Protecting your personal data (“Data“) is of utmost importance to us. In this statement, we inform you in accordance with Articles 13 and 14 of the General Data Protection Regulation (“GDPR“) about how we, as the data controller within the meaning of Article 4 Z 7 GDPR, process your data in connection with this website, contact inquiries, job applications, and business relationships with us.
1. Who is responsible for data processing and who can you contact with questions?
The data controller for data processing related to your visit and use of this website, contact inquiries, job applicants, and business partners is:
EET – Efficient Energy Technology GmbH
Herrgottwiesgasse 207, 8055 Graz, Austria
(hereinafter referred to as “EET“)
2. What categories of data do we process?
In connection with our website presence, we process meta-/communication data falling under the following categories:
- IP address
- Other access data (such as information about your browser, system data regarding devices used and operating systems, date and time of server request, referrer URL)
In the case of purchasing goods through our online shop, we additionally process data falling under the following categories:
- Company name (optional)
- Contact details (email address, telephone number)
- Billing and shipping address
- Payment completion data
In the event of contacting us or applying for a position at EET, we process data falling under the following categories:
- Contact details (email address, telephone number)
- Other provided data (e.g., address, curriculum vitae, application documents, desired position)
- Application history
If you are a business partner (or its shareholders, employees, or officers) of EET, we process your data provided to us during the initiation of the contractual relationship or during the existing contractual relationship, such as:
- Contact details (email address, telephone number)
- Commercial register data
- Bank details
- VAT identification number
- Names and contact details of individuals within the company
- Contract texts and business correspondence
3. How do we process your data?
a) Website Usage
aa) Cookies, Tracking and Analytical Tools, Plug-Ins
The collection of your data in connection with cookies, analytical tools, and plug-ins is based on your consent pursuant to Article 6(1)(a) GDPR (or in conjunction with § 165(3) TKG in the case of so-called “persistent” cookies, which are stored on the user’s end device).
When setting cookies or activating plug-ins based on voluntary consent, user data may be transmitted to recipients in third countries outside the European Economic Area (EEA), particularly to the United States (for transfers to third countries, see section 6).
Cookies that are strictly necessary for the functioning of the website (technically necessary cookies) cannot be rejected or deactivated. In these cases, data processing is based on our legitimate interest pursuant to Article 6(1)(f) GDPR, in providing our website accordingly functional.
bb) External Links
Our site contains external links leading to third-party websites. The external links are displayed on the website as buttons with logos and names or URLs. When you visit our website, these buttons do not send any data to third parties without action from you.
Please note that clicking on external links on our website may lead to the transmission and processing of your data in third countries outside the EEA, particularly to the United States (for transfers to third countries, see section 6).
If you have subscribed to the EET newsletter, we process the data provided to us by you (e.g., email address) for the purpose of sending the newsletter based on your explicit consent (Article 6(1)(a) GDPR in conjunction with Article 174(3) TKG). You can revoke your consent to receive the newsletter at any time with future effect by emailing firstname.lastname@example.org or using the unsubscribe link in the footer of each newsletter.
When contacting us via telephone or email, we process your data (name, email address, telephone number, and any other provided data) for the purpose of handling your inquiry. Data processing depends on the nature of the inquiry, based on the fulfillment of (pre)contractual obligations pursuant to Article 6(1)(b) GDPR or based on our legitimate interests pursuant to Article 6(1)(f) GDPR, such as maintaining relationships with potential business partners and providing information to interested parties.
d) Social Media Presence
When you visit our user accounts set up on social media platforms (Facebook, Instagram) (“Fanpages”), data about you is processed in connection with this visit, regardless of whether you are registered or logged in to the respective social media service. This processing serves to improve the advertising systems of the respective social media service provider and to present our company to users of the respective social media service and enable communication with visitors to the Fanpages. By operating the Fanpages, we contribute to the processing of personal data of visitors to our Fanpages by the respective social media service provider and are therefore jointly responsible with them within the meaning of Article 26 GDPR.
Detailed information on the processing of your data in connection with our social media presence as well as the jointly responsible entity can be found on the following pages:
If you apply to us, we process the data transmitted to us (e.g., application documents, name, contact details) in the context of processing your application based on the fulfillment of (pre)contractual obligations pursuant to Article 6(1)(b) GDPR and, if necessary, for evidentiary purposes based on your explicit consent pursuant to Article 6(1)(a) GDPR.
f) Business Relationships and Online Shop
If you are a business partner (or its shareholders, employees, or officers) of EET or purchase goods in our online shop, we process your data for the purpose of managing the business relationship (e.g., service provision, handling claims arising from the contract, invo
icing) based on the fulfillment of (pre)contractual obligations pursuant to Article 6(1)(b) GDPR and to fulfill legal obligations pursuant to Article 6(1)(c) GDPR (e.g., proper accounting) and to safeguard our legitimate interests pursuant to Article 6(1)(f) GDPR, such as the execution of business relationships.
We process your data for as long as necessary to fulfill the purpose underlying the respective processing, as well as in accordance with legal documentation and retention obligations. When data processing is no longer necessary, your data will be deleted by us.
Data processed based on your consent will be processed until the withdrawal of your consent at the latest.
Application data will be stored for six months from the day you receive the rejection of your application or seven months from the date of application receipt by us. If you consent to this, we will store your data for evidentiary purposes for a longer period.
Session cookies are only required for the duration of your current session and are deleted or lose their validity once you leave our website or your current session expires.
Persistent cookies are stored for a maximum duration of 2 years.
5. To whom will your data be disclosed?
Your data will be disclosed to the following recipients for the purposes mentioned above and, if necessary, due to legal or regulatory obligations:
- IT service providers
- Google Analytics (marketing tool)
- Facebook Pixel (marketing tool)
- Billbee (invoicing)
- Odoo (order processing)
- DHL (shipping service provider)
- FW Fulfillment (fulfillment)
- YouTube (video integration)
- Klaviyo (newsletter tool)
- Saferpay (payment service provider)
- In the event of legal matters, to legal representatives, notaries, courts, and administrative authorities
- In the event of financial matters, to banks and insurance companies
Where your data is processed by our service providers (processors), we ensure that they process your data only within the scope of our mandate and for the respective purposes mentioned above.
6. Transfer to Third Countries
If the aforementioned recipients of your data are located outside the EEA and the relevant country has not been determined to have an adequate level of data protection by a decision of the European Commission, we ensure that the transfer is based on standard contractual clauses or otherwise in accordance with Articles 46, 47, or 49 GDPR.
7. What rights do you have?
Right to Information
If we process data about you, you have the right to information about the purposes of processing, the categories of data processed, the recipients of this data, the storage duration, the rights available to you, the origin of the data, and the existence of automated decision-making.
Correction and Deletion
You have the right to request correction of incorrect or incomplete data concerning you. You are entitled to request the deletion of data concerning you if the processing of the data is unlawful and there are no legal obligations on our part that conflict with deletion.
Restriction of Processing
You are entitled to request the restriction of processing of your data in certain cases.
You have the right to request the transfer of your data that you have provided to us in a structured, commonly used, and machine-readable format. You have the right to have the data transmitted directly to another controller, where technically feasible.
For reasons arising from your particular situation, you are entitled to object to the processing of data concerning you at any time. If you object, we will not further process data concerning you unless we can demonstrate compelling legitimate grounds for the processing that override your interests.
You have the right to revoke consent-based data processing at any time. The lawfulness of processing carried out before such revocation remains unaffected.
If you believe that the processing of your data violates data protection law or your data protection rights have otherwise been violated, you can lodge a complaint with the supervisory authority. In Austria, this is the Data Protection Authority, Barichgasse 40-42, 1030 Vienna (www.dsb.gv.at).
 “Personal data” refers to all information relating to an identified or identifiable natural person, as defined in Article 4(1) GDPR.