Privacy policy
Data protection
We have prepared this privacy policy (version 25.06.2019-211096701) to explain to you, in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679 and the Data Protection Act (DSG), what information we collect, how we use data and what choices you have as a visitor to this website.
Unfortunately, it is in the nature of things that these explanations sound very technical, but we have tried to describe the most important things as simply and clearly as possible.
Automatic data storage
Nowadays, when you visit websites, certain information is automatically created and stored, including on this website.
When you visit our website as you are doing right now, our web server (computer on which this website is stored) automatically saves data such as
- the address (URL) of the website accessed
- Browser and browser version
- the operating system used
- the address (URL) of the previously visited page (referrer URL)
- the host name and IP address of the device from which access is made
- Date and time
in files (web server log files).
As a rule, web server log files are stored for two weeks and then automatically deleted. We do not pass this data on, but we cannot rule out the possibility that this data may be viewed in the event of unlawful behavior.
The legal basis in accordance with Article 6(1)(f) GDPR (lawfulness of processing) is that there is a legitimate interest in enabling the error-free operation of this website by collecting web server log files.
Cookies
Our website uses HTTP cookies to store user-specific data.
Below we explain what cookies are and why they are used so that you can better understand the following privacy policy.
What exactly are cookies?
Whenever you surf the Internet, you use a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer and Microsoft Edge. Most websites save small text files in your browser. These files are called cookies.
One thing cannot be denied: Cookies are really useful little helpers. Almost all websites use cookies. More precisely, they are HTTP cookies, as there are also other cookies for other application areas. HTTP cookies are small files that are stored on your computer by our website. These cookie files are automatically stored in the cookie folder, the „brain“ of your browser, so to speak. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.
Cookies store certain user data about you, such as language or personal page settings. When you return to our site, your browser transmits the „user-related“ information back to our site. Thanks to cookies, our website knows who you are and offers you your usual default settings. In some browsers, each cookie has its own file; in others, such as Firefox, all cookies are stored in a single file.
There are both first-party cookies and third-party cookies. First-party cookies are created directly by our website, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie must be evaluated individually, as each cookie stores different data. The expiry time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans or other „malware“. Cookies also cannot access information on your PC.
Cookie data can look like this, for example:
- Name: _ga
- Expiry time: 2 years
- Use: Differentiation of website visitors
- Example value: GA1.2.1326744211.152211096701
A browser should support the following minimum sizes:
- A cookie should be able to contain at least 4096 bytes
- At least 50 cookies should be stored per domain
- A total of at least 3000 cookies should be able to be stored
What types of cookies are there?
The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the privacy policy. At this point, we would like to briefly explain the different types of HTTP cookies.
A distinction can be made between 4 types of cookies:
Strictly necessary cookies
These cookies are required to ensure basic website functions. For example, these cookies are needed when a user places a product in the shopping cart, then continues surfing on other pages and only goes to the checkout later. These cookies do not delete the shopping cart, even if the user closes the browser window.
Functional cookies
These cookies collect information about user behavior and whether the user receives any error messages. These cookies are also used to measure the loading time and the behavior of the website with different browsers.
Targeted cookies
These cookies ensure a better user experience. For example, entered locations, font sizes or form data are saved.
Advertising cookies
These cookies are also called targeting cookies. They are used to deliver customized advertising to the user. This can be very practical, but also very annoying.
When you visit a website for the first time, you are usually asked which of these cookie types you would like to allow. And of course this decision is also stored in a cookie.
How can I delete cookies?
You decide how and whether you want to use cookies. Regardless of the service or website from which the cookies originate, you always have the option of deleting, only partially allowing or deactivating cookies. For example, you can block third-party cookies but allow all other cookies.
If you want to find out which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:
Chrome: Delete, activate and manage cookies in Chrome
Safari: Managing cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have stored on your computer
Internet Explorer: Deleting and managing cookies
Microsoft Edge: Deleting and managing cookies
If you do not wish to receive cookies, you can set up your browser so that it always informs you when a cookie is to be set. This allows you to decide for each individual cookie whether or not to allow it. The procedure differs depending on the browser. It is best to search for the instructions in Google using the search term „delete cookies Chrome“ or „deactivate cookies Chrome“ in the case of a Chrome browser or replace the word „Chrome“ with the name of your browser, e.g. Edge, Firefox, Safari.
What about my data protection?
The so-called „cookie guidelines“ have been in place since 2009. It states that the storage of cookies requires the consent of the website visitor (i.e. you). However, there are still very different reactions to these directives within the EU countries. In Austria, however, this directive was implemented in § 96 para. 3 of the Telecommunications Act (TKG).
If you want to know more about cookies and do not shy away from technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called „HTTP State Management Mechanism“.
Storage of personal data
Personal data that you transmit to us electronically on this website, such as your name, e-mail address, address or other personal details when submitting a form or comments on the blog, will be used by us together with the time and IP address only for the purpose stated in each case, stored securely and not passed on to third parties.
We therefore only use your personal data for communication with those visitors who expressly request contact and for processing the services and products offered on this website. We do not pass on your personal data without your consent, but we cannot rule out the possibility of this data being viewed in the event of unlawful behavior.
If you send us personal data by e-mail – i.e. outside of this website – we cannot guarantee secure transmission and protection of your data. We recommend that you never send confidential data unencrypted by e-mail.
The legal basis in accordance with Article 6(1)(a) GDPR (lawfulness of processing) is that you give us your consent to process the data you have entered. You can revoke this consent at any time – an informal e-mail is sufficient, you will find our contact details in the imprint.
Evaluation of visitor behavior
In the following privacy policy, we inform you whether and how we analyze data from your visit to this website. The evaluation of the collected data is usually anonymous and we cannot draw any conclusions about your person from your behavior on this website.
You can find out more about how to object to this evaluation of visit data in the following privacy policy.
TLS encryption with https
We use https to transmit data tap-proof on the Internet (data protection through technology design Article 25 (1) GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission security by the small lock symbol at the top left of the browser and the use of the https scheme (instead of http) as part of our Internet address.
Newsletter privacy policy
When you subscribe to our newsletter, you provide the above personal data and give us the right to contact you by e-mail. We use the data stored as part of the registration for the newsletter exclusively for our newsletter and do not pass it on.
If you unsubscribe from the newsletter – you will find the link for this at the bottom of every newsletter – we will delete all the data that was saved when you subscribed to the newsletter.
Google Fonts Local Privacy Policy
We use Google Fonts from the company Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on our website. We have integrated the Google fonts locally, i.e. on our web server, not Google’s server. This means that there is no connection to Google’s servers and therefore no data transfer or storage.
What are Google Fonts?
Google Fonts (formerly Google Web Fonts) is an interactive directory of more than 800 fonts provided by Google LLC for free use. With Google Fonts, you could use the fonts without uploading them to your own server. However, we have downloaded the fonts to our server in order to prevent any transfer of information to the Google server. In this way, we act in compliance with data protection regulations and do not send any data to Google Fonts.
Unlike other web fonts, Google allows us unrestricted access to all fonts. We therefore have unlimited access to a sea of fonts and can thus get the best out of our website. You can find out more about Google Fonts and other questions at https://developers.google.com/fonts/faq?tid=211096701.
Google Maps privacy policy
We use Google Maps from the company Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on our website.
By using the functions of this map, data is transmitted to Google. You can find out what data is collected by Google and what this data is used for at https://www.google.com/intl/de/policies/privacy/.
Google Analytics privacy policy
We use Google Analytics from Google LLC (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on this website to statistically analyze visitor data. Google Analytics uses targeted cookies for this purpose.
Cookies from Google Analytics
- _ga
- Expiry time: 2 years
- Use: Differentiation of website visitors
- Example value: GA1.2.1326744211.152211096701
- _gid
- Expiry time: 24 hours
- Use: Differentiation of website visitors
- Example value: GA1.2.1687193234.152211096701
- _gat_gtag_UA_
- Expiry time: 1 minute
- Use: Used to throttle the demand rate. If Google Analytics is provided via the Google Tag Manager, this cookie is named _dc_gtm_ .
- Exemplary value: 1
Further information on terms of use and data protection can be found at http://www.google.com/analytics/terms/de.html or at https://support.google.com/analytics/answer/6004245?hl=de.
Pseudonymization
Our concern in terms of the GDPR is the improvement of our offer and our website. As the privacy of our users is important to us, the user data is pseudonymized. Data processing is carried out on the basis of the statutory provisions of Section 96 (3) TKG and Art. 6 EU GDPR (1) (a) (consent) and/or (f) (legitimate interest) of the GDPR.
Deactivation of data collection by Google Analytics
Using the browser add-on to deactivate Google Analytics JavaScript (ga.js, analytics.js, dc.js), website visitors can prevent Google Analytics from using their data.
You can prevent Google from collecting the data generated by the cookie and relating to your use of the website and from processing this data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de
Google Analytics data processing addendum
We have concluded a direct customer contract with Google for the use of Google Analytics by accepting the „Data Processing Addendum“ in Google Analytics.
You can find out more about the data processing addendum for Google Analytics here: https://support.google.com/analytics/answer/3379636?hl=de&utm_id=ad
Google Analytics IP anonymization
We have implemented the IP address anonymization of Google Analytics on this website. This function was developed by Google so that this website can comply with the applicable data protection regulations and recommendations of the local data protection authorities if they prohibit the storage of the full IP address. The anonymization or masking of the IP takes place as soon as the IP addresses arrive in the Google Analytics data collection network and before any storage or processing of the data takes place.
You can find more information on IP anonymization at https://support.google.com/analytics/answer/2763052?hl=de.
Rights under the General Data Protection Regulation
According to the provisions of the GDPR and the Austrian Data Protection Act (DSG), you have the following rights:
- Right to rectification (Article 16 GDPR)
- Right to erasure („right to be forgotten“) (Article 17 GDPR)
- Right to restriction of processing (Article 18 GDPR)
- Right to notification – notification obligation in connection with the rectification or erasure of personal data or the restriction of processing (Article 19 GDPR)
- Right to data portability (Article 20 GDPR)
- Right to object (Article 21 GDPR)
- Right not to be subject to a decision based solely on automated processing, including profiling (Article 22 GDPR)
If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, you can complain to the supervisory authority, which in Austria is the Data Protection Authority, whose website you can find at https://www.dsb.gv.at/.
Google Analytics reports on demographic characteristics and interests
We have activated the functions for advertising reports in Google Analytics. The reports on demographic characteristics and interests contain information on age, gender and interests. This allows us to get a better picture of our users without being able to assign this data to individual persons. You can find out more about the advertising functions at https://support.google.com/analytics/answer/3450482?hl=de_AT&utm_id=ad.
You can stop the use of the activities and information of your Google account under „Settings for advertising“ at https://adssettings.google.com/authenticated via a checkbox.
Google Analytics deactivation link
If you click on the following deactivation link, you can prevent Google from recording further visits to this website. Please note: Deleting cookies, using the incognito/private mode of your browser or using a different browser will result in data being collected again.
Embedded social media elements Privacy policy
We integrate elements of social media services on our website to display images, videos and texts.
When you visit pages that display these elements, data is transferred from your browser to the respective social media service and stored there. We do not have access to this data.
The following links will take you to the pages of the respective social media services where it is explained how they handle your data:
- Instagram privacy policy: https://help.instagram.com/519522125107875
- The Google privacy policy applies to YouTube: https://policies.google.com/privacy?hl=de
- Facebook data policy: https://www.facebook.com/about/privacy
- Twitter privacy policy: https://twitter.com/de/privacy
Facebook privacy policy
On this website, we use functions of Facebook, a social media network of Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland.
You can find out which functions (social plug-ins) Facebook provides at https://developers.facebook.com/docs/plugins/.
By visiting our website, information may be transmitted to Facebook. If you have a Facebook account, Facebook can assign this data to your personal account. If you do not wish to do so, please log out of Facebook.
The privacy policy, what information Facebook collects and how they use it can be found at https://www.facebook.com/policy.php.
YouTube privacy policy
We use the video service YouTube, YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA, on this website.
By accessing pages of our website that have integrated YouTube videos, data is transmitted to YouTube, stored and analyzed.
If you have a YouTube account and are logged in, this data will be assigned to your personal account and the data stored in it.
You can find out what data is collected by Google and what this data is used for at https://www.google.com/intl/de/policies/privacy/.
Facebook pixel privacy policy
On this website, we use the Facebook Pixel from Facebook, a social media network of Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland.
The code implemented on this page can evaluate the behavior of visitors who have come to this website from a Facebook advertisement. This can be used to improve Facebook ads and this data is collected and stored by Facebook. The data collected cannot be viewed by us but can only be used in the context of advertising placements. Cookies are also set through the use of the Facebook pixel code.
By using the Facebook pixel, the visit to this website is communicated to Facebook so that visitors can see suitable ads on Facebook. If you have a Facebook account and are logged in, your visit to this website will be assigned to your Facebook user account.
You can find out how the Facebook pixel is used for advertising campaigns at https://www.facebook.com/business/learn/facebook-ads-pixel.
You can change your settings for advertisements on Facebook at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen, provided you are logged into Facebook. At http://www.youronlinechoices.com/de/praferenzmanagement/ you can manage your preferences regarding usage-based online advertising. You can deactivate or activate many providers at once or make the settings for individual providers.
You can find more information about Facebook’s data policy at https://www.facebook.com/policy.php.
Source: Created with the data protection generator of firmenwebseiten.at in cooperation with gsundherum.at