Data protection declaration
Declaration on the duty to inform
The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the statutory provisions (DPA, TKG 2003). In this data protection information, we inform you about the most important aspects of data processing within the framework of our website.
Contact with us
If you contact us via the form on the website or by e-mail, your data will be stored for six months for the purpose of processing your enquiry and in the event of follow-up questions. We will not pass on this data without your consent.
The data processed by us will be deleted or restricted in their processing in accordance with articles 17 and 18 DPA. Unless explicitly stated in this data protection declaration, the data stored by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory storage obligations. If the data are not deleted because they are required for other and legally permissible purposes, their processing will be restricted. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons.
According to legal requirements in Germany, the storage is particularly required for 10 years according to §§147 para. 1 AO, 257 para. 1 no. 1 and 4, para. 4 HGB (books, records, management reports, accounting vouchers, trading books, documents relevant for taxation, etc.) and 6 years according to § 257 para. 1 no. 2 and 3, para. 4 HGB (commercial letters). According to legal requirements in Austria, the storage is carried out in particular for 7 years in accordance with § 132 para. 1 BAO (accounting documents, vouchers / invoices, accounts, records, business documents, statement of income and expenditure, etc.), for 22 years in connection with real estate and for 10 years in the case of documents in connection with electronically provided services, telecommunications, radio and television services which are provided to non-entrepreneurs in EU member states and for which the Mini-One-Stop-Shop (MOSS) is used.
In accordance with Art. 32 DPA, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing as well as the varying degrees of probability and severity of the risk to the rights and freedoms of natural persons, we take appropriate technical and organisational measures to ensure a level of protection appropriate to the risk.
These measures shall include in particular the safeguarding of the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access, input, disclosure, safeguarding of availability and separation of data relating to them. Furthermore, we have established procedures to ensure that data subjects’ rights are exercised, data is deleted, and we respond to any threats to the data. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and processes, in accordance with the principle of data protection through the design of technology and through data protection-friendly default settings (Art. 25 DPA).
Cooperation with contract processors and third parties
If, in the course of our processing, we reveal data to other persons and companies (contract processors or third parties), transfer the data to them or otherwise grant them access to the data, this is only on the basis of a legal authorisation (e.g. if a transfer of the data to third parties, such as payment service providers, is necessary for the fulfilment of the contract in accordance with Art. 6 Para. 1 b DPA), if you have consented, if a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
If we commission third parties to process data on the basis of a so-called “contract processing agreement”, this is done on the basis of Art. 28 DPA.
Our website uses so-called cookies. These are small text files that are stored on your end device with the help of the browser. They do not cause any damage.
If you do not agree to this, you can configure your browser to notify you when cookies are being placed and to allow cookies only in individual cases.
If you deactivate cookies, the functionality of our website may be limited.
Hosting und e-mailing
The hosting services we use serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, e-mail delivery, security services and technical maintenance services that we use for the purpose of operating this online service.
In doing so, we and/or our hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors of this online offer on the basis of our legitimate interests in an efficient and secure availability of this online offer in accordance with Art. 6 para. 1 f DPA in conjunction with Art. 28 DPA (conclusion of contract processing agreement).
Collection of access data and log files
We, and/or our hosting provider, on the basis of our legitimate interests as defined in Art. 6 para. 1 f DPA, collect data about every access to the server on which this service is located (so-called server log files).The access data includes the name of the accessed website, file, date and time of access, transferred data volume, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited site), IP address and the requesting provider.
For security reasons (e.g. to clarify misuse or fraud), log file information is stored for a maximum of 7 days and then deleted. Data whose further storage is required for evidence purposes is excluded from deletion until the respective incident has been finally clarified.
We integrate the fonts (“Google Fonts”) of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
With regard to your data stored by us, you have the basic rights to information, correction, deletion, restriction, data transferability, revocation and opposition. If you believe that the processing of your data violates data protection law, or that your data protection rights have been violated in any other way, you can complain to us at email@example.com or the data protection authority.
How to contact us:
Marchfelder Zwiebel GmbH
Obere Hauptstrasse 63
Mobile: 0043 (0)680 30 26 199
Mobile: 0043 (0)664 460 61 65
Link to the imprint: http://www.valis.at/impressum/