Privacy Policy

Privacy notices in accordance with the EU’s General Data Protection Regulation (‘GDPR’)

Information as of May 2018

The information we have provided below gives you an overview of our approach to processing your personal data and your rights under the provisions of data protection legislation in connection with the use of our Website and webshop on the doman

The personal data processed depend largely on the services or products you use in any given case.

1. Information on the data controller

Data controller under Article 4(7) GDPR for passengers:

AprintaPro GmbH | Römergasse 1a 2353 Römergasse  Austria

Email address: [email protected]

The easiest way to reach our data protection officer is by sending an email to [email protected] or writing to the above address.

2. Processing purposes and data categories

We aim to inform you about the various types of personal data we process and the purposes for which we do this below.

2.1 Usagedata & communicationdata

Cookies: Cookies are small text files which are downloaded to your computer, tablet or mobile phone when you visit a website or application. The website or application may retrieve these cookies from your web browser each time you visit, so they can recognise you, remember your preferences and provide you with a more secure online experience. Generally, cookies are very useful and are a common method used by almost every website you visit because they help to make your online experience as smooth as possible. Cookies generally do not store any information to identify an individual person but are instead used to identify a browser on an individual machine. If you prefer, you can restrict, block or delete cookies by changing your browser settings but that may mean that the website won’t work properly. A persistent cookie expires at a specific date or after a specific length of time. It is automatically recognised that the user has previously visited our website as well as which entries and settings the user prefers. If you prefer, you can restrict, block or delete cookies by changing your browser settings.

Google website statistics with anonymized IP
This website uses Google Analytics, an online analysis service that uses Googe Inc. (“Google”). Google Analytics uses so-called cookies, i.e. text files, that are saved on your computer and that enable us to analyse the use of the website. The information generated by cookies about your use of the website (incl. your IP address) is transmitted to a Google server in the USA and saved there. Google will use this information to analyse the use of the website, to make reports about the advertising activities and for website providers to provide them with further services related to the use of the website and of the internet.

If necessary Google will pass on this information to third parties, as long as this is according to the law. At no rate Google will link your IP address to any other data of Google. You can prevent the installation of cookies by setting the preferences in your browser; however, we would like to point out that in this case not all features of our website can be used to full extent. By using this website you agree to the processing of your data by Google in the way and for the purpose mentioned above.

You can revoke consent for the google analytics cookie by using the following Link <a href=”javascript:gaOptout()”>Click here to opt-out of Google Analytics</a>

Use of Facebook pixel

This website uses Facebook (operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ) pixel. When you visit one of our pages that displays such a plugin, your browser connects directly to the Facebook servers. By integrating pixel, Facebook is given the information that your browser has accessed, the corresponding page of our website, even if you do not have a Facebook account or are not logged into your Facebook account. This information (including your IP address) is transmitted directly from your browser to a Facebook server and stored there.

Facebook can use this information for the purpose of advertising, market research and the design of Facebook pages. Facebook creates usage, interest and relationship profiles, e.g. to evaluate your use of our website with regard to the advertisements shown on Facebook, to inform other Facebook users of your activities on our website and to provide further services associated with the use of Facebook.

If you do not want Facebook to assign the data collected through our website to your Facebook account, you must log out of Facebook before you visit our website.

For the purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as your rights and settings for the protection of your privacy, please refer to Facebook’s Privacy Policy of Facebook:

You can opt out of the facebook pixel with the following Link

2.2 Userdata & Contact information

The following personal data will be processed in accordance with Article 6(1.)(b) GDPR for the performance of the contract:

First and last name, email address and Invoice address (master data) optional you can provide us with a separate shipping address and a mobile phone number. If you choose to register on the website we will also store your password in an encrypted form.

2.3 Payment

You can pay online through us via credit card SOFORT or PayPal. You can provide the details of your credit card or another source of payment (e.g. PayPal) to enable the payment. If your credit card details are provided, they will be transmitted directly to the payment service provider engaged by us via an encrypted connection. Our payment service provider is  PCI DSS certified (Payment Card Industry Data Security Standard).

In the context of payment, the following personal data will be processed in accordance with Article 6(1.)(b) GDPR for the performance of the contract:

First and last name, address, country, language, email address, credit card holder’s first and last name, credit card issuer, the credit card number, credit card’s expiry date, the email address of your PayPal account if applicable . We cannot offer you certain means of payment if we do not process these personal data.

2.4 Newsletter & offers

If you have agreed to receive news and personalised offers (advertising, vouchers and promotions) during the registration process, we will process your data to send you these promotions

In this context, we will process the following personal data in accordance with Article 6(1.)(a) GDPR:

First and last name, email address, language set

If you do not wish to receive the news and personalised offers already discussed, you can withdraw your consent by using the unsubscribe link in every promotion we send you. Of course, you can also contact us by sending an email to [email protected]

Please note that the withdrawal and ensuing changes are valid only for the future and will be effective or implemented by no later than 48 hours from withdrawal. This is for reasons of a technical nature, which do not permit faster implementation.

2.5 Rating products

You can rate products publicly online. When you submit a rating, you need to fill in a Surname and Name as well as a E-Mail address. Only the Name will be visible publicly.

3. Provider of processing services and processing in countries outside the European Economic Area

In some cases, we arrange for external service providers to process your data (e.g. troubleshooting, creation of mailings). This makes it necessary for us to transmit your personal data to our external service providers for a specified purpose (confined to the purpose in question). We have selected our service providers carefully and commissioned them in writing. They are bound by our instructions and we have obtained information about their technical and organisational measures for the secure processing of personal data. We also require that our

service providers comply with the applicable data protection regulations. We work with service providers from the EU and other EEA countries. We have concluded processing contracts with our external service providers in accordance with Article 28(3.) GDPR, EU standard contractual clauses in accordance with Article 28(7.) GDPR or the transmission is based on a decision of the EU Commission in accordance with Article 45 GDPR (e.g. Privacy Shield).

We store all our data with a cloud service provider within the EU or in IT infrastructures and systems (employee computers) at our sites within the EU.

We work with IT service providers that facilitate the fault elimination, customer services and improvement of functionality in accordance with point. We also work with payment service providers that facilitate payment processing. Please do not hesitate to contact us at [email protected] if you would like to know more about the service providers we engage.

We do not sell personal data to third parties.

However, we do reserve the right to disclose information about you if we are legally obliged to or if we are required to surrender it by administrative or law enforcement bodies (e.g. police or public prosecutors).

4. Your rights

You have the right to request information from us at any time about your personal data we have stored and the origin, recipients or categories of recipients to whom these data are forwarded or otherwise disclosed, the purpose of the storage and processing, the planned storage period, our automated decision-making procedure, the right to data portability, the existence of a right to rectification, erasure, restriction of or objection to processing, and any existing right to lodge a complaint with a supervisory authority.

You also have the right to rectification of incorrect data and, in cases where the legal requirements are met, to blocking and erasure, as well as to restrict the processing of data.

You may also send requests for information, withdrawals of consent, objections and other concerns regarding data processing by email to [email protected] or to the address stated in the introduction.

5. Data security

We have taken appropriate technical and organisational measures to guarantee data security, in particular to protect your personal data against access by third parties, as well as accidental or intentional modification, loss or destruction. Such measures are reviewed periodically and adapted in line with the state of the art. The transfer of your personal data from your terminal equipment (e.g. smartphone) to us is always encrypted.

6. Storage period

In principle, we process and store your data for the duration of our contractual relationship. In addition, we are subject to various retention and documentation requirements. The required periods, e.g. from tax law, can be up to 10 years. Moreover, special statutory provisions can make a longer retention period necessary, e.g. evidence in the context of statutory periods of limitation.

If data are no longer required for compliance with contractual or statutory requirements, they are regularly deleted, unless their limited further processing is necessary for the purposes listed above.