Privacy Policy

Privacy Policy

  1. Legal basis
    1. The EU General Data Protection Regulation (GDPR), the Data Protection Act 2000, and the Data Protection Amendment Act 2018 serve to protect the right to privacy of personal data. We process your data exclusively on the basis of the legal provisions (GDPR, Data Protection Act 2018, Telecommunications Act 2003).
  2. Basic principles
    1. The person in charge is Emilio Bietti, emilio@eposcomputer.at
    2. The representative of the responsible party is Lukas Degenkolb, lukas@eposcomputer.at
    3. It is of utmost importance to us to protect and securely store all personal data that you entrust to us. This document provides further information on how we use and process your personal data.
  3. Purpose limitation, legal basis, storage period and data recipients
    1. We require the collected personal data for contract fulfillment, invoicing, warranty purposes, guarantee purposes, customer service purposes, advertising purposes, and shipping of goods. The data is collected, stored, processed, and used for these purposes.
    2. The legal basis for processing your personal data is, on the one hand, contract fulfillment (online purchase), legitimate interests, and the fulfillment of our legal and contractual obligations, and on the other hand, your consent (newsletter, cookies, order). Failure to provide the data may have various consequences.
    3. We process your personal data (name, address, contact details), as necessary, for the duration of the entire business relationship (from the initiation, processing to the termination of a contract and beyond, in accordance with the statutory retention and documentation obligations arising, among other things, from the Austrian Commercial Code (UGB), the Austrian Federal Fiscal Code (BAO), and until the conclusion of any legal dispute, ongoing warranty and guarantee periods, etc.
    4. In the course of operating our websites, we engage a shipping service provider, a hosting provider, and web developers who may gain access to your personal data in the course of their work, provided they require this data to fulfill their respective services. These companies have contractually committed to complying with applicable data protection regulations. Data processing agreements in accordance with Article 28 of the GDPR have been concluded. You can find more detailed information about the data processors we engage at [link to relevant information]. office@eposcomputer.at inquire.
  4. Contact form
    1. Your information, including personal data from our contact form, will be transmitted to us via our own mail server for processing and storage. This data will not be collected or shared without your explicit consent. Without this data, we cannot process your requests.
    2. Data processing is carried out on the basis of the legal provisions of Section 96 Paragraph 3 TKG and Article 6 Paragraph 1 Letter a (consent GDPR)
  5. Newsletter
    1. You can subscribe to our newsletter on the website using the double opt-in process. After subscribing, you will receive an email asking you to confirm your subscription. Without this confirmation, we cannot send you our newsletter. Our newsletter provides you with information about our products. The duration of data processing depends on the length of your subscription. You can unsubscribe from the newsletter by clicking the unsubscribe link at the bottom of each newsletter.
    2. We use third-party processors to send our newsletter. These processors have contractually committed to complying with applicable data protection regulations. A data processing agreement in accordance with Article 28 of the GDPR has been concluded. You can find more information about the processors we use at [link to relevant page]. office@eposcomputer.at inquire.
    3. Data processing is carried out on the basis of the legal provisions of Section 96 Paragraph 3 TKG and Article 6 Paragraph 1 Letter a (consent GDPR).
  6. online shopping
    1. Please note that for the purpose of simplifying the purchasing process and for subsequent contract processing, the webshop operator, epos Computer Handels GmbH, stores the IP address of the internet connection holder, as well as the buyer's name, address, and contact details, using cookies. Furthermore, the following data is also stored by us for the purpose of contract processing: order details and payment information. The data you provide is necessary for fulfilling the contract or for carrying out pre-contractual measures. Without this data, we cannot conclude a contract with you.
    2. Your data (name, address, contact details, payment information, order value) will be transmitted to the payment service providers for the purpose of debiting the purchase price, and, in the case of installment payments, via Santander Consumer Bank for the purpose of an additional credit check. Your data will also be transmitted to the shipping company we have commissioned for the purpose of delivering the goods, and to our tax advisor for the purpose of fulfilling our legal obligations. These parties have committed to complying with the applicable data protection regulations. A data processing agreement in accordance with Article 28 GDPR has been concluded. You can find more information about the data processors we have commissioned at [link to relevant information]. office@eposcomputer.at inquire.
    3. Data processing is carried out on the basis of the legal provisions of Section 96 Paragraph 3 TKG and Article 6 GDPR (in particular consent and/or necessity for the performance of the contract).
  7. Cookies, other tracking tools and web analytics
    1. Our website uses features of the web analytics service Matomo (formerly Piwik). Matomo is integrated in compliance with data protection regulations. These cookies provide us with information that allows us to optimize our website to better meet the needs of our visitors. We sometimes use cookies only for the duration of your visit to the website. All cookies on our website contain purely technical information; no personal data is stored.
    2. By using our website, you consent to our use of cookies. You can refuse the use of cookies in your browser settings. Please refer to your browser's help documentation for specific instructions. If you choose to disable certain technical and/or functional cookies, the functionality of our website may be limited. Some cookies will remain stored on your device until you delete them.
    3. We have concluded a corresponding data processing agreement with the provider. They have committed to complying with applicable data protection regulations. You can find more information about the data processors we have engaged at [link to data processors]. office@eposcomputer.at inquire.
    4. Your IP address is recorded, but immediately anonymized by removing the last octet for IPv4 addresses or the last 80 bits for IPv6 addresses. This allows only a rough localization.
    5. Data processing is carried out on the basis of the legal provisions of Section 96 Paragraph 3 of the German Telecommunications Act (TKG) and Article 6 of the GDPR (in particular, consent). Because the privacy of our users is important to us, user data is anonymized.
    6. Push notifications for this website are enabled by the "Signalize" service. A function of your internet browser or mobile operating system is used to deliver these notifications. Only anonymous data, which cannot be used to identify you, is stored for sending messages. This data is processed solely to deliver the notifications you have subscribed to and to manage your notification settings. We ask for your consent to store this data. The legal basis for this data processing is Article 6(1)(a) GDPR. You can object to receiving notifications at any time via your browser or mobile device settings. Information on how to unsubscribe from push notifications can be found [here/in the relevant section]. here .
      To tailor the content of push notifications to your interests, we use preferences collected via cookies from an anonymous user profile and combine your notification ID with the website user profile solely for the purpose of personalized messaging. Tracking technology is also used on our behalf for statistical analysis of notifications. This allows us to determine whether a notification was delivered and whether it was clicked. The data generated in this way is processed and stored exclusively in Germany on our behalf by etracker GmbH (www.etracker.com) from Hamburg, Germany, which provides the Signalize service, and is therefore subject to strict German and European data protection laws and standards. etracker has been independently audited and certified in this regard and is authorized to display the data protection seal of approval. ePrivacyseal to wear.
      The processing of data for managing invitations to the notification service and for statistical analysis of registration or rejection is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, in order to make the notification service user-friendly and effective. Since the privacy of our visitors is very important to us, data that could potentially identify an individual, such as IP addresses, login credentials, or device identifiers, is anonymized as soon as possible. This prevents any direct identification of individuals. The data will not be used for any other purpose, combined with other data, or shared with third parties.
      You can object to the aforementioned data processing at any time.

  8. Integration of the Trusted Shops Trustbadge / other widgets

    1. To display Trusted Shops services (e.g., trustmarks, collected reviews) and to offer Trusted Shops products to buyers after an order, Trusted Shops widgets are integrated on this website. This serves our legitimate interests, which outweigh your interests, in optimal marketing by enabling secure shopping in accordance with Art. 6 Para. 1 Sentence 1 lit. f GDPR. The Trustbadge and the services advertised with it are offered by Trusted Shops AG, Subbelrather Str. 15C, 50823 Cologne, Germany ("Trusted Shops"), with whom we are jointly responsible for data protection in accordance with Art. 26 GDPR. In the following, we inform you about the essential contractual content in accordance with Art. 26 Para. 2 GDPR within the framework of this privacy notice.

      Within the framework of the joint responsibility existing between us and Trusted Shops, please contact Trusted Shops preferably with regard to data protection questions and to assert your rights, using the contact details provided in the [link to Trusted Shops form]. Privacy information The contact options listed are available. However, you can always contact the person responsible of your choice. Your inquiry will then be forwarded to the appropriate person for a response, if necessary.

    2. The Trustbadge is provided by a US-based CDN (Content Delivery Network) provider.
      An adequate level of data protection is ensured in each case by an adequacy decision of the EU Commission, which applies to the USA. here is available for retrieval. Service providers from the USA are generally certified under the EU-US Data Privacy Framework (DPF). Further information is available upon request. Here . If the service providers used are not certified under the DPF, standard contractual clauses were concluded as a suitable guarantee.

      When the Trustbadge is accessed, the web server automatically saves a server log file containing your IP address, the date and time of access, the amount of data transferred, and the requesting provider (access data), thus documenting the access. The IP address is anonymized immediately after collection, so the stored data cannot be associated with you personally. The anonymized data is used primarily for statistical purposes and error analysis.

    3. After completing your order, order information (order total, order number, and, if applicable, the purchased product) as well as your email address, hashed using a cryptographic one-way function, will be transmitted to Trusted Shops. The legal basis for this is Article 6(1)(f) GDPR. This serves to verify whether you are already registered for services with Trusted Shops and is therefore necessary for the fulfillment of our and Trusted Shops' overriding legitimate interests in providing buyer protection and transactional review services linked to the specific order, in accordance with Article 6(1)(f) GDPR. If this is the case, further processing will take place in accordance with the contractual agreement between you and Trusted Shops. If you are not yet registered for the services, you will subsequently have the opportunity to do so for the first time. Further processing after successful registration is also governed by the contractual agreement with Trusted Shops. If you do not register, all transmitted data will be automatically deleted by Trusted Shops, and it will no longer be possible to identify you personally.

      Trusted Shops uses service providers for hosting, monitoring, and logging. The legal basis for this is Article 6(1)(f) GDPR for the purpose of ensuring smooth operation. This may involve processing in third countries (USA and Israel).
      An adequate level of data protection is ensured in each case by an adequacy decision of the EU Commission, which applies to the USA. here and for Israel here is available. Service providers from the USA are generally certified under the EU-US Data Privacy Framework. Further information is available upon request. Here . If the service providers used are not certified under the DPF, standard contractual clauses were concluded as a suitable guarantee.

  9. Consent and right of withdrawal
    1. If your consent is required for the processing of your data, we will only process it after receiving your explicit consent.
    2. We do not process data of minors and are not authorized to do so. By giving your consent, you confirm that you are at least 14 years old or that you have the consent of your legal guardian.
    3. You can withdraw your consent at any time by contacting us at the following email address: office@eposcomputer.at . In such a case, the data previously stored about you will be anonymized and subsequently used only for statistical purposes without reference to any individual. Withdrawing your consent does not affect the lawfulness of the processing carried out based on your consent prior to its withdrawal.
  10. Data security
    1. Our IT manager implements technical and organizational security measures to protect stored personal data against accidental or intentional manipulation, loss, or destruction, and against unauthorized access. Our security measures are continuously improved in line with technological advancements.
  11. Your rights
    1. You have the right to request information from the responsible party, Emilio Bietti, at any time. emilio@eposcomputer.at Regarding the personal data in question. Unless there is a legal obligation to retain it, you have the right to have this data erased and to object to its processing. Furthermore, you have the right to rectification of the data, to restriction of processing, to data portability, and to lodge a complaint with the Austrian Data Protection Authority (Barichgasse 40-42, 1030 Vienna, email: dsb@dsb.gv.at ).
    2. Please contact us regarding your rights at office@eposcomputer.at or write to us.

      Emilio Bietti, epos Computer Handels GmbH
      Bahnhofstraße 2
      A-6840 Götzis