Privacy Policy

Privacy Policy

Version: April 2026

Protecting your personal data is very important to us. We process your data exclusively on the basis of the applicable legal provisions, in particular the General Data Protection Regulation (GDPR), the Austrian Data Protection Act (DSG), and the Austrian Telecommunications Act 2021 (TKG 2021). This Privacy Policy explains which personal data we process in connection with your visit to our website and the use of our services.

1. Controller

MIN’AS
Sole proprietorship
Owner: Branislava Piskonić
Richtstraße 37/21
9500 Villach
Austria

Phone: +43 650 810 60 41
Email: office@min-as.at
VAT ID: ATU75308356

2. General information on data processing

We process personal data only to the extent necessary to provide a functioning website, handle enquiries, initiate or perform contracts, or on the basis of your consent.

Personal data is stored only for as long as necessary for the relevant purpose or as required by statutory retention obligations. Where tax or business-law retention obligations apply, the retention period in Austria is generally seven years.

3. Hosting and email

Our website is hosted by World4You Internet Services GmbH. According to your setup, the data location is within the EU. Our business email communication also runs via World4You.

Within the scope of hosting, the following data may in particular be processed: IP address, date and time of access, pages or files accessed, browser type and version, operating system, referrer URL, and server log files.

Purpose of processing: technical provision, system security, error analysis, and abuse prevention.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a secure and functional website).
Retention period: server log files are generally stored only as long as required for security purposes; at present, we assume 7 days.

If a data processing agreement has been concluded with World4You, processing is carried out on the basis of Art. 28 GDPR.

4. Contact and enquiries

If you contact us via contact form or email, we process the data you provide, in particular: company name, name of the contact person, email address, phone number, address or site address, requested services, and the content of your message.

Mandatory fields in forms are marked accordingly. Without the required information, we may not be able to process your enquiry properly.

Purpose of processing: handling your enquiry, contacting you, preparing quotations, arranging appointments, and carrying out pre-contractual measures.
Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures) and, where applicable, Art. 6(1)(f) GDPR (efficient communication with prospective and existing clients).
Retention period: enquiries are generally stored for up to 12 months unless a contractual relationship arises. If a contract is concluded, the data may be stored longer in accordance with statutory retention obligations.

5. Cookies and consent management

Our website uses cookies and similar technologies. Some cookies are technically necessary to provide the website properly. Other cookies or services are loaded or set only after your explicit consent, in particular statistics, analytics, maps, and marketing services.

We use technically necessary cookies on the basis of Section 165(3) TKG 2021 and/or Art. 6(1)(f) GDPR. Non-essential cookies and services are loaded only if you accept them via the cookie banner.

Legal basis for all non-essential cookies: Art. 6(1)(a) GDPR (consent).

You can withdraw or change your consent at any time with effect for the future via the Cookie Settings on our website.

6. Google Analytics

Where activated, this website uses Google Analytics, a web analytics service provided by Google. Google Analytics helps us understand how visitors use our website so that we can improve content and functionality.

In particular, the following data may be processed: technically processed or shortened IP address, device and browser information, pages visited, time spent, interactions on the website, and approximate location data.

Purpose of processing: audience measurement, statistical analysis, improvement of our website.
Legal basis: Art. 6(1)(a) GDPR (consent via cookie banner).
Recipients: Google Ireland Limited and, where applicable, Google LLC, USA.

7. Google Ads conversion tracking

We use Google Ads to promote our services. In this context, Google Ads conversion tracking may be used on our website.

If you reach our website via a Google ad and consent to the relevant cookies, it may be possible to determine whether certain actions were taken on our website, such as submitting a contact form.

Purpose of processing: measuring the effectiveness of our advertisements and optimising our online advertising.
Legal basis: Art. 6(1)(a) GDPR (consent).
Recipients: Google Ireland Limited and, where applicable, Google LLC, USA.

8. Google Maps

Google Maps may be embedded on our website in order to display our location and make our business easier to find.

Google Maps is loaded only after your consent. When Google Maps is loaded, your IP address and technical information about your browser and device may be transmitted to Google.

Purpose of processing: user-friendly display of our location.
Legal basis: Art. 6(1)(a) GDPR (consent).
Recipients: Google Ireland Limited and, where applicable, Google LLC, USA.

9. Google Fonts

If Google Fonts are embedded locally on our website, no personal data is transferred to Google for that purpose.

If Google Fonts are loaded externally from Google servers, personal data, in particular your IP address, may already be transmitted to Google when the website loads.

As local embedding has been recommended for your website, it should be checked technically that Google Fonts are actually hosted locally.

10. Google Business Profile

We maintain a Google Business Profile in order to make our company easier to find on Google Search and Google Maps. Google provides profile owners with performance and interaction data, such as views, searches, website clicks, phone calls, and direction requests in relation to the Business Profile.

Purpose of processing: measuring the visibility of our business profile and improving our online presence.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in the discoverability and analysis of our business presence on Google) and, where applicable, the legal bases used by Google for its own services.
Recipients: Google Ireland Limited and, where applicable, Google LLC, USA.

To the extent that such data is provided by Google only in aggregated form, we do not create any additional personal usage profiles from it ourselves.

11. Recipients and processors

Your personal data is disclosed to third parties only where this is necessary for contract performance, required by law, based on your consent, or carried out within the scope of data processing on our behalf.

Recipients or categories of recipients may include: hosting and email providers (World4You), IT and web service providers for technical support, Google services where consent has been granted or where the relevant service is used, and authorities or other public bodies where legally required.

12. Third-country transfers

Where Google services are used, a transfer of personal data to the USA cannot be ruled out. Google LLC is currently listed under the EU-U.S. Data Privacy Framework. Where required, transfers are additionally based on appropriate safeguards such as standard contractual clauses.

13. Retention period

We store personal data only for as long as necessary for the relevant purposes or as required by statutory retention obligations.

Relevant criteria include in particular: the duration of handling your enquiry, the existence of a contractual relationship, statutory retention obligations, and the expiry or withdrawal of consent.

14. Your rights

Under the GDPR, you have in particular the following rights: right of access, right to rectification, right to erasure, right to restriction of processing, right to data portability, right to object, and right to withdraw consent with effect for the future.

You also have the right to lodge a complaint with the Austrian Data Protection Authority.

Austrian Data Protection Authority
Barichgasse 40-42
1030 Vienna
Austria
Website: www.dsb.gv.at
Email: dsb@dsb.gv.at

15. Data security

We implement appropriate technical and organisational measures to protect your personal data against loss, destruction, unauthorised access, unauthorised alteration, or unlawful disclosure. Our website uses SSL/TLS encryption.

16. No newsletter / no automated email marketing

We currently do not operate a newsletter and do not carry out automated email marketing.

17. Changes to this privacy policy

We reserve the right to amend this Privacy Policy in the event of changes to our website, our services, or the legal situation. The current version published on our website shall apply.

18. Contact

If you have any questions about the processing of your personal data, you may contact us at any time:

MIN’AS
Email: office@min-as.at
Phone: +43 650 810 60 41