Data Protection Information
in accordance with Art. 13 of the
General Data Protection Regulation (GDPR)
We would like to point out that data transmission over the internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible. In order to protect your data as comprehensively as possible from unwanted access, we take so-called technical and organisational measures. Specifically, we use an encryption process on this website. Your data is transmitted over the internet from your computer to my computer and vice versa using what is known as TLS encryption. TLS stands for "Transport Layer Security" and is an encryption protocol for data transmission on the internet. You can usually recognise "TLS" by the fact that the lock symbol in the status bar of your browser is closed and the address begins with https://.
Responsible body according to Art. 4 No. 7 GDPR
Meaningful GmbH - Markus Tomas
Stadlermahd 45, 5323 Ebenau, Austria
Contact: office@meaningful.at
Further information can be found at Imprint.
Data Processing On This Website
1. Hosting of the website
This website automatically collects and stores server log file information transmitted by your browser as part of the hosting process. These are
Information about your browser, your network and your device
Websites you visited before coming to this website
Websites that you view while visiting this website
your IP address
The legal basis for this data processing is our legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR. This is based on being able to identify indications of unlawful use of this website. This anonymous data is stored separately from any personal data you may have provided and therefore does not allow any conclusions to be drawn about a specific person.
Your personal data will not be transferred to third parties. We have concluded an Data Processing Agreement with the provider of this website, Squarespace Ireland Ltd. in accordance with Art. 28 GDPR. Squarespace Ireland Ltd. uses sub-processors based outside the European Union or the European Economic Area. Data transfers to them are made on the basis of concluded standard contractual clauses, unless an adequacy decision exists. For data transfers to Squarespace, Inc., based in the USA, there is a valid certification in accordance with the Data Privacy Framework.
The data collected is stored for a maximum of 7 days in server log files that your browser automatically transmits. We only store the server log files for longer than 7 days in the event of attacks on the server infrastructure or other legal violations. This longer storage is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f) GDPR. The legitimate interest lies in the preservation of evidence.
2. Enquiries by e-mail, telephone or contact form
Information and personal details that you send by e-mail, telephone or contact form will of course be treated confidentially. We use your data exclusively for the purpose of processing enquiries. The legal basis is the implementation of (pre-)contractual measures in the context of this communication (Art. 6 para. 1 lit. b) GDPR). Another legal basis for data processing is our legitimate interest in accordance with Art. 6 para. 1 lit. f) GDPR. The legitimate interest arises from our interest in responding to enquiries from customers, business partners and interested parties and in maintaining and promoting customer satisfaction
As a matter of principle, we do not pass on data to third parties.
We will delete or anonymize all personal data that we receive in response to enquiries no later than 180 days after the final answer has been given. The retention period of 180 days is due to the fact that we may occasionally be contacted again about the same matter following a reply and we would like to be able to refer to the previous correspondence. Experience has shown that, as a rule, there are no more queries about our answers after 180 days.
3. Use of cookies and comparable technology for processing usage data
This website uses cookies to facilitate and improve the use of the website. Cookies are small pieces of text information that can be stored on your computer or smartphone via the browser when you visit a website. This serves to recognise the website visitor. Cookies also provide information about how you use this website so that we can continuously improve the design of the website.
Cookies themselves do not contain any personal data about users, they are only used to uniquely identify what website visitors find interesting and useful on this website.
The following cookies are specifically used
Technically necessary: These are cookies and similar methods without which you cannot use these services, for example to display my website correctly or to use desired functions.
Marketing: This allows you to display tailored advertising content based on an analysis of your user behaviour.
Comfort: These techniques allow me to take into account your actual or presumed preferences for comfortable use of the website.
Statistics: These techniques enable me to compile anonymous statistics on the use of the service. This allows me to determine, for example, how I can customise this website even better to the habits of my users.
The data processed by necessary cookies are required for the purposes listed below to protect my legitimate interests and, if applicable, those of third parties in accordance with Art. 6 para. 1 lit. f) GDPR.
Any use of cookies that is not absolutely technically necessary constitutes data processing that is only permitted with your express and active consent in accordance with Art. 6 para. 1 lit. a) GDPR. You can use the so-called "Cookie Consent Tool" to set which cookie categories you would like to consent to when visiting the website.
Consent under data protection law is obtained using the consent management tool from Squarespace to obtain the legally required consent for the use of cookies. The legal basis for this is our legitimate interest in accordance with Art. 6 para. 1 lit. f) GDPR, which lies in the legally compliant documentation and verifiability of consents (Art. 6 para. 1 lit. c) GDPR) to fulfil our accountability obligation pursuant to Art. 5 para. 2 GDPR. You can change your settings at any time by clicking on the widget on the bottom of any page of this website.
This website sets the following cookies with your consent:
TECHNICALLY NECESSARY
Crumb
Purpose: Prevents cross-site request forgery (CSRF)
Category: Technically necessary
Storage duration: Session
Third-party provider: Squarespace
Data transfer to third countries: USA, certification according to the Data Privacy Framework
Ss_cookieAllowed
Purpose: Remembers whether a visitor has consented to the placement of analytics cookies in their browser if a website restricts the placement of cookies.
Category: Technically necessary
Storage period: 30 days
Third-party provider: Squarespace
Data transfer to third countries: USA, certification according to the Data Privacy Framework
Notice_preferences
Purpose: Cookie management
Category: Technically necessary
Storage period: 13 months
Third-party provider: Squarespace
Data transfer to third countries: USA, certification according to the Data Privacy Framework
Test
Purpose: HTML Local Storage - Used to determine whether the visitor has accepted the marketing category in the cookie banner. This cookie is necessary for the website's compliance with the GDPR.
Category: Technically necessary
Storage duration: Persistent
Third-party provider: Squarespace
Data transfer to third countries: USA, certification according to the Data Privacy Framework
TECHNICALLY NOT NECESSARY
SS_ANALYTICS_ID
Purpose: Squarespace sets this cookie to identify unique visitors to our website.
Category: Marketing
Storage period: 13 months
Third-party provider: Squarespace
Data transfer to third countries: USA, certification according to the Data Privacy Framework
IR_PI
Purpose: This cookie is set by Impact Radius and is used for affiliate tracking. It helps to count visitors to websites that participate in the Impact Radius affiliate marketplace.
Category: Marketing
Storage period: 1 year
Third-party provider: Squarespace
Data transfer to third countries: USA, certification according to the Data Privacy Framework
SS_ANALYTICS_ID
Purpose: Squarespace sets this cookie to identify unique visitors to our website.
Category: Marketing
Storage period: 13 months
Third-party provider: Squarespace
Data transfer to third countries: USA, certification according to the Data Privacy Framework
ss_cvr
Purpose: Squarespace sets this cookie to identify unique visitors to our website.
Category: Marketing
Storage period: 2 years
Third-party provider: Squarespace
Data transfer to third countries: USA, certification according to the Data Privacy Framework
ss_cvt
Purpose: Identifies unique visitors and tracks a visitor's sessions on a website
Category: Marketing
Storage time: 30 minutes
Third-party provider: Squarespace
Data transfer to third countries: USA, certification according to the Data Privacy Framework
_rdt_uuid
Purpose: This cookie is set by Reddirt to create a profile of your interests and show you relevant adverts.
Category: Marketing
Storage period: 3 months
Third-party provider: Squarespace
Data transfer to third countries: USA, certification according to the Data Privacy Framework
Further Information on Squarespace Analytics
This website collects personal data on the basis of your consent, which serves as the basis for our website analytics.
These include:
Information about your browser, network and device
Websites that you accessed before visiting this website
your IP address
This information may also include details about your use of this website, including:
Clicks
Internal links
Visited pages
Scroll
Search processes
Timestamp
We share this information with Squarespace, our website analytics provider, to learn more about the traffic and activity on this website.
4. Sending of newsletters
You can subscribe to our newsletter via this website. The legal basis for data processing in the context of sending newsletters is your consent in accordance with Art. 6 para. 1 a) GDPR. The purpose of data processing as part of the newsletter subscription is to inform newsletter subscribers about offers, promotions, products and services. Newsletter tracking does not take place. If you register for the newsletter, I need your e-mail address as mandatory information. Your information is stored in our CRM Pipedrive. We have a data processing agreement with Pipedrive. Data transfers to Pipedrive, Inc., based in the US, are subject to the Data Privacy Framework (adequacy decision for the US).
You can revoke your consent at any time with effect for the future by clicking the "Unsubscribe" button in the newsletters or you can also contact us at any time at my e-mail address. If you revoke your consent, your data will be deleted immediately; proof of revocation will be stored for a further three years so that I can fulfil my accountability obligation in accordance with Art. 5 Para. 2 GDPR. This storage is based on my legitimate interest in accordance with Art. 6 para. 1 lit. f) GDPR.
The success of newsletters is measured using a so-called "web beacon", a small file that sends information to the server when the newsletter is opened. Technical data such as browser type, system information, IP address and retrieval time are recorded. This data helps to technically improve the service and to analyse the reading behaviour of the target group, for example based on the location (determined by the IP address) or access times.
We also statistically record whether and when newsletters are opened and which links are clicked on. Although this information can technically be assigned to individual recipients, it is neither our aim nor that of the mailing service provider to observe individual users. Instead, these analyses are used to tailor the content to the reading habits of users and to send different content depending on their interests.
A separate revocation of the performance measurement is not possible; if you do not agree, the entire newsletter subscription must be cancelled.
OPERATING SOCIAL MEDIA ACCOUNTS
We maintain the following social media accounts:
LinkedIn:
https://www.linkedin.com/company/meaningful-gmbh/
Instagram: https://www.instagram.com/company/meaningful-gmbh/
Instagram is a product of Meta Platforms Inc. (formerly Facebook Inc.): Facebook.com/help/1561485474074139/?helpref=related
Data processing by us:
Maintaining the above-mentioned social media pages and placing ads (‘advertisements’)
Personal data entered on social media sites, such as comments, videos, images, likes, public messages, etc., are published by the respective social media platform. We reserve the right to delete content if necessary. If necessary, we may share content on our site and contact you via the social media platform, for example via the messenger services offered. In addition, we regularly place advertisements (‘ads’) on our social media pages. The legal basis for this data processing is the legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR, which lies in the interest of our public relations and communication.
Page insights
Social media platforms provide anonymised statistics and insights that help us gain insights into the types of actions people take on our site (so-called ‘page insights’). These page insights are created based on certain information about people who have visited our site.
The legal basis for this data processing is our legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR, which lies in obtaining information about the actions and visitors to our pages.
This processing of personal data is carried out by the social media platform and us as so-called joint controllers pursuant to Art. 26 GDPR. In the event of joint responsibility, a separate agreement must be concluded.
LinkedIn: https://legal.linkedin.com/pages-joint-controller-addendum
Instagram: https://www.facebook.com/legal/terms/page_controller_addendum
If you wish to object to specific data processing over which we have influence (e.g. deletion of comments), please contact us using the contact details provided above.
Note: The provision of your data is neither required by law nor contractually required or necessary for the conclusion of a contract. You are not obliged to provide your personal data. The consequence of not providing your data is that you will not be able to communicate with us via our social media pages, interact with us or participate in competitions. To contact us, please use the email address provided above.
Data processing by the operator of the social media platform:
In addition to us, there is also the operator of the social media platforms themselves. From a data protection perspective, they are also considered to be another controller who carries out their own data processing. This means that the operator is also a separate controller under the GDPR. However, we only have limited influence over the data processing carried out by the operator. Where we can exert influence (e.g. through parameterisation), we work within our means to ensure that the social media platform operator handles data in accordance with data protection regulations. However, in many cases, we cannot influence the data processing carried out by the social media platform operator and do not know exactly what data they process. The respective operator will inform you about the processing of personal data in its own privacy policy:
Instagram: help.instagram.com/519522125107875
LinkedIn: https://de.linkedin.com/legal/privacy-policy?
When you use the platform, your personal data is usually also processed by the respective platform operator on servers in third countries, in particular in the USA. Certain third countries have been granted a so-called adequacy decision by the European Commission. This means that the legal situation regarding privacy protection in these countries is comparable to that in the EU or the EEA. Further information on the current countries with adequacy decisions can be found here. Certifications in accordance with the adequacy decision for the USA, the Data Privacy Framework, exist for Meta Platforms Inc (Facebook, Instagram) and Google (YouTube). In all other cases, we conclude so-called standard contractual clauses with the platform operators for the transfer of personal data to third countries.
Note: The operator of the social media platform uses web tracking methods. Web tracking may also take place regardless of whether you are logged in or registered with the social media platform. As already explained, we unfortunately have little influence over the web tracking methods used by the social media platform. For example, we cannot disable this. Please be aware that it cannot be ruled out that the provider of the social media platform may use your profile and behaviour data, for example to evaluate your habits or personal relationships and preferences, etc. We have no influence on the processing of your data by the provider of the social media platform.
I. Rights of data subjects
In accordance with Art. 15 para. 1 GDPR, you have the right to receive information about the personal data stored about you free of charge upon request. Furthermore, if the legal requirements are met, you have the right to rectification (Art. 16 GDPR), erasure (Art. 17 GDPR) and restriction of processing (Art. 18 GDPR) of your personal data. If you have provided the processed data yourself, you have the right to data portability in accordance with Art. 20 GDPR.
If the data processing is based on Art. 6 para. 1 e) or f) GDPR, you have the right to object in accordance with Art. 21 GDPR. If you object to data processing, this will not take place in future unless the controller can demonstrate compelling legitimate grounds for further processing which override the data subject's interest in objecting.
If the data processing is based on consent in accordance with Art. 6 para. 1 lit. a), Art. 9 para. 2 lit. a) or Art. 49 para. 1 lit. a) GDPR, you can revoke your consent at any time with effect for the future without affecting the legality of the previous processing.
You also have the right to lodge a complaint with a data protection supervisory authority. The complaint can be lodged in particular with a supervisory authority in the EU Member State of your place of residence, your place of work or the place of the alleged infringement
Contact the responsible data protection authority:
Austrian Data Protection Authority - Österreichische Datenschutzbehörde
Barichgasse 40-42
1030 Vienna
Austria/Europe
Phone: +43 1 52 152-0
E-Mail: dsb@dsb.gv.at
II. No automated decision-making
I do not use automated decision-making or profiling.
III. Provision
Unless otherwise stated, the provision of personal data is not required by law or contract or necessary for the conclusion of a contract. If you do not provide your personal data, I may not be able to respond to your enquiry.
This data protection information was created in cooperation with SCALELINE LTD. The legal texts are subject to copyright.