Macher.one Privacy Policy Guide

Name: MACHER.one
Author: Christian Hager

This privacy policy informs you about the nature, scope and purpose of the processing of personal data (hereinafter referred to as “data”) within our online offering and its associated websites, functions and content, as well as external online presences, such as our social media profiles (collectively referred to as “online offering”). Regarding the terms used, such as “processing” or “controller”, we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).

Site Owner

Christian Hager
Trade & IT Services
Zeisigstrasse 7
A-4614 Marchtrenk
Austria
support@macher.one

Types of Data Processed

Usage data (e.g. websites visited, interest in content, access times)
Meta/communication data (e.g. device information, IP addresses)

Purpose of Processing

Provision of the online offering, its functions and content
Security measures
Reach measurement and marketing

Terms Used

“Personal data” means any information relating to an identified or identifiable natural person (“data subject”);
“Processing” means any operation or set of operations performed on personal data;
“Controller” means the natural or legal person who determines the purposes and means of the processing of personal data.

Legal Bases

In accordance with Article 13 GDPR, we inform you of the legal bases of our data processing. Unless otherwise stated:

Consent: Art. 6 (1)(a) and Art. 7 GDPR
Performance of a contract: Art. 6 (1)(b) GDPR
Legal obligation: Art. 6 (1)(c) GDPR
Legitimate interests: Art. 6 (1)(f) GDPR
Vital interests: Art. 6 (1)(d) GDPR

Hosting

Our hosting services include infrastructure and platform services, computing capacity, storage space and database services, security services, and technical maintenance services required for the operation of this online offering. Data processed includes inventory data, contact data, content data, contract data, usage data, meta and communication data. Processing is based on our legitimate interests (Art. 6 (1)(f) GDPR in conjunction with Art. 28 GDPR – data processing agreement).

Access Logs

We and/or our hosting provider collect data on every access to the server (so-called server log files) based on our legitimate interests (Art. 6 (1)(f) GDPR).
Access data includes the name of the retrieved website, file, date and time of access, data volume transferred, status messages, browser type/version, operating system, referrer URL, IP address and the requesting provider. Logfile information is stored for up to 7 days and then deleted. Data required for evidence is excluded from deletion until the issue is resolved.

Google Analytics

We use Google Analytics, a web analysis service of Google LLC, based on our legitimate interests (Art. 6 (1)(f) GDPR – analysis and optimisation).
Google uses cookies, and the information generated is usually transferred to a Google server in the USA.

Google is certified under the Privacy Shield agreement:
https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI

We use Google Analytics with IP anonymisation enabled. IP addresses are truncated before processing. Data is not merged with other Google data.

You can prevent cookie storage via your browser settings, or block tracking via:
http://tools.google.com/dlpage/gaoptout?hl=en

For more information:
– https://policies.google.com/technologies/ads
– https://adssettings.google.com/authenticated

Data is deleted or anonymised after 14 months.

Use of Artificial Intelligence (AI)

We use AI technologies in some areas of our website and services to improve and personalise your user experience. We ensure full compliance with the GDPR.

1. Purpose of AI Processing:

Personalised content and offers
Efficient and automated request handling
Data analysis for service improvement

2. Types of Data Processed:

Contact data (e.g. name, email address)
Usage data (e.g. visited pages, interactions)
Device data (e.g. IP address, browser type)

3. Automated Decision-Making and Profiling:
Automated decisions may occur (e.g. personalised content). You have the right not to be subject to decisions based solely on automated processing. You can object to such processing at any time via the contact details provided.

4. Disclosure to Third Parties:
We work with service providers who support us in AI implementation. They are contractually bound to data protection and process data only on our behalf. Data is transferred to third countries only under legal conditions.

5. Your Rights:
You have the right to:

Access your personal data
Rectify inaccurate data
Delete your data (if no legal retention applies)
Restrict processing
Object to processing
Data portability

6. Data Security:
We use appropriate technical and organisational measures to protect your data. These are regularly reviewed and updated according to technological advancements.