Privacy policy

Status: May 25, 2018

The protection and security of your data is an important concern for us, Interzero GmbH, which we take into account in all our business processes. In this data protection declaration, we would therefore like to give you an overview of the data protection-relevant aspects of our online offer. In the following we explain:

  • What data we collect when you use the online services of Interzero GmbH.
  • For what purposes this data is processed by Interzero and third party companies.
  • What rights and choices you have regarding the processing of your data.
  • How to contact us on the subject of data protection.

When does this privacy policy apply?

This privacy policy applies to the online offers of Interzero GmbH under the domain Interzero.at as well as the social media presence of Interzero on Facebook (hereinafter “social media presences”).

For online offers of Interzero companies other than those mentioned above, separate data protection declarations apply in each case, which you can access within the corresponding offers.

1. responsibility and contact person

The responsible party for data processing within the meaning of the European Data Protection Regulation (DSGVO) is the

Interzero Ltd.

BIZ ZWEI, Vorgartenstraße 206c
1020 Vienna, Austria

If this data protection declaration refers to “we”, “us” or the “INTERSEROH”, this refers exclusively to Interzero GmbH.

You can reach Interzero’s company data protection officer at datenschutz@interseroh.at or by mail with the addition “Attn: Data Protection Officer”.

2. data processing when visiting our websites

2.1. Automatically collected access data

You can visit our websites without providing any personal information. In this case, only access data that is automatically transmitted to us by your browser is recorded. This includes, for example, your online identifiers (e.g. IP address, session IDs, device IDs); details of the web browser and operating system used; where applicable, the website from which you accessed our websites (i.e. if you accessed one of our websites via a link); the names of the files requested (i.e. which texts, videos, images, etc.); the language settings of your browser, error reports where applicable, and the times of individual accesses. you viewed on our websites); the language settings of your browser; error reports, if any; and the times of each access.

The processing of this access data is necessary to enable you to visit and comfortably use our websites and to ensure their permanent functionality and security.

The access data is also stored in internal log files for a short period of time in order to compile statistical information about the use of our website. This enables us to continuously optimize and further develop our websites with regard to the usage habits and technical equipment of our users and to eliminate malfunctions and security risks. The information stored in the log files does not allow any direct conclusions to be drawn about your person – in particular, we only store the IP addresses in shortened, anonymized form. The log files are stored for 30 days and archived after subsequent anonymization.

The legal basis for this data processing is Article 6(1)(f) DSGVO (balancing of interests based on our legitimate interests mentioned above).

2.2. Cookies

We use our own cookies and third-party cookies on our websites. A cookie is a standardized text file that is stored by your browser for a set period of time. Cookies enable the local storage of information such as language settings and temporary identifiers, which can be retrieved by the server that set the cookie during subsequent website visits. You can view and delete the cookies used in the security settings of your browser. You can configure your browser settings according to your preferences and thus, for example, refuse to accept cookies from third-party providers or all cookies. We would like to point out that in this case you may not be able to use all functions of our websites.

Our own cookies are used to make your visit to our websites more user-friendly and secure. The legal basis for the associated data processing is Article 6(1)(f) DSGVO.

For web analytics and advertising purposes, we use third-party cookies. For more information, please refer to sections 2.5 and 2.6. of this privacy policy.

2.3. Your news and messages

We collect all information and data that you provide to us through our websites. For example, at various points on our websites you have the option of sending us messages and, in some cases, files (e.g. PDF documents) via functions such as the “Contact form” or “Contact”. The mandatory information that may be required for these functions is identified as such.

Your information and will only be used by us to process your request.

We delete the resulting data after the storage is no longer necessary or restrict the processing if there are legal retention obligations.

Your message will only be forwarded to another Interzero company or to external third parties if this is necessary to process your request (for example, we will forward your message to another Interzero Group company if they are responsible for your request). If you do not want your message to possibly be passed on to another company, you can – of course also as a precaution – inform us of this directly in your message. We will then share your message with the other company without any such information that could identify you (e.g., your name, customer numbers, or contact information).

The legal basis for the data processing described above is Article 6(1)(b) DSGVO. Insofar as you have consented to the disclosure or other processing of the data you have provided, the legal basis is Article 6(1)(a) DSGVO.

2.4. YouTube video integration

We have embedded YouTube videos in parts of our websites. YouTube is a video platform operated by the Google company YouTube LLC, 901 Cherry Ave, San Bruno, CA 94066, USA (“YouTube”). The embedded YouTube videos can be played directly on our websites. These are embedded in “extended data protection mode”, i.e. no data about you as a user is transmitted to YouTube if you do not play the videos. Only when you play the videos is data transmitted to YouTube. We have no influence on this data transmission. In the event that personal data is transferred to the U.S., Google and YouTube have agreed to the EU-US Privacy Shield .

By calling up a website with embedded YouTube videos, YouTube and Google receive the access data that accrues in the process as well as the information that you have called up the corresponding sub-page of our website. This occurs regardless of whether or not you are logged into YouTube or Google. If you are logged in to Google, your data will be directly assigned to your Google account. If you do not want the association with your profile on YouTube, you must log out before playing a video. YouTube and Google may use your access data to create usage profiles for the purposes of advertising, market research, and demand-oriented design of their own websites. You have the right to object to the creation of these user profiles, whereby the objection is to be addressed directly to YouTube or Google. You can also find more information in Google’s privacy policy applicable to YouTube.

The legal basis for the data processing described above, insofar as we are responsible for it, is Article 6(1)(f) DSGVO (balancing of interests based on our legitimate interest in the integration of video content).

2.5. Analysis tools

2.5.1. Google Analytics

Our websites used the web analytics service Google Analytics, which is provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Analytics uses cookies to collect your access data when you visit our websites. The access data is compiled by Google on our behalf into pseudonymous usage profiles and transmitted to a Google server in the USA. Before this, your IP address is anonymized. We are therefore unable to determine which usage profiles belong to a particular user. Based on the data collected by Google, we can therefore neither identify you nor determine how you use our websites. In the event that personal data is transferred to the USA as an exception, Google has also joined the EU-US Privacy Shield. This means that data processing within the scope of Google Analytics is subject to an adequacy decision by the EU Commission, i.e. the level of data protection is recognized as adequate, even if processing exceptionally takes place in the USA.

Google will use the information obtained from the cookies on our behalf for the purpose of evaluating the use of our websites, compiling reports on website activity and providing us with other services relating to website activity and internet usage. You can also find more information on this in the Google Analytics privacy policy.

You can object to the creation and evaluation of pseudonymous usage profiles by Google described above at any time. You have several options for this:

(1) You can set your browser to block cookies from Google Analytics.

(2) You can change your Google Ads settings.

(3) You can install the deactivation plug-in provided by Google https://tools.google.com/dlpage/gaoptout?hl=de in your Firefox, Internetexplorer or Chrome browsers (this variant does not work on mobile devices).

(4) You can set a deactivation cookie by clicking here: Deactivate Google Analytics.

The legal basis for this data processing is Article 6(1)(f) DSGVO (balance of interests based on our legitimate interest in evaluating general usage behavior).

2.5.2. Google Tag Manager

Our website uses Google Tag Manager, a service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). The Tag Manager is used for more efficient management of so-called website tags. A website tag is a placeholder that is stored in the source code of our website, for example, to record the inclusion of frequently used website elements (e.g. code for the web analytics service). The Google Tag Manager does not require the use of cookies. Some of the data is processed on a Google server in the USA. In the event that personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield. The legal basis is Article 6(1)(f) DSGVO, based on our legitimate interest in the economic operation of our website. You can also find more information in Google’s tag manager information.

2.6. Notes on other third-party tools

2.6.1. Google ReCAPTCHA

We integrate the function for the recognition of bots, e.g. for entries in online forms (“ReCaptcha”) of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/
Opt-Out: https://adssettings.google.com/authenticated

2.6.2. Google Maps

We integrate the maps of the service “Google Maps” of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy Policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

2.6.3. MyFonts

Our website also uses external fonts for display, which are provided by the company MyFonts Inc., 600 Unicorn Park Drive, Woburn, MA 01801, USA (hereinafter: MyFonts). The integration of these fonts is done by a server call at MyFonts. In order to deliver the font files to your browser, at least your IP address is transmitted to a MyFonts server when you access our website. In addition, further information (e.g. name of the website called up, date and time of the request, type of web browser used) may be transmitted to MyFonts. To prevent the execution of Java Script codes from MyFonts, you can disable Java Script in your browser or install a Java Script blocker (e.g. www.noscript.netoderghostery.com). For more information about MyFonts’ privacy policy, please see the link below:

https://www.myfonts.com/info/legal/#Privacy.Rechtsgrundlage for this data processing is Article 6(1)(f) DSGVO (balance of interests based on our legitimate interest in evaluating general usage behavior).

3. data processing for social media presences

Interzero is represented in the following social networks with its own social media presences and can be reached by you:
Facebook

We will inform you there about news and activities of Interzero and we like to use the possibilities of social networks to communicate directly with their members.

However, please note that we have no influence on the data processing of the social networks. Therefore, please check carefully what personal information and messages you share with us via social networks and, if in doubt, use other contact options offered by us. We can therefore accept no liability for the behavior of the operators of the social networks and their other members.

If you communicate with us via our social media presences, we process the information made available to us for this purpose by the respective social network (e.g. your name, your profile page and the content of your messages addressed to us) in accordance with the purpose of your communication (e.g. service requests, suggestions and criticism).

We delete the resulting data after the storage is no longer necessary or restrict the processing if there are legal retention obligations. In the case of public posts on our social media presences, we decide on a case-by-case basis, taking into account your and our interests, whether and, if so, when we will delete them there.

The legal basis for the data processing described above depends on the purpose of your communication. Insofar as the purpose is to use our customer service or to request services from Interzero, the legal basis is Article 6(1)(b) DSGVO. Otherwise, the legal basis is Article 6(1)(f) DSGVO (balancing of interests based on our legitimate interest in processing your communication). Insofar as you have consented to the processing of the above data, the legal basis is Article 6(1)(a) DSGVO.

4. disclosure of data

4.1. Principle

As a matter of principle, we only pass on your data if:

  • you have given your express consent to this in accordance with Article 6(1)(a) DSGVO,
  • the disclosure is necessary for the assertion, exercise or defense of legal claims of an Interzero company pursuant to Article 6(1)(f) DSGVO and there is no reason to assume that you have an overriding legitimate interest in not having your data disclosed,
  • we are legally obliged to disclose in accordance with Article 6(1)(c) DSGVO or
  • the transfer is permitted by law and required under Article 6(1)(b) DSGVO for the performance of contractual relations with you or for the performance of pre-contractual measures taken at your request.

4.2. Transfer to external service providers of Interzero Dienstleistungs GmbH

Some of the data processing described in this Privacy Policy may be performed on our behalf by external service providers. In addition to the service providers mentioned in this privacy policy, this may include, in particular, data centers that store our websites and databases, IT service providers that maintain our systems, and consulting companies.

If we pass on data to our service providers, they may only use the data to perform their tasks. The service providers were carefully selected and commissioned by us. They are contractually bound by our instructions, have appropriate technical and organizational measures in place to protect the rights of the data subjects, and are regularly monitored by us.

If we transfer your data beyond the scope of this privacy policy to a service provider located in a country outside the European Economic Area (EEA), we may inform you separately about this circumstance and on which specific guarantees the data transfer is based. If you would like to receive copies of guarantees demonstrating an adequate level of data protection, please contact our Data Protection Officer (see section 1).

5. storage period

Unless otherwise stated in this Privacy Policy, we will only store and use your data for as long as is necessary to fulfill our contractual or legal obligations or the purposes for which the data was collected. However, after the expiry of the statutory limitation purposes, we will restrict the processing, i.e. your data will only be used to comply with the statutory obligations.

Thereafter, we delete the data immediately, unless we still need the data until the expiry of the statutory limitation period for evidence purposes for civil law claims or due to statutory retention obligations. Even after that, we may still need to store your data for accounting reasons. We are obliged to do so because of statutory documentation requirements that may arise from the German Commercial Code, the German Fiscal Code, the German Banking Act, the German Money Laundering Act and the German Securities Trading Act. The periods specified there for the retention of documents are two to ten years.
The legal basis for this data processing for purposes of fulfilling legal documentation and retention obligations is Article 6(1)(c) DSGVO.

6. your rights

To assert your statutory data protection rights described below, you can contact our data protection officer (see section 1) at any time:

  • You have the right to request information about the processing of your personal data by us at any time. In the course of providing information, we will explain the data processing to you and provide you with an overview of the data stored about your person.
  • If any data stored by us is incorrect or no longer up to date, you have the right to have this data corrected.
  • You can also request the deletion of your data. If deletion is exceptionally not possible due to other legal regulations, the data will be blocked so that they are only available for this legal purpose.
  • You can also have the processing of your data restricted, e.g. if you believe that the data we have stored is incorrect.
  • You have the right to data portability, which means that we will provide you with a digital copy of the personal data you have provided upon request.

You also have the right to complain to a data protection supervisory authority. The data protection authority for Interzero Dienstleistungs GmbH is the State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia, Postfach 20 04 44, 40102 Düsseldorf.

7. right of revocation and objection

If you wish to make use of your following rights of revocation or objection, it is sufficient to send an informal message to the contact data mentioned under point 1 above.

Revocation of consents

In accordance with Article 7 (2) DSGVO, you have the right to withdraw your consent at any time. As a result, we will no longer continue the data processing that was based on this consent for the future. The revocation of your consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

Objection to the processing of your data

Insofar as we process your data on the basis of legitimate interests pursuant to Article 6(1)(f) DSGVO, you have the right to object to the processing of your data pursuant to Article 21 DSGVO, insofar as there are grounds for doing so that arise from your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right of objection, which will also be implemented by us without giving reasons.

8. data security

We maintain appropriate technical measures for our online offers to ensure data security, in particular to protect your data from risks during data transmissions and from unauthorized access by third parties. These are adapted to the current state of the art in each case. To secure the personal information you provide on our website, we use Transport Layer Security (TLS), which encrypts the information you enter.

9. changes to this privacy policy

We may occasionally update this privacy statement, for example, if we make changes to our website or if legal or regulatory requirements change.