top of page

Privacy Policy

Version June 2025

​

The protection of your personal data is of particular concern to Auerbach Consulting GmbH and its branches (hereinafter referred to as "AC"). We process your data exclusively on the basis of legal provisions pursuant to the EU General Data Protection Regulation (GDPR) and the Federal Act on the Protection of Natural Persons with regard to the Processing of Personal Data (Data Protection Act – DSG). In this privacy notice, we inform you about the key aspects of data processing within our company.

 

Information on the Collection of Personal Data

We provide you with a website. Below, we inform you about the collection of personal data when using our website. Personal data are all data that relate to you personally, e.g., name, address, email addresses, etc.

Controller pursuant to Article 4(7) GDPR:

Auerbach Consulting GmbH
Dr. Franz-Rehrl-Platz 4c-28

5020 Salzburg, Austria 

You can contact our data protection officer at: office@auerbach.at 

​

I. Collection of Personal Data When Using Our Website

When using the website, we collect the following personal data to ensure the convenient use of the site’s features. These technically required data help us offer our website’s functions and maintain stability and security:

  • IP address

  • Location (of the requester)

  • Date and time of request

  • Request content

  • Browser

  • Operating system, its interface, and processor (User Agent)

  • Browser version

 

II. Purpose and Legal Basis for Data Processing

We process the above-mentioned data in accordance with GDPR, applicable data protection laws, and only to the extent necessary. Where processing is based on Article 6(1)(f) GDPR, the purposes mentioned represent our legitimate interests.

Purposes include:

  • Statistical analysis and improvement of website quality, particularly stability and connection security (Art. 6(1)(f) GDPR)

  • Contract initiation and performance (Art. 6(1)(b) GDPR)

  • Legitimate interest (Art. 6(1)(f) GDPR) – ensuring the security of IT systems, detection, and prevention of criminal threats and acts

  • Consent (Art. 6(1)(a) GDPR)

 

III. Data Collection and Use for Website Provision and Contact

AC uses personal data collected through its website for other purposes only if allowed by law or if the user has consented.

When contacting us by email or via the contact form, we store your provided data (email address, name, location) to respond to your inquiry. To process your request, we collect: first name, last name, email address, phone number, company, role, industry, and location to fulfill legal obligations.

 

IV. Data Deletion and Storage Period

Data are stored only as long as necessary for contract fulfillment, after which they are deleted. Legal retention obligations (e.g., under UGB or BAO) may apply. Once retention periods expire, we delete the data from our systems (digital and physical) immediately.

 

V. Use of Cookies

AC uses cookies to improve website display and navigation. A cookie is a text file sent from the web server to your browser, storing the visited URL, visit date, and expiration. Cookies help identify popular site areas and store user preferences for future visits.

Upon accessing our website, you can consent to cookie usage via the “cookie banner.” If consent is given, cookies may be used to improve usability, personalize content, and analyze user behavior.

Categories of Cookies:

  • Strictly Necessary Cookies: Required for basic website functionality and security. No marketing or tracking.

  • Performance Cookies: Track how visitors use the site (anonymously) for improvements.

  • Functional Cookies: Store user preferences like language. Disabling may affect experience.

  • Marketing Cookies: Show targeted ads and measure effectiveness.

Cookie Table Summary:

PurposeDescriptionStorage Duration

PerformanceImprove load speed, browser recognitionDeleted on browser close

SecurityKeep devices logged in during restricted accessDeleted on browser close

PreferencesRemember language, personalized greetingsDeleted on browser close

AnalyticsUse third-party tools for insightsDeleted after 2 years

FeedbackSurvey cookies to avoid repetitive prompts1st: on close; 2nd: after 90 days

Social MediaEnable content sharingDeleted after 2 years

 

VI. JavaScript and Web Beacons (Tracking Pixels)

AC may use JavaScript and tracking pixels to analyze site visits. JavaScript gathers data (IP, time, browser type, cookie status), and tracking pixels transmit them to AC. 

​

VII. Location Services

Our site may determine your geographic location to show relevant local content. This is optional and used solely for informational purposes.

 

VIII. App Usage Analytics

Apps provided by AC for smartphones/tablets are analyzed using device IDs, anonymously, with no link to the individual user.

 

IX. Third-Party Links

Our site contains links to third-party websites, including other AC entities. Their privacy policies may differ from ours. 

 

X. Website Use, Notices, and Consent

Additional privacy notices may apply to specific sections of the AC website. Consent may be required for handling certain personal data. 

Newsletter and Event Invitations

We you can subscribe to our newsletter, we collect the following data:

  • Referrer URL

  • Date/time of access

  • Browser type

  • Anonymized IP address

  • Email address, name, company, position

  • Date/time of subscription/confirmation

You can unsubscribe at any time via the link in each email or by contacting: office@auerbach.at

 

Data Processors

AC works with external service providers under Article 28 GDPR for tasks like IT, cloud storage (e.g., Office 365, Azure). These processors operate under contract and are carefully selected for security compliance.

Processing may occur outside the EU (third countries), but only with:

  • An EU Commission adequacy decision, or

  • Appropriate safeguards (Articles 46, 47, or 49(1) GDPR)

 

Data Disclosure to Third Parties

We do not disclose personal data to third parties unless necessary for legitimate business needs or required by law.

 

Data Security

We use appropriate technical and organizational measures (e.g., TLS encryption) to protect data from loss, destruction, manipulation, or unauthorized access. Our security protocols evolve with technology and threat levels.

 

XI. Your Rights

You have the following rights regarding your personal data:

  • Right of access

  • Right to rectification or deletion

  • Right to restrict processing

  • Right to object

  • Right to data portability

You may also lodge a complaint with the Austrian Data Protection Authority:

Austrian Data Protection Authority
Barichgasse 40–42
1030 Vienna

 

XII. Updates to the Privacy Policy

We reserve the right to amend this policy at any time. Updates are published automatically.

bottom of page