DATA PROTECTION

The protection of your personal data is particularly important to us. We therefore process your data exclusively on the basis of the applicable legal provisions (EU General Data Protection Regulation GDPR, TKG 2003). In this data protection information we inform you about the most important aspects of data processing within the scope of our activities.

Our website can usually be used without providing any personal data. If you enter personal data, e.g. for the purpose of establishing contact or subscribing to a newsletter, we will pass on the necessary information to companies that process data on our behalf (e.g. send the newsletter). We only hire companies who are subject to the EU General Data Protection Regulation.

ENCRYPTED TRANSMISSION

For reasons of security and data protection, this website uses SSL encryption, which prevents third parties from intercepting and reading the data you have entered during transmission. You can recognize active encryption by the padlock or similar symbols in the address bar of your browser.

CONTACT WITH US

If you contact us via the form on the website, by email or by other means, the data you provide (name, email address and optionally the telephone number) will be used to process the request and in the event of Follow-up questions stored with us for one year. If a contract results from the request, the statutory retention periods apply. We do not pass on this data without your consent. Data processing takes place on the basis of Art 6 Para 1 lit b (performance of contract) and Art 6 Para 1 lit a (consent) of the GDPR.

SERVER LOGS

The server from which this website is provided stores information that is automatically transmitted to us by your browser in so-called log files. These are:

  • Browser type and browser version
  • Operating system used
  • The page (URL) from which you came to us
  • The IP address of the accessing computer
  • Time of the request

This data is used exclusively for technical monitoring of the web server (utilization, optimization, error detection, security) and is absolutely necessary for this. They are not connected to other data sources so that they cannot be assigned to individual persons. They will be deleted after three months. Data processing takes place on the basis of Article 6 Paragraph 1 lit f (legitimate interests) of the GDPR. The legitimate interest within the meaning of the GDPR is the proper and secure functioning of the website.

GOOGLE FONTS

We use fonts from Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA on our website. When you view our website, your browser downloads these fonts from Google. Google Fonts are used without registration and no cookies are sent to Google. If you are logged in to Google, when you visit our website, your Google account data will not be transmitted to Google. Google only records the use of the corresponding fonts and stores this data securely.

For details, see https://developers.google.com/fonts/faq

Please also note the Google data protection declaration at https://www.google.com/intl/de/policies/privacy/, where you will find further information on the data processed.

Data processing takes place on the basis of Article 6 Paragraph 1 lit f (legitimate interests) of the GDPR. The legitimate interest within the meaning of the GDPR is the attractive design of the website.

COOKIES

Our website uses so-called cookies. These are small text files that are stored on your end device with the help of the browser. They do no harm. We use cookies to make our offer user-friendly. Some cookies remain stored on your end device until you delete them. They enable us to recognize your browser on your next visit. Some of these cookies are necessary for the operation of the website and are used to log in and save your consent to non-essential cookies. If you do not want the necessary cookies to be stored, you can set up your browser so that it informs you about the setting of cookies and you only allow this in individual cases. The legal basis for the use of required cookies is Article 6 Paragraph 1 lit f (legitimate interests) of the GDPR. Legitimate interests within the meaning of the GDPR are the proper and secure functioning of the website and the optimization of our offer. In addition, other cookies that are not absolutely necessary for the operation of the website may only be stored with your consent. Details on this in the following sections.

DATA STORAGE

For the purpose of accounting, the following data of our customers are stored by us: name, address, telephone number, e-mail address, VAT ID. If you have agreed to a direct debit order (SEPA direct debit mandate), your bank details as well. This data will not be passed on, with the exception of transmission to the processing bank/payment service provider for the purpose of debiting, as well as to our tax advisor for accounting purposes and to fulfil our tax obligations. The data is only stored within the EU. The data you provide is required to fulfil the contract or to carry out pre-contractual measures. Without this data we cannot conclude and fulfil the contract with you. All data from a contractual relationship will be stored until the end of the tax retention period (7 years). Data processing takes place on the basis of Art 6 Para 1 lit c (statutory provisions) of the GDPR and Art 6 Para 1 lit b (necessary for the fulfilment of the contract) of the GDPR.

DATA PROCESSING AS PART OF ORDER FULFILLMENT AND CUSTOMER SERVICE

For the purpose of fulfilling the contract, access data for the online services you use such as web hosting, e-mail providers, office solutions, social media platforms, etc. will also be stored if necessary for the order you have placed and if you have actively transmitted them.

The storage takes place

  • On encrypted local computer systems or portable computers secured by passwords and physical access protection.
  • In the encrypted and password-protected cloud solution LastPass (LogMeIn Ireland Limited, Bloodstone Building Block C, 70 Sir John Rogerson's Quay, Dublin 2, Ireland). The data is stored exclusively on servers in Germany. LogMeIn is certified under the US-EU data protection agreement "Privacy Shield", a contract data processor is currently in progress.

For the purpose of remote maintenance, we use the TeamViewer service from TeamViewer GmbH, Göpping, Germany.

For the purpose of project management, communication and time recording, your contact details or information on the content of the contract may be stored on the following systems:

  • Trello, Atlassian Pty Ltd, USA
  • Evernote, Evernote Corporation, USA
  • Slack, Slack Technologies, USA
  • Domainfactory, Deutschland
  • Fruux, Deutschland
  • TimelyApp, Norwegen

For the purpose of social media design and social media marketing, we will publish content on the desired social media platforms on your behalf. The data to be published (images, videos, audio files) are provided by you. It is your responsibility to ensure that you have the necessary rights and consents for publication.

We use the following services to create, edit and publish social media content:

  • Adobe Spark, Adobe Systems Incorporated, USA
  • Hootsuite, Hootsuite Inc., Canada
  • Canva, Australia

We have concluded a processor agreement with all of the above companies, in which these companies undertake to comply with the GDPR.

The companies based in the USA are certified under the US-EU data protection agreement "Privacy Shield".

The data you provide is required to fulfil the contract or to carry out pre-contractual measures. Without this data we cannot conclude and fulfil the contract with you. Data will only be transmitted to third parties with your express permission

All data from a contractual relationship will be stored until the end of the tax retention period (7 years). Access data to systems used by the customer will be deleted immediately after the end of the contract.

Data processing takes place on the basis of the legal provisions of § 96 Paragraph 3 TKG and Art 6 Paragraph 1 lit a (consent) and/or lit b (necessary for the fulfilment of the contract) of the DSGVO.

YOUR RIGHTS

In principle, you have the right to information, correction, deletion, restriction, data transferability, revocation and objection. Corresponding inquiries can be sent to the e-mail address vs@vshomes.at.

If you believe that the processing of your data violates data protection law or your data protection rights have otherwise been violated in any way, you can complain to the supervisory authority. In Austria, this is the data protection authority.

You can reach us using the following contact details:

vs@vshomes.at