Fussenegger Wohnbau - Wohnungsbau
Contact News

Privacy Policy

The protection of personal data is important to us. Therefore, we process personal data in accordance with the applicable European and national legislation.

You can of course withdraw your declaration(s) of consent at any time, with future effect. To do this, please contact the Controller in accordance with § 1.

The following policy provides an overview of what kind of data is collected, how this data is used and disclosed, what security measures we take to protect your data and how you can obtain information about the details submitted to us.
 

Legal basis for the processing of personal data
Provided we obtain the Data Subject's consent to process their personal data, Art. 6 Para. 1 S. 1 a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis. When processing personal data that is required to fulfil a contract to which the Data Subject is a party, Art. 6 Para. 1 S. b) of the GDPR serves as the legal basis. This also applies to any processing that is required to implement pre-contractual measures. If the processing of personal data is required to fulfil a legal obligation to which we are subject, Art. 6 Para. 1 S. 1 c) of the GDPR serves as the legal basis. If the processing is required to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and basic freedoms of the Data Subject do not outweigh the first-mentioned interest, then Art. 6 Para. 1 S.1 f) of the GDPR serves as the legal basis for the processing.

Data deletion and storage duration
The Data Subject's personal data will be deleted or blocked as soon as the reason for its storage no longer applies. Data may also be stored if this is specified by European or national legislators in EU statutory regulations, laws or other provisions to which we are subject. The data will also be blocked or deleted when a storage period prescribed by the specified standards expires, unless there is a need to continue storing the data in order to conclude or fulfil a contract. 

§ 1 CONTROLLER AND DATA PROTECTION OFFICER

(1) Name and address of Controller
Within the context of GDPR and other national data protection legislation of the EU Member States, as well as other data protection law, the Controller is:

Fussenegger Wohnbau GmbH
Gütlestraße 7a
6850 Dornbirn
Austria
Tel. +43 (0)5572 20 24 02
dornbirn@fussenegger-wohnbau.com

(2) Name and address of Data Protection Officer
The Controller's Data Protection Officer is:

Fussenegger Wohnbau GmbH
Gütlestraße 7a
6850 Dornbirn
Austria
Tel. +43 (0)5572 20 24 02
dornbirn@fussenegger-wohnbau.com

§ 2 DEFINITIONS

This Privacy Policy is based on the terms used by the European regulator when adopting the EU General Data Protection Regulation (hereinafter referred to as: "GDPR"). The Privacy Policy should be easy to read and understand. To ensure that this is the case, the main terms are explained below:

a.    Personal data is any information that refers to an identified or identifiable natural person (hereinafter referred to as "Data Subject"). An identifiable natural person is considered to be anyone who can be directly or indirectly identified, especially by assigning an identifier such as a name, to an ID number, location data, online identifier or one or more special characteristics that describe the physical, physiological, genetic, psychological, financial, cultural or social identity of this natural person. 

b.   The Data Subject is any identified or identifiable natural person, whose personal data is processed by the Controller.

c.    Processing is any process performed with or without the help of automated procedures or any such series of processes in connection with personal data, such as collection, recording, organisation, filing, storage, adaptation or amendment, selection, querying, use, disclosure by transmission, distribution or any other form of provision, comparison or linking, restriction, deletion or destruction.

d.    Profiling is any kind of automated processing of personal data that consists of using this personal data to evaluate certain personal aspects that refer to a natural person, especially to analyse or predict aspects relating to the professional performance, financial situation, health, personal preferences, interests, reliability, behaviour, whereabouts or change of location of this natural person.

e.    Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be assigned to a specific Data Subject without the use of additional information, provided this additional information is stored separately and is subject to technical and organisational measures to ensure that the personal data cannot be assigned to an identified or identifiable natural person.

f.    The Controller is the natural person or legal entity, authority, agency or other body that alone or jointly with others determines the purposes and means of the processing of personal data. If the purposes and means of this processing are specified by EU legislation or the law of the Member States, then the Controller or the specific criteria for their appointment can be specified in accordance with EU legislation or the law of the Member States.

g.    The Processor is a natural person or legal entity, authority, agency or other body that processes personal data on behalf of the Controller.

h.    The Recipient is a natural person or legal entity, authority, agency or other body to whom personal data is disclosed, regardless of whether this is a third party or not. However, authorities that may receive personal data as part of a specific investigation mandate in accordance with EU legislation or the law of the Member States are not considered to be Recipients.

i.    A third party is a natural person or legal entity, authority, agency or other body other than the Data Subject, Controller, Processor and anyone who is authorised to process personal data under the direct responsibility of the Controller or Processor.

j.    Consent is any voluntary, informed and unambiguous declaration of intent provided by the Data Subject for the specific case, in the form of a declaration or other clearly affirmative action, with which the Data Subject indicates that they consent to the processing of their personal data.

§ 3 WEBSITE PROVISION AND CREATION OF LOG FILES

1.    If you only use the website for information purposes, i.e. if you do not register or provide us with any other data, we will automatically collect the following data and information from the visiting computer system every time you access the website:

a.    The user's IP address
b.    Information about the browser type and version used
c.    The user's operating system
d.    The user's internet service provider
e.    Date and time of access
f.    Websites from which the user's system accessed the website
g.    Websites that the user's system accessed via our website
h.    Content accessed (specific pages)
i.    Amount of data transmitted in each case
j.    Language and version of the browser software
k.    Search engines used
l.    Names of downloaded files

2.    Data will also be stored in our system's log files. This data is not stored together with other personal user data

3.    The legal basis for the temporary storage of log files is Art. 6 Para. 1 S. f) of the GDPR.

4.    The system's temporary storage of the IP address is necessary to

a.    allow the website to be delivered to the user's computer. To do this, the user's IP address must be stored for the duration of the session.
b.    optimise the content of our website and any adverts.
c.    to ensure the functionality of our information technology systems and the technology behind our website.
d.    to provide law enforcement authorities with the information required for law enforcement in the event of a cyber attack.

Data will be stored in log files to ensure the functionality of the website. We will also use the data to optimise the website and ensure the security of our information technology systems. In this context, the data will not be evaluated for marketing purposes. For this purpose, we also have a legitimate interest in the data processing in accordance with Art. 6 Para. 1 S. 1 f) of the GDPR.

5.    The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected – in this case at the end of the session.
If the data is stored in log files, this will be after seven days at the latest. Extended storage is possible. In this case, the IP addresses are deleted or anonymised, so that they can no longer be assigned to the accessing client.

6.    The collection of data for the provision of the website and the storage of data in log files are mandatory for the operation of the website, which is why there is no opt-out option.

§ 4 USE OF COOKIES

1.    This website uses cookies. Cookies are small text files that are sent to your browser by a web server as soon as you visit a website, are stored locally on your device (PC, notebook, tablet, smartphone, etc.), are stored on your computer and provide the user (i.e. us) with certain information. Cookies are used to make the website more customer-friendly and secure and in particular to collect usage-related information, such as usage frequency, number of page visits and website usage behaviour, for example. Cookies do not harm your computer and do not contain viruses. This cookie contains a distinctive character string (cookie ID) that allows your browser to be clearly identified when you next access the website.

2.    We use cookies to make our website more user-friendly. Some elements of our website require the accessing browser to be identified even after you have left the site. The cookies therefore store and transmit the following data:
o    Log-in information

We also use cookies on our website that enable an analysis of your browsing behaviour. The following data can be transmitted in this way:
o    Entered search terms
o    Frequency of page views
o    Use of website functions

The data collected in this way is technically pseudonymised. So it is no longer possible to assign the data to the accessing user. The data will not be stored together with other personal data. When accessing our website, an info banner will notify you of the use of cookies for analysis purposes and refer you to this Privacy Policy. In this context, you will also be told how to prevent the storage of cookies in your browser settings.

The legal basis for the processing of personal data using cookies is Art. 6 Para. 1 S. 1 f) of the GDPR.
The legal basis for the processing of personal data using technically necessary cookies is Art. 6 Para. 1 S. 1 f) of the GDPR.
The legal basis for the processing of personal data using cookies for analysis purposes with the user's consent is Art. 6 Para. 1 S. 1 a) of the GDPR.

3.    The purpose of using technically required cookies is to make it easier for you to use websites. Some features of our website cannot work without the use of cookies. These require your browser to be recognised again even after you have left the site.

We need cookies for the following applications:
o    Remembering search terms

The user data collected by technically required cookies will not be used to create user profiles.
The purpose of using cookies that are not technically required is to improve the quality of our website and its content. Analysis cookies tell us how the website is used, allowing us to continuously optimise our service. [To be more precise] This information is used to automatically recognise you and make it easier for you to navigate when you revisit the website from the same device. For this purpose, we also have a legitimate interest in the processing of personal data in accordance with Art. 6 Para. 1 f) of the GDPR.

4.    Cookies will also be stored after the browser session has ended and can be re-accessed when you revisit the site. However, cookies are stored on your computer and transmitted to our website from there. You therefore have full control over the use of cookies. If you do not want cookies to collect data, you can adjust your browser via the "Settings" menu so that you are notified about the placing of cookies or can prevent the placing of cookies in general and also delete individual cookies. Please note, however, that disabling cookies may restrict the functionality of this website. As far as session cookies are concerned, these will be automatically deleted when you leave the website.

§ 6 DISCLOSURE OF PERSONAL DATA TO THIRD PARTIES

1. Fonts

1.    Google web fonts

This site uses web fonts provided by Google for the uniform display of fonts. When accessing a site, your browser loads the required web fonts into your browser cache to correctly display text and fonts.
For this purpose, the browser you are using must connect to the Google servers. Google is therefore notified that our website has been accessed by your IP address. Google web fonts are used in the interests of a uniform and appealing presentation of our online services. This represents a legitimate interest within the context of Art. 6 Para. 1 f) of the GDPR. If your browser does not support web fonts, your computer will use a standard font.

More information about Google web fonts is available at https://developers.google.com/fonts/faq and in Google's Privacy Policy: https://www.google.com/policies/privacy/ 

2.    Web fonts 
For the uniform display of fonts, this site uses web fonts provided by Monotype Imaging Inc. or one of the subsidiaries of MyFonts Inc. or Linotype (address: 600 Unicorn Park Drive, Woburn, MA 01801, USA). When accessing a site, your browser loads the required web fonts into your browser cache to correctly display text and fonts. For this purpose, the browser you are using must connect to the Monotype servers. Monotype is therefore notified that our website has been accessed by your IP address. Monotype is used in the interests of a uniform and appealing presentation of our online services. This represents a legitimate interest within the context of Art. 6 Para. 1 f) of the GDPR. If your browser does not support web fonts, your computer will use a standard font.
Monotype does not collect or store any personal data; more information about data protection at Monotype is available at:
https://www.monotype.com/de/rechtshinweise/datenschutzrichtlinie/web-font-tracking-privacy-policy/ 

§ 7 CONTACT FORM AND EMAIL CONTACT

1.    A contact form is available on our website that can be used to contact us electronically. If you use this option, the data entered in the input screen will be transmitted to us and stored. When the message is sent, the following data will also be stored:
o    User's IP address
o    Date and time of registration

As part of the submission process, your consent to the processing of the data will be obtained and reference made to this Privacy Policy.
Alternatively, you can contact us via the email address provided. In this case, the personal data transmitted with the email will be stored.
If this involves information about communication channels (e.g. email address, telephone number), you also consent to us contacting you via this communication channel to answer your query.
In this context, the data will not be disclosed to third parties. The data will only be used to manage the conversation

2.    With the user's consent, the legal basis for processing the data is Art. 6 Para. 1 S. a) of the GDPR. The legal basis for processing the data transmitted when sending an email is Art. 6 Para. 1 S.1 f) of the GDPR. If the aim of the email contact is to conclude a contract, then the additional legal basis for the processing is Art. 6 Para. 1S. 1 b) of the GDPR.

3.    We only use the processing of personal data from the input screen to manage the contact. We will of course only use the data from your email enquiry for the purpose for which you provided it when contacting us. If you contact us via email, our response also represents a necessary legitimate interest for processing the data. The other personal data processed during the submission process is used to prevent any misuse of the contact form and ensure the security of our information technology systems.

4.    The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of personal data from the contact form input screen and that submitted via email, this occurs when the respective conversation with the user comes to an end. The conversation comes to an end when circumstances lead us to believe that the issue in question has been finally resolved.

5.    You have the option of withdrawing your consent to the processing of your personal data at any time. If you contact us via email, you can object to the storage of your personal data at any time. In such a case, the conversation cannot be continued. With regard to the withdrawal of consent/objection to storage, please contact the Controller or Data Protection Officer via email or post in accordance with § 1. In this case, any personal data that has been stored during the contact process will be deleted.

§ 8 WEB ANALYSIS BY GOOGLE ANALYTICS (WITH PSEUDONYMISATION)

1.    We use "Google Analytics" and "Google Remarketing" on our website. These are services provided by Google Inc. (Google Inc., 1600 Amphitheatre Parkway Monutain View, CA 94043, USA) to analyse our users' browsing behaviour. The software places a cookie on your computer (for cookies, see above). If individual pages of our website are accessed, the following data will be stored:

a.    Two bytes of the IP address of the user's accessing system
b.    The accessed website
c.    Entry and exit pages
d.    The time spent on the website and the drop-off rate
e.    The frequency of accessing the website
f.    Country of origin and regional origin, language, browser, operating system, screen resolution, use of Flash or Java
g.    Search engines and search terms used

The information generated by the cookie about the use of this website by the user is usually transmitted to a Google Server in the US, where it is stored.
This website uses Google Analytics with the "_anonymizeIp()" extension. The software is set so that IP addresses are not stored in full, but only in abbreviated form. This means that it is no longer possible to assign the shortened IP address to the accessing computer. Only in exceptional cases is the full IP address transmitted to a Google server in the US, where it is abbreviated. However, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. Google may also transmit this information to third parties, if legally required to do so or if third parties process this data on behalf of Google. Please note that Google has its own data protection guidelines (http://www.google.de/intl/de/privacy.html) that are separate to ours. We assume no responsibility or liability for these guidelines and processes.

Google will only use the (anonymous) information obtained on behalf of the operator of this website to evaluate the use of the website. For example, to compile reports on website activity and provide the website operator with other services associated with website & internet usage.

Third-party providers, including Google, advertise on websites on the internet. Third-party providers, including Google, use stored cookies to display adverts based on a user's previous visits to this website.

Google Remarketing technology addresses users who have already visited this website and our online services, in the form of targeted advertising on Google Partner Network websites. These adverts are placed using the above-mentioned cookies, which help to analyse user behaviour when visiting the website and are then used for targeted product recommendations and interest-based advertising.

2.    The legal basis for the processing of personal data is Art. 6 Para. 1 S. 1 f) of the GDPR. For exceptional cases when personal data is transmitted to the US, Google is subject to the EU-US Privacy Shield, www.privacyshield.gov/EU-US-Framework.

3.    Google will use this information on our behalf to evaluate your use of the website and compile reports on website activity. By evaluating the data obtained, we are able to compile information about the use of the individual components of our website. This helps us to continuously improve our website and its user-friendliness. For this purpose, we also have a legitimate interest in processing the data in accordance with Art. 6 Para. 1 f) of the GDPR. By anonymising the IP address, users' interests in protecting their personal data are adequately taken into account.

4.    The data will be deleted as soon as it is no longer required for recording purposes. In our case, after 26 months.

5.    The cookies used will be stored on your computer and transmitted from there to our website. If you do not consent to the collection and evaluation of usage data, you can prevent this by disabling or restricting the use of cookies in your browser software settings. Cookies that have already been stored can be deleted at any time. In this case, however, you may be unable to fully use all the features of this website.

You can also prevent Google from collecting the data generated by the cookie and that relating to your use of the website (including your IP address) and from processing this data, by downloading and installing the available browser plug-in from the following link. The current link is: https://tools.google.com/dlpage/gaoptout?hl=de.

Alternatively, you can simply object to the use of cookies on our website, by ticking the box below. In this case, an "opt-out cookie“ will be installed in your computer browser and no more session data will be collected. Please note, however, that when deleting cookies from your computer, this opt-out cookie will also be deleted and will have to be reactivated, if necessary.

By clicking the following link: Disable Google Analytics, you can disable data collection by Google Analytics. An "opt-out cookie" will therefore be stored on your computer that will prevent the future collection of your personal data when visiting our website.

6.    The third-party provider is Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436?1001. More information is available in the terms and conditions of use at www.google.com/analytics/terms/de.html, in the data protection overview at www.google.com/intl/de/analytics/learn/privacy.html and in the Privacy Policy at www.google.de/intl/de/policies/privacy.

§ 9 INTEGRATION OF GOOGLE MAPS

1.    We use the Google Maps service on our website. This allows us to display interactive maps directly on the website, enabling you to conveniently use the maps function.

2.    When you visit the website, Google is notified that you have accessed the corresponding subpage of our website. The data collected when visiting our website is also transmitted. This happens regardless of whether you are logged into your Google user account or not. If you are logged into Google, your data will be directly assigned to your account. If you do not want this data to be assigned to your Google profile, you must log out before activating the button. Google will store your data as a user profile and use it for the purposes of advertising, market research and/or the needs-based design of its website. Such an evaluation is conducted to provide needs-based advertising, in particular, and to inform other users of the social network about your activity on our website (even if you are not logged in). You have the right to object to the creation of this user profile, although you must contact Google to exercise this.

3.    Further information about the purpose and scope of this data collection and its processing by the plug-in provider is available in the provider's Privacy Policy, along with more information about your rights in this regard and settings to protect your privacy: www.google.de/intl/de/policies/privacy. Google also processes your personal data in the US and is subject to the EU-US Privacy Shield, www.privacyshield.gov/EU-US-Framework.

§ 10 SOCIAL MEDIA PLUG-INS

Social plug-ins in general:

1. Facebook

1.    This website uses social plug-ins from the Facebook social network (Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA). These plug-ins enable you to place bookmarks on this website and share these with other users of the social network. You can recognise these plug-ins by the Facebook logo or its typical "Like" button. An overview of Facebook plug-ins is available at https://developers.facebook.com/docs/plugins/.

2.    We use the two-click solution. This essentially means that when you visit our website, no personal data is initially disclosed to Facebook. We give you the option of communicating directly with Facebook via the icon. Facebook is only notified that you have accessed the corresponding page of our website when you click the marked field, thereby activating it. Data is disclosed regardless of whether you have a Facebook account or not and are logged into this.

a.    If you click the Facebook "Like" button while logged into your Facebook account, the content of these pages may also be linked to your Facebook profile. In this case, Facebook can also assign your visit to this website to your user account. If you click the activated icon and link the page, for example, Facebook will also store this information in your user account and publicly share it with your contacts. We recommend that you regularly log out after using a social network, and especially before clicking the icon, so as to avoid this being assigned to your profile.

b.    If you are not a member of Facebook or logged out of Facebook before visiting this website, it is still possible that Facebook will be notified of and store your IP address. If you do not want Facebook to be able to assign your visit to our website to your Facebook user account, you must log out of Facebook before visiting our website and/or avoid activating the plug-in.
The following data will essentially be transmitted to Facebook:

c.    Browser-related data such as IP address, browser type, operating system, date and time of access, website visited.

d.    User ID (if logged into your Facebook account)

According to Facebook in Germany, IP addresses are anonymised as soon as they are collected. By enabling the plug-in, your personal data will be transmitted to Facebook and stored in the US. As Facebook uses cookies, in particular, to collect data, we recommend that you delete all cookies using your browser's security settings before clicking the greyed-out box.

3.    We have no influence over the data collected and the data processing procedures, nor do we have any knowledge of the full extent of the data collection, processing purposes or storage periods. We also have no information about the deletion of the data collected by Facebook.

4.    Facebook stores the data collected about you as a user profile and uses this for the purposes of advertising, market research and/or the needs-based design of its website. Such an evaluation is conducted for the display of needs-based advertising, in particular, and to inform other users of the social network about your activity on our website (even if you are not logged in). The plug-ins give you the opportunity to interact with the social network and other users, so that we can improve our service, making it more interesting for you as a user.

5.    The legal basis for the use of plug-ins is Art. 6 Para. 1 S. 1 a) of the GDPR. Facebook is subject to the EU-US Privacy Shield, www.privacyshield.gov/EU-US-Framework.

6.    You have the right to object to the creation of this user profile, although you must contact Facebook to exercise this.

7.    Settings and objections to the use of data for advertising purposes are possible within Facebook profile settings at www.facebook.com/settings. Further information about the purpose and scope of this data collection and its processing, as well as your rights as an effect of and vis-a-vis Facebook is available at www.facebook.com/policy.php, www.facebook.com/help/186325668085084, www.facebook.com/about/privacy/your-info-on-other and www.facebook.com/about/privacy/your-info.
 
 2. Instagram

1.    This website uses social plug-ins from the Instagram social network of Instagram Inc. (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA). These plug-ins enable you to place bookmarks on this website and share these with other users of the social network. You can recognise these plug-ins by the square camera symbol and possibly the Instagram logo.

2.    We use the two-click solution. This essentially means that when you visit our webite, no personal data is initially disclosed to Instagram. We give you the option of communicating directly with Instagram via the icon. Instagram is only notified that you have accessed the corresponding page of our website when you click the marked field, thereby activating it. Data is disclosed regardless of whether you have a Facebook account or not and are logged into this.

a. If you click the Instagram icon while logged into your Instagram account, the content of these pages may also be linked to your Instagram profile. In this case, Instagram can also assign your visit to this website to your user account. If you click the activated icon and link the page, for example, Instagram will also store this information in your user account and publicly share it with your contacts. We recommend that you regularly log out after using a social network, and especially before clicking the icon, so as to avoid this being assigned to your profile.

b. If you are not a member of Instagram or logged out of Instagram before visiting this website, it is still possible that Instagram will be notified of and store your IP address. If you do not want Instagram to be able to assign your visit to our website to your Instagram user account, you must log out of Instagram before visiting our website and/or avoid activating the plug-in. The following data will essentially be transmitted to Instagram:

c.    IP address, browser type, date and time of access, source page, operating system, screen resolution

d. Linking this data to your account data by the social media operator

By enabling the plug-in, your personal data will be transmitted to Instagram and stored in the US.

3.    We have no influence over the data collected and the data processing procedures, nor do we have any knowledge of the full extent of the data collection, processing purposes or storage periods. We also have no information about the deletion of the data collected by Instagram.

4.    Instagram stores the data collected about you as a user profile and uses this for the purposes of advertising, market research and/or the needs-based design of its website. Such an evaluation is conducted for the display of needs-based advertising, in particular, and to inform other users of the social network about your activity on our website (even if you are not logged in). The plug-ins give you the opportunity to interact with the social network and other users, so that we can improve our service, making it more interesting for you as a user.

5.    The legal basis for the use of plug-ins is Art. 6 Para. 1 S. 1 a) of the GDPR.

6. You have the right to object to the creation of this user profile, although you must contact Instagram to exercise this.

7.    Further information about the purpose and scope of this data collection and its processing, as well as your rights as an effect of and vis-a-vis Instagram is available at http://instagram.com/about/legal/privacy/.

§ 11 CHILDREN

Our service is essentially aimed at adults. Anyone under the age of 18 should not transmit any personal data to us without their parent or guardian's consent.

§ 12 RIGHTS OF THE DATA SUBJECT

If we process your personal data, you are considered to be the Data Subject within the context of the GDPR and have the following rights vis-a-vis the Controller:

1.    Right to access
2.    Right to rectification
3.    Right to restrict processing
4.    Right to deletion
5.    Right to information
6.    Right to data portability
7.    Right to object to processing
8.    Right to withdraw consent under data protection law
9.    Right to opt out of automated decision-making
10.  Right to complain to the supervisory authorities

1. Right of access

1.    You can request that the Controller confirms whether we process your personal data. If such processing is undertaken, you can request information from the Controller at any time and free of charge about the personal data stored about you and about the following:

a.    the purposes for which the personal data is processed;

b.    the categories of personal data that are processed;

c.    the Recipients and/or Recipient categories to whom your personal data has been or will be disclosed;

d.    the planned storage period of your personal data or, if no specific details are available, criteria for determining the storage period;

e.    the existence of a right to rectify or delete your personal data, a right to restrict its processing by the Controller or a right to object to this processing;

f.    the existence of a right to complain to the supervisory authorities;

g.    any available information about the origin of the data, if the personal data is not collected from the Data Subject;

h.    the existence of automated decision-making, including profiling, in accordance with Art. 22 Paras. 1 and 4 of the GDPR and – at least in these cases – detailed information about the rationale involved, as well as the scope and intended impact of such processing on the Data Subject.

2.    You have the right to request information about whether your personal data will be transmitted to a third country or international organisation. In this context, you can ask to be notified of the appropriate guarantees in accordance with Art. 46 of the GDPR in connection with the transmission.

2. Right to rectification

You have the right to immediate rectification and/or completion by the Controller, if your processed personal data is incorrect or incomplete.

3. Right to restrict processing

1.    Under the following conditions, you can request that the Controller immediately restricts the processing of your personal data:

a.    if you dispute the accuracy of your personal data for a period that allows the Controller to check the accuracy of the personal data;

b.    if the processing is illegal and you decline the deletion of your personal data and request that the use of your personal data be restricted instead;

c.    if the Controller no longer requires your personal data for processing purposes, but you still need it to assert, exercise or defend any legal claims, or

d.    if you have objected to the processing in accordance with Art. 21 Para. 1 of the GDPR and it has not yet been determined whether the Controller's legitimate grounds outweigh your own.

2.     If the processing of your personal data has been restricted, this data – apart from its storage – may only be processed with your consent or to assert, exercise or defend any legal claims or to protect the rights of another natural person or legal entity or for major reasons in the public interest of the EU or a Member State. If the processing has been restricted in accordance with the above mentioned conditions, you will be notified by the Controller before the restriction is lifted.

4. Right to deletion

1.    You can request that the Controller deletes your personal data immediately, provided one of the following reasons applies:

a.    Your personal data is no longer required for the purposes for which it was collected or otherwise processed.

b.    You withdraw the consent on which the processing was based in accordance with Art. 6 Para. 1 a) or Art. 9 Para. 2 a) of the GDPR and there is no other legal basis for the processing.

c.    You object to the processing in accordance with Art. 21 Para. 1 of the GDPR and there are no overriding legitimate reasons for it, or you object to the processing in accordance with. Art. 21 Para. 2 of the GDPR.

d.    Your personal data has been unlawfully processed.

e.    The deletion of your personal data is required to fulfil a legal obligation in accordance with EU legislation or the law of the Member States, to which the Controller is subject.

f.    Your personal data was collected in relation to the provision of information society services in accordance with Art. 8 Para. 1 of the GDPR.

2.    If the Controller has disclosed your personal data and is obliged to delete it in accordance with Art. 17 Para. 1 of the GDPR, they shall take appropriate action, including technical measures, taking account of the available technology and implementation costs, to inform the Processor of the personal data that you as the Data Subject have requested them to delete all links to this personal data and copies or reproductions thereof.

3.    No right to deletion exists if the processing is required

a.    to exercise the right to freedom of expression and information;

b.    to fulfil a legal obligation that requires processing in accordance with EU legislation or the law of the Member States to which the Controller is subject, or to perform a task that is in the public interest or to exercise an official authority vested in the Controller;

c.    for reasons of public interest relating to public health in accordance with Art. 9 Para. 2 h) and i) as well as Art. 9 Para. 3 of the GDPR;

d.    for archive purposes in the public interest, scientific or historical research purposes or for statistical purposes in accordance with Art. 89 Para. 1 of the GDPR, if the right specified in Section a) is likely to make it impossible to achieve or seriously impair the aims of this processing, or

e.    to assert, exercise or defend any legal claims.
 

5. Right to information

If you have asserted your right to rectify, delete or restrict processing vis-a-vis the Controller, they are obliged to notify any Recipients to whom your personal data has been disclosed about this processing rectification/deletion/restriction, unless this proves to be impossible or involves a disproportionate amount of effort. You have the right to be informed about these Recipients by the Controller.


6. Right to data portability

1.    You have the right to receive any personal data that you have provided to the Controller in a structured, standard and machine-readable format. You also have the right to transfer this data to another Controller without hindrance from the Controller to whom the personal data was provided, as long as

a.    the processing is based upon consent in accordance with. Art. 6 Para. 1 a) of the GDPR or Art. 9 Para. 2 a) of the GDPR or upon a contract in accordance with Art. 6 Para. 1 b) of the GDPR and

b.    it is processed using automated procedures.

2.    When exercising this right, you also have the right to have your personal data transmitted directly from one Controller to another, provided this is technically feasible. This must not impair other people's freedoms and rights.

3.    The right to data portability does not apply to the processing of personal data that is required to perform a task that is in the public interest or to exercise an official authority vested in the Controller.

4.    To assert their right to data portability, the Data Subject can contact the Controller at any time.

7. Right to object

1.    You have the right to object to the processing of your personal data performed on the basis of Art. 6 Para. 1 e) or f) of the GDPR at any time, for reasons arising from your specific situation; this also applies to profiling based on these regulations.

2.    The Controller will no longer process your personal data, unless they can prove compelling, legitimate reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend any legal claims.

3.    If your personal data is processed to carry out direct marketing, you have the right to object to the processing of your personal data for the purposes of such marketing at any time; this also applies to profiling, provided this is associated with such direct marketing. If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

4.    Regardless of Directive 2002/58/EU, you have the option of exercising your right to object to the use of information society services by means of automated procedures that use technical specifications.

5.    To exercise their right to object, the Data Subject can contact the Controller directly.

8. Right to withdraw consent under data protection law

You have the right to withdraw your consent under data protection law at any time. Withdrawing your consent does not affect the legality of any processing performed based on your consent until the point of its withdrawal. To do this, you can contact the Controller.

9. Automated decision-making in individual cases, including profiling

1.    You have the right not to be subject to a decision based solely on automated processing – including profiling – that legally impacts you or severely affects you in a similar manner. This does not apply if the decision

a.    is required to conclude or fulfil a contract between you and the Controller,

b.    is permissible on the basis of EU legislation or the law of the Member States to which the Controller is subject and this legislation contains appropriate measures to safeguard your rights and freedoms, as well as your legitimate interests, or

c.    is made with your express consent.

2.    However, these decisions may not be based upon certain categories of personal data in accordance with Art. 9 Para. 1 of the GDPR, provided Art. 9 Para. 2 a) or g) of the GDPR does not apply and appropriate measures have been taken to protect your rights and freedoms, as well as your legitimate interests.

3.    With regard to the cases mentioned in (1) and (3), the Controller shall take appropriate measures to safeguard your rights and freedoms, as well as your legitimate interests, including at the very least the right to ask someone to intervene vis-a-vis the Controller, to present your own point of view and to challenge the decision.

4.    If the Data Subject wishes to assert their rights with regard to automated decision-making, they can contact the Controller at any time.

10. Right to complain to the supervisory authorities

Notwithstanding any other administrative or legal action, you have the right to complain to the supervisory authorities, especially in the Member State of your place of residence, place of work or the place the alleged infringement took place, if you believe that the processing of your personal data violates the GDPR. The supervisory authorities to whom the complaint was submitted will notify the plaintiff about the status and outcome of the complaint, including the option of legal action in accordance with Art. 78 of the GDPR.

§ 13 CHANGES TO THIS PRIVACY POLICY

We reserve the right to amend our data protection practices and this policy in order to adapt these to changes in relevant legislation and/or regulations, if necessary, or better meet your needs. Any changes to our data protection practices will be announced here. Please note the current version date of our Privacy Policy.

Kontaktformular

Ich interessiere mich für ein