In accordance with the provisions of the General Data Protection Regulation and the Data Protection Act (DSG), this privacy policy explains what information we collect, how we use data and what choices you have as a visitor to this website.
Status of the privacy policy: March 2024
Your data will be processed by: KRZYSZTOF BORYSIEWICZ
e-mail address:krzysztof.borysiewicz@gmail.com
Types of data processed:
Inventory data (e.g., names, addresses). Contact data (e.g., e-mail, telephone numbers). Meta/communication data (e.g., device information, IP addresses). Processing of special categories of data (Art. 9 para. 1 GDPR): No special categories of data are processed.
Categories of data subjects affected by the processing: Interested parties, visitors and users of the online offer,
In the following, we also refer to the data subjects collectively as “users”.
Terminology used
1. “Personal data” means any information relating to an identified or identifiable natural person (hereinafter referred to as “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. (2) “Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means. The term is broad and covers practically any handling of data. (3) “Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
Relevant legal bases
In accordance with Art. 13 GDPR, we inform you of the legal basis of our data processing. If the legal basis is not stated in the privacy policy, the following applies: The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 GDPR, the legal basis for processing for the performance of our services and implementation of contractual measures as well as responding to inquiries is Art. 6 para. 1 lit. b GDPR, the legal basis for processing to fulfill our legal obligations is Art. 6 para. 1 lit. c GDPR, and the legal basis for processing to protect our legitimate interests is Art. 6 para. 1 lit. f GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.
Changes and updates to the privacy policy
We ask you to inform yourself regularly about the content of our privacy policy. We will adapt the privacy policy as soon as changes to the data processing we carry out make this necessary. We will inform you as soon as the changes require an act of cooperation on your part (e.g. consent) or other individual notification.
Security measures
We take appropriate technical and organizational measures in accordance with Art. 32 GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, to ensure a level of security appropriate to the risk; the measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as the access, input, disclosure, safeguarding of availability and their separation.Furthermore, we have established procedures that ensure the exercise of data subject rights, the deletion of data and the response to data threats.Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and procedures, in accordance with the principle of data protection through technology design and data protection-friendly default settings (Art. 25 GDPR). The security measures include, in particular, the encrypted transmission of data between your browser and our server. (Through the use of TLS (Transport Layer Security), an encryption protocol for secure data transmission)
Disclosure and transfer of data
If we disclose data to other persons and companies (processors or third parties) as part of our processing, transfer it to them or otherwise grant them access to the data, this will only be done on the basis of legal permission (e.g. if the data is transferred to third parties, such as payment service providers, in accordance with Art. 6 para. 1 lit. b GDPR), you have given your consent, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, hosting providers, tax, business and legal advisors, customer care, accounting, billing and similar services that allow us to efficiently and effectively fulfill our contractual obligations, administrative tasks and duties). If we commission third parties with the processing of data on the basis of a so-called “order processing contract”, this is done on the basis of Art. 28 GDPR.
Transfers to third countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this occurs in the context of the use of third-party services or disclosure or transfer of data to third parties, this will only take place if it is done to fulfill our (pre)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we only process or have the data processed in a third country if the special requirements of Art. 44 et seq. GDPR are met. This means, for example, that the processing takes place on the basis of special guarantees, such as the officially recognized determination of a level of data protection corresponding to the EU (e.g. for the USA through the “Privacy Shield”) or compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).
Rights of the data subjects
You have the right to request confirmation as to whether the data in question is being processed and to request information about this data as well as further information and a copy of the data in accordance with Art. 15 GDPR. You have accordingly. Art. 16 GDPR, you have the right to request the completion of data concerning you or the rectification of inaccurate data concerning you. In accordance with Art. 17 GDPR, you have the right to demand that the data in question be deleted immediately or, alternatively, to demand that the processing of the data be restricted in accordance with Art. 18 GDPR. You have the right to request to receive the data concerning you that you have provided to us in accordance with Art. 20 GDPR and to request its transfer to other controllers. You also have the right to lodge a complaint with the competent supervisory authority in accordance with Art. 77 GDPR.
Right of revocation
You have the right to withdraw your consent in accordance with Art. 7 para. 3 GDPR with effect for the future.
Right to object
You can object to the future processing of data concerning you at any time in accordance with Art. 21 GDPR. In particular, you may object to processing for direct marketing purposes.
Use of cookies
Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user’s computer. Cookies do not cause any damage to your end device, but are primarily used to store information about a user during or after their visit to an online service. The information stored may include, for example, the language settings on a website or the login status. The term “cookies” also includes other technologies that fulfill the same functions as cookies (e.g., user IDs – user information that is stored using pseudonymous online identifiers) The following cookie types and functions are distinguished: Temporary cookies, also known as session cookies: Temporary cookies are deleted at the latest after a user has left an online offer and closed their browser. Permanent cookies: Permanent cookies remain stored on your end device until you delete them yourself or they are automatically deleted by your web browser. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. First-party cookies: First-party cookies are set by us. Third-party cookies, also known as third-party cookies: Third-party cookies are mainly used by advertisers (so-called third parties) to process user information. Necessary cookies, also known as essential or strictly necessary cookies: Cookies may be absolutely necessary for the operation of a website e.g. to store logins or other user input or for security reasons. Statistical, marketing and personalization cookies: Cookies are also generally used to measure reach and when a user’s interests or behaviour (e.g. viewing certain content, using functions, etc.) on individual websites are stored in a user profile. Such profiles are used, for example, to display content to users that corresponds to their potential interests. This process is also referred to as “tracking”, i.e. tracking the potential interests of users. These types of cookies are not set on our website –
We do not use Google Analytics, Facebook pixels or any other tracking cookies. You can decide which and whether you want to use cookies. You have the option to delete, deactivate or only partially allow cookies. For example, you can block only third-party cookies, but allow all other cookies. You can also set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser.
If you want to find out which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:
Chrome: Delete, activate and manage cookies in Chrome
Safari: Managing cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have stored on your computer
Internet Explorer: Deleting and managing cookies
Microsoft Edge: Deleting and managing cookies
Deletion of data
The data processed by us will be deleted or its processing restricted in accordance with Art. 17 and 18 GDPR. Unless expressly stated in this privacy policy, the data stored by us will be deleted as soon as it is no longer required for its intended purpose and the deletion does not conflict with any statutory retention obligations. If the data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons. According to legal requirements, data is stored for 7 years in particular in accordance with § 132 para. 1 BAO
Contacting us
Communication by post, e-mail or telephone We use means of remote communication, such as post, telephone or e-mail, for business transactions and marketing purposes. In doing so, we process inventory data, address and contact data. The processing is carried out on the basis of Art. 6 para. 1 lit. a, Art. 7 GDPR, Art. 6 para. 1 lit. f GDPR. Contact is only made with the consent of the contact partners or within the scope of legal permissions and the processed data is deleted as soon as it is no longer required and otherwise with objection/revocation or discontinuation of the basis for authorization or legal archiving obligations. We delete the requests if they are no longer required. We review the necessity every two years;
Contact form
If you use our contact form, your details from the inquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. By entering your data in the contact form, you consent to it (your name and e-mail address) being stored by KRZYSZTOF BORYSIEWICZ. This consent can be revoked at any time by sending an e-mail to krzysztof.borysiewicz@gmail.com. The data entered in the contact form is therefore processed exclusively on the basis of your consent (Art. 6 para. 1 lit. a GDPR). The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
Collection of access data and log files
We collect on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR, we collect data about every access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed file date and time of access amount of data transferred notification of successful access browser type and version, the user’s operating system referrer URL (the previously visited page) IP address and the requesting provider. Log file information is stored for a maximum of seven days for security reasons (e.g. to investigate misuse or fraud) and then deleted. Data whose further storage is required for evidentiary purposes is excluded from deletion until the respective incident has been finally clarified. Registration, login and user account
Multilingualism of the website
We use the Polylang plugin for the multilingualism of this website. Polylang is a product of WP SYNTEX, 28, rue Jean Sebastien Bach, 38090 Villefontaine, France. Polylang cookies are only used to recognize the language used or selected by the user. These cookies remain stored for one year and are then deleted.
Further information on data protection compliance can be found here: https://polylang.pro/doc/is-polylang-compatible-with-the-eu-cookie-law/
