Data protection
Data protection policy in accordance with Art. 13, 14 GDPR – Fulfillment of information obligations
Thank you for visiting our symposium website! The protection of your data is our highest priority.
This declaration applies to data processing in the context of our symposium. The legal basis for this data processing is the General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (DSG).
1 Controller for data processing
The controller pursuant to Art. 4 (7) of the EU General Data Protection Regulation (GDPR) is:
ZETA GmbH
Zetaplatz 1
8501 Lieboch
Tel: +43 (0) 3136 9010-0
E-mail: office@zeta.com
The company has appointed a data protection officer. This person can be contacted at datenschutz@zeta.com
2 Data processing of persons in the business environment
2.1 Data processing in accordance with Art. 13 GDPR
We process the data that data subjects provide to us, for example in the context of an enquiry by e-mail, for the purpose of initiating and concluding a contract or a business relationship.
2.2 Data processing in accordance with Art. 14 GDPR
In addition, we process data of persons who may be part of a contractual relationship, which we have legitimately received in the context of information from third parties (e.g. managing directors provide us with the data of their employees).
2.3 Affected persons
We process the following data from interested parties: E-mail address and telephone number.
We process the following data from event participants (symposium): Name, job title, company, country (place of residence), telephone number and e-mail address. Optionally, salutation, title and city (place of residence) can also be provided.
2.4 Forwarding of data
We only pass on personal data to third parties if this is necessary for the purpose of contract processing and fulfillment or due to legal regulations.
2.5 Retention/deletion of data
1. Expiry of contractual obligations: If there are contractual provisions that stipulate how long personal data must be stored, the controller shall ensure that these deadlines are met. As soon as these periods have expired, the data is deleted or anonymized by the controller.
2. Withdrawal of consent: If a person withdraws their consent to the processing of their personal data, the controller shall erase this data unless there is another legal basis for the processing.
3. Expiry of legal obligations: In some cases, there may be exceptions that not only allow, but even oblige the controller to continue to store personal data even after contractual deadlines have expired or consent has been withdrawn. This may be the case if there are statutory deadlines that require the retention of personal data for a defined period of time, such as the storage of tax or accounting records. Once these statutory periods have expired, the controller also ensures that the data is anonymized or deleted.
2.6 Contact by email
When you contact us by e-mail, the data you provide will be stored by us in order to answer your questions. We delete the data arising in this context after processing is no longer necessary, or restrict processing if there are statutory retention obligations.
Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest)
2.7 Publication of the names of authors
We are legally obliged to disclose the names of the authors of image data (photos or videos) each time image data is published. We automatically delete this personal data as soon as we stop using the image data.
2.8 Legal basis
The legal basis for data processing is:
• Consent pursuant to Art. 6 para. 1 lit. a GDPR (e.g. for the processing of image data or for advertising purposes).
• the initiation and fulfillment of the contract pursuant to Art. 6 para. 1 lit. b GDPR.
• legal obligations pursuant to Art. 6 para. 1 lit. c GDPR (e.g. statutory retention and documentation obligations, publication obligations under copyright law).
• legitimate interests of our company pursuant to Art. 6 para. 1 lit. f GDPR (e.g. use of software)
3 Data processing when registering for the symposium
You can register for our symposium on March 11-12, 2025 via our symposium website www.zeta-symposium.at. The following data must be provided when registering: Name, company, job title, country (residence), telephone number and e-mail address. The form of address, title and city (place of residence) are optional.
The registration will then be checked by us and, if approved, you will receive a request for payment by e-mail.
We use the services of an external payment service provider to process the payment.
Your data will not be forwarded by us to the external payment service provider but will be entered by you yourself with the payment service provider. The payment service provider processes the data as an independent controller. Payment can be made via VISA, MasterCard, PayPal and Klarna. You will receive further information on the external payment service provider in the confirmation e-mail upon admission to the symposium. As soon as we have received your payment, you will receive a confirmation email. In it you will find either your ticket or, in the case of online participation, the access link.
4 Data processing when visiting our website
4.1 Informational use of the website
When using the website for information purposes only, we only collect the personal data that your browser transmits to our server (server log files). If you wish to view our website, we collect at most the data that is technically necessary for us to display our website to you and to ensure stability and security:
• IP address
• Date and time of the request
• Time zone difference to Coordinated Universal Time (UTC)
• Content of the request (specific page)
• Access status/HTTP status code
• Website from which the request comes
• Browser
• Operating system and its interface
• Language and version of the browser software.
This data is not merged with personal data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of unlawful use and – if there has been a hacking attack – to pass the data on to the law enforcement authorities. The data will not be passed on to third parties beyond this.
Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest)
4.2 Cookies
Cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard disk assigned to the browser you are using and through which certain information flows to the place that sets the cookie (here by us or third-party providers). Cookies cannot execute programs or transmit viruses to your computer. The cookie allows you to be recognized when you visit the website without having to re-enter data that you have already entered.
The information contained in the cookies is used, for example, to determine whether you are logged in or what data you have already entered, or to recognize you as a user when a connection is established between our web server and your browser.
We distinguish between technical cookies that are used exclusively to ensure the operation of a website and other cookies that are set by us or third-party providers for the purposes of statistical analysis, tracking or advertising/marketing.
Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest; for technical cookies), Art. 6 para. 1 lit. a GDPR (consent; for all other cookies)
4.3 Data processing in the USA
It cannot be ruled out that personal data will be transmitted to the USA when you visit our website. If this is the case, we will point this out separately in this privacy policy.
The GDPR requires so-called appropriate safeguards in accordance with Art. 46 GDPR for data transfers to a third country or an international organization.
The European Commission has adopted an adequacy decision for the exchange of data between European and US companies. This decision stipulates that American companies that have submitted to the EU-US Privacy Framework guarantee an adequate level of protection for personal data. Personal data may be exchanged with these companies without additional guarantees.
In the case of data processing by US data recipients who have not submitted to the regulations of the EU-US Data Privacy Framework, the following risks in particular cannot currently be ruled out for you as the data subject:
• Your personal data could possibly be passed on to other third parties (e.g. US authorities) by the respective service provider beyond the actual purpose of order fulfillment.
• You may not be able to assert or enforce your rights to information against the respective service provider in the long term.
• There may be a higher probability that incorrect data processing may occur because the technical organizational measures for the protection of personal data do not fully meet the requirements of the GDPR in terms of quantity and quality.
By consenting to the processing of (advertising and marketing) cookies, you explicitly consent to the transfer of data to the USA. You can remove cookies stored on your PC yourself at any time by deleting the temporary internet files.
Legal basis: Art. 6 para. 1 lit. a GDPR (consent)
5 Social media presence
We operate a social media page on LinkedIn. When you visit our social media page, personal data, including the IP address, is processed by LinkedIn Ireland Unlimited Company and cookies are used for data collection. Please refer to the LinkedIn privacy policy for details of exactly what information is transmitted. There you will also find information on how to contact us and how to adjust various settings.
We are committed to achieving a high level of customer satisfaction and use these services primarily to enable us to contact you and communicate with you. We also see it as an additional way of providing information to supplement our existing services.
Furthermore, we would like to point out that you use LinkedIn and its functions at your own responsibility. This applies in particular to the use of interactive functions (e.g. sharing, commenting or rating).
LinkedIn has provided us with corresponding agreements – in most cases, these are agreements on the joint responsibility for data processing. The use of social media is based on our legitimate business interest.
Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest)
6 GDPR/CCPA compliance (consent management)
We have integrated the WordPress Cookie Consent Plugin (Complianz) of the provider Complianz BV, Kalmarweg 14-5, 9723 JG, Groningen, Netherlands, on our website. We use the plug-in to obtain consent for the use of cookies and tools on our website in accordance with data protection regulations.
The consent management tool records and stores the cookie selection of the respective user of our website. The explicit consent of the website visitor ensures that statistical and marketing cookies are only then set.
Complianz BV collects, transmits and stores certain user information (including the IP address) so that the selected settings can be clearly assigned to the respective website visitor.
For more information, please refer to Complianz BV’s privacy policy at https://complianz.io/legal/privacy-statement/.
Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest)
7 Data processing for Google services
We have entered into a contract with Google Ireland Limited (“Google”), a company incorporated and operated under Irish law (registration number: 368047) with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland . Nevertheless, data may be transferred from Europe to the USA, over which we as a company have no influence.
Google has certified itself in accordance with the adequacy decision for the transfer of personal data to the USA. The European Commission concludes that there is an adequate level of protection for personal data transferred from the EU to a company certified under the EU-US data protection framework in the USA, which is why data transfer is permitted under Art. 45 GDPR.
You can find out what data is collected by Google and what this data is used for at https://www.google.com/intl/de/policies/privacy/.
7.1 Google Doubleclick
The website uses the online marketing tool DoubleClick. The Google advertising network and certain Google services can be used to support AdWords customers and publishers in placing and managing ads on the web. DoubleClick uses cookies to serve ads that are relevant to users, to improve campaign performance reports or to prevent a user from seeing the same ads more than once. Google uses a cookie ID to record which ads are displayed in which browser and can thus prevent them from being displayed more than once. In addition, DoubleClick can use cookie IDs to record so-called conversions that are related to ad requests. This is the case, for example, when a user sees a DoubleClick ad and later visits the advertiser’s website with the same browser and makes a purchase there. According to Google, DoubleClick cookies do not contain any personal information. Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our level of knowledge: Through the integration of DoubleClick, Google receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is a possibility that the provider will find out your IP address and store it.
Legal basis: Art. 6 para. 1 lit. a GDPR (consent)
7.2 Google Fonts
We use Google Fonts on our website. To ensure a uniform and appealing display of the fonts and icons, your browser loads the required fonts into your browser cache. To do this, it is necessary for the browser you are using to contact the Google Fonts servers, which means that Google Fonts becomes aware that our website has been accessed via your IP address.
Legal basis: Art. 6 para. 1 lit. a GDPR (consent)
7.3 Google Photos
For a user-friendly experience, we use the cloud-based storage service Google Photos. When you access images on our website, your browser establishes a connection to Google’s servers. Your IP address is transmitted to Google for this purpose. In order to display the images correctly, the required pages are loaded into your browser cache.
You can find more detailed information here: https://www.google.com/photos/
Legal basis: Art. 6 para. 1 lit. a GDPR (consent)
8 Data processing when using Matomo
We have integrated the web analysis service Matomo (www.matomo.org), formerly Piwik, from the provider InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand, (“Matomo”) on our website for the statistical analysis of user behavior and for optimization and marketing purposes. The EU Commission has certified an adequate level of data protection for New Zealand, which is why data transfer is permitted in accordance with Art. 45 GDPR.
The following data is processed: Browser type, browser version, operating system, country of origin, date and time of the server request, number of visits, time spent on the website and the external links you click on. The IP address is anonymized before it is saved. Pseudonymized user profiles can be created and evaluated from this data. The data collected is processed on our servers and is not passed on to third parties.
The information generated in the pseudonymous user profile is not used to personally identify the website visitor and is not merged with personal data about the bearer of the pseudonym.
For more information, please refer to Matomo’s privacy policy at https://matomo.org/gdpr/.
Legal basis: Art. 6 para. 1 lit. a GDPR (consent)
9 Data processing when using YouTube
We operate a YouTube channel and have integrated YouTube videos into our website, which are stored on www.youtube.com. The operating company of YouTube is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
We use YouTube videos in extended data protection mode. With this setting, YouTube does not store any cookies when you visit our website. A connection to YouTube’s servers is only established when you start playing the embedded videos. YouTube uses cookies for data collection and statistical data analysis. YouTube is informed which pages you visit. If you are logged in to YouTube, your data will be assigned directly to your account. YouTube uses your data for advertising and market research purposes.
By using this service, personal data is transferred to the USA or such a transfer cannot be ruled out. Google has certified itself in accordance with the adequacy decision for the transfer of personal data to the USA. The European Commission concludes that there is an adequate level of protection for personal data transferred from the EU to a company certified under the EU-US data protection framework in the USA, which is why data transfer is permitted under Art. 45 GDPR.
The integration of YouTube leads to the reloading of Google services on our website, in particular Google Doubleclick, Google APIs, Google Video, Google Photos, Google Static and Google Fonts.
Further information on data protection at “YouTube” can be found in the provider’s privacy policy at: https://www.google.de/intl/de/policies/privacy/
Legal basis: Art. 6 para. 1 lit. a GDPR (consent)
10 Your rights
You have the following rights vis-à-vis us with regard to your personal data:
• Right to information, correction and deletion
• Right to restriction of processing
• Right to object to the processing
• Right to data portability
• Right to lodge a complaint with the Austrian data protection authority
Barichgasse 40 – 42, 1030 Vienna, Telephone: +43 1 52 152-0
E-mail: dsb@dsb.gv.at
If you are of the opinion that we have violated Austrian or European data protection law in the processing of your data and thereby infringed your rights, please contact us so that we can clarify any questions you may have.
Please send your inquiries and requests by e-mail to office@zeta.com or contact us using the contact details provided.
11 Changes to this privacy policy
We reserve the right to make changes to our privacy policy from time to time. We will publish all changes to the privacy policy on this page. Please refer to the latest version of our privacy policy in this regard.
12 Further data protection information
Further information on data processing in the ZETA GmbH is available here: Data Protection – ZETA