We take the protection of your personal data seriously. We will process your personal data in compliance with the applicable laws (General Data Protection Regulation No 2016/679 - hereinafter „GDPR“, as well as national data protection provisions).
Controller pursuant to Art 4 (7) GDPR is the operator of this website, Nina Mair – Architecture + Design, Innstraße 23, 6020 Innsbruck (hereinafter also „We“, „Us“), please see also further details provided in the imprint of the website, which you can also use to exercising your rights (see clause 6.).
2. Personal Data
We only process personal data that you provide Us with (through visiting Our website or the details you make available in a contact form or newsletter-registration respectively). Depending on the services you are using, the following personal data will be processed:
|Visiting our website||No personal data will be processed|
|Setting up an account and/or making a purchase in the online-shop||Name, e-mail address, password, telephone number, postal address, bank details / credit-card details, IP-address|
Not in every case all of the aforementioned data categories might be affected or have to be provided. Special categories of personal data (sensitive data) within the meaning of Art 9 GDPR will not processed by Us in the context of this website.
3. Processing of Personal Data
Your personal data is processed predominantly for the purposes of performing a contract or for pre-contractual purposes respectively (Art 6 (1) (b) GDPR) – without such data, it would be impossible for Us to prepare, conclude or perform a contract with you (eg a purchase contract concluded in the online-shop). The processing is also carried out for the purposes of legitimate interests of Us or third parties respectively (Art 6 (1) (f) GDPR), including in particular for the purposes of maintaining the operational safety of this website, claims management, direct marketing by analogue and digital means, providing advertisements to existing customers, statistical evaluation and the enhancement of Our services and their quality (please see clause 6. for the right to object in this particular respect).
We will process your personal data only pursuant to the permissible scope of the GDPR. Under normal circumstances, we will not transfer your personal data to third parties. Where this is necessary - e.g. for the performance of a contract (eg to handle payment or shipping) - such transfer will be conducted in accordance with the provisions of the GDPR. In this case, we ask you to also consult the privacy policies of these third parties as they might become applicable. Currently we are using the following service providers: SIX Payment Services (Austria) GmbH, PayPal (Europe) S.à r.l. et Cie, S.C.A. (payment transactions), Federal Express GmbH, Österreichische Post AG (logistics).
An exception to this general rule is the use for statistical and similar purposes. However, this will not involve any personal data but in such cases exclusively anonymized data will be transferred, which do not allow the identification of a natural person and which cannot be attributed to a specific natural person (see also clause 8.).
4. Data Security
The protection of your personal data is ensured through organizational and technical measures, including protection against unauthorized access and technical data protection precautions.
Please be aware, however, that notwithstanding these efforts, it cannot be completely excluded that data, which you make available through the internet can be perceived and potentially be used by others . We therefore assume no responsibility or liability for errors in the communication of data or unauthorized access by third parties (e.g. through hacker-attacks, spyware, malware etc).
5. Storage of Personal Data
Your personal data will be stored by Us only for the period necessary to fulfill contractual and/or legal obligations (respective obligations may arise, e.g. from fiscal or from product liability provisions). Where the storing is not necessary any longer, such data will be deleted.
6. Right of Access, Right to Erasure, Right to Lodge a Complaint
Subject to the existence of statutory confidentiality obligations, you have the right to access your personal data and demand disclosure regarding the source of your personal data, the purpose for which it is being processed and - as the case may be - potential recipients. Furthermore, you have the right to have your personal data rectified, transmitted, their processing restricted or deleted, should the data be incorrect or should the basis for processing personal data cease to apply (Art 15, 16, 17, 18, 20 GDPR).
You also have the right to object to the processing of your personal data based on Art 6 (1) (f) GDPR („legitimate interests“).
We ask you to forward any such claim to firstname.lastname@example.org or any contact specified in the imprint of this website.
Please note that a possible objection does not affect the lawfulness of the processing of personal data on the basis of other legitimate grounds listed in Art 6 (1) GDPR.
Should you be of the opinion that the processing of your personal data infringes applicable data protection laws or your claims pursuant to data protection laws or otherwise violated, you have the right to lodge a complaint with the competent supervisory authority (Art 77 GDPR).
In order to design this website according to your needs and to collect certain information, We use different technologies, including so called cookies. Cookies help to simplify internet-usage and communication.
Cookies are small text files that are sent to your browser by Our website and which will be saved on your Computer, where they are stored as anonymous identifier. The purpose of such cookies is to provide for a better control of the connection during your visit on Our website and a more effective support when you return to Our website. Without this temporary „caching“, entries already made would have to be repeated. A cookie only contains data which is released by the server and/or a user provides upon request (e.g. details about the domain, path, expiration date, cookie name and cookie value). Cookies therefore only contain technical information and no personal data. Furthermore, cookies are unable to spy out the hard disk drive of a user, cause damage or similar.
The following types of cookies may be used:
- Session Cookies: these will be deleted automatically once the internet-browser is closed;
- Persistent Cookies: these will be stored for a particular time on your computer. The duration is dependent on the expiration date assigned to the individual cookie;
- Third Party Cookies: these can in particular include cookies from social-media-platforms (like Facebook, Twitter, You Tube, Instagram, Pinterest, Flickr etc) or other internet-service-providers (like Google). Such cookies collect information like dwell time, page impressions, movement over links etc. The cookies are used for e.g. displaying certain advertising content which is generated out of search results, websites visited and similar information. Such cookies cannot be read by Us.
You have the possibility to generally decline the storing of cookies (or particular types of cookies) through your internet browser or to decide whether you want to allow the storing of cookies through separate indication. The non-acceptance of cookies may, however, result in websites not being displayed properly or their usability being constrained.
The table below lists the cookies we collect and what information they store.
|COOKIE name||COOKIE Description|
|CART||The association with your shopping cart.|
|CATEGORY_INFO||Stores the category info on the page, that allows to display pages more quickly.|
|CURRENCY||Your preferred currency|
|CUSTOMER||An encrypted version of your customer id with the store.|
|CUSTOMER_AUTH||An indicator if you are currently logged into the store.|
|CUSTOMER_INFO||An encrypted version of the customer group you belong to.|
|CUSTOMER_SEGMENT_IDS||Stores the Customer Segment ID|
|EXTERNAL_NO_CACHE||A flag, which indicates whether caching is disabled or not.|
|FRONTEND||You sesssion ID on the server.|
|LAST_CATEGORY||The last category you visited.|
|LAST_PRODUCT||The most recent product you have viewed.|
|NO_CACHE||Indicates whether it is allowed to use cache.|
|PERSISTENT_SHOPPING_CART||A link to information about your cart and viewing history if you have asked the site.|
|STF||Information on products you have emailed to friends.|
|STORE||The store view or language you have selected.|
|VIEWED_PRODUCT_IDS||The products that you have recently viewed.|
8. Analytics Tools
In case you merely visit Our website and do not use the other services specified in clause 2., no personal data will be processed by Us.
Google also allows you to decline the compilation of data through Google Analytics. Please refer to the respective internet-presence of Google.
You have the option to subscribe to Our newsletter through the website. This is of course purely optional and you can unsubscribe at any time. In order to include you in Our newsletter database, we require your e-mail-address and a declaration that you consent to receive Our newsletter. As soon as you subscribe, you will receive an e-mail message containing a link to confirm your subscription („Double-Opt-In“). You can unsubscribe at any time by sending an e-mail message to email@example.com alternatively, you can click the unsubscribe link included in every issue of the newsletter.