Santrum Veritas e.U.
Privacy Policy
The protection of your privacy and personal data is of the utmost importance to us, SANTRUM VERITAS e.U. (hereinafter referred to as “SANTRUM VERITAS”). We always treat your personal information confidentially and in accordance with data protection regulations. In this privacy policy, we provide a comprehensive explanation of what data we collect, how it is used, and what rights you have regarding your data.
1. Security and Protection of Your Personal Data
As the responsible party under the General Data Protection Regulation (GDPR), we are committed to ensuring the protection of your personal data with the utmost care. The collection, storage, processing, transmission, and deletion of your data are carried out solely on the basis of applicable legal provisions, particularly the GDPR.
We have implemented comprehensive technical and organizational measures to ensure that data protection regulations are strictly observed by both us and any external service providers we work with.
Controller:
SANTRUM VERITAS e.U.
Steingasse 6a
4020 Linz
Austria
E-mail: info@santrumveritas.com
2. Collection and Storage of Personal Data and Its Use
2.a Visiting our Website:
When you visit our website https://santrumveritas.com your browser automatically sends certain information to the server of our website, which is temporarily stored in so-called log files.
This data includes:
- Your IP address
- Date and time of access
- Time zone difference to Greenwich Mean Time (GMT)
- The requested page
- Access status/HTTP status code
- The amount of data transferred
- The website from which the request originated
- Information about the browser used
- Operating system and interface
- Language and version of the browser software
This information is processed in order to:
- Ensure a smooth connection to the website
- Provide a comfortable use of our website
- Analyze system security and stability
- Fulfill administrative purposes
The processing of this data is based on Art. 6 Abs. 1 S. 1 lit. f GDPR. Our legitimate interest stems from the purposes mentioned above. The data is anonymous for us and is stored for a maximum of 12 months before being automatically deleted.
2.b Collection of Personal Data during Contractual Transactions:
When you place an order, we collect the following personal data:
- Name
- Address
- Phone number
- E-mail address
- Different delivery address (if applicable)
- VAT ID (if applicable)
- Company registration number (if applicable)
- Payment information
This data is used exclusively to fulfill the contract and communicate with you. This includes the initiation, processing, warranty, and possible reversal of the contract. The data is stored until the contract is fully fulfilled. If legal retention periods apply, the data may be stored for up to 10 years. The processing is based on Art. 6 Abs. 1 S. 1 lit. b GDPR.
The collection and processing of this data is based on a contract between you and SANTRUM VERITAS, pursuant to Art. 6 Abs. 1 S. 1 lit. b DSGVO. If we store data for tax and trade reasons, this takes place pursuant to Art. 6 Abs. 1 S. 1 lit. c DSGVO, as this is required by law. We also use your contractual data for control purposes in order to better position our company on the market, which is based on our legitimate interests pursuant to Art. 6 Abs. 1 S. 1 lit. f DSGVO.
2.c Storage Duration:
Your personal data is stored only as long as necessary to achieve the respective purpose or as required by legal retention periods. Data processed based on your consent will be stored until you revoke your consent.
2.d Contacting Us:
You can contact us with questions about data protection at any time via e-mail or phone. The processing of the data provided for this purpose is based on your consent under Art. 6 Abs. 1 S. 1 lit. a GDPR and will be deleted after your inquiry has been handled.
2.e Newsletter:
With your consent in accordance with Art. 6 Abs. 1 S. 1 lit. a GDPR, we use your e-mail address to send you our newsletter regularly. You can unsubscribe at any time by clicking the link in each newsletter or by sending an email to info@santrumveritas.com. We analyze user behaviour using web beacons (invisible pixels) to measure the reach of our emails. This data is processed pseudonymously and is not linked to your personal data. The evaluation can be terminated at any time by unsubscribing from the newsletter.
3. Data Sharing
Your personal data is generally not shared with third parties unless one of the following conditions applies:
3.a Consent:
You have expressly given us permission to do so in accordance with Art. 6 Abs. 1 S. 1 lit. a GDPR.
3.b Legal Claims:
Sharing is necessary under Art. 6 Abs. 1 S. 1 lit. f GDPR to assert, exercise, or defend legal claims, and there is no reason to believe that you have an overriding legitimate interest in not sharing your data.
3.c Legal Obligation:
A legal obligation exists for the transfer under Art. 6 Abs. 1 S. 1 lit. c GDPR.
3.d Contract Fulfillment:
Sharing is necessary under Art. 6 Abs. 1 S. 1 lit. b GDPR to fulfill the contract with you.
4. Cookies
Our website uses cookies. Cookies are small files that are automatically created by your browser and stored on your device (e.g. laptop, tablet, smartphone) when you visit our site. They do not harm your device and do not contain harmful software such as viruses or trojans. Cookies store information related to your device. However, this does not mean that we can directly identify you.
Why do we use cookies?
4.a Improving User Experience:
We use session cookies to recognize if you have visited certain pages of our website before. These cookies are automatically deleted when you leave our site.
4.b Optimization of User-Friendliness:
Temporary cookies help us store your settings and inputs for a set period of time. When you revisit our site, you won’t need to re-enter this information.
4.c Statistical Tracking:
We use cookies to statistically analyze the usage of our website and to optimize our offerings for you. These cookies enable us to recognize you on a return visit. After a specified period, these cookies are automatically deleted. The processing of data via cookies is carried out in accordance with Art. 6 Abs. 1 S. 1 lit. f GDPR to protect our legitimate interests.
Cookie Management and Settings:
Most browsers accept cookies automatically. However, you have the option to configure your browser so that no cookies are stored or that a prompt appears each time a cookie is set. Please note that disabling cookies may limit certain functionalities of our website.
Third Party Cookies:
YouTube, Google Analytics: www.google.com/intl/de/policies/technologies/cookies
Facebook, Instagram: www.facebook.com/help/cookies
Avoiding Cookies:
If you wish to disable Flash cookies, you can install an add-on like “Better Privacy” for Firefox or the Adobe Flash Cookie Killer for Chrome. You can also use your browser’s private mode or manually delete cookies and browser history.
5. Analytics Tools
We use tracking and analytics tools on our website to understand usage patterns and continuously improve our services. The processing of data is carried out in accordance with Art. 6 Abs. 1 S. 1 lit. f GDPR. Our aim is to make our website user-friendly, continuously optimize it, and enhance your user experience. The data collected is also used for statistical analysis.
Google Analytics:
Our website uses Google Analytics, a web analytics service provided by Google Inc. (Google). Google Analytics uses cookies, which are small text files stored on your computer, to help analyze how you use our website. The information generated by the cookie is usually transmitted to and stored on a Google server in the United States.
How does Google Analytics work on our website?
If IP anonymization is activated, Google will shorten your IP address within the European Union or other contracting states of the European Economic Area before transmission. Only in exceptional cases is the full IP address transmitted to a Google server in the U.S. and shortened there. Google uses this information on our behalf to create reports on your website usage and provide us with additional services related to website and internet usage.
Note: The IP address transmitted by your browser in connection with Google Analytics is not merged with other Google data.
How can you disable Google Analytics?
You can prevent cookies from being stored by adjusting your browser settings. However, this may limit some functions of the website.
Additionally, you can prevent the collection and processing of your data by Google by installing a browser plug-in. You can find the plug-in at the following link: https://tools.google.com/dlpage/gaoptout?hl=gb.
More information about Google Analytics and its privacy practices can be found here:
Google Analytics Terms of Service
Google Privacy Policy
We have extended Google Analytics with the code “anonymizeIp” on our website. This ensures that IP addresses are collected anonymously (IP masking), so your identity cannot be directly inferred from the IP address.
6. Social Media Plugins
We use social media plugins from Facebook, Instagram, and Pinterest on our website. These plugins are used in accordance with Art. 6 Abs. 1 S. 1 lit. f GDPR to increase the visibility of our company and to make our content easier to share. The underlying purpose is promotional and constitutes a legitimate interest under the GDPR.
How do we protect your data?
To protect your data, we use the “two-click method.” This means that the plugins on our website are initially deactivated and only become active with your consent. This prevents your data from being automatically transmitted to social networks when you visit our website. The respective social media platform providers are responsible for ensuring their plugins operate in compliance with data protection regulations.
7. Your Rights as a Data Subject
You have various rights regarding your personal data processed by us.
These rights include:
Right to Access (Art. 15 GDPR):
You can request confirmation from us as to whether we are processing personal data concerning you. If so, you can request information about the processing purposes, the categories of data, the recipients to whom the data has been or will be disclosed, the intended retention period, and your rights to correction, deletion, restriction of processing, or objection. You will also be informed of the source of your data (if it wasn’t collected from you) and whether automated decision-making (including profiling) is in use.
Right to Rectification (Art. 16 GDPR):
You can request the immediate correction of inaccurate or incomplete personal data we have stored about you.
Right to Erasure (Art. 17 GDPR):
You have the right to request the deletion of your personal data, provided no legal reasons prevent this. This may apply if the data is needed for freedom of expression, legal obligations, in the public interest, or for the defence of legal claims.
Right to Restriction of Processing (Art. 18 GDPR):
You can request a restriction of data processing under certain circumstances. This applies, for example, if you dispute the accuracy of the data or if the processing is unlawful but you refuse to delete the data. Even if we no longer need the data, but you need it for the defence of legal claims, you can request the restriction.
Right to Data Portability (Art. 20 GDPR):
You have the right to receive your personal data in a structured, commonly used, and machine-readable format. Alternatively, you can request that we transfer the data directly to another controller, if technically feasible.
Right to Withdraw Consent (Art. 7(3) GDPR):
You can withdraw any consent you have given for data processing at any time. This means we will no longer process your data based on this consent in the future.
Right to Complain (Art. 77 GDPR):
If you believe we have violated data protection regulations, you can file a complaint with a supervisory authority. This could be the authority at your place of residence, workplace, or at our company headquarters.
8. Right to Object
If we process your personal data based on legitimate interests in accordance with Art. 6 Abs. 1 S. 1 lit. f GDPR, you have the right to object to the processing under Art. 21 GDPR. This applies if there are reasons arising from your particular situation that speak against processing, or if your objection is directed at direct marketing. In the latter case, you have a general right to object, which we will implement without the need to specify a particular situation. To exercise your right to object or withdraw consent, simply send an e-mail to info@santrumveritas.com.
9. Data Security
To ensure the security of your data during transmission, we use the widely adopted SSL (Secure Socket Layer) method in conjunction with the highest encryption level supported by your browser. Generally, we use 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit encryption (SSL/TLS v3) as an alternative. You can recognize encrypted pages by the closed lock icon in your browser’s status bar.
Additionally, we implement appropriate technical and organizational security measures to protect your data from accidental or intentional manipulation, loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological advancements.
10. Changes to This Privacy Policy
This privacy policy is currently valid as of September 2024. Due to the continued development of our website, our offerings, or changes in legal or regulatory requirements, it may become necessary to modify this privacy policy. The current version of the privacy policy can always be accessed on our website at https://santrumveritas.com and can be downloaded or printed.
