Privacy
––––

01 | BASIC INFORMATION ON DATA PROCESSING

The protection of your personal data is very important to us. We therefore process your data exclusively on the basis of the statutory provisions (GDPR). In this data protection information we inform you about the most important aspects of data processing on our website. This data protection declaration explains to you the type, scope and purpose of the processing of personal data within our online offer and the associated websites, functions and content (hereinafter collectively referred to as "online offer" or "website"). The data protection declaration applies regardless of the domains, systems, platforms and devices (e.g. desktop or mobile) used on which the online offer is carried out.

 

02 | COLLECTION, PROCESSING & USE OF PERSONAL DATA

With regard to the terms used (e.g. "personal data" or their "processing"), we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

The personal data processed in the context of this online offer includes usage data (e.g. the websites of our online offer visited, interest in our products) and content data (e.g. entries in the contact form).

The term “user” includes all categories of persons affected by data processing. They include our business partners, customers, interested parties and other visitors to our website.

We process your personal data only in compliance with the relevant data protection regulations. This means that your data will only be processed with legal permission. In other words, especially if data processing is necessary or required by law to provide our contractual services (e.g. processing inquiries) and online services, you have given your consent, or based on our legitimate interests (i.e. interest in analysis, optimization and economic operation and security of our online offer; Art. 6 Paragraph 1 lit. f. DSGV), in particular when measuring reach, creating profiles for advertising and marketing purposes and collecting access data and using the services of third-party providers.

Legal basis:

We refer to the following legal bases:
Legal basis of the consent: Art. 6 para. 1 lit. a. and Art. 7 GDPR
Legal basis for processing in order to fulfill our services and carry out contractual measures: Art. 6 Para. 1 lit. b. GDPR,
Legal basis for processing to fulfill our legal obligations Art. 6 Para. 1 lit. c. GDPR Legal basis for processing to safeguard our legitimate interests Art. 6 Para. 1 lit. f. GDPR

 

03 | SAFETY MEASURES

We take organizational, contractual and technical security measures according to the state of the art to ensure that the provisions of data protection laws are complied with and to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.

The security measures include, in particular, the encrypted transmission of data between your browser and our server.

 

04 | DISCLOSURE OF DATA TO THIRD PARTIES & THIRD PARTIES

Your data will only be passed on to third parties within the framework of the legal requirements. We only pass on your data to third parties if this, for example. is necessary for contractual purposes (Art. 6 Para. 1 lit. b) GDPR) or on the basis of our legitimate interests (Art. 6 Para. 1 lit. f. GDPR) in the economic and effective operation of our business.

If we use subcontractors to provide our services, we take suitable legal precautions as well as appropriate technical and organizational measures to ensure the protection of your personal data in accordance with the relevant statutory provisions.

If, within the scope of this data protection declaration, content, tools or other means are used by third-party providers and their registered office is in a third country, it can be assumed that data will be transferred to the third-party providers' registered offices. Third countries are countries in which the GDPR is not a directly applicable law, i.e. basically countries outside the EU or the European Economic Area. The transfer of data to third countries takes place either when there is an adequate level of data protection, the consent of the user or other legal permission.

 

05 | PROVISION OF CONTRACTUAL SERVICES

We process inventory data (e.g. your name and addresses, your contact details), contract data (e.g. services used, names of contact persons, payment information) to fulfill our contractual obligations and services (Art. 6 Para. 1 lit b GDPR).

We process usage data (e.g. the pages visited on our website, interest in our products) to continuously optimize our offer and content data (e.g. entries in the contact form) to process inquiries.

 

06 | CONTACT

If you contact us using the contact form or e-mail, your details will be processed to process the contact request and its processing (Art. 6 Para. 1 lit. b) GDPR).

Your details can be stored in our customer relationship management system ("CRM system") or a comparable request organization.

 

07 | COLLECTION OF ACCESS DATA & LOGFILES

We collect data on every access to the server on which this website is located (so-called server log files) on the basis of our legitimate interests (Art. 6 Para. 1 lit. f. GDPR). The access data includes the name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type & version, your operating system, referrer URL (the previously visited page, if our website was opened via a link) and Your IP address.

For security reasons (e.g. to investigate acts of abuse or fraud), log file information is stored for a maximum of three months and then deleted.

Data, the further storage of which is necessary for evidence purposes, are excluded from deletion until the respective incident has been finally clarified.

 

08 | INTEGRATION OF THIRD PARTY SERVICES & CONTENT

It can happen that third party content (e.g. maps from Google Maps, fonts ...) is integrated into our website. This assumes that the providers of this content ("third-party providers") recognize your IP address. Without the IP address, the content cannot be sent to your browser. Your IP address is therefore required to display the content.

We strive to only use content whose respective providers only use your IP address to deliver the content.

Third-party providers can use so-called pixel tags (invisible graphics, also called "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information can be stored in cookies on your device and contain, among other things, technical information about the browser and operating system, referring websites, visiting time and other information about the use of our online offer, as well as being linked to such information from other sources.

Below you will find an overview of third-party providers, their content, a link to the respective data protection declarations (contains further information on the processing of your data) and, in some cases already mentioned here, possibilities of objection ("opt-out"):

External fonts from Google, Inc., https://www.google.com/fonts ("Google Fonts"). The integration of Google Fonts takes place by calling up a server on Google (usually in the USA). Data protection declaration: https://www.google.com/policies/privacy/
Opt-Out: https://www.google.com/settings/ads/

Maps provided by the “Google Maps” service provided by the third-party provider Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection declaration: https://www.google.com/policies/privacy/
Opt-Out: https://www.google.com/settings/ads/

 

09 | YOUR RIGHTS

Right of providing information: You have the right to request, free of charge, information about the personal data that we store about you.

Right to correction, deletion, transfer & restriction of processing: Of course, you have the right to correct incorrect data, restrict processing and delete your personal data. If applicable, you can exercise your right to data portability.

Right to complain: If you assume that we are processing your data unlawfully, you have the right to lodge a complaint with the competent supervisory authority. In Austria this is the data protection authority.

Right to object: You can object to the future processing of your personal data in accordance with the legal requirements at any time. Your objection can in particular be made against processing for direct marketing purposes.

 

10 | DELETION OF DATA

Your data stored by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory retention requirements.

 

11 | CHANGES TO THE PRIVACY POLICY

We reserve to change our data protection declaration in order to adapt it to changed legal situations or to changes in the service and data processing. However, this only applies to declarations on data processing. If your consent is required or parts of the data protection declaration contain provisions of the contractual relationship with you, the changes will only be made with your consent..

However, this only applies to declarations on data processing. If your consent is required or parts of the data protection declaration contain provisions of the contractual relationship with you, the changes will only be made with your consent.

We ask you to inform yourself regularly about the content of our data protection declaration.

 

12 | RESPONSIBLE & CONTACT

Responsible body in terms of data protection law is:

Franz-Schubert-Institut
Gartengasse 34
2500 Baden bei Wien

Tel. +43-699-108 589 7
email office@schubert-institut.at

ZVR-Zahl: 467458551

 

Stand: 01.01.2021