Wohi | Festl Explorer

Your data protection is important to us! We therefore process your data exclusively on the basis of the statutory provisions (GDPR, TKG 2003). In this data protection information, we inform you about the most important aspects of data processing on our website. This privacy policy applies for all services of Evonor e.U.

Contact details of the responsible person

This site is being operated by:

Evonor e.U.
Leon Schießwald
Wiener Straße 43, 4020 Linz, Austria
+43660 2883308
[email protected]

Additional information can be found: here
If you have any questions, please do not hesitate to contact us.

What categories of data do we collect?

Each time you visit our website, your IP address is stored in anonymized form. If you use our contact form, personal data is also stored.

Contact form: As part of your contact request, we need to collect and process certain personal data from you as your contact details. For example, we need your name and e-mail address in order to process your request.
Server log files: Whenever you visit our website, we automatically store certain data. This includes the IP address, type and version of browser used, time, date and website from which the user came to our site. The IP address is stored anonymously. A personal reference cannot be established. The legal basis for this processing is Art. 6 para. 1 lit. f GDPR.

Processing purposes and legal bases

We process your data for the following purposes:

to provide and operate our services
to develop, customize and improve our services
for other internal, statistical and research purposes
to improve our data security and fraud prevention capabilities
to get in contact with you

To whom is this data passed on?

We may share your data with our service providers in order to operate our services (e.g. storage of data via third party hosting services, provision of technical support, etc.).
We may also disclose your information in the following circumstances:

to investigate, detect, prevent or take action against unlawful activities or other misconduct;
to establish or exercise our rights of defense
to protect our rights, property or personal safety or the safety of our users or the public
in the event of a change of control of us or one of our affiliated companies (by way of a merger, acquisition or purchase of (substantially) all assets, etc.)
to collect, hold and/or manage your data using authorized third-party providers (e.g. cloud service providers), where appropriate for business purposes.
to work with third parties to improve your user experience. For the avoidance of doubt, we would like to point out that we may transfer, disclose or otherwise use non-personal data to third parties at our own discretion.

We also use the following third-party services:

Google Fonts: Our website uses Google Fonts, the privacy policy of Google Fonts can be found: here.
Hetzner Online GmbH: We store our data on the servers of Hetzner Online GmbH. You can find Hetzner's privacy policy here: here.

Your rights as a “data subject“

Right to information (Art. 15 GDPR)

You have the right to information about the personal data we process about you. In the case of a request for information that is not made in writing, we ask for your understanding that we may then require proof from you that you are the person you claim to be. Please contact us for this purpose. (Link to imprint)

Right to rectification (Art. 16 GDPR)

You have the right to request the rectification of inaccurate personal data. You can request a restriction of processing until the accuracy of the data can be established. To exercise this right, please contact us. (Link to imprint)

Right to erasure with its restrictions (Art. 17 GDPR)

You have the right to erasure in one of the following cases:

The personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
The processing is based on the data subject's consent, which is withdrawn and there is no other legal basis for the processing.
The data subject objects to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing for direct marketing purposes.
The personal data was processed unlawfully.
The deletion of personal data is necessary to fulfill a legal obligation under Union law or the law of the Member States to which the controller is subject.
The personal data was collected in relation to information society services offered to children (Art. 8 para. 1 GDPR).

There are restrictions to the right to erasure, e.g. if the data is used to defend legal claims (Art. 17 para. 3 GDPR). To exercise this right, the data subject must submit a request to the controller.

Right to restriction of processing (Art. 18 GDPR)

Article 18 of the GDPR gives the data subject the right to restrict processing. It serves to restrict the use of data without deleting it. If you consider the processing to be unlawful but refuse to have it erased, you can request the restriction of processing. To exercise this right, the data subject must submit a request to the controller.

Right to data portability (Art. 20 GDPR)

Describes the right to receive data in a structured, commonly used and machine-readable format and to transmit this data to another controller for processing. The right to data portability differs from the right of access in that the emphasis is on portability.

Right to object (Art. 21 GDPR)

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR. Points (e) or (f) relate to processing for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller or a third party, or processing for the purposes of the legitimate interests pursued by the controller or by a third party.

Right not to be subject to an exclusively automated decision (Art. 22 GDPR)

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you, except in certain cases (before entering into a contract, on a legal basis and with consent).

Right to lodge a complaint (Art. 77 GDPR)

Pursuant to Art. 77 GDPR, the data subject has the right to lodge a complaint with the data protection authority if they believe that the processing of their personal data violates the General Data Protection Regulation. It is therefore also possible to lodge a complaint about violations of other provisions of the GDPR.