Privacy Policy
We process personal data (hereinafter mostly referred to as “data”) only to the extent necessary and for the purpose of providing a functional and user-friendly website, including its contents and the services offered there.
According to Article 4(1) of Regulation (EU) 2016/679, the General Data Protection Regulation (hereinafter referred to as “GDPR”), “processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, comparison or linking, restriction, erasure or destruction.
With the following data protection declaration, we inform you in particular about the type, scope, purpose, duration and legal basis of the processing of personal data, insofar as we decide on the purposes and means of processing either alone or jointly with others. In addition, we inform you below about the third-party components we use for optimization purposes and to improve the quality of use, insofar as third parties process data under their own responsibility.
Our privacy policy is structured as follows:
I. Information about us as the responsible party
II. Rights of users and data subjects
III. Information on data processing
I. Information about us as the responsible party
The responsible provider of this website in terms of data protection law is:
Family Rauchenbacher-Hörbiger
Salzachweg 1
5730 Mittersill
Austria
Phone: +43 (0) 664 85 14 145
Email: info@kleinfeinwohnen.at
The provider’s data protection officer is:
Roland Rauchenbacher
II. Rights of users and data subjects
With regard to the data processing described in more detail below, users and data subjects have the right
- to confirmation as to whether data concerning them is being processed, to information about the data being processed, to further information about the data processing and to copies of the data (see also Art. 15 GDPR);
- to rectification or completion of incorrect or incomplete data (see also Art. 16 GDPR);
- to the immediate erasure of data concerning them (see also Art. 17 GDPR), or, alternatively, if further processing is necessary pursuant to Art. 17 Para. 3 GDPR, to the restriction of processing in accordance with Art. 18 GDPR;
- to receive the data concerning them and provided by them and to transmit this data to other providers/controllers (see also Art. 20 GDPR);
- to lodge a complaint with the supervisory authority if they are of the opinion that the data concerning them is being processed by the provider in violation of data protection regulations (see also Art. 77 GDPR).
Furthermore, the provider is obliged to inform all recipients to whom data has been disclosed by the provider of any rectification or erasure of data or restriction of processing carried out pursuant to Articles 16, 17 (1) and 18 of the GDPR. However, this obligation does not apply if this notification is impossible or involves disproportionate expenditure. Notwithstanding this, the user has a right to information about these recipients.
Likewise, according to Art. 21 GDPR, users and data subjects have the right to object to the future processing of data concerning them, provided that the data is processed by the provider in accordance with Art. 6 (1) (f) GDPR. In particular, an objection to data processing for the purposes of direct advertising is permissible.
II. Information on data processing
Your data processed when using our website will be deleted or blocked as soon as the purpose of storage no longer applies, there are no statutory retention periods that prevent the deletion of the data and no other information is provided below regarding individual processing procedures.
Hosting
The hosting services we use serve to provide infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services, which we use for the purpose of operating this online offering.
We or the hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors to this online offer on the basis of our legitimate interests in the efficient and secure provision of this online offer in accordance with Art. 6 Para. 1 lit. f) GDPR in conjunction with Art. 28 GDPR (conclusion of a data processing contract).
Server-Logfiles
We or our hosting provider collect data about every access to the server on which this service is located (so-called server log files). We automatically collect information about your usage behavior and your interaction with us and register data about your computer or mobile device. We collect, store and use data about every access to our online offering. The access data includes:
- Name and URL of the retrieved file
- date and time of retrieval
- amount of data transferred
- Message about successful retrieval (HTTP response code)
- browser type and browser version
- operating system
- Referrer URL (i.e. the previously visited page)
- Websites accessed by the user’s system via our website
- user’s Internet service provider
- IP address and the requesting provider
We use this log data without assigning it to you personally or creating any other profile for statistical evaluations for the purpose of operating, securing and optimizing our online offering, but also for anonymously recording the number of visitors to our website (traffic) and the extent and type of use of our website and services, as well as for billing purposes in order to measure the number of clicks received from cooperation partners. Based on this information, we can provide personalized and location-based content and analyze data traffic, search for and correct errors and improve our services.
This is also our legitimate interest in accordance with Art. 6 (1) (f) GDPR.
We reserve the right to subsequently check the log data if there is a justified suspicion of illegal use based on concrete evidence. We store IP addresses in the log files for a maximum period of 3 months if this is necessary for security purposes or for the provision or billing of a service, e.g. if you use one of our offers. After the order process has been canceled or after payment has been received, we delete the IP address if it is no longer required for security purposes. We also store IP addresses if we have a specific suspicion of a criminal offense in connection with the use of our website. We also store the date of your last visit as part of your account (e.g. when registering, logging in, clicking on links, etc.). Data that must be stored for evidentiary purposes is exempt from deletion until the respective incident has been finally clarified.
SSL encryption
This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as the enquiries and orders that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. You can find out more about data security in point 5.
Cookies
a) session cookies
We use so-called cookies on our website. Cookies are small text files or other storage technologies that are stored on your device by the Internet browser you use. These cookies process certain information about you on an individual basis, such as your browser or location data or your IP address. This processing makes our website more user-friendly, effective and secure, as the processing enables, for example, the display of our website in different languages or the offer of a shopping cart function.
The legal basis for this processing is Art. 6 Para. 1 lit. b.) GDPR, provided that these cookies process data for the purpose of initiating or executing a contract. If the processing does not serve the purpose of initiating or executing a contract, our legitimate interest lies in improving the functionality of our website. The legal basis is then Art. 6 Para. 1 lit. f) GDPR. These session cookies are deleted when you close your internet browser.
b) third-party cookies
Our website may also use cookies from partner companies with whom we work for the purposes of advertising, analysis or the functionality of our website.
For details, in particular the purposes and legal basis for processing such third-party cookies, please see the information below.
c) possibility of removal
You can prevent or restrict the installation of cookies by adjusting the settings on your Internet browser. You can also delete cookies that have already been saved at any time. The steps and measures required to do this depend on the specific Internet browser you are using. If you have any questions, please use the help function or documentation for your Internet browser, or contact the manufacturer or support. However, in the case of so-called Flash cookies, processing cannot be prevented via the browser settings. Instead, you must change the settings on your Flash player. The steps and measures required to do this also depend on the specific Flash player you are using. If you have any questions, please use the help function or documentation for your Flash player, or contact the manufacturer or user support.
However, if you prevent or restrict the installation of cookies, this may mean that not all functions of our website are fully usable.
contact requests / contact options
If you contact us via the contact form or email, the data you provide will be used to process your request. Providing the data is necessary to process and answer your request – without providing it, we cannot answer your request or can only answer it to a limited extent.
The legal basis for this processing is Art. 6 (1) (b) GDPR. Your data will be deleted if your request has been answered conclusively and there are no statutory retention periods that prevent deletion, such as in the case of any subsequent contract processing.
user contributions, comments and ratings
We offer you the opportunity to publish questions, answers, opinions or evaluations, hereinafter referred to as “contributions”, on our website. If you take advantage of this offer, we will process and publish your contribution, the date and time of submission and any pseudonym you may use.
The legal basis for this is Art. 6 Para. 1 lit. a) GDPR. You can revoke your consent at any time with future effect in accordance with Art. 7 Para. 3 GDPR. All you have to do is inform us of your revocation.
In addition, we also process your IP and email address. The IP address is processed because we have a legitimate interest in initiating or supporting further steps if your contribution infringes on the rights of third parties and/or is otherwise unlawful. The legal basis in this case is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the legal defense that may be necessary.
To promote our products and services and to communicate with interested parties or customers, we maintain a company presence on the Facebook platform.
On this social media platform, we are jointly responsible with Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. Facebook’s data protection officer can be reached via a contact form:
https://www.facebook.com/help/contact/540977946302970
We have regulated the joint responsibility in an agreement regarding the respective obligations within the meaning of the GDPR. This agreement, from which the mutual obligations arise, can be accessed under the following link:
https://www.facebook.com/legal/terms/page_controller_addendum
The legal basis for the resulting and subsequently reproduced processing of personal data is Art. 6 (1) (f) GDPR. Our legitimate interest lies in the analysis, communication, sale and promotion of our products and services. The legal basis can also be the user’s consent to the platform operator in accordance with Art. 6 (1) (a) GDPR. The user can revoke this consent for the future at any time by notifying the platform operator in accordance with Art. 7 (3) GDPR.
When you visit our online presence on the Facebook platform, Facebook Ireland Ltd., as the operator of the platform in the EU, processes user data (e.g. personal information, IP address, etc.). This user data is used to generate statistical information about the use of our company presence on Facebook. Facebook Ireland Ltd. uses this data for market research and advertising purposes and to create user profiles. Based on these profiles, Facebook Ireland Ltd. is able, for example, to advertise to users on and off Facebook based on their interests. If the user is logged into their Facebook account at the time of the visit, Facebook Ireland Ltd. can also link the data to the respective user account.
If the user contacts us via Facebook, the personal data entered by the user on this occasion will be used to process the request. The user’s data will be deleted by us if the user’s request has been conclusively answered and there are no statutory retention periods, such as in the case of subsequent contract processing, that prevent this.
Facebook Ireland Ltd. may also set cookies to process the data.
If the user does not agree to this processing, it is possible to prevent the installation of cookies by setting the browser accordingly. Cookies that have already been saved can also be deleted at any time. The settings for this depend on the respective browser. In the case of Flash cookies, processing cannot be prevented via the browser settings, but by setting the Flash player accordingly. If the user prevents or restricts the installation of cookies, this may mean that not all Facebook functions can be used to their full extent.
Further information on the processing activities, their prevention and the deletion of data processed by Facebook can be found in Facebook’s data policy:
https://www.facebook.com/privacy/explanation
It cannot be ruled out that processing by Facebook Ireland Ltd. may also be carried out by Facebook Inc., 1601 Willow Road, Menlo Park, California 94025 in the USA. Facebook Inc. has submitted to the “EU-US Privacy Shield” and thereby declares that it complies with EU data protection regulations when processing data in the USA.
https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
Social media linking via graphic or text link
We also advertise presences on the social networks listed below on our website. The integration is done via a linked graphic of the respective network. Using this linked graphic prevents a connection to the respective server of the social network from being automatically established when a website that has a social media advertisement is accessed in order to display a graphic of the respective network itself. Only by clicking on the corresponding graphic is the user redirected to the service of the respective social network.
After the user has been redirected, information about the user is collected by the respective network. It cannot be ruled out that the data collected in this way will be processed in the USA.
This is initially data such as IP address, date, time and page visited. If the user is logged into their user account on the respective network, the network operator may be able to assign the information collected from the user’s specific visit to the user’s personal account. If the user interacts via a “Share” button on the respective network, this information may be saved in the user’s personal user account and may be published. If the user wants to prevent the information collected from being directly assigned to their user account, they must log out before clicking on the graphic. It is also possible to configure the respective user account accordingly.
The following social networks are integrated into our site by links:
Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, a subsidiary of Facebook Inc., 1601 S. California Ave., Palo Alto, CA 94304, USA.
Privacy Policy: https://www.facebook.com/policy.php
EU-US data protection certification (“EU-US Privacy Shield”) https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
„Facebook“-social-plug-in
We use the plug-in of the social network Facebook on our website. Facebook is an Internet service of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. In the EU, this service is operated by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, hereinafter both referred to as “Facebook”.
Through certification under the EU-US Privacy Shield
https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active Facebook guarantees that the EU’s data protection regulations will also be complied with when processing data in the USA. The legal basis is Art. 6 Paragraph 1 Letter f) of GDPR. Our legitimate interest lies in improving the quality of our website. Facebook provides further information about the possible plug-ins and their respective functions at https://developers.facebook.com/docs/plugins/.
If the plug-in is stored on one of the pages of our website that you visit, your Internet browser downloads a representation of the plug-in from Facebook’s servers in the USA. For technical reasons, it is necessary for Facebook to process your IP address. In addition, the date and time of your visit to our website are also recorded.
If you are logged in to Facebook while visiting one of our websites with the plug-in, the information collected by the plug-in about your specific visit will be recognized by Facebook. Facebook may assign the information collected in this way to your personal user account there. If you use the so-called “Like” button on Facebook, for example, this information will be saved in your Facebook user account and possibly published via the Facebook platform. If you want to prevent this, you must either log out of Facebook before visiting our website or use an add-on for your Internet browser to prevent the Facebook plug-in from being blocked from loading.
Further information about the collection and use of data as well as your rights and protection options in this regard is available from Facebook in the
https://www.facebook.com/policy.php available data protection notices.
Google-Maps
We use Google Maps on our website to display our location and to create directions. This is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as “Google”.
Through certification under the EU-US Privacy Shield
https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active Google guarantees that EU data protection regulations will also be adhered to when processing data in the USA.
In order to enable the display of certain fonts on our website, a connection to the Google server in the USA is established when you access our website. If you access the Google Maps component integrated into our website, Google stores a cookie on your device via your Internet browser. In order to display our location and create directions, your user settings and data are processed. We cannot rule out the possibility that Google uses servers in the USA. The legal basis is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in optimizing the functionality of our website.
Through the connection to Google established in this way, Google can determine from which website your request was sent and to which IP address the directions should be sent. If you do not agree to this processing, you have the option of preventing the installation of cookies by making the appropriate settings in your Internet browser. You can find details about this above under the heading “Cookies”.
In addition, the use of Google Maps and the information obtained via Google Maps is subject to the Google Terms of Use https://policies.google.com/terms?gl=DE&hl=de and the Terms and Conditions for Google Maps https://www.google.com/intl/de_de/help/terms_maps.html.
In addition, Google offers
https://adssettings.google.com/authenticated
https://policies.google.com/privacy
further information.
Sample data protection declaration of the law firm Weiß & Partner