Privacy policy


Here you will find summarised information on data protection. Data protection definitions can be found in Art. 4 GDPR.
I). Your rights as a data subject
You can withdraw your consent at any time if our data processing is based on consent that you have given us. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. You have the right to information from the responsible about the personal data concerning you, as well as the right to rectification, erasure, restriction and data portability. Under certain circumstances, you may object to the processing of your personal data. If you have got the opinion that the processing of your data violates data protection law, you have the right to lodge a complaint with the supervisory authority.

Contact information can be found at: https://edpb.europa.eu/about-edpb/about-edpb/members_en.
II). Responsible person and contact point for affected persons
You can exercise your rights verbally at the company head office or by telephone, e-mail or post to the responsible party:
Hermann Pröll Consulting e.U.
Hermann Pröll Raiffeisenstraße 24
4061 Pasching
office@hp-consulting.at
0650/6902395
III). Applicant for the exercise of data subject rights purposes, legal bases and storage period
If you assert data subject rights against Hermann Pröll Consulting e.U. in accordance with Art. 15 to Art. 20 GDPR, Hermann Pröll Consulting e.U. will process your data for the purpose of processing your request. The data is processed on the basis of legal obligations (Art 6 para 1 lit c GDPR). The data will be stored for a period of one year after the conclusion of the business case.
Recipients
- The recipient of the data is the data subject.
- In addition, necessary personal data is transmitted to contractual or business partners. Hermann Pröll Consulting e.U. does this to fulfil the stated purposes and the commissioned services.
- Under certain circumstances, some recipients may also process data of data subjects outside the European Union in a country that does not offer an adequate level of data protection. As a result, there is a risk that your data may be processed by authorities for monitoring purposes without you being entitled to legal remedies. For recipients outside the European Union, there are suitable guarantees to ensure an adequate level of data protection.
Categories of data
The following data categories are processed:
- Name, contact information
- Data of the data subject relating to the application
- Data to identify the data subject
IV). Users of the website
When you use our digital services, we process personal data. Below you will find details on data processing.
General recording of access
We collect a range of general data and information each time the website is accessed by a data subject or an automated system. This general data and information is stored in the server log files. The following are recorded
- an internet protocol address,
- the browser used and its version,
- the exact sub-page that was accessed on our website,
- the website from which you accessed our website,
- the date and time of access to the website,
- and the operating system used for access.
We process the aforementioned data for the following purposes:
- to optimise the content of our website for you,
- to ensure a smooth connection to the website,
- and to ensure system security and stability.

These points are in your and our legitimate interest. In addition, we may also use this data to fulfil our legal obligations in cooperation with law enforcement authorities. Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person. The legal basis for data processing is Article 6(1)(f) GDPR. The storage period of these log files is 2 months.
Presentation of the website
The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the statutory provisions (GDPR, TKG 2003). In this data protection information, we inform you about the most important aspects of data processing on our website.
Cookies
To enable you to make better use of our website, we use small text files known as "cookies" and other methods to store data on your end device in order to track user preferences and optimise our website accordingly. However, we do not use cookies and other storage methods to track individual visits to our website. Cookies and other storage methods are routinely used by most websites today. If you still have concerns in this regard, you can set your browser so that it does not accept cookies or other storage methods. You can change the data protection settings in the footer of the website under Cookie Policy.
V). Customers, suppliers and third parties who come into contact with us
If you contact us via third-party providers, the data you provide may also be stored on the servers of the providers and their associated companies outside Europe.
Purposes, legal basis and storage period
We process personal data as part of the business relationship for the following purposes:
- For the fulfilment of a contract or for the implementation of pre-contractual measures (Art. 6 para. 1 lit. b GDPR)
- for the fulfilment of legal obligations (Art. 6 para. 1 lit. c GDPR)
- to safeguard our legitimate interests (Art. 6 para. 1 lit. f GDPR). Our legitimate interests lie in the optimal handling of enquiries, the keeping of records as part of complaint management, the improvement of our offer, self-protection, protection of responsibility and for the purpose of preventing, containing and clarifying behaviour relevant under criminal law, insofar as the area of responsibility of the controller is affected. We process your data until the end of the business relationship or until the expiry of the guarantee, warranty, limitation and statutory retention periods applicable to the controller (7 years); in addition, until the end of any legal disputes in which the data is required as evidence.
Receiver
Within Hermann Pröll Consulting e.U., those departments or employees receive your data who require access to fulfil the stated purposes. In addition, necessary personal data will be transmitted to contractual or business partners. Hermann Pröll Consulting e.U. does this to fulfil the stated purposes and the commissioned services. Under certain circumstances, some recipients may also process data of data subjects outside the European Union in a country that does not offer an adequate level of data protection. As a result, there is a risk that your data may be processed by authorities for monitoring purposes without you being entitled to legal remedies. For recipients outside the European Union, there are suitable guarantees to ensure an adequate level of data protection.
Categories of data
The following categories of data are processed ("Art. 6 data"):
Contact information, company master data, contract data, data relating to deliveries and services, billing data, data from publicly accessible registers, marketing, advertising and sales data, minutes of meetings and correspondence
VI). Data Security measures
The security of your data is very important to us. We therefore use technical and organisational security measures to protect your data. These include, among other things
- Technical and organisational measures to protect the data processing systems;
- Restricting access to those groups of people who need the data to fulfil the purpose;
- Obligation of employees entrusted with data processing to maintain confidentiality;
- Contractual agreements with service providers and customers.