Please note that the German version of this privacy policy is the original and is authoritative in case of any interpretation issues. Translations are provided for informational purposes only and are not legally binding.
Last updated: 12 September 2024
The protection of your personal data is very important to us, which is why we would like to list all the information about the processing and storage of your data when you visit our website and in our company.
In order to be able to use all the functions and services of our website, it is necessary to collect your personal data. However, the processing and storage only takes place in accordance with the legal guidelines and requirements of the General Data Protection Regulation (GDPR), the Data Protection Act (DSG) and the Telecommunications Act (TKG 2021).
RESPONSIBLE BODY
chatarmin.com GmbH Kaiserstrasse 89 1070 Vienna Austria You can find more information in the imprint.
All employees are obliged to maintain confidentiality and to handle your data properly and to enter it correctly into our data processing systems.
DATA PROTECTION OFFICER
Data Protection Officer: SCALELINE Datenschutz - Mag.a iur. Elisa Drescher E-mail: [email protected]
COLLECTION AND PROCESSING OF PERSONAL DATA ON THIS WEBSITE
Note: In order to protect your data as comprehensively as possible from unwanted access, we take so-called technical and organisational measures and use an encryption process on our website. Your data is transmitted over the internet from your computer to our computer and vice versa using what is known as TLS encryption. TLS stands for "Transport Layer Security" and is an encryption protocol for data transmission on the internet. You can usually recognise "TLS" by the fact that the lock symbol in the status bar of your browser is closed and the address begins with https://.
1. COLLECTION OF ACCESS AND LOG DATA
This website automatically collects and stores server log file information that your browser transmits to us.
These are
- IP address of the user,
- Date and time of access,
- Type of request,
- Customer information such as type and version,
- Operating system of the user (device, OS version of the device),
- Referrer information (i.e. the source of the access)
The legal basis for this data processing is the legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR. The legitimate interest lies in being able to identify indications of unlawful use of our website (e.g. defence against hacker attacks) and to ensure a smooth connection setup. The data collected is stored in server log files that your browser automatically transmits to us in encrypted form. We only store the server log files in the event of attacks on our server infrastructure or other legal violations. This longer storage period is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f) GDPR and serves only to preserve evidence.
We use "Vercel WebAnalytics" to anonymously compile statistics about access to our website. When using Vercel Web Analytics, no personal identifiers are collected that track and match end-user data across different applications or websites. By default, Vercel Web Analytics uses only aggregated data that does not identify or re-identify the customer's end users. Vercel Web Analytics does not collect or store information that would allow you to reconstruct an end user's browsing session across different applications or websites and/or personally identify an end user. Only a minimal amount of data is collected, which is only used for aggregated statistics.
We have concluded an order processing contract with the provider of this website, Vercel Inc. based in the USA, in accordance with Art. 28 GDPR. This is a contract required by data protection law, which ensures that Vercel Inc. only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR. Vercel Inc. is certified in accordance with the Data Privacy Framework. This can be viewed at https://www.dataprivacyframework.gov/list.
To optimise the loading time, we integrate the Content Delivery Network (CDN) of "unpkg" on this website. "unpkg" is a public content delivery network (CDN) for the provision of content. The use or integration of "unpkg" is based on the legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR. According to the developer of "unpkg", no personal data is processed or stored and no IP address is stored.
2. ENQUIRIES VIA CHAT BY CHATARMIN.COM
For direct and uncomplicated contact, we offer you the option of sending us a message via chatarmin. By clicking on "Start Chat" you will be redirected to WhatsApp Business and can start the chat with us from there.
Data processing in this context is based on the legal basis of contract fulfilment or contract initiation in accordance with Art. 6 para. 1 lit. b) GDPR. The chat via WhatsApp is not intended for you to exchange sensitive data such as health data, data on religious affiliation or data on ethical origin. Please do not send us this sensitive data.
It goes without saying that we will treat any personal data you provide to us in the context of enquiries as confidential. We use the personal data you provide exclusively to process and respond to your enquiry. The legal basis for data processing is our legitimate interest in accordance with Art. 6 para. 1 lit. f) GDPR. This arises from our interest in responding to enquiries from our customers, business partners and interested parties and in promoting and maintaining customer satisfaction. Another legal basis for natural persons is the initiation or fulfilment of a contract in accordance with Art. 6 para. 1 lit. b) GDPR. In the context of the use of WhatsApp, WhatsApp Ireland Limited is the recipient of your data and processor in accordance with Art. 28 GDPR. WhatsApp is a product of the Meta Companies (formerly Facebook Inc.). In the context of Messenger, your data will also be transferred to third countries outside the European Union for which no adequacy decision exists. The legal basis for the transfer of data to third countries such as the USA in the context of use are standard contractual clauses pursuant to Art. 46 para. 1 lit. c) GDPR.
All personal data that you send to us with your enquiry will be deleted or anonymised by us no later than 2 years after the final response to you, unless a contract is concluded. The retention period of 2 years is due to the fact that you may occasionally contact us again about the same matter after a reply and refer to the previous correspondence. In our experience, we have found that after 2 years there are no more queries in response to our replies.
3. REGISTER FOR CHATARMIN AND USER ACCOUNT
A user account is required to use chatarmin, which can be created by providing an email address and a password. In this context, we store the IP address and the time of the respective user action on the basis of our legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR when you register, log in or use your user account. We do this to prevent misuse and unauthorised use, which is in our and the users' interests. In principle, we do not pass this data on to third parties unless it is necessary to enforce our claims or required by law.
Within the user account, we store information about your company (telephone number, address, e-mail address, team members and their roles), contact details of your customers (telephone numbers, campaigns, ...). This data is stored exclusively for the fulfilment of the contract in accordance with Art. 6 para. 1 lit. b) GDPR.
We store your data for the duration of the contract. In the event of cancellation, you are obliged to back up your data in good time.
4. BOOKING APPOINTMENTS VIA CALENDLY
Calendly is an appointment booking tool that you can use to book an appointment with us directly. After booking, you will also receive an appointment confirmation by e-mail. The purpose of using Calendly is to simplify appointment bookings. The provider of Calendly is Calendly LCC, based in the USA, with which a contract for order processing in accordance with Art. 28 GDPR has been concluded. Calendly LLC is subject to an adequacy decision under the Data Privacy Framework for the USA.
Beyond this, we do not pass on your data to third parties. The legal basis for the booking is the implementation of pre-contractual measures in accordance with Art. 6 para. 1 lit. b) GDPR. We store your data for the duration of the contract initiation or for the duration of the contractual relationship with us.
5. USE OF WEB ANALYSIS TOOLS AND COOKIES
We use cookies to facilitate and improve the use of our website. Cookies are small pieces of text information that can be stored on your computer or smartphone via the browser when you visit a website. This serves to recognise the website visitor. Cookies can also provide us with information about how you use our website so that we can continuously improve the design of the website.
Cookies themselves do not contain any personal data about users, they are only used to uniquely identify what our customers find interesting and useful on our website. We also use so-called "web beacons" (small graphic images, also known as "pixel tags" or "clear GIFs") on our website. They are used together with cookies to track general user behaviour on the website.
The legal basis for the processing of personal data using cookies and other technologies is your consent in accordance with Art. 6 para. 1 lit. a) GDPR, which you give us via the so-called "consent banner" as soon as you visit our website for the first time.
We use cookies for the following purposes:
- Technically necessary: These are cookies and similar methods without which you cannot use our services, for example to display our website correctly or to use functions you have requested.
- External services: For the integration of externally hosted videos.
The data processed by necessary cookies is required for the purposes listed below to protect our legitimate interests and those of third parties in accordance with Art. 6 para. 1 lit. f) GDPR.
Any use of cookies that is not absolutely technically necessary constitutes data processing that is only permitted with your express and active consent in accordance with Art. 6 para. 1 lit. a) GDPR. You can use our so-called "Cookie Consent Tool" to set which cookie categories you would like to consent to when visiting our website.
Once cookies have been saved, you can delete them at any time via the settings of your web browser. You can also adjust the settings of your web browser so that no cookies are stored. In this case, not all functions of our website may be available.
As part of data processing (with the help of cookies and similar techniques for processing usage data), we may use specialised service providers, in particular from the online marketing sector. These process your data on our behalf as processors, are carefully selected and contractually bound in accordance with Article 28 GDPR. All companies listed as providers in our cookie notice act as so-called processors.
ANONYMISED EVALUATIONS
We use Plausible, an open-source web analysis tool from OÜ Plausible Insights based in Estonia (Västriku tn 2, Tartu 50403), to create anonymised analyses of access to this website.
Plausible does not store any cookies or similar technologies on your computer or in your browser. Consequently, no personal data is stored.
Plausible collects the following metrics from website visitors:
- Page URL
- HTTP Referer
- Browser
- Operating System
- Device Type
- Country, region, city
We use Plausible to analyse the use of this website and to be able to improve the website based on this. More information about Plausible here.
INTEGRATION OF LOOM VIDEOS
We embed videos on our websites that are not stored on our servers. To ensure that accessing our websites with embedded videos does not automatically result in the third-party provider's content being reloaded, we only display locally stored preview images of the videos in a first step. This means that the third-party provider does not receive any information.
Only after clicking on the preview image is content from the third-party provider loaded. As a result, the third-party provider receives the information that you have accessed our site and the usage data technically required in this context. We have no influence on further data processing by the third-party provider. By clicking on the preview image, you give us your consent to load content from the third-party provider. The embedding takes place on the basis of your consent in accordance with Art. 6 para. 1 lit. a) GDPR, provided that you have previously given your consent by clicking on the preview image. There is an adequacy decision for the USA, so that the data transfer can take place without further measures. You can view the certification of Loom Inc (Atlassian, Inc.) here.
Provider of the video service
Loom Inc.
Facebook Pixel
As part of the use of the so-called Facebook pixel, cookies are set on our website with your consent (see cookies with provider or name ‘Facebook’). In addition to us, Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (Facebook), is jointly responsible for the data processing associated with the pixel in accordance with Article 26 GDPR. You can access the agreement on which the cooperation with Facebook is based here. The pixel collects data about your use of our website and compares it with Facebook's data in order to show you customised advertising from us on Facebook's websites. Facebook also uses the data for its own advertising purposes and for third-party advertising purposes in accordance with the FacebookData Policy. This also contains further information on how you can assert your data subject rights as described below directly against Facebook with regard to your data processed by Facebook.
| _fbp | .chatarmin.com | 3 Monate | Marketing | This cookie is set by Facebook to display adverts either on Facebook or on a digital platform supported by Facebook advertising after visiting the website. |
|---|---|---|---|---|
| lastExternalReferrerTime | Meta Platforms, Inc. | Persisent | Marketing | Local Storage: Determines how the user reached the website by registering their last URL address. |
| lastExternalReferrer | Meta Platforms, Inc. | Persisent | Marketing | Local Storage: Determines how the user reached the website by registering their last URL address. |
Use of Google Analytics
This website uses Google Analytics if you give your consent within the meaning of Art. 6 para. 1 lit. a) GDPR and Art. 49 para. 1 lit. a) GDPR. This is a service provided by Google Ireland Limited (‘Google’), a company incorporated and operated under Irish law (registration number: 368047) with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland and Google LLC (USA) (‘Google’).
Google Analytics uses so-called ‘cookies’. These are text files that are stored on your computer and enable the use of the website by the user to be analysed. The information obtained by the cookies about your usage behaviour of this website is usually transferred to a Google server in the USA and stored there. There is an adequacy decision for the USA, so that the data transfer can take place without further measures. You can view Google's certification here.
We have made the setting to anonymise your IP address. IP address anonymisation is carried out by Google, but within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.
Google will use this information on behalf of the operator of this website to analyse your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage.
The anonymised IP address transmitted by your browser as part of Google Analytics is linked to other data about you, such as your search history, personal accounts, usage data from other devices and all other data that Google has about you.
You can see the cookies that are set in connection with Google Analytics in the list above.
You can revoke your consent at any time by making the appropriate settings directly via the cookie banner. The user and event data will be deleted after 14 months. The ‘Reset user data on new activity’ function is activated. This means that your data will not be deleted if you visit the site again before the retention period expires.
Google Ads
We use Google Ads with your consent in accordance with Art. 6 para. 1 lit. a) GDPR to show you adverts on websites of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (‘Google’) and other third-party providers.
Our purpose is to show you adverts that are of interest to you and to make our website more interesting for you. With conversion tracking, we can determine how successful the individual advertising measures are. To do this, we use cookies that can be used to measure certain parameters for measuring reach, such as the display of adverts or clicks by users. If users reach our website via a Google advert, Google Ads stores a cookie on the corresponding end device. We only receive aggregated evaluations of user behaviour, on the basis of which we can determine which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising media.
You can find more information on cookies in the cookie list above.
You can find more information on data protection for Google services at: https://policies.google.com/privacy?hl=de
Google Enhanced Conversion
As part of Google Ads, we use what is known as Google Enhanced Conversion Tracking (Google Enchanced Conversion Tracking). This requires consent in accordance with Art. 6 para. 1 lit. a) GDPR.
What does extended conversions mean? Enhanced conversions are a function that supplements existing conversion tags. In this context, conversion data collected on our website is sent to Google in encrypted form. When a conversion is carried out on a website, in most cases the data of the person concerned, such as a name, e-mail address or telephone number, is collected. These are recorded and hashed in conversion tracking tags. For this purpose, the data is encrypted by Google using a one-way hash algorithm SHA256. The hash values of the data are then transferred to Google and used to improve our conversion measurement. This means that if you click on an advert placed by Google, a cookie is set for extended conversion tracking. Cookies are small text files that the Internet browser stores on the user's computer. More information about Google Ads and Google Enhanced Conversion Tracking at https://ads.google.com/intl/de_de/home/privacy/solutions/enhanced-conversions-for-web/
| ga* | .chatarmin.com | 13 Monate | Statistik | Used by Google Analytics to collect data on the number of visits a user makes to the website and the dates of the first and last visit. |
|---|---|---|---|---|
| _ga | .chatarmin.com | 13 Monate | Statistik | Registers a unique ID that is used to generate statistical data on how the visitor uses the website. |
| _gcl_au | .chatarmin.com | 3 Monate | Marketing | Saves and tracks conversions |
Revocation of consent
If you have clicked on a preview image, the content of the third-party provider will be reloaded immediately. If you do not want such reloading on other pages, please do not click on the preview images.
USE OF UNIFORM FONTS THROUGH ADOBE FONTS
The fonts from Adobe Fonts are used for uniform presentation. When you access this website, your browser loads the fonts according to your consent pursuant to Art. 6 Para. 1 lit. a) GDPR. The server is located in Germany and no direct connection to Adobe servers, for example in the USA, is established.
The provider of these fonts within the European Union is Adobe Systems Software Ireland Companies with its registered office in Ireland ("Adobe"). Adobe does not rule out the possibility that data may also be transferred to the USA, in particular to Adobe Systems Incorporated, based in San Jose, California. Standard contractual clauses exist for this. According to Adobe, no cookies are set for the provision of Adobe Fonts .
Data processing in the context of application procedures
You can send us your application documents by e-mail for the purpose of receiving and managing the application and thus for the purpose of (possibly) establishing an employment relationship. The legal basis for this data processing is Art. 6 para. 1 lit. b) GDPR. As part of the application process, we only collect the data from you that is necessary to establish the employment relationship with us.
Within our company, only those people who are involved in the decision-making process will have access to your personal data.
If your application is successful, your personal data will be stored for the duration of your employment relationship. In addition, your tax-relevant data will be archived in accordance with the statutory retention periods after termination of the employment relationship. In the event of an unsuccessful application, your personal data will be deleted 7 months after the rejection.
Data processing of business partners and customers
1. Fulfilment of contractual obligations (Art. 6 para. 1 lit. b) GDPR)
The purposes of data processing arise from the implementation of pre-contractual measures and the fulfilment of obligations arising from the concluded contract.
a) Contact details of recommenders and tipsters as well as recommended contacts
Furthermore, we receive contact details of contact persons in the company who are interested in our services from so-called recommenders and tipsters. These recommenders and tipsters are the origin of your data (Art. 14 para. 2 lit. f) GDPR). For this purpose, we process the following personal data of contact persons Your title, your first and last name, your business email address and, if provided, your business telephone number. The legal basis for this data processing is the initiation of a contract.
b) Processing our contracts with customers
To process our contracts, we process master data such as your first and last name, your billing address and your billing and payment data. Payments can also be processed via the payment service provider "STRIPE". We provide this payment method as an additional option to enable simple processing for our customers, e.g. for recurring direct debits. This corresponds to our legitimate interest in offering an efficient and secure payment method and is based on the legal basis pursuant to Art. 6 para. 1 lit. f) GDPR. In this context, we also pass on data to the payment service provider insofar as this is necessary for the fulfilment of the contract (Art. 6 para. 1 lit. b. GDPR). Processing via the payment provider is neither legally nor contractually required. Without the transmission of your personal data, we cannot process a payment via this payment provider. You then have the option of choosing a different payment method.
More information about STRIPE: Stripe Payments Europe, based in Ireland Data protection at Stripe: https://stripe.com/at/privacy
2. For the fulfilment of legal obligations (Art. 6 para. 1 lit. c) GDPR)
The purposes of data processing arise in individual cases from legal requirements. These legal obligations include, for example, the fulfilment of retention and identification obligations, e.g. in the context of requirements for tax control and reporting obligations and data processing in the context of requests from authorities.
3. For the fulfilment of our legitimate interests (Art. 6 para. 1 lit. f GDPR)
We process the contact details of contact persons at customers, interested parties, suppliers and other business partners for communication by email, telephone and post. The legal basis for data processing is the legitimate interest pursuant to Art. 6 para. 1 f) GDPR. The legitimate interest arises from the interest in conducting or initiating the business relationship with customers, interested parties, suppliers and other business partners as well as personal contact with contact persons.
Personal data is stored for the purpose of conducting business relationships for as long as there is a legitimate interest in doing so. It may be necessary to process the personal data provided by you beyond the actual fulfilment of the contract with business partners. The legitimate interests here are in particular the selection of suitable business partners, the fulfilment of compliance measures, the assertion of legal claims, the defence against liability claims, the prevention of criminal offences and the settlement of claims resulting from the business relationship.
4. Who receives the personal data you provide?
As part of the contractual relationship, we may also commission processors or service providers who may have access to your personal data. Compliance with data protection regulations is ensured by contract.
5. Storage period
The personal data will be stored for as long as is necessary to fulfil the above-mentioned purposes.
6. Data processing to document compliance with the GDPR
Insofar as your data is processed on the basis of consent in accordance with Art. 6 para. 1 lit. a) GDPR or Art. 9 para. 2 lit. a) GDPR, we process your data exclusively for a specific purpose and after separate information in order to be able to prove that you have consented to the data processing in question within the framework of the accountability obligation incumbent on us in accordance with Art. 5 para. 2 GDPR.
If you assert data subject rights against us under the GDPR, we will also process and store your data in order to be able to prove that we have complied with the GDPR when processing your enquiry as part of our accountability obligations pursuant to Art. 5 (2) GDPR.
Information on data processing in the context of video conferences via Google Meet
We use the Google Meet tool from Google Ireland Limited to organise telephone conferences, online meetings and video conferences. You will receive access to the agreed appointments via a link provided by e-mail. You can enter the video room by clicking on the link. Before joining, you can decide for yourself whether you want to activate the transmission of your video. You are muted by default and you must manually enable your microphone if you wish. If you switch on your camera and/or microphone, this data will be processed during the meeting.
The following additional data may also be processed depending on the type and scope of the specific use:
- Personal details (e.g. first and last name, e-mail address, profile picture)
- Meeting metadata (e.g. date, time and duration of the communication, name of the meeting, participant IP address)
- Device/hardware data (e.g. IP addresses, MAC addresses, client version)
- Text, audio and video data (e.g. chat histories, video, audio and presentation recordings)
- Connection data (e.g. phone numbers, country names, start and end times, IP addresses)
Furthermore, your personal data may be processed. This also depends specifically on your use, such as use of the chat or the whiteboard. We explicitly draw your attention to the fact that any information you provide during the meeting will be processed at least for the duration of the meeting.
Legal basis
The legal basis for data processing for direct contractual partners is Art. 6 para. 1 lit. b) GDPR, for business partners or contact persons at external bodies the legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR. The legitimate interest lies in the organisation of virtual communication.
Receiver
The provider Google necessarily receives knowledge of the above-mentioned data insofar as this is contractually regulated within the framework of our order processing contract in accordance with Art. 28 GDPR. There are no other recipients.
We cannot rule out the possibility that data may also be routed via internet servers located outside the EU or the EEA. Google LLC is certified under the Data Privacy Act as an adequacy decision for the USA.
You are not obliged to communicate with us via Google Meet. Alternatively, you can also communicate by e-mail or telephone.
We generally delete personal data when there is no need for further storage
Operation of social media presences
We maintain the following social media presences:
LinkedIn: https://www.linkedin.com/company/chatarmin-com/
YouTube: https://www.youtube.com/@chatarmin
"LinkedIn" is operated by the European subsidiary LinkedIn Ireland Unlimited Company with its registered office in Ireland. The parent company LinkedIn Inc. is based in the USA.
Data processing by us:
a. Maintaining the above-mentioned social media pages and placing ads ("adverts")
The personal data entered on social media pages, such as comments, videos, images, likes, public messages, etc. are published by the respective social media platform. We reserve the right to delete content if necessary. We may share content on our site and contact you via the social media platform, for example via the messengers offered. In addition, we regularly place adverts via our social media pages. The legal basis for this data processing is the legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR, which is in the interest of our public relations and communication.
b. Page Insights
The social media platforms provide anonymised statistics and insights that help us gain knowledge about the types of actions people take on our site (so-called "page insights"). These Page Insights are created based on certain information about people who have visited our site.
The legal basis for this data processing is our legitimate interest in accordance with Art. 6 para. 1 lit. f) GDPR, which is based on obtaining information about the actions and visitors to our website.
This processing of personal data is carried out by the social media platform and us as so-called joint controllers in accordance with Art. 26 GDPR. In the case of joint controllership, a separate agreement must be concluded.
LinkedIn: https://legal.linkedin.com/pages-joint-controller-addendum
If you wish to object to certain data processing over which we have an influence (e.g. deletion of comments), please contact us using the contact details given above.
Note: The provision of your data is neither legally nor contractually required or necessary for the conclusion of a contract. You are not obliged to provide your personal data. The consequence of not providing your data is that you will not be able to communicate with us via our social media pages, interact with us or take part in the competition. To contact us, please use the above e-mail address.
Data processing by the operator of the social media platform:
In addition to us, there is also the operator of the social media platforms themselves. From a data protection perspective, this is also regarded as another controller that carries out its own data processing. This means that the operator is also a separate controller under the GDPR. However, we only have limited influence on data processing by the operator. Where we can exert influence (e.g. through parameterisation), we work within the scope of our possibilities to ensure that the operator of the social media platform handles data in compliance with data protection regulations. In many places, however, we cannot influence the data processing by the operator of the social media platform and do not know exactly what data they process. The respective operator will inform you about the processing of personal data in its own privacy policy:
LinkedIn: https://de.linkedin.com/legal/privacy-policy?
YouTube: www.policies.google.com/privacy?hl=de
When using the platform, your personal data is generally also processed by the respective platform operator on servers in third countries, in particular in the USA and the United Kingdom. Certain third countries have been granted an adequacy decision by the European Commission. This means that the legal situation for the protection of privacy in these countries is comparable to that in the EU or the EEA. You can find more information on the current countries with an adequacy decision here. In all other cases, we conclude so-called standard contractual clauses with the platform operators for the transfer of personal data to third countries.
Note: The operator of the social media platform uses web tracking methods. Web tracking can also take place regardless of whether you are logged in or registered with the social media platform. As already explained, we can hardly influence the web tracking methods of the social media platform. For example, we cannot switch it off. Please be aware of this: It cannot be ruled out that the provider of the social media platform uses your profile and behavioural data, for example to evaluate your habits or personal relationships and preferences, etc. We have no influence on the processing of your data by the provider of the social media platform.
Rights of data subjects
IN ACCORDANCE WITH ART. 15 PARA. 1 GDPR, YOU HAVE THE RIGHT TO RECEIVE INFORMATION ABOUT THE PERSONAL DATA STORED ABOUT YOU FREE OF CHARGE UPON REQUEST. FURTHERMORE, IF THE LEGAL REQUIREMENTS ARE MET, YOU HAVE THE RIGHT TO RECTIFICATION (ART. 16 GDPR), ERASURE (ART. 17 GDPR) AND RESTRICTION OF PROCESSING (ART. 18 GDPR) OF YOUR PERSONAL DATA. IF YOU HAVE PROVIDED THE PROCESSED DATA YOURSELF, YOU HAVE THE RIGHT TO DATA PORTABILITY IN ACCORDANCE WITH ART. 20 GDPR.
IF THE DATA PROCESSING IS BASED ON ART. 6 PARA. 1 E) OR F) GDPR, YOU HAVE THE RIGHT TO OBJECT IN ACCORDANCE WITH ART. 21 GDPR. IF YOU OBJECT TO DATA PROCESSING, THIS WILL NOT TAKE PLACE IN FUTURE UNLESS THE CONTROLLER CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR FURTHER PROCESSING WHICH OVERRIDE THE INTERESTS OF THE DATA SUBJECT IN OBJECTING.
IF THE DATA PROCESSING IS BASED ON CONSENT IN ACCORDANCE WITH ART. 6 PARA. 1 LIT. A), ART. 9 PARA. 2 LIT. A) OR ART. 49 PARA. 1 LIT. A) GDPR, YOU CAN REVOKE YOUR CONSENT AT ANY TIME WITH EFFECT FOR THE FUTURE WITHOUT AFFECTING THE LEGALITY OF THE PREVIOUS PROCESSING.
YOU ALSO HAVE THE RIGHT TO LODGE A COMPLAINT WITH A DATA PROTECTION SUPERVISORY AUTHORITY. IN PARTICULAR, THE COMPLAINT CAN BE LODGED WITH A SUPERVISORY AUTHORITY IN THE EU MEMBER STATE OF YOUR PLACE OF RESIDENCE, PLACE OF WORK OR PLACE OF THE ALLEGED INFRINGEMENT.
CONTACT DETAILS OF THE COMPETENT DATA PROTECTION AUTHORITY IN AUSTRIA: [email protected]
No automated decision making
We do not carry out automatic decision-making or profiling.
Provision
Unless otherwise stated in the previous chapters, the provision of personal data is neither legally nor contractually required or necessary for the conclusion of a contract. Failure to provide your personal data may mean that we are unable to respond to your enquiries, for example.
This data protection notice was created in cooperation with the consulting firm SCALELINE. The legal texts are subject to copyright.
