Website, contact, newsletter, events and cookies
It is important to DORDA Rechtsanwälte GmbH ("DORDA", "we", "us") to adequately protect your personal data. DORDA therefore adheres to the applicable legal provisions regarding the protection, lawful handling and confidentiality of personal data, as well as on data security, in particular the Austrian Data Protection Act ("DSG"), the EU General Data Protection Regulation ("GDPR") and the Telecommunications Act ("TKG").
This privacy policy informs you about the nature, scope and purposes of the collection and use of your personal data by DORDA in connection with your visit to and use of our website www.dorda.at ("Website").
1. NAME AND ADDRESS OF THE CONTROLLER
The controller for the processing of your personal data in accordance with the provisions of data protection law is:
DORDA Attorneys at Law
University Ring 10
1010 Vienna
The contact details of the data protection officer are datenschutz@dorda.at.
2. WHAT IS PERSONAL DATA?
Personal data is information about data subjects (natural persons) whose identity is determined or at least determinable (e.g. name, e-mail address or IP address).
3. WEBSITE
In the course of your visit to our Website, we will automatically process the following personal data from you:
- The date and time you view a page on our Website, as well as data about your interaction with the Website (number of visits and length of stay, as well as the language you choose).
- Data on your terminal device (e.g. screen resolution, ISP and operating system)
- IP address and IP location
- Referrer URL
- Name and version of your web browser
- Session ID
- Search engines and keywords you used to find us
- Log files (with the help of necessary cookies)
3.1 Legal basis for the processing of personal data
As far as the data of your visit to our Website and online services are concerned, we base the justification of the processing on our legitimate interest according to Art 6 para 1 lit f GDPR, which is to offer our Website securely and to protect it from attacks.
3.2 Purpose of data processing
We process your data in connection with your visit to our Website for the following purposes:
- to provide you with our Website and to further improve and develop this Website;
- to be able to detect, prevent and investigate attacks on our Website and online services;
- in order to be able to compile usage statistics for statistical evaluations in anonymous form.
3.3 Storage period
We generally store your Website visit data for a period of three months.
4. CONTACT/ENQUIRIES
If you contact us via the contact form on our Website, by e-mail or by telephone, we will process the personal data you provide (e-mail, name, telephone number and your enquiry or the associated documents) in order to process your enquiry and respond accordingly.
4.1 Legal basis for the processing of personal data
For the processing and response, we base the justification of the processing on our legitimate interest according to Art 6 para 1 lit f GDPR, which is to process and respond to your enquiry quickly and, if necessary, to react to further queries. If your enquiry results in a mandate, we also process the personal data from your enquiry on the basis of our (pre-)contractual obligations pursuant to Art 6 para 1 lit b GDPR.
4.2 Purpose of the data processing
We process your data in connection with your requests to us for the following purposes:
- to process your request as quickly as possible and to respond satisfactorily; and
- to be able to fulfil our role as a service provider.
4.3 Storage period
We store your data for a period of six months to process your contact/inquiry so that we can respond appropriately to follow-up questions. Longer storage only takes place if a mandate is issued subsequently, due to legal retention periods or for defence in the event of any legal disputes.
5. NEWSLETTER
If you voluntarily subscribe to our newsletter, we process the following personal data from you:
- Gender;
- Academic title;
- Name;
- E-Mail-address;
- Company;
- Position;
- Information on topics that are of particular interest to you (e.g. dedicated Industry Groups).
5.1 Legal basis for the processing of personal data
We process your personal data in connection with the sending of our newsletter only on the basis of your express voluntary consent in accordance with Art 6 para 1 lit a GDPR in conjunction with sec 174 TKG. However, if you do not provide the data, no newsletter can be sent to you. You can revoke your consent at any time with effect for the future (e.g. by e-mail to unsubscribe@dorda.at).
5.2 Purpose of the data processing
We process your voluntarily provided data in order to send you the DORDA newsletter, invitations to our events, seasonal greetings, publications and other information material on legal developments.
5.3 Storage period
Your data for receiving the newsletter will be processed as long as you have not revoked the voluntary consent given for the respective purpose.
6. REGISTRATION FOR EVENTS
When you register for events that we organise, we process the personal data you provide (e.g. email, name, company).
6.1 Legal basis for the processing of personal data
We process this data to fulfil our (pre-)contractual obligations towards the participants in the event in accordance with Art 6 para 1 lit b GDPR and on the basis of our legitimate interests in accordance with Art 6 para 1 lit f GDPR, which lie in being able to prepare and hold events administratively.
6.2 Purpose of the data processing
We process your personal data in order to prepare the event and to be able to guarantee access on the day of the event.
6.3 Storage period
Your data in connection with registration for events will be stored for as long as it is necessary for the organisation of the event, and beyond that only for as long as they need to be processed within the scope of statutory retention obligations.
7. SOCIAL MEDIA
You can interact with us on our social media pages by commenting on our posts, reacting to them (e.g., via the "Like" button), sharing them or sending them to other users. In doing so, we process your interactions, your username and, if applicable, the personal data of invited third parties. This data may also be processed by the platforms in this context. In this case, the respective platform and we are joint controllers pursuant to Art 26 GDPR. You can find more information regarding the processing of your data under:
- Facebook: https://de-de.facebook.com/privacy/policy/
- Instagram: https://de-de.facebook.com/help/instagram/155833707900388
- LinkedIn: https://de.linkedin.com/legal/privacy-policy
- Spotify: https://www.spotify.com/de/legal/privacy-policy/
7.1. Legal basis for the processing of personal data
We process your personal data to answer your questions, to give you the opportunity to comment, to comment on your opinion or feedback, and to promote our services. The processing is therefore based on our as well as your legitimate interests pursuant to Art 6 para 1 lit f GDPR or to fulfill our (pre-)contractual obligations pursuant to Art 6 para 1 lit b GDPR.
7.2. Purpose of the data processing
We process your personal data to interact with you, to comment on your feedback or to promote our services.
7.3. Storage period
We store your personal data for as long as we need them to fulfill the aforementioned purposes. After that, we delete your data.
8. WILL YOUR DATA BE PASSED ON?
For the operation of our Website and the administration of our newsletter and our communication channels, we regularly use IT service providers who, according to our order and instructions, may also have access to personal data in order to be able to provide the commissioned IT services.
We also transfer your personal data to the following recipients:
- to external third parties to the extent necessary on the basis of our legitimate interests (e.g. auditors, insurance companies in the event of an insurance claim, legal representatives in the event of an incident, etc.);
- to authorities and other public bodies to the extent required by law (e.g. tax authorities, courts, etc.).
Your data will not be passed on to any other third parties for their own purposes without your consent.
9. DOES THE WEBSITE USE COOKIES?
We use technically necessary cookies on the Website in order to be able to display the Website to you and to enable you to use the Website without problems. The data processing is necessary for the purpose of data security and prevention of misuse and is therefore carried out on the basis of our legitimate interests according to Art 6 para 1 lit f GDPR in conjunction with sec 165 para 3 TKG. If you voluntarily give your consent in accordance with Art 6 para 1 lit a GDPR, cookies from the providers Matomo and/or Spotify are also used on the Website. These are used for web analysis and the integration of podcast content.
If your settings include providers who transfer data to countries without an adequacy decision pursuant to Art 45 GDPR and without appropriate safeguards pursuant to Art 46 GDPR, your consent also applies to this. There is a risk that your data transferred in this way may be subject to access by authorities in these third countries for control and monitoring purposes and that no effective legal remedies are available against this.
You can change your individual consent at any time, under the menu item "Cookies" in the footer of the Website. You can click on [ACCEPT ALL] or [REJECT] to accept or reject all cookies that require your consent. You can also adjust your cookie settings individually by using the slider and clicking on the [ACCEPT CHOICE] button.
10. STORAGE PERIOD
We generally only store your personal data for as long as we need it to fulfil the purposes outlined above and our contractual or legal obligations. When we no longer need your personal data, we will delete it from our systems and records or make it anonymous so that you can no longer be identified.
11. HOW DO WE PROTECT YOUR DATA?
We do our utmost to make your visit and use of our Website as secure as possible. We therefore comply with the provisions of Art 32 of the GDPR to ensure the confidentiality and security of your personal data and take appropriate technical and organisational security measures.
12. WHAT RIGHTS DO YOU HAVE AS AN AFFECTED PERSON?
You have a right to information about the personal data we process about you. In addition, you have the right to have incorrect data corrected and your data deleted ("right to be forgotten"). You may also withdraw your consent to the processing of personal data with effect for the future if the processing is based on your consent. You may also have the right to restrict the processing of your data and the right to receive the data you have provided in a structured, commonly used and machine-readable format ("data portability").
You have the right to object to data processing at any time if there are grounds for doing so based on your particular situation.
You also have the option of submitting a complaint to a data protection supervisory authority. The data protection supervisory authority responsible for us is the Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna, e-mail: dsb.@dsb.gv.at, Tel: +43 1 52 152-0.
If you have any questions regarding your personal data, please contact us at datenschutz@dorda.at.