Privacy policy

In this Privacy Policy, we would like to inform you about which personal data (hereinafter referred to as “data”) we collect, how we use it, and what rights you have. This policy applies to all our services, websites, mobile applications, and social media profiles (collectively referred to as the “online offering”).

Denise Herrera Peña / Maicol Herrera Peña
nice to meet me OG
Hauserstr. 4
4040 Linz
Österreich

Email: support@nicetomeetme.at
Impressum: https://nicetomeetme.at/impressum/

Contact Data Protection Officer

If you have any questions about data protection, you can contact our data protection officer directly:

Denise Herrera Peña
Hauserstr. 4
4040 Linz
Österreich

E-Mail: support@nicetomeetme.at

Here you can find an overview of the data we process, why we process it, and who is affected:

Types of Data Processed

  • Personal Data (e.g., names, addresses)
  • Content Data (e.g., entries in online forms)
  • Contact Data (e.g., email addresses, phone numbers)
  • Meta/Communication Data (e.g., device information, IP addresses)
  • Usage Data (e.g., visited websites, interest in content, access times)
  • Location Data (e.g., geographic location of a device or person)
  • Payment Data (e.g., bank details, invoices, payment history)

Categories of affected persons:

  • Business Partners and Contractual Partners
  • Interested Parties
  • Communication Partners
  • Customers
  • Users (e.g., website visitors or users of online services)

Purposes of processing:

  • Providing Our Online Services and Improving User Experience
  • Analyzing Visitor Activity
  • Office and Organizational Tasks
  • Cross-Device Tracking (processing user data across devices for marketing purposes)
  • Direct Marketing (e.g., via email or postal mail)
  • Interest-Based and Behavioral Marketing
  • Responding to Contact Inquiries and Communication
  • Conversion Tracking (measuring the success of marketing activities)
  • Creating User Profiles (Profiling)
  • Remarketing
  • Reach Measurement (e.g., tracking access numbers or visitor recognition)
  • Security Measures
  • Tracking (e.g., use of cookies or interest-based profiling)
  • Fulfillment of Contractual Obligations and Customer Service
  • Management and Response to Inquiries
  • Target Group Creation (e.g., for marketing purposes or personalized content)

Relevant legal bases

We process your data only in accordance with the General Data Protection Regulation (GDPR). Here are the key legal bases:

  • Consent (Art. 6(1)(a) GDPR): When you have given your consent for data processing, e.g., for newsletters.
  • Contract Performance (Art. 6(1)(b) GDPR): When your data is necessary to fulfill a contract or to take steps at your request prior to entering into a contract.
  • Legal Obligation (Art. 6(1)(c) GDPR): When we are legally required to process your data, e.g., for compliance with tax obligations.
  • Legitimate Interests (Art. 6(1)(f) GDPR): When processing is necessary to protect our legitimate interests, e.g., to improve our services or to safeguard against misuse.

We protect your data in accordance with legal requirements and implement technical and organizational measures to ensure a high level of security. In doing so, we consider the state of the art, implementation costs, and the risks to your rights and freedoms.

Our security measures include:

  • Ensuring the confidentiality, integrity, and availability of your data.
  • Controlling physical and electronic access to data, as well as its transfer, input, and storage.
  • Implementing procedures that enable your rights, such as data deletion or protection against misuse.
  • Privacy-friendly settings and the use of secure hardware and software.

SSL Encryption (https):
Data transmitted through our online services is encrypted using SSL (Secure Socket Layer). You can identify a secure connection by the prefix https:// in your browser’s address bar.

As part of processing your data, we may share or disclose it to other entities, companies, or individuals. Recipients may include, for example:

  • Payment Service Providers for processing payments
  • Service Providers assisting us with IT tasks
  • Shipping Companies delivering your orders
  • Providers of Services and Content integrated into our website

We ensure that your data is shared only in compliance with legal requirements. To protect your data, we enter into appropriate agreements or contracts with all recipients.

We process your data in third countries (outside the European Union (EU) or the European Economic Area (EEA)) only in compliance with legal requirements.

This means:

  • Your data is transferred only to countries with a recognized adequate level of data protection.
  • If this is not the case, we ensure the protection of your data through EU Commission Standard Contractual Clauses, certifications, or binding internal data protection regulations.
  • In specific cases, we obtain your consent or rely on other legal bases (Art. 44–49 GDPR).

For more information, please visit the EU Commission’s website: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_en.

What Are Cookies?
Cookies are small text files stored on your device to save or retrieve specific information. They help us, for example, save your login status, shopping cart contents, or preferred settings. Cookies can be used for various purposes, such as ensuring functionality, enhancing security, or analyzing visitor traffic.

Cookie Consent
We use cookies in compliance with legal regulations. Certain cookies essential for the functionality of our website do not require your consent. For all other cookies, we obtain your prior consent, which you can withdraw at any time.

Legal Basis for the Use of Cookies

  • If you consent to the use of cookies, we process your data based on Art. 6(1)(a) GDPR (Consent).
  • For essential cookies that ensure the functionality of our online services, processing is based on our legitimate interests in accordance with Art. 6(1)(f) GDPR or for the fulfillment of a contract (Art. 6(1)(b) GDPR).

Cookie Storage Duration

  • Temporary Cookies (Session Cookies): These are deleted as soon as you leave our online services or close your browser.
  • Permanent Cookies: These remain stored on your device for a longer period (up to two years) to save your login status or preferences. The exact duration is specified in our Cookie Policy if necessary.

Withdrawal and Objection (Opt-Out)
You can object to the use of cookies at any time:

Cookie Consent Management
We use a cookie management tool to manage your consents. Your consent is stored either in cookies or on our servers and can be revoked by you at any time. A pseudonymous user identifier is used to associate your preferences.

Cookie Settings
You can change your cookie settings at any time here: Cookie Einstellungen

How We Process Your Data
We process your data when you contact us, make an inquiry, or enter into a contract with us. This includes data such as your name, address, payment details, and orders.

Why We Process Your Data

  • To fulfill contracts with you or respond to your inquiries.
  • For administrative purposes, such as accounting and organization.
  • To address your questions and concerns.

Sharing Data with Third Parties
We only share your data if:

  • It is necessary, e.g., with shipping providers or payment processors.
  • We are legally required to do so.
  • You have explicitly consented.

Customer Account
If you create a customer account with us, we store the necessary data to enable its use and prevent misuse. After you terminate your account, your data will be deleted unless legal retention obligations apply.

Analytics and Market Research
We use your data to identify trends, improve our offerings, and plan marketing activities. These analyses are conducted anonymously or pseudonymously, ensuring that no personal identification is possible.

Shop and E-Commerce
To allow you to purchase products or services from us, we process data such as your contact information, payment details, and order history. When necessary, we work with third parties, e.g., for delivery or payment processing.

Data Retention
We store your data only as long as necessary or legally required:

  • Contract Data: 4 years after the contract ends.
  • Tax-Related Data: Up to 10 years.

Types of Processed Data

  • Personal Data: e.g., names, addresses
  • Payment Data: e.g., bank details, invoices
  • Contact Data: e.g., email addresses, phone numbers
  • Contract Data: e.g., contract details, duration
  • Usage Data: e.g., visited websites, interest in content
  • Meta/Communication Data: e.g., IP addresses, device information

Legal Bases

  • Contract Fulfillment (Art. 6(1)(b) GDPR)
  • Legal Obligations (Art. 6(1)(c) GDPR)
  • Legitimate Interests (Art. 6(1)(f) GDPR)

Payment Options
We offer you various payment options, processed through secure and efficient payment service providers. These include banks, credit institutions, and other providers like PayPal or Stripe.

What Data Is Processed?
Payment service providers process the data necessary to complete your transactions, including:

  • Personal Data: e.g., name and address
  • Bank Data: e.g., account number, credit card number, passwords, and TANs
  • Contract and Transaction Data: e.g., contract details, amount, and recipient information

How Do Payment Service Providers Operate?

  • Your payment data is processed directly by the providers and stored with them.
  • We do not receive full account or credit card details, only a confirmation or rejection of the payment.
  • In some cases, payment service providers may transmit your data to credit agencies, e.g., for identity and credit checks. For more details, please refer to the privacy policies of the respective providers.

Legal Basis for Processing

  • Contract Fulfillment (Art. 6(1)(b) GDPR): When you make a payment, processing your data is necessary to fulfill the contract.
  • Legitimate Interests (Art. 6(1)(f) GDPR): We have a legitimate interest in offering you secure and efficient payment options.

Service Providers and Links to Their Privacy Policies

Important Note
The terms and privacy policies of the respective payment service providers apply to payment transactions. Please refer directly to the providers for information about your rights, such as withdrawal or access to data.

Secure and Efficient Hosting
We use the services of professional web hosting providers to deliver our online services securely and reliably. These services include infrastructure and platform management, storage, databases, as well as maintenance and security solutions.

What Data Is Processed?

  • Your IP Address
    Your IP address is necessary to deliver our content to your browser.
  • Data You Enter on Our Website
    This includes information provided through forms or other input fields.
  • Access and Log Data
    We process the following access and log data:
    • Visited websites and files
    • Date and time of access
    • Transferred data volume
    • Browser type and version
    • Operating system and referrer URL (previously visited page)

Email Sending and Hosting
Our hosting services include the sending, receiving, and storage of emails. The following data is processed:

  • Sender and recipient addresses
  • Email contents and technical information (e.g., involved providers)

Important Note on Emails
Please note that emails on the internet are not fully encrypted by default. While they are generally encrypted during transmission, they may not be encrypted on the servers of the providers. Therefore, we cannot take responsibility for the transmission path between the sender and the recipient.

Collection of Access Data and Log Files
We and our hosting providers collect access data (so-called server log files) to:

  • Ensure the security of our servers (e.g., protection against DDoS attacks)
  • Monitor server stability and load

Legal Basis
We process this data based on our legitimate interests in accordance with Art. 6(1)(f) GDPR to ensure secure and efficient use of our online services.

How We Process Your Data When You Contact Us
If you contact us (e.g., via a contact form, email, phone, or social media), we process the data you provide to respond to your inquiry or carry out the requested actions.

Why We Process Your Data

  • To answer your questions or provide requested information.
  • As part of an existing contract or to prepare for entering into a contract.
  • Based on our legitimate interest in addressing your concerns quickly and reliably.

What Data Is Processed?

  • Personal Data: e.g., your name, address.
  • Contact Data: e.g., your email address, phone number.
  • Content Data: e.g., information you enter into a form.
  • Usage Data: e.g., visited websites, interest in content, access times.
  • Meta/Communication Data: e.g., device information, IP address.

Legal Bases

  • Contract Fulfillment (Art. 6(1)(b) GDPR): When you contact us in connection with a contract.
  • Legitimate Interests (Art. 6(1)(f) GDPR): To process your inquiries efficiently.

Services and Providers Used
We use services such as Weclapp to manage and process contact inquiries. For more information, please visit:

How We Use Your Data
We only send you our newsletter if you have given your consent or if a legal basis allows it. The newsletter includes information about us, our services, promotions, and offers. When signing up, your email address and optionally your name (for personalized communication) are sufficient.

Secure Sign-Up Process
We use the double opt-in process to ensure no one subscribes your email address without your knowledge. After signing up, you will receive an email to confirm your subscription. During this process, we store:

  • Your IP address
  • The date and time of your subscription and confirmation

Storage and Deletion

  • After unsubscribing, we retain your email address for up to three years to provide proof of your prior consent. However, you may request immediate deletion at any time.
  • Blacklist
    In cases of permanent objections, we store your email address in a suppression list to ensure you do not receive any further emails from us.

Analysis and Performance Measurement
Our newsletters include a small file (a web beacon) that transmits technical information, such as your browser, system, and access time, when opened. This data helps us:

  • Improve the technical functionality of the newsletter
  • Determine if and when newsletters are opened and which links are clicked

Legal Bases

  • Consent (Art. 6(1)(a) GDPR): When you provide us with your explicit consent.
  • Legitimate Interests (Art. 6(1)(f) GDPR): To ensure a user-friendly and secure newsletter system.

Withdrawal and Objection (Opt-Out)
You can unsubscribe from our newsletter at any time using the link at the end of each newsletter or by contacting us via email. Note that unsubscribing will also stop performance tracking.

Service Used
We use Brevo as our service provider for newsletter distribution. For more details, refer to:
Brevo Privacy Policy

Why We Use Web Analytics
Web analytics helps us better understand and optimize the use of our online services. It allows us to determine:

  • When our offerings are most frequently used
  • Which content is particularly popular
  • Areas where improvements are needed

Additionally, we test different versions of our website to make it more user-friendly.

What Happens

  • Pseudonymous user profiles may be created, e.g., with information about visited pages, used features, or technical details like browser or system.
  • If you agree, location data may also be processed.
  • Your IP address is stored only in a shortened form (IP masking) to protect your privacy.

What We Do Not Store
We do not store clear data, such as your name or email address.
Our analytics tools do not know your identity but process only pseudonymous data.

Legal Basis for Processing

  • With Consent (Art. 6(1)(a) GDPR): When you provide your consent.
  • Legitimate Interests (Art. 6(1)(f) GDPR): To provide an efficient and user-friendly service.

Types of Processed Data

  • Usage Data: The pages you visit, what interests you, and how long you stay on our site.
  • Meta/Communication Data: Technical information, such as your IP address or device details.

Security Measures

  • IP Masking: Your IP address is anonymized.

What Happens During Processing?
We use personal data to display advertisements and content that may interest you. For this purpose, pseudonymous user profiles are created, which may include:

  • Visited websites and used content
  • Your browser and device information
  • Usage times and, if consented, location data

Your IP address is anonymized (IP masking), and no clear data, such as your name or email address, is stored.

Why Do We Do This?

  • To display interest-based ads (Remarketing).
  • To measure the effectiveness of advertising campaigns (Conversion Tracking).
  • To analyze statistics and target audiences.

How Long Do We Store Cookies?
Unless stated otherwise, cookies are stored for up to two years.

Legal Bases

  • Consent (Art. 6(1)(a) GDPR): If you provide your consent.
  • Legitimate Interests (Art. 6(1)(f) GDPR): To provide an efficient and user-friendly service.

Objection and Opt-Out
You can disable cookies in your browser (note that this may limit functionality). For additional opt-out options, we recommend:


Services and Providers Used

Google Analytics
Hilft uns, die Nutzung unserer Webseite zu verstehen und zu verbessern.

Google Ads: Displays targeted ads and measures their effectiveness.

Facebook Pixel: Shows relevant ads and tracks their performance.

Why Do We Use Social Networks?
We maintain profiles on social networks to communicate with you and provide information about us and our services.

What Happens to Your Data?

  • Your data may be processed outside the EU, which could pose risks to your rights.
  • Social networks often use cookies to analyze your behavior and display personalized ads, even outside the platforms.
  • If you are a network member and logged in, data may be stored across devices and linked to your profile.

Who Processes the Data?
The respective social network platforms process your data according to their own privacy policies. For details, refer to the privacy policies of the platforms you use.

Types of Processed Data

  • Personal Data: e.g., name, address
  • Contact Data: e.g., email address, phone number
  • Usage Data: e.g., accessed content, access times
  • Meta/Communication Data: e.g., IP addresses, device information

Legal Bases

  • Legitimate Interests (Art. 6(1)(f) GDPR): For communication and reach analysis.

Instagram

Facebook (Fanpage)

YouTube

TikTok

LinkedIn

We integrate functional and content elements from third parties into our online services, such as graphics, videos, or social media buttons. To display these contents, third parties process your IP address. Additionally, these contents may use cookies or pixel tags (invisible graphics) to collect information about your usage behavior for statistical or marketing purposes.

Legal Basis Notes

  • Data processing is based on your consent (Art. 6(1)(a) GDPR) when we obtain it.
  • Without consent, data is processed based on legitimate interests (Art. 6(1)(f) GDPR), e.g., for a user-friendly online experience.

Types of Processed Data

  • Usage Data: e.g., visited websites, access times
  • Meta/Communication Data: e.g., IP addresses, device information
  • Location Data: e.g., geographic position

Affected Individuals

  • Users of our online services
  • Communication partners

Services and Providers Used

  1. Facebook Plugins and Content

  2. Google Fonts

  3. Google Maps

  4. reCAPTCHA

  5. YouTube

  6. Vimeo

We delete your personal data as soon as your consent is withdrawn or other legal bases no longer apply (e.g., when the purpose of processing is fulfilled and the data is no longer needed).

If deletion is not possible because your data is required for other legally permissible purposes, we restrict its processing to those purposes only. For example:

  • Data that must be retained due to commercial or tax law obligations.
  • Data necessary for asserting, exercising, or defending legal claims.

Further details about the deletion of your data can be found in the respective sections of this Privacy Policy.

Please review this Privacy Policy regularly. We update it whenever changes in the processing of your personal data make it necessary.
If changes require your active participation (e.g., renewed consent) or individually affect you, we will inform you in advance.

If this Privacy Policy includes addresses or contact details of companies or organizations, please note that these may change over time. Verify the information before contacting them to ensure accuracy.

Under the General Data Protection Regulation (GDPR), you have various rights, particularly those outlined in Articles 15 to 21 GDPR:

  • Right to Object
    You have the right to object at any time to the processing of your personal data based on Art. 6(1)(e) or (f) GDPR for reasons arising from your particular situation. This also applies to profiling based on these provisions.
    If your personal data is processed for direct marketing purposes, you may object to such processing at any time, including profiling related to direct marketing.

  • Right to Withdraw Consent
    You can withdraw your consent for the processing of your data at any time.

  • Right of Access
    You have the right to request confirmation of whether your personal data is being processed. Additionally, you can request access to this data, further information about its processing, and a copy of the data, in accordance with legal requirements.

  • Right to Rectification
    You have the right to request the correction of inaccurate personal data or the completion of incomplete personal data concerning you.

  • Right to Erasure and Restriction of Processing
    You can request the immediate deletion of your personal data. Alternatively, you have the right to request restriction of processing, provided this complies with legal requirements.

  • Right to Data Portability
    You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format, or to request the transfer of this data to another controller, where technically feasible.

  • Right to Lodge a Complaint with a Supervisory Authority
    If you believe that the processing of your personal data violates the GDPR, you have the right to file a complaint with a supervisory authority. You may do so in the Member State of your habitual residence, workplace, or where the alleged violation occurred.

This section provides an overview of the terms used in this privacy policy. Many of these terms come directly from legal texts, particularly Art. 4 GDPR, and are legally binding. The explanations below are intended to help you better understand these terms. They are listed alphabetically.

  • Conversion Tracking:
    This method measures the effectiveness of our marketing efforts. A cookie is stored on your device and retrieved when you visit our target website. For example, it helps us determine if an ad was successful.

  • Credit Check (Bonitätsauskunft):
    Automated decisions, such as rejecting a purchase on account or an online loan application, are based on automatic data processing. These decisions are permissible under Art. 22 GDPR only if you consent, they are necessary for contract fulfillment, or national laws allow them.

  • Cross-Device Tracking:
    This tracks behavioral and interest information across devices to better understand you and display targeted content or ads. Your data remains pseudonymized and is not directly linked to you as a person.

  • IP Masking:
    This process removes the last part of your IP address to ensure it cannot be uniquely linked to you. It protects your data, particularly in online marketing.

  • Interest-Based and Behavioral Marketing:
    This involves tailoring content and ads to match your interests, based on your browsing behavior, interactions, and other pseudonymized data.

  • Conversion Tracking:
    This process helps us determine the success of marketing efforts, such as ads. A cookie is used to track your visit to the target website.

  • Personal Data:
    This includes any information related to you as an individual or that makes you identifiable, such as your name, address, online identifiers (e.g., cookies), or location data.

  • Profiling:
    Automated processes analyze personal aspects like interests, behavior, or location to create personalized content or ads. The data remains pseudonymized.

  • Reach Measurement (Web Analytics):
    This analysis evaluates website visitor flows to optimize content and better align it with your needs. Cookies or web beacons are used, and the data remains pseudonymized.

  • Remarketing (Retargeting):
    This process reminds you of products you viewed on our website through personalized ads on other websites.

  • Location Data:
    This indicates where your device is located and can be used for map services or location-based information.

  • Tracking:
    Tracking monitors your behavior across multiple websites to display personalized content or ads.

  • Controller:
    The individual or organization responsible for determining how and why your personal data is processed.

  • Processing:
    Processing includes all operations performed on your data, such as collecting, storing, transferring, or deleting it.

  • Audience Targeting (Custom Audiences):
    Audience targeting defines user groups for personalized advertising. Similar groups (Lookalike Audiences) receive personalized content based on shared interests.