1. General

This data protection declaration informs the user of the website www.stantonstraightlines.com (hereinafter referred to as the "website") about the type, scope and purpose of the collection and use of personal data by Emanuel Misslinger (hereinafter referred to as the "operator"). Personal data (e.g. name, e-mail address, telephone number) will only be processed and transmitted by the operator in a lawful manner, in particular for the fulfilment of contractual obligations, on the basis of overriding legitimate interests of the operator or on the basis of the user's consent. I will therefore not process personal data for purposes other than those covered by the GDPR. For statistical purposes, I will only use personal data if the data has been anonymised. The lawfulness of data processing is derived from the Austrian Data Protection Act as well as Regulation (EU) 2016/679 (DSGVO). The legal basis is specifically stated for each of the following processing operations.

2. Your Rights

Insofar as the lawfulness for a specific data processing is based on the user's consent, this can be revoked (also partially) at any time by sending an email to emi@stantonstraightlines.com. Furthermore, the user has the right to information about the personal data concerning him, to data portability, to correction or deletion of personal data as well as to restriction of or objection to the processing of his personal data. The user can exercise these rights by sending an email to emi@stantonstraightlines.com. Finally, the user has a right to lodge a complaint with the Austrian data protection authority (Hohenstaufengasse 3, 1010 Vienna, dsb@dsb.gv.at,www.dsb.gv.at).

3. Presentation of the Website / Server Log Fiiles

In order to optimise this website in terms of system performance, user-friendliness and the provision of useful information about my services, the website provider automatically collects and stores information in so-called server log files, which your browser automatically transmits to me. This includes your internet protocol address (IP address), browser and language setting, operating system, referrer URL, your internet service provider and date/time. This data is not merged with personal data sources. I reserve the right to check this data subsequently if we become aware of concrete indications of illegal use. By visiting this website, the user gives his or her conclusive consent to the short-term storage of the IP address of the terminal device in accordance with Art 6 para 1 lit a DSGVO. This is necessary for the provision of the website content. The user's IP address is deleted after the use of the website has ended. I only use the aforementioned data for statistical purposes.

4. Data Security

Your personal data is protected by appropriate organisational and technical precautions. These precautions relate in particular to protection against unauthorised, illegal or even accidental access, processing, loss, use and manipulation. Notwithstanding our efforts to maintain an appropriately high standard of due diligence at all times, it cannot be ruled out that information which you disclose to me via the Internet or electronically may be viewed and used by other persons. and used by other persons. Please note that I therefore accept no liability whatsoever for the disclosure of information due to errors in data transmission not caused by me and/or unauthorised access by third parties (e.g. hacking attack on email account or telephone, interception of faxes).

5. Use of Data

Only such personal data is collected that is necessary for the implementation and processing of my services or other business transactions or that you have voluntarily made available to me. When contacting the operator (for example, via contact form or email), the following information of the user is stored for the purpose of processing the request and in case follow-up questions arise: Salutation, first and last name, postal address, e-mail address, telephone number as well as other data concerning the enquiry (e.g. accommodation, period of service provision). The personal data disclosed by the user will only be processed and used by the operator to the extent that they are necessary for processing the enquiry and/or providing the requested service.

6. Data Transfer to Third Parties

It may be necessary to forward your data to third parties (e.g. service providers I use and to whom I make data available). Your data will only be forwarded on the basis of the GDPR, in particular for the performance of a contract, on the basis of your prior consent or on the basis of my overriding legitimate interests. In the course of this data processing, the operator forwards the collected personal data to the following third parties:

6.1 Subject Matter of Agreement

6.1.1 The subject of this order is the performance of the following tasks: (description of the tasks of the contractor in as much detail as possible, including the type and purpose of the intended processing). (If there is a more extensive framework agreement, contract for work, service agreement, etc.) This agreement is to be understood as a supplement to (add contract, etc. including date).

6.1.2 The following categories of data are processed: (list data categories, e.g. contact data, contract data, billing data, creditworthiness data, order data, fee data, etc.).

6.1.3 The following categories of data subjects are subject to the processing: (add categories of data subjects, e.g. customers, interested parties, suppliers, contact persons, employees, etc.).

6.2 Duration of Agreement

(Single execution) The agreement ends with the single execution of the work. (Limited term) The Agreement is concluded for a limited term and ends with [enter end of term] (Indefinite term) The Agreement is concluded for an indefinite term and may be terminated by either Party with a notice period of (enter notice period, e.g. one month) to (enter termination date, e.g. calendar quarter). The possibility of extraordinary termination for good cause remains unaffected.

6.3 Duties of the Contractor

6.3.1 The Contractor undertakes to process data and processing results exclusively within the scope of the Client's written orders. If the Contractor receives an official order to release the Client's data, the Contractor shall - insofar as legally permissible - immediately inform the Client thereof and refer the authority to the Client. Similarly, processing of the data for the contractor's own purposes requires a written order.

6.3.2 The Contractor declares in a legally binding manner that it has obliged all persons entrusted with the data processing to maintain confidentiality prior to commencement of the activity or that they are subject to an appropriate statutory confidentiality obligation. In particular, the confidentiality obligation of the persons entrusted with the data processing shall remain in force even after the termination of their activities and their departure from the Contractor.

6.3.3 The Contractor declares in a legally binding manner that it has taken all necessary measures to ensure the security of the processing in accordance with Art 32 of the GDPR (for details see Annex./1).

6.3.4 The contractor shall take the technical and organisational measures to ensure that the client can fulfil the rights of the data subject under Chapter III of the GDPR (information, access, correction and deletion, data portability, objection, as well as automated decision-making in individual cases) within the statutory time limits at any time and shall provide the client with all the information necessary for this purpose. If a corresponding request is addressed to the contractor and the contractor indicates that the applicant mistakenly believes it to be the principal of the data processing operated by it, the contractor shall forward the request to the principal without delay and inform the applicant accordingly.

6.3.5 The Contractor shall support the Client in complying with the obligations set out in Articles 32 to 36 of the GDPR (data security measures, notifications of personal data breaches to the supervisory authority, notification of the person affected by a personal data breach, data protection impact assessment, prior consultation).

6.3.6 The Contractor is advised that it must set up a processing directory for the present commissioned processing in accordance with Art. 30 DSGVO.

6.3.7 With regard to the processing of the data provided by the Client, the Client shall be granted the right to inspect and control the data processing facilities at any time, including through third parties commissioned by the Client. The Contractor undertakes to provide the Client with the information necessary to monitor compliance with the obligations set out in this Agreement.

6.3.8 After termination of this Agreement, the Contractor is obliged to hand over to the Client / destroy on the Client's behalf all processing results and documents containing data[1]. If the Contractor processes the data in a special technical format, it shall be obliged to hand over the data after termination of this Agreement either in this format or, at the Client's request, in the format in which it received the data from the Client or in another common format.

6.3.9 The Contractor shall inform the Client without undue delay if it believes that any instruction given by the Client violates Union or Member State data protection provisions.

6.4 Place of performance of data processing [2] (Performance exclusively within the EU/EEA) All data processing activities are performed exclusively within the EU/EEA.

(If carried out, even if only partially, outside the EU/EEA) Data processing activities are also carried out, at least in part, outside the EU/EEA, in [list countries]. The adequate level of data protection results from [3].

6.4.1. an adequacy decision of the European Commission pursuant to Art 45 GDPR.

6.4.2. an exception for the specific case pursuant to Art 49(1) GDPR.

6.4.3. binding internal data protection provisions pursuant to Art 47 in conjunction with Art 46 (2) lit b DSGVO.

6.4.4 Standard data protection clauses pursuant to Art 46 (2) lit c and d DSGVO.

6.4.5. approved rules of conduct pursuant to Art 46 (2) lit e in conjunction with Art 40 DSGVO.

6.4.6. an approved certification mechanism pursuant to Art 46(2)(f) in conjunction with Art 42 GDPR.

6.4.7. contractual clauses approved by the data protection authority pursuant to Art 46 (3) lit a DSGVO.

6.4.8. a case-by-case exception under Article 49(1), second subparagraph, GDPR.

6.5 Sub-Processors

(Prohibition of using a sub-processor) The Contractor is not entitled to use a sub-processor. (Permissibility of using a specific sub-processor) The contractor is authorised to use the following company as a sub-processor: [add company name and registered office, type of activities]. The Client must be notified in writing of any intended changes to the sub-processor in good time so that the Client can prohibit them if necessary. The Contractor shall conclude the necessary agreements within the meaning of Article 28(4) of the GDPR with the sub-processor. It must be ensured that the sub-processor enters into the same obligations as the contractor on the basis of this agreement.

If the sub-processor fails to comply with its data protection obligations, the contractor shall be liable to the client for compliance with the obligations of the sub-processor. (Admissibility of the use of sub-processors) The contractor may use sub-processors [activities].

The contractor shall notify the client of the intended use of a sub-processor in good time so that the client can prohibit this if necessary. The contractor shall conclude the necessary agreements within the meaning of Article 28(4) of the GDPR with the sub-processor. In doing so, it shall be ensured that the sub-processor enters into the same obligations as those incumbent on the contractor on the basis of this agreement. If the sub-processor fails to comply with its data protection obligations, the contractor shall be liable to the client for compliance with the obligations of the sub-processor. Some of the above recipients of your personal data are located outside the European Union or process your personal data there. The level of data protection in these countries may not correspond to that in Austria. However, we only transfer your personal data to such countries if either the EU Commission has decided that they have an adequate level of data protection or we conclude standard contractual clauses (2010/87/EC and/or 2004/915/EC) or another permissible circumstance ISd Art 44 ff DSGVO exists (e.g. your informed consent).

7. Social Media Plug-Ins

The operator uses so-called "embedded" social media plug-ins (interfaces to social networks) on the website. When visiting the website, the system automatically establishes a connection with the respective social network due to the integration of the plug-ins and transmits data (IP address, visit to the website, etc.). The data transmission occurs without the operator's intervention and outside the operator's responsibility. The user can prevent this data transmission by logging out of the respective social networks before visiting the website. Only in the "logged in" state can the social network assign specific data to the user's activity profile through automatic data transmission. The automatically transmitted data is used exclusively by the operators of the social networks and not by the operator. Further information on this, including the content of the data collection by the social networks, can be found directly on the website of the corresponding social network.

The privacy settings can also be adjusted there. The privacy settings can also be adjusted there.

The social networks integrated on the website are:

7.1 Facebook ("like")

Facebook Inc, 1601 S California Ave, Palo Alto, CA, 94304, USA. More information at https://de-de.facebook.com/policy.php.

7.2 Google ("+1")

Google Inc, Amphitheatre Parkway, Mountain View, CA 94043, USA

7.3 Instagram

More information at https://help.instagram.com/155833707900388.

Attention: On 5 June 2018, the ECJ ruled that business pages

on Facebook as well as (in all likelihood) social media plug-ins are to be strictly judged - the company using such a thing is considered the "responsible party", along with Facebook. The implications of this ruling are still unclear. Caution is advised here. The formulations below only represent a minimum standard, which may not be sufficient.

8. Cookies

This website uses "cookies" to make our services more user-friendly, effective and secure. A "cookie" is a small text file that we transfer via our web server to the cookie file of the browser on the hard drive of your computer. This enables our website to recognise you as a user when a connection is established between our web server and your browser. Cookies help us to determine the frequency of use and the number of users of our web pages. The content of the cookies we use is limited to an identification number that no longer allows any personal reference to the user. The main purpose of a cookie is to recognise visitors to the website.

Two types of cookies are used on this website:

8.1 Session cookies: These are temporary cookies that remain in the cookie file of your browser until you leave our website and are automatically deleted at the end of your visit.

8.2 Persistent cookies: For a better user experience, cookies remain stored on your terminal device and allow us to recognise your browser on your next visit. browser the next time you visit. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or generally and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.

9. Google Analytics

This website uses Google Analytics, a web analytics service provided by Google, Inc. ("Google"), 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics uses cookies that enable an analysis of the user's use of the website. The data generated by the cookie about the use of this website (including The data generated by the cookie about the use of the website (including the IP address of the user) will be transmitted to and stored by Google on servers in the United States. The transfer of personal data to the U.S.A. is subject to an adequacy decision by the European Commission. Instagram, LLC Instagram Inc, 1601 Willow Road, Menlo Park, CA 94025, USA. Google will use the transmitted data on behalf of the operator for the purpose of evaluating the use of the website by the user, compiling reports on website activity and providing other services relating to website activity and internet usage.

Google may also transfer this data to third parties where required to do so by law, or where such third parties process the data on Google's behalf. We use IP anonymisation on this website by default. This means that your IP address is shortened by Google within the European Union or the European Economic Area before it is forwarded. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. In this case, however, the user may not be able to use all the functions of this website to their full extent. Furthermore, the user can prevent the collection of the data generated by the cookie and related to the use of the website (incl. IP address) by Google as well as the processing of this data by Google by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de. More information on the terms of use and data protection regarding Google Analytics can be found at http://www.google.com/analytics/terms/de.html.

10. Retention of Data

We will not keep data longer than is necessary for the fulfilment of our contractual or legal obligations and for the defence against any liability claims, unless the data is processed for other legitimate purposes (e.g. self-promotion). In the latter case, the data will be deleted after the purpose no longer applies.