Privacy Policy

Privacy Policy

At Gipfel Engineering & Consulting GmbH, we are committed to protecting your personal data in compliance with the EU General Data Protection Regulation (GDPR). This Privacy Policy outlines how we collect, use, and safeguard your information when you visit our website https://gipfelengineering.at or interact with our services.

1. Data Controller

Gipfel Engineering & Consulting GmbH, located at Blütenstraße 15/5/9, 4040 Linz, AUSTRIA, Austria, is the data controller responsible for the processing of your personal data. You can contact us at info@gipfelengineering.com or by phone at +90 507 259 5916.

2. Data We Collect

We may collect the following types of personal data:

  • Contact Information: Name, email address, phone number, and company details provided when you contact us, submit forms, or make inquiries.
  • Website Usage Data: IP address, browser type, device information, and browsing behavior collected via cookies and analytics tools.
  • Business-Related Data: Information related to contracts, orders, or services provided to clients, such as billing details.

3. Purpose of Data Processing

We process your personal data for the following purposes:

  • To respond to your inquiries and provide customer support.
  • To process orders, deliver services, and manage client relationships.
  • To improve our website and services through analytics and user feedback.
  • To comply with legal obligations, such as tax or accounting requirements.
  • To send marketing communications, where you have given explicit consent.

4. Legal Basis for Processing

We process your data based on the following legal grounds under GDPR:

  • Consent (Article 6(1)(a)): For marketing communications or non-essential cookies, where you have explicitly agreed.
  • Contract (Article 6(1)(b)): To fulfill contractual obligations, such as providing services or processing orders.
  • Legal Obligation (Article 6(1)(c)): To comply with applicable laws and regulations.
  • Legitimate Interests (Article 6(1)(f)): For website analytics, improving services, and ensuring the security of our systems, provided your rights are not overridden.

5. Data Sharing and Transfers

We may share your data with:

  • Service Providers: Trusted third parties (e.g., IT providers, analytics tools) that assist us in operating our website and services, all compliant with GDPR.
  • Legal Authorities: When required by law or to protect our legal rights.

Your data may be transferred outside the EU/EEA only to entities that comply with GDPR or equivalent data protection standards, such as through EU Standard Contractual Clauses.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy or to comply with legal requirements. For example:

  • Contact information is retained until you withdraw consent or the purpose is fulfilled.
  • Business-related data is kept for the duration of the contract and as required by tax or legal regulations (typically 7 years).
  • Analytics data is anonymized or deleted after 26 months.

7. Your GDPR Rights

As an EU resident, you have the following rights under GDPR:

  • Right to Access: Request a copy of your personal data.
  • Right to Rectification: Correct inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your data, subject to legal obligations.
  • Right to Restrict Processing: Limit how we process your data in certain circumstances.
  • Right to Data Portability: Receive your data in a structured, machine-readable format.
  • Right to Object: Object to processing based on legitimate interests or for marketing purposes.
  • Right to Withdraw Consent: Withdraw consent at any time, where applicable.

To exercise these rights, contact us at info@gipfelengineering.com. We will respond within one month, as required by GDPR.

8. Cookies and Tracking Technologies

Our website uses cookies to enhance user experience and analyze site performance. You can manage your cookie preferences through our cookie consent tool. Essential cookies are necessary for website functionality and do not require consent. Non-essential cookies (e.g., analytics) are used only with your explicit consent.

9. Data Security

We implement appropriate technical and organizational measures to protect your data, including encryption, secure servers, and access controls, to prevent unauthorized access, loss, or misuse.

10. Complaints

If you have concerns about how we handle your data, you may file a complaint with us at info@gipfelengineering.com. You also have the right to lodge a complaint with a supervisory authority, such as the Austrian Data Protection Authority (Datenschutzbehörde).

11. Updates to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. The updated policy will be posted on our website with the effective date. This policy was last updated on September 19, 2025.

12. Contact Us

For any questions or to exercise your GDPR rights, please contact us: