Data Protection Declaration
(Stand: 09.04.2018)
We appreciate your interest in our company. Data protection is of particular importance to the management of Onlinebewertungen e.U.. The Internet pages of Onlinebewertungen e.U. can be basically used without giving any personal data. If a person concerned wishes to make use of our company’s services through our website, processing of personal data could be necessary though. If the processing of personal data is necessary and there is no legal basis for such processing, the subject generally must consent to us processing their data.
§1 Name and address of the Controller
The Controller in terms of the General Data Protection Regulation, other data protection laws in the Member States of the European Union and other provisions of a data protection character is:
Onlinebewertungen e.U.
Pater-Schwartz-Gasse 11A
1150 Vienna
Austria
represented by the owner: Mr. Matthäus Bognar
Email: info@sessionly.io
Website: www.sessionly.io
Phone: +43 2234 72494
§2 Personal data
2.1 General
Personal information is information that may disclose or reveal the identity of the customer. We adhere to the principle of data avoidance. The collection of personal data is avoided whenever possible.
2.2 Handling
Personal data is provided for contractual reasons, content design, execution and completion of the contractual relationship. Your data will not be shared with third parties. For the processing of payments, the payment data required for this purpose shall be passed on to the credit institution commissioned with the payment and, if applicable, the commissioned and selected payment service provider. The use of personal data therefore occurs only to the extent necessary, or if it is required by law or court order, or if necessary, in order to lawfully prevent any illegal use or use in violation of the general terms and conditions.
2.3 Right to information
You have the right to be informed by the data controller about the processing of your personal data. We collect, store and process your data for the entire processing of services provided by >Sessionly for the service department, for the technical administrator and for our own marketing purposes. We collect this data directly when you visit our website. The provision of your personal data is in any case voluntary. Your personal data will only be passed on to third parties if this is legally permissible, for the purposes of contract processing and invoicing, for marketing purposes or if you have given your prior consent. Your personal data will only be kept by us for as long as reasonably deemed necessary by us to achieve the above objectives and as permitted by applicable law. In any case, we store your personal data as long as statutory retention obligations exist or limitation periods for potential legal claims have not yet expired. If you have any questions or concerns regarding the processing of your personal data, please contact us.
2.4 Right of objection
You can object to the storage of your personal data at any time if a) the personal data are processed on the legal basis of an overriding legitimate interest b) are processed on the legal basis to perform a task in the public interest or in the exercise of public authority c) are processed for direct marketing purposes d) are processed for scientific or historical research purposes or for statistical purposes. In order to exercise your right, you must in any case prove your identity.
2.5 Right to confirmation and information
Upon written request, we will inform you of data stored relating to you. This is free, as a matter of principle. In principle, a request for information can be answered in any suitable form. You have the right to obtain confirmation as to whether or not your personal data is processed. Furthermore, you have the right to receive a copy of your personal data. In order to exercise your right, you must in any case prove your identity.
2.6 Right to correction
You have the right at any time to have incorrect personal data corrected, deleted or blocked upon request if data processing results in incorrect personal data of yours. Depending on the purpose of data processing, different deadlines apply for correction. The exercise of this right is free. In order to exercise your right, you must in any case prove your identity.
2.7 Right to deletion (Right to be forgotten)
You have the right to have your data deleted immediately if a) it is no longer necessary to store the data for the purpose of data collection b) you revoke your consent to data processing c) the data are processed unlawfully d) the deletion of the data is based on a legal basis. The data does not have to be deleted if a) freedom of opinion and information prevails b) the storage of the data corresponds to a legal obligation c) the data are necessary for the protection of legal claims. In order to exercise your right, you must in any case prove your identity.
2.8 Right to restrict processing
You have the right to restrict processing if a) you question the accuracy of the data b) the processing is unlawful c) the data is required to assert legal claims after the purpose of the data processing has been completed d) you have lodged an objection pursuant to Art 21 GDPR. In order to exercise your right, you must in any case prove your identity.
2.9 Right to Data Transferability
You have the right to data transferability in an appropriate form if you a) exercise your right towards a controller b) the data have been actively made available to the controller c) the data are processed automatically e) the processing is based on the legal consent or the necessity to fulfil a concluded contract. This gives you the right to have data automatically transferred to another provider. In order to exercise your right, you must in any case prove your identity.
2.10 Right of objection
You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning your person, which may be processed on the basis of art. 6 para. 1 lit. e or f GDPR. This also applies to profiling based on these provisions. In the case of an objection, we will no longer process your personal data unless we can prove a compelling legitimate interest in its continued processing that outweighs your interests, rights, and freedoms, or if the processing serves to assert, exercise, or defend our legal claims. In order to exercise your right, you must in any case prove your identity.
2.11 Right to revoke consent
You have the right to revoke your consent to the processing of personal data at any time. In order to exercise your right, you must in any case prove your identity.
§3. Usage and registration data
3.1 Usage data
When you visit the website, general technical information is collected. This includes the IP address used, time, duration of the visit, browser type and if necessary the website of your origin. These usage data are registered in a logfile and can be used and stored for statistical purposes of this website. A linking of these usage data with your personal data does not take place.
3.2 Registration data
Registration is required for full use of the website’s functions. The registration data will only be collected through your relevant input and used only for the specific purpose stated or to lawfully prevent misuse contrary to the general terms and conditions.
§4. Data Security
4.1 Data security
All data on our website is protected by technical and organisational measures against loss, destruction, access, modification and distribution. However, we assume no liability for the destruction and damage of data.
4.2 Sessions and cookies
To operate the website we may use cookies or server-side sessions in which data can be stored. Cookies also serve e.g. to enable the personal greeting with the user name. Cookies are files that are stored by a Website on the client’s harddrive to automatically detect their computer ,when visiting our website and thus to adapt the site to the client. Some of the cookies used will be deleted after the end of the browser session. These are so-called session cookies. Other cookies remain on your device and allow the recognition of the browser during a later visit to our website (persistent cookies). You can set your browser so that you are informed about the use of cookies and decide individually on whether to accept them or to deactivate the acceptance of cookies, just in certain cases or completely. Please note that you may not be able to use some features of this website if cookies are disabled.
Cookie declaration
§5. Newsletter
If you sign up to our newsletter, we use the data that is necessary, or separately provided by you, to send you our e-mail newsletter on a regular basis. You can unsubscribe from the newsletter at any time and you can do so either by sending a message to us via the contact options given in the imprint or via the link provided for this purpose in the newsletter.
§6. Third Party Services
6.1 Google Analytics
This website uses Google Analytics, a web analytics service provided by Google, operated by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (“Google”), and collects and uses this web analytics service to collect data, from which usage profiles are created using pseudonyms. The usage profiles created in this way are used to evaluate the visitor behavior in order to design and improve the offer presented on our website as required. Google Analytics uses so-called “cookies”, text files that are stored on your computer and that permit analysis of your use of the website. As a rule, the cookie-generated information regarding your use of this website will be forwarded to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, your IP address will be truncated by Google within the member states of the European Union or in other countries that are contracting parties to the Agreement in the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports about website activity, and to provide the website operator with other services related to website activity and internet usage. The IP address provided by your browser as part of Google Analytics will not be combined with other data from Google. Even the user profiles managed under a pseudonym are not combined with the personal data about the user without explicit and separately declared consent of the user. You can prevent the use of cookies by selecting the appropriate settings on your browser; however, we would like to point out, that if you do this, you may not be able to access all functions provided on this website to their full extent. Furthermore, you can also prevent the entering of data generated by the cookie about the use of the website (including your IP address) to Google as well as the processing of these data by Google, by downloading and installing the browser plugin available at the following link (http://tools.google.com/dlpage/gaoptout?hl=de).
Google privacy notices are available at http://www.google.de/intl/de/policies/privacy/. You can find more information on the Terms of Use and Privacy Policy at http://www.google.com/analytics/terms/de.html or http://www.google.com/intl/de/analytics/privacyoverview.html. We point out that on this website Google Analytics has been extended by the code “anonymizeIp” in order to ensure an anonymous collection of IP addresses (so-called IP masking).
6.2 Social media links and social sharing
We have our own social media pages for the third-party providers to be reached via links from our website. By using the links, you can access to the respective websites of third-party providers (e.g. Facebook, Twitter, Google+) and can also share our content. In this case, there is no data transfer by calling our website. Once you have accessed the third-party site, you have the responsibility of each third-party provider, including their privacy statements and their statements about your data using. We do not have any influence on this, but we recommend that you log out of the respective third-party provider to avoid unnecessary data transfer before using a corresponding link, so that profiles user may not be created by the third-party provider even if the link is used. We deliberately used only links and waived further third-party plug-ins to protect your data.
6.3 Facebook
The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. The controller responsible for the processing of personal data, if you reside outside the US or Canada, is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Each time you visit one of the individual pages of our website on which a Facebook component (Facebook plug-in) has been integrated, your Internet browser on the information technology
system is automatically prompted by the respective Facebook component to download a view of the corresponding Facebook component from Facebook. An overview of all Facebook plug-ins can be found at https://developers.facebook.com/docs/plugins/?locale=de_DE. As part of this technical process, Facebook receives information about the specific sub-page of our website visited by you.
If you are logged in to Facebook at the same time, Facebook recognizes every time you visit our website and for the entire duration of your stay on our website which specific subpage of our website you are visiting. This information is collected by the Facebook component and assigned to your Facebook account. If you click one of the Facebook buttons integrated on our website, for example the “Like” button, or enter a comment, Facebook assigns this information to your personal Facebook user account and stores this personal data.
The Facebook component informs Facebook that you have visited our website whenever you are logged in to Facebook at the same time as you visit our website, regardless of whether you click on the Facebook component or not. If you do not want this information to be sent to Facebook, you can prevent it from being sent by logging out of your Facebook account before you visit our website.
The data policy published by Facebook available at https://de-de.facebook.com/about/privacy/ provides information on the collection, processing and use of personal data by Facebook. It further explains what setting options Facebook offers to protect your privacy. In addition, various applications are available that make it possible to suppress data transmission to Facebook, for example the Facebook blocker of the provider Webgraph, which is available at http://webgraph.com/resources/facebookblocker/ Such applications can be used by you to suppress data transmission to Facebook.
6.4 Use of Google Maps
We use the component “Google Maps” from Google Inc. 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter “Google”.
Each time you access the Google Maps component, Google sets a cookie to process user settings and data when you view the page that includes the Google Maps component.
As a rule, this cookie is not deleted when you close your browser, but expires after a certain time unless you delete it manually beforehand.
If you do not agree to this processing of your data, it is possible to deactivate the “Google Maps” service and thus prevent the transfer of data to Google. To do this, you must deactivate the JavaScript function in your browser. However, we would like to point out that in this case you will not be able to use the “Google Maps” component, or only to a limited extent.
The use of “Google Maps” and the information obtained via “Google Maps” is subject to the Google Terms of Use
http://www.google.de/intl/de/policies/terms/regional.html
as well as the additional terms and conditions for “Google Maps”.
6.5 Use of Google +
The provider of this service is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Collection and disclosure of information: Using the Google + button allows you to publish information worldwide. By means of the Google+ button, you and other users can receive custom content from Google and our partners. Google stores both the fact that you have +1’d a piece of content and also information about the page you were viewing when you clicked +1. Your +1 can be displayed together with your profile name and photo in Google services, for example in search results or in your Google profile, or in other places on websites and advertisements on the Internet.
Google records information about your +1 activities in order to improve Google services for you and others. To be able to use the Google+ button, you need a globally visible, public Google profile that must contain at least the name chosen for t
he profile. This name is used by all Google services. In some cases, this name may also replace a different name that you have used to share content via your Google account. The identity of your Google profile can be shown to users who know your email address or other information that can identify you.
Use of collected data: In addition to the uses mentioned above, the information you provide is used in accordance with the applicable Google data protection policies. Google may publish summary statistics about the +1 activity of users, or share it with users and partners such as publishers, advertisers or affiliate websites.
6.6 Google Tag Manager
Google Tag Manager is a solution that allows marketers to manage web page tags through a single interface. The Tag Manager tool itself (which implements the tags) is a cookieless domain and does not collect any personal data. The tool triggers other tags, which in turn may collect data under certain circumstances. The Google Tag Manager does not access this data. If deactivation occurs at domain or cookie level, it remains in use for all tracking tags, which are implemented by Google Tag Manager. For more information, see: http://www.google.de/tagmanager/use-policy.html
6.7 Payment service providers
For invoicing we use Chargebee, a service of Chargebee Inc., 340 S Lemon Avenue, #1537, Walnut, California 91789, USA. For more information about Chargebee’s privacy policy, please visit https://www.chargebee.com/privacy.html
When paying by credit card or direct debit, payment is processed by Stripe from the payment service provider Stripe Payments Europe Ltd, Block 4, Harcourt Centre, Harcourt Road, Dublin 2, Ireland. For more information about Stripe’s privacy policy, please visit https://stripe.com/de/privacy
When paying by Paypal, payment is processed via Paypal, PayPal (Europe) S.à r.l. et Cie, S.C.A.22-24 Boulevard Royal, L-2449 Luxembourg. Further information on Paypal’s data protection can be found at https://www.paypal.com/at/webapps/mpp/ua/privacy-full
6.8 Hubspot
We use HubSpot for our online marketing activities. This is an integrated software solution with which we cover various aspects of our online marketing. These include, among others:
- – Content Management (website and blog)
- – E-mail marketing (newsletters and automated mailings, e.g. for the provision of downloads)
- – Social Media Publishing & Reporting
- – Reporting (e.g. traffic sources, accesses, etc….)
- – Contact management (e.g. user segmentation & CRM)
- – Landing Pages and Contact Forms
Our registration service allows visitors of our website to learn more about our company, download content and provide their contact information and other demographic information. This information, as well as the contents of our website, is stored on servers of our software partner HubSpot. We may use the information to contact visitors of our website and to determine which of our company’s services are of interest to them. All information we collect is subject to this Privacy Policy. We use all collected information exclusively to optimize our marketing. HubSpot is a software company from the USA with a branch in Ireland.
Contact:
HubSpot
2nd Floor 30 North Wall Quay
Dublin 1, Ireland,
Phone: +353 1 5187500.
HubSpot is certified under the conditions of the „EU – U.S. Privacy Shield Frameworks“ and is subject to the TRUSTe ’s
Privacy Seal as well as the „U.S. – Swiss Safe Harbor“ Framework.
- More information on the privacy policy of HubSpot»
- More information from HubSpot about the EU data protection provisions»
- More information about the cookies used by HubSpot can be found here& here!
§7. Making contact
To contact us regarding data protection, you can use the contact options specified in the imprint (e.g. e-mail) or our contact form.
§8.Current state of the art
You know that according to the current state of the art, data protection is not yet guaranteed when data is transmitted over the Internet. In particular, e-mails do not constitute secure communication, because the “reading along” of content cannot be technically excluded. You are responsible for the security of the data you transmit to the Internet.
