1. Name and Address of the Controller
The controller within the meaning of Art. 4 No. 7 of the EU General Data Protection Regulation (GDPR) is:
Mr. Aslan Lalaev
Erlfeld 45
5441 Abtenau
Austria
Phone: []
Email: info@alwerk.at
2. Contact Option for Data Protection Inquiries
Aslan Lalaev
Erlfeld 45
5441 Abtenau
Austria
Phone: []
Email: info@alwerk.at
3. General Information on Data Processing
3.1 Scope of the Processing of Personal Data
Personal data means all information relating to an identified or identifiable natural person. We generally collect and use personal data of our users only insofar as this is necessary to provide a functional website and to present our content and services.
The collection and use of personal data of our users takes place only with the user’s consent. An exception applies in cases where obtaining prior consent is not possible and the processing of the data is permitted by legal regulations.
3.2 Legal Basis for the Collection and Processing of Your Personal Data
· Insofar as we obtain the consent of the data subject for processing operations involving personal data, Art. 6 para. 1 lit. a GDPR serves as the legal basis.
· When processing personal data necessary for the performance of a contract to which the data subject is party, Art. 6 para. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations necessary to carry out pre-contractual measures.
· Insofar as processing of personal data is necessary for compliance with a legal obligation to which the controller is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.
· In the event that vital interests of the data subject or another natural person require processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.
· If processing is necessary for the purposes of legitimate interests pursued by the controller or a third party, and the interests, fundamental rights, and freedoms of the data subject do not override those interests, Art. 6 para. 1 lit. f GDPR serves as the legal basis.
3.3 Data Deletion and Storage Duration
Personal data of the data subject will be deleted or blocked as soon as the purpose of storage no longer applies. Storage may continue if this has been provided for by European or national legislators in EU regulations, laws, or other provisions to which the controller is subject.
Data will also be deleted or blocked when a storage period prescribed by the aforementioned regulations expires, unless there is a necessity for further storage for the conclusion or fulfillment of a contract.
4. Analysis and Marketing Tools (Cookies)
We use cookies on our website. Technically necessary cookies (e.g. for the shopping cart) are set based on our legitimate interest (Art. 6 para. 1 lit. f GDPR).
Non-essential cookies (e.g. Google Analytics, Meta Pixel, affiliate tracking) are only set after your explicit consent (Art. 6 para. 1 lit. a GDPR) via our cookie banner. You may revoke your consent at any time.
5. Contact Form
5.1 Scope of the Processing of Personal Data
Our websites contain contact forms that can be used for electronic contact. If a user makes use of this option, the data entered in the input form will be transmitted to us and stored.
The following data may be collected through the contact forms:
· Name
· Email address
· Phone number
· Message
· File attachment
Providing this information is voluntary and initiated by you. If the information provided includes contact details, we use these channels to contact you regarding your request.
During the submission process, your consent for processing the data is obtained and reference is made to this privacy policy.
5.2 Purpose of Data Processing
The purpose of data processing is to provide the possibility of contacting us via contact form.
5.3 Storage Duration
The data will be deleted as soon as the purpose of processing has been fulfilled and provided no statutory retention obligations prevent deletion.
The conversation is deemed ended when the circumstances indicate that the matter in question has been conclusively clarified.
In this context, the data will not be passed on to third parties without your consent.
5.4 Legal Basis for the Processing of Personal Data
The legal basis for processing the data is Art. 6 para. 1 lit. a GDPR if the user has given consent.
The legal basis for processing data transmitted in the course of sending an email is Art. 6 para. 1 lit. f GDPR.
If the email contact aims at concluding a contract, the additional legal basis for processing is Art. 6 para. 1 lit. b GDPR.
6. Email Contact
6.1 Scope of the Processing of Personal Data
You can also contact us via the provided email address. In this case, the personal data transmitted with the email will be stored.
The data is used exclusively for processing your inquiry or for the purpose of contacting you.
6.2 Purpose of Data Processing
The purpose of data processing is to provide the possibility of contacting us via contact form or email.
6.3 Storage Duration
The data will be deleted as soon as the purpose of processing has been fulfilled and provided no statutory retention obligations prevent deletion.
The conversation is deemed ended when the circumstances indicate that the matter in question has been conclusively clarified.
In this context, the data will not be passed on to third parties without your consent.
6.4 Legal Basis for the Processing of Personal Data
The legal basis for processing data transmitted in the course of sending an email is Art. 6 para. 1 lit. f GDPR.
If the email contact aims at concluding a contract, the additional legal basis for processing is Art. 6 para. 1 lit. b GDPR.
7. Rights of the Data Subject
If your personal data is processed, you are a data subject within the meaning of the GDPR and have the following rights vis-à-vis the controller:
· Right of access (Art. 15 GDPR)
· Right to rectification (Art. 16 GDPR)
· Right to erasure (Art. 17 GDPR)
· Right to restriction of processing (Art. 18 GDPR)
· Right to data portability (Art. 20 GDPR)
· Right to object (Art. 21 GDPR)
If you receive our newsletters, you have the right to withdraw your consent to receive them at any time, without affecting the lawfulness of processing carried out before the withdrawal.
7.1 Right to Lodge a Complaint with a Supervisory Authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, particularly in the Member State of your residence, workplace, or place of the alleged infringement, if you believe that the processing of your personal data violates the GDPR.
The supervisory authority with which the complaint was lodged shall inform the complainant about the status and outcome of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.
If you believe that the processing of your data violates data protection law or your data protection rights have otherwise been infringed, you may lodge a complaint with the competent supervisory authority.
In Austria, this is the:
Data Protection Authority
Barichgasse 40-42
1030 Vienna
Austria
Phone: +43 1 52 152-0
Email: dsb@dsb.gv.at
Website: https://www.dsb.gv.at/
8. Hyperlinks to External Websites
Our websites contain hyperlinks to websites of other providers. When activating these hyperlinks, you are redirected directly from one of our websites to the website(s) of other providers. You can recognize this, among other things, by the change in the URL.
We cannot assume responsibility for the confidential handling of your data on third-party websites, as we have no influence on whether these companies comply with data protection regulations.
Please inform yourself directly on these websites about how your personal data is handled by these companies.
9. Data Security
We are committed to protecting your privacy and treating your personal data confidentially. To prevent manipulation, loss, or misuse of your data stored by us, we implement extensive technical and organizational security measures, which are regularly reviewed and adapted to technological progress.
However, please note that due to the structure of the Internet, data protection rules and the above-mentioned security measures may not be observed by other persons or institutions outside our area of responsibility.
In particular, unencrypted data disclosed via email may be read by third parties. We have no technical influence over this. It is the user’s responsibility to protect the data they provide against misuse through encryption or other suitable measures.
