Privacy Notice for Website Visitors
(You find our Data Protection Notice for Customers here.)
The controller of this website is:
SOY AUSTRIA GmbH
1220 Vienna, Austria
Tel: +43 1 879 34 34
Fax: +43 1 879 34 35
Purposes of data processing
Your personal data will be processed for the following purposes:
- to provide, improve and develop this website;
- to create usage statistics;
- to detect, prevent and investigate attacks on our website;
- to respond to your requests
- to process your Customer Area admission request
- to carry out direct marketing for existing customers
- to sign up for our email marketing
Legal basis of processing
The legal basis for the processing of your personal data is a legitimate interest (in accordance with Article 6 (1) (f) of the EU General Data Protection Regulation), which is to achieve the purposes set out in point 1 above.
Furthermore, in the case of contact, your data may be used to fulfill a contract or to carry out pre-contractual measures and to fulfill legal obligations, such as accounting and warranty processed. If necessary we will ask you for an explicit consent.
If you contact us via the form on the website or by e-mail, your data will be stored for six months to process the request and in case of follow-up questions. We will not share this information without your consent.
In order to be able to process your admission request, we need the data provided by you in the mail. If membership is established, your data will only be processed for this purpose and will not be transmitted to third parties. If membership is not granted or is terminated, your data in the Customer Area will be deleted immediately.
You can manage your cookie settings here:
Hosting and Log Files
To operate this website we need hosting services like infrastructure and platform services, computing capacity, storage, database services, security and maintenance services. We respectively our hosting provider process the data of our website visitors like contact data, content data, usage data, meta and communication data on basis of our legitimate interest in a satisfactory and secure website offer. For the same reason we respectively our hosting provider process so called server log files (e.g. website calls, files, time of call, amount of data, browser and operating system informations, website referrers, IP addresses, user`s provider). Log files are stored for security reasons (misuse or fraud detection) for a maximum of 12 months. If necessary (Incident handling), data may also be stored longer. We have concluded a data processing contract with the hosting provider.
You have the option of subscribing to our newsletter via our website. Therefore we need your email address and your consent. As soon as you have registered for the newsletter, you will receive a confirmation email with a link to confirm your registration. This procedure is called “Double Opt In” and corresponds to the state of the art. The applications are logged in order to be able to meet the requirement of the obligation to provide evidence. This also includes the data categories of registration and confirmation time and IP address.
The newsletters contain a small file that is retrieved from the mailing service provider’s server when it is opened. This collects technical information, the time of access and the user IP address. This information is used to improve the service and to analyze target group behavior.
You can cancel your subscription to the newsletter at any time by clicking the unsubscribe link in every newsletter email. If that doesn’t work, please send your cancellation to the email address firstname.lastname@example.org. We will then remove your data from the newsletter delivery. In order to prove the admissibility of sending in the event of a complaint, the data will be stored in a deletion log for the duration of the limitation period.
The newsletter is sent via the service provider “Brevo” from Sendinblue GmbH, Köpenicker Strasse 126, 10179 Berlin, Germany. The data will only be processed within the EU. We have concluded a data processing agreement with the provider.
We set a cookie to control the newsletter registration form.
Integration of third-party services and/or content
Third-party services are used to integrate videos, for example.
For this purpose, these third-party providers need the IP addresses of the website users, otherwise they cannot deliver the integrated content to the user’s end device. In addition, third-party providers can set cookies on the end-user devices, which, for example, save which video has already been viewed for how long, so that you can then continue at this point. Furthermore, the cookies can contain technical information about the browser and operating system of the user as well as information about website links, visit times, etc. Therefore data can be transferred to the USA.
We process your data due to the legal regulations: § 96 Abs 3 TKG, Art 6 1. (a) (consent) and / or (f ) (legitimate interest) GDPR. Our legitimate interest is the improvement of our offer and our website.
We integrate the following third-party services:
Videos by Vimeo: Vimeo Inc., 555 West 18th Street New York, New York 10011, USA. The data transfer to the U.S. is based on Standard Contractual Clauses. Privacy notice: https://vimeo.com/privacy.
You can manage your cookie settings here:
You have the right to be informed, the right of access, the right to rectification, the right to erasure, the right to restrict processing, the right to data portability, the right to object and the right to withdraw consent. If you think that the processing of your data violates data protection law or if your data protection claims have otherwise been violated in a way, you can complain to the supervisory authority. In Austria, this is the data protection authority.