Show menu

Data privacy - Our data privacy statement

In this data privacy statement we inform you about the processing of your personal data.

If you would like to change your data privacy settings (give consent or revoke consent already given), please click here to change your settings.

RESPONSIBLE

café+co International Holding GmbH, Vorarlberger Allee 14, 1230 Wien, Österreich, office@cafeplusco.com, +43 5 05 200

HOSTING

Service: Hosting of the website
Provider:
IPAX OG, Barawitzkagasse 10/2/2/11, Austria
Data privacy statement:
https://www.ipax.at/unternehmen/impressum/

SERVER LOG FILES

For the purpose of monitoring the technical function and to increase the operational security of our web host, connection data are processed. The duration of the processing is limited to 7 days.

The legal basis for the data processing is the legitimate interest (unconditional technical necessity of a server log file as the fundamental data base for error analysis and for security measures within the framework of the service “website” explicitly required by your retrieval of it) pursuant to Art. 6 Para. 1 Letter f GDPR.

COOKIES

Our website uses so-called cookies. These are small text files that are stored on your terminal device with the help of the browser. They do not cause any damage.

We use cookies to make our offer user-friendly. Some cookies remain stored on your end device until you delete them. They enable us to recognize your browser on your next visit.

More information about the cookies used and the possibility to deactivate such cookies can be found in our Cookie Policy.
When disabling cookies, the functionality of our website may be limited.

COOKIEBOT

We use the consent management service Cookiebot. This allows us to obtain and manage the consent of website users for data processing, as well as allow users to manage and revoke their consent. The storage takes place on the server side and in a cookie (so-called opt-in cookie), in order to be able to assign the consent to a user, or their device. A pseudonymous user identifier is formed, stored with the time of consent, the scope of consent ( which categories of cookies/service providers), the browser, the system and the end device used. The user's IP address is stored in anonymized form (the last three digits are set to 0),

Service provider: Usercentrics A/S, Havnegade 39, 1058 Copenhagen, Denmark (Usercentrics);
Website: https://www.cookiebot.com;
Privacy policy: https://www.cookiebot.com/de/p...;

CONTACT FORM

On our website, there is the possibility of contacting us directly via a contact form. When this contact form is sent, a processing of the personal data entered by you is done by the controller for the purpose of processing your request on the basis of the consent pursuant to Art. 6 Para. 1 Letter a GDPR granted by you by sending the form until this consent is revoked. There is no statutory or contractual obligation to provide the personal data. The non-provision only results in you not being able to send your request, meaning that we cannot process it either.

ONLINEMARKETING

FACEBOOK PIXEL AND FORMATION Of TARGET GROUPS (CUSTOM AUDIENCES)

With the aid of the Facebook pixel (or comparable functions to transmit event data or contact information by means of interfaces in apps), it is possible for Facebook firstly to determine the visitors to our online offering as a target group for the depiction of ads (so-called “Facebook ads”). Accordingly, we use the Facebook pixel to display Facebook ads placed by us only to those users on Facebook and within the services of the partners cooperating with Facebook (so-called “audience network” https://www.facebook.com/audiencenetwork/ ) who have also shown an interest in our online offering or who have certain characteristics (e.g. Interest in certain topics or products that are visible based on the websites visited) that we transmit to Facebook (so-called “custom audiences”). With the aid of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of the users and are not perceived as tiresome. With the aid of the Facebook pixel, we can also monitor the effectiveness of the Facebook promotional ads for statistical and market research purposes by seeing whether users were forwarded to our website after clicking on a Facebook promotional ad (so-called “conversion measurement”);

service provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland;
website:
https://www.facebook.com;
data privacy statement:
https://www.facebook.com/about/privacy;
standard contractual clauses
(warranty data privacy level for processing in third countries): The "Facebook EU data transfer addendum" (https://www.facebook.com/legal/EU_data_transfer_addendum) applies in the case of contract processing by Facebook as the basis of the processing of event data of EU citizens in the US and the inclusion in the "platform terms and conditions of usage of Facebook" (https://developers.facebook.com/terms) with regard to the autonomous processing of event data of Facebook within the framework of the placement of ads;
further information:
The “terms and conditions of data processing” (https://www.facebook.com/legal/terms/dataprocessing/update) apply with regard to event data that Facebook processes under contract in order to provide reports and analyses for companies; in addition, the “addendum for controllers” is deemed to be an agreement for joint responsibility (Art. 26 Para. 1 Clause 3 GDPR) that is fundamental in the case of autonomous processing of event data by Facebook for the purposes of targeting and improving and safeguarding the Facebook products.

LINKEDIN

LinkedIn Insights Tag / conversion measurement;

service provider: LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA;
website:
https://www.linkedin.com;
data privacy statement:
https://www.linkedin.com/legal/privacy-policy,
cookie policy:
https://www.linkedin.com/legal/cookie_policy;
contract processing contract:
https://legal.linkedin.com/dpa;
standard contractual clauses
(warranty data privacy level for processing in third countries): https://legal.linkedin.com/dpa;
possibility to object (opt-out):
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.LINKEDIN

ADS

Placement of promotional ads within the platform LinkedIn and analysis of the ad results;

service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland;
website:
https://business.linkedin.com/de-de/marketing-solutions/ads;
data privacy statement:
https://www.linkedin.com/legal/privacy-policy;
contract processing contract:
https://legal.linkedin.com/dpa;
standard contractual clauses
(warranty data privacy level for processing in third countries): https://de.linkedin.com/legal/l/dpa;
possibility to object (opt-out):
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out;
further information: https://legal.linkedin.com/dpa.

NEWSLETTER

You have the possibility to subscribe to our newsletter via our website. For this we need your e-mail address and your declaration that you agree to receive the newsletter.

Once you have subscribed to the newsletter, we will send you a confirmation email with a link to confirm the subscription.

You can cancel your subscription to the newsletter at any time. This can be done via a link in the newsletters themselves, our contact form or by sending a message to the contact options above. We will then immediately delete your data in connection with the newsletter dispatch.

Our email newsletters are sent via the technical service provider MailerLite (MailerLite Limited, Ground Floor, 71 Lower Baggot Street, Dublin 2, D02 P593, Ireland), to whom we pass on the data you provided when registering for the newsletter. This transfer takes place in accordance with Art. 6 (1) lit. f DSGVO and serves our legitimate interest in using a newsletter system that is effective in advertising, secure and user-friendly. The data entered by you for the purpose of newsletter subscription (e.g. email address) is stored on MailerLite's servers in the EU.

You can view MailerLite's privacy policy here: https://www.mailerlite.com/leg...

MATOMO ANALYTICS

Matomo is used on this website for statistical purposes. Matomo is a privacy-friendly web analytics software that is used without cookies. To recognize returning users, a so-called "digital fingerprint" is used, which is stored anonymously and is valid for a maximum of 24 hours. IP addresses are recorded in pseudonymized form. Conclusions about the identity of individual users are not possible. The user data collected by Matomo is not shared with third parties. Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO).
Further information on Matomo can be found here: https://matomo.org/faq/general...

RIGHT TO OBJECT

If your personal data are processed on the basis of a legitimate interest, you have the right to object to this processing.

If there are no mandatory reasons worthy of protection for the processing on our side, the processing of your data will be ceased due to this legal basis.

You also have the right to object to the processing of your personal data for the purpose of direct advertising. In the event of an objection, your personal data will no longer be processed for the purpose of direct advertising.

The lawfulness of the data processed until the objection is not affected by the objection.

RIGHT OF REVOCATION

You have the right to revoke consent that has been given at any time by changing our data privacy settings.
In the event of you consenting to receive electronic advertising, the revocation of your consent can be done by clicking on the unsubscribe link. In this case, processing will be suspended, unless there is another legal basis.

The lawfulness of the data processed until the revocation is not affected by the revocation.

DATA SUBJECT RIGHTS

You also have the right to information, rectification, erasure and restriction of the processing of the personal data.

If the legal basis of the processing of your personal data exists in your consent or in a contract concluded with you, you also have the right to data portability.

You also have the right to complain to the supervisory authority. Further information on the supervisory bodies in the European Union can be found here.