Privacy policy of the website GlobalVisions.ART

Privacy

Status: 10 July 2023

Table of contents

Responsible

Andreas Rigler
Karl-Sarg-Gasse 5/430
1230 Vienna
Austria

Contact options
E-mail address:
contact@globalvisions.art

Telephone:

+43 677 62206260
Contact form

Relevant legal basis

Relevant legal basis according to the GDPR: Below you will find an overview of the legal basis of the GDPR on the basis of which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or domicile. Should more specific legal bases be relevant in individual cases, we will inform you of these in the data protection declaration.

Consent (Art. 6 para. 1 s. 1 lit. a) GDPR) - The data subject has given his/her consent to the processing of personal data relating to him/her for a specific purpose or purposes.
Legitimate interests (Art. 6 para. 1 s. 1 lit. f) GDPR) - Processing is necessary for the purposes of the legitimate interests of the controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data.

National data protection regulations in Austria: In addition to the data protection regulations of the GDPR, national regulations on data protection apply in Austria. These include in particular the Federal Act on the Protection of Individuals with regard to the Processing of Personal Data (Data Protection Act - DSG). The Data Protection Act contains, in particular, special regulations on the right to information, the right to rectification or deletion, the processing of special categories of personal data, processing for other purposes and transmission, as well as automated decision-making in individual cases.

Note on the applicability of the GDPR and the Swiss Data Protection Act (DSG): This data protection notice serves to provide information in accordance with both the Swiss Federal Data Protection Act (DSG) and the General Data Protection Regulation (GDPR). For this reason, we ask you to note that due to the broader spatial application and comprehensibility, the terms of the GDPR have been replaced by Swiss terms. In particular, instead of the terms “processing” of “personal data” (or “data” for short), and "legitimate interest" used in the GDPR, the terms “processing” of “personal data” and "overriding interest" used in the Swiss DSG. However, the legal meaning of the terms will continue to be determined in accordance with the Swiss DSG within the scope of its application.

Overview of the processing operations

The following overview summarises the types of data processed and the purposes of their processing and refers to the data subjects.

Types of data processed

Contact data.
Content data.
Usage data.
Meta, communication and procedural data.

Categories of data subjects

Communication partners.
Users.

Purposes of processing

Contact requests and communication.
Security measures.
Managing and responding to requests.
Feedback.
Provision of our online services and user experience.
Information technology infrastructure.

Security measures

We take appropriate technical and organisational measures in accordance with the law, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances and purposes of the processing, as well as the different probabilities of occurrence and the level of threat to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk.

The measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as access to, input of, disclosure of, assurance of availability of and segregation of the data. We also have procedures in place to ensure the exercise of data subjects' rights, the deletion of data and responses to data compromise. Furthermore, we already take the protection of personal data into account in the development or selection of hardware, software and procedures in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.

Transmission of personal data

In the course of our processing of personal data, the data may be transferred to or disclosed to other bodies, companies, legally independent organisational units or persons. The recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In such cases, we observe the legal requirements and, in particular, conclude corresponding contracts or agreements that serve to protect your data with the recipients of your data.

External links and international data transfers

This website contains links to third-party websites (referred to here as "external links").

The third-party websites have their own privacy policies. If you follow a link to one of these websites, I would like to point out that I am not responsible for this privacy policy and therefore do not accept any responsibility or liability for it.

You should check the privacy policies of these websites before voluntarily providing any personal information to them.

Links to third-party websites (external links) are usually marked with the suffix

ext

and they are underlined in blue in contrast to internal links.

Furthermore, in addition to the above addition, an external link is followed by an internal link "Privacy Notice" here to this chapter in the Privacy Policy.

A link to a third-party website will therefore look like this in most cases:

External link ext Privacy Notice

(not linked here)

Only when you click on an external link will data be transmitted to the target of the link. This is technically necessary.

The transmitted data are in particular your IP address, the time at which you clicked on the link, the page on which you clicked on the link and other data.

Individual links may involve a data transfer to non-European countries.

This may mean that foreign third parties, authorities or secret services receive this connection data.

If you do not want this, you should not click on the external link.

Use of cookies

Cookies are small text files or other memory notes that store information on end devices and read information from the end devices. For example, to save the login status in a user account, the contents of a shopping basket in an e-shop, the contents called up or the functions used in an online offer. Cookies can further be used for various purposes, e.g. for purposes of functionality, security and comfort of online offers as well as the creation of analyses of visitor flows.

Notes on consent: We use cookies in accordance with legal requirements. We therefore obtain prior consent from users, except where this is not required by law. In particular, consent is not required if the storage and reading of information, including cookies, is absolutely necessary in order to provide the user with a telemedia service (i.e. our online offer) that they have expressly requested. Cookies that are strictly necessary usually include cookies with functions that serve the display and operability of the online offer , load balancing, security, storage of users' preferences and choices or similar purposes related to the provision of the main and secondary functions of the online offer requested by users. The revocable consent is clearly communicated to the users and contains the information on the respective cookie use.

Notes on legal bases under data protection law: The legal basis under data protection law on which we process users' personal data with the aid of cookies depends on whether we ask users for consent. If users consent, the legal basis for processing their data is their declared consent. Otherwise, the data processed using cookies is processed on the basis of our legitimate interests (e.g. in the business operation of our online offer and improvement of its usability) or, if this is done in the context of the performance of our contractual obligations, if the use of cookies is necessary to fulfil our contractual obligations. We explain the purposes for which we process the cookies in the course of this data protection declaration or as part of our consent and processing procedures.

Storage duration: With regard to the storage duration, the following types of cookies are distinguished:

Temporary cookies (also: session cookies): Temporary cookies are deleted at the latest after a user has left an online offer and closed his end device (e.g. browser or mobile application).
Permanent cookies: Permanent cookies remain stored even after the end device is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. Likewise, user data collected with the help of cookies can be used to measure reach. Unless we provide users with explicit information about the type and storage duration of cookies (e.g. when obtaining consent), users should assume that cookies are permanent and that they can be stored for up to two years.

General information on revocation and objection (so-called "opt-out"): Users can revoke the consent they have given at any time and object to processing in accordance with the legal requirements. To do this, users can, among other things, restrict the use of cookies in the settings of their browser (whereby this may also restrict the functionality of our online offer). An objection to the use of cookies for online marketing purposes can also be declared via the websites https://optout.aboutads.info ext Data protection notice and https://www.youronlinechoices.com/ ext Data protection notice.

Legal basis: Legitimate interests (Art. 6 para. 1 s. 1 lit. f) GDPR); Consent (Art. 6 para. 1 s. 1 lit. a) GDPR).

Further information on processing operations, procedures and services:

Processing of cookie data based on consent: We use a cookie consent management procedure, in the context of which the consent of users to the use of cookies, or the processing and providers mentioned in the cookie consent management procedure, can be obtained and managed and revoked by users. The declaration of consent is stored in order not to have to repeat the request and to be able to prove the consent in accordance with the legal obligation. The storage can take place on the server side and/or in a cookie (so-called opt-in cookie or with the help of comparable technologies) in order to be able to assign the consent to a user or their device. Subject to individual information on the providers of cookie management services, the following information applies: The duration of the storage of consent can be up to two years. A pseudonymous user identifier is created and stored with the time of consent, information on the scope of consent (e.g. which categories of cookies and/or service providers) and the browser, system and end device used; legal basis: consent (Art. 6 para. 1 s. 1 lit. a) GDPR).

Provision of the online services and web hosting

We process users' data in order to provide them with our online services. For this purpose, we process the user's IP address, which is necessary to transmit the content and functions of our online services to the user's browser or terminal device.

Types of data processed: Usage data (e.g. web pages visited, interest in content, access times); meta, communication and procedural data (e.g. IP addresses, time data, identification numbers, consent status).
Data subjects: Users (e.g. website visitors, users of online services).
Purposes of processing: provision of our online offer and user-friendliness; information technology infrastructure (operation and provision of information systems and technical devices (computers, servers, etc.).); security measures.
Legal basis: Legitimate interests (Art. 6 para. 1 s. 1 lit. f) GDPR).

Further information on processing processes, procedures and services:

Collection of access data and log files: Access to our online offer is logged in the form of so-called "server log files". The server log files may include the address and name of the web pages and files accessed, the date and time of access, the volume of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page) and, as a rule, IP addresses and the requesting provider. The server log files may be used on the one hand for security purposes, e.g. to avoid overloading the servers (especially in the case of abusive attacks, so-called DDoS attacks) and on the other hand to ensure the utilisation of the servers and their stability; Legal basis: Legitimate interests (Art. 6 para. 1 s. 1 lit. f) GDPR); Deletion of data: Log file information is stored for a maximum of 8 weeks and then deleted or anonymised. Data whose further storage is necessary for evidentiary purposes is exempt from deletion until the final clarification of the respective incident.

Contact and enquiry management

When contacting us (e.g. by post, contact form, email, telephone or via social media) as well as in the context of existing user and business relationships, the information of the inquiring persons is processed to the extent necessary to respond to the contact requests and any measures requested.

Types of data processed: contact data (e.g. e-mail, telephone numbers); content data (e.g. entries in online forms); usage data (e.g. websites visited, interest in content, access times); meta, communication and procedural data (e.g. IP addresses, time data, identification numbers, consent status).
Data subjects: Communication partners.
Purposes of processing: contact requests and communication; managing and responding to requests; feedback (e.g. collecting feedback via online form); providing our online offer and user experience.

Legal basis: Legitimate interests (Art. 6 para. 1 s. 1 lit. f) GDPR).

Created with free Datenschutz-Generator.de by Dr. Thomas Schwenke ext Data Protection Notice

All of the above text has been translated from German into English (British) using DeepL ext Data Protection Notice.