1. Protection of personal data
At pantarhei advisors Unternehmensberatung GmbH, we only process your personal data if you have given your consent, or in order to carry out your mandate or order for the purposes agreed with you, or if there is another legal basis for such processing (in the meaning of the EU General Data Protection Regulation [GDPR]). We only collect the personal data required to carry out and handle our tasks and services, or the personal data which you have provided us with voluntarily.
2. Right of access and right to erasure (rights of data subjects)
You have the right to access stored data concerning you as well as details of the origin of such data and the recipients to whom data are disclosed, and the purpose of data processing. You also have the right to rectification, to object, to data portability, to have processing restricted or blocked, and to the erasure of inaccurate or unlawfully processed data.
You also have the right to revoke any consent you have given to your personal data being processed at any time. To exercise your rights as a data subject (right of access, erasure, rectification, to object and/or to data portability, provided that such data portability does not result in disproportionate costs), please contact Vanessa Wieser MA (Head of Data Processing, tel. (01) 8865635-231, e-mail: firstname.lastname@example.org).
If you believe that the way in which we process your personal data breaches applicable data protection law or that your rights under data protection law have been infringed in any other way, you have the option of lodging a complaint with the competent supervisory authority. In Austria, this is the Data Protection Authority.
3. Use of data – security
The data provided to us will not be processed for any other purposes than those set out in the mandate agreement or in the consent you give or in any other provision which complies with the GDPR. This excludes use for statistical purposes, provided the data provided have been anonymised.
We have taken state-of-the-art organisational and technical precautions to protect your personal data (ensuring protection against misuse by internal or external parties by means of firewalls, encryption, access rights, etc.). However, it cannot be ruled out that information will be viewed or used by other persons as a result of errors in data transmission which are not caused by us, or due to unauthorised access by third parties (hackers, etc.). We do not assume any liability for this, as long as such misuse is not caused by fault on our part.
4. Disclosure to third parties (transfer)
We do not disclose your personal data to anyone else. However, it is necessary to pass your data on to third parties in order to execute your order or for legal reasons, such as courts or authorities or other involved third parties (including data processors who work for us). In this case, your data will only be passed on in compliance with the GDPR (based on your consent, or because it is necessary to perform a contract, or to comply with a legal obligation, etc.).
We collect information from you, directly and indirectly, on a regular basis in connection with our work as business consultants for communications and as a European public affairs company.
Please note that we may transfer your personal data to recipients outside your country (see above). However, we only ever transfer your data in compliance with the GDPR (where there is an adequate level of data protection, or where measures have been taken to guarantee that all recipients offer an adequate level of data protection).
5. Storage/erasure of data
We do not store your data for any longer than is necessary for the purposes for which the data are processed. Data are also stored for evidential reasons, taking limitation periods into account as well as the periods when we may still have legal action taken against us (liability).
6. Cookies (optional)
7. Web analytics/server log files
Last updated: May 2018