We attach utmost importance to the protection and security of your data, regardless of whether you are a customer or visitor to our website. We therefore undertake to protect your privacy and to treat your data confidentially. At this point we would like to inform you of the specific personal data of yours that are collected in relation to your visit to this website and for what purposes they are used.
Last updated: August 2023
I. Data controller
This website is operated by Annikki GmbH, Dr. Auner Straße 20/1, 8074 Raaba-Grambach, Austria which is also the data controller within the meaning of the EU General Data Protection Regulation (hereinafter referred to as “GDPR”).
However, inquiries regarding data protection and the use of your personal data can be sent to the following email address and will be handled by us in accordance with the legal requirements: email@example.com
II. Data used / processing purposes / retention period
The categories of data we use, and the purposes pursued through the use of this data are described below. As far as possible, you will also find information on the storage period of the respective data.
Each time this website is accessed, access data is stored in a log file, the server log. The data record stored in this log file contains the following information: Date and time of access, IP address, session ID, accessed website, name of the website from which the website was accessed and information about the browser used.
We evaluate these log files only in the event of misuse of our website. We reserve the right to subsequently check the log files of those users about whom there is a concrete suspicion of using our website in violation of the law and/or the contract. In general, we cannot attribute these data to a specific person. Should such an attribution be possible, we will only use these data in cases where there is a corresponding legal basis (weighing of interests in individual cases).
As part of getting in touch with us (e.g., via contact form or email), personal data is collected. The specific data collected when using a contact form can be found in the respective contact form. These data are exclusively stored and used for the purpose of addressing your inquiry or for establishing contact, as well as for the associated technical administration. The legal basis for processing this data is our legitimate interest in addressing your inquiry according to Article 6(1)(f) of the GDPR. If your contact aims at concluding a contract, an additional legal basis for processing is Article 6(1)(b) of the GDPR. Your data will be deleted after your request has been conclusively processed. This occurs when the circumstances indicate that the matter at hand has been resolved conclusively and unless legal retention obligations prevent such deletion.
If personal master data or order data are also used in our accounting system, such data will be stored until the end of the prescribed periods (generally 7 years in Austria) on the basis of the statutory retention obligations applicable to us.
If you have given your consent to the processing of your personal data, this consent can be revoked by you at any time. You can declare a revocation in writing or by email to firstname.lastname@example.org.
III. General principles for processing personal data
1- We comply with the statutory data protection regulations without restriction.
We comply with the statutory data protection regulations without restriction.
The data protection regulations of the European Union and the national laws derived from them apply to the storage, processing and use of personal data.
If you actively choose to use the social networking functions offered on our website, personal data may be transferred to the respective external providers of these social networks. You will find detailed information on this in Section V. below.
We also reserve the right to pass on personal data to third parties if we are forced to do so by law, by a judicial decision by the court of competent jurisdiction or by an order of the competent authority, or if we are forced, as a result of actions or omissions on your part, to have our rights, our property or our assets protected or enforced by the competent authorities.
2- In the procurement of data, we restrict ourselves to what is necessary and reasonable.
If we collect personal data, we will explain to you in each case for what purposes we use the data. In individual cases, we only collect personal data to the extent necessary to achieve these purposes. If further use of personal data is no longer necessary, the data will be deleted.
IV. Recipients and recipient categories of data
In connection with the operation of this website or the web shop, the following processors are acting on behalf of the data controller:
Hosting provider: Citycom Telekommunikation GmbH
In addition to the recipients specifically mentioned, other processors may also be consulted in the future in connection with the provision of this website (e.g. hosting providers).
V. Links to external websites
Our website contains so-called hyperlinks to websites from other providers. In these cases, you will be directly forwarded from our website to the websites of the other providers. You can recognise this by the change of the URL in the address bar of your browser, among other things.
We cannot assume any responsibility for the confidential handling of your data by such providers, as we have no influence on whether the other providers comply with the data protection regulations. Please refer to the websites of these providers directly for information on how they handle your personal data.
VI. Security measures to protect your data
To protect your data, we have taken special technical and operational security measures which are regularly reviewed and adapted to technological progress.
However, we would like to point out that due to the structure of the Internet, it is possible that the rules of data protection and data security may not be observed by other persons or institutions that are not within our area of responsibility.
VII. Your rights in relation to the data used
If and insofar as we use personal data concerning you, you are entitled to the following rights in particular with regard to such data:
Right of access to information (Art. 15 GDPR):
You may at any time request information as to whether and which personal data concerning you are being used by us, for what purposes the data are being processed, where the data originate, to which recipients the data may be transmitted and how long such data are stored by us.
Right of rectification (Art. 16 GDPR):
If you discover that personal data concerning you are inaccurate, you may request the rectification of such data at any time. If data are incomplete from your point of view, you can also request that data be supplemented.
Right of erasure (Art. 17 GDPR):
If you believe that the use of your personal data is no longer necessary or that it is carried out without a sufficient legal basis or is unlawful for other reasons, you can request the erasure of these data.
Right to restriction of the use of data (Art. 18 GDPR):
Instead of erasure of data, you can also demand restriction of the use of data, if data are used unlawfully. In particular, you can also demand such a restriction of the use of data if you dispute the accuracy of data or have lodged an objection to the use of data.
Right to data portability (Art. 20 GDPR):
With regard to personal data that you have provided yourself and that are used on the basis of a contract or consent, you can demand that these data be made available to you in a structured, common and machine-readable format. You may also request that this data be transferred directly to another data controller.
Right to file a complaint with a supervisory authority (Art. 77 GDPR):
If you believe that your rights have been violated in relation to personal data concerning you, you have the right to file a complaint with a supervisory authority. In particular, you may contact the supervisory authority responsible for your place of residence, your place of work or the place where the suspected violation occurred. In Austria, the responsible supervisory authority is the Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna.
Separately, we would like to point out your right of objection (Art. 21 GDPR): If reasons arise from your particular situation which make the use of your personal data, which we use on the basis of a legitimate interest, impermissible, you have the right to object to such use of data. If your personal data is used for direct marketing purposes, you have the right to object in any case.
If you have any questions or are unclear about your rights regarding your personal data, you can contact us at any time at the following email address: email@example.com.
VIII. Changes to the data protection policy
Since changes in the law or changes in our internal company processes may make it necessary to adapt this data protection policy, which we reserve the right to do accordingly, we ask you to read this data protection policy regularly.
These are small text files that are stored on your computer. Most of the cookies we use are deleted from your hard drive at the end of the browser session (so-called session cookies). Other cookies remain on your computer and enable us to recognise your computer during your next visit (so-called persistent cookies). In addition, cookies from third parties are also used on our website.
You can prevent the storage of cookies by adjusting your browser settings accordingly. However, we would like to point out that in this case, you may not be able to use all functions of this website to their full extent.
If you do not wish our cookies to be stored on your computer, please deactivate the storage of cookies in your browser for our website or set your browser so that cookies are generally not stored on your computer. You can also use your browser to delete cookies that have already been stored.
The collection and transmission of this data is based on the consent you have given, of which you were expressly notified when you visited our website.