DATA PROTECTION

Privacy policy and consent to data usage for the website of Dr. Tonar Cosmetics GmbH (dr.tonar-cosmetics.com)

1. Introduction

The protection of your privacy is important to us. Dr. Tonar Cosmetics GmbH, FN 480632 m, Garnisongasse 25/7, 1090 Vienna (hereinafter "Dr. Tonar Cosmetics") strictly adheres to the statutory data protection regulations when processing your personal data. In addition, we have taken technical and organizational precautions to protect your data from loss, manipulation or unauthorized access.

The following privacy policy applies to any use of the website of Dr. Tonar Cosmetics GmbH (dr.tonar-cosmetics.com). In this privacy policy we inform you about the most important aspects of the processing of your personal data.

2. Responsible body and contact

Dr. Tonar Cosmetics GmbH, FN 480632 m, Stadiongasse 6-8/2, 1010 Vienna is responsible for processing your personal data. If you have any questions about the processing of your personal data or data protection, please contact contact@tonar-cosmetics.com or send us your request by post.

3. Collection, processing and use of your personal data and legal bases

  • We process the following personal data:

    Sites

    When you visit our website, the following personal data is processed: your IP address, log-in data, location data and information about your operating system or browser. We also store access data on our websites in server log files, such as the name of the requested file, the date and time of access, the duration of the visit, the amount of data transferred and the requesting provider. The data is collected using various technologies, primarily so-called "cookies" (see point 7).

    If you register on our websites, we process the personal data that you voluntarily provide during registration.

    We process the personal data listed on the basis of our overriding legitimate interest (Article 6 (1) (f) GDPR), which consists in achieving the purposes listed under 4.1. The processing may be necessary with regard to the initiation or performance of a contract (Article 6 (1) (b) GDPR).

    Contact form

    If you contact us via the contact form on our website or by email, we will process your personal data that you voluntarily provide to us when contacting us. The data collected can be seen from the respective input forms. This may include in particular your name, email address, telephone number and address.

    We process the personal data listed on the basis of our overriding legitimate interest (Article 6 (1) (f) GDPR), which consists in achieving the purposes listed under 4.2. The processing may be necessary with regard to the initiation or performance of a contract (Article 6 (1) (b) GDPR).

    We process the personal data mentioned exclusively on the basis of your consent (Art 6 Para 1 lit a GDPR).

  • There is no obligation to actually provide the information we ask you to provide on our websites. However, if you do not do so, you will not be able to use all the features of the website.

4. Purpose of data processing

  • We will process your personal data for the following purposes:
    Website
    • to provide you with a user-friendly experience on our websites and to further develop and improve them;
    • to create usage statistics;
    • to detect, prevent and investigate attacks on our websites.
    Contact form
    • to process your request
    • to be able to contact you for a possible business transaction.

5. Transmission of your personal data

For the purposes stated above, your personal data will be transmitted to the following recipients:

  • IT service providers commissioned by us;
  • Tax consultants commissioned by us to fulfill our tax obligations.

6. Storage period

  • We will only retain your personal data for as long as we reasonably consider necessary to achieve the purposes set out in point 4 and as permitted by applicable law. In any case, we will store your personal data as long as statutory retention periods exist or limitation periods for potential legal claims have not yet expired.
  • In detail, we store your personal data as follows:
    Website
    We store your data for a period of three months. We store it for a longer period if this is necessary to investigate any attacks on our websites.
    The cookies for Google Analytics are deleted after two years. Further information on terms of use and data protection can be found at http://www.google.com/analytics/terms/de.html or at https://www.google.de/intl/de/policies/ .
    If you register on our websites, we will store your data for as long as your account exists and thereafter for as long as legal obligations require.
    Contact form
    We store your personal data for six months in case you have further questions. We only store your data for a longer period if this is necessary to process your request.

7. Use of cookies

We use so-called “cookies” on various pages in order to make visiting our website more attractive and to enable the use of certain functions, as well as for the purpose of evaluating your use of our website, compiling reports on website activities for website operators and providing other services relating to website activity and internet usage. These are small text files that are stored on your device. Some of the cookies we use are deleted at the end of the browser session, i.e. after you close your browser (so-called session cookies). Other cookies remain on your device and enable us to recognize your browser the next time you visit (persistent cookies). You can set your browser so that you are informed when cookies are set and decide individually whether to accept them or to exclude cookies in certain cases or in general. If you do not accept cookies, the functionality of our website may be restricted.

We also use third-party cookies to collect data in aggregate form with analytics tools such as Google Analytics. These are both persistent and temporary cookies.

For more information about the use of cookies on our website, please see our Cookie Policy.

8. Web Analysis

This website uses Google Analytics, a web analysis service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (www.google.de). Google Analytics uses so-called "cookies", text files that are stored on your computer and that enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. In connection with the transfer of data to the USA, there is an adequacy decision by the EU Commission (EU-US Privacy Shield), which determines that the USA guarantees an appropriate level of data protection for the transfer of data from the EU to US companies.

However, if IP anonymization is activated on this website, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You can prevent cookies from being saved by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.

You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available under the following link:

http://tools.google.com/dlpage/gaoptout?hl=de .

As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent Google Analytics from collecting data by clicking on this link. An opt-out cookie will be set that prevents your data from being collected in the future when you visit this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again.

Further information on data protection and terms of use can be found at http://www.google.com/analytics/terms/de.html or at https://support.google.com/analytics/answer/6004245?hl=de .

9. Use of social media plugins

We use so-called social plugins from facebook.com and instragram.com on our website. These are links to our channels on the respective social media platforms embedded in our websites. If, for example, you click on a social plugin or leave a comment, the corresponding information is transmitted from your browser directly to the respective social media provider and stored there. If you have a user account on the respective social media platform and are logged in at the same time, this can assign the visit to our page to your account. Even if you are not logged in or do not have a user account at all, your browser transmits information (e.g. your IP address, which websites you have visited) which is stored by the social media provider. Please refer to the privacy policies of the respective social media providers for details on how your personal data is handled and your rights in this regard. If you do not want the data generated about you via our websites to be assigned to your respective user account, you must log out of the social media provider before visiting our websites.

10. Your rights

You have the right to request information about your personal data stored by us. If your data is incorrect, incomplete or irrelevant, you have the right to have this data corrected or deleted. You also have the right to restrict the processing of your data and the right to data portability. If you have legitimate interests, you also have the right to object to certain data processing.

Please contact us via the contact form or by email.

If you believe that your rights have been violated in the processing of your personal data, you have the right to lodge a complaint with the responsible supervisory authority in addition to the rights listed above. The Austrian Data Protection Authority is the supervisory authority within the meaning of the GDPR and is responsible for examining the complaint you have submitted.