privacy policy


Introduction and Overview

We have written this privacy statement (version 20.09.2022-112133065) in order to explain to you, in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679 and applicable national laws, which personal data (data for short) we as the controller - and the processors (e.g. providers) commissioned by us - process, will process in the future and what lawful options you have. The terms used are to be understood as gender-neutral.

In short, we inform you comprehensively about the data we process about you.

Data protection statements usually sound very technical and use legal terminology. This privacy statement, on the other hand, is intended to describe the most important things to you as simply and transparently as possible. To the extent that it is conducive to transparency, technical terms are explained in a reader-friendly manner, links to further information are provided and graphics are used. In this way, we inform you in clear and simple language that we only process personal data in the course of our business activities if there is a corresponding legal basis. This is certainly not possible by providing the most concise, unclear and legalistic explanations possible, as is often standard practice on the Internet when it comes to data protection. I hope you find the following explanations interesting and informative and perhaps there is one or two pieces of information you did not know.

If you still have questions, we would like to ask you to contact the responsible office mentioned below or in the imprint, to follow the links provided and to look at further information on third party sites. Our contact details can of course also be found in the imprint.

Scope of application

This data protection declaration applies to all personal data processed by us in the company and to all personal data processed by companies commissioned by us (order processors). By personal data, we mean information within the meaning of Art. 4 No. 1 DSGVO, such as a person's name, e-mail address and postal address. The processing of personal data ensures that we can offer and invoice our services and products, whether online or offline. The scope of this privacy policy includes:

  • all online presences (websites, online shops) that we operate
  • social media sites and email communications
  • mobile apps for smartphones and other devices

In short, the data protection declaration applies to all areas in which personal data is processed in the company via the aforementioned channels in a structured manner. If we enter into legal relationships with you outside of these channels, we will inform you separately where applicable.

Legal basis

In the following privacy statement, we provide you with transparent information on the legal principles and regulations, i.e. the legal bases of the General Data Protection Regulation, which enable us to process personal data.

As far as EU law is concerned, we refer to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016, which you can of course read online on EUR-Lex, the gateway to EU law, at https://eur-lex.europa.eu/legal-content/DE/ALL/?uri=celex%3A32016R0679.

We only process your data if at least one of the following conditions applies:

  1. Consent (Article 6(1)(a) DSGVO): You have given us your consent to process data for a specific purpose. An example would be the storage of your entered data of a contact form.
  2. Contract (Article 6(1)(b) DSGVO): In order to fulfil a contract or pre-contractual obligations with you, we process your data. For example, if we conclude a sales contract with you, we need personal information in advance.
  3. Legal obligation (Article 6(1)(c) DSGVO): If we are subject to a legal obligation, we process your data. For example, we are legally obliged to keep invoices for accounting purposes. These usually contain personal data.
  4. Legitimate interests (Article 6(1)(f) DSGVO): In the case of legitimate interests that do not restrict your fundamental rights, we reserve the right to process personal data. For example, we need to process certain data in order to operate our website in a secure and economically efficient manner. This processing is therefore a legitimate interest.

Other conditions such as the performance of recording in the public interest and the exercise of official authority as well as the protection of vital interests do not usually arise for us. If such a legal basis should be relevant, it will be indicated at the appropriate place.In addition to the EU Regulation, national laws also apply:

  • In Austria, this is the Federal Act on the Protection of Individuals with regard to the Processing of Personal Data (Data Protection Act), or DSG for short.
  • In Germany, the Federal Data Protection Act, or BDSG for short, applies.

If other regional or national laws apply, we will inform you about them in the following sections.

Contact details of the person responsible

Should you have any questions regarding data protection or the processing of personal data, you will find the contact details of the responsible person or body below:

Red Knights Motorcycle Club Austria 4 - Motorradclub
Michael Wild
Pertinsel 61, 6972 Fußach, Österreich

E-Mail: rkmcaustria4@gmx.at
Phone: +43 664 4558850
Imprint: https://www.rkmcaustria4.eu/impressum/

Storage period

It is a general criterion that we only store personal data for as long as is absolutely necessary for the provision of our services and products. This means that we delete personal data as soon as the reason for processing the data no longer exists. In some cases, we are legally obliged to store certain data even after the original purpose has ceased to exist, for example for accounting purposes.

Should you wish your data to be deleted or revoke your consent to data processing, the data will be deleted as soon as possible and insofar as there is no obligation to store it.

We will inform you about the specific duration of the respective data processing below, provided we have further information on this.Rights according to the General Data Protection Regulation

Rights under the General Data Protection Regulation

In accordance with Articles 13, 14 of the DSGVO, we inform you of the following rights you have to ensure that data is processed fairly and transparently:

  • According to Article 15 DSGVO, you have the right to information about whether we are processing data about you. If this is the case, you have the right to receive a copy of the data and to know the following information:
  • the purpose for which we are processing it;
  • the categories, i.e. types, of data being processed;
  • who receives this data and, if the data is transferred to third countries, how security can be guaranteed;
  • how long the data will be stored;
  • the existence of the right to rectification, erasure or restriction of processing and the right to object to processing;
  • that you can lodge a complaint with a supervisory authority (links to these authorities can be found below);the origin of the data if we have not collected it from you;
  • whether profiling is carried out, i.e. whether data is automatically analysed to arrive at a personal profile of you.
  • You have a right to rectification of data under Article 16 of the DSGVO, which means that we must rectify data if you find errors.
  • You have the right to erasure ("right to be forgotten") under Article 17 of the DSGVO, which specifically means that you may request the deletion of your data.
  • According to Article 18 of the DSVGO, you have the right to restriction of processing, which means that we may only store the data but not use it any further.
  • According to Article 20 of the DSVGO, you have the right to data portability, which means that we will provide you with your data in a standard format upon request.
  • You have a right to object under Article 21 of the DSVGO, which entails a change in processing after enforcement.
  • If the processing of your data is based on Article 6(1)(e) (public interest, exercise of official authority) or Article 6(1)(f) (legitimate interest), you may object to the processing. We will then check as soon as possible whether we can legally comply with this objection.If data is used to carry out direct marketing, you can object to this type of data processing at any time. We are then no longer allowed to use your data for direct marketing.
  • If data is used for profiling, you can object to this type of data processing at any time. We may no longer use your data for profiling thereafter.
  • You may have the right under Article 22 of the DSVGO not to be subject to a decision based solely on automated processing (for example profiling).
  • You have the right to complain under Article 77 of the DSVGO. This means that you can complain to the data protection authority at any time if you believe that the data processing of personal data violates the DSVGO.

In short: You have rights - do not hesitate to contact the controller listed above with us!

If you believe that the processing of your data violates data protection law or that your data protection rights have been violated in any other way, you can complain to the supervisory authority. For Austria, this is the data protection authority, whose website can be found at https://www.dsb.gv.at/. In Germany, there is a data protection commissioner for each federal state. For more information, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI). The following local data protection authority is responsible for our company:

Explanation of terms used

We always try to make our privacy policy as clear and understandable as possible. However, this is not always easy, especially when it comes to technical and legal topics. It often makes sense to use legal terms (such as personal data) or certain technical terms (such as cookies, IP address). However, we do not want to use these without explanation. Below you will now find an alphabetical list of important terms used that we may not have sufficiently addressed in the previous privacy statement. If these terms have been taken from the DSGVO and are definitions, we will also quote the DSGVO texts here and add our own explanations where necessary.

Consent

Definition according to Article 4 of the DSGVO

For the purposes of this Regulation, the term:

Explanation: As a rule, such consent is given on websites via a cookie consent tool. You are probably familiar with this. Whenever you visit a website for the first time, you are usually asked via a banner whether you agree or consent to the data processing. In most cases, you can also make individual settings and thus decide for yourself which data processing you permit and which you do not. If you do not consent, no personal data of yours may be processed. In principle, consent can of course also be given in writing, i.e. not via a tool.

Personal data

Definition according to Article 4 of the DSGVO

For the purposes of this Regulation, the term:

Explanation: Personal data is therefore all data that can identify you as a person. This is usually data such as: 

  • Name
  • Address
  • E-mail address
  • Postal address
  • Telephone number
  • Date of birth
  • Identification numbers such as national insurance number, tax identification number, identity card number or matriculation number
  • Bank data such as account number, credit information, account balances, etc.

According to the European Court of Justice (ECJ), your IP address is also personal data. IT experts can use your IP address to determine at least the approximate location of your device and subsequently you as the connection owner. Therefore, the storage of an IP address also requires a legal basis within the meaning of the DSVGO. There are also so-called "special categories" of personal data that also require special protection. These include:

  • racial and ethnic origin
  • political opinions
  • religious or ideological convictions
  • trade union membership
  • genetic data, such as data taken from blood or saliva samples
  • biometric data (which is information on mental, physical or behavioural characteristics that can identify an individual).
  • health data
  • data on sexual orientation or sexual life

profiling

Definition according to Article 4 of the DSGVO

For the purposes of this Regulation, the term:

Explanation: Profiling involves gathering various pieces of information about an individual in order to learn more about that individual. In the web sector, profiling is often used for advertising purposes or for credit checks. Web or advertising analysis programmes, for example, collect data about your behaviour and interests on a website. This results in a special user profile that can be used to target advertising to a specific group.

All texts are protected by copyright. 

"profiling" means any automated processing of personal data which consists in using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or change of location;

"personal data" means any information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

"consent" means any freely given specific, informed and unambiguous indication of the data subject's wishes, in the form of a statement or other unambiguous affirmative act, by which the data subject signifies his or her agreement to personal data relating to him or her being processed;

Source: Created with the data protection generator from AdSimple