Privacy - HTK-SF

Privacy Policy of HTK-SF GmbH (Austria)

1. Information pursuant to the GDPR (Art. 13 GDPR)

Controller / Responsible for data processing (Art. 13(1)(a) GDPR)

HTK-SF GmbH
Inkustraße 1-7/8/2
3400 Klosterneuburg
Austria

Managing Director: Mag. (FH) Jan Klajnert, M.Sc.
Phone: +43/664/4674020
E-mail: info@htk-sf.at

Data Protection Officer (Art. 13(1)(b) GDPR)
HTK-SF GmbH has not appointed a Data Protection Officer.

Purposes and legal bases of processing (Art. 13(1)(c) GDPR)

We process personal data primarily for the purpose of performing contracts and carrying out pre-contractual measures. This may include, in particular, customer master data and contact data, communication history, products/services, orders, invoices, project-related data and the fulfilment of statutory obligations of the controller.

The legal bases arise in particular from Art. 6 GDPR, especially:

Art. 6(1)(b) GDPR (performance of a contract / pre-contractual steps)
Art. 6(1)(c) GDPR (compliance with legal obligations)
Art. 6(1)(f) GDPR (legitimate interests)

Where processing is based on consent (e.g., where applicable for certain cookies or comparable features), the legal basis is Art. 6(1)(a) GDPR.

Processing to protect legitimate interests (Art. 13(1)(d) GDPR)

Where necessary, we process your data beyond contract performance to protect our legitimate interests or those of third parties, in particular for:

sales steering and controlling
assertion of legal claims and defence in case of legal disputes
ensuring IT security and IT operations
measures for business steering and development

Categories of recipients (data transfers) (Art. 13(1)(e) GDPR)

Within Austria, the European Union and the European Economic Area, recipients may include, as required:

tax advisors, auditors
legal representatives, courts, authorities
IT service providers (e.g., hosting, maintenance, support)
logistics/shipping partners (where applicable)
customers, suppliers and other business partners to the extent necessary for contract performance

Transfers to third countries (Art. 13(1)(f) GDPR)

If, in the context of using certain service providers (e.g., analytics and font services), personal data is transferred to third countries (countries outside the EU/EEA), such transfers are carried out only under the requirements of Art. 44 et seq. GDPR (e.g., adequacy decision, Standard Contractual Clauses and/or additional safeguards, depending on the setup).

Retention period (Art. 13(2)(a) GDPR)

We store personal data only as long as necessary for the respective purposes and in accordance with applicable legal retention obligations. Data is deleted when the purpose no longer applies and no legal retention obligations prevent deletion.

Rights of data subjects (Art. 13(2)(b) GDPR)

You may exercise your rights at any time using the contact details above. If we process your personal data, you are a data subject within the meaning of the GDPR and have the following rights against the controller:

Right of access (Art. 15 GDPR)
Right to rectification (Art. 16 GDPR)
Right to erasure (Art. 17 GDPR)
Right to restriction of processing (Art. 18 GDPR)
Right to data portability (Art. 20 GDPR)
Right to object (Art. 21 GDPR), in particular where processing is based on legitimate interests

Withdrawal of consent (Art. 13(2)(c) GDPR)

Where processing is based on your consent, you may withdraw that consent at any time with effect for the future. The lawfulness of processing carried out prior to withdrawal remains unaffected.

Right to lodge a complaint with a supervisory authority (Art. 13(2)(d) GDPR)

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR (Art. 77 GDPR). You may lodge a complaint with a supervisory authority in the EU Member State of your habitual residence, place of work, or the place of the alleged infringement.

Competent supervisory authority in Austria:
Austrian Data Protection Authority (Österreichische Datenschutzbehörde)
Barichgasse 40–42
1030 Vienna, Austria
Phone: +43 1 52 152-0
E-mail: dsb@dsb.gv.at

Requirement to provide personal data (Art. 13(2)(e) GDPR)

Within the scope of our business relationship, you only need to provide the personal data necessary for establishing, carrying out and terminating a business relationship, or data we are legally obliged to collect. Without such data, we may generally be unable to provide our services or enter into contracts.

Amendments to this Privacy Policy / Change of purpose

We reserve the right to amend this Privacy Policy in compliance with applicable data protection regulations. The current version is available on our website under “Privacy Policy” and can be requested at any time using the contact details above. If we intend to process your data for purposes other than those for which it was collected, we will inform you in advance as required by law.

Version: 11.01.2026

2. Overview of data protection

General information

The following information provides an easy-to-navigate overview of what happens to your personal data when you visit our website. “Personal data” means any data that can be used to personally identify you.

3. General and mandatory information

Data protection

We treat your personal data as confidential and process it in accordance with statutory data protection regulations (GDPR) and this Privacy Policy.

Please note that data transmission over the internet (e.g., e-mail communication) may have security gaps. Complete protection of data against access by third parties is not possible.

Revocation of your consent to the processing of data

Many data processing operations are only possible with your express consent. You may revoke consent at any time by sending us an informal notification by e-mail. The legality of data processing carried out prior to your revocation remains unaffected.

Right to object in special cases; right to object to direct marketing (Art. 21 GDPR)

If data processing is based on Art. 6(1)(e) or (f) GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data. This also applies to profiling based on these provisions.

If your personal data is processed for direct marketing, you have the right to object at any time to processing for such marketing purposes. If you object, your personal data will no longer be used for direct marketing.

SSL or TLS encryption

This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content. You can recognise an encrypted connection by “https://” and the lock icon in your browser.

Information, rectification, restriction, deletion

Within the scope of applicable law, you have the right to obtain information free of charge about your stored personal data, its origin, recipients and the purpose of processing, and—where applicable—the right to rectification, restriction or deletion. Please contact us using the details provided above.

Objection to promotional e-mails

We hereby expressly prohibit the use of contact data published as part of our legal notice obligations for sending promotional material not expressly requested. We reserve the right to take legal action in case of unsolicited advertising (e.g., spam e-mails).

4. Data collection on our website

Cookies

Our website uses cookies in some instances. Cookies do not harm your computer and do not contain viruses. Cookies help make our website more user-friendly, effective and secure.

Most cookies are “session cookies” and are automatically deleted after your visit. Other cookies remain stored on your device until you delete them; they allow us to recognise your browser on your next visit.

You can configure your browser to inform you about cookie settings, to allow cookies only in individual cases, to exclude cookies in certain cases or generally, and to activate automatic deletion of cookies when you close the browser. Deactivating cookies may limit the functionality of this website.

Cookies necessary for electronic communication or for providing certain functions are stored on the basis of Art. 6(1)(f) GDPR. If other cookies (e.g., analytics cookies) are stored, they are addressed separately in this Privacy Policy and/or via the cookie banner/consent tool used on the website.

Server log files

The provider of this website automatically collects and stores information that your browser automatically transmits in “server log files”, including:

browser type and version
operating system used
referrer URL
host name of the accessing computer
time of the server request
IP address

This data is not merged with other data sources. The legal basis is Art. 6(1)(f) GDPR (legitimate interest in technically error-free provision and optimisation of the website).

Contact requests by e-mail or telephone

If you contact us by e-mail or telephone, your inquiry—including any resulting personal data (e.g., name, contact details, content of the inquiry)—will be stored and processed for the purpose of handling your request.

The processing is based on Art. 6(1)(b) GDPR if your request is related to contract performance or pre-contractual measures. In other cases, it is based on Art. 6(1)(f) GDPR (legitimate interest in efficiently processing inquiries) and/or Art. 6(1)(a) GDPR (consent), depending on the circumstances.

Your data will remain with us until you request deletion, object to storage (where applicable), or the purpose no longer applies, subject to statutory retention obligations.

5. Social Media

LinkedIn plugin

Our website uses functions of the LinkedIn network. LinkedIn is provided by LinkedIn (depending on your location, the relevant LinkedIn entity may apply).

When you visit pages that include LinkedIn features, a connection to LinkedIn servers may be established. LinkedIn may be informed that you visited our website with your IP address. If you click LinkedIn buttons (e.g., “Recommend”) and are logged into your LinkedIn account, LinkedIn may associate your visit with your user account. Please note that we, as the operator of this website, do not have full knowledge of the content of transmitted data or how LinkedIn uses it.

The use of LinkedIn features is based on Art. 6(1)(f) GDPR (legitimate interest in public visibility and communication). Where required by law (e.g., for certain cookies/trackers), this may occur only after your consent.

6. Analytics and advertising

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics uses cookies that enable analysis of website use. The information generated by these cookies about your use of this website may be transferred to and stored on servers in the United States or other third countries.

The use of Google Analytics is based on Art. 6(1)(f) GDPR (legitimate interest in analysing user behaviour to optimise our online offering). Where required, Google Analytics is used only after your consent (Art. 6(1)(a) GDPR), for example via a cookie consent tool.

IP anonymisation

We have activated the IP anonymisation function on this website. As a result, your IP address is shortened by Google within EU/EEA Member States before transmission to third countries. Only in exceptional cases is the full IP address transmitted and shortened on a Google server.

Browser plug-in

You can prevent the storage of cookies by adjusting your browser settings. You can also prevent Google from collecting and processing data generated by the cookie (including your IP address) by downloading and installing the browser plug-in available from Google.

Objection / opt-out

Where offered on the website, you may also object to Google Analytics tracking via an opt-out function (e.g., consent tool settings).

Storage period

User- and event-level data stored by Google that is linked to cookies, user IDs or advertising IDs may be anonymised or deleted after 14 months (depending on the configuration).

7. Plugins and tools

Web Fonts (Monotype / Hoefler & Co.)

For consistent font display, we use web fonts provided by Monotype and Hoefler & Co. When you open a page, your browser loads the required web fonts into its cache to display texts correctly. For this purpose, your browser may establish a direct connection to the servers of the font providers. The providers may thereby receive information that our website was accessed via your IP address.

The use of web fonts is based on Art. 6(1)(f) GDPR (legitimate interest in a consistent and attractive presentation). Where required, the use may depend on consent.

If your browser does not support web fonts, a standard font will be used by your device.

Version: 11.01.2026

Our Benefits: + Smoother operational workflows+ Minimized unplanned interruptions+ Stronger machine dependability+ High-level technical support + Accurate issue identification+ Easy to adapt and scale+ Reduced maintenance and operating costs

Competencies

HTK-SF GmbH

Our Benefits:

+ Smoother operational workflows
+ Minimized unplanned interruptions
+ Stronger machine dependability
+ High-level technical support
+ Accurate issue identification
+ Easy to adapt and scale
+ Reduced maintenance and operating costs