Data Protection Declaration pursuant to Art. 13 and Art. 14 GDPR

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration. The use of our website is generally possible without providing personal data. Insofar as personal data (e.g. name, address or e-mail addresses) is collected on our pages, this is always done on a voluntary basis as far as possible. This data will not be passed on to third parties without your express consent. We would like to point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.

SSL Encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. When SSL encryption is activated, the data you transmit to us can be difficult for third parties to read.

User Inquiries

When contacting us (e.g. via contact form or e-mail), the following information of the user (hereinafter "personal data") is stored for the purpose of processing the inquiry and in the event of follow-up questions: title, first and last name, postal address, e-mail address, telephone number. The personal data provided by the user is only processed and used to the extent that it is necessary for the establishment, design and modification of the brokerage services and the brokered services. We are entitled to pass on the collected personal data to third parties, in particular accommodation providers, insofar as this is necessary to process information requests, reservation requests or bookings. The personal data collected in this way will be stored for a maximum of seven years and then deleted. The data processing is necessary for the performance of a contract or for the implementation of pre-contractual measures in accordance with § 8 para. 3 no. 4 DSG 2000 and Art 6 para. 1 lit b GDPR. Furthermore, the user gives his consent to the processing of the data he has provided for the purpose of processing his inquiry in accordance with § 8 para. 1 no. 2 DSG 2000 and Art 6 para. 1 lit a GDPR.

Contact via the website, by correspondence or by telephone

If you make inquiries either via our website, by correspondence (email or postal mail) or by telephone, we need your personal data for processing, such as:

Title

First and last name

Postal address

Phone number

Language

Email address

We will only use this data and any other information you provide voluntarily (e.g. dates, preferences, comments) to process the contract, unless otherwise stated in this privacy policy or you have given us separate consent. We will process the data by name in order to record your request as desired and to provide the requested services, as well as to contact you in case of any ambiguities or questions. The legal basis for the data processing for this purpose is the fulfilment of a contract according to Art. 6 para. 1 lit. b GDPR.

Calendar Platform Calendly

Calendly is always striving to closely follow the GDPR. We understand how important it is to embed the standards set forth in the GDPR into our processes to ensure our customers, both EU citizens and businesses working with European customers through Calendly, feel secure and can fully trust Calendly.

In accordance with the GDPR, we have developed new features (including cookie management tools and data deletion processes), expanded existing functionality (such as opt-ins for terms of use), improved our documentation, and added a Data Processing Addendum to our Terms of Use.

However, the GDPR is a new regulation without a certification process, so we cannot prove our compliance. Nevertheless, we believe in good faith that through our efforts we are following the regulation, both now and in the future.

Retention Period

We only store personal data as long as it is necessary to use the above-mentioned tracking services and for the further processing within the framework of our legitimate interest. Contract data will be stored by us for longer, as this is required by legal retention obligations. Retention obligations that oblige us to store data arise from regulations on registration law, accounting and tax law. According to these regulations, business communications, concluded contracts and booking vouchers must be kept for up to 10 years. As soon as we no longer need this data to provide our services to you, the data will be blocked. This means that the data may then only be used for accounting and tax purposes.

Disclosure of Data to Third Parties

We only pass on your personal data if you have expressly consented to it, if there is a legal obligation to do so, or if this is necessary to enforce our rights, in particular to enforce claims from the contractual relationship. Furthermore, we pass on your data to third parties insofar as this is necessary within the framework of the use of the website and the processing of contracts (also outside the website), in particular the processing of your bookings.

A service provider to whom the personal data collected via the website is passed on or who may have access to it is our web host internex GmbH, Lagerstraße 15, 3950 Gmünd, Austria. The website is hosted on servers in Austria. The data is passed on for the purpose of providing and maintaining the functionality of our website. This constitutes our legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

Transfer of Personal Data Abroad

We are entitled to transfer your personal data to third party companies (contracted service providers) abroad for the purpose of the data processing described in this privacy policy. These are obliged to data protection to the same extent as we are ourselves. If the level of data protection in a country does not correspond to the European one, we contractually ensure that the protection of your personal data always corresponds to that in the EU.

Data Security

We use appropriate technical and organisational security measures to protect your personal data stored with us against manipulation, partial or complete loss and against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments. You should always treat your access data confidentially and close the browser window when you have finished communicating with us, especially if you are using the computer jointly with others. We also take internal data protection very seriously. Our employees and the service providers we have commissioned have been obliged by us to maintain confidentiality and to comply with data protection regulations.

Cookies

The websites sometimes use so-called cookies. Cookies do not damage your computer and do not contain any viruses. Cookies are used to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser. Most of the cookies we use are so-called "session cookies". They are automatically deleted after your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognise your browser the next time you visit. You can configure your browser to be informed about the setting of cookies and to only allow cookies in individual cases, to exclude the acceptance of cookies for certain cases or in general, and to activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.

Server Log Files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

Browser type/browser version

Operating system used

Referrer URL

Host name of the accessing computer

Time of the server request

This data is not assignable to specific persons. A combination of this data with other data sources is not carried out. We reserve the right to subsequently check this data if we become aware of concrete evidence of unlawful use.

Privacy Policy for the Use of YouTube

Our website may occasionally load videos from the platform YouTube operated by Google LLC. The operator of the pages is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages equipped with a YouTube video, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited.

If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

For more information on how user data is handled, please refer to the YouTube privacy policy at: https://www.google.de/intl/de/policies/privacy

Objection to Advertising Emails

The use of contact data published in the context of the imprint obligation for the transmission of not expressly requested advertising and information materials is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

Right of Access & Right of Revocation

You have the right to request information about the personal data stored about you with us. We will be happy to inform you in writing whether and which personal data we have stored about you. You also have the right to have your incorrect personal data corrected as well as to have your personal data blocked and deleted.

Right of Access

If such processing is carried out, you can request information about the following:

• the purposes for which the personal data are processed;
• the categories of personal data which are processed;
• the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;
• the planned duration of the storage of the personal data concerning you or, if specific information on this is not possible, criteria for determining the storage duration;
• the existence of a right to rectification or erasure of the personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;
• the existence of a right of appeal to a supervisory authority;
• all available information on the origin of the data if the personal data are not collected from the data subject;
• the existence of automated decision-making, including profiling, pursuant to Art. 22 (1) and (4) GDPR and, at least in these cases, meaningful information about the logic involved and the scope and intended effects of such processing for the data subject

You have the right to request information on whether the personal data concerning you are transferred to a third country or to an international organisation. In this context, you can request to be informed about the appropriate guarantees pursuant to Art. 46 GDPR in connection with the transfer. If you have any questions regarding the processing of your personal data, please contact our data protection officer. He is also responsible for inquiries, as well as for the correction, blocking and deletion of personal data. You can contact him as follows:

Contact

Christian Pehmer

Marburger Straße 5

A-8600 Bruck an der Mur

christian.pehmer@innofynd.ai
+43 664 9984 3788

Legal form: Limited Liability Company | Innofynd GmbH

VAT number: ATU82171935

Company register number: FN 652810 s