Privacy Policy
introduction
In this privacy policy, we present our approach to data collected from users who access our website at www.Haus-in-Griechenland.at or otherwise provide us with personal data. The company collects personal data when data subjects provide it namely - within the scope of visiting and using the website, - within the scope of an inquiry (also with self-employed commercial agents and brokers) or in the course of our representatives making contact, - within the scope of an application as an employee or self-employed commercial agent - with a (other ) Contact (e.g. via contact form or e-mail). The categories of data that can be collected are as follows: name, age, date of birth, address, economic status. Which (further) data is collected in detail can be seen from the respective input forms or from the queries by the employees of the company or by the self-employed sales representatives. In the case of applications, all data provided by the applicant can be processed.
The Austrian data protection authority is responsible within the meaning of the General Data Protection Regulation (GDPR).
user rights
You have the following rights: Request confirmation as to whether and to what extent your personal data is being used and processed, as well as access to the personal data held about you and additional information. A copy of the personal data that you have voluntarily provided to us in a structured, request a common and machine-readable format request a rectification of the personal information we hold about you request the erasure of your personal information object to us processing your personal information request restriction of our processing of your personal information lodge a complaint with a supervisory authority Notice Please note, however, that these rights are not unlimited and are subject to our own legitimate interests and official regulations. Rights of the data subject In accordance with Art. 15 GDPR, the data subject has the right to request confirmation from the person responsible - with proof of their identity - as to whether personal data relating to them are being processed. If this is the case, the person concerned also has a right to information about this personal data and to the information specified in Article 15 (1) GDPR, such as the categories of personal data and other information (note: these correspond to the information contained in this declaration ). The data subject has the right to request the person responsible to immediately correct incorrect personal data concerning them (right to correction in accordance with Article 16 GDPR). Under the conditions of Article 17 GDPR, the data subject has a right to erasure ("right to be forgotten") of the personal data concerning them, for example if the data is not used for the purposes for which it was collected or processed in any other way are no longer necessary or are being processed unlawfully, or in the case of processing based on a declaration of consent, if the data subject revokes their consent. If the company has made the personal data that must be deleted public, there is the following obligation under Art. 21 (2) GDPR: Taking into account the available technology and the resulting costs, appropriate measures are taken to inform other persons responsible about the deletion to be carried out . This affects those responsible who process the personal data. You must be informed that the person concerned has requested the deletion of all links to this personal data, copies and replications of this personal data. However, the right to erasure does not apply if there is no reason for erasure (i.e. none of the above reasons apply) or if the exceptions specified in Article 17 (3) GDPR apply, for example if the processing is required to fulfill a legal obligation under the EU -law or is required under Austrian law (e.g. statutory retention requirements) or to assert, exercise or defend legal claims. In accordance with Art. 18 GDPR, the data subject has the right to restriction of processing, e.g. if the data subject disputes the accuracy of the processed data, the processing is unlawful or there is a dispute between the company and the data subject as to whether there is a right to erasure. In this case, the company will only store the data in question, but will not process it in any other way. If the person concerned requests deletion or restriction or raises an objection (see at the end of this data protection declaration), they will be informed immediately about the measures taken or about the reasons that the company believes prevent implementation. In accordance with Article 20 GDPR, the data subject has the right to receive the personal data relating to them that they have provided to the company in a structured, common and machine-readable format. However, this only applies if the processing is carried out using automated procedures. Furthermore, she has the right to transmit this data to another person responsible. The controller to whom the personal data was provided must not prevent them from doing so (right to data portability). If technically feasible, you have the right to direct transmission from one controller to another. If you wish to exercise any of the rights listed here or require further information, please contact: Johann Cenker T 4312369058 F 43123690589 Liebermannstraße F15 /312 Campus-21 2345 Brunn am Gebirge The company has not appointed a data protection officer.
storage
We retain your personal information for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce our policies. Retention periods depend on the type of data collected and the purpose for which that data was collected, taking into account both the specifics of the case and the need to delete outdated, unused information as soon as possible. We retain customer personal information records, account setup documents, communications and other information in accordance with applicable laws and regulations. We may, at any time and in our sole discretion, correct, complete, or remove any incomplete or inaccurate information. Duration of data storage The personal data are stored until they are no longer necessary for the purposes for which they were collected or otherwise processed; in the case of processing based on a declaration of consent, until the data subject revokes their consent and there is no other legal basis for further processing (Article 17 (1) (b) GDPR); but in any case as long as the storage is necessary to fulfill a legal obligation (e.g. statutory storage obligations) or to assert, exercise or defend legal claims of the company.
Basis for data collection
The processing of your personal data (i.e. any data from which you can be identified by reasonable means; " personal data ") [insert statement here on the legal basis for the processing of personal data, for example:] is necessary for the performance of our contractual obligations to you to comply with and to provide our services to you, protect our legitimate interests, and comply with legal and financial regulatory obligations to which we are subject. By using this website, you consent to the collection, storage, use, disclosure and other uses of your personal information as described in this Privacy Policy. Please read the privacy policy carefully before making any decisions.
What data is collected?
We collect two types of data and information from users. The first category includes non-identifying and non-identifiable user information provided or collected through use of the Website (“Non-Personal Information”). We do not know the identity of the user from whom non-personal information was collected. The Non-Personal Information that may be collected includes Aggregated Usage Data and Technical Data transmitted from your device, including certain software and hardware information (e.g. browser and operating system used on the device, language preference, access time, etc .). We use this data to improve the functionality of our website. We may also collect data about your activity on the website (e.g. pages viewed, browsing behavior, clicks, actions, etc.). The second category includes personal data, which is data that identifies an individual or can be identified through reasonable measures. Such data includes: Device data: We collect personal data from your device. Such data includes geolocation data, IP address, unique identifiers (e.g. MAC address and UUID) and other data resulting from your activity on the website. If you contact us using the form on the website or by e-mail, the data you provide will be stored with us for six months for the purpose of processing the request and in the event of follow-up questions. We do not pass on this data without your consent. Since business documents have to be archived for at least three years and business correspondence relevant to tax law for up to seven years (§ 131 f. BAO, § 190 UGB and UStG), these deadlines apply to business transactions.
How do we get data about you?
We obtain your personal data from various sources: We receive such data when you use our website or access it in connection with one of our services. We receive such data from other providers, services and from public registers (e.g. from data traffic analysis providers).
How is the data used? Who is the data shared with?
We do not share user data with third parties, except as described in this privacy policy. We use data for the following purposes: To communicate with you (sending notices regarding our services, providing technical information and, if necessary, processing customer service requests) To inform you about new updates and services To place advertisements as part of the use of our website (further information under " Advertising") To market our websites and products (further information under "Marketing") For statistical and analytical purposes that serve to improve the website In addition to the various uses listed above, we may also pass on personal data to our subsidiaries, affiliated companies and subcontractors. In addition to the purposes set out in this Privacy Policy, we may share Personal Data with our trusted third party providers based in different jurisdictions around the world for the following reasons: Hosting and operating our website Providing our services, including personalizing our website display Storing and processing such data on our behalf; serving ads and enabling us to measure the success of our advertising campaigns; retargeting users; providing marketing offers and promotional materials related to our website and services; conducting studies, technical diagnostics or analysis in the following cases we rely on a legitimate interest: - in the initiation of business transactions by the company, - for the adequate information of customers about the products offered or brokered by the company and services, events, campaigns, etc., ie advertising. This also includes the data being transmitted to processors for this purpose, if this is necessary for the implementation of this or other marketing measures, statistical evaluations, etc. - for internal administration in the group, if the company belongs to or is associated with one is connected to such, - for processing by contract processors (e.g. external accounting), - to obtain credit reports, - to prevent fraud or illegal use of the website. Apart from the latter case, the data automatically collected and stored by the provider on the web server (e.g. browser used, operating system, reference page, IP address, time) are not evaluated and are not assigned to a specific person. If comments or form entries are left, the data entered and their IP addresses are saved in order to track illegal content. We may also disclose information when we have a good-faith belief it is helpful or appropriate to: (i) comply with any applicable law, regulation, legal process or governmental request; (ii) enforce our policies (including our Agreement) and, if necessary, investigate possible violations thereof; (iii) investigate, detect, prevent or take action against illegal activities or other wrongdoing, suspected fraud or security issues; (iv) establish or enforce our own legal rights or defend ourselves against the claims of others; (v) protect the rights, property, or our safety, the safety of our users, your safety, or the safety of others; or to (vi) cooperate with law enforcement authorities and/or protect intellectual property or other legal rights. Recipients of the data There is no disclosure of the personal data of the person concerned to recipients other than the company (i.e. to other natural or legal persons, authorities, institutions or other bodies) (but see the information in points j, k and l ). Excluded from this are - any appointed independent commercial agents (to contact the interested party, their advice from the agent, etc.); - any third parties named by the data subject (e.g. architects or professionals); - Authorities that may receive personal data as part of a specific investigation under Union law or Austrian law; the processing of this data by the named authorities must be carried out in accordance with the applicable data protection regulations; - Contract processors who process the personal data on behalf of the company (e.g.: printers for sending newsletters; for processing payments, the bank commissioned with processing the payment). The company does not intend to transfer the personal data to a third country or to an international organization. Right of appeal to the supervisory authority The data subject has the right to appeal to the data protection authority if they believe that the processing of their personal data violates the GDPR or Section 1 or Article 2 1st main part of the Data Protection Act (DSG) in the version of the Data Protection Amendment Act 2018.
Cookies
We and our partners use cookies to provide the relevant services. This also applies when you visit our website or access our services. A "cookie" is a small piece of data that is assigned to your device when you visit a website from that website. Cookies are useful and can be used for different purposes. These include e.g. B. easier navigation between different pages, the automatic activation of certain functions, saving your settings and optimized access to our services. The use of cookies also enables us to show you relevant advertising tailored to your interests and to collect statistical information about your use of our services. This website uses the following types of cookies: a. "Session cookies" that ensure normal system use. Session cookies are only stored for a limited time during a session and are deleted from your device as soon as you close your browser. b. "Permanent cookies", which are only read from the website and are not deleted when you close the browser window, but are stored on your computer for a certain period of time. This type of cookie enables us to identify you on your next visit and, for example, to save your settings. c. "Third-party cookies" set by other online services that have their own content on the page you are visiting. This can e.g. B. external web analytics companies that record and analyze access to our website. Cookies do not contain any personally identifiable information that identifies you, but we may link the personal information we store to the information contained in the cookies. You can remove cookies via the device settings of your device. Follow the relevant instructions. Please note that disabling cookies can restrict certain functions when using our website. The tool we use is based on Snowplow Analytics technology. The data we collect about the use of our website includes, for example, how often users visit the website or which areas are accessed. The tool we use does not collect any personal data and is only used by our web hosting provider and service provider to improve their own offering.
Use of Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called “cookies”). In this respect, the company relies on an overriding legitimate interest in creating website access statistics in a cost-efficient and simple manner (Art 6 Para 1 lit f General Data Protection Regulation). The information generated by the cookie about the use of this website is usually transmitted to a Google server in the USA and stored there. If IP anonymization is activated on this website, however, the IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate the use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. However, the IP address transmitted by the browser as part of Google Analytics is not merged with other Google data. There is the option set out under point (j) to prevent the storage of cookies by setting the browser software accordingly; we would like to point out to you however that in this case not all functions of this website can be used in full. In addition, the collection of the data generated by the cookie and related to the use of the website (including the IP address) to Google and the processing of this data by Google can be prevented by clicking on the following link (http://tools. google.com/dlpage/gaoptout?hl=de) the browser plugin is downloaded and installed. You can find more information on the terms of use and data protection at www.google.com/analytics/terms/de.html or at support.google.com/analytics/answer/6004245. On this website, Google Analytics was expanded to include the code "gat._anonymizeIp();" to ensure that IP addresses are recorded anonymously (so-called IP masking).
Google Maps
The Google Maps API service is used on the microsites. This service is a service of Google, Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. As a result, at least the following data is transmitted to Google, Inc.: IP address, time of visit to the website, screen resolution of the visitor, URL of the website (referrer), browser identifier (user agent) and search terms. The data transfer takes place regardless of whether there is a user account with Google through which the user is logged in, or whether there is no user account. If the user is logged in, this data is assigned directly to the account. If this assignment to the profile is not desired, the user must log out before activating the button. Google, Inc. stores this data as usage profiles and uses them for advertising, market research and/or needs-based design of its website. The user has the right to object to the creation of these user profiles, whereby Google Inc. must be contacted to exercise this right. Further information on the purpose and scope of data collection and its processing by Google, Inc. is available at www.google.at/intl/de/policies/privacy/. By using the Google Maps service, the user agrees to the data processing by Google, Inc. A processing of the affected data by the person responsible does not take place.
Use of script libraries (Google Web Fonts)
To ensure that our content is displayed correctly and graphically appealing in every browser, we use script and font libraries such as Google Web Fonts ( https://www.google.com/webfonts ) for this website. Google Web Fonts are transferred to your browser's cache, so they only need to be loaded once. If your browser does not support Google Web Fonts or denies access, the content will be displayed in a standard font. When calling up script or font libraries, a connection to the operator of the library is automatically established. It is theoretically possible for this operator to collect data. It is currently not known whether and for what purpose the operators of the relevant libraries actually collect data. Here you will find the data protection regulations of the operator of the Google library: https://www.google.com/policies/privacy.
Collection of Data by Third Parties
This policy only addresses the use and disclosure of information we collect from you. If you publish information on other websites or disclose it to third parties on the Internet, different provisions may apply. Therefore, always read the terms and conditions and privacy policy carefully when disclosing data. This Privacy Policy does not address the business practices of companies that we do not own or control, or anyone other than our employees and collaborators, including third parties, to whom we disclose information as described in this Privacy Policy.
How do we protect your data?
We implement the security measures on the website with great care and protect your data. We use industry standard procedures and policies to ensure the privacy of the information we collect and store and prevent unauthorized use of such information. We also require third parties to adhere to similar security requirements in accordance with this Privacy Policy. While we take reasonable steps to protect privacy, we cannot be responsible for the actions of those who gain unauthorized access to or misuse our website, and we make no warranty, express or implied, that we will prevent such access can prevent.
Transfer of data outside the European Economic Area
Note that some recipients may not be based in the European Economic Area. If this is the case, we will only transfer your data to countries approved by the European Commission with an appropriate level of data protection or ensure an appropriate level of data protection through a legal agreement.
Advertising
When you access our website, we may serve ads using third-party ad technology. This technology uses data about how you use the Services (e.g., by placing third-party cookies on your web browser) to serve ads. [Insert information about opt-out options from personalized advertising here, for example:] You can opt-out of many third-party ad networks, including those operated by members of the Network Advertising Initiative ("NAI") and the Digital Advertising Alliance ("DAA"). Information about the practices of NAI and DAA members, your choices regarding the use of such data by those companies, and how to opt-out of third-party ad networks operated by NAI and DAA members can be found on the respective website: http://optout.networkadvertising.org/#!/ and http://optout.aboutads.info/#!/.
Marketing
We may use your Personal Information such as your name, email address, phone number, etc. ourselves or transmit it to an external subcontractor to provide you with promotional materials about our Services that may be of interest to you. We respect your right to privacy. Therefore, you will always be given the opportunity to unsubscribe from further mailings in these marketing materials. If you unsubscribe, your email address or phone number will be removed from our marketing mailing lists. Note that even if you opt out of receiving our marketing emails, we will continue to send you important information emails that do not include an opt-out option. This includes maintenance notifications or administrative notifications.
corporate transaction
We may share information in the event of a corporate transaction (e.g., sale of significant business operations, merger, consolidation, or asset sale). If one of the above cases occurs, the acquirer or the relevant company assumes the rights and obligations set out in this data protection declaration.
minors
Protecting children's privacy is very important, especially online. The website is not designed for children and is not aimed at them. Use of our Services by minors is only permitted with the prior consent or authorization of a parent or legal guardian. We do not knowingly collect personal information from minors. If a parent or legal guardian becomes aware that his or her child has provided us with personal information without their consent, they can contact us at sophie@haus-in-griechenland.at.
Updates or changes to this Privacy Policy
We reserve the right to change or review this Privacy Policy from time to time. You can find the date of the current version under "Last modified on". Your continued use of the Platform following the posting of such changes on our website constitutes your consent to such changes to the Privacy Policy and constitutes your agreement to be bound by the modified terms.
How to reach us
If you have general questions about the website, the data we collect about you or the use of this data, please contact us at sophie@haus-in-griechenland.at.
Last changed on 05.12.2019