorized access by third parties (e.g. hacking of email accounts or telephone, interception of faxes, etc.).

4. Use of personal data

We will not process the data provided to us for purposes other than those covered (i) by the business relationship with you or (ii) by your consent or (iii) otherwise by any provision in accordance with the GDPR. The above does not apply to the use for internal statistical purposes without transfer to third parties, provided that the personal data has been anonymized.

Data which you provide to us will be primarily used for the performance of a contract or the preparation of such at your request (Art 6 Abs. 1 lit. b GDPR), the compliance with a legal obligation to which we are subject (Art 6 Abs. 1 lit. c GDPR) and the purposes of the legitimate interests pursued by GmbH (Art 6 Abs. 1 lit. f GDPR); these legitimate interest are especially legal compliance, the maintenance of the operational stability of our website and for the purpose of maintaining the business operation. Only such personal data is processed which is necessary for the performance and implementation of permitted purposes or which was provided to us voluntarily.

We recognize and respect the importance for the responsible use of data which is collected from visitors and clients. Without your consent we will not use the data to enter into contact with you and inform you about new products, services and discounts.

5. Transfer of personal data to third parties

If required by law or contract, or if we have a legitimate and justified interest, it may be necessary for us to transmit your data to our group companies or external business partners.

Such business partners are companies and individuals who assist us in operating the website, processing business transactions or other services.

A transmission to group companies or to third parties is only done if these recipients are legally or contractually obliged to comply with the applicable data protection regulations.

Furthermore, we inform you that within the framework of our business activity we acquire information both from you and from third parties (e.g. you’re your employer or a public authority as the sponsoring party of a training measure).

Some of the above-named recipients of your personal data are located outside of Austria or your country or process your personal data outside your country. The level of data protection in other countries may not be the same as in Austria. However, we only transfer your personal data to countries for which the EU Commission has decided that they have an adequate level of data protection, or we take measures to ensure that all recipients have an adequate level of data protection, which includes to conclude agreements containing standard contractual clauses (2010/87/EC and/or 2004/915/EC).

6. Communication of breaches of personal data

We will endeavor to ensure that any data breaches are detected early and, where appropriate, are promptly communicated to you or to the competent regulatory authority, including information on the relevant data categories which were breached.

7. Retention of personal data

We will not retain personal data for longer than is necessary to fulfill our contractual or legal obligations and to avert any possible liability claims.

8. Collection and storage of usage data on the website

When accessing our website, the following electronic communication metadata is stored: IP address, date and time of access, name of file accessed, sub-page and anonymous user ID, city, region and country of the user, user’s operating system, browser of the user, browser version of the user, user ‘s interactions on the website, pages visited by the user, duration of the session and number of users, date of first visit to the website, date and time of each interaction of the user, duration of the website, duration of requests of the user, user queries, website exception, date and time, and duration of exception errors. For statistical purposes data can be evaluated anonymously. This data will be treated as strictly confidential and will not be disclosed outside the system or made accessible to third parties, unless this is necessary to fulfill legal or contractual obligations or to care for legitimate interests of GmbH.

We delete or anonymize your data as soon as it is no longer needed for the transmission of a communication. If the processing of electronically communicated data is for billing purposes, we retain the communications data for the duration of the statute of limitations within which the invoice may be lawfully challenged or the claim for payment made. The statute of limitations for contesting the validity of a contract is of three years from the conclusion of the contract (see § 1487 ABGB) also warranty claims for goods or services in a commercial transaction must be raised within three years (see § 1486 para 1 Z 1 ABGB). We therefore store these electronic communications for a period of three years from the conclusion of the contract, unless a longer storage period is required by law, e.g. for taxation purposes.

9. Cookies

Our website uses “HTTP-cookies in order to store user specific data. A “cookie” is short data packet, which is exchanged between the web browser and the web server, which are without meaning for them but are then essential for the web application, e.g. an online shop, e.g. for the virtual shopping cart.

There are two types of cookies: First-party cookies are created by our website, third-party cookies are created by other websites (e.g. Google Analytics). There are three categories of cookies: essential cookies to ensure basic functionality of the website, functional cookies: to ensure website performance and targeted cookies: to improve the user experience. We use cookies to make our website more user-friendly. Some cookies remain stored on your device until you delete them. They allow us to recognize your browser upon your next visit. If you do not wish this, you can set up your browser so that it informs you about the setting of cookies and you allow this only in individual cases. You can always delete cookies that are already on your computer or disable cookies. The steps for doing this varies from browser to browser, it is therefore best to look for the instructions in Google using the search term “delete cookies chrome” or “disable cookies chrome” in the case of a Chrome browser or exchange the word “chrome” for the name of your browser, e.g. edge, Firefox, safari. If you generally do not allow us to use cookies, i.e. disable them via browser settings, some features and pages may not work as expected.

10. Google Analytics

On our website we use Google Analytics provided by Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) for the purposes of statistically evaluation visitor data. Google Analytics uses targeted cookies. You can find more detailed information about the Terms of Use and Data Protection by following this link: or by following this link:

11. Pseudonymization

Especially, in view of the GDPR it is our concern to improve our offers and our internet presence. As the privacy of our users is important to us, the user data is pseudonymized. The processing of data is based on the legal regulations of § 96 para 3 TKG as well as Article 6 GDPR litera 1 a) (consent) and / or litera f) (legitimate interest) of the GDPR. Disabling Google Analytics data collection: The Google Analytics JavaScript disabling browser add-on (ga.js, analytics.js, dc.js) allows site visitors to prevent Google Analytics from using their data. You can prevent the collection by Google of the data generated by the cookie and related to your use of our website as well as the processing of this data by Google by downloading and installing the browser plug-in available under the following link:

12. Google Analytics Data Processing Amendment

We have concluded a direct customer contract with Google for the use of Google Analytics by accepting the “Data Processing Amendment”. You can find more detailed information about the Data Processing Amendment by following this link:

13. Google analytics IP anonymization

We have implemented the IP address anonymization of Google analytics on this website. This feature was developed by Google to make it possible to to comply with applicable privacy protection law and recommendations of the local data protection authorities in cases in which the authorities prohibit the storage of the full IP address. The anonymization or masking of the IP address occurs as soon as the IP addresses arrive in the Google Analytics data collection network and prior to such data being stored or processed. You can find more detailed information about IP anonymization by following this link:

14. Website security

We use the plugin wordfence on our website as a measure of IP security. This plugin uses personal data (IP-address) to ward off attacks against the website. You can find more detailed information by following this link:

15. TLS encryption with https

We use https to transfer data securely over the internet. By using TLS (Transport Layer Security), an encryption protocol for secure data transmission over the internet, we can ensure the protection of confidential data. You can recognize that this means of securing of the data transfer is being used by the small lock symbol in the upper left corner of the browser and the use of the “https” scheme as part of our internet address.

16. Server-Log-Files

To optimize this website in terms of system performance, usability and providing useful information about our services, the website provider automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. This includes your internet protocol address (IP address), browser and language setting, operating system, referrer URL, your internet service provider and date / time.

A combination of this data with personal data sources will not be made. We reserve the right to check this data retrospectively, if we become aware of specific indications for illegal use.

17. Our contact information

The protection of your personal data is particularly important to us. We are always available for you under the contact details below for your questions or your withdrawal of consent.

01 / 6678302-0

The data protection officer can also be reached at this e-mail address. GmbH