top of page


Data protection

Introduction and overview

We have written this data protection declaration (version 18.06.2023-312524389) in order to provide you with information in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679  and applicable national laws to explain which personal data (data for short) we as the responsible party - and the processors commissioned by us (e.g. providers) - process, will process in the future and what legal options you have. The terms used are to be understood as gender-neutral.
In short: We inform you comprehensively about data that we process about you.

Privacy statements usually sound very technical and use legal jargon. This data protection declaration, on the other hand, is intended to describe the most important things as simply and transparently as possible. As far as transparency is conducive, technical terms are explained in a reader-friendly way, links to further information are provided and graphics are used. We are thus informing you in clear and simple language that we only process personal data in the course of our business activities if there is a corresponding legal basis. This is certainly not possible if you make the most concise, unclear and legal-technical statements possible, as they are often standard on the Internet when it comes to data protection. I hope that you find the following explanations interesting and informative and that you may find some information that you did not already know.
If you still have questions, we would like to ask you to contact the responsible person named below or in the imprint, to follow the links provided and to look at further information on third-party websites. Our contact details can of course also be found in the imprint.

scope of application

This data protection declaration applies to all personal data processed by us in the company and to all personal data that companies commissioned by us (processors) process. By personal data we mean information within the meaning of Art. 4 No. 1 GDPR such as a person's name, e-mail address and postal address. The processing of personal data ensures that we can offer and bill our services and products, whether online or offline. The scope of this privacy policy includes:

  • all online presences (websites, online shops) that we operate

  • Social media appearances and email communication

  • mobile apps for smartphones and other devices

In short: The data protection declaration applies to all areas in which personal data is processed in a structured manner in the company via the channels mentioned. If we enter into legal relationships with you outside of these channels, we will inform you separately if necessary.

legal bases

In the following data protection declaration, we provide you with transparent information on the legal principles and regulations, i.e. the legal basis of the General Data Protection Regulation, which enable us to process personal data.
As far as EU law is concerned, we refer to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016. You can of course read this EU General Data Protection Regulation online on EUR-Lex, the gateway to the EU -Right, under read up.

We only process your data if at least one of the following conditions applies:

  1. Consent (Article 6 Paragraph 1 lit. a GDPR): You have given us your consent to process data for a specific purpose. An example would be storing the data you entered on a contact form.

  2. Contract (Article 6 Paragraph 1 lit. b GDPR): In order to fulfill a contract or pre-contractual obligations with you, we process your data. For example, if we conclude a sales contract with you, we need personal information in advance.

  3. Legal obligation (Article 6 paragraph 1 lit. c GDPR): If we are subject to a legal obligation, we process your data. For example, we are required by law to keep invoices for accounting purposes. These usually contain personal data.

  4. Legitimate interests (Article 6 Paragraph 1 lit. f GDPR): In the case of legitimate interests that do not restrict your fundamental rights, we reserve the right to process personal data. For example, we need to process certain data in order to be able to operate our website securely and economically. This processing is therefore a legitimate interest.

Other conditions such as the perception of recordings in the public interest and the exercise of public authority as well as the protection of vital interests do not usually apply to us. If such a legal basis should be relevant, it will be shown in the appropriate place.

In addition to the EU regulation, national laws also apply:

  • In Austria, this is the federal law for the protection of natural persons when processing personal data (data protection law), DSG for short.

  • In Germany, the Federal Data Protection Act, BDSG for short, applies.

If other regional or national laws apply, we will inform you about them in the following sections.

Contact details of the person responsible

If you have any questions about data protection or the processing of personal data, you will find the contact details of the person or body responsible below:
Authorized representative: Svenja Nowak

storage duration

The fact that we only store personal data for as long as is absolutely necessary for the provision of our services and products is a general criterion for us. This means that we delete personal data as soon as the reason for the data processing no longer exists. In some cases, we are legally obliged to store certain data even after the original purpose has ceased to exist, for example for accounting purposes.

If you wish your data to be deleted or revoke your consent to data processing, the data will be deleted as quickly as possible and provided there is no obligation to store it.

We will inform you below about the specific duration of the respective data processing, provided that we have further information on this.

Rights under the General Data Protection Regulation

In accordance with Articles 13 and 14 GDPR, we inform you about the following rights to which you are entitled so that data is processed fairly and transparently:

  • According to Article 15 GDPR, you have a right to information as to whether we are processing your data. If this is the case, you have the right to receive a copy of the data and to be informed of the following information:

    • for what purpose we carry out the processing;

    • the categories, i.e. the types of data that are processed;

    • who receives this data and if the data is transferred to third countries, how security can be guaranteed;

    • how long the data is stored;

    • the existence of the right to rectification, erasure or restriction of processing and the right to object to processing;

    • that you can complain to a supervisory authority (links to these authorities can be found below);

    • the origin of the data if we did not collect it from you;

    • whether profiling is carried out, i.e. whether data is automatically evaluated in order to create a personal profile for you.

  • According to Article 16 GDPR, you have the right to have the data corrected, which means that we have to correct data if you find any errors.

  • According to Article 17 GDPR, you have the right to erasure ("right to be forgotten"), which specifically means that you can request the erasure of your data.

  • According to Article 18 GDPR, you have the right to restriction of processing, which means that we may only store the data but not use it further.

  • According to Article 20 GDPR, you have the right to data portability, which means that we can provide you with your data in a common format upon request.

  • According to Article 21 GDPR, you have a right of objection, which, after enforcement, will result in a change in processing.

    • If the processing of your data is based on Article 6 Paragraph 1 Letter e (public interest, exercise of official authority) or Article 6 Paragraph 1 Letter f (legitimate interest), you can object to the processing. We will then check as quickly as possible whether we can legally comply with this objection.

    • If data is used to operate direct advertising, you can object to this type of data processing at any time. We may no longer use your data for direct marketing after this.

    • If data is used to operate profiling, you can object to this type of data processing at any time. We may no longer use your data for profiling after this.

  • According to Article 22 GDPR, you may have the right not to be subject to a decision based solely on automated processing (e.g. profiling).

  • According to Article 77 GDPR, you have the right to lodge a complaint. This means that you can complain to the data protection authority at any time if you believe that the processing of personal data violates the GDPR.

In short: you have rights - do not hesitate to contact the responsible person listed above!

If you believe that the processing of your data violates data protection law or your data protection rights have been violated in any other way, you can complain to the supervisory authority. This is the data protection authority for Austria, whose website you can find at find. In Germany there is a data protection officer for each federal state. For more information you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI) turn. The following local data protection authority is responsible for our company:

Blogs and publication media Introduction

Blogs and Publication Media Privacy Statement Summary
👥 Affected: Visitors to the website
🤝 Purpose: Presentation and optimization of our service as well as communication between website visitors, security measures and administration
📓 Data processed: Data such as contact details, IP address and published content.
More details can be found under the tools used.
📅 Storage duration: depends on the tools used
⚖️ Legal basis: Article 6 paragraph 1 letter a GDPR (consent), Article 6 paragraph 1 letter f GDPR (legitimate interests), Article 6 paragraph 1 sentence 1 letter b. GDPR (contract)

What are blogs and publication media?

We use blogs or other means of communication on our website with which we can communicate with you on the one hand and you can also communicate with us on the other. Your data can also be stored and processed by us. This may be necessary so that we can display content appropriately, communication works and security is increased. In our data protection text we go into general information about which of your data can be processed. Exact information on data processing always depends on the tools and functions used. You will find detailed information about data processing in the data protection notices of the individual providers.

Why do we use blogs and publication media?

Our greatest concern with our website is to offer you interesting and exciting content, and at the same time your opinions and content are important to us. That's why we want to create a good interactive exchange between us and you. With various blogs and publication options, we can achieve exactly that. For example, you can post comments about our content, comment on others' comments or, in some cases, post posts yourself.

Which data are processed?

Exactly which data is processed always depends on the communication functions we use. Very often IP address, username and the published content are saved. This is done primarily to ensure security protection, to prevent spam and to be able to take action against illegal content. Cookies can also be used for data storage. These are small text files that are stored with information in your browser. You can find more information about the collected and stored data in our individual sections and in the data protection declaration of the respective provider.

Duration of data processing

We will inform you below about the duration of data processing if we have further information on this. For example, post and comment functions store data until you revoke data storage. In general, personal data is only stored for as long as is absolutely necessary for the provision of our services.

Right to object

You also have the right and the option to revoke your consent to the use of cookies or third-party communication tools at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting the cookies in your browser.

Since cookies can also be used in publication media, we also recommend our general data protection declaration on cookies. To find out exactly what data is stored and processed by you, you should read the data protection declarations of the respective tools.

legal basis

We use the means of communication mainly on the basis of our legitimate interests (Art. 6 Para. 1 lit. f GDPR) in fast and good communication with you or other customers, business partners and visitors. Insofar as the use serves to process contractual relationships or to initiate them, the legal basis is also Article 6 Paragraph 1 Sentence 1 lit. b. GDPR.

Certain types of processing, in particular the use of cookies and the use of comment or message functions, require your consent. If and to the extent that you have consented to data being processed and stored by integrated publication media, this consent is the legal basis for data processing (Article 6 (1) (a) GDPR). Most of the communication features we use set cookies on your browser to store data. We therefore recommend that you read our privacy statement on cookies carefully and consult the privacy statement or cookie policy of the relevant service provider.

You can find information on special tools – if available – in the following sections.

Blog posts and comment functions Privacy Policy

There are various online communication tools that we can use on our website. For example, we use blog posts and comment functions. This gives you the option of commenting on content or writing articles. If you use this function, your IP address can be saved for security reasons. This is how we protect ourselves from illegal content such as insults, illegal advertising or prohibited political propaganda. In order to recognize whether comments are spam, we can also store and process user information on the basis of our legitimate interest. If we start a survey, we also save your IP address for the duration of the survey so that we can be sure that everyone involved really only votes once. Cookies can also be used for storage purposes. All data that we store about you (e.g. content or information about you) remains stored until you object. Privacy Policy

We also use the hosting and blogger platform on our website. The service provider is the American company Google Inc. The company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services in Europe.

Google also processes data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be associated with various risks for the legality and security of data processing.

Google uses standard contractual clauses approved by the EU Commission (= Art. 46. Para. 2 and 3 GDPR). These clauses oblige Google to comply with EU data protection standards when processing relevant data outside of the EU. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the clauses here:

You can find out more about the data processed by using Google in the privacy policy on

All texts are copyrighted.

bottom of page