Data protection policy
Thank you for your interest in our web page. The protection of your privacy is very important to us. Hereafter, we will inform you in detail about how we use your data.
The entity responsible for processing your data is
Immomanagement GmbH, FN 271363p
Lindenstraße 11, 4632 Pichl bei Wels
Telephone: +43 664 3961703
We have set up organisational, contractual, and technical security measures according to the state of the art in order to guarantee our compliance with the provisions of the data protection acts and therefore to protect the data processed by us against accidental or intentional manipulation, loss, destruction or access by unauthorised persons.
To be mentioned in particular amongst the respective security measures is the encrypted transmission of data between your browser and our server.
Legal basis, storage duration, and data recipient
The legal bases for the processing of your personal data are in particular:
- Your consent (Art. 6 Para. 1 (a) GDPR) (e.g. contact form, apartment-sharing exchange)
- Performance of a contract (Art. 6 Para. 1 (b) GDPR)
- Compliance with legal obligations (Art. 6 Para. 1 (c) GDPR)
- Protection of our legitimate interest (Art. 6 Para. 1 (f) GDPR) (e.g. ensuring the stability and security of the web page, protecting against legal claims).
We process your personal data, where required, for the entire duration of the business relationship and beyond, in accordance with the legal storage provisions and documentation requirements, or as long as we have a legitimate interest in doing so with regard to the protection against possible liability claims.
Where necessary for the performance of the respective task, your data may be accessed by contractors appointed by us (e.g. IT service providers, the facility management service) as well as being processed by us. The contractors commissioned by us are obliged to comply with applicable data protection provisions. We have set up task-related processing contracts in accordance with Art. 28 GDPR. For further information regarding the task processors employed by us, please contact email@example.com.
Collection of access data and logfiles
In accordance with Art. 6 Para. 1 (f) GDPR, given our legitimate interest, we collect data on every action giving access to the server that hosts our service (known as “server logfiles”). Access data include the following: name of the accessed web page, file, date and time of access, data volume transferred, notification on successful data retrieval, browser type and version, the user’s operating system, referrer URL (web page visited beforehand), IP address, and the provider making the request.
Your data will be stored in our database for a minimum of 6 months, in the event that you have registered with our apartment-sharing exchange when signing up to our service. The data will be deleted automatically after 6 months of inactivity. The amount of data depends on the level of completeness of your profile. We will store at least the following data:
- First name
- Last name
- Email address
- Password (encrypted)
- Registration date
- Date of last login
In order to serve the purpose of the apartment-sharing exchange for logged-in users, your data are visible any time to other users who are registered and logged in, depending on the completeness of your profile.
In addition, your data will be forwarded to the facility management service (see contact details) that may forward the data you provide to other registered users to help you find a flatmate speedily, and to help you establish contact.
Should you no longer need your profile, you may delete it anytime by yourself, or request its deletion via email to firstname.lastname@example.org.
When filling in our contact form during registration, your data will be stored in our database for the duration of 1 year and automatically deleted thereafter. The amount of data depends on the level of completeness of your profile. We will store at least the following data:
- First name
- Last name
- Email address
The data provided to us upon registration will be forwarded for further processing to the facility management service (see contact details). The latter is obliged to comply with the applicable data protection provisions.
Cookies & reach measurement
Cookies are pieces of information transmitted to the users’ web browsers by our web server or a third-party web server, where they are stored for later retrieval. Cookies may be small data files or other kinds of information storage methods.
We use "session cookies" which will be placed on our web page for the duration of your temporary visit only (e.g. to record your log-in status or to enable you to access the shopping cart function in order to make our online service available to you). A session cookie contains a randomly generated unique identification number, known as session ID. In addition, a cookie contains information on its origin and expiration date. These cookies cannot store any other data. Session cookies will be deleted after you stop using our online service, for example by logging out or by closing the browser.
In this privacy statement, the users are provided with information on how cookies are used for pseudonymous reach measurement.
In the event that the users do not want cookies to be set on their computer, they will be asked to deactivate the relevant option in the system settings of their browser. Stored cookies can be deleted by accessing the system settings of the browser. After cookies have been disabled, full operability of this online service may no longer be available.
Use of Google (Universal) Analytics for web analysis
This web page uses Google (Universal) Analytics, a web analytics service offered by Google Inc. (www.google.de). Google (Universal) Analytics uses methods such as “cookies”, text files set on your computer, which make it possible to analyse your user behaviour with regards to the web page. The information created on your use of this web page will usually be transferred to a google server in the USA, where it will be stored. By activating the IP anonymisation on this web page, the IP address will be abbreviated before transferral by the member states of the European Union or by other contracting states of the Agreement on the European Economic Area. It is a rare exception that a full IP address is transferred to a google server in the USA and abbreviated on-site. The anonymised IP address transferred by your browser via google analytics will not be merged with other google data.
You may prevent google from collecting and processing data, created by the cookie, on your use of the web page (including your IP address) by downloading and installing the browser plug-in available under the following link: tools.google.com/dlpage/gaoptout.
You may alternatively click on this link in order to disable future analysis of Google Analytics on this web page. When doing so, an opt-out-cookie will be set on your terminal equipment. If you delete your cookies, you will have to click on this link again.
Rights and contact
You have a right to free information on your personal data stored by us. Furthermore, you may also have the right, where applicable, to correct, block or delete these data.
In principle, you always have the right to inquire about, correct, delete, restrict, transfer, withdraw and object to data. If you come to believe that the processing of your data violates data protection law, or that your data protection rights may have been infringed in any other way, you may file a complaint with a supervisory authority. The responsible body in Austria is the Austrian data protection authority (Wickenburggasse 8, 1080 Vienna, Email: email@example.com ).
If you have questions regarding the collection, processing or use of your personal data, if you wish to inquire about, correct or delete data, or if you wish to withdraw your prior consent to a declaration or to object against a certain type of data usage, please contact firstname.lastname@example.org or Immomanagement GmbH, Lindenstraße 11, 4632 Pichl bei Wels.
Consent and right of withdrawal
If your permission regarding the processing of your data is required, we will process them only after you have given your explicit consent.
We are not authorised to process data of under-aged persons and, on principle, adhere to this provision. When giving your consent, you confirm that you are at least 14 years old, or that consent by your legal representative has been given.
You may withdraw your consent at any time by contacting the following email address: email@example.com. If consent is withdrawn, the legitimacy of the processing activities based on prior consent before withdrawal remains unaffected.
Changes to the privacy statement
We reserve the right to modify this privacy statement in order to adapt it to changes in the legal framework or to modifications of the service or in the data processing. This, however, only applies to changes with regards to declarations on data processing. If consent by the users is required or if parts of the privacy statement contain provisions on the contractual relationship with the users, these modifications will only be done with the consent of the user.
We ask the users to familiarise themselves with the contents of this privacy statement on a regular basis.