- Introduction and overview
- Area of application
- Legal basis
- Contact details of the responsible person
- Duration of storage
- Rights under the General Data Protection Regulation
Introduction and overview
In short: We inform you comprehensively about any data we process about you.
Privacy policies usually sound very technical and involve legal jargon. This privacy statement is intended to describe the most important things to you as simply and transparently as possible. As far as it is conducive to transparency, technical terms are explained in a reader-friendly manner. In this way, we inform you in clear and simple language that we only process personal data during our business activities if there is a corresponding legal basis.
Area of application
– All online presences (websites) that we operate;
– Social media presences and email communication;
– Mobile apps for smartphones and other devices.
We only process your data if at least one of the following conditions applies:
- Consent (Article 6(1)(a) DSGVO): You have given us your consent to process data for a specific purpose. An example would be the storage of your entered data of a contact form.
- Contract (Article 6(1)(b) DSGVO): To fulfil a contract or pre-contractual obligations with you, we process your data. For example, if we conclude a sales contract with you, we need personal information in advance.
- Legal obligation (Article 6(1)(c) DSGVO): If we are subject to a legal obligation, we process your data. For example, we are legally obliged to keep invoices for accounting purposes. These usually contain personal data.
- Legitimate interests (Article 6(1)(f) DSGVO): In case of legitimate interests that do not restrict your fundamental rights, we reserve the right to process personal data. For example, we need to process certain data to operate our website in a secure and economically efficient manner. This processing is therefore a legitimate interest.
Further conditions such as the perception of recordings in the public interest and the exercise of public authority as well as the protection of vital interests do not generally occur with us. If such a legal basis should be relevant, it will be indicated at the appropriate place.
In addition to the EU-Regulation, national laws also apply:
– in Austria, this is the Federal Act on the Protection of Individuals regarding the Processing of Personal Data (Data Protection Act), or DSG for short.
– in Germany, the Federal Data Protection Act, or BDSG for short, applies.
If other regional or national laws apply, we will inform you about them in the following sections.
Contact details of the responsible person
If you have any questions about data protection or the processing of personal data, do not hesitate to contact us:
S-Quad Handels- und Beteiligungs GmbH
Mr. Michael Radner, General Counsel
1010 Vienna, Austria
E-Mail: email@example.com, firstname.lastname@example.org
Duration of storage
It is our general criterion that we only store personal data to the extent and for as long as is absolutely necessary for us. This means that we delete personal data as soon as the reason for processing the data no longer exists.
Should you wish your data to be deleted or revoke your consent to data processing, the data will be deleted as soon as possible and insofar as there is no obligation to store it.
Rights under the General Data Protection Regulation
Pursuant to Articles 13, 14 of the GDPR, we inform you about the following rights you have to ensure fair and transparent processing of data:
- – According to Article 15 DSGVO, you have a right of access to whether we process data about you. If this is the case, you have the right to receive a copy of the data and the following information:
- o the purpose for which we carry out the processing;
- o the categories, i.e. the types of data that are processed;
- o who receives this data and, if the data is transferred to third countries, how security can be guaranteed;
- o how long the data will be stored;
- o the existence of the right to rectification, erasure or restriction of processing and the right to object to processing;
- o that you can lodge a complaint with a supervisory authority (links to these authorities can be found below);
- o the origin of the data if we have not collected it from you;
- o whether profiling is carried out, i.e. whether data is automatically analysed to arrive at a personal profile of you.
- – You have a right to rectification of data under Article 16 of the GDPR, which means that we must rectify data if you find errors.
- – You have the right to erasure (“right to be forgotten”) under Article 17 of the GDPR, which specifically means that you can ask for your data to be deleted.
- – According to Article 18 of the GDPR, you have the right to restriction of processing, which means that we may only store the data but not use it any further.
- – According to Article 20 of the GDPR, you have the right to data portability, which means that we will provide you with your data in a common format upon request.
– According to Article 21 of the GDPR, you have a right to object, which, once enforced, entails a change in processing.
- o If the processing of your data is based on Article 6(1)(e) (public interest, exercise of official authority) or Article 6(1)(f) (legitimate interest), you may object to the processing. We will then check as soon as possible whether we can legally comply with this objection.
- o If data is used to carry out direct advertising, you can object to this type of data processing at any time. We may then no longer use your data for direct marketing.
- o If data is used for profiling, you can object to this type of data processing at any time. We may no longer use your data for profiling after this.
- – You may have the right under Article 22 of the GDPR not to be subject to a decision based solely on automated processing (for example profiling).
- – You have the right to complain under Article 77 of the GDPR. This means that you can complain to the data protection authority at any time if you believe that the data processing of personal data violates the GDPR.
Austria Data Protection Authority
Head: Dr. Andrea Jelinek, M.D.
Address: Barichgasse 40-42, 1030 Vienna
Telephone no.: +43 1 52 152-0
Our website uses HTTP cookies to store user-specific data.
Whenever you browse the internet, you use a browser. Popular browsers include Chrome, Safari, Firefox, Internet Explorer and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.
Cookies store certain user data about you, such as language or personal page settings. When you return to our site, your browser transmits the “user-related” information back to our site. Thanks to cookies, our site knows who you are and offers you the setting you are used to. In some browsers, each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file.
The following graphic shows a possible interaction between a web browser such as Chrome and the web server. Here, the web browser requests a website and receives a cookie back from the server, which the browser uses again as soon as another page is requested.
There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie is to be evaluated individually, as each cookie stores different data. The expiry time of a cookie also varies from a few minutes to a few years. Cookies are not software programmes and do not contain viruses, Trojans or other “pests”. Cookies also cannot access information on your PC.
For example, this is what cookie data can look like:
Intended use: Distinction of website visitors
Expiry date: after 2 years
A browser should be able to support these minimum sizes
– At least 4096 bytes per cookie
– At least 50 cookies per domain
– At least 3000 cookies in total
What types of cookies are there?
We can distinguish between 4 types of cookies:
These cookies are necessary to ensure basic website functionality.
These cookies collect information about user behaviour and whether the user receives any error messages. In addition, these cookies are also used to measure the loading time and the behaviour of the website with different browsers.
These cookies provide a better user experience. For example, locations entered, font sizes or form data are saved.
These cookies are also called targeting cookies. They are used to provide the user with individually adapted advertising.
Usually, when you visit a website for the first time, you are asked which of these cookie types you would like to allow. And of course, this decision is also stored in a cookie.
Purpose of processing via cookies
The purpose ultimately depends on the cookie in question. More details can be found below or from the manufacturer of the software that sets the cookie.
What data is processed?
Cookies are small helpers for many different tasks. Unfortunately, it is not possible to generalise what data is stored in cookies.
Storage period of cookies
The storage period depends on the individual cookie and is specified further below. Some cookies are deleted after less than an hour, others can remain stored on a computer for several years.
You can also influence the storage period yourself. You can delete all cookies manually at any time via your browser. Furthermore, cookies that are based on consent will be deleted at the latest after revocation of your consent, whereby the legality of the storage remains unaffected until then.
Right of objection – how can I delete cookies?
The so-called “Cookie Guidelines” have been in place since 2009. These state that the storage of cookies requires your consent (Article 6 para. 1 lit. a DSGVO). Within the EU countries, however, there are still very different reactions to these directives. In Austria, this directive was implemented in § 96 para. 3 of the Telecommunications Act (TKG). In Germany, the Cookie Directive has not been implemented as national law. Instead, this directive was largely implemented in § 15 para.3 of the Telemedia Act (TMG).
For cookies that are absolutely necessary, even if there is no consent, there are legitimate interests (Article 6 para. 1 lit. f DSGVO), which in most cases are of an economic nature. We want to provide visitors to the website with a pleasant user experience and for this purpose certain cookies are often absolutely necessary.
Where cookies are used that are not strictly necessary, this is only done with your consent. The legal basis in this respect is Art. 6 para. 1 lit. a DSGVO.
If you have any questions, please do not hesitate to contact the above mentioned responsible person.