Datenschutzerklärung/
Privacy policy

In English

Foto von parkenden Autos aus Vogelperspektive für digitales Parksystem, Blog und Datenschutzerklärung
Foto von parkenden Autos aus Vogelperspektive für digitales Parksystem, Blog und Datenschutzerklärung

1. Data protection at a glance

General information

Avantpark is a brand name of Avantpark Parking Solutions Ö sterreich GmbH. Both terms are used synonymously in the following.

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to identify you personally. Detailed information on the subject of data protection can be found in our privacy policy, which you will find below this text.

Data collection on this website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. The website operator’s contact details can be found in the “Information about the controller” section of this privacy policy.

How do we collect your data?

On this website, personal data of the user is only collected in accordance with the applicable data protection law, in particular the General Data Protection Regulation (GDPR). The technical terms used in data protection law are explained in Art. 4 of the GDPR. Data processing is permitted under the GDPR in three cases in particular:

  • if you have consented to the processing of your data by us (Art. 6 para. 1 lit. a) and 7 GDPR); we will inform you in advance in this data protection declaration and on the occasion of the consent in accordance with Art. 4 No. 11 GDPR, for what purpose and under what circumstances your data will be processed by us;
  • if the processing of your personal data is necessary for the initiation, conclusion or performance of a contractual relationship (Art. 6 para. 1 lit. b) GDPR);
  • if the processing is necessary to safeguard our legitimate interests after a balancing of interests (Art. 6 para. 1 lit. f) GDPR); this includes in particular our interests in the analysis, optimisation and security of the offer on our website, e.g. through an analysis of user behaviour, the storage of access data and the use of third-party providers.

Accordingly, your data is collected on the one hand by you making it available to us. This may be data that you enter in a contact form, for example. On the other hand, data is collected by our IT systems automatically or with your consent when you visit the website. This is mainly technical data (e.g. internet browser, operating system or time the page was accessed). This data is collected automatically as soon as you visit this website.

The input of data by you on our website is voluntary. If you do not disclose your data, you will not suffer any disadvantages as a result. However, without certain data it is not possible for us to offer certain services or functions. We will inform you about the data required or prescribed in each case.

What do we use your data for?

Some of the data is collected to ensure that the website is provided without errors. Other data can be used to analyse your user behaviour.

What rights do you have in relation to your data?

You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. If you have consented to data processing, you can revoke this consent at any time. You also have the right to request the restriction of the processing of your personal data under certain circumstances. Please note that some of these rights are not absolute and only apply in certain circumstances. We will review any request we receive in relation to these rights. We do not have to agree to a request, but if we refuse it, we will still contact the data subject within one month to explain the reasons. You also have the right to lodge a complaint with the competent supervisory authority (here).

You can contact us at any time if you have further questions on the subject of “data protection”.

Analyses and tools from third-party providers

When you visit this website, your surfing behaviour may be statistically evaluated. This is mainly done with so-called analysis programmes.

Detailed information on these analysis programmes can be found in the following privacy policy.

2. What data is processed when you use Avantpark car parks?

What data do we collect?

When you use an Avantpark car park, we collect and process data consisting of images of vehicles using the car park and/or the vehicle registration number.

If the signposted contract and parking conditions are violated, an increased usage fee will be charged. The data that we process when issuing an increased usage fee includes the full name and address of the recipient, images of the vehicle, entry and exit time (date and time) to the car park and the vehicle’s registration number.

If you submit a complaint regarding an increased usage fee or otherwise correspond with us, including by telephone, you may provide us with additional personal data. The data we process may include: the licence plate number, your full name, address, email address and telephone number, an increased usage charge or other reference number, your IP address, the capacity in which you contact us (e.g. keeper, driver, hirer, other), and any other information and documentation you provide as part of the correspondence, telephone call or complaint. If you correspond with us by post, we may engage a third party to scan, categorise and enter the post into our systems, return original documents provided by you and process bank payments.

How do we collect data?

Images of vehicles and licence plates are captured via licence plate scanners and/or on-site staff. The licence plate data can also be captured and processed via the payment and/or terminal systems if these are used in the car park

If you have received an increased user fee and the owner of the vehicle is registered with a state authority, your data has been transmitted by this authority

If you are not the registered keeper of the vehicle, your details have been provided to us by:

  • A third party who has confirmed that you were responsible for the vehicle concerned at the time of the parking offence and/or;
  • A third party who has confirmed that you were the driver of the vehicle concerned at the time of the parking offence and/or;
  • A third party who has confirmed that the vehicle in question was rented or leased to you at the time of the parking offence.

If you no longer reside at the address reported by the state authority, your data was provided to us by:

  • A third party who now resides at the above address, who has confirmed that you no longer reside at that address and who has provided a forwarding address; and/or
  • A debt collection agency.

If you lodge an objection or otherwise correspond with us, the data you provide in this objection or correspondence will be processed by us. If someone files an objection or corresponds with us on your behalf and with your authorisation, the data will be processed as contained in the information we receive from this person.

What if you provide “sensitive” data in a legal appeal or in correspondence?

Depending on the nature and content of your objection or correspondence, the information or documents provided may be categorised as “special category” personal data and therefore considered particularly sensitive.

Examples include: personal identity numbers, financial account information, information about a person’s racial or ethnic origin, sexual orientation, political opinions, religious, philosophical or similar beliefs, or information about a person’s physical or mental health.

If you submit an enquiry via the website, you will also be expressly asked for your consent to the processing of “special category” personal data that you expressly provide as part of your enquiry.

We will continue to process the “special category” personal data provided by you as described above unless we are informed that you have withdrawn your consent to the processing.

You are free to change your mind and withdraw your consent at any time. As a result, we may no longer be able to take your circumstances fully into account when reviewing an objection and deciding on further measures in the event of an increased usage fee.

If you wish to withdraw your consent, please contact us using the contact details below.

How will we process your data and why do we process it?

When using the Avantpark car parks, personal data is collected and processed for the following purposes:

  • Ensure that you comply with the signposted contract and parking conditions as displayed outside each car park and enforce these conditions where necessary.
  • Charging an increased usage fee if we are of the opinion that the signposted contractual and hiring conditions have been breached.
  • Processing the increased usage fees issued until cancellation or payment, including receiving, reviewing and responding to objections, as well as collecting the increased usage fee. Recovery may include the involvement of debt collection agencies and/or legal action and/or the verification of your address by third parties.
  • Provision of parking management services, including the prevention and follow-up of offences and data analysis.

Our legal bases for processing the data are “fulfilment of a contract” (Art. 6 para. 1 lit. b) GDPR) and “legitimate interests” (Art. 6 para. 1 lit. f) GDPR).

If you are the driver of a vehicle using an Avantpark car park, your data will be collected and processed to the extent necessary to fulfil the contract of use of the car park. This includes ensuring that you comply with the signposted contract and parking conditions as displayed on the signs outside each car park and that we enforce these conditions in the event of a breach.

We and our processors also process the data to protect our, the property owners’ and the public’s legitimate interests:

  • Enforcing violations of the posted contract and parking conditions when the recipient of the increased usage fee was not the driver of the vehicle. Enforcing violations of the signposted contract and parking conditions ensures a better overall parking experience for all users of the facilities.
  • The provision of an effective customer service. Tracking the increased usage fees we charge, either until cancellation or payment, supports the parking management services we offer.
  • Providing effective car park management to improve the customer experience. – Displaying captured information on payment machines and/or terminals to help car park users determine their entry time and select the appropriate parking tariff. – Sharing information with the property owner if they have agreed to grant parking authorisations to specific individuals (e.g. parking authorisations for employees) or if a payment account has been agreed for specific vehicles. And, if necessary, to assist in the management of on-site parking enforcement. – Performing data analysis, including producing reports on utilisation and vehicle types. – Providing data to the police and other security organisations to assist in the prevention and detection of crime (where required).
  • As part of the tests carried out by vehicle registration offices and other authorised third parties.

The data may be processed at a location outside the European Economic Area, but we have taken and ensured the security precautions required by data protection law.

Who do we share data with?

In order to enforce the User Agreement where a breach has been identified and to support the legitimate interests explained above, we may share data with the following organisations:

  • State authority, this includes the transfer of data in order to obtain the full name and address details of the registered vehicle owner, as well as for inspection purposes.
  • The police or other security organisations for the safety of car park users and for the prevention and detection of crime.
  • Vehicle rental and leasing companies if they confirm that a vehicle was rented or leased at the time of the parking offence.
  • Other organisations such as property owners, managers, tenants and authorised subcontractors such as postal service providers, credit reference agencies, debt collection agencies, legal advisors, IT service providers and payment service providers.

We may also share data with our press office or press agency if it is related to a media/press enquiry.

Where signage at the car park indicates that we are joint data controllers with the owner of the car park, the name of the joint data controller and their contact details will be clearly stated, along with details of what data will be shared between us to enable us to provide our car park management services.

Pay car park fees online

You have the option of paying your car park fee online. To enable you to do this, we work with third-party providers who process your payment securely. This may include, for example, the option to pay securely via Apple Pay, Google Pay or by card. To enable you to pay, your personal data may be shared with these third party providers (including merchants, payment and card service providers such as Stripe (a trading name of Stripe Payments Europe Limited)).

What data is processed?

The data processed when a parking fee is paid includes the amount payable (gross, net and tax), vehicle registration number, telephone number, a parking fee reference, parking fee issue date, parking fee due date, reference number, email address, card number, expiry date and security code. The parking fee reference is used to allocate the parking fee in question so that the payment screen can be filled in with the amount to be paid and to enable us to match your payment with your parking fee notice.

Personal data may be processed on the basis of legitimate interests in order to facilitate payments and may also be processed if this is necessary for the performance of a contract between you and Avantpark.

Data security

Although we endeavour to ensure that third party providers do their best to protect your personal data, we cannot guarantee the security of your data that you enter when making a secure payment via a third party provider, as we have no control over this. Please ensure that you agree to the provider’s privacy policy before making your payment. Any transmission is at your own risk and you should take appropriate steps to minimise this risk.

3. Hosting and content delivery networks (CDN)

External hosting

Our website is hosted by an external service provider (hoster) in a secure facility in Germany. Our motorist portal is also hosted by an external service provider in a secure facility in Germany. The personal data collected on the website and the driver portal is stored on the server of the respective hoster. This may include IP addresses, contact requests, meta and communication data, contact details, names, website accesses and other data generated via a website.

The hosters are used for the purpose of fulfilling contracts with our interested parties and customers (Art. 6 para. 1 lit. b) GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f) GDPR).

Our hosters will only process your data to the extent that this is necessary for the fulfilment of their service obligations and will follow our instructions with regard to this data.

The registered head office of our website host is:

SWPMU DEV

Incsub LLC

PO Box 548 #88100

Birmingham, AL 35201

USA

 

The Driver Portal is hosted by Microsoft’s Azure Global Infrastructure. If you believe that Microsoft is not complying with its privacy or security obligations, you can contact Microsoft at the following postal address:

 

Microsoft Austria Online Services Privacy

Microsoft Corporation

One Microsoft Way

Redmond, Washington 98052 USA

 

General information and mandatory information

Data protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

When you use this website and/or the portal for drivers, various personal data is collected. Personal data is data that can be used to identify you personally. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose the data is used.

We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.

Reference to the responsible body

The data controller for this website is:

Avantpark Parking Solutions Ö sterreich GmbH

Ernst- Melchior- Gasse 24/5/2A – 1020 Vienna

e-mail: [email protected]

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

Duration of storage

Unless a more precise storage period is specified in this privacy policy, your personal data will remain with us until the purpose of the data processing no longer applies. If you assert a justified request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, the data will be deleted after these reasons no longer apply.

There are certain reasons why we retain some of your data. How long we keep your data depends on the type of data and the purpose(s) for which it was collected and processed. In this case, however, we ensure that these third parties also only keep the data for as long as necessary and must comply with our retention and deletion guidelines. We do not store your personal data for longer than is necessary for the above-mentioned purposes.

Data transfer within the Avantpark group of companies

We may share your data with our parent company, Parkingeye Limited, and other subsidiaries of our parent company that are located within the European Union. This may include transferring your data to the United Kingdom. The UK provides an adequate level of protection for personal data. We will monitor the status of the UK and ensure that adequate protection is in place to ensure the transfer of data outside the European Union Member States.

Note on data transfer to the USA

Tools from companies based in the USA are integrated on our website. If these tools are active, your personal data may be transferred to the US servers of the respective companies. We would like to point out that the USA is not a safe third country within the meaning of EU data protection law. US companies are obliged to disclose personal data to security authorities without you as the data subject being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. secret services) may process, analyse and permanently store your data on US servers for surveillance purposes. We have no influence on these processing operations.

Revocation of consent to data processing

Many data processing operations are only possible with your express consent. You can revoke any consent you have already given at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to object to the collection of data in individual cases and to direct marketing (Art. 21 GDPR)

If the data processing is carried out on the basis of Art. 6 para. 1 lit. E or F GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions. The respective legal basis on which the processing is based can be found in this privacy policy. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims (objection pursuant to Article 21 (1) GDPR).

If your personal data is processed for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for the purpose of such marketing; this also applies to profiling insofar as it is associated with such direct marketing. If you object, your personal data will subsequently no longer be used for direct marketing purposes (objection pursuant to Art. 21 (2) GDPR).

Right to lodge a complaint with the competent supervisory authority (Art. 77 GDPR)

In the event of infringements of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR), in particular in the Member State of their habitual residence, place of work or place of the alleged infringement. The right to lodge a complaint is without prejudice to any other administrative or judicial remedy.

How can you contact the competent supervisory authority if you have concerns about our processing of your data?

If you have any concerns about the processing of your data by us or if you have a question about data protection that is not answered in this policy, please contact our data protection team using the contact details below. You also have the right to lodge a complaint with the relevant regional data protection supervisory authority.

Further information can be found at:

https://www.data-protection-authority.gv.at/

Right to data portability (Art. 20 GDPR)

You have the right to have data that we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a commonly used, machine-readable format (Art. 20 GDPR). If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as enquiries that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Rights to information, rectification and erasure (Art. 15, 16 & 17 GDPR)

Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, its origin and recipients and the purpose of data processing (Art. 15 GDPR) and, if applicable, a right to rectification (Art. 16 GDPR) or erasure (Art. 17 GDPR) of this data at any time. For this purpose, you can request information about the personal data we have stored about you free of charge at any time. To prevent misuse, it is necessary to identify you for this purpose. For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time.

Right to restriction of processing (Art. 18 GDPR)

You have the right to request the restriction of the processing of your personal data. You can contact us at any time for this purpose. The right to restriction of processing exists in the following cases:

  • If you dispute the accuracy of your personal data stored by us, we generally need time to verify this. For the duration of the review, you have the right to request that the processing of your personal data be restricted.
  • If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of erasure.
  • If we no longer need your personal data, but you need it for the establishment, exercise or defence of legal claims, you have the right to request the restriction of the processing of your personal data instead of its erasure.
  • If you have lodged an objection pursuant to Art. 21 (1) GDPR, a balance must be struck between your interests and ours. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, this data – apart from its storage – may only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or of a Member State.

We will consider each request we receive on a case-by-case basis. Under data protection laws, we do not have to agree to your request, but if we do not agree to your request, we will still contact you within the applicable timeframe to explain our position.

4. Data collection on this website

Cookies

Our Internet pages use so-called “cookies”. Cookies are small text files and do not cause any damage to your end device. They are stored on your device either temporarily for the duration of a session (session cookies) or permanently (permanent cookies). Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or until they are automatically deleted by your web browser.

In some cases, cookies from third-party companies may also be stored on your device when you visit our website (third-party cookies). These enable us or you to use certain services of the third-party company (e.g. cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary, as certain functions of the website would not work without them (e.g. the shopping basket function or the display of videos). Other cookies are used to analyse user behaviour or to display advertising.

Cookies that are required to carry out the electronic communication process (necessary cookies) or to provide certain functions that you have requested (functional cookies) or to optimise the website (e.g. cookies to measure the web audience) are stored on the basis of Art. 6 para. 1 lit. f GDPR, unless another legal basis is specified. The website operator has a legitimate interest in the storage of cookies for the technically error-free and optimised provision of its services. If consent to the storage of cookies has been obtained, the cookies in question are stored exclusively on the basis of this consent (Art. 6 para. 1 lit. a GDPR); consent can be revoked at any time.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be restricted.

If cookies are used by third parties or for analysis purposes, we will inform you separately in the context of this privacy policy and, if necessary, ask for your consent.

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

This data is not merged with other data sources.

This data is collected on the basis of Art. 6 para. 1 lit. f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimisation of its website – the server log files must be collected for this purpose.

Contact form

If you send us enquiries via the contact form, your details from the enquiry form, including the contact details you provide there, will be processed by our website CMS WPMU DEV (owned and operated by Incsub LLC) and stored by us for the purpose of processing the enquiry and in the event of follow-up questions. The data transfer takes place via Microsoft’s Office 365 product package hosted in the UK. We do not share this data without your consent.

This data is processed on the basis of Art. 6 para. 1 lit. b) GDPR if your enquiry is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the enquiries addressed to us (Art. 6 para. 1 lit. f) GDPR) or on your consent (Art. 6 para. 1 lit. a) GDPR), if this has been obtained.

The data you enter in the contact form will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed), in accordance with our internal data storage policy. Mandatory statutory provisions – in particular retention periods – remain unaffected by this.

Enquiry by e-mail, telephone or contact form

If you contact us by e-mail, telephone or via one of our contact forms on our website, your enquiry including all resulting personal data (name, enquiry) will be stored and processed by us for the purpose of processing your request. We will not pass on this data without your consent.

This data is processed on the basis of Art. 6 para. 1 lit. b) GDPR if your enquiry is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the enquiries addressed to us (Art. 6 para. 1 lit. f) GDPR) or on your consent (Art. 6 para. 1 lit. a) GDPR), if this has been obtained.

The data that you send us in the context of contact enquiries will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed), in accordance with our internal data storage policy. Mandatory statutory provisions – in particular statutory retention periods – remain unaffected by this.

5. Plugins and tools

Google Web Fonts

This site uses so-called web fonts provided by Google for the standardised display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.

For this purpose, the browser you are using must establish a connection to Google’s servers. This informs Google that this website has been accessed via your IP address. The use of Google Web Fonts is based on Art. 6 para. 1 lit. f) GDPR. The website operator has a legitimate interest in the uniform presentation of the typeface on its website. Insofar as a corresponding consent has been obtained (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a) GDPR. Consent can be revoked at any time.

If your browser does not support web fonts, a standard font from your computer will be used.

For more information about Google Web Fonts, please visit https://developers.google.com/fonts/faq and read Google’s privacy policy: https://policies.google.com/privacy?hl=de

Google reCAPTCHA

We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on this website. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

The purpose of reCAPTCHA is to check whether the data input on this website (e.g. in a contact form) is made by a human or an automated programme. For this purpose, reCAPTCHA analyses the behaviour of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent on the website by the website visitor or mouse movements made by the user). The data collected during the analysis is forwarded to Google.

The reCAPTCHA analyses run completely in the background. Visitors to the website are not informed that an analysis is taking place.

The data is stored and analysed on the basis of Art. 6 para. 1 lit. f) GDPR. The website operator has a legitimate interest in protecting its website from abusive automated spying and SPAM. If a corresponding consent has been obtained, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a) GDPR; THE CONSENT IS WITHDRAWABLE AT ANY TIME.

For more information about Google reCAPTCHA, please see the Google Privacy Policy and the Google Terms of Use at the following links: https://policies.google.com/privacy?hl=de and https://policies.google.com/terms?hl=de

Hotjar

We use Hotjar to better understand the needs of our users and to optimise the offer and experience on this website. Hotjar’s technology helps us gain a better understanding of our users’ experiences (e.g. how much time users spend on which pages, which links they click, what they like and don’t like, etc.), and this helps us tailor our offering to our users’ feedback. Hotjar uses cookies and other technologies to collect data about the behaviour of our users and their devices, in particular the IP address of the device (which is only collected and stored in anonymous form during use of the website), screen size, device type (unique device identifiers), information about the browser used, location (country only) and preferred language for displaying our website. Hotjar stores this information on our behalf in a pseudonymised user profile. Hotjar is contractually prohibited from selling the data collected on our behalf.

For more information, please refer to the “About Hotjar” section on the Hotjar help page.

Facebook Custom Audiences / Facebook Pixel

The “Facebook Custom Audiences” service is used on this website. Facebook Pixel is used for this service. These services are operated by Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland. Facebook Custom Audiences enables us to target the user with interest-based advertising on the social network – Facebook. To make this possible, we have implemented the Facebook Remarketing Tag on our website. This tag establishes a direct connection with the Facebook servers when you visit the website, so that Facebook receives information about which pages you have visited on our website. Facebook then matches this information with your Facebook user account. The next time you visit Facebook, you will then be shown personalised, interest-based advertisements (Facebook Ads). Custom Audiences is also used to personalise and optimise the website.

The Facebook pixel also collects and processes performance data in order to track and monitor the performance data obtained from the use of Facebook adverts by users.

The following data is collected and processed with the help of Facebook Custom Audiences:

  • Facebook user ID
  • IP address
  • Browser information
  • Non-sensitive user-defined data
  • Facebook cookie information
  • Referrer URL
  • Pixel-specific data
  • Pixel ID
  • Social media friend network
  • Usage data/user behaviour
  • Views and interactions with content, adverts and services
  • Valued content
  • Information about the device
  • Successful marketing campaign
  • Information on the processes
  • Hardware/software type
  • Browser type
  • Operating system of the device
  • Geographical location
  • Cookie ID
  • Information from third-party sources
  • User agent
  • Conversions

The legal basis for the processing is your consent pursuant to Art. 6 para. 1 lit. a) GDPR. If you do not want the aforementioned data to be collected and processed via Facebook Custom Audiences, you can refuse your consent or withdraw it at any time with effect for the future.

The personal data is stored for as long as is necessary to fulfil the purpose of the processing. The data will be deleted as soon as it is no longer required to fulfil the purpose.
In the course of processing, the data may also be transmitted to Facebook Inc. in addition to Facebook Ireland.

HubSpot

HubSpot is a software for customer relationship management (CRM), marketing, sales and customer service. Its functionality includes:
Email Marketing, Social Media Publishing & Reporting, Reporting, Contact Management (e.g. User Segmentation & CRM), Landing Pages and Contact Forms.

For more information on how HubSpot handles data, please refer to the privacy policy:
https://legal.hubspot.com/privacy-policy

HubSpot is a software company from the USA with a branch in Ireland. Contact: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, Phone: +353 1 5187500.

The following data may be processed in connection with HubSpot:

  • Name
  • Address
  • Telephone number
  • E-mail address
  • Job title
  • IP address
  • Business address

 

The legal basis for processing is legitimate interests pursuant to Art. 6 para. 1 lit. f) GDPR and consent pursuant to Art. 6 para. 1 lit. a) GDPR. If you do not want the aforementioned data to be collected and processed via Hubspot, you can refuse your consent or withdraw it at any time with effect for the future.

The personal data is stored for as long as is necessary to fulfil the purpose of the processing. The data is deleted as soon as it is no longer required to fulfil the purpose.

As part of processing via HubSpot, data may be transferred to the USA. The security of the transfer is ensured by the standard contractual clauses, which guarantee that the processing of personal data is subject to a level of security equivalent to that of the GDPR. If the standard contractual clauses are not sufficient to ensure an adequate level of security, your consent pursuant to Art. 49 para. 1 lit. a) GDPR may serve as the legal basis for the transfer to third countries.

 

Freshworks

We use Freshworks to convert emails, including objections and customer queries, as well as social media requests into tickets to simplify tracking.

Freshworks Inc. (Company Number: 4861858) is a company incorporated under the laws of the State of Delaware with its registered office at 16192 Coastal Highway, Lewes, Delaware 19958, USA, and its principal business address at 2950 S. Delaware Street, Suite 201 San Mateo, California 94403, USA.

Freshworks can process the following data with its product Freshdesk:

  • Contact information such as name, e-mail address, postal address
  • IP address
  • Geographical location
  • the content of messages you send us in the context of a service request, question or concern, including by email, telephone or via the website.

The processing is based on our legitimate interest in the effective processing of the enquiries addressed to us (Art. 6 para. 1 lit. f) GDPR).

The personal data is stored for as long as is necessary to fulfil the purpose of the processing. The data is deleted as soon as it is no longer required to fulfil the purpose.

Microsoft 365 Suite

We use Microsoft’s Exchange online and Office online products, which are hosted in Microsoft’s UK data centre, to forward enquiries made via the website’s contact forms to the recipient systems.

Microsoft takes strict measures to protect customer data from inappropriate access or use by unauthorised persons. This includes restricting access by Microsoft employees and subcontractors and carefully defining requirements for responding to government requests for customer data. Microsoft 365 uses service-side technologies that encrypt customer data at rest and in transit. For customer data at rest, Microsoft 365 uses encryption at the volume and file level. For customer data in transit, Microsoft 365 uses multiple encryption technologies for communication between data centres and between clients and servers, such as Transport Layer Security (TLS) and Internet Protocol Security (IPsec).

The processing is based on our legitimate interest in the effective processing of the enquiries addressed to us (Art. 6 para. 1 lit. f) GDPR).

The personal data is stored for as long as is necessary to fulfil the purpose of the processing. The data is deleted as soon as it is no longer required to fulfil the purpose.

Change to the data protection policy

Should a change to the privacy policy become necessary for legal or other reasons, we will update this page and the privacy policy accordingly. No changes will be made to the consent given by the user.