Villa Beer

Data Policy

Controller
Villa Beer Foundation gemeinnützige GmbH  
Wiedner Hauptstraße 64/4, 1040 Vienna  
Tel.: +43 (0) 676 671 36 44
Email: welcome@villabeer.wien

General information
The protection and security of your personal data are important to us. This website therefore stores and processes data exclusively in accordance with the Austrian Data Protection Act and the European General Data Protection Regulation (GDPR). By using this website, you consent to the processing of your data in accordance with this privacy policy. 

This privacy policy applies solely to this website. If you are redirected to other websites via links on our pages, please consult the respective website directly regarding their handling of personal data. Your personal data (e.g. title, name, address, e-mail address, telephone number) are processed by us solely in accordance with the provisions of the Austrian Data Protection Act. The following provisions inform you about the nature, scope, and purpose of the collection, processing, and use of personal data. 

In general, this website may be accessed without providing personal data. When personal data (such as name, address, or e-mail address) are collected on our pages, it is always on a voluntary basis, wherever possible. 

If Villa Beer discloses your data to other persons or companies, transfers it to them, or otherwise grants them access to it, this will only be done on a legal basis (your consent, legal obligation, legitimate interest of Villa Beer (e.g., processing of data by processors on the basis of a data processing agreement), necessity in connection with the performance of a contract).  

Please note that data transmission via the internet (e.g. communication by e-mail or through unencrypted websites) may have security vulnerabilities. Complete protection of data against access by third parties is not possible.    

Collection and Storage of Personal Data: Nature, Purpose, and Use  When you visit our website, Villa Beer’s webspace provider collects data regarding access to the site, storing this information in “server log files.” The following data is logged: Date and time of access, volume of data transferred, notification of successful access, user’s operating system, referrer URL (the previously visited page), IP address, and the requesting provider. 

We currently use this data on the legal basis of §6 (1) item 1 lit. f of the GDPR for purposes such as
- ensuring a smooth connection to the website,
- ensuring comfortable use of our website,
- evaluating system security and stability, and
- other administrative purposes. The data collected will in no case be used to draw conclusions about your person.  

Data security
The provider implements technical and organizational security measures to protect the data stored by the provider against accidental or intentional manipulation, loss, destruction, or unauthorized access. Data transfers between service providers are carried out using SSL (Secure Socket Layer) encryption, which encrypts all information transmitted by and to supporters. 

All data are stored on the servers of this website or on the servers of our service providers with whom data processing agreements pursuant to § 28 GDPR have been concluded following appropriate review. 

Rights of Data Subjects
Under the Austrian Data Protection Act and the European GDPR, you as a data subject have extensive rights, primarily intended to ensure transparency. These include the right to information about your personal data, rectification, erasure, restriction of processing, objection to processing, and data portability (only in the case of contractual relationships or consent), as well as the right to withdraw consent at any time. 

You also have the right to, at any time, lodge a complaint with the data protection authority regarding the processing of your personal data. The contact details of the data protection authority are: 

Austrian Data Protection Authority
Barichgasse 40-42
1030 Vienna
Phone: +43 (0)1 521 52 25 69
Email: dsb@dsb.gv.at

Data deletion
Your data will be deleted once the respective contract with you has been fulfilled and there is no longer a statutory obligation to retain the data. Your data will generally be deleted after seven years in accordance with the retention period under § 132 of the Austrian Federal Fiscal Code (BAO).   

Statutory or legal retention obligations or contractual obligations—for example towards customers in cases of warranty or liability, or towards contractual partners—constitute a legal basis for continued storage of personal data (§ 6 ( 1) lit. c of the GDPR – Lawfulness of Processing: Legal Obligation).  

Links
We review links that lead away from our website with great editorial care. Nevertheless, we assume neither responsibility nor liability for content on websites to which links are provided from this website or any other online presence.  

Cookies
Our website uses cookies. These are small text files stored on your device by the browser that do not cause any harm. Some cookies remain stored on your device until you delete them. They are used to recognize your browser the next time you visit. You may configure your browser to inform you about the storage of cookies and to only allow it on a case-by-case basis. If you choose to disable cookies, the functionality of this website may be limited.

Newsletter
If you subscribe to our newsletter and thereby give your consent (§ 6 ( 1) lit. a of the GDPR), we will process your name and e-mail address for the purpose of sending the newsletter. Your e-mail address will be stored until you unsubscribe from the newsletter or withdraw your consent. You may withdraw your consent at any time or unsubscribe from the newsletter by sending a message to welcome@villabeer.wien, by clicking the unsubscribe link at the end of each newsletter, or by notifying us in any other way.  

Newsletter - Distribution Service Provider
Newsletters are sent via the distribution service provider Sendinblue GmbH, operating under the brandname “Brevo.” The service provider is used on the basis of our legitimate interests pursuant to § 6 ( 1) lit. f of the GDPR and a data processing agreement pursuant to § 28 (3) of the GDPR.   

The service provider may use recipients’ data in pseudonymized form—i.e. without assignment to a specific user—for the optimization or improvement of its own services, such as technical optimization of newsletter delivery and presentation or for statistical purposes. However, the service provider does not use the data of our newsletter recipients to contact them directly or to pass the data on to third parties. 

Tickets
Tickets are sold through the online platform go-mus by Giant Monkey GmbH.
Giant Monkey GmbH's privacy policy

Social Media Plug-ins 
This website uses social media plug-ins from instagram.com and linkedin.com. These can be recognized by the respective logos.    

When a user visits a page displaying such a logo, the browser automatically connects to the respective server of the social media service. In doing so, the service is given various data including the specific page visited by the user. The website operator has no influence over the data transmitted to the respective platform. This transmission of data is carried out regardless of whether the user clicks on the plug-in. 

If the user is logged in to Instagram or LinkedIn at the same time, the plug-in may establish a direct connection to the user’s account. If the user posts a comment on the website or “likes” it via the plug-in, the plug-in transmits this information to Instagram or LinkedIn and links it to the user’s account. If you do not wish this to occur, you must log out of your social media account prior to making a post.

In addition to this information, please consult the privacy policies of Instagram and LinkedIn. You also have the option to install a browser add-on that blocks social media plug-ins and thereby prevents data transfer.

SSL Encryption
For security reasons and to protect the transmission of confidential content—such as inquiries sent to us—this website uses SSL encryption. An encrypted connection is indicated by the browser’s address bar changing from “http://” to “https://”, in conjunction with a lock icon in the address bar of your browser. When SSL encryption is enabled, third parties are not able to read any data you submit to us.