Datenschutz | evilseven

Privacy Policy

Evilseven
Hans Hruschka Gasse 13
2325 Himberg

+436645289787
office@evilseven.com
www.evilseven.com

Data Protection Officer

Herr Martin Müller

1.1 We are pleased that you are visiting our website and thank you for your interest. Below, we inform you about how your personal data is handled when using our website. Personal data is all data by which you can be personally identified.

1.2 The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Martin Müller, Hans Hruschka-Gasse 13, 2325 Himberg, Austria, Tel.: +436645289787, Email: office@evilseven.vom. The controller responsible for the processing of personal data is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data.

2) Data Collection When Visiting Our Website

2.1 When using our website for informational purposes only, i.e., if you do not register or otherwise provide us with information, we only collect data that your browser transmits to the page server (so-called “server log files”). When you access our website, we collect the following data, which is technically necessary for us to display the website to you:

Our visited website

Date and time at the moment of access

Amount of data sent in bytes

Source/reference from which you accessed the page

Browser used

Operating system used

IP address used (if applicable: in anonymized form)

Processing is carried out in accordance with Art. 6 (1) lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or used in any other way. However, we reserve the right to subsequently review the server log files should there be concrete indications of unlawful use.

2.2 For security reasons and to protect the transmission of personal data and other confidential content (e.g., orders or inquiries to the controller), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the character string “https://” and the lock symbol in your browser line.

3) Cookies

To make visiting our website attractive and to enable the use of certain functions, we use cookies, which are small text files stored on your end device. Some of these cookies are automatically deleted after closing the browser (so-called “session cookies”), while others remain on your device longer and allow the storage of page settings (so-called “persistent cookies”). In the latter case, you can find the storage duration in the overview of your web browser’s cookie settings.

If personal data is also processed by individual cookies used by us, processing is carried out in accordance with Art. 6 (1) lit. b GDPR either for the performance of the contract, in accordance with Art. 6 (1) lit. a GDPR in the case of consent given, or in accordance with Art. 6 (1) lit. f GDPR to safeguard our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the site visit.

You can configure your browser so that you are informed about the setting of cookies and can decide individually on their acceptance or exclude the acceptance of cookies for certain cases or in general.

Please note that if cookies are not accepted, the functionality of our website may be limited.

4) Contact

4.1 WhatsApp Business

We offer visitors to our website the opportunity to contact us via the messaging service WhatsApp of WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. For this purpose, we use the so-called “Business Version” of WhatsApp.

If you contact us via WhatsApp in connection with a specific business transaction (for example, a placed order), we store and use the mobile phone number you use on WhatsApp as well as – if provided – your first and last name in accordance with Art. 6 (1) lit. b GDPR to process and respond to your request. On the same legal basis, we may ask you via WhatsApp to provide further data (order number, customer number, address or email address) in order to assign your request to a specific transaction.

If you use our WhatsApp contact for general inquiries (e.g., about our range of services, availability, or our website), we store and use the mobile phone number you use on WhatsApp as well as – if provided – your first and last name in accordance with Art. 6 (1) lit. f GDPR based on our legitimate interest in the efficient and timely provision of the requested information.

Your data will always be used solely to respond to your inquiry via WhatsApp. It will not be passed on to third parties.

Please note that WhatsApp Business gains access to the address book of the mobile device we use for this purpose and automatically transfers phone numbers stored in the address book to a server of its parent company, Meta Platforms Inc., in the USA.

For the operation of our WhatsApp Business account, we use a mobile device whose address book stores exclusively the WhatsApp contact data of users who have contacted us via WhatsApp.

This ensures that every person whose WhatsApp contact data is stored in our address book has already consented to the transmission of their WhatsApp phone number from the address books of their chat contacts in accordance with Art. 6 (1) lit. a GDPR by accepting the WhatsApp terms of use upon first use of the app on their device. The transmission of data of users who do not use WhatsApp and/or have not contacted us via WhatsApp is therefore excluded.

For the purpose and scope of data collection and the further processing and use of data by WhatsApp as well as your related rights and setting options to protect your privacy, please refer to WhatsApp’s privacy policy:

https://www.whatsapp.com/legal/?eea=1#privacy-policy

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision of the European Commission.

When contacting us (e.g., via contact form or email), personal data will be processed exclusively for the purpose of handling and responding to your request and only to the extent necessary for this purpose.
The legal basis for processing this data is our legitimate interest in responding to your request in accordance with Art. 6 (1) lit. f GDPR. If your contact is aimed at concluding a contract, the additional legal basis for processing is Art. 6 (1) lit. b GDPR. Your data will be deleted once it can be inferred from the circumstances that the matter in question has been conclusively clarified and provided that no statutory retention obligations oppose this.

5) Data Processing When Opening a Customer Account

In accordance with Art. 6 (1) lit. b GDPR, personal data will continue to be collected and processed to the extent necessary if you provide it to us when opening a customer account. The data required for account opening can be found in the input form of the respective form on our website.

You may delete your customer account at any time by sending a message to the above-mentioned address of the controller. After deletion of your customer account, your data will be deleted, provided that all contracts concluded via the account have been fully processed, no statutory retention periods oppose this, and we have no legitimate interest in further storage.

6) Data Processing for Order Processing

6.1 To the extent necessary for contract processing for delivery and payment purposes, the personal data collected by us will be passed on to the commissioned transport company and the commissioned credit institution in accordance with Art. 6 (1) lit. b GDPR.

If we owe you updates for goods with digital elements or for digital products based on a corresponding contract, we process the contact data you provided when placing the order (name, address, email address) in order to inform you personally about upcoming updates within the legally prescribed period in accordance with Art. 6 (1) lit. c GDPR via an appropriate communication channel (e.g., by post or email). Your contact data will be used strictly for notifications about updates owed by us and will only be processed by us to the extent necessary for the respective information.

To process your order, we also work together with the following service provider(s), who support us wholly or partially in the execution of concluded contracts. Certain personal data is transmitted to these service providers in accordance with the following information.

6.2 Use of Payment Service Providers (Payment Services)

–Information Regarding Payment Service Providers

One or more online payment methods from the following provider are available on this website:
PSA Payment Services Austria GmbH, Handelskai 92, Gate 2, 1200 Vienna, Austria

If you select a payment method where you make an advance payment, your payment data provided during the order process will be passed on in accordance with Art. 6 (1) lit. b GDPR exclusively for payment processing purposes.

– Klarna

One or more online payment methods from the following provider are available on this website:
Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden

If the provider makes an advance payment (e.g., invoice or installment purchase), a credit check will also be carried out as described above. The credit report may contain probability values (score values), based on a scientifically recognized mathematical-statistical procedure.

You may object at any time; however, the provider may still be entitled to process your personal data if necessary for contractual payment processing.

In addition to provider-internal criteria, identity and creditworthiness information from the following credit agencies may be included in the decision as part of the application review pursuant to Art. 6 (1) lit. f GDPR:

https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies

– SOFORT

One or more online payment methods from the following provider are available on this website:
SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany

– Stripe

One or more online payment methods from the following provider are available on this website:
Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland

You may object at any time; however, the provider may still be entitled to process your personal data if necessary for contractual payment processing.

7) Site Functionalities

7.1 Adobe Fonts (Typekit)

This site uses web fonts from Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA.

Processing takes place only with consent pursuant to Art. 6 (1) lit. a GDPR. The provider participates in the EU-US Data Privacy Framework.

7.2 FontAwesome

This site uses web fonts from Fonticons, Inc., 710 Blackhorn Dr, Carl Junction, MO, USA.

Processing takes place only with consent pursuant to Art. 6 (1) lit. a GDPR. The provider participates in the EU-US Data Privacy Framework.

7.3 Google Web Fonts

Provider: Google Ireland Limited, Dublin, Ireland. Data may also be transmitted to Google LLC, USA.

Processing takes place only with consent pursuant to Art. 6 (1) lit. a GDPR. The provider participates in the EU-US Data Privacy Framework.

7.4 Google reCAPTCHA

This website uses the CAPTCHA service of Google Ireland Limited. Data may also be transferred to Google LLC, USA.

The service checks whether input is made by a natural person or abusively by automated processing and blocks spam and similar attacks.

The legal basis is our legitimate interest in preventing misuse and spam pursuant to Art. 6 (1) lit. f GDPR.

We have concluded a data processing agreement with the provider.

The provider participates in the EU-US Data Privacy Framework.

8) Tools and Miscellaneous

Cookie Consent Tool

This website uses a cookie consent tool to obtain effective user consent for cookies requiring consent.

The tool ensures that cookies requiring consent are only set if the user has given consent.

Technically necessary cookies are set to store your preferences.

Legal bases:
Art. 6 (1) lit. f GDPR (legitimate interest in legally compliant consent management)
Art. 6 (1) lit. c GDPR (legal obligation)

Further information can be found directly in the corresponding user interface on our website.

9) Rights of the Data Subject

9.1 You have the following rights:

Right of access (Art. 15 GDPR)

Right to rectification (Art. 16 GDPR)

Right to erasure (Art. 17 GDPR)

Right to restriction of processing (Art. 18 GDPR)

Right to notification (Art. 19 GDPR)

Right to data portability (Art. 20 GDPR)

Right to withdraw consent (Art. 7 (3) GDPR)

Right to lodge a complaint (Art. 77 GDPR)

9.2 RIGHT TO OBJECT

IF WE PROCESS YOUR PERSONAL DATA BASED ON OUR OVERRIDING LEGITIMATE INTEREST, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION.

IF YOU OBJECT, WE WILL STOP PROCESSING THE DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS OR THE PROCESSING SERVES TO ASSERT, EXERCISE OR DEFEND LEGAL CLAIMS.

IF YOUR DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME. IF YOU OBJECT, WE WILL STOP PROCESSING YOUR DATA FOR DIRECT MARKETING PURPOSES.

10) Duration of Storage of Personal Data

The storage duration depends on the legal basis, processing purpose, and statutory retention periods.

Data processed on the basis of consent (Art. 6 (1) lit. a GDPR) is stored until consent is withdrawn.

Data processed on the basis of contract (Art. 6 (1) lit. b GDPR) is deleted after statutory retention periods expire, unless further storage is required.

Data processed on the basis of legitimate interest (Art. 6 (1) lit. f GDPR) is stored until you exercise your right to object, unless overriding legitimate grounds exist.

Personal data processed for direct marketing purposes is stored until you object pursuant to Art. 21 (2) GDPR.

Otherwise, personal data is deleted when it is no longer necessary for the purposes for which it was collected.