webshop

Privacy Policy

1. Overview

If we welcome you as a customer or business partner, please read from point 3.

If you visit our website, please read from point 2.

2. What data do we process when you visit our website?

Welcome to our website! Please get a picture of how we process your personal data when you visit our website (Art 13, Art 14 GDPR; section 165 (3) “TKG” [Austrian telecommunication Act]).

When visiting our website, the following data may be processed:

  • Browser type (user agent),
  • Public IP address and visited pages on our website including entry and exit pages,
  • country,
  • operating system,
  • Display resolution,
  • Device data: We may store personal data from your device. Such data includes geolocation data, IP address, unique identifiers (e.g. MAC address),
  • date, time and duration of access,
  • data you enter via a contact form,
  • e-mail address,
  • first and last name,
  • data in the course of the newsletter service;
  • Data in the course of the purchase of digital products (payment data);
  • Data entered in the contact form;
  • Entry of dates and reason for the meeting including contact details

The processing of this data is necessary to manage the security of the operation of the website and to ensure the functionality of the website from a technical point of view. The collection of this data is partly carried out via technical cookies. These technical cookies are only used to the extent necessary (section 165 (3) TKG). The processing of this data is justified by our legitimate interest in operating our website (Art 6 para 1 lit f GDPR).

For the operation of our website, it may be necessary for us to disclose your data to the following recipients:

Recipient of data: Automattic Inc (WordPress und Woocommerce)

    • Purpose of data processing: Hosting-Provider, Content-Management-System, Webshop, CRM
    • Legal justification: Legitimate Interst (Art 6 Abs 1 lit f GDPR)
    • Location: USA
    • Basis for third country transfer: EU-US Data Privacy Framework: Automattic Inc is listed under the EU-US Data Privacy Framework. Attention: Only “Non-HR Data” is covered.

Recipient of Data: Alphabet Inc (Google LLC), Google Analytics

    • Purpose of data processing: Statistical analysis tool
    • Legal justification: Consensus (Art 6 Abs 1 lit a GDPR) regarding Google Analytics
    • Location: USA
    • Basis for transfer to a third country: EU-US Data Privacy Framework: Google LLC is listed under the EU-US Data Privacy Framework.

Recipient of Data: Facebook (Meta Platform, Inc); LinkedIn (Microsoft Corporation)

    • Purpose of data processing: Social Media Platforms
    • Legal justification: Consensus (Art 6 Abs 1 lit a GDPR)
    • Location: USA
    • Basis for transfer to a third country: EU-US Data Privacy Framework: Meta Platform, Inc and Microsoft Corporation are listed under the EU-US Data Privacy Framework. Attention: Regarding Meta platforms, Inc “Non-HR Data” is covered

Recipient of Data: Stripe, Inc

    • Purpose of data processing: Payment-Provider
    • Legal justification: Contractual necessity (Art 6 Abs 1 lit b GDPR)
    • Location: USA
    • Basis for transfer to a third country: EU-US Data Privacy Framework: Google LLC is listed under the EU-US Data Privacy Framework.

Recipient of data: Calendly, LLC

    • Purpose of data Processing: Tool to manage appointments
    • Legal justification: Legitimate interest (Art 6 Abs 1 lit f DSGVO)
    • Basis for transfer to a third country: EU-US Data Privacy Framework: Calendly LLC is listed under the EU-US Data Privacy Framework. Attention: Only “Non-HR Data” is covered
    • Location: USA

Recipient of data: Klaviyo, Inc

    • Purpose of data Processing: Newsletter -Tool
    • Legal justification: Legitimate interest (Art 6 Abs 1 lit f DSGVO)
    • Location: USA
    • Basis for transfer to a third country: EU-US Data Privacy Framework: Calendly LLC is listed under the EU-US Data Privacy Framework.

2.1. Overview of „technical“ cookies

The above data is stored via so-called “cookies”. Cookies are text files that are stored on your computer and allow an analysis of the use of the website. They are used for recognition and storage of temporary data of the homepage visitor. In principle, we only use cookies to the extent necessary to communicate with you via the homepage.

These technical cookies are activated as soon as you visit our website.

The following cookies are used on our platform based on our predominantly legitimate interest (Art 6 para 1 lit f GDPR):

A list of the technical cookies can be found in the cookie banner – or here.

2.2. Overview of „marketing“ Cookies

In addition to the “technical cookies” described above, we also use so-called marketing cookies (including “statistical cookies”). These marketing cookies allow us to better understand and evaluate your interests. With the help of the marketing cookies, we can merge your “surfing behavior” across the boundaries of our website with data from other websites. In this way, we would like to be in a position to better understand the interests of our homepage visitors and to be able to address them in a more targeted manner.

We respect that not every visitor of the website wants this. Therefore, we process your data in the course of advertising cookies only if you consent (Art 6 para 1 lit a GDPR). You can revoke this consent at any time, whereby the data processing carried out until the time of revocation remains justified.

A list of the technical cookies can be found in the cookie banner – or here.

 

3. For what purposes do we process your data if you are a customer of ours or have a business relationship with us?

In the course of our business relationship with customers and business partners, we process data on the basis of contractual(processing of the contractual relationship with you, pre-contractual obligations, invoicing of services, dispatch of documents, communication for the processing of the contract) and legal obligations (legally required storage within the meaning of section 132 BAO) (Art 6 para 1 lit b and c GDPR) as well as on the basis of our legitimate interests or on the basis of legitimate interests of third parties (Art 6 para 1 lit f GDPR), namely:

  • for the purpose of internal administration and management of your business case to the extent necessary (e.g.: Processing your business case, forwarding your business case to various departments, filing, archiving purposes, correspondence with you);
  • Provision of our digital products;
  • Carrying out a due diligence review;
  • Processing of data for advertising purposes. This processing can be objected to at any time without reason;
  • Transfer of data to other service providers for the purpose of order processing;
  • Assertion and defence of legal claims

in each case to the extent necessary. The processing of your data serves the initiation, maintenance and settlement of our business relations. If you do not provide us with this data, we will unfortunately not be able to process your business case.

If applicable, we process your data based on your voluntary, explicit consent (Art 6 para 1 lit a DSGVO).

4. Taking of photos and videos in the course of an event?

In the course of organising events, it may happen that photos or videos are taken of participants. These photos or videos may be published in press reports and on social media as well as in publications and on the website. The processing of these photos is based on your voluntary consent. You can revoke your consent at any time. Please note, however, that once photos have been published, they cannot be removed retroactively.

5. How long do we store your data?

We will only store your data for as long as is necessary for the purposes for which we collected your data. In this context, statutory retention obligations must be taken into account (for example, for reasons of tax law, contracts and other documents from our contractual relationship must generally be retained for a period of seven years (section 132 BAO)). In justified individual cases, such as for the assertion and defense of legal claims, we may also store your data for up to 30 years after termination of the business relationship.

We store data of interested parties for up to one year from the date of the last contact by the interested party.

6. Data-Security

Your personal data, if you disclose it to us, will be transmitted over the Internet in encrypted form (SSL). You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://”.

 

7. Who might receive your data

In the course of our business relationship, it may be necessary for us to transmit your data to the following recipients:

 

Recipient: Auditor and tax consultant (SWP Steuerberatung GmbH))

    • Purpose: Tax consultation
    • Legal justification: Contractual obligation
    • Country: Austria
    • Reason for transfer in third country: Within the EAA

Recipient: Bank (Sparkasse Frankenmarkt AG)

    • Purpose: Payment-transaction
    • Legal justifiaction: Contractual obligation
    • Country: Austria
    • Reason for transfer in third country: Within the EAA

Recipient: Attorney at law (Dr. Tobias Tretzmüller, LL.M.), courts, national authorities

    • Purpose: Pursuing and defending legal claims
    • Legal justification: Legitimate interest
    • Country: Austria
    • Reason for transfer in third country: Within the EAA

Recipient: Cooperation partner

    • Purpose: Order processing
    • Legal justification: Legitimate interest
    • Country: Austria
    • Reason for transfer in third country: Within the EAA

Recipient: Event provider

    • Purpose: Transmission of data for the purpose of processing the event
    • Legal basis: Contractual necessity
    • Country: Austria
    • Basis for transfer to third country: Within the EEA

Recipient: Photographer

    • Purpose: Creation of photos and videos at events
    • Legal basis: Predominantly legitimate interests
    • Country: Austria
    • Basis for transfer to third country: Within the EEA
8. Collection of data from other sources (Art 14 GDPR)
In the course of a business relationship or the initiation thereof, it is naturally necessary to conduct research on the business partner. This is done exclusively to the extent necessary for this purpose. In this context, data may be retrieved and processed from the following sources:
Our company does not obtain data from third party sources.
9. Does automated decision-making or profiling take place (Art. 13 para. 2 lit f GDPR)?
No automated decision-making or profiling takes place in our company.
10. What rights do you have with regard to data processing?
We would like to inform you that you have, if the legal requirements are met:
  • Have the right to request information about which of your data is processed by us (see in detail Art 15 GDPR).
  • You have the right to request the correction or completion of incorrect or incomplete data concerning you (see in detail Art 16 GDPR).
  • Have the right to have your data deleted (see in detail Art 17 GDPR).
  • Have the right to object to processing of your data that is necessary to protect our legitimate interests or those of a third party (see in detail Art 21 of the GDPR). This applies in particular to the processing of your data for advertising purposes.
  • Have the right to receive the transfer of the data you have provided in a structured, common and machine-readable format.

If we process your data on the basis of your consent, you have the right to revoke this consent at any time by e-mail. This will not affect the lawfulness of the data processing carried out up to that point (Art 7 (3) GDPR).

11. What are your rights to lodge a complaint?

If, contrary to expectations, there is a violation of your right to lawful processing of your data, please contact us by mail or e-mail. We will make every effort to process your concerns promptly. However, you also have the right to lodge a complaint with the supervisory authority for data protection matters responsible for you.

The address of the Austrian data protection authority is:

Austrian Data Protection Authority
Barichgasse 40-42,
1030 Vienna

12. How can you get in contact with us?

If you have any further questions about the processing of your data, please feel free to contact our data protection coordinator using the contact details below.
13. Controller

Controller in the sense of Art 4 number 7 GDPR is:

MARK.SENZE e.U.
Marilies-Moest-Strasse 37
4600 Wels
Austria
Telefon: +43 676 63 18 708
E-Mail: info@marksenze.com
Business Owner: Christoph Zoister

FOLLOW US
SUBSCRIBE


    Book Appointment
    Information regarding the processing of your data can be found in our Privacy Policy.

    © copyright – mark.senze