DATA PROTECTION DECLARATION

The protection of your personal data is of particular concern to us. Your data is therefore processed exclusively on the basis of the statutory provisions (GDPR, TKG 2003, DSG). In this data protection information, we inform you about the processing of your data. The terms used correspond to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

Controller

If you have any questions about this statement or wish to make a request, please contact us:

Mag. Matthias Walter Gruber

Währingerstraße 166/15
1180 Vienna
+43 680 127 05 25
office@mwg-translations.at
www.mwg-translations.at
VAT number: ATU78909718

Your rights in connection with personal data

Your rights in connection with personal data
Among other things, you are entitled
(i) to check whether and which personal data we process about you and to receive copies of this data
(ii) to request the correction, amendment or deletion of your personal data if it is incorrect or is not processed in accordance with the law
(iii) to require us to restrict the processing of your personal data
(iv) under certain circumstances, to object to the processing of your personal data or to withdraw the consent previously given for the processing, whereby a withdrawal does not affect the lawfulness of the processing carried out before the withdrawal,
(v) to request data portability if you are our customer
(vi) to know the identity of third parties to whom your personal data is transferred, and
(vii) to lodge a complaint with the data protection authority.

Purposes of the processing

  • Provision of the website and its content.

  • Processing of inquiries or communication with interested parties or customers.

  • Security measures to ensure confidentiality, integrity and availability.

  • Marketing activities.

  • To provide contractual services and internal organization.

Purposes of the processing

  • Master and contact data

  • contract data

  • content data

  • usage data

  • metadata

Legal basis for processing

The collection of the IP address in the server log files, as well as the collection of the full IP address in the event of unauthorized login attempts to the administration backend, is based on the legal provisions of GDPR Art. 6 para. 1 lit f (legitimate interest).
The legitimate interest here is to ensure the confidentiality, integrity and availability of the data and information provided on this website (e.g. to clarify abusive activities).
If you are our customer, we process your personal data because this is necessary to fulfill the contract concluded with you (Art. 6 para. 1 lit. b GDPR).

Making contact

If you contact us (e.g. by email, telephone, contact form), the data you provide will be stored for the purpose of processing your inquiry and in the event that we need to contact you.

Webshop

We would like to point out that for the purpose of simplifying the shopping process and for subsequent contract processing, the webshop operator stores the IP data of the connection owner as part of cookies, as well as the name, address and payment data of the buyer.

In addition, the following data is also stored by us for the purpose of processing the contract: telephone number (for queries), e-mail address, order data, payment method. The data provided by you is required to fulfil the contract or to carry out pre-contractual measures. We cannot conclude the contract with you without this data. Data will not be transferred to third parties, with the exception of the transfer of payment data to the processing bank/payment service provider for the purpose of debiting the purchase price, to the transport company/shipping company commissioned by us to deliver the goods and to our tax advisor to fulfil our tax obligations.

After cancellation of the purchase process, the data stored by us will be deleted. If a contract is concluded, all data from the contractual relationship will be stored until the expiry of the tax retention period (7 years).

The data name, address, purchased goods and date of purchase are also stored until the expiry of product liability (10 years). Data processing is carried out on the basis of the legal provisions of § 96 Para. 3 TKG and Art. 6 Para. 1 lit a (consent) and/or lit b (necessary for contract fulfilment) of the GDPR

Cookies

Our websites use so-called cookies. These are small text files that are stored on your end device with the help of the browser. They do not cause any damage. We use cookies to make our website more user-friendly. Some cookies remain stored on your end device until you delete them. They enable us to recognise your browser on your next visit. If you do not want this, you can set up your browser so that it informs you about the setting of cookies and you only allow this in individual cases. You can delete cookies that are already on your computer at any time. The procedure for doing this varies from browser to browser. Please refer to the browser instructions (under ‘Help’ in the browser menu).
If you generally do not allow us to use cookies, certain (security) functions will not work as expected.

Content and services from third parties

Our website may also contain content and services from other providers (third-party providers). In order for this data to be displayed in the browser, it is necessary to transmit the IP address to the respective provider.
We endeavour to only select providers who use the IP address solely for the delivery of content, but we have no influence on whether it may be stored.
If we become aware that the IP address is also stored, we will point this out separately.

Payment provider Stripe

The payment option ‘Credit Card (Stripe)’ is provided by Stripe Payments Europe, Ltd. When using this service, personal order data such as your name, address, e-mail address, payment amount and credit card or bank account details are processed by Stripe. Your data will only be passed on to process the payment.

You can find more information about Stripe’s data protection here:

https://stripe.com/at/privacy#translation

Storage period

The duration of storage is determined by the consent you have given, as well as by the statutory retention obligations and legal obligations applicable to us.

We endeavour to store personal data in accordance with the principles of the GDPR only for as long as is necessary for the actual purpose or as required by the statutory retention obligations and legal obligations applicable to us. If the purpose of the information collected no longer applies or the retention period ends, we delete or block the data.

The data collected in the server log files is deleted after 30 days.

The complete IP addresses recorded during login attempts to the administration backend are stored for 30 days.

Recipients of transmission

Insofar as this is absolutely necessary for the purposes of processing the data, we will transfer parts of your personal data to the following recipients:

  • Cooperation partners (hosting providers, …)

  • Service providers used by us (agencies, …)

  • Administrative authorities, courts and bodies governed by public law

  • Other recipients specified by the customer

As a matter of principle, data is not transferred to countries outside the EEA unless this is explicitly stated in the privacy policy.

All possible processors have undertaken to comply with the applicable data protection standards or have concluded corresponding standard contractual clauses (SCCs) with the respective recipients.

Security measures

We have implemented organisational and technical protective measures, which we evaluate on an ongoing basis and adapt as necessary, to protect your personal data stored and processed by us.

 

 

Translated with DeepL.com (free version)