Legal

Terms of Use

The following conditions are set for the use of this website/web app.

Purpose

This website/web app is an information site.

Content

There is no guarantee for the topicality, correctness, completeness or quality of the information provided on this website/web app. The operation of the website/web app may be discontinued in whole or in part at any time. There is no guarantee that the website/web app will be available uninterrupted. Some pages may be password protected. Registration in advance is necessary, but there is no legal right to registration.

The use of contact information or similar information published in the imprint, such as postal addresses, telephone or fax numbers as well as e-mail addresses to receive information that is not specifically requested is not permitted.

This website/web app may not be used for illegal activities or actions that violate common decency. Access to this website/web app can be blocked at any time, especially if the website/web app is abusive or contrary to its original purpose is used.

References and Links

This website/web app contains links to other websites the content of which can not be influenced. For foreign content always the respective provider or operator of the site is responsible.

Privacy

The most important aspects of data processing are recorded in this data protection information. Data is processed exclusively on the basis of legal regulations.

These provisions refer to the websites/web apps of Bernhard Zeller (hereinafter referred to as “owner”) as well as other websites/web apps created by the owner that refer to these data protection regulations.

Data Collection

The data collection is done by Bernhard Zeller, Kirchensiedlung 27, 2020 Schöngrabern.

The following data is recorded:

  • Technical data for the correct provision of the website/web app (see Logfiles, Cookies and Analytics)
  • Data to improve the experience of the website/web app (see Cookies and Analytics)
  • Data that is voluntarily provided via the contact form in order to get in touch (see Contact)
  • Data for payment transactions (see Payment)
  • Voluntarily provided data when a user account is created within the website/web app to use enhanced services (see User Accounts)

To store data the services of World4You, DigitalOcean and Stripe are used. There is a contract for data processing with the providers (DPA, data processing agreement).

World4You

Hafenstraße 47-51
4020 Linz
Austria
Privacy: https://www.world4you.com/faq/en/dsgvo.html
Server Location: Österreich, Linz und Wien
Data Processing Agreement: Ok
Services: Logfiles, E-Mail Contact Form, Newsletter, Comments, Analytics, User Accounts and associated data

DigitalOcean

101 Avenue of the Americas, 10th Floor
New York, NY 10013
Privacy: https://www.digitalocean.com/security/gdpr/
Data Processing Agreement: https://www.digitalocean.com/security/gdpr/data-processing-agreement/
Server Location: Deutschland, Frankfurt
Services: Logfiles, User Accounts and associated data (Web-App)

Stripe Payments Europe Ltd

Block 4, Harcourt Centre, Harcourt Road
Dublin 2, Irland
Privacy: https://stripe.com/at/privacy
Data Processing Agreement: https://stripe.com/dpa/legal
Services: Customer Information, Payment, Accounting

Logfiles

The web servers generate log files that are helpful for finding errors or preventing misuse, which contain the following information:

  • Requested page (URL)
  • Browser and browser version
  • Operating system
  • Referrer URL (previously vistied page)
  • Hostname and IP address of the accessing computer
  • Time of server request

The log files are not evaluated and deleted regularly (14 days). There is no merge of this data with other data sources.

The collection of this data is based on Art. 6 para. 1 lit. f GDPR. There is a legitimate interest in the technically error-free presentation and optimization of the website/web app - this requires logging the server log files.

Cookies

The website/web app uses cookies. These are small text files that are stored on devices using the browser. They do no harm.

Cookies (or other local storage techniques such as "Local Storage") are used to make the website/web app more user-friendly. Some cookies remain stored on the terminal until they are deleted on the terminal or in the browser. They allow saving settings to provide a better website/web app experience. These cookies can not be used for personal identification.

If cookies are not desired, the browser can be set up so that it informs about the setting of cookies and only allows them in individual cases. Disabling cookies may limit the functionality of the website/web app.

Cookies are used, for example, for analysis, user account login (session ID), comments, language settings or shopping cart functions. Only cookies that are necessary for the operation or the user-friendliness of the website/web app are used.

Emails and newsletters sent from this website/web app may contain web beacons (counter pixels) to determine whether the email or links contained therein have been opened.

Analytics

This website/web app uses a separate software to improve the services and for statistical evaluation of visitor access and respects the privacy of the users. The software my uses cookies to recognize new page views (first-party cookies, no third-party cookies). The IP address is stored anonymously (only the first two digits) to determine approximately which country the page request comes from. A conclusion to a single person is not possible. The analysis data is stored on the web space of the owner. The webspace is located in Austria.

The collection of this data is based on Art. 6 para. 1 lit. f GDPR. There is a legitimate interest in improving the offer and services. Since the privacy of the users is important, the user data is pseudonymized.

If the analysis is not desired, it can be deactivated in the browser (Do-Not-Track function) or deactivated explicitly for this website / web-app.

You can opt out of analytics for this website/web app:

Disable Analytics by Matomo

User Accounts

A user account can be created on the website/web app for further services. After registration, an e-mail confirming the registration will be sent. If the registration is not confirmed, the given data will be deleted after 14 days.

All data collected via the user account is stored for the purpose of proper operation. The data can be viewed and changed in the account settings. Administrators can also view this data. Passwords are stored encrypted and can not be read by administrators in plain text.

These data are stored until a cancellation or cancellation of consent. The data can be automatically deleted after inactivity (no login within the last twelve months), otherwise remain stored indefinitely.

The data is backed up regularly. Old backups are deleted. An export of all personal data as well as voluntary data can be requested.

The following data is stored and partly collected by users themselves: first name, last name, email address, role.

This data is stored - if provided voluntarily by users - and can be seen by the selected consultants if they provide this data.

Media Upload and Meta-Data

If files are uploaded to this website/web app, it should be avoided to upload files with EXIF information or other sensitive metadata, as others may download these files and extract existing location information or other information. Most of this data will be removed at best automatically during upload.

Payment

For the purpose of easier shopping and subsequent contract processing, the IP data of the connection owner, as well as the name, address and e-mail address of the buyer are stored in the context of cookies.

The data provided is required to fulfill the contract or to carry out pre-contractual measures. Without this data, a contract can not be concluded. A transfer of data to third parties does not take place, with the exception of the transmission of the payment data to the processing bank / payment service provider for the purpose of debiting the purchase price, to the contracted carrier / shipping company to deliver the goods and to tax consultants to fulfill tax obligations.

After aborting the shopping process, the stored data will be deleted. In case of a contract, all data from the contractual relationship are stored until the expiry of the tax retention period (7 years).

The data name, address, purchased goods and date of purchase are also stored until the end of product liability (10 years). The data processing takes place on the basis of the legal regulations of § 96 Abs. 3 TKG as well as of Art. 6 Abs. 1 lit a (Consent) and / or lit b (necessary for fulfillment of the contract) of the GDPR.

If there is an obligation to transmit payment data (e.g. account number for direct debit authorization or credit card details) after concluding a paid contract, this data will be required for payment processing. Some products require recurring payment. For this purpose, the data is stored by the payment provider. After a period for recurring payment products has expired, the product will be automatically renewed.

Payment transactions are made via common methods of payment (credit or debit card, SEPA direct debit) and are made only via an encrypted SSL or TLS connection.

Browsers mark pages with encryption. If SSL or TLS encryption is enabled, the data that is transmitted can not be read by third parties.

Contact

If contact is made via online form or by e-mail, the data given will be forwarded by e-mail to responsible persons for processing the request and stored in case of follow-up questions. This data will not be disclosed to unauthorized persons or third parties, will not be evaluated automatically and used only for the purpose of establishing contact.

YouTube

For the presentation of video content, this website/web app uses Google's YouTube platform, which offers a variety of options and supported devices. Information will only be transmitted to YouTube if the video is voluntarily activated by users.

Social Networks

Use of "Share", "Like", "Tweet" or similar features of other social networks is voluntary. These features are integrated to protect privacy by establishing a connection to the network only when the feature is activated and triggered.

Administrators can authorize this website/web app for Facebook or other social networks. The access will only use to publish posts directly in the respective network on the associated page and only affects administrators who have granted explicit access. No personal data is collected or stored and also not evaluated.

Data Security

The use of current and proven technologies ensures confidentiality and integrity in accordance with Art. 5 GDPR.

The website/web app uses SSL or TLS encryption for security and to protect the transmission of sensitive content, such as orders or requests.

Browsers mark pages with encryption. If SSL or TLS encryption is enabled, the data that is transmitted can not be read by third parties.

Rights of Users

Basically, you have the right to information, correction, deletion, restriction, data portability, revocation and objection regarding your stored data. If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, please get in contact.

You can also complain to the Data Protection Authority.