Data protection
Privacy
This data protection declaration (version 03.01.2020-221111599) has been created to explain to you in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679 what information we collect, how we use data and what choices you have as a visitor to this website
Unfortunately, it is in the nature of things that these explanations sound very technical, but we have tried to describe the most important things as simply and as clearly as possible.
Automatic data storage
When you visit websites these days, certain information is automatically created and stored, including on this website.
If you visit our website as it is now, our web server (computer on which this website is stored) automatically saves data such as
- the address (URL) of the accessed website
- Browser und Browserversion
- the operating system used
- the address (URL) of the previously visited page (referrer URL)
- the host name and the IP address of the device from which access is made
- Date and time
in files (web server log files).
As a rule, web server log files are stored for two weeks and then automatically deleted. We do not pass on this data, but we cannot rule out that this data will be viewed in the event of illegal behavior.
Cookies
Our website uses HTTP cookies to save user-specific data.
In the following we explain what cookies are and why they are used so that you can better understand the following data protection declaration.
What are Cookies?
Whenever you surf the Internet, you are using a browser. Well-known browsers are, for example, Chrome, Safari, Firefox, Internet Explorer and Microsoft Edge. Most websites save small text files in your browser. These files are called cookies.
One thing cannot be dismissed out of hand: Cookies are really useful little helpers. Almost every website uses Cookies. More precisely, they are HTTP cookies, as there are also other cookies for other areas of application. HTTP cookies are small files that our website stores on your computer. These cookie files are automatically placed in the cookie folder, which is the “brain” of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.
Cookies save certain user data about you, such as language or personal page settings. When you call up our site again, your browser transmits the “user-related” information back to our site. Thanks to cookies, our website knows who you are and offers you the settings you are used to. In some browsers, each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file.
There are both first-party cookies and third-party cookies. First-party cookies are created directly from our side, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie must be evaluated individually, as each cookie stores different data. The expiry time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans or other “pests”. Cookies are not able to call up data stored on your PC
For example, cookie data can look like this:
Name: _ga
Value: GA1.2.1326744211.152221111599-6
Useage: Differentiation of website visitors
Expiry date: after 2 years
A browser should be able to support these minimum sizes:
- Minimum 4096 Bytes pro Cookie
- Minimum 50 Cookies pro Domain
- Minimum 3000 Cookies in total
What types of Cookies are there?
The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the data protection declaration. At this point we would like to briefly discuss the different types of HTTP cookies.
There are 4 types of cookies:
Essential cookiesstrong,
These cookies are necessary to ensure the basic functionality of the website. For example, these cookies are needed when a user puts a product in the shopping cart, then continues surfing on other pages and only goes to checkout later. These cookies do not delete the shopping cart, even if the user closes his browser window.
Appropriate cookiesstrong,
These cookies collect information about user behavior and whether the user receives any error messages. In addition, these cookies are used to measure the loading time and the behavior of the website with different browsers.
Goal-oriented cookiesstrong,
These cookies ensure better usability. For example, entered locations, font sizes or form data are saved.
Advertising cookiesstrong,
These cookies are also called targeting cookies. They serve to deliver customized advertising to the user. That can be very practical, but also very annoying.
When you visit a website for the first time, you will usually be asked which of these types of cookies you would like to allow. And of course this decision is also saved in a cookie.
How can I delete Cookies?
You decide for yourself how and whether you want to use cookies. Regardless of which service or website the cookies originate from, you always have the option of deleting, deactivating or only partially accepting cookies. For example, you can block third-party cookies but allow all other cookies.
If you want to find out which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:
Chrome: Delete, activate and manage cookies in Chrome
Safari: manage cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have stored on your computer
Internet Explorer: deleting and managing cookies
Microsoft Edge: Deleting and managing cookies
If you generally do not want cookies, you can set up your browser so that it always informs you when a cookie is to be set. For each individual cookie, you can decide whether or not to allow the cookie. The procedure is different depending on the browser. It is best to search for the instructions in Google with the search term “delete cookies Chrome” or “deactivate cookies Chrome” in the case of a Chrome browser.
What about my data protection?
The so-called “cookie guidelines” have existed since 2009. It states that the storage of cookies requires your consent. Within the EU countries, however, there are still very different reactions to these guidelines. In Austria, however, this directive was implemented in Section 96 Paragraph 3 of the Telecommunications Act (TKG).
If you want to know more about cookies and don’t shy away from technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called “HTTP State Management Mechanism”.
Storage of personal data
Personal data that you transmit to us electronically on this website, such as name, e-mail address, address or other personal information in the context of submitting a form or comments in the blog, are stored by us together with the time and the IP address. Address is only used for the specified purpose, stored securely and not passed on to third parties.
We therefore only use your personal data for communication with those visitors who expressly request contact and for processing the services and products offered on this website. We do not pass on your personal data without your consent, but we cannot rule out that this data will be viewed in the event of illegal behavior.
If you send us personal data by e-mail – outside of this website – we cannot guarantee secure transmission and protection of your data. We recommend that you never send confidential data unencrypted by email.
Rights according to the General Data Protection Regulation
Rights according to you, according to the provisions of the GDPR and the Austrian Data Protection Act (DSG), you are basically entitled to the following rights: General Data Protection Regulation
- Right to rectification (Article 16 GDPR)
- Right to erasure (“right to be forgotten”) (Article 17 GDPR)
- Right to restriction of processing (Article 18 GDPR)
- Right to notification – obligation to notify in connection with the correction or deletion of personal data or the restriction of processing (Article 19 GDPR)
- Right to data portability (Article 20 GDPR)
- Right to object (Article 21 GDPR)
- Right not to be subject to a decision based solely on automated processing – including profiling (Article 22 GDPR)
If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, you can complain to the supervisory authority, which is the data protection authority in Austria whose website you can find at https: // www. Find dsb.gv.at/.
Google Maps privacy policy
We use Google Maps from Google Inc. on our website. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA). With Google Maps we can show you locations better and thus adapt our service to your needs. By using Google Maps, data is transferred to Google and stored on Google’s servers. Here we want to go into more detail about what Google Maps is, why we use this Google service, which data is stored and how you can prevent this.
What is Google Maps?
Google Maps is an internet map service from Google Inc. With Google Maps you can search for exact locations of cities, sights, accommodations or companies online using a PC, tablet or app. If companies are represented on Google My Business, additional information about the company is displayed in addition to the location. In order to show how to get there, map sections of a location can be integrated into a website using HTML code. Google Maps shows the earth’s surface as a road map or as an aerial or satellite image. Thanks to the Street View images and the high-quality satellite images, very precise representations are possible.
Why do we use Google Maps on our website?
All of our efforts on this page are aimed at providing you with a useful and meaningful time on our website. By integrating Google Maps, we can provide you with the most important information about various locations. You can see at a glance where we are based. The route description always shows you the best or fastest way to us. You can find the route for routes by car, public transport, on foot or by bike. For us, the provision of Google Maps is part of our customer service.
Which data is saved by Google Maps?
In order for Google Maps to be able to offer its full service, the company must record and save data from you. This includes the search terms entered, your IP address and the latitude and longitude coordinates. f you use the route planner function, the entered start address is also saved. However, this data storage takes place on the Google Maps website. We can only inform you about it, but we cannot influence it. Since we have integrated Google Maps into our website, Google places at least one cookie (name: NID) in your browser. This cookie stores data about your user behavior. Google uses this data primarily to optimize its own services and to provide you with individual, personalized advertising.
The following cookie is set in your browser due to the integration of Google Maps:
Name: NID
Value: 188=h26c1Ktha7fCQTx8rXgLyATyITJ221111599-5
Useage: NID is used by Google to tailor advertisements to your Google searches. With the help of the cookie, Google “remembers” your most frequently entered search queries or your previous interaction with advertisements. So you always get customized advertisements. The cookie contains a unique ID that Google uses to collect your personal settings for advertising purposes.
Expiry date: after 6 months
Note: We cannot guarantee that the information stored is complete. Changes can never be ruled out, especially when using cookies. In order to identify the NID cookie, a separate test page was created, where only Google Maps was integrated.
How long and where will the data be stored?
The Google servers are located in data centers all over the world. Most of the servers are located in America, however. For this reason, your data is also increasingly stored in the USA. Here you can read exactly where the Google data centers are located: https://www.google.com/about/datacenters/inside/locations/?hl=de
Google distributes the data on various data carriers. This means that the data can be retrieved more quickly and is better protected against any attempts at manipulation. Each data center also has special emergency programs. If, for example, there are problems with the Google hardware or a natural disaster paralyzes the servers, the data is still pretty much protected.
Google stores some data for a specified period of time. For other data, Google only offers the option of manually deleting them. The company also anonymizes information (such as advertising data) in server logs by storing part of the IP address and cookie information after 9 and 18 respectively Months clears.
How can I delete my data or prevent data storage?
With the automatic deletion function for location and activity data introduced in 2019, information on location determination and web / app activity – depending on your decision – is stored for either 3 or 18 months and then deleted. In addition, you can manually delete this data from the history at any time via the Google account. If you want to completely prevent your location from being recorded, you must pause the “Web and app activity” section in your Google account. Click Data & Personalization, then click the Activity Settings option. Here you can turn the activities on or off.
You can also deactivate, delete or manage individual cookies in your browser. Depending on which browser you are using, this always works a little differently. The following instructions show how to manage cookies in your browser:
Chrome: Delete, activate and manage cookies in Chrome
Safari: manage cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have stored on your computer
Internet Explorer: deleting and managing cookies
Microsoft Edge: Deleting and managing cookies
If you generally do not want cookies, you can set up your browser so that it always informs you when a cookie is to be set. In this way, you can decide for each individual cookie whether or not to allow it.
Google is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. You can find more information on this at https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI. If you want to learn more about data processing by Google, we recommend the company’s own data protection declaration at https://policies.google.com/privacy?hl=de.
Google reCAPTCHA Data protection
Our primary goal is to secure and protect our website for you and for us in the best possible way. To ensure this, we use Google reCAPTCHA from Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA). With reCAPTCHA we can determine whether you are really a flesh and blood human and not a robot or other spam software. We understand spam as any unsolicited information that comes to us electronically. With the classic CAPTCHAS, you mostly had to solve text or picture puzzles to check. With reCAPTCHA from Google, we usually don’t have to bother you with such puzzles. In most cases, it is sufficient to simply tick the box and confirm that you are not a bot. With the new Invisible reCAPTCHA version you don’t even have to check the box anymore. How this works exactly and, above all, which data is used for it, you will find out in the course of this data protection declaration.
What is reCAPTCHA?
reCAPTCHA is a free captcha service from Google that protects websites from spam software and abuse by non-human visitors. The most common use of this service is when filling out forms on the Internet. A captcha service is a type of automatic Turing test that is designed to ensure that an action on the Internet is carried out by a human and not by a bot. In the classic Turing test (named after the computer scientist Alan Turing), a person determines the distinction between bot and human. With captchas, this is also done by the computer or a software program. Classic captchas work with small tasks that are easy for humans to solve, but are very difficult for machines. With reCAPTCHA you no longer have to actively solve puzzles. The tool uses modern risk techniques to distinguish people from bots. Here you only have to tick the text field “I am not a robot” or with Invisible reCAPTCHA even this is no longer necessary. With reCAPTCHA, a JavaScript element is integrated into the source text and then the tool runs in the background and analyzes your user behavior. From these user actions, the software calculates a so-called captcha score. Google uses this score to calculate the probability that you are human before entering the captcha. reCAPTCHA or captchas in general are always used when bots could manipulate or abuse certain actions (such as registrations, surveys, etc.).
Why do we use reCAPTCHA on our website?
We only want to welcome people of flesh and blood on our side. Bots or spam software of all kinds can confidently stay at home. That is why we do all we can to protect ourselves and offer you the best possible user-friendliness. For this reason we use Google reCAPTCHA from Google. So we can be pretty sure that we will remain a “bot-free” website. By using reCAPTCHA, data is transmitted to Google in order to determine whether you are really human. reCAPTCHA therefore serves the security of our website and consequently also your security. For example, without reCAPTCHA, it could happen that a bot registers as many e-mail addresses as possible in order to “spam” on forums or blogs with unwanted advertising content. With reCAPTCHA we can avoid such bot attacks.
Which data is saved by reCAPTCHA?
reCAPTCHA collects personal data from users in order to determine whether the actions on our website really originate from people. The IP address and other data that Google needs for the reCAPTCHA service can therefore be sent to Google. IP addresses are almost always shortened beforehand within the member states of the EU or other signatory states to the Agreement on the European Economic Area before the data ends up on a server in the USA. The IP address will not be combined with other Google data unless you are logged into your Google account while using reCAPTCHA. First, the reCAPTCHA algorithm checks whether Google cookies from other Google services (YouTube, Gmail, etc.) have already been placed on your browser. ReCAPTCHA then sets an additional cookie in your browser and takes a snapshot of your browser window.
The following list of collected browser and user data does not claim to be complete. Rather, they are examples of data that, to our knowledge, are processed by Google.
- Referrer URL (the address of the page from which the visitor comes)
- IP-Adresse (z.B. 256.123.123.1)
- Information about the operating system (the software that enables the operation of your computer. Known operating systems are Windows, Mac OS X or Linux)
- Cookies (small text files that save data in your browser)
- Mouse and keyboard behavior (every action you perform with the mouse or keyboard is saved)
- Date and language settings (which language or which date you have preset on your PC is saved)
- All Javascript objects (JavaScript is a programming language that enables websites to adapt to the user. JavaScript objects can collect all possible data under one name)
- Screen resolution (shows how many pixels the image display consists of)
It is undisputed that Google uses and analyzes this data even before you click the “I am not a robot” tick. With the Invisible reCAPTCHA version, there is even no ticking and the entire recognition process runs in the background. How much and which data Google stores exactly cannot be learned from Google in detail.
The following cookies are used by reCAPTCHA: Here we refer to the reCAPTCHA demo version from Google at https://www.google.com/recaptcha/api2/demo. All of these cookies require a unique identifier for tracking purposes. Here is a list of cookies that Google reCAPTCHA has set on the demo version:
Name: IDE
Value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-221111599-8
Purpose: This cookie is set by the DoubleClick company (also owned by Google) to register and report the actions of a user on the website when dealing with advertisements. In this way, advertising effectiveness can be measured and appropriate optimization measures can be taken. IDE is stored in browsers under the domain doubleclick.net.
Expiry date: after one year
Name: 1P_JAR
Value: 2019-5-14-12
Purpose: This cookie collects statistics on website usage and measures conversions. A conversion occurs, for example, when a user becomes a buyer. The cookie is also used to show relevant advertisements to users. The cookie can also be used to prevent a user from seeing the same ad more than once.
Expiry date: after one month
Name: ANID
Value: U7j1v3dZa2211115990xgZFmiqWppRWKOr
Purpose: We could not find out much information about this cookie. In Google’s data protection declaration, the cookie is used in connection with “advertising cookies” such as. B. “DSID”, “FLC”, “AID”, “TAID” mentioned. ANID is stored under the domain google.com.
Expiry date: after 9 months
Name: CONSENT
Value: YES+AT.de+20150628-20-0
Purpose: The cookie stores the status of a user’s consent to the use of various Google services. CONSENT is also used for security in order to check users, prevent fraudulent login information and protect user data from unauthorized attacks.
Expiry date: after 19 years
Name: NID
Value: 0WmuWqy221111599zILzqV_nmt3sDXwPeM5Q
Useage: NID is used by Google to tailor advertisements to your Google searches. With the help of the cookie, Google “remembers” your most frequently entered search queries or your previous interaction with advertisements. So you always get customized advertisements. The cookie contains a unique ID in order to collect personal settings of the user for advertising purposes.
Expiry date: after 6 months
Name: DV
Value: gEAABBCjJMXcI0dSAAAANbqc221111599-4
Purpose: As soon as you have ticked the “I am not a robot” tick, this cookie will be set. The cookie is used by Google Analytics for personalized advertising. DV collects information in an anonymous form and is also used to distinguish between users.
Expiry date: after 10 minutes
Note: This list cannot claim to be complete, as experience has shown that Google changes the choice of their cookies again and again.
How long and where will the data be stored?
By inserting reCAPTCHA, your data will be transferred to the Google server. Where exactly this data is stored is not clearly indicated by Google, even after repeated inquiries. Without having received a confirmation from Google, it can be assumed that data such as mouse interaction, time spent on the website or language settings will be stored on the European or American Google servers. The IP address that your browser transmits to Google is generally not merged with other Google data from other Google services. However, if you are logged into your Google account while using the reCAPTCHA plug-in, the data will be merged. The different data protection regulations of Google apply for this.
How can I delete my data or prevent data storage?
If you do not want any data about you or your behavior to be transmitted to Google, you must completely log out of Google and delete all Google cookies before you visit our website or use the reCAPTCHA software. In principle, the data is automatically transmitted to Google as soon as you visit our website. To delete this data again, you must contact Google support at https://support.google.com/?hl=de&tid=221111599.
So if you use our website, you agree that Google LLC and its representatives automatically collect, process and use data.
You can find out a little more about reCAPTCHA on Google’s web developer page at https://developers.google.com/recaptcha/. Google goes into the technical development of the reCAPTCHA in more detail here, but you will look in vain for precise information about data storage and data protection issues. A good overview of the basic use of data by Google can be found in the in-house data protection declaration at https://www.google.com/intl/de/policies/privacy/.
Source: Created with the data protection generator from firmenwebseiten.at in cooperation with Dr. Wallenti