Data Privacy Policy
for backaldrin International The Kornspitz Company GmbH pursuant to Art. 13 and Art. 14 GDPR
Responsible Manager:
backaldrin International The Kornspitz Company GmbH
FN 232614f , Kornspitzstraße 1, A-4481 Asten
T: +43 7224 8821 0/ E: datenschutz@backaldrin.com
The following statement applies exclusively to the subsidiary in Austria.
General Information
This general information page explains how backaldrin International collects and processes your personal data, what rights you have in your relationship with us and how you can exercise these rights. In order to provide you with our services, we process your personal data as follows. Your personal data is processed with the greatest possible care.
The protection and security of your personal data is an important matter for us. This website saves and processes data exclusively in compliance with the Austrian and European General Data Protection Regulation (GDPR). As a user, you agree to this data processing as described within this statement. The current version of the GDPR is found at https://eur-lex.europa.eu/legal-content/en/TXT/HTML/?uri=CELEX:32016R0679&from=DE.
This data privacy policy pertains solely to this website. If you have been directly to our web pages from other pages, then you may apply directly to the referring website about their particular handling of your data. Your personal data (e.g. salutation, name, address, email address, telephone number, banking information, credit card number) are only processed by us in accordance with the provisions of the Austrian data protection law. The following regulations provide information about the type, scope and purpose of the collection, processing and use of your personal data.
Use of our webpage is possible, in general, without providing your personal data. In the event that personal data (such as name, address or email address) is collected on our webpages, this will always be done, where possible, on a voluntary basis. This data will not be provided to third parties without your express consent.
We should point out that data transmission over the internet (e.g. by communication via email or via non-encrypted web pages) can have security gaps. Full and complete protection of data against access by third parties is not possible.
Rights of Affected Persons
According to the EU General Data Protection Regulation, as a data subject you are entitled to certain extensive rights. These rights are intended primarily to ensure greater transparency in connection with your data. Your rights as a data subject include a right to information about your personal data, a right to correction, deletion, restriction of processing, objection to the processing (direct marketing) and also to data transmission (only under contractual relationship or consent) and revocation of consent at any time. In addition, at any time you have the right to file a complaint about the processing of your personal data with the Data Oversight Authority.
The affected persons can exercise all rights by means of an email directed to datenschutz@backaldrin.com or by making personal contact (e.g. by phone or directly on site) or by postal message.
Data Deletion
Your data will be deleted as soon as the particular contract with you has been completed and there is no additional legal requirement to save the data. Thus your data basically will be deleted at the end of the 7th (seventh) year after booking of the final order; retention time as per § 132 BAO.
Lawful/legal Retention Requirement or contractual obligations, e.g. to customers for relating to guarantee or compensation of damages or regarding contract partners are one reason to retain the personal data (Art. 6 para. 1 c) GDPR - Legal Basis for Processing: Legal / Lawful Requirement).
Transfer to Receivers in Third Countries
The data we collect is usually not transferred to receivers in third countries. But if indeed a transfer to receivers in third countries does occur, then this shall be done within the framework of a contractual regulation with the receiver and only to the extent necessary.
Links
We very carefully verify links which lead away from our website. Nonetheless, we assume no responsibility or liability of any kind for the content on pages which are linked to this webpage or to/from any other internet site.
Application Form
If you send us your application by using our application form, we will use the data input thereon exclusively for processing of your application; no transfer of the data to a third party will occur. Your application data will be normally deleted six months after the position is filled, provided there is no consent or legal obligation for a longer retention time, or if there is a correspondingly longer processing requirement to preserve our justifiable interests.
"Request Certificate” Form
The data input by you on this form are used exclusively to provide you with our certificate; your data will not be provided to any third party without your consent. After sending you the certificate, your contact data will be automatically deleted by us.
Newsletter
If you would like to subscribe to the newsletter offered on the website, then we require your email address, and also information that will allow us to verify that you are the owner of the particular email address and give your consent to receipt of the newsletter. No additional data will be collected. We use this data exclusively for sending the requested information and will not provide it to third parties.
You can withdraw your given consent for storage of the data, of the email address and also its usage for sending of the newsletter at any time, such as by using the “unsubscribe” link in the newsletter.
Baking Consultants
You have the opportunity to apply as a “baking consultant” on our portal. The data required for this application will be saved by us and used exclusively for internal purposes. Any transmittal shall only be to the operator of the baking consultant portal. No additional or other transmittal to third parties shall occur. Your data will be retained by us until you delete your account. For this purpose please refer to datenschutz@backaldrin.com. You also may register as a guest on this portal; in this case no data will be collected by us.
General Data
Your personal data will not be transferred to third parties not involved in contract processing without your express consent or without a valid legal basis. After completion of contract processing, your data will be disabled from additional use. After expiration of the regulations relating to commercial rights and taxation, the data will be deleted (see Data Deleting), unless you have given express consent for further usage of the data. Certain data will remain available to our marketing department for marketing purposes based on our justified interests.
Your personal data is used exclusively and only to the extent necessary to establish, maintain or change our legal contractual relationship (general data). For example, your name and address must be transferred to the product shipper in order to deliver the products ordered.
Information about Cookies
A distinction is made between three categories of cookies:
- absolutely required cookies in order to ensure basic functions of the website
- functional cookies to ensure the performance of the webpage
- goal-oriented cookies to improve the user experience
The internet pages sometimes use what are known as cookies. Cookies do not cause any harm to your computer and do not contain any virus. Cookies are used to make our offers more user-friendly, more effective and safe. Cookies are small text files that are placed on your computer and stored by your browser.
Most of the cookies we use are known as “session cookies.” They are automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them. These cookies make it possible for us to recognize your browser at your next visit.
You can configure your browser so that you are informed about the setting of cookies, only allow cookies for individual cases, prevent the acceptance of cookies for particular cases or in general, and also set the automatic deleting of cookies when you close your browser. If the cookies are deactivated, the functionality of our website may be limited.
Functional Limitations without Cookies
In general if you do not permit us to use cookies, certain functions and pages will not function as expected.
Web Analysis with Google Analytics
This website uses functions of the web analysis service of Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. Google Analytics uses goal-oriented cookies.
More information on the handling of user data by Google Analytics is found in the Google Data Protection Statement at: https://support.google.com/analytics/answer/6004245?hl=en
You can prevent the transfer to Google of data related to your use of the website by the cookie, and also the processing of this data by Google, by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en.
Alternatively, you can block the acquisition of your data by Google Analytics by clicking on the following link. This will place an opt-out cookie that will block the acquisition of your data upon any future visits to this website: deactivate Google Analytics.
This webpage uses Google Analytics with the extension “anonymizeIP()” so that the IP-addresses are only processed in abbreviated form in order to prevent any direct relationship to real persons.
Error Reporting
We use Sentry, a failure analysis service. This service is provided by Functional Software Inc, 132 Hawthorne StreetSan Francisco, California 94107, USA ("Sentry"). To ensure the technical stability of our services, Sentry is used to log system errors. The information generated by Sentry is generally transferred to and stored on a Sentry server in the USA. The data is stored for a maximum of 90 days after analysis and then deleted without residue. The data is processed on the basis of our legitimate interest in accordance with Art. 6 paragraph 1 lit f GDPR.
Insofar as data is transferred from Sentry to the US, we would like to point out that Sentry is certified under the Privacy Shield and thus guarantees that all measures have been taken to comply with European data protection law. See also: https://www.privacyshield.gov/participant?id=a2zt0000000TNDzAAO&status=Active. A transfer of data to Sentry is therefore permitted in accordance with Art 45 GDPR.
In order to carry out the error analysis, we have concluded a processing agreement with Sentry in accordance with Art 28 GDPR. Sentry's terms of use and privacy policy can be found at: https://sentry.io/privacy/.
Facebook Social Plugins
We use the Facebook social plugins operated by Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. The plugins can be recognized by the Facebook logo or the extension “Facebook Social Plugin.” For example, if you click on the “Like” button or give a comment, then the corresponding information is passed from your browser directly to Facebook and is saved there. Facebook subsequently makes your preference public for your Facebook friends. If you are logged into Facebook, then Facebook can assign the visit to our page directly to your Facebook account. Even when you are not logged in or do not even have a Facebook account, your browser transmits information (e.g. which webpage you have called, your IP address) which is stored by Facebook. We also should point out that as manager of the web pages, we obtain no knowledge of the content of the transmitted data or its usage by Facebook.
Details on Facebook’s handling of your personal data and of your rights in this regard are found in the Facebook Data Privacy Policy: www.facebook.com/policy.php. If you do not want Facebook to assign the data collected about you on our webpages, then you must log out of Facebook before you visit our webpages.
Youtube Social Plugins
Our website uses plugins by the YouTube site operated by Google. The site operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit our pages equipped with a YouTube plugin, a link will be created to the YouTube servers. This informs the YouTube server that you have visited our pages.
If you are logged into your YouTube account, you enable YouTube to assign your visit to our pages directly to your user account. You can prevent this by logging out of your YouTube account.
Server-Log-Files
The provider of the web pages collects and automatically saves information in what are known as “Server-Log Files,” that your browser automatically passes on to us. These are:
- Browser type and version
- Used operating system
- Referrer URL
- Host name of accessing computer
- Clock time of server request
- IP-Address
This data cannot be assigned to any particular person. A compilation of this data with other data sources is not performed. We reserve the right to check this data subsequently if we have definitive grounds relating to an unlawful usage.
SSL-Encryption
This page uses SSL encryption for security reasons and to protect the transmission of confidential data, such as inquiries that you send to us as site operators. An encrypted link can be recognized in that the address line of the browser will change from “http://” to “https://” and there will be a lock-symbol in your browser line.
If the SSL encryption is activated, the data that you send to us cannot be read by third parties.
For additional information and details about which data are generally processed by us, please go to: "Information statement".
Information statement
from backaldrin International The Kornspitz Company GmbH in accordance with Art 13 and Art 14 of the General Data Protection Regulation (GDPR)
Responsible Manager:
backaldrin International The Kornspitz Company GmbH
FN 232614f , Kornspitzstraße 1, A-4481 Asten
T: +43 7224 8821 0/ E: datenschutz@backaldrin.com
The following declaration is valid only for the branch in Austria.
General
This general information page explains how backaldrin International collects and processes your personal data, what rights you have in your relationship with us and how you can exercise these rights. In order to provide you with our services, we process your personal data as follows. Your personal data is processed with the greatest possible care.
What data do we process?
- Contact information: name, date of birth, title, invoice and delivery address, email address, mobile phone number etc.
- Payment information: invoice information, bank details etc.
- Financial information: details of any potential credit obligations and payment injunctions. Credit checks.
- Information about your service provision: various internal assessments.
- Information about goods/services: details of the products you order.
- Historical information: details about your past purchases with backaldrin as well as your payment history and credit acceptance.
- ID and passport information
For what purpose is this data processed and what is the legal basis for this?
Any personal data processed is essentially required for the conclusion of a contract with us. backaldrin International The Kornspitz Company GmbH processes your data for the following purposes and on the following legal basis:
Purpose: To confirm your identity and check your personal details and contact information
Legal basis: To meet our contractual obligations
Purpose: To meet our contractual obligations and provide the information and services you expect from us
Legal basis: To meet our contractual obligations
Purpose: For the purposes of customer analysis, administration of services and internal processes including data analysis, development and statistical purposes
Legal basis: To meet our contractual obligations and based on legitimate interest
Purpose: To improve our services and for the purposes of general business development incl. marketing
Legal basis: Based on legitimate interest
Purpose: To adhere to legal obligations resulting, for example, from the Federal Fiscal Code
Legal basis: To meet the legally applicable terms and conditions
Purpose: To assess which services and products we can offer you, for example by conducting internal and external credit ratings
Legal basis: Based on legitimate interest
Purpose: For the protection of our own assets
Legal basis: Based on legitimate interest
Which recipients are provided with your data by us?
The person in question is informed about the current and potential recipients of their personal data. We may pass your personal data to the following third parties within the scope of the company’s operations:
- Banks (payment transactions)
- Courts, lawyers, administrative authorities, other authorities, insurance institutions
- Postal operators (sending out letters)
- IT companies (operation of our baking advice service)
- Credit agencies (credit checks)
- Foreign authorities (in connection with the honorary consulate)
Transfer to recipients in third party countries
Data relating to the data processing is not usually passed on to recipients in third party countries. Data is only transferred to third party countries if the customer or supplier is based/resident in a third party country. This process takes place in accordance with a contractual agreement with the recipient and only to the extent required.
- Where do we save your personal data?
We strive to process your data within the EU/ European Economic Area. It may be that, under certain circumstances, your data is transferred by a service provider or sub-contractor to a country outside of the EU/ European Economic Area and stored there. Backaldrin International will implement contractual, technical and organisational measures to ensure that your data is handled securely and that an appropriate level of protection is guaranteed which corresponds to that of the data protection requirements within the EU/ European Economic Area.
- How long do we store your personal data?
We save your data for as long as required to meet the obligations of the contract we have concluded with you or for as long as required to meet our statutory storage obligations. In principle, data is stored until seven years from the date of the last document (bookkeeping storage obligations in accordance with § 132 of the Federal Fiscal Code - BAO).
What are your rights as someone affected?
- The right to be informed about our storage of your data
You are entitled to request an extract of the data we store about you if you wish to check what information we save about you. You can apply for this extract free-of-charge.
- The right to rectification
You are entitled to request the correction of any incorrect or incomplete data we have stored about you.
- The right to deletion (‘the right to be forgotten’)
You are entitled to apply for the deletion of your personal data where this is no longer required for the purpose for which it was collected or if you wish to withdraw your consent to the processing of this data. You also have the right to the deletion of data in the event of any unlawful processing of your data. Please note that backaldrin has to adhere to specific legal obligations which do not permit us to delete information directly. These obligations are the result of the accounting and tax laws as well as consumer legislation. We can, however, block your personal data and prevent it processed for anything other than the purposes stipulated by law.
- The right to limit processing
You are entitled to request a limit to the processing of your data if you feel that we are not processing the correct data or if you need the data for the establishment, exercise or defence of a legal claim.
- The right to data portability
You are entitled to receive the personal data you have provided to us in a structured, conventional and machine-readable format or to transfer this data to another responsible party without any intervention from us.
- The right to object
You are entitled to object to the processing of your data where carried out for a legitimate interest, in the public interest or in the exercising of official authority.
- The right to lodge a complaint with the data protection authority
If you believe that the processing of your data is in breach of the data protection law or your data protection rights have been breached in some way, you can lodge a complaint with the supervisory authority. In Austria, the data protection authority is the responsible body.
If you wish to assert one of these rights against us, please contact: datenschutz@backaldrin.com