- CRYPTAS
- PRIMESIGN
Information pursuant to Article 13 GDPR of CRYPTAS International GmbH as the responsible body
The protection of your privacy is important to us. We process personal data only to the extent necessary and in accordance with the applicable legal provisions. In the following, we will inform you about which data we process for specific purposes in the context of your business relationship with CRYPTAS, as well as about your rights in this regard.
1. Scope of data collection when using our website
When you use our website, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in log files. The following information is collected without any action on your part and stored until it is automatically deleted
- IP address of the requesting computer,
- Date and time of access,
- Name and URL of the retrieved file,
- Website from which the access was made (referrer URL),
- browser used and, if applicable, the operating system of your computer and the name of your access provider.
We process the aforementioned data for the following purposes:
- Ensuring a smooth connection to the website,
- Ensuring a comfortable use of our website,
- Evaluation for the purposes of system security and stability
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the data collection purposes listed above.
2. Scope of data collection for CRYPTAS it-Security Newsletter
CRYPTAS collects, processes and uses the following of your data when you register for the CRYPTAS it-Security newsletter
- First name
- Last name
- e-mail address
- Data about the registration (time)
The following information is optional; if you provide this information, the data will also be processed:
- Name of the company
- Your comments
This data will be deleted when you unsubscribe from the newsletter.
3. Scope of data collection for online inquiries to CRYPTAS, support and sales enquiries
CRYPTAS collects and processes the following of your data when you contact us in the form of an online inquiry or submit an online support or sales inquiry:
- First name
- Last name
- e-mail address
- Name of the company
- The topic and your request
The following information is optional; if you provide this information, the data will also be processed:
- Your function in the company
- Address, telephone/fax number and web address of the company
This data will be stored for the duration of one calendar year (unless there is a legitimate reason for further processing).
4. Scope of data collection for the CRYPTAS partner request
If you are interested in registering as a CRYPTAS partner, the following data will be collected and processed by CRYPTAS:
- First and last name
- your e-mail address
- Your function in the company
- Name, address, telephone/fax number and web address of the company
- Any comments
All data provided (see points 1, 2, 3) will be processed by CRYPTAS it-Security GmbH in Vienna.
If no partner registration takes place, this data will be deleted after 6 months (unless there is a legitimate reason for further processing).
5. disclosure to third parties
All data that you have transmitted to us will be treated confidentially and protected by technical and organizational measures as part of our IT security policy. As a matter of principle, we do not make your data available to third parties unless you have given your consent or we are legally obliged to do so. Exceptions to this are our service partners who require the transmission of data for order processing (e.g. the shipping company commissioned with the delivery and the credit institution commissioned with payment processing). In these cases, however, the scope of the data transmitted is limited to the minimum required.
6. rights of data subjects
If the legal requirements are met, you have the following rights under the GDPR
Right of access, rectification, erasure, restriction of processing, data portability, objection to processing. In addition, you have the right to lodge a complaint with the competent supervisory authority if you believe that your personal data is being processed unlawfully.
Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna, e-mail:dsb@dsb.gv.at
7. Google reCAPTCHA
ReCAPTCHA is a free captcha service from Google that protects websites from spam software and misuse by non-human users.
The purpose of reCAPTCHA is to check whether the data input on our websites (e.g. in a contact form) is made by a human or by an automated programme. For this purpose, reCAPTCHA analyses the behaviour of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website.
reCAPTCHA collects personal data from users. During the reCAPTCHA check, website operators and therefore Google collect a range of user data. Among other things, Google reCAPTCHA collects information about the
- Page that integrates reCAPTCHA,
- Referrer URL (page from which the user comes),
- IP address of the user,
- settings of the end device (language, browser, location),
- Dwell time,
- Mouse movements and keyboard strokes,
- Screen and window resolution,
- time zone and
- installation of browser plugins.
Data processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its website from abusive automated spying and SPAM.
The data collected during the analysis is forwarded to Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. This may also involve the transfer of personal data to a country outside the European Union. The transfer of data to the USA takes place on the basis of Art. 45 GDPR in conjunction with the European Commission's adequacy decision C(2023) 4745, as the data recipient has undertaken to comply with the data processing principles of the Data Privacy Framework (DPF). For more information about Google Ireland Limited's DPF membership, please visit: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active
Further information on Google reCAPTCHA and Google's privacy policy can be found at the following links: https://www.google.com/intl/de/policies/privacy/ and https://www.google.com/recaptcha/intro/android.html.
8. name and contact details of the responsible body
CRYPTAS it-Security GmbH
Franzosengraben 8/4.OG
1030 Vienna, AUSTRIA
Tel. +43 (1) 3 555 3 - 0
Fax. +43 (1) 3 555 3 - 990
E-Mail:office@cryptas.com
Information obligations pursuant to Art. 13 GDPR for the processing of personal data in the context of our activities as the PrimeSign trust service
- Controller: PrimeSign GmbH, Wielandgasse 2, 8010 Graz E-Mail: office@prime-sign.com; Phone: +43 (316) 25 830
- Purpose of processing: Proof of identification of natural persons for the purpose of issuing a (qualified) certificate. The data will not be used for other purposes.
- Legal basis: Art 6 para 1 lit b GDPR (performance of a contract), Art 24 eIDAS Regulation
- Duration of storage: 30 years after expiry of the validity of the issued certificate or 30 years from the date of issue of the certificate (Section 10 (3) SVG)
- Processed data: Identity data, data for proof of identity, certificate data
If the legal requirements are met, you have the following rights under the GDPR: right of access, rectification, erasure, restriction of processing, data portability, objection to processing.
You have the right to lodge a complaint with the following supervisory authority if you believe that your personal data is being processed unlawfully Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna, e-mail: dsb@dsb.gv.at
Do you have any questions or need more information?