Data privacy statement
Respecting and protecting your privacy and your personal data is very important to us. This data privacy statement explains how we collect, process and use your personal data.
1. Personal data
We collect, process and use your personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR) and the Austrian Federal Data Protection Act (DSG). Personal data collected when you visit our website include your IP address, the date, time and duration of your visit, the HTTP status code, data volume transferred, pages visited and your browser type and operating system.
We need this data for technical reasons to display our website to you and ensure its stability and security. This constitutes our legitimate interest within the meaning of Article 6 (1)(1)(f) GDPR. However, the data is not used to personally identify visitors to our website.
Our website also uses so-called cookies, small text files which are stored on your device. These cookies are used to offer you additional functions on our website, such as saving the language you select.
The cookies we use are saved for 24 hours and then automatically deleted. You can also set your browser to block cookies generally or in specific cases, or to notify you if cookies are set so you can accept or reject them on a case-by-case basis.
If you send us an e-mail or contact us via any other channel, we process your personal data for the purpose of responding to your enquiry as part of our (pre-)contractual communication with you (Article 6 (1)(b) GDPR).
2. Google services and social media
This website uses Google Maps, a service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereafter “Google”). We use Google Maps on the grounds of our legitimate interest in showing you the location of our offices on a map.
Google Maps stores (permanent) cookies on your device and may transfer information about your use of this website (e.g. your IP address) to a Google server in the USA for storage there. We have no influence over Google’s use of your data.
You can refuse the storage of cookies on your device by selecting the appropriate settings in your browser. However, please note that doing this may prevent you from making full use of all the features on our website.
Use of Google Maps and the data thus acquired by Google is in accordance with Google’s Terms of Service. Further information is available here:
Google Maps Terms of Service:
We have activated Google Analytics’ IP anonymisation feature on our website. This ensures that Google shortens your IP address within member states of the European Union or in other states party to the Agreement on the European Economic Area, prior to transmitting it to the USA. In exceptional cases, Google may transmit the full IP address to a server in the USA and shorten it there. Google will use this data on our behalf in order to analyse your use of the website, compile reports on website activity and provide us with further services related to website and internet usage. Google will not associate your browser’s IP address transmitted for Google Analytics purposes with any other data held by Google.
We have concluded a data processing agreement with Google.
Our website uses Google Fonts, a service provided by Google. These fonts are hosted locally, so no data are transmitted to Google servers.
For general information about how Google Fonts handles user data, see: https://developers.google.com/fonts/faq/privacy
Our website contains links to LinkedIn, a service provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (hereafter “LinkedIn”). These take the form of buttons that direct website users to profiles on the LinkedIn platform.
3. Data security
Appropriate organisational and technical measures are in place to protect your personal data. In particular, these measures relate to protection against unauthorised, illegal or accidental access, processing, loss, use and manipulation.
Within our law firm, the only staff members given access to your personal data are those who need them in connection with the purposes mentioned in (1) and (2) above. Our staff are bound by professional and contractual confidentiality and committed to data secrecy under section 6 of the Austrian Data Protection Act (DSG).
Notwithstanding our efforts to maintain an adequately high level of security at all times, we cannot fully rule out the possibility that information you provide to us via the Internet may be viewed and used by others.
Please note that we are therefore unable to accept any liability whatsoever for the disclosure of information due to errors not caused by us during data transmission and/or unauthorised access by third parties (e.g. hacking of e-mail accounts or telephones, etc.).
4. Transmission of data to third parties
For the purposes mentioned in (1) and (2) above, it may also be necessary for us to forward your data to third parties, for example service providers (in particular IT service providers). Any such forwarding of your data is done exclusively in accordance with the GDPR.
Some of the recipients of your personal data mentioned above may be located outside Austria, or process your personal data there. The level of data protection in other countries may not correspond to that in Austria. However, we only transmit your personal data to countries which the EU Commission has decided have an adequate level of data protection, or else we will take measures to ensure that all recipients have an adequate level of data protection by concluding standard contractual clauses.
Our website is hosted by the following service provider:
The latter receives your personal data and processes it on our behalf. This means that we do not have to maintain a server on our own premises, which constitutes our legitimate interest within the meaning of Article 6 (1)(1)(f) GDPR. The web host’s server is located in Austria.
For further information on your options for objecting to processing and/or requesting erasure vis-à-vis Ledl.net GmbH, please see: https://www.domaintechnik.at/datenschutzerklaerung.html
5. Your rights as a data subject
As a data subject you have the right – subject to lawyer-client privilege – to information about your stored or processed personal data, its origin and recipients, the purpose of data processing and where possible the planned duration of storage, as well as the right to rectification, objection, restriction of processing, and the right to erasure of inaccurate or unlawfully processed data. In certain circumstances, you also have the right to data portability.
Where our processing of your personal data is based on legitimate interest and you exercise your right to object to this processing, we will examine the facts and either cease or adjust our processing operations or present you with compelling and legitimate reasons why the processing should continue.
You have the right to withdraw your consent to the use of your personal data at any time. Your request for information, erasure, rectification, restriction of processing and/or data portability, and/or your objection to processing of your data can be sent to our address as stated in (7) of this privacy statement.
If you feel that our processing of your personal data violates the prevailing data protection legislation or that your data protection rights have been otherwise violated, you may lodge a complaint with the relevant supervisory authority. In Austria, this is the Austrian Data Protection Authority (www.dsb.gv.at).
6. Data retention
We do not retain your data any longer than is required to perform our contractual or statutory obligations, to fulfil the purposes set out above, and to defend ourselves against any liability claims.
7. Our contact details
If you have any questions or wish to assert your aforementioned rights as a data subject, you can contact us at the following address:
Burgstaller & Preyer Rechtsanwälte GmbH
A-1090 Vienna, Rooseveltplatz 10
Tel. +43 1 532 85 80