peak_sun_logo

Data protection policy

The operators of these pages are fully committed to the protection of your personal data. We treat your personal data as confidential and in accordance with the statutory data protection regulations and this data protection policy. A variety of your personal data is collected when you use this website. Personal data is data which can be used to identify you personally. This data protection policy sets out which data we collect and what we use it for. It also explains how it is processed and for what purpose.

Who is responsible for data processing on this website?

PeakSun PV 1 GmbH
Knorrstrasse 6
A-4600 Wels

Email: info@peaksun.at

Which data is processed and what sources does it come from?

The following personal data is processed:

name data
contact data

Some of your data is collected when you provide it to us. This includes data that you enter in a contact form. Other data is collected by our IT systems when you visit the website, either automatically or after you have given your consent. This is mainly technical data (e.g. your internet browser, operating system or viewing time). This data is collected automatically as soon as you visit this website.

For what purposes and on what legal basis do we process your data?

Contact form

If you send us an enquiry by filling in the contact form, we will store your details from the form, including the contact details you have given us, for the purpose of processing your enquiry and in case we need to contact you again. We will not share this data without your consent. This data is processed on the basis of Article 6 (1)(b) EU-GDPR, provided that your enquiry is related to the performance of a contract or is necessary for the implementation of measures leading to the conclusion of a contract. In all other cases, processing is based on our legitimate interest in the effective handling of the enquiries addressed to us (Article 6 (1)(f) EU-GDPR) or on your consent (Article 6 (1)(a) EU-GDPR) if this has been requested. You can revoke your consent at any time. We will retain the data you enter in the contact form until you request that we erase it, revoke your consent to its storage or the purpose for storing the data no longer applies (e.g. after we have finished processing your enquiry). Mandatory statutory provisions – particularly retention periods – remain unaffected.

Enquiries submitted by email, telephone

If you contact us by email or telephone, we will store and process your enquiry including all personal data resulting from it (name, enquiry) for the purpose of processing your request. We will not share this data without your consent. This data is processed on the basis of Article 6 (1)(b) EU-GDPR, provided that your enquiry is related to the performance of a contract or is necessary for the implementation of measures leading up to the conclusion of a contract. In all other cases, processing is based on our legitimate interest in the effective handling of the enquiries addressed to us (Article 6 (1)(f) EU-GDPR) or on your consent (Article 6 (1)(a) EU-GDPR) if this has been requested. You can revoke your consent at any time. We will retain the data you transmit to us as part of your enquiry until you request that we erase it, revoke your consent to its storage or the purpose for storing the data no longer applies (e.g. after we have finished processing your request). Mandatory statutory provisions – particularly legal retention periods – remain unaffected.

Visiting the website

Your browsing behaviour may be statistically analysed when you visit this website. This is done primarily with what are known as analysis programmes. Some of the data is collected to ensure that the website can be accessed reliably and correctly. Other data may be used to analyse your user behaviour.

How is your data protected?

This site uses SSL and TLS encryption for security purposes and to safeguard the transmission of confidential content, such as orders or enquiries that you send to us as site operator. You can tell when a connection is encrypted when the browser’s address bar changes from http:// to https:// and by the lock symbol in your browser bar. The data you transmit to us cannot be viewed by third parties when SSL or TLS encryption is activated.

How long do we store your data?

Unless a more specific retention period is stated within this data protection policy, we will retain your personal data until the purpose for processing the data no longer applies. If you assert a justified request for erasure or revoke your consent to data processing, your data will be erased unless we have other legally valid reasons for storing your personal data (e.g. retention periods under tax or commercial law).If this is the case, your data will be erased once these reasons no longer apply.

Is your data transferred to a third country or to an international organisation?

Data is only transferred to countries outside the EU or the EEA (third countries) if this is necessary to process your order and is required by law, if you have given us your consent or within the framework of commissioned data processing. If third-country service providers are used, they are required to comply with European levels of data protection.

Is automated decision-making, including profiling, carried out?

The company automatically uses and processes customers’ personal data within the scope of its anti-money laundering checks with the aim of evaluating certain personal aspects. This is profiling, but no automated individual decisions are made. Such processing is carried out on the basis of legal and regulatory requirements to combat money laundering and terrorist financing.

The following data is collected and processed within the framework of profiling: Name, date of birth, birthplace, residential address, nationality, type of ID card, ID card number, date the ID card was issued, availability, bank account/account records, classification as “Politically Exposed Person”, transaction on your or a third party’s account, reason for the report, legal basis for the report, business case/transaction, type and date of the business/transaction, currency, amount, current balance, justification/reason for the report, related documents.

These measures are designed to also protect the customer.

Who has access to my data?

Within the company, your data will be disclosed to those departments and employees who need it to fulfil our contractual, legal and supervisory obligations and our legitimate interests. In addition, we will share your data with the following commissioned data processors who assist the company in the provision of its services:

  • back office service providers, IT service providers and/or providers of data hosting solutions or similar services;

  • other service providers, providers of tools and software solutions that also support the company in the provision of its services and operate by order of the company (incl. providers of marketing tools, marketing agencies, communication service providers, shipping service providers and call centres).

All commissioned data processors process customer data exclusively by order of the company and on the basis of the company’s instructions. The company also discloses the customer’s personal data to the following recipients (controllers) to the extent necessary:

  • any third parties involved in the provision of services to the customer in order to fulfil the company’s contractual obligations (e.g. distribution partners);

  • external third parties to the extent necessary on the basis of the company’s legitimate interests (e.g. auditors and tax advisors, insurance companies in the event of an insurance claim, legal representatives in the event of an incident);

  • government authorities and other public bodies to the extent required by law (e.g. tax authorities).

All commissioned data processors and controllers are contractually obliged to treat your data as confidential and to process it only within the scope of providing the service.

What are your rights regarding your data?

You have the right to obtain information about the source, recipient and purpose of your stored personal data at any time and free of charge. You also have the right to request that this data be corrected or erased. If you have given your consent to data processing, you can revoke this consent at any time for the future. You also have the right to request that the processing of your personal data be restricted in certain circumstances. Furthermore, you have the right to submit a complaint to the competent supervisory authority. Please contact us at any time if you have any further questions regarding this or data protection in general.

Right to data portability

You have the right to request that we provide you or a third party with the data that we process automatically on the basis of your consent or to fulfil a contract in a commonly used, machine-readable format. If you request that the data be transferred directly to another controller, this will only be done to the extent that it is technically feasible.

Revoking your consent to data processing

Many data processing procedures are only possible if you have explicitly consented to them. If you have already given your consent, you can revoke it at any time. This does not affect the lawfulness of the data processing carried out before you revoked your consent.

Right to object to the collection of data in specific cases and to direct marketing (Article 21 EU-GDPR)

IF YOUR DATA IS PROCESSED ON THE BASIS OF ARTICLE 6(1)(E) OR (F) OF THE EU GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. PLEASE REFER TO THIS DATA PROTECTION POLICY FOR THE RELEVANT LEGAL BASIS ON WHICH PROCESSING IS BASED. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA UNLESS WE CAN DEMONSTRATE THAT THERE ARE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THAT THE PROCESSING IS NECESSARY FOR THE ASSERTION, EXERCISE OR DEFENCE OF LEGAL CLAIMS (OBJECTION PURSUANT TO ARTICLE 21 (1) OF THE EU GDPR). IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSE OF SUCH MARKETING; THIS INCLUDES PROFILING TO THE EXTENT THAT IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT MARKETING (OBJECTION PURSUANT TO ARTICLE 21 (2) OF THE EU GDPR).

Right to restriction of processing

You have the right to request that the processing of your personal data be restricted. Please feel free to contact us at any time for further information. You have the right to restriction of processing in the following cases:

  • If you dispute the accuracy of your personal data held by us, we will generally need time to verify this. You have the right to request the restriction of the processing of your personal data for the duration of the verification process.

  • If your personal data was/is processed unlawfully, you can request restriction of data processing instead of erasure.

  • If we no longer need your personal data, but you need it to exercise, defend or enforce a legal claim, you have the right to request restriction of the processing of your personal data instead of erasure.

  • If you have filed an objection pursuant to Article 21 (1) of the EU-GDPR, a balance must be struck between your interests and ours. You have the right to request the restriction of the processing of your personal data until it has been established whose interests prevail.

If you have restricted the processing of your personal data, such data may only be processed (apart from being stored) with your consent or for the purpose of asserting, exercising or defending legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest within the European Union or a Member State.

Right to file a complaint with the competent supervisory authority

Data Protection Authority, Barichgasse 40-42, A-1030 Vienna, www.dsb.gv.at

If the EU-GDPR has been violated, data subjects have the right to file a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation. This right to file a complaint applies without prejudice to any other administrative or judicial remedy.

linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram