top of page

Privacy Policy

Personal data (hereinafter mostly referred to as “data”) is processed by us only to the extent necessary and for the purpose of providing a functional and user-friendly website, including its content and the services offered therein.
Pursuant to Art. 4 no. 1 of Regulation (EU) 2016/679 (General Data Protection Regulation – “GDPR”), “processing” means any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
With the following Privacy Policy, we inform you in particular about the nature, scope, purpose, duration, and legal basis of the processing of personal data, insofar as we decide alone or jointly with others on the purposes and means of processing. In addition, we inform you about third-party components used by us for optimization purposes and to increase the quality of use, insofar as third parties process data under their own responsibility.
This Privacy Policy is structured as follows:
I. Information about us as the data controller
II. Rights of users and data subjects
III. Information on data processing
I. Information about Us as the Data Controller
The controller within the meaning of data protection law is:
PINHOFF GmbH
Am Kluggrund 18
8511 Sankt Stefan ob Stainz
Austria
Phone: +43 (0)664 6464186
Email: office@pinhoff.com
Data Protection Officer:
PINHOFF GmbH
Christian Pichler
Am Kluggrund 18
8511 Sankt Stefan ob Stainz
Austria
II. Rights of Users and Data Subjects
With regard to the data processing described below, users and data subjects have the right:

  • to confirmation as to whether data concerning them is being processed, to information about such data, to further information about the data processing, and to copies of the data (Art. 15 GDPR);

  • to rectification or completion of inaccurate or incomplete data (Art. 16 GDPR);

  • to immediate erasure of data concerning them (Art. 17 GDPR), or alternatively, where further processing is required pursuant to Art. 17 para. 3 GDPR, to restriction of processing in accordance with Art. 18 GDPR;

  • to receive the data concerning them that they have provided and to have this data transmitted to other controllers (Art. 20 GDPR);

  • to lodge a complaint with a supervisory authority if they believe that data concerning them is being processed in violation of data protection regulations (Art. 77 GDPR).

In addition, the controller is obliged to inform all recipients to whom personal data has been disclosed of any rectification or erasure of data or restriction of processing pursuant to Arts. 16, 17 para. 1, and 18 GDPR, unless this proves impossible or involves disproportionate effort. Users have the right to be informed about these recipients.
Users and data subjects also have the right to object to future processing of their data pursuant to Art. 21 GDPR, insofar as the data is processed by the controller on the basis of Art. 6 para. 1 lit. f GDPR. In particular, an objection to data processing for direct marketing purposes is permissible.
III. Information on Data Processing
Data processed during use of our website is deleted or blocked as soon as the purpose of storage ceases to apply, provided there are no statutory retention obligations and no differing provisions are stated below.
Cookie Manager
To obtain consent for the use of technically non-essential cookies, the provider uses a cookie manager.
When accessing the website, a cookie containing the user’s consent settings is stored on the user’s device so that the consent request does not need to be repeated on subsequent visits.
The cookie is required to obtain legally compliant consent.
Users may prevent or terminate the installation of cookies via browser settings.
WIX – Web Analytics
By using WIX, cookies are also used for web analytics. These cookies transmit information such as time, location, and frequency of website visits to a WIX server for evaluation.
If consent has been given, the legal basis is Art. 6 para. 1 lit. a GDPR. The legal basis may also be Art. 6 para. 1 lit. f GDPR. The legitimate interest lies in the analysis, optimization, and economic operation of the website.
Users may prevent or terminate cookie installation through browser settings.
More information on data processing by WIX:
https://de.wix.com/about/privacy
Links to Third-Party Profiles
The website contains links to social networks.
The legal basis is Art. 6 para. 1 lit. f GDPR. The legitimate interest lies in improving website usability.
Clicking on a linked graphic redirects the user to the respective network. The network may collect data such as IP address, date, time, and visited page. If the user is logged in, data may be assigned to their account.
Users can prevent this by logging out of their account before clicking the link or adjusting account settings.
Cookies
a) Session Cookies
We use cookies on our website. Cookies are small text files stored on your device by your browser.
They enhance usability, effectiveness, and security, e.g., language display or shopping cart functionality.
Legal basis:

  • Art. 6 para. 1 lit. b GDPR for contract-related processing

  • Art. 6 para. 1 lit. f GDPR for functional optimization

Session cookies are deleted when the browser is closed.
b) Third-Party Cookies
Cookies from partner companies may be used for advertising, analytics, or functionality. Details are provided below.
c) Cookie Removal
Users can restrict or delete cookies via browser settings. Some functions may be limited if cookies are disabled.
Contact Requests
If you contact us via form or email, the data provided will be used to process your request.
Legal basis: Art. 6 para. 1 lit. b GDPR.
Data will be deleted once the request has been fully processed, unless statutory retention obligations apply.
LinkedIn
We maintain an online presence on LinkedIn to present our company and communicate with customers and interested parties.
LinkedIn is operated by LinkedIn Ireland Unlimited Company, Dublin, Ireland, a subsidiary of LinkedIn Corporation, USA.
Data may be processed outside the EU, particularly in the USA, which may involve increased risks. We have no access to LinkedIn user data.
Privacy Policy:
https://www.linkedin.com/legal/privacy-policy
Google Analytics
This website uses Google Analytics, a service of Google Ireland Limited.
Legal basis: Art. 6 para. 1 lit. f GDPR. Legitimate interest: analysis, optimization, and economic operation of the website.
Google Analytics uses IP anonymization within the EU/EEA. Data may be transferred to servers in the USA.
Users can prevent tracking via browser add-ons:
https://tools.google.com/dlpage/gaoptout
More information:
https://www.google.com/intl/de/policies/privacy/partners
Google Maps
We use Google Maps to display our location and provide directions.
Google Maps may store cookies and process user data. Servers in the USA may be used.
Legal basis:

  • Art. 6 para. 1 lit. a GDPR (consent)

  • Art. 6 para. 1 lit. f GDPR (legitimate interest)

Users may prevent cookies via browser settings.
Terms:
https://policies.google.com/terms
https://policies.google.com/privacy

bottom of page