Skip to content

Privacy Policy

Last updated: March 2022

Information pursuant to Article 13 of the General Data Protection Regulation 2016/679/EU (“GDPR”) regarding the processing of personal data in connection with visiting and using the optimuse.com website (“Website”).

Thank you for your interest in our website. Protecting your privacy is a top priority for us. Therefore, we process your personal data exclusively in accordance with the legal requirements of the GDPR and other relevant legal provisions.

Data protection regulations generally apply whenever the processing of personal data is involved. The terms used in this Privacy Policy are defined in the GDPR. The broad term “processing” of personal data refers to any operation or set of operations performed on personal data. Any information that enables us or third parties to potentially identify you personally may be considered personal data. In this case, you are considered a data subject within the meaning of Article 4(1) of the GDPR.

You are not required to provide any data. Data processed automatically when you access the website is either not personal data or is stored only for a short period of time.

1. Data Controller and Contact Information

Data controller within the meaning of Article 4(7) of the GDPR:

Dominik Pezzei
Lembergstraße 1
1020 Vienna
Austria

Email: legal@optimuse.com
Alternatively, you can contact us via the contact form.

2. Processing of Personal Data

2.1 Processing of Access Data When Visiting Our Website

(a) Nature and scope of data processing: You can visit our website without providing any personal information. When you access our website, only certain access data is automatically processed in so-called server log files. In this context, the following data in particular is processed:

  • Name of the website visited;
  • browser type and version used;
  • the user’s operating system;
  • the website visited previously (referrer URL);
  • Time of the server request;
  • Amount of data transferred;
  • Hostname of the accessing computer or IP address used.

This information does not allow us to identify you personally. However, IP addresses are considered personal data within the meaning of the GDPR.

(b) Legal basis and purpose: The purpose of this data processing is to establish and maintain the technical security of our website, to improve the quality of the website, and to generate non-personal statistical information. The processing is based on our legitimate interest pursuant to Art. 6(1)(f) of the GDPR in achieving the aforementioned purposes.

(c) Retention Period: Server log files are generally automatically deleted after fourteen (14) days at the latest.

2.2 Contacting Us

(a) Nature and scope of data processing: If you contact us via the contact form provided on our website, we use the data you provide to process and respond to your inquiry. The associated data processing is necessary to respond to your inquiry, as we would otherwise be unable to contact you. Required fields are marked with an * symbol. Certain additional information may be provided voluntarily.

The provisions of this section also apply accordingly to the processing of data resulting from direct contact requests made using the contact information provided on our website, without using the contact form.

(b) Legal Basis and Purpose: The purpose of data processing is to facilitate communication with website users. We respond to your inquiry based on our legitimate interest pursuant to Article 6(1)(f) of the GDPR in maintaining a properly functioning contact system, which is a prerequisite for providing our services. In the event of repeated contact requests, we may also store your data for other purposes, about which you will be informed separately.

(c) Retention Period: We delete your inquiries and your contact information once the inquiry has been fully resolved. Your data is generally stored for a period of six (6) months and then deleted, provided we do not receive any follow-up inquiries and the data does not need to be further processed for other purposes.

2.3 Newsletter

(a) Nature and Scope of Data Processing: You can subscribe to our newsletter via the website. To do so, you simply need to provide your email address. The newsletter informs you about news regarding our services and is sent exclusively to email addresses provided by interested users.

If you no longer wish to receive the newsletter, you can unsubscribe at any time by notifying us via the contact address provided in Section 1 or by clicking the link at the end of each newsletter.

(b) Legal basis and purpose: The data mentioned above is processed in connection with the newsletter for the purpose of direct marketing and is necessary for sending the newsletter. Under no circumstances will a newsletter or other electronic advertising be sent without your prior consent in accordance with Art. 6(1)(a) of the GDPR, which we obtain directly from you via our website.

(c) Retention Period: All data collected for the purpose of sending the newsletter will be deleted within seven (7) days after you unsubscribe from the newsletter. In addition, we automatically delete your data if you remain inactive for a period of three (3) years—that is, if you do not interact with any of our newsletters.

3. Storage Technologies and Similar Technologies

3.1 Cookies

If you provide us with your explicit consent pursuant to Art. 6(1)(a) of the GDPR, so-called “cookies” are used on our website. You may revoke your previously given consent at any time. If you do not provide your consent, we limit the use of cookies to those that are technically necessary and required for the proper functioning of our website. To the extent that personal data is involved, processing is based on our legitimate interest pursuant to Article 6(1)(f) of the GDPR.

Cookies are small data files that are stored on your device. They help us make our website more user-friendly. They are set by a web server and sent back to it as soon as a new connection is established, in order to recognize the user and their settings. In this sense, a cookie is a small local text file that assigns a specific identity consisting of numbers and letters to your device.

Cookies can serve various purposes, such as maintaining the functionality of websites with regard to modern features and user experience. The actual content of a specific cookie is always determined by the website that created it.

Cookies always contain the following information:

  • Name of the cookie;
  • Name of the server from which the cookie originates;
  • The cookie’s ID number;
  • an expiration date, after which the cookie is automatically deleted.

Cookies can be categorized by type and purpose as follows:

Necessary or essential cookies

Technically necessary cookies, also known as essential cookies, are required for websites to function properly by enabling basic functions such as page navigation and access to protected areas. Without such cookies, a website generally cannot function fully. Necessary cookies are always first-party cookies. They can only be disabled in your browser settings by rejecting all cookies without exception. On our website, their use is legally permitted even without prior consent.

Preference Cookies

Preference cookies allow websites to store information that affects the website’s appearance or behavior, such as your preferred language or the region you are in.

Analytics Cookies

Performance or analytics cookies help website operators understand how users interact with websites by collecting and analyzing information. These cookies are used to gather information about user behavior. Specifically, the following information may be stored:

  • subpages visited, including duration and frequency;
  • the order in which pages were visited;
  • search terms used that led to a visit to the respective website;
  • mouse movements, particularly scrolling and clicking;
  • country and region of access.

These cookies make it possible to determine what a user is interested in and, as a result, to tailor a website’s content and functionality to the user’s individual needs.

Tracking Cookies

Tracking cookies are used to track users across websites. Their purpose is to display advertisements that are relevant and appealing to the respective user, thereby providing value to publishers and third-party advertisers. This is achieved by analyzing your user behavior and identifying interests, which in turn enable targeted advertising.

In terms of storage duration, cookies can also be categorized as follows:

Session Cookies

These cookies are deleted automatically as soon as you close your current browser session.

Persistent cookies

These cookies—used, for example, to store your language settings—remain stored on your device until a predefined expiration date is reached or until you manually delete them.

Cookies can also be distinguished based on their origin:

First-party cookies

These cookies are used by us and set directly by our website. Browsers generally do not make them accessible across domains, which is why the user can only be recognized by the site from which the cookie originates.

Third-Party Cookies

These cookies are not set by the website operator itself, but by third parties when you visit a specific website, particularly for advertising purposes, such as tracking browsing behavior. They enable, for example, the analysis of various page views and their frequency.

You can change your cookie settings by clicking “Edit Cookie Settings” in the website footer and, for example, withdraw your consent. In addition, you have the option to adjust your browser settings so that cookies are either generally rejected or permitted only in certain ways, such as by limiting the rejection to third-party cookies. However, if you change your browser’s cookie settings, you may no longer be able to use our website to its full extent.

You can also use your browser settings to delete all cookies that are already stored on your device. This constitutes a withdrawal of your consent.

3.2 Local Storage and Session Storage

We also use what is known as local storage and session storage—that is, the storage capacity of your browser software—to store certain data on your device under the same conditions as cookies.

Your browser maintains separate local storage and session storage for each domain. Unlike cookies, this method is more secure and faster, as the data is not automatically transmitted to the respective server with every HTTP request but remains stored by your browser. In addition, a larger volume of data—at least 5 megabytes—can be stored. Please note that, unlike session storage data, local storage data has no expiration date and remains on your device even after you close your browser session.

If you wish to clear your local storage or session storage, you can clear your browser’s cache. The cache serves as temporary storage to reduce server delays and speed up your browsing experience by storing web content for reuse. Most browsers group the settings for cookies, local storage, and session storage under “Website Data.”

Since local storage requires JavaScript, disabling JavaScript can also prevent websites from accessing it and storing data in this way. Please note, however, that disabling JavaScript can lead to significant limitations in usability. Certain features on websites will no longer be fully functional, and controls may no longer work or may function only partially.

3.3 Tracking Pixels

We also use so-called tracking pixels, also known as pixel tags or web beacons, to collect certain data via our website. Tracking pixels are transparent images that are practically invisible because they consist of a single pixel. The tracking pixel is placed on a server and loaded from there as soon as a corresponding subpage of our website is accessed.

They enable us to detect that a subpage has been accessed and to track any subsequent user activity on that page for the purpose of tailored marketing activities. In particular, the following information can be collected using tracking pixels:

  • operating system used;
  • browser type and version used;
  • time of access;
  • user behavior on the visited page;
  • the user’s IP address and approximate location.

Tracking pixels are used on our website based on our legitimate interest pursuant to Art. 6(1)(f) of the GDPR to analyze user traffic in a modern manner. Since a tracking pixel is simply an image loaded from a server, its lifespan is limited to your current browser session. However, information collected via a tracking pixel may subsequently be stored in cookies.

4. Links to Third-Party Websites

We use links to third-party websites on our website. If you click on one of these links, you will be redirected directly to the respective site. The website operators can only see that you previously visited our website. Accordingly, we generally refer you to the separate privacy policies of these websites.

5. Third-Party Services

5.1 Google Services

The services described below are provided to us by Google Ireland Limited, Gordon House, 4 Barrow Street, Dublin, Ireland (“Google Ireland”).

Google Ireland intends to process data from users in the EEA in data centers within Europe to the extent possible. However, processing activities may be outsourced to group companies, in particular to the parent company Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, may occur. An overview of Google data centers is available at https://www.google.com/about/datacenters/inside/locations/?hl=en .

For more information on the use of data by Google Ireland or affiliated companies, as well as on settings or the right to object, please see Google’s Privacy Policy at https://policies.google.com/privacy?hl=en .

5.1.1 Google Tag Manager

On our website, we use Google Tag Manager (“GTM”), a service that allows us to manage website tags via a specialized interface. In this context, we can implement code snippets such as tracking code or tracking pixels on our website without having to directly modify the source code.

GTM does not collect or store any data; it merely transmits it. GTM does not use cookies or similar technologies and serves exclusively as a tool for managing other tools and services within the scope of our online offering. GTM triggers other tags, which in turn may collect data. However, GTM does not access this data but merely sends a request to the relevant Google servers.

We use GTM based on our legitimate interest pursuant to Art. 6(1)(f) of the GDPR in the efficient and cost-effective management of the services used on our website. [Note: This is not without its issues even without consent.] The processing is carried out for the purpose of better tailoring our offerings to the interests of our users by implementing services more effectively and, in this context, generating statistical analyses.

5.1.2 Google Analytics

We use the web analytics and online marketing tool “Google Analytics” on our website, which enables us to analyze user behavior. Among other things, the tool provides us with information about how long you stay on a subpage of our website or which links are clicked. Tracking is carried out via JavaScript libraries provided by Google Ireland.

Google Analytics uses cookies or similar storage technologies that may be stored on your device upon your consent. With regard to Google Analytics, Google Ireland acts as our data processor within the meaning of Article 28 of the GDPR.

As part of our use of Google Analytics, certain access data is transmitted to Google’s servers and stored there. Based on our instructions, Google Ireland uses the collected information to analyze the use of our website, generate reports on website activity, and provide us with other services related to the use of our website and the internet.

The IP address transmitted by your browser as part of Google Analytics is not combined with other data held by Google. To protect you as comprehensively as possible, we use IP anonymization by adding “anonymizeIP” to our website’s code. This ensures that your IP address is masked, so that all relevant data is collected anonymously. Only in exceptional cases is the full IP address transmitted to a Google server and truncated there.

We base the use of Google Analytics on your prior consent in accordance with Art. 6(1)(a) of the GDPR. Data regarding the use of our website is automatically deleted after the retention period of fourteen (14) months that we have specified has expired.

5.2 Mapbox

We have integrated an API from Mapbox, Inc., 740 15th Street NW, 5th Floor, Washington, DC 20005 (“Mapbox”), into our website to provide you with interactive geographic visualizations. In this context, Mapbox acts as our data processor within the meaning of Article 28 of the GDPR.

In particular, this integration enables us to display our location to users. In this context, Mapbox collects and processes certain access data, as described in Section 2.1, specifically your IP address, to the extent necessary to provide and maintain the service. This specifically concerns establishing the respective connection and the necessary communication with Mapbox’s servers. Some data regarding the use of the service on our website may be used by Mapbox to further improve its own service.

When you visit a page on our website that incorporates Mapbox, a connection is established with Mapbox’s servers, and certain information is stored on your device using cookies or similar technologies. Any processing of your data is based on our legitimate interest pursuant to Article 6(1)(f) of the GDPR to make our website attractive to users and to visually present geographic information.

Any transfer of your data to the United States by Mapbox resulting from the integration of the service on our website is based on standard data protection clauses within the meaning of Article 46(2)(c) of the GDPR, which have been adopted by the European Commission.

For more information on Mapbox’s general handling of personal data, please see Mapbox’s Privacy Policy at https://www.mapbox.com/legal/privacy .

6. Transfer of Your Data and Recipients

To carry out the processing activities described in this Privacy Policy, we will transfer your personal data to the following recipients or make it available to them:

Within our organization, your data will only be made available to those departments or employees who need it to fulfill their respective obligations or our respective obligations.

In addition, external processors engaged by us will receive your data to the extent that they need it to perform their respective services. In this context, the mere possibility of accessing personal data is sufficient. All data processors we engage process your data in strict compliance with the requirements of the GDPR and exclusively on the basis of our explicit instructions.

In connection with our website, the following data processors, in particular, may have access to your personal data:

  • Amazon Web Services Inc.
  • Google Ireland Limited
  • Wix.com Ltd

Finally, we may transfer your data to independent data controllers to the extent that this is absolutely necessary and we are legally obligated to do so. Such data controllers may include, for example, government agencies or courts within the scope of their legal jurisdiction.

7. Rights of the Data Subject

You may exercise the following rights in connection with our processing of your personal data at any time and free of charge by sending us a message via one of the contact methods listed in Section 1. We will respond to your request as soon as possible and no later than within one (1) month. In exceptional cases, restrictions on these rights may apply, for example, if the rights of third parties would otherwise be infringed.

  • Right of access and further information regarding your personal data processed by us pursuant to Art. 15 of the GDPR;
  • Right to rectification of data that was incorrectly collected or has become inaccurate or incomplete, in accordance with Article 16 of the GDPR;
  • Right to erasure of data that (i) is not necessary for the purposes of data processing, (ii) is being processed unlawfully, (iii) must be erased due to a legal obligation, or (iv) are the subject of an objection to processing, in accordance with Article 17 of the GDPR;
  • Right to temporary restriction of processing under certain conditions pursuant to Article 18 of the GDPR;
  • Right to withdraw consent to the processing of your personal data at any time. Please note that the withdrawal of your consent does not retroactively affect the lawfulness of processing based on that consent, but only applies to future processing activities, in accordance with Article 7(3) of the GDPR;
  • Right to object to any processing of your data based on our legitimate interest, for reasons arising from your particular situation, or to processing for direct marketing purposes pursuant to Article 21(1) and (2) of the GDPR;
  • Right to have your personal data, which is processed on the basis of your consent, transferred to you in a machine-readable format or, upon request, directly to another controller in accordance with Article 20 of the GDPR;
  • The right to lodge a complaint with a supervisory authority regarding our processing of your data. In Austria, a complaint must meet the requirements of Section 24 of the Data Protection Act and be addressed to the Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna, email: dsb@dsb.gv.at, phone: +43 1 52 152-0. For your convenience, the Austrian Data Protection Authority provides forms at https://www.dsb.gv.at/dokumente .