Privacy policy

In the following, we inform you about the processing of your personal data when using our website.

I. Responsibility

The controller under data protection law is

ADD HOLSTEIN Erbenermittlung GmbH
Domplatz 2
6020 Innsbruck
Phone: +49 (0)512 23 81 51
E-mail: info@add-holstein.at

II Processing of your data

When using our website, various personal data are processed depending on the type and scope of use.

1. when accessing and visiting our website

In order to make our website technically available, we process certain information automatically transmitted by your browser so that our website can be displayed in your browser and you can use it. The following information is automatically collected each time you visit our website and stored in so-called server log files:

- Information about browser type and browser version;
- the operating system used;
- website from which access is made (referrer URL);
- websites accessed by the user via our website;
- host name of the accessing computer;
- date and time of access;
- IP address of the requesting computer.

In addition to providing a functional website, storage in server log files is necessary for technical reasons to ensure system security. This also applies to the storage of your IP address, which is necessary. This data is not merged with other data sources. The legal basis for the temporary storage of the data and the log files is Art. 6 para. 1 lit. f GDPR.

2. contact form and e-mail contact

Data transmitted via the contact form, including your contact details, will be stored in order to process your request or to be available for follow-up questions. This data will not be passed on without your consent.

The data entered in the contact form is processed exclusively on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can withdraw your consent at any time. An informal notification by e-mail is sufficient for revocation. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.

3. use of cookies and associated functions

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on your computer system when you access a website. A cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again. Some cookies are "session cookies". Such cookies are deleted automatically at the end of your browser session. Other cookies, on the other hand, remain on your device until you delete them yourself. Such cookies help us to recognize you when you return to our website.

On the one hand, we use these cookies to make our website and its technical functions available to you (technically necessary cookies). Some functions of our website cannot be offered without the use of cookies. The processing is carried out on the basis of our legitimate interest (Art. 6 para. 1 sentence 1 lit. f GDPR).

If you have given your consent, we use performance cookies for analysis purposes. You can give us your consent voluntarily by clicking on the corresponding button in the "cookie banner" when you visit our website. We use third-party services to record and evaluate user behavior (see section III). The cookie-based data processing for analysis purposes is carried out on the basis of your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.

4. compliance with legal regulations

We also process your personal data in order to fulfill other legal obligations. These include, in particular, retention periods under commercial, trade or tax law. We process your personal data to fulfill a legal obligation to which we are subject in accordance with Art. 6 para. 1 lit. c GDPR in connection with commercial, trade or tax law, insofar as we are obliged to record and store your data.

5. law enforcement

We also process your personal data in order to assert our rights and enforce our legal claims. We also process your personal data in order to be able to defend ourselves against legal claims. Finally, we process your personal data insofar as this is necessary for the prevention or prosecution of criminal offenses. We process your personal data for this purpose on the basis of our legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR, insofar as we assert legal claims or defend ourselves in legal disputes or we prevent or investigate criminal offenses.

III Disclosure and transfer of data

Within ADD Holstein, only those persons have access to your data who need it to fulfill their tasks, to safeguard our legitimate interests or to fulfill contractual and legal obligations.

We also share your data to the extent necessary with the service providers we use in order to provide our services. We limit the transfer of data to what is necessary. In some cases, our service providers receive your data as processors and are then strictly bound by our instructions when handling your data. In some cases, the recipients act independently with your data that we transmit to them.

The categories of recipients of your data are listed below:

- Service providers for the operation and, if necessary, the translation of our website and the processing of the data stored or transmitted by the systems (e.g. for data center services, IT security; analysis service providers);

- Public bodies
We may transfer personal data to courts, authorities and other state institutions on the basis of statutory provisions. The legal basis for the transfer is then Art. 6 para. 1 sentence 1 lit. c GDPR;

- Auditors, tax consultants and other liberal professions
We transfer personal data to auditors, tax consultants, lawyers or other liberal professions commissioned by us, insofar as this is legally permissible and necessary to comply with applicable law or to assert, exercise and/or defend legal claims. The legal basis for the transfer is then Art. 6 para. 1 sentence 1 lit. f GDPR.

In addition, we transfer data to the following service providers that are not based in the European Economic Area (EEA) and in a country for which the EU Commission has not determined that it offers an adequate level of protection:

1. squarespace

We use the Squarespace service, a website construction kit system, for our website. The service provider is Squarespace Ireland Ltd, Le Pole House, Shipstreet Great, Dublin 8, Ireland (hereinafter: Squarespace). When you visit our website, your data is processed on the Squarespace servers. Your personal data (e.g. your IP address) may be transmitted to Squarespace Inc, 8 Clarkson St, New York, NY 10014, USA. Details on data protection can be found here: https://support.squarespace.com/hc/de/articles/360000851908-DSGVO-und-Squarespace.

2. google analytics

On the basis of your consent given to us, we use the Google Analytics service for our website, a web analysis service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: Google). Google Analytics uses cookies that enable us to analyze the use of our website. The information generated by the cookies is used by Google on our behalf to evaluate the use of our website, to compile reports on website activity and to provide us with other services relating to website activity and internet usage. You can find more information on how Google Analytics handles user data and the security and data protection principles as well as setting and objection options in Google's privacy policy, available via the following link: Data protection - Google Analytics Help

Information about your use of our website (e.g. time, place and frequency of your website visit, including your IP address) is regularly transmitted to Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). As a rule, your IP address is anonymized. Only in exceptional cases is the full IP address transmitted and then shortened. According to Google's own information, your IP address and other data that Google has about you will not be merged.

3. facebook

As part of our corporate communications, we are active on Facebook (www.facebook.com).

The Facebook social media platform is offered by Meta Platforms Ireland Limited (formerly Facebook Ireland Limited), 4 Grand Canal Square, Dublin 2, Ireland, whose parent company, Meta Platforms, Inc. (formerly Facebook, Inc.), is based in the USA (hereinafter referred to as Meta). Data may be transferred between the subsidiary and the parent company.   

When you visit our Facebook page, Meta collects data about you and the devices you use. Page insights are collected, i.e. your interaction with our page is recorded, evaluated and processed anonymously in statistics that are provided to us.  

We have concluded an agreement with Meta on joint responsibility with regard to the processing of personal data when visiting our Facebook page (Page Controller Addendum). The agreement relates to the processing of data collected as Page Insights, for which Meta assumes primary responsibility and fulfillment of data protection obligations. The agreement can be accessed at the following link https://www.facebook.com/legal/controller_addendum. Additional information on Page Insights data can be found at https://www.facebook.com/legal/terms/information_about_page_insights_data.

For further details on the processing of personal data by Meta, please refer to Facebook's privacy policy, which you can access at the following link: https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0.

As a Facebook user, you can adjust your privacy settings and advertising preferences yourself at any time using the following link: https://www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Fsettings%2F%3Ftab%3Dprivacy.

4. LinkedIn

We also maintain a presence on the social media platform LinkedIn (www.linkedin.com) where we have a company presence. 

The technical platform is provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (hereinafter referred to as LinkedIn). LinkedIn is a subsidiary of LinkedIn Corporation, 1000 W Maude, Sunnyvale, CA 94085, USA. Data may be transferred between the subsidiary and the parent company. 

When you visit our LinkedIn page, LinkedIn collects data about you and the device you are using. LinkedIn can use this data to provide us with anonymized statistics as a result of the evaluation of your user behavior, so-called page insights. Further details on the processing of personal data by LinkedIn can be found at LinkedIn Privacy Policy. 

With regard to the processing of data in the context of Page Insights, we have concluded an agreement with LinkedIn as joint controllers (Page Insights Joint Controller Addendum). You can access the agreement at LinkedIn Pages Joint Controller Addendum.

As a LinkedIn user, you can adjust your privacy settings and advertising preferences yourself at any time using the following link: https://www.linkedin.com/signup/cold-join?session_redirect=https%3A%2F%2Fwww%2Elinkedin%2Ecom%2Fpsettings%2Fprivacy&trk=login_reg_redirect.

We also transfer data to the following service providers that are not based in the European Economic Area (EEA), but which the EU Commission has determined to offer an adequate level of protection:

5. matomo

This website uses the web analysis software Matomo, a software of InnoCraft Ltd, 150 Willis Street, 6011 Wellington, New Zealand. (https://matomo.org/what-is-matomo/) to collect and store data, in particular your IP address, from which usage profiles are created using pseudonyms. These user profiles are used to analyze visitor behavior and are evaluated to improve and tailor our offer. Cookies may be used for this purpose. The pseudonymized user profiles are not merged with personal data about the bearer of the pseudonym. The data is only stored for a limited period of time.

IV. Data transfers to third countries

When using the aforementioned services, we may transfer your personal data, e.g. your IP address, to third countries outside the EEA that have not been certified by the EU Commission as having a level of data protection comparable to the EEA standard. Where this is the case, we ensure that data protection is adequately guaranteed. We have therefore taken special measures to ensure that your data is processed in third countries just as securely as within the EEA. With service providers in third countries, we conclude the data protection contract provided by the EU Commission for the processing of personal data in third countries (so-called standard contractual clauses). This provides suitable guarantees for the protection of your data. You can request a copy of this contract using the contact details provided above.

Nevertheless, when data is transferred to the USA, there is a risk that your data may be processed by US authorities for monitoring and surveillance purposes, possibly without you having any legal recourse against this. We have no influence on these processing activities.

Otherwise, we do not transfer your personal data to countries outside the EEA or to international organizations, unless expressly stated otherwise in this privacy policy. 

V. Storage period and deletion of data

We process your personal data for as long as it is necessary to achieve the purpose for which it was collected. If the data is no longer required to achieve the purpose for which it was collected, it will be deleted unless its (further) processing - for a limited period - is required for the following purposes:

- Statutory retention periods
To comply with the (commercial and tax) statutory periods for retention or documentation from the German Commercial Code (HGB) or the German Fiscal Code (AO). These periods are up to ten years.

- Evidence
For the preservation of evidence within the statutory limitation periods, insofar as there are concrete indications that we require evidence. According to Sections 195 et seq. of the German Civil Code (BGB), these limitation periods can be up to thirty years, whereby the regular limitation period is three years.

- Visiting the website
We delete or anonymize your personal data as soon as it is no longer required for the purposes for which we collected or used it in accordance with the above paragraphs. The log files are stored on our web server for 7 days for IT security purposes and then deleted or anonymized.

- Contact form
Your data from the input screen of the contact form will be deleted when the respective conversation with you has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified. The additional personal data collected in connection with sending the form (e.g. IP address) will be deleted after a period of 7 days at the latest.

VI Your rights

1. contradiction

Right to object Art. 21 GDPR

You have the right to object at any time to the processing of your data, which is carried out on the basis of Art. 6 para. 1 lit. f GDPR (data processing on the basis of our legitimate interest).

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.

The objection can be made informally.

2. revocation

Furthermore, you have the right to revoke any consent you have given with effect for the future. However, the legality of the data processing based on your consent remains unaffected until you exercise your right to withdraw your consent.

3. other rights

You have the right to receive information about your personal data stored by us free of charge at any time, to correct incorrect data and to have data blocked or deleted. You also have the right to receive your data in a structured, commonly used and machine-readable format and to have your data transferred by us to someone else. Finally, you have the right to lodge a complaint with the competent data protection authority. The data protection authority responsible for us is

Austrian Data Protection Authority
Barichgasse 40-42
1030 Vienna
Phone: +43 1 52 152-0
E-mail: dsb@dsb.gv.at

VII Legal and contractual obligations for provision

The provision of your data as described in this privacy policy is neither contractually nor legally required. However, without providing the mandatory information and enabling certain services or functions, the website cannot be used or cannot be used to its full extent. Failure to consent to the use of third-party services may also affect the scope of use of our website. 

VIII. Changes to this privacy policy

We keep this privacy policy up to date. We therefore reserve the right to amend it from time to time and to update it to reflect changes in the collection, processing or use of your data. The current version is always linked under "Privacy policy" in the footer of our website.