Table of contents
- Data protection
- Automatic data storage
- Storage of personal data
- Rights under the General Data Protection Regulation
- Evaluation of visitor behavior
- TLS encryption with https
We have written this privacy statement (version 10.02.2021-111638420) to explain to you, in accordance with the requirements of the Primary Data Protection Regulation (EU) 2016/679, what information we collect, how we use data, and the choices you have as a visitor to this website.
Privacy statements usually sound very technical. This version, on the other hand, is intended to describe the most important things to you as simply and clearly as possible. As far as possible, technical terms are explained in a reader-friendly way. We also want to convey that we only collect and use information with this website if there is a corresponding legal basis. This is certainly not possible by providing the most concise, technical explanations possible, as is often standard practice on the Internet when it comes to data protection. I hope you find the following explanations interesting and informative, and perhaps there is one or the other piece of information that you did not know yet.
If questions still remain, we would like to ask you to follow the existing links and look at more information on third-party sites, or simply write us an e-mail. You can find our contact details in the imprint.
Automatic data storage
Nowadays, when you visit websites, certain information is automatically created and stored, including on this website. This collected data should be collected as sparingly as possible and only with justification. By the way, by website we mean the entirety of all web pages on your domain, i.e. everything from the home page (homepage) to the very last subpage (like this one). By domain, we mean, for example, example.de or sampleexample.com.
Even while you are visiting our website right now, our web server - that is the computer on which this website is stored - usually automatically saves data such as
- the complete Internet address (URL) of the accessed web page
- Browser und Browserversion (z. B. Chrome 87)
- das verwendete Betriebssystem (z. B. Windows 10)
- die Adresse (URL) der zuvor besuchten Seite (Referrer URL)
- the hostname and IP address of the device being accessed from (e.g. COMPUTERNAME and 220.127.116.11)
- Date and time
- in files called web server log files.
As a rule, these files are stored for two weeks and then automatically deleted. We do not pass on this data, but we cannot rule out the possibility that this data may be viewed by the authorities in the event of unlawful conduct.
In short, your visit is logged by our provider (company that runs our website on special computers (servers)), but we do not share your data!
Our website uses HTTP cookies to store user-specific data.
What exactly are cookies?
Whenever you browse the Internet, you use a browser. Popular browsers include Chrome, Safari, Firefox, Internet Explorer, and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.
Cookies store certain user data about you, such as language or personal page settings. When you return to our site, your browser transmits the "user-related" information back to our site. Thanks to cookies, our site knows who you are and offers you the setting you are used to. In some browsers, each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file.
The following graphic shows a possible interaction between a web browser such as Chrome and the web server. Here, the web browser requests a website and receives a cookie back from the server, which the browser uses again as soon as another page is requested.
There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie must be evaluated individually, as each cookie stores different data. Also, the expiration time of a cookie varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans or other "pests". Cookies also cannot access information on your PC.
For example, cookie data can look like this:
Wert: GA1.2.1326744211. 152111729905-9
Purpose: distinguishing website visitors
Expiration date: after 2 years.
A browser should be able to support these minimum sizes:
- At least 4096 bytes per cookie
- At least 50 cookies per domain
- At least 3000 cookies in total
What are the types of cookies?
We can distinguish 4 types of cookies:
These cookies are necessary to ensure basic website functionality. For example, it needs these cookies when a user puts a product in the shopping cart, then continues surfing on other pages and only later goes to the checkout. Through these cookies, the shopping cart is not deleted even if the user closes his browser window.
These cookies collect information about user behavior and whether the user receives any error messages. In addition, these cookies are also used to measure the loading time and behavior of the website with different browsers.
These cookies provide a better user experience. For example, entered locations, font sizes or form data are stored.
Diese Cookies werden auch Targeting-Cookies genannt. Sie dienen dazu dem User individuell angepasste Werbung zu liefern. Das kann sehr praktisch, aber auch sehr nervig sein.
Usually, when you visit a website for the first time, you are asked which of these cookie types you want to allow. And, of course, this decision is also stored in a cookie.
How can I delete cookies?
If you want to determine which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:
If you do not want to have cookies in principle, you can set up your browser so that it always informs you when a cookie is to be set. In this way, you can decide for each individual cookie whether you allow the cookie or not. The procedure varies depending on the browser. It is best to search for the instructions in Google using the search term "delete cookies Chrome" or "disable cookies Chrome" in the case of a Chrome browser.
What about my privacy?
The so-called "Cookie Guidelines" have been in place since 2009. These state that the storage of cookies requires your consent. Within the EU countries, however, there are still very different reactions to these directives. In Austria, however, this directive was implemented in Section 96 (3) of the Telecommunications Act (TKG).
If you want to know more about cookies and are not afraid of technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments from the Internet Engineering Task Force (IETF) called "HTTP State Management Mechanism".
Storage of personal data
Personal data that you transmit to us electronically on this website, such as name, e-mail address, address or other personal information in the context of submitting a form or comments on the blog, will be used by us together with the time and IP address only for the purpose stated in each case, kept secure and not disclosed to third parties.
We thus use your personal data only for communication with those visitors who expressly request contact and for the processing of the services and products offered on this website. We do not disclose your personal data without consent, but we cannot exclude the possibility that this data may be viewed in the event of unlawful conduct.
If you send us personal data by e-mail - thus away from this website - we cannot guarantee secure transmission and protection of your data. We recommend that you never send confidential data by e-mail without encryption.
Rights under the General Data Protection Regulation
According to the provisions of the GDPR and the Austrian Data Protection Act (DSG), you are generally entitled to the following rights:
- Right of rectification (Article 16 GDPR)
- Right to erasure ("right to be forgotten") (Article 17 GDPR)
- Right to restriction of processing (Article 18 DSGVO)
- Right to notification - obligation to notify in connection with the rectification or erasure of personal data or the restriction of processing (Article 19 GDPR)
- Right to data portability (Article 20 GDPR)
- Right to object (Article 21 GDPR)
- Right not to be subject to a decision based solely on automated processing, including profiling (Article 22 GDPR)
If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been violated in any way, you can complain to the supervisory authority, which in Austria is the Data Protection Authority, whose website can be found at https://www.dsb.gv.at/.
Evaluation of visitor behavior
You can find out more about how to object to this analysis of visit data in the following data protection declaration.
TLS encryption with https
TLS, encryption and https sound very technical and they are. We use HTTPS (the Hypertext Transfer Protocol Secure stands for "secure hypertext transfer protocol") to transfer data tap-proof on the Internet.
This means that the complete transfer of all data from your browser to our web server is secured - no one can "listen in".
With this, we have introduced an additional layer of security and fulfill data protection through technology design Article 25(1) DSGVO). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data.
You can recognize the use of this data transmission protection by the small lock symbol in the upper left corner of the browser to the left of the internet address (e.g. beispielseite.de) and the use of the https scheme (instead of http) as part of our internet address.
If you would like to know more about encryption, we recommend a Google search for "Hypertext Transfer Protocol Secure wiki" to get good links to further information.
We use Google Maps of the company Google Inc. on our website. For the European area the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Maps allows us to better show you locations and thus adapt our service to your needs. By using Google Maps, data is transmitted to Google and stored on Google servers. Here we will now go into more detail about what Google Maps is, why we use this Google service, what data is stored and how you can prevent this.
What is Google Maps?
Google Maps is an Internet mapping service from the Google company. With Google Maps, you can search for exact locations of cities, landmarks, accommodations, or businesses online using a PC, tablet, or app. If companies are represented on Google My Business, other information about the company is displayed in addition to the location. To show how to get there, map sections of a location can be embedded in a website using HTML code. Google Maps shows the earth's surface as a street map or as an aerial or satellite image. Thanks to the Street View images and the high-quality satellite images, very accurate representations are possible.
Why do we use Google Maps on our website?
All our efforts on this site are aimed at providing you with a useful and meaningful time on our website. By integrating Google Maps we can provide you with the most important information about various locations. You can see at a glance where we are located. The directions always show you the best or fastest way to us. You can get the directions for routes by car, by public transport, on foot or by bike. For us, providing Google Maps is part of our customer service.
What data is stored by Google Maps?
In order for Google Maps to fully offer its service, the company must record and store data from you. This includes the search terms entered, your IP address and also the latitude and longitude coordinates. If you use the route planner function, the start address entered is also stored. However, this data storage happens on the websites of Google Maps. We can only inform you about this, but have no influence. Since we have integrated Google Maps into our website, Google sets at least one cookie (name: NID) in your browser. This cookie stores data about your user behavior. Google uses this data primarily to optimize its own services and to provide individual, personalized advertising for you.
The following cookie is set in your browser due to the integration of Google Maps:
Purpose: NID is used by Google to customize ads to your Google search. With the help of the cookie, Google "remembers" your most frequently entered search queries or your previous interaction with ads. This way, you will always get tailored ads. The cookie contains a unique ID that Google uses to collect your personal settings for advertising purposes.
Expiration date: after 6 months.
Note: We can not guarantee completeness in the information of the stored data. Especially when using cookies, changes can never be excluded. To identify the cookie NID, a separate test page was created, where only Google Maps was integrated.
How long and where is the data stored?
Google servers are located in data centers around the world. However, most servers are located in America. For this reason, your data is also increasingly stored in the USA. Here you can read exactly where the Google data centers are located: https://www.google.com/about/datacenters/inside/locations/?hl=de.
Google distributes the data on different data carriers. This means that the data can be retrieved more quickly and is better protected against any attempts at manipulation. Each data center also has special emergency programs. If, for example, there are problems with Google's hardware or a natural disaster paralyzes the servers, the data will pretty much remain protected anyway.
Google stores some data for a set period of time. For other data, Google only offers the option to delete it manually. Furthermore, the company also anonymizes information (such as advertising data) in server logs by deleting part of the IP address and cookie information after 9 and 18 months, respectively.
How can I delete my data or prevent data storage?
With the automatic deletion of location and activity data introduced in 2019, location and web/app activity information will be stored for either 3 or 18 months - depending on your decision - and then deleted. In addition, you can also manually delete this data from your history at any time via your Google account. If you want to completely prevent your location tracking, you need to pause the "Web and App Activity" section in Google Account. Click "Data and personalization" and then click the "Activity setting" option. Here you can turn the activities on or off.
In your browser, you can also disable, delete or manage individual cookies. Depending on which browser you use, this always works slightly differently. The following instructions show how to manage cookies in your browser:
If you do not want to have cookies in principle, you can set up your browser so that it always informs you when a cookie is to be set. This way, you can decide for each individual cookie whether you allow it or not.