Imprint

Information about the service provider.

E&S FairEqualSolutions FlexCo.

Antonigasse 97/7,
1170 Vienna,
Austria

Company registration number: FN 624262 h
Commercial Register Court: Vienna Commercial Court
Business purpose: Management consulting, development and sales of software applications
VAT number: ATU80568128
GLN (Global Location Number): 9110035522291
GISA (Trade Information System Austria): 37777234
Professional law: Trade regulations: www.ris.bka.gv.at

Supervisory authority:
City Council of Vienna

Awarding State: Austria

EU dispute settlement

In accordance with the Regulation on Online Dispute Resolution in Consumer Affairs (ODR Regulation), we would like to inform you about the Online Dispute Resolution Platform (ODR Platform).
Consumers have the opportunity to submit complaints to the European Commission’s online dispute resolution platform at https://ec.europa.eu/consumers/odr/main/index.cfm?event=main.home2.show&lng=DE The necessary contact details can be found above in our imprint.

However, we would like to point out that we are not willing or obliged to participate in dispute resolution proceedings before a consumer arbitration board.

All texts are protected by copyright.

Source: Created with the Imprint Generator by AdSimple

privacy policy

Introduction and Overview

We have written this privacy policy (version 14.12.2024-122922591) to provide you with the information you need in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679 and applicable national laws, which personal data (data for short) we as the controller - and the processors commissioned by us (e.g. providers) - process, will process in the future and what legal options you have. The terms used are to be understood as gender-neutral.
In short: We will provide you with comprehensive information about the data we process about you.

Privacy statements usually sound very technical and use legal jargon. This privacy statement, on the other hand, is intended to describe the most important things to you as simply and transparently as possible. As far as it is conducive to transparency, technical terms explained in a reader-friendly manner, links to further information are provided and graphics used. We are informing you in clear and simple language that we only process personal data in the context of our business activities if there is a corresponding legal basis. This is certainly not possible if you provide explanations that are as brief, unclear and legal-technical as possible, as is often standard on the Internet when it comes to data protection. I hope you find the following explanations interesting and informative and that there may be some information that you did not know before.
If you still have any questions, please contact the responsible body named below or in the imprint, follow the links provided and view further information on third-party websites. You can of course also find our contact details in the imprint.

scope

This privacy policy applies to all personal data processed by us in the company and to all personal data processed by companies commissioned by us (contract processors). By personal data we mean information within the meaning of Art. 4 No. 1 GDPR, such as a person's name, email address and postal address. The processing of personal data ensures that we can offer and bill for our services and products, whether online or offline. The scope of this privacy policy includes:

• all online presences (websites, online shops) that we operate
• social media presence and email communication
• mobile apps for smartphones and other devices

In short: This privacy policy applies to all areas in which personal data is processed in a structured manner within the company via the channels mentioned. If we enter into legal relationships with you outside of these channels, we will inform you separately if necessary.

legal basis

In the following privacy policy we provide you with transparent information on the legal principles and regulations, i.e. the legal basis of the General Data Protection Regulation, which enable us to process personal data.
As regards EU law, we refer to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016. You can of course consult this EU General Data Protection Regulation online on EUR-Lex, the gateway to EU law, at https://eur-lex.europa.eu/legal-content/DE/ALL/?uri=celex%3A32016R0679 read it.

We only process your data if at least one of the following conditions applies:

1. consent (Article 6 paragraph 1 letter a GDPR): You have given us your consent to process data for a specific purpose. An example would be the storage of the data you entered in a contact form.
2. Contract (Article 6 paragraph 1 letter b GDPR): We process your data in order to fulfil a contract or pre-contractual obligations with you. For example, if we conclude a purchase contract with you, we require personal information in advance.
3. Legal obligation (Article 6 paragraph 1 lit. c GDPR): We process your data if we are subject to a legal obligation. For example, we are legally obliged to keep invoices for accounting purposes. These usually contain personal data.
4. Legitimate Interests (Article 6 paragraph 1 letter f GDPR): In the case of legitimate interests that do not restrict your fundamental rights, we reserve the right to process personal data. For example, we need to process certain data in order to operate our website securely and economically efficiently. This processing is therefore a legitimate interest.

Other conditions such as the taking of recordings in the public interest and the exercise of public authority as well as the protection of vital interests do not generally apply to us. If such a legal basis should be applicable, it will be indicated in the appropriate place.

In addition to the EU regulation, national laws also apply:

• In Austria This is the Federal Law on the Protection of Natural Persons with regard to the Processing of Personal Data (Data Protection Act), short DSG.
• In Germany this applies Federal Data Protection Act, short BDSG.

If other regional or national laws apply, we will inform you about them in the following sections.

contact details of the person responsible

If you have any questions about data protection or the processing of personal data, you will find the contact details of the person responsible in accordance with Article 4 Paragraph 7 of the EU General Data Protection Regulation (GDPR) below:

storage period

Our general rule is that we only store personal data for as long as it is absolutely necessary to provide our services and products. This means that we delete personal data as soon as the reason for data processing no longer exists. In some cases, we are legally obliged to store certain data even after the original purpose no longer applies, for example for accounting purposes.

If you wish to have your data deleted or withdraw your consent to data processing, the data will be deleted as quickly as possible and unless there is an obligation to store it.

We will inform you below about the specific duration of each data processing operation, provided we have further information on this.

Rights under the General Data Protection Regulation

In accordance with Articles 13 and 14 of the GDPR, we inform you of the following rights to which you are entitled in order to ensure fair and transparent data processing:

• According to Article 15 GDPR, you have the right to know whether we process your data. If this is the case, you have the right to receive a copy of the data and to be informed of the following information:
  • for what purposes we carry out the processing;
  • the categories, i.e. the types of data that are processed;
  • who receives this data and, if the data is transferred to third countries, how security can be guaranteed;
  • how long the data is stored;
  • the existence of the right to rectification, erasure or restriction of processing and the right to object to processing;
  • that you can complain to a supervisory authority (links to these authorities can be found below);
  • the origin of the data if we did not collect it from you;
  • whether profiling is carried out, i.e. whether data is automatically evaluated in order to create a personal profile of you.
• You have the right to rectification of data according to Article 16 GDPR, which means that we must correct data if you find any errors.
• According to Article 17 GDPR, you have the right to erasure (“right to be forgotten”), which specifically means that you can request that your data be deleted.
• According to Article 18 GDPR, you have the right to restrict processing, which means that we may only store the data but not use it further.
• According to Article 20 GDPR, you have the right to data portability, which means that we will provide you with your data in a common format upon request.
• According to Article 21 GDPR, you have the right to object, which, once enforced, will result in a change in the processing.
  • If the processing of your data is based on Article 6 Paragraph 1 Letter e (public interest, exercise of official authority) or Article 6 Paragraph 1 Letter f (legitimate interest), you can object to the processing. We will then check as quickly as possible whether we can legally comply with this objection.
  • If data is used to conduct direct advertising, you can object to this type of data processing at any time. We may no longer use your data for direct marketing after this.
  • If data is used to carry out profiling, you can object to this type of data processing at any time. We may no longer use your data for profiling after this.
• According to Article 22 GDPR, you may have the right not to be subjected to a decision based solely on automated processing (e.g. profiling).
• According to Article 77 of the GDPR, you have the right to complain. This means that you can complain to the data protection authority at any time if you believe that the processing of personal data violates the GDPR.

In short: You have rights – do not hesitate to contact the responsible body listed above!

If you believe that the processing of your data violates data protection law or that your data protection rights have been violated in any other way, you can complain to the supervisory authority. In Austria, this is the Data Protection Authority, whose website you can find at https://www.dsb.gv.at/ In Germany, there is a data protection officer for each federal state. For further information, please contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI) The following local data protection authority is responsible for our company:

explanation of terms used

We always try to make our privacy policy as clear and understandable as possible. However, this is not always easy, especially when it comes to technical and legal topics. It often makes sense to use legal terms (such as personal data) or certain technical expressions (such as cookies, IP address). However, we do not want to use these without explanation. Below you will find an alphabetical list of important terms used that we may not have covered sufficiently in the previous privacy policy. If these terms have been taken from the GDPR and are definitions, we will also list the GDPR texts here and add our own explanations if necessary.

processor

Definition according to Article 4 of the GDPR

For the purposes of this Regulation, the following definitions apply:

"processor" a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;

Explanation: As a company and website owner, we are responsible for all data that we process from you. In addition to those responsible, there may also be so-called processors. This includes any company or person who processes personal data on our behalf. Processors can therefore be, in addition to service providers such as tax consultants, hosting or cloud providers, payment or newsletter providers or large companies such as Google or Microsoft.

consent

Definition according to Article 4 of the GDPR

For the purposes of this Regulation, the following definitions apply:

"Consent" any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data concerning him or her;

Explanation: As a rule, such consent is given on websites via a cookie consent tool. You are probably familiar with this. Whenever you visit a website for the first time, you are usually asked via a banner whether you agree to data processing. You can usually also make individual settings and decide for yourself which data processing you allow and which you do not. If you do not consent, no personal data may be processed about you. In principle, consent can of course also be given in writing, i.e. not via a tool.

Personal data

Definition according to Article 4 of the GDPR

For the purposes of this Regulation, the following definitions apply:

"personal data" all information relating to an identified or identifiable natural person (hereinafter ‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

Explanation: Personal data is all data that can identify you as a person. This is usually data such as:

• name
• address
• E-mail address
• postal address
• phone number
• birth date
• Identification numbers such as social security number, tax identification number, identity card number or registration number
• Bank details such as account number, credit information, account balances and much more.

Laut Europäischem Gerichtshof (EuGH) zählt auch Ihre IP-Adresse zu den personenbezogenen Daten. IT-Experten können anhand Ihrer IP-Adresse zumindest den ungefähren Standort Ihres Geräts und in weiterer Folge Sie als Anschlussinhabers feststellen. Daher benötigt auch das Speichern einer IP-Adresse eine Rechtsgrundlage im Sinne der DSGVO. Es gibt auch noch sogenannte „besondere Kategorien“ der personenbezogenen Daten, die auch besonders schützenswert sind. Dazu zählen:

• rassische und ethnische Herkunft
• politische Meinungen
• religiöse bzw. weltanschauliche Überzeugungen
• die Gewerkschaftszugehörigkeit
• genetische Daten wie beispielsweise Daten, die aus Blut- oder Speichelproben entnommen werden
• biometrische Daten (das sind Informationen zu psychischen, körperlichen oder verhaltenstypischen Merkmalen, die eine Person identifizieren können).
  Gesundheitsdaten
• Daten zur sexuellen Orientierung oder zum Sexualleben

Profiling

Definition according to Article 4 of the GDPR

For the purposes of this Regulation, the following definitions apply:

„Profiling“ jede Art der automatisierten Verarbeitung personenbezogener Daten, die darin besteht, dass diese personenbezogenen Daten verwendet werden, um bestimmte persönliche Aspekte, die sich auf eine natürliche Person beziehen, zu bewerten, insbesondere um Aspekte bezüglich Arbeitsleistung, wirtschaftliche Lage, Gesundheit, persönliche Vorlieben, Interessen, Zuverlässigkeit, Verhalten, Aufenthaltsort oder Ortswechsel dieser natürlichen Person zu analysieren oder vorherzusagen;

Explanation: Beim Profiling werden verschiedene Informationen über eine Person zusammengetragen, um daraus mehr über diese Person zu erfahren. Im Webbereich wird Profiling häufig für Werbezwecke oder auch für Bonitätsprüfungen angewandt. Web- bzw. Werbeanalyseprogramme sammeln zum Beispiel Daten über Ihre Verhalten und Ihre Interessen auf einer Website. Daraus ergibt sich ein spezielles Userprofil, mit dessen Hilfe Werbung gezielt an eine Zielgruppe ausgespielt werden kann.

Verantwortlicher

Definition according to Article 4 of the GDPR

For the purposes of this Regulation, the following definitions apply:

„Verantwortlicher“ die natürliche oder juristische Person, Behörde, Einrichtung oder andere Stelle, die allein oder gemeinsam mit anderen über die Zwecke und Mittel der Verarbeitung von personenbezogenen Daten entscheidet; sind die Zwecke und Mittel dieser Verarbeitung durch das Unionsrecht oder das Recht der Mitgliedstaaten vorgegeben, so kann der Verantwortliche beziehungsweise können die bestimmten Kriterien seiner Benennung nach dem Unionsrecht oder dem Recht der Mitgliedstaaten vorgesehen werden;

Explanation: In unserem Fall sind wir für die Verarbeitung Ihrer personenbezogenen Daten verantwortlich und folglich der “Verantwortliche”. Wenn wir erhobene Daten zur Verarbeitung an andere Dienstleister weitergeben, sind diese “Auftragsverarbeiter”. Dafür muss ein “Auftragsverarbeitungsvertrag (AVV)” unterzeichnet werden.

Verarbeitung

Definition according to Article 4 of the GDPR

For the purposes of this Regulation, the following definitions apply:

„Verarbeitung“ jeden mit oder ohne Hilfe automatisierter Verfahren ausgeführten Vorgang oder jede solche Vorgangsreihe im Zusammenhang mit personenbezogenen Daten wie das Erheben, das Erfassen, die Organisation, das Ordnen, die Speicherung, die Anpassung oder Veränderung, das Auslesen, das Abfragen, die Verwendung, die Offenlegung durch Übermittlung, Verbreitung oder eine andere Form der Bereitstellung, den Abgleich oder die Verknüpfung, die Einschränkung, das Löschen oder die Vernichtung;

Anmerkung: Wenn wir in unserer Datenschutzerklärung von Verarbeitung sprechen, meinen wir damit jegliche Art von Datenverarbeitung. Dazu zählt, wie oben in der originalen DSGVO-Erklärung erwähnt, nicht nur das Erheben sondern auch das Speichern und Verarbeiten von Daten.

All texts are protected by copyright.

Quelle: privacy policy erstellt mit dem Datenschutz Generator für Österreich von AdSimple