![\"Legal](\"https:\/\/datenschutz-generator.de\/wp-content\/plugins\/ts-dsg\/images\/dsg-seal\/dsg-seal-pp-en.png\")
<\/a><\/p>\nTable of contents<\/h2>\n\n- Preamble<\/a><\/li>\n
- Controller<\/a><\/li>\n
- Contact information of the data protection officer<\/a><\/li>\n
- Overview of processing operations<\/a><\/li>\n
- Legal Bases for the Processing<\/a><\/li>\n
- Security Precautions<\/a><\/li>\n
- Transmission of Personal Data<\/a><\/li>\n
- Data Processing in Third Countries<\/a><\/li>\n
- Erasure of data<\/a><\/li>\n
- Use of Cookies<\/a><\/li>\n
- Business services<\/a><\/li>\n
- Provision of online services and web hosting<\/a><\/li>\n
- Contact and Inquiry Management<\/a><\/li>\n
- Communication via Messenger<\/a><\/li>\n
- Video Conferences, Online Meetings, Webinars and Screen-Sharing<\/a><\/li>\n
- Job Application Process<\/a><\/li>\n
- Cloud Services<\/a><\/li>\n
- Commercial communication by E-Mail, Postal Mail, Fax or Telephone<\/a><\/li>\n
- Web Analysis, Monitoring and Optimization<\/a><\/li>\n
- Online Marketing<\/a><\/li>\n
- Profiles in Social Networks (Social Media)<\/a><\/li>\n
- Plugins and embedded functions and content<\/a><\/li>\n
- Changes and Updates to the Privacy Policy<\/a><\/li>\n
- Rights of Data Subjects<\/a><\/li>\n
- Terminology and Definitions<\/a><\/li>\n<\/ul>\n
Controller<\/h2>\n
Dr. Konrad Pfadenhauer
Concircle \u00d6sterreich GmbH
Wienerbergstra\u00dfe 11
1100 Wien
\u00d6sterreich<\/p>\n
E-mail address:<\/p>\n
office@concircle.com<\/a><\/p>\nLegal Notice:<\/p>\n
https:\/\/www.concircle.com\/en\/imprint\/<\/a><\/p>\nContact information of the data protection officer<\/h2>\n
office@concircle.com<\/a><\/p>\nOverview of processing operations<\/h2>\n
The following table summarises the types of data processed, the purposes for which they are processed and the concerned data subjects.<\/p>\n
Categories of Processed Data<\/h3>\n\n- Inventory data.<\/li>\n
- Payment Data.<\/li>\n
- Location data.<\/li>\n
- Contact data.<\/li>\n
- Content data.<\/li>\n
- Contract data.<\/li>\n
- Usage data.<\/li>\n
- Meta, communication and process data.<\/li>\n
- Job applicant details.<\/li>\n
- Event Data (Facebook).<\/li>\n<\/ul>\n
Categories of Data Subjects<\/h3>\n\n- Customers.<\/li>\n
- Employees.<\/li>\n
- Prospective customers.<\/li>\n
- Communication partner.<\/li>\n
- Users.<\/li>\n
- Job applicants.<\/li>\n
- Business and contractual partners.<\/li>\n
- Persons depicted.<\/li>\n<\/ul>\n
Purposes of Processing<\/h3>\n\n- Provision of contractual services and customer support.<\/li>\n
- Contact requests and communication.<\/li>\n
- Security measures.<\/li>\n
- Direct marketing.<\/li>\n
- Web Analytics.<\/li>\n
- Targeting.<\/li>\n
- Office and organisational procedures.<\/li>\n
- Remarketing.<\/li>\n
- Conversion tracking.<\/li>\n
- Affiliate Tracking.<\/li>\n
- Managing and responding to inquiries.<\/li>\n
- Job Application Process.<\/li>\n
- Feedback.<\/li>\n
- Marketing.<\/li>\n
- Profiles with user-related information.<\/li>\n
- Provision of our online services and usability.<\/li>\n
- Information technology infrastructure.<\/li>\n<\/ul>\n
Legal Bases for the Processing<\/h3>\n
Below you will find an overview of the legal basis of the GDPR on the basis of which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or domicile. If, in addition, more specific legal bases are applicable in individual cases, we will inform you of these in the data protection declaration.<\/p>\n
\n- Consent (Article 6 (1) (a) GDPR)<\/strong> – The data subject has given consent to the processing of his or her personal data for one or more specific purposes.<\/li>\n
- Performance of a contract and prior requests (Article 6 (1) (b) GDPR)<\/strong> – Performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.<\/li>\n
- Compliance with a legal obligation (Article 6 (1) (c) GDPR)<\/strong> – Processing is necessary for compliance with a legal obligation to which the controller is subject.<\/li>\n
- Legitimate Interests (Article 6 (1) (f) GDPR)<\/strong> – Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.<\/li>\n
- Job application process as a pre-contractual or contractual relationship (Article 6 (1)(b) GDPR)<\/strong> – If special categories of personal data within the meaning of Article 9 (1) GDPR (e.g. health data, such as severely handicapped status or ethnic origin) are requested from applicants within the framework of the application procedure, so that the responsible person or the person concerned can carry out the obligations and exercising specific rights of the controller or of the data subject in the field of employment and social security and social protection law, their processing shall be carried out in accordance with Article 9 (2)(b) GDPR , in the case of the protection of vital interests of applicants or other persons on the basis of Article 9 (2)(c) GDPR or for the purposes of preventive health care or occupational medicine, for the assessment of the employee’s ability to work, for medical diagnostics, care or treatment in the health or social sector or for the administration of systems and services in the health or social sector in accordance with Article 9 (2)(d) GDPR. In the case of a communication of special categories of data based on voluntary consent, their processing is carried out on the basis of Article 9 (2)(a) GDPR.<\/li>\n<\/ul>\n
In addition to the data protection regulations of the GDPR, national regulations apply to data protection in Austria. This includes in particular the Federal Act on the Protection of Individuals with regard to the Processing of Personal Data (Data Protection Act – DSG). In particular, the Data Protection Act contains special provisions on the right of access, rectification or cancellation, processing of special categories of personal data, processing for other purposes and transmission and automated decision making in individual cases.<\/p>\n
Security Precautions<\/h2>\n
We take appropriate technical and organisational measures in accordance with the legal requirements, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, in order to ensure a level of security appropriate to the risk.<\/p>\n
The measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as access to, input, transmission, securing and separation of the data. In addition, we have established procedures to ensure that data subjects’ rights are respected, that data is erased, and that we are prepared to respond to data threats rapidly. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and service providers, in accordance with the principle of privacy by design and privacy by default.<\/p>\n
Masking of the IP address: If IP addresses are processed by us or by the service providers and technologies used and the processing of a complete IP address is not necessary, the IP address is shortened (also referred to as “IP masking”). In this process, the last two digits or the last part of the IP address after a full stop are removed or replaced by wildcards. The masking of the IP address is intended to prevent the identification of a person by means of their IP address or to make such identification significantly more difficult.<\/p>\n
TLS encryption (https): To protect your data transmitted via our online services, we use TLS encryption. You can recognize such encrypted connections by the prefix https:\/\/ in the address bar of your browser.<\/p>\n
Transmission of Personal Data<\/h2>\n
In the context of our processing of personal data, it may happen that the data is transferred to other places, companies or persons or that it is disclosed to them. Recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content that are embedded in a website. In such cases, the legal requirements will be respected and in particular corresponding contracts or agreements, which serve the protection of your data, will be concluded with the recipients of your data.<\/p>\n
Data Transmission within the Group of Companies: We may transfer personal data to other companies within our group of companies or otherwise grant them access to this data. Insofar as this disclosure is for administrative purposes, the disclosure of the data is based on our legitimate business and economic interests or otherwise, if it is necessary to fulfill our contractual obligations or if the consent of the data subjects or otherwise a legal permission is present.<\/p>\n
Data Processing in Third Countries<\/h2>\n
If we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA)) or the processing takes place in the context of the use of third party services or disclosure or transfer of data to other persons, bodies or companies, this will only take place in accordance with the legal requirements.<\/p>\n
Subject to express consent or transfer required by contract or law, we process or have processed the data only in third countries with a recognised level of data protection, on the basis of special guarantees, such as a contractual obligation through so-called standard protection clauses of the EU Commission or if certifications or binding internal data protection regulations justify the processing (Article 44 to 49 GDPR, information page of the EU Commission: https:\/\/ec.europa.eu\/info\/law\/law-topic\/data-protection\/international-dimension-data-protection_en<\/a>).<\/p>\nErasure of data<\/h2>\n
The data processed by us will be erased in accordance with the statutory provisions as soon as their processing is revoked or other permissions no longer apply (e.g. if the purpose of processing this data no longer applies or they are not required for the purpose). If the data is not deleted because they are required for other and legally permissible purposes, their processing is limited to these purposes. This means that the data will be restricted and not processed for other purposes. This applies, for example, to data that must be stored for commercial or tax reasons or for which storage is necessary to assert, exercise or defend legal claims or to protect the rights of another natural or legal person. Our further information on individual processing operations may also contain additional and specific information on data retention and erasure applicable to the respective processing operations.<\/p>\n
Use of Cookies<\/h2>\n
Cookies are small text files or other data records that store information on end devices and read information from the end devices. For example, to store the login status in a user account, the contents of a shopping cart in an e-shop, the contents accessed or the functions used. Cookies can also be used for various purposes, e.g. for purposes of functionality, security and convenience of online offers as well as the creation of analyses of visitor flows.<\/p>\n
Information on consent: <\/strong>We use cookies in accordance with the statutory provisions. Therefore, we obtain prior consent from users, except when it is not required by law. In particular, consent is not required if the storage and reading of information, including cookies, is strictly necessary in order to provide an information society service explicitly requested by the subscriber or user. The revocable consent will be clearly communicated to the user and will contain the information on the respective cookie use.<\/p>\nInformation on legal bases under data protection law: <\/strong>The legal basis under data protection law on which we process users’ personal data with the use of cookies depends on whether we ask users for consent. If users consent, the legal basis for processing their data is their declared consent. Otherwise, the data processed with the help of cookies is processed on the basis of our legitimate interests (e.g. in a business operation of our online services and improvement of its usability) or, if this is done in the context of the fulfillment of our contractual obligations, if the use of cookies is necessary to fulfill our contractual obligations. For which purposes the cookies are processed by us, we do clarify in the course of this privacy policy or in the context of our consent and processing procedures.<\/p>\nRetention period:<\/strong> With regard to the retention period, a distinction is drawn between the following types of cookies:<\/p>\n <\/p>\n
\n- Temporary cookies (also known as “session cookies”):<\/strong> Temporary cookies are deleted at the latest after a user has left an online service and closed his or her end device (i.e. browser or mobile application).\u00a0<\/li>\n
- Permanent cookies<\/strong>: Permanent cookies remain stored even after the terminal device is closed. For example, the login status can be saved, or preferred content can be displayed directly when the user visits a website again. Likewise, user data collected with the help of cookies can be used for reach measurement. Unless we provide users with explicit information about the type and storage duration of cookies (e.g., as part of obtaining consent), users should assume that cookies are permanent and that the storage period can be up to two years.<\/li>\n<\/ul>\n
General information on revocation and objection (opt-out):<\/strong> Users can revoke the consent they have given at any time and also file an objection to processing in accordance with the legal requirements in Article 21 GDPR.\u00a0Users can also declare their objection by means of the settings of their browser, e.g. by deactivating the use of cookies (whereby this may also limit the functionality of our online services). An objection to the use of cookies for online marketing purposes, can also be declared via the websites https:\/\/optout.aboutads.info<\/a> and https:\/\/www.youronlinechoices.com\/.<\/a><\/p>\nCookie Settings\/ Opt-Out:<\/strong><\/p>\nFurther information on processing methods, procedures and services used:<\/strong><\/p>\n\n- Processing Cookie Data on the Basis of Consent: <\/strong>We use a cookie management solution in which users’ consent to the use of cookies, or the procedures and providers mentioned in the cookie management solution, can be obtained, managed and revoked by the users. The declaration of consent is stored so that it does not have to be retrieved again and the consent can be proven in accordance with the legal obligation. Storage can take place server-sided and\/or in a cookie (so-called opt-out cookie or with the aid of comparable technologies) in order to be able to assign the consent to a user or and\/or his\/her device. Subject to individual details of the providers of cookie management services, the following information applies: The duration of the storage of the consent can be up to two years. In this case, a pseudonymous user identifier is formed and stored with the date\/time of consent, information on the scope of the consent (e.g. which categories of cookies and\/or service providers) as well as the browser, system and used end device.<\/li>\n
- List of cookies used on our website:
<\/strong>
Controller<\/h2>\n
Dr. Konrad Pfadenhauer
Concircle \u00d6sterreich GmbH
Wienerbergstra\u00dfe 11
1100 Wien
\u00d6sterreich<\/p>\n
E-mail address:<\/p>\n
office@concircle.com<\/a><\/p>\n Legal Notice:<\/p>\n https:\/\/www.concircle.com\/en\/imprint\/<\/a><\/p>\n office@concircle.com<\/a><\/p>\n The following table summarises the types of data processed, the purposes for which they are processed and the concerned data subjects.<\/p>\n Below you will find an overview of the legal basis of the GDPR on the basis of which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or domicile. If, in addition, more specific legal bases are applicable in individual cases, we will inform you of these in the data protection declaration.<\/p>\n In addition to the data protection regulations of the GDPR, national regulations apply to data protection in Austria. This includes in particular the Federal Act on the Protection of Individuals with regard to the Processing of Personal Data (Data Protection Act – DSG). In particular, the Data Protection Act contains special provisions on the right of access, rectification or cancellation, processing of special categories of personal data, processing for other purposes and transmission and automated decision making in individual cases.<\/p>\n We take appropriate technical and organisational measures in accordance with the legal requirements, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, in order to ensure a level of security appropriate to the risk.<\/p>\n The measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as access to, input, transmission, securing and separation of the data. In addition, we have established procedures to ensure that data subjects’ rights are respected, that data is erased, and that we are prepared to respond to data threats rapidly. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and service providers, in accordance with the principle of privacy by design and privacy by default.<\/p>\n Masking of the IP address: If IP addresses are processed by us or by the service providers and technologies used and the processing of a complete IP address is not necessary, the IP address is shortened (also referred to as “IP masking”). In this process, the last two digits or the last part of the IP address after a full stop are removed or replaced by wildcards. The masking of the IP address is intended to prevent the identification of a person by means of their IP address or to make such identification significantly more difficult.<\/p>\n TLS encryption (https): To protect your data transmitted via our online services, we use TLS encryption. You can recognize such encrypted connections by the prefix https:\/\/ in the address bar of your browser.<\/p>\n In the context of our processing of personal data, it may happen that the data is transferred to other places, companies or persons or that it is disclosed to them. Recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content that are embedded in a website. In such cases, the legal requirements will be respected and in particular corresponding contracts or agreements, which serve the protection of your data, will be concluded with the recipients of your data.<\/p>\n Data Transmission within the Group of Companies: We may transfer personal data to other companies within our group of companies or otherwise grant them access to this data. Insofar as this disclosure is for administrative purposes, the disclosure of the data is based on our legitimate business and economic interests or otherwise, if it is necessary to fulfill our contractual obligations or if the consent of the data subjects or otherwise a legal permission is present.<\/p>\n If we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA)) or the processing takes place in the context of the use of third party services or disclosure or transfer of data to other persons, bodies or companies, this will only take place in accordance with the legal requirements.<\/p>\n Subject to express consent or transfer required by contract or law, we process or have processed the data only in third countries with a recognised level of data protection, on the basis of special guarantees, such as a contractual obligation through so-called standard protection clauses of the EU Commission or if certifications or binding internal data protection regulations justify the processing (Article 44 to 49 GDPR, information page of the EU Commission: https:\/\/ec.europa.eu\/info\/law\/law-topic\/data-protection\/international-dimension-data-protection_en<\/a>).<\/p>\n The data processed by us will be erased in accordance with the statutory provisions as soon as their processing is revoked or other permissions no longer apply (e.g. if the purpose of processing this data no longer applies or they are not required for the purpose). If the data is not deleted because they are required for other and legally permissible purposes, their processing is limited to these purposes. This means that the data will be restricted and not processed for other purposes. This applies, for example, to data that must be stored for commercial or tax reasons or for which storage is necessary to assert, exercise or defend legal claims or to protect the rights of another natural or legal person. Our further information on individual processing operations may also contain additional and specific information on data retention and erasure applicable to the respective processing operations.<\/p>\n Cookies are small text files or other data records that store information on end devices and read information from the end devices. For example, to store the login status in a user account, the contents of a shopping cart in an e-shop, the contents accessed or the functions used. Cookies can also be used for various purposes, e.g. for purposes of functionality, security and convenience of online offers as well as the creation of analyses of visitor flows.<\/p>\n Information on consent: <\/strong>We use cookies in accordance with the statutory provisions. Therefore, we obtain prior consent from users, except when it is not required by law. In particular, consent is not required if the storage and reading of information, including cookies, is strictly necessary in order to provide an information society service explicitly requested by the subscriber or user. The revocable consent will be clearly communicated to the user and will contain the information on the respective cookie use.<\/p>\n Information on legal bases under data protection law: <\/strong>The legal basis under data protection law on which we process users’ personal data with the use of cookies depends on whether we ask users for consent. If users consent, the legal basis for processing their data is their declared consent. Otherwise, the data processed with the help of cookies is processed on the basis of our legitimate interests (e.g. in a business operation of our online services and improvement of its usability) or, if this is done in the context of the fulfillment of our contractual obligations, if the use of cookies is necessary to fulfill our contractual obligations. For which purposes the cookies are processed by us, we do clarify in the course of this privacy policy or in the context of our consent and processing procedures.<\/p>\n Retention period:<\/strong> With regard to the retention period, a distinction is drawn between the following types of cookies:<\/p>\n <\/p>\n General information on revocation and objection (opt-out):<\/strong> Users can revoke the consent they have given at any time and also file an objection to processing in accordance with the legal requirements in Article 21 GDPR.\u00a0Users can also declare their objection by means of the settings of their browser, e.g. by deactivating the use of cookies (whereby this may also limit the functionality of our online services). An objection to the use of cookies for online marketing purposes, can also be declared via the websites https:\/\/optout.aboutads.info<\/a> and https:\/\/www.youronlinechoices.com\/.<\/a><\/p>\n Cookie Settings\/ Opt-Out:<\/strong><\/p>\n Further information on processing methods, procedures and services used:<\/strong><\/p>\nContact information of the data protection officer<\/h2>\n
Overview of processing operations<\/h2>\n
Categories of Processed Data<\/h3>\n
\n
Categories of Data Subjects<\/h3>\n
\n
Purposes of Processing<\/h3>\n
\n
Legal Bases for the Processing<\/h3>\n
\n
Security Precautions<\/h2>\n
Transmission of Personal Data<\/h2>\n
Data Processing in Third Countries<\/h2>\n
Erasure of data<\/h2>\n
Use of Cookies<\/h2>\n
\n
\n
<\/strong>