Eingangstür vom Liquid Spirits Büro

Privacy Policy

Introduction and Overview

We have created this privacy policy (version 17.03.2022-121644224) to explain to you, in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679 and applicable national laws, which personal data (referred to as “data”) we, as the data controller, and our commissioned processors (e.g., service providers) process, will process in the future, and what legal options you have. The terms used are intended to be gender-neutral.
In short: We aim to provide you with comprehensive information about the data we process about you.

Privacy policies usually sound very technical and use legal jargon. This privacy policy, however, aims to describe the most important things in as simple and transparent a manner as possible. Where helpful for transparency, technical terms are explained in a user-friendly way, links to further information are provided, and graphics are used. We aim to inform you in clear and simple language that we only process personal data as part of our business activities when there is a corresponding legal basis. This would not be possible if we provided brief, vague, and legalistic explanations, as is often the standard on the internet when it comes to privacy. We hope that you find the following explanations interesting and informative, and maybe there is information here that you did not know.

If you still have any questions, we ask that you contact the responsible party mentioned below or in the imprint, follow the available links, and review further information on third-party websites. You can, of course, also find our contact details in the imprint.

Scope

This privacy policy applies to all personal data processed by us within the company and to all personal data processed by companies commissioned by us (processors). By personal data, we mean information as defined in Article 4, No. 1 GDPR, such as a person’s name, email address, and postal address. The processing of personal data ensures that we can offer and bill for our services and products, whether online or offline. The scope of this privacy policy covers:

  • All online presences (websites, online stores) operated by us
  • Social media profiles and email communication
  • Mobile apps for smartphones and other devices

In short: This privacy policy applies to all areas in which personal data is systematically processed within the company via the channels mentioned. If we enter into legal relationships with you outside of these channels, we will inform you separately if necessary.

Legal Basis

In the following privacy policy, we provide you with transparent information on the legal principles and provisions, i.e., the legal bases of the General Data Protection Regulation (GDPR), that allow us to process personal data.
With regard to EU law, we refer to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016. You can, of course, read this EU GDPR online on EUR-Lex, the access point to EU law, at https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=celex%3A32016R0679.
We process your data only if at least one of the following conditions is met:

  1. Consent (Article 6(1)(a) GDPR): You have given us your consent to process data for a specific purpose. An example would be the storage of data you enter in a contact form.
  2. Contract (Article 6(1)(b) GDPR): We process your data to fulfill a contract or pre-contractual obligations with you. For example, if we enter into a sales contract with you, we need personal information in advance.
  3. Legal Obligation (Article 6(1)(c) GDPR): We process your data if we are subject to a legal obligation. For example, we are legally required to retain invoices for accounting purposes, which usually contain personal data.
  4. Legitimate Interests (Article 6(1)(f) GDPR): In the case of legitimate interests that do not infringe on your fundamental rights, we may process personal data. For instance, we need to process certain data to ensure the security and efficient operation of our website. This processing is considered a legitimate interest.
    Other conditions such as the exercise of rights in the public interest and the exercise of public authority, as well as the protection of vital interests, typically do not apply to us. Should such a legal basis apply, it will be indicated at the relevant point.

In addition to the EU regulation, national laws also apply:

  • In Austria, this is the Federal Act on the Protection of Natural Persons in the Processing of Personal Data (Datenschutzgesetz), abbreviated DSG.
  • In Germany, the Federal Data Protection Act (Bundesdatenschutzgesetz), abbreviated BDSG, applies.

If additional regional or national laws are applicable, we will inform you about them in the following sections.

Storage Period

We only store personal data for as long as it is necessary to provide our services and products. This is a general principle for us. This means that we delete personal data as soon as the reason for processing the data no longer exists. In some cases, we are legally required to store certain data even after the original purpose for processing has ended, such as for accounting purposes.
If you wish to have your data deleted or withdraw your consent to data processing, we will delete the data as quickly as possible, provided there is no obligation to retain it.
We will inform you further below about the specific duration of data processing if we have additional information regarding that.

Rights under the General Data Protection Regulation

According to Article 13 of the GDPR, you have the following rights to ensure fair and transparent data processing:

  • Right of Access (Article 15 GDPR): You have the right to know whether we process data about you. If we do, you are entitled to receive a copy of the data and the following information:
    • The purpose of the processing;
    • The categories of data being processed;
    • Who will receive the data and, if the data is transferred to third countries, how security can be guaranteed;
    • The duration of the data storage;
    • The existence of the right to rectification, erasure, or restriction of processing, and the right to object to processing;
    • The right to lodge a complaint with a supervisory authority (links to these authorities are provided below);
    • The origin of the data if we did not collect it from you;
    • Whether profiling is performed, meaning whether data is automatically evaluated to create a personal profile.
  • Right to Rectification (Article 16 GDPR): You have the right to request the correction of your data if you find any inaccuracies.
  • Right to Erasure (“Right to be Forgotten”) (Article 17 GDPR): You have the right to request the deletion of your data.
  • Right to Restriction of Processing (Article 18 GDPR): You have the right to restrict the processing of your data, meaning that we can only store it but not further use it.
  • Right to Data Portability (Article 19 GDPR): You have the right to request your data in a commonly used format.
  • Right to Object (Article 21 GDPR): You have the right to object to data processing, which will lead to a change in the processing.
    • If the processing of your data is based on Article 6(1)(e) (public interest, exercise of public authority) or Article 6(1)(f) (legitimate interest), you can object to the processing. We will check as soon as possible whether we can comply with your objection legally.
    • If data is used for direct marketing, you can object at any time. After this, we will no longer use your data for direct marketing.
    • If data is used for profiling, you can object at any time. We will no longer use your data for profiling after this.
  • Right Not to be Subject to Automated Decisions (Article 22 GDPR): You may have the right not to be subject to decisions based solely on automated processing (such as profiling).

In short: You have rights—don’t hesitate to contact the responsible party listed above!
If you believe that the processing of your data violates data protection law or that your rights under data protection law have been otherwise infringed, you can lodge a complaint with the supervisory authority. In Austria, this is the Data Protection Authority (Datenschutzbehörde), which you can find at https://www.dsb.gv.at/. In Germany, each federal state has its own data protection officer. For further information, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI). The local data protection authority responsible for our company is:

Austria Data Protection Authority

Head: Mag. Dr. Andrea Jelinek
Address: Barichgasse 40-42, 1030 Vienna
Phone: +43 1 52 152-0
Email: dsb@dsb.gv.at
Website: https://www.dsb.gv.at/

Data Security in Processing

To protect personal data, we have implemented both technical and organizational measures. Where possible, we encrypt or pseudonymize personal data. This makes it as difficult as possible for third parties to infer personal information from our data, within our capabilities.

Article 25 of the GDPR refers to “data protection by design and by default,” meaning that both software (e.g., forms) and hardware (e.g., server room access) should always consider security, and appropriate measures should be taken. Below, we will provide further details on specific measures, if necessary.

TLS Encryption with HTTPS

TLS, encryption, and HTTPS sound very technical—and they are. We use HTTPS (Hypertext Transfer Protocol Secure) to transmit data securely over the internet.

This means that the entire transmission of data from your browser to our web server is secured—no one can “eavesdrop.”

By implementing this, we add an extra layer of security and comply with data protection through technical design, as stated in Article 25(1) of the GDPR. Using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the internet, ensures that confidential data is protected.

You can recognize the use of this data transmission security by the small padlock icon located to the left of the website address (e.g., beispielseite.de) in your browser and the use of the HTTPS protocol (instead of HTTP) as part of our web address.

If you would like to know more about encryption, we recommend searching Google for “Hypertext Transfer Protocol Secure wiki” to find useful links for further information.

Communication

Communication Summary
???? Affected parties: All individuals who communicate with us via phone, email, or online forms
???? Processed data: e.g., phone number, name, email address, entered form data. More details can be found in the respective communication method used
???? Purpose: Processing communication with customers, business partners, etc.
???? Storage period: Duration of the business case and legal requirements
⚖️ Legal basis: Article 6(1)(a) GDPR (Consent), Article 6(1)(b) GDPR (Contract), Article 6(1)(f) GDPR (Legitimate Interests)

When you contact us and communicate via phone, email, or an online form, personal data may be processed.
The data is processed for handling and responding to your inquiry and the associated business transaction. The data will be stored for as long as necessary for the business case and as required by law.

Affected Individuals
All individuals who contact us through the communication channels we provide are affected by these processes.

Phone
When you call us, call data will be pseudonymized and stored on the respective device and with the telecommunication provider. Additionally, data such as name and phone number may be sent by email afterward and stored for responding to the inquiry. The data will be deleted once the business case is completed and legal requirements allow for it.

Email
When communicating via email, data may be stored on the respective device (computer, laptop, smartphone, etc.) and may be saved on the email server. The data will be deleted once the business case is completed and legal requirements allow for it.

Online Forms
When you communicate with us using an online form, the data will be stored on our web server and may be forwarded to one of our email addresses. The data will be deleted once the business case is completed and legal requirements allow for it.

Legal Basis
The processing of data is based on the following legal grounds:

  • Article 6(1)(a) GDPR (Consent): You give us your consent to store your data and use it for the purposes related to the business case.
  • Article 6(1)(b) GDPR (Contract): There is a need to process the data for fulfilling a contract with you or a processor, such as a telecommunication provider, or we need to process the data for pre-contractual activities, such as preparing an offer.
  • Article 6(1)(f) GDPR (Legitimate Interests): We aim to handle customer inquiries and business communication in a professional manner. This requires certain technical facilities like email programs, Exchange servers, and mobile operators to communicate efficiently.

Cookies

Cookies Summary
????  Affected parties: Visitors to the website
????  Purpose: Depends on the specific cookie. More details can be found below or with the software provider that sets the cookie.
????  Processed data: Depends on the specific cookie used. More details can be found below or with the software provider that sets the cookie.
???? Storage period: Depends on the specific cookie, ranging from hours to years.
⚖️ Legal basis: Article 6(1)(a) GDPR (Consent), Article 6(1)(f) GDPR (Legitimate Interests)

What are Cookies?
Our website uses HTTP cookies to store user-specific data.

Below, we explain what cookies are and why they are used, so you can better understand this privacy policy.

Whenever you browse the internet, you use a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer, and Microsoft Edge. Most websites store small text files in your browser, which are called cookies.

One thing is clear: cookies are really useful helpers. Nearly all websites use cookies. More specifically, these are HTTP cookies, as there are other types of cookies for different purposes. HTTP cookies are small files stored on your computer by our website. These cookie files are automatically placed in the cookie folder, essentially the “brain” of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.

Cookies store certain user data, such as language preferences or personal page settings. When you revisit our site, your browser sends the “user-related” information back to our website. Thanks to cookies, our website recognizes who you are and offers the settings you are accustomed to. In some browsers, each cookie has its own file, while in others, such as Firefox, all cookies are stored in a single file.

The following graphic shows a possible interaction between a web browser, like Chrome, and the web server. The browser requests a website and receives a cookie from the server, which the browser then uses when requesting another page.

There are both first-party and third-party cookies. First-party cookies are created directly by our website, while third-party cookies are created by partner websites (e.g., Google Analytics). Each cookie must be assessed individually as each one stores different data. The expiration time of a cookie also varies, ranging from a few minutes to several years. Cookies are not software programs and do not contain viruses, trojans, or other “malicious” elements. Cookies cannot access any information on your computer.

Here is an example of what cookie data might look like:
Name: _ga
Value: GA1.2.1326744211.152121644224-9
Purpose: Distinguishing website visitors
Expiration date: After 2 years

The following minimum sizes should be supported by a browser:

  • At least 4096 bytes per cookie
  • At least 50 cookies per domain
  • At least 3000 cookies in total

Types of Cookies

The types of cookies we specifically use depend on the services in question, and these will be clarified in the subsequent sections of the privacy policy. However, we would like to briefly mention the different types of HTTP cookies here.
There are 4 types of cookies:

Essential Cookies
These cookies are necessary to ensure basic functions of the website. For example, they are used when a user adds a product to the shopping cart, continues browsing other pages, and later proceeds to checkout. These cookies prevent the shopping cart from being deleted even if the user closes the browser window.

Functional Cookies
These cookies collect information about user behavior and whether the user encounters error messages. Additionally, these cookies measure the website’s loading time and its performance across different browsers.

Targeting Cookies
Also known as advertising cookies, these are used to deliver personalized ads to users. While this can be very convenient, it can also be quite annoying.

Advertising Cookies
These cookies are also referred to as “targeting cookies” and are used to deliver tailored advertising to the user. While this can be useful, it can also become overwhelming at times.

Usually, when you first visit a website, you are asked which types of cookies you wish to allow. This choice is then stored in a cookie.

If you want to learn more about cookies and don’t mind reading technical documentation, we recommend visiting https://datatracker.ietf.org/doc/html/rfc6265, the Request for Comments from the Internet Engineering Task Force (IETF) titled “HTTP State Management Mechanism.”

Purpose of Processing via Cookies

The purpose depends on the specific cookie. More details can be found below or with the software manufacturer that sets the cookie.

Which Data is Processed?

Cookies are small helpers for various tasks. It is not possible to generalize which data is stored in cookies, but we will inform you about the processed or stored data in the following sections of the privacy policy.

Storage Duration of Cookies

The storage duration depends on the specific cookie and will be further clarified below. Some cookies are deleted after less than an hour, while others can remain stored on a computer for several years.
You also have control over the storage duration. You can manually delete all cookies at any time through your browser (see also below “Right to Object”). Additionally, cookies that are based on consent will be deleted after your consent is revoked, but the lawfulness of the storage until then remains unaffected.

Right to Object – How Can I Delete Cookies?

How and whether you want to use cookies is entirely up to you. Regardless of which service or website the cookies come from, you always have the option to delete, deactivate, or allow only certain cookies. For example, you can block cookies from third parties but allow all other cookies.
If you want to check which cookies are stored in your browser, or if you want to change or delete cookie settings, you can find these options in your browser settings:

  • Chrome: Delete, enable, and manage cookies in Chrome
  • Safari: Manage cookies and website data in Safari
  • Firefox: Delete cookies to remove data stored by websites on your computer
  • Internet Explorer: Delete and manage cookies
  • Microsoft Edge: Delete and manage cookies

If you do not want to use cookies at all, you can set your browser to notify you every time a cookie is about to be set. This allows you to decide whether or not to allow each individual cookie. The procedure varies depending on the browser. It is best to search for the instructions on Google using terms like “Delete cookies Chrome” or “Disable cookies Chrome” if you are using a Chrome browser.

Legal Basis

Since 2009, there have been “Cookie Guidelines” in place. These guidelines state that storing cookies requires your consent (Article 6(1) lit. a GDPR). However, there are varying responses to these guidelines within EU countries. In Austria, this directive was implemented in Section 96(3) of the Telecommunications Act (TKG). In Germany, the cookie guidelines were not implemented as national law. Instead, this directive was largely implemented in Section 15(3) of the Telemedia Act (TMG).

For cookies that are strictly necessary, even without consent, legitimate interests (Article 6(1) lit. f GDPR) apply, which are often of an economic nature. We want to provide visitors with a pleasant user experience, and certain cookies are often necessary for this.
If cookies that are not strictly necessary are used, this only occurs with your consent. The legal basis in this case is Article 6(1) lit. a GDPR.
In the following sections, you will be informed in more detail about the use of cookies, provided that the deployed software uses cookies.

Web Hosting Introduction

Web Hosting Summary

????  Affected parties: Visitors to the website

????  Purpose: Professional hosting of the website and securing its operation

????  Processed data: IP address, time of the website visit, browser used, and other data. More details can be found below or from the respective web hosting provider.

???? Storage period: Depends on the provider, but generally 2 weeks

⚖️Legal basis: Article 6(1) lit. f GDPR (Legitimate interests)

What is Web Hosting?

When you visit websites, certain information – including personal data – is automatically generated and stored, as it is on this website. This data should be processed as sparingly as possible and only for a valid reason. By “website,” we mean all the webpages on a domain, i.e., everything from the homepage to the last subpage (such as this one). By “domain,” we refer to a website address like beispiel.de or musterbeispiel.com.

When you want to view a website on a screen, you use a program called a web browser. You may be familiar with some web browsers by name: Google Chrome, Microsoft Edge, Mozilla Firefox, and Apple Safari.

This web browser must connect to another computer where the website’s code is stored: the web server. Operating a web server is a complex and demanding task, so it is usually handled by professional providers who offer web hosting services. These providers ensure reliable and error-free storage of website data.

When your browser on your computer (desktop, laptop, smartphone) connects to the web server and during the data transfer to and from the server, personal data may be processed. On one hand, your computer stores data, and on the other hand, the web server must temporarily store data to ensure proper operation.

Why do we process personal data?

The purposes of data processing are:

  1. Professional hosting of the website and ensuring operational security
  2. Maintaining operational and IT security
  3. Anonymous evaluation of access behavior to improve our offerings and, if necessary, for law enforcement or the pursuit of claims

Which data is processed?

Even while you are visiting our website right now, our web server (the computer on which this website is hosted) usually automatically stores data such as:

  • The full internet address (URL) of the page visited
  • Browser and browser version (e.g., Chrome 87)
  • The operating system used (e.g., Windows 10)
  • The address (URL) of the previously visited page (Referrer URL) (e.g., https://www.example.com/previouspage.html/)
  • The hostname and IP address of the device from which the access is made (e.g., COMPUTERNAME and 194.23.43.121)
  • Date and time
  • In files called web server log files

How long is the data stored?

Typically, the data mentioned above is stored for two weeks and then automatically deleted. We do not share this data, but we cannot exclude the possibility that this data could be accessed by authorities in the event of illegal activity.

In short: Your visit is logged by our provider (the company that runs our website on special computers (servers)), but we do not share your data without consent!

Legal basis

The legality of processing personal data in the context of web hosting is based on Article 6(1) lit. f GDPR (legitimate interests), as the use of professional hosting by a provider is necessary to present the company securely and user-friendly on the internet and to potentially pursue attacks and claims.

Between us and the hosting provider, there is typically a contract for data processing according to Article 28 et seq. GDPR, which ensures compliance with data protection and guarantees data security.

World4You Privacy Policy

We use World4You for our website, among other services, as a web hosting provider. The service provider is the Austrian company World4You Internet Services GmbH, Hafenstraße 35, 4020 Linz, Austria. For more information about the data processed through the use of World4You, you can refer to their privacy policy at https://www.world4you.com/de/unternehmen/datenschutzerklaerung.html.

Cookie Consent Management Platform Introduction

Cookie Consent Management Platform Summary
???? Affected parties: Website visitors
???? Purpose: Obtaining and managing consent for certain cookies and thus the use of specific tools
???? Processed Data: Data for managing cookie settings such as IP address, time of consent, type of consent, individual consents. More details can be found with the respective tool used.
???? Storage period: Depends on the tool used; expect periods of several years
⚖️ Legal Basis: Art. 6 para. 1 lit. a GDPR (Consent), Art. 6 para. 1 lit. f GDPR (Legitimate Interests)

What is a Cookie Consent Management Platform?

We use a Consent Management Platform (CMP) software on our website, which facilitates the correct and secure handling of scripts and cookies for both us and you. The software automatically generates a cookie popup, scans and controls all scripts and cookies, provides the legally required cookie consent for you, and helps both us and you keep track of all cookies. In most cookie consent management tools, all existing cookies are identified and categorized. As a website visitor, you then decide which scripts and cookies you allow or disallow.

Why do we use a cookie management tool?

Our goal is to offer you the best possible transparency regarding data protection. Additionally, we are legally obligated to do so. We want to inform you about all tools and cookies that may store and process data from you as clearly as possible. It is also your right to decide which cookies you accept and which you do not. To grant you this right, we must first know exactly which cookies have been placed on our website. Thanks to a cookie management tool, which regularly scans the website for all existing cookies, we know about all the cookies and can provide you with GDPR-compliant information. Through the consent system, you can then accept or reject cookies.

What data is processed?

Within the framework of our cookie management tool, you can manage each individual cookie yourself and have full control over the storage and processing of your data. Your consent statement is saved so that we don’t have to ask you again during each new visit to our website, and we can prove your consent if legally required. This is stored either in an opt-in cookie or on a server. The storage duration of your cookie consent varies depending on the cookie management tool provider. Usually, this data (such as pseudonymous user ID, consent time, details of cookie categories or tools, browser, device information) is stored for up to two years.

Duration of data processing

We will inform you about the duration of data processing below if we have further details. In general, we process personal data only as long as it is absolutely necessary to provide our services and products. Data stored in cookies is stored for varying lengths of time. Some cookies are deleted once you leave the website, while others may be stored in your browser for several years. The exact duration of data processing depends on the tool used, but you should generally expect a storage period of several years. In the privacy policies of the individual providers, you can usually find exact information on the duration of data processing.

Right to object

You also have the right and the ability to withdraw your consent to the use of cookies at any time. This can be done through our cookie management tool or other opt-out functions. For example, you can prevent data collection by cookies by managing, deactivating, or deleting cookies in your browser.

Legal basis

If you consent to cookies, personal data from you will be processed and stored via these cookies. If we are allowed to use cookies with your consent (Article 6 para. 1 lit. a GDPR), this consent serves as the legal basis for the use of cookies and the processing of your data. To manage cookie consent and enable you to give consent, a cookie consent management platform software is used. The use of this software allows us to operate the website in a legally compliant and efficient way, which constitutes a legitimate interest (Article 6 para. 1 lit. f GDPR).

AdSimple Cookie Manager Privacy Policy

AdSimple Cookie Manager Privacy Policy Summary

???? Affected parties: Website visitors

???? Purpose: Obtaining consent for certain cookies and thus the use of specific tools

???? Processed data: Data for managing cookie settings such as IP address, time of consent, type of consent, and individual consents. More details can be found further below in this privacy policy.

???? Storage period: The used cookie expires after one year.

⚖️ Legal basis: Article 6 (1) a GDPR (Consent), Article 6 (1) f GDPR (Legitimate interests)

What is the AdSimple Cookie Manager?

We use the AdSimple Cookie Manager on our website, which is provided by the software development and online marketing company AdSimple GmbH, Fabriksgasse 20, 2230 Gänserndorf. The AdSimple Cookie Manager enables us to deliver a comprehensive and GDPR-compliant cookie notice, allowing you to decide which cookies you wish to allow and which you do not. By using this software, data from you is transmitted and stored by AdSimple. This privacy policy informs you about why we use the AdSimple Cookie Manager, which data is transmitted and stored, and how you can prevent this data transmission.

The AdSimple Cookie Manager is software that scans our website and identifies and categorizes all existing cookies. Additionally, it informs you as a website visitor through a cookie notice script about the use of cookies, allowing you to decide which cookies to accept and which to reject.

Why do we use the AdSimple Cookie Manager on our website?

We want to provide maximum transparency regarding data protection. To ensure this, we need to know exactly which cookies land on our website over time. Since the AdSimple Cookie Manager regularly scans our website and identifies all cookies, we have full control over these cookies and can act in compliance with GDPR. We can then inform you precisely about the use of cookies on our website. Additionally, you will always receive an up-to-date, GDPR-compliant cookie notice, and you can decide via a checkbox system which cookies to accept or block.

What data is stored by the AdSimple Cookie Manager?

If you consent to cookies on our website, the following cookie is set by the AdSimple Cookie Manager:

  • Name: acm_status
  • Value: “:true,”statistik”:true,”marketing”:true,”socialmedia”:true,”einstellungen”:true
  • Purpose: This cookie stores your consent status. This allows our website to read and follow the current status on subsequent visits.
  • Expiration: After one year

How long and where is the data stored?

All data collected by the AdSimple Cookie Manager is transmitted and stored exclusively within the European Union. The collected data is stored on AdSimple’s servers at Hetzner GmbH in Germany. Access to this data is restricted to AdSimple GmbH and Hetzner GmbH only.

How can I delete my data or prevent data storage?

You have the right to access and delete your personal data at any time. Data collection and storage can be prevented by rejecting the use of cookies via the cookie notice script. Another way to manage or prevent data processing according to your preferences is by using your browser. Cookie management may differ depending on the browser. You can find the relevant links to instructions for popular browsers in the “Cookies” section.

Legal basis

When you consent to cookies, personal data is processed and stored through these cookies. If we are allowed to use cookies with your consent (Article 6 (1) a GDPR), this consent also serves as the legal basis for the use of cookies and the processing of your data. The AdSimple Cookie Manager is used to manage cookie consent and to enable you to provide consent. The use of this software allows us to operate the website efficiently and in compliance with the law, which constitutes a legitimate interest (Article 6 (1) f GDPR).

We hope we have provided you with a good overview of the data traffic and processing through the AdSimple Cookie Manager. If you want to learn more about this tool, we recommend visiting the description page at https://www.adsimple.at/adsimple-cookie-manager/.

Miscellaneous Privacy Policy

Miscellaneous Privacy Policy Summary

???? Affected parties: Website visitors

???? Purpose: Improving user experience

???? Processed data: The data processed depends heavily on the services used. It usually involves IP addresses and/or technical data. More details can be found with the respective tools.

???? Storage duration: Depends on the tools used

⚖️ Legal basis: Article 6 (1) a GDPR (Consent), Article 6 (1) f GDPR (Legitimate interests)

What falls under “Miscellaneous”?

The category “Miscellaneous” includes those services that do not fall under the previously mentioned categories. These are generally various plugins and embedded elements that improve our website. Usually, these features are sourced from third-party providers and integrated into our website. Examples include web search services like Algolia Place, Giphy, Programmable Search Engine, or online services for weather data such as OpenWeather.

Why do we use additional third-party providers?

We aim to offer the best online experience in our industry through our website. A website is no longer just a digital business card. Rather, it is a place designed to help you find what you are looking for. To make our website even more interesting and helpful, we use various third-party services.

What data is processed?

Whenever elements are integrated into our website, your IP address is transmitted, stored, and processed by the respective provider. This is necessary because without it, the content cannot be sent to your browser and displayed accordingly. Providers may also use pixel tags or web beacons, which are small images on websites that record log files and can perform analyses on those files. With the information obtained, providers can improve their marketing efforts. In addition to pixel tags, such information (e.g., which button you click or when you visit a page) may also be stored in cookies. These can store not only analytics data about your web behavior but also technical information such as your browser type or operating system. Some providers may combine the collected data with other internal services or third-party services. Each provider handles your data differently, so we recommend carefully reading the privacy policies of each service. We strive to use only services that are cautious with data protection.

Duration of data processing

We will inform you about the duration of data processing below, if we have further information. In general, we process personal data only as long as necessary for the provision of our services and products.

Legal basis

If we ask for your consent and you agree to the use of a service, this consent serves as the legal basis for processing your data (Article 6 (1) a GDPR). In addition to consent, we also have a legitimate interest in analyzing website visitor behavior to improve our offerings both technically and economically. The legal basis for this is Article 6 (1) f GDPR (Legitimate interests). We only use these tools to the extent that you have granted consent.

If there are any specific tools or further details, we will provide additional information in the following sections.

Google Fonts Privacy Policy

Google Fonts Privacy Policy Summary

???? Affected parties: Website visitors

???? Purpose: Optimization of our service

???? Processed data: Data such as IP address and CSS and font requests

????  Storage duration: Font files are stored at Google for one year

⚖️ Legal bases: Article 6 (1) a GDPR (Consent), Article 6 (1) f GDPR (Legitimate Interests)

What are Google Fonts?

We use Google Fonts on our website. Google Fonts are “Google Fonts” provided by Google Inc. For the European area, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services.

You do not need to log in or set a password to use Google Fonts. No cookies are stored in your browser. The files (CSS, fonts) are requested from the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, requests for CSS and fonts are completely separate from all other Google services. If you have a Google account, you do not need to worry that your Google account data will be transmitted to Google while using Google Fonts. Google records the usage of CSS (Cascading Style Sheets) and the fonts used and stores this data securely. We will examine the data storage in more detail below.

Google Fonts (formerly Google Web Fonts) is a directory of over 800 fonts provided by Google to its users for free. Many of these fonts are published under the SIL Open Font License, while others are published under the Apache License. Both are free software licenses.

Why do we use Google Fonts on our website?

With Google Fonts, we can use fonts on our website without uploading them to our own server. Google Fonts is an important component in maintaining the quality of our website. All Google Fonts are automatically optimized for the web, saving data volume and providing a significant advantage, especially for mobile devices. When you visit our page, the small file size ensures fast loading times. Furthermore, Google Fonts are secure web fonts. Different rendering systems in various browsers, operating systems, and mobile devices can cause errors that might distort text or entire web pages visually. Thanks to the fast Content Delivery Network (CDN), there are no cross-platform issues with Google Fonts. Google Fonts supports all major browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). We use Google Fonts to present our entire online service as beautifully and consistently as possible.

What data is stored by Google?

When you visit our website, the fonts are loaded from a Google server. This external request transmits data to Google’s servers, so Google knows that you (or your IP address) have visited our website. The Google Fonts API was developed to reduce the collection, storage, and transmission of end-user data to what is necessary for proper font delivery. API stands for “Application Programming Interface” and serves as a data transporter in the software sector.

Google Fonts stores CSS and font requests securely, which protects the data. The collected usage data helps Google assess the popularity of individual fonts. The results are published on internal analytics pages, such as Google Analytics. Google also uses data from its own web crawler to identify which websites are using Google Fonts. This data is made publicly available in the BigQuery database. Businesses and developers use Google’s web service BigQuery to analyze and move large datasets.

It is important to note that each Google Fonts request also transfers information such as language settings, IP address, browser version, screen resolution, and browser name to Google’s servers. Whether this data is stored is not clearly communicated by Google.

How long and where is the data stored?

Google stores CSS asset requests for one day on its servers, which are primarily located outside the EU. This allows us to use Google Stylesheets to display fonts. A stylesheet is a template that makes it easy and fast to change the design or font of a website.

Font files are stored by Google for one year. Google aims to improve webpage loading times in general. When millions of websites point to the same fonts, they are cached after the first visit and instantly appear on any other websites visited later. Occasionally, Google updates font files to reduce file size, increase language coverage, and improve design.

How can I delete my data or prevent data storage?

The data that Google stores for one day or one year cannot be deleted directly. The data is automatically transmitted to Google when the page is visited. To delete this data prematurely, you would need to contact Google support at Google Support. You can prevent data storage by not visiting our site.

Unlike other web fonts, Google gives us unlimited access to all fonts, so we can access a vast array of fonts and achieve the best results for our website. For more information about Google Fonts and further questions, visit Google Fonts FAQ. Although Google addresses privacy-related matters there, detailed information about data storage is not provided. It is relatively difficult to obtain precise details from Google about stored data.

Legal basis

If you have consented to the use of Google Fonts, this consent serves as the legal basis for the corresponding data processing. This consent, according to Article 6 (1) a GDPR (Consent), is the legal basis for processing personal data, such as the data collected by Google Fonts.

Additionally, we have a legitimate interest in using Google Fonts to optimize our online service. The legal basis for this is Article 6 (1) f GDPR (Legitimate Interests). We only use Google Fonts to the extent that you have granted consent.

Google processes data from you, including in the USA. We point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This could involve various risks to the legality and security of data processing.

As a basis for data processing by recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially the USA) or for data transfers there, Google uses so-called Standard Contractual Clauses (Art. 46 (2) and (3) GDPR). Standard Contractual Clauses are templates provided by the EU Commission to ensure that your data continues to meet European privacy standards when transferred and stored in third countries (such as the USA). Google commits to complying with European data protection standards when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementation decision by the EU Commission. You can find the decision and the relevant Standard Contractual Clauses here.

For more information about the data Google collects and how it is used, visit Google Privacy Policy.

All texts are copyright-protected.
Source: Created with the Privacy Policy Generator by AdSimple

Translated with ChatGPT