Privacy policy

SMATRICS GmbH & Co KG
Europaplatz 2 / Stiege 4
1150 Vienna
Austria

Contact information of our Data Protection Officer:
Marlies Kölblinger, BSc, LL.B.
datenschutz@smatrics.com

General information about this data processing

In this data processing "public charging", personal data of you will be processed exclusively if you are entitled to charge at public charging stations due to a contract with us.

This data processing also includes roaming. If there is any deviation from this information in the context of roaming, this will be explicitly stated.

Categories of data processed and categories of data subjects

This data processing exclusively concerns customers of SMATRICS.

Within the scope of this data processing, we process the following categories of personal data:

Data identifying you, Data communicating with you, Contract data, Data relating to your charges (including data relating to charges with roaming partners), Billing data and Payment data.

Purposes of data processing

The purposes of data processing are the providing of contractual services, including its ancillary services and other obligations resulting from the contract (which includes the processing of roaming), the prevention of misuse, the assertion of legal claims and the fulfillment of (post-)contractual statutory storage obligations.

Legal basis of data processing

We process the categories of data listed above based on the performance of (pre-)contractual measures pursuant to Art 6 para 1 lit b GDPR and based on our legitimate interest pursuant to Art 6 para 1 lit f GDPR.

Our legitimate interest is, in addition to the proper processing of the contractually specified services and the ancillary services, ensuring compliance with contractual provisions and - in the event of breaches of contractual provisions - the enforcement of these breaches, the allocation of payments and the management of customer data.

Duration of data processing

All data will be processed until 3 years after the termination of the contract.

Thereafter, only those data will continue to be stored which are required to be stored in order to comply with statutory storage obligations, in particular pursuant to Section 132 (1) of the Federal Tax Code (in german: „Bundesabgabenordnung“). The mandatory storage of this data is based on Art 6 para 1 lit c and Art 6 para 1 lit f GDPR. The legitimate interest of us in this case is the fulfillment of legal storage obligations.

Recipients

Your data will be passed on by us to our IT infrastructure service providers as data processors, to our CRM service provider as data processors and to our service providers for services from the invoicing process and payment.

If your contract also provides for payment by credit card, we will pass on your credit card data to our payment service provider as our data processor and to our acquirer as own data controller.

In the event of litigation or non-payment, we will also share your information with law firms and/or courts or with a debt collection service provider.

If you are entitled to roam, we pass on data for identification purposes in - from the point of view of roaming platform operators - anonymized form to roaming platform operators.

We as the recipient of your data

When you charge at a SMATRICS EnBW GmbH charging station, SMATRICS EnBW GmbH as CPO transmits personal data to us. This data is data to identify you and data about the charging itself. SMATRICS EnBW GmbH collects and forwards this data to us on our behalf. SMATRICS EnBW GmbH is our data processor.

If you are entitled to roam, we receive data about your charge and identification data from roaming partners (other charging station operators with whom we have concluded contracts) and subsequently from the roaming platforms. This data is collected by the roaming partner, forwarded to the roaming platform and the roaming platform forwards this data to us. The data identifying you are not a new personal data for us, but those are already known to us, as it has been created by us.

All these roaming data are not publicly accessible.

General information about this data processing

Online Direct Payment, colloquially referred to as "ad hoc charging", means the charging of vehicle on an ad hoc basis without entering into a longer-lasting contractual relationship as specified in Section 3 para 4 of the Federal Act on the Establishment of Uniform Standards in the Construction of Infrastructure for Alternative Fuels (in german: „Bundesgesetz zur Festlegung einheitlicher Standards beim Infrastrukturaufbau für alternative Kraftstoffe“).

This type of charging allows you to charge a vehicle without entering into a longer-lasting contractual relationship with us. The Online Direct Payment contract automatically expires after the end of the charging process.

The provision of data in this data processing is not required by law. However, without the provision of your data, we can not provide our services.

Categories of data processed and categories of data subjects

The data processing exclusively concerns Online Direct Payment customers.

Within the scope of this data processing, we process the following categories of data: Contact data (Email address), credit card data, loading data and billing and payment receipt data.

Purposes of data processing

The purposes of data processing are the processing of contractual services and the fulfillment of legal storage obligations.

Legal basis of data processing

We process the categories of data listed above based on our legitimate interest pursuant to Art 6 para 1 lit f GDPR and based on the implementation of (pre-)contractual measures pursuant to Art 6 para 1 lit b GDPR.

Our legitimate interest is, in addition to the proper processing of the contractually specified services and ancillary services the processing of payment, the issuing of an invoice and sending the same and - if the contract has not been properly fulfilled - in the defense or assertion of legal claims.

Duration of data processing

All data will be processed until 3 years after complete fulfillment of the contract.

Thereafter, only those data will continue to be stored which must be stored in order to comply with the statutory retention obligations, in particular due to Section 132 para 1 Federal Tax Code (in german: „Bundesabgabenordnung“). The mandatory storage of this data is based on Art 6 para 1 lit c GDPR.

Recipients

The credit card data is passed on by us to our payment service provider, hobex Service IT GmbH, as our data processor.

In addition, the credit card data is passed on to our acquirer, card complete Service Bank AG, as an own data controller.

Your contact data will be passed on by us to our service provider for sending e-mails, VERBUND Services GmbH, as our order data processor.

General information about this data processing

In this data processing " Charge at Home", personal data of you will be processed if you conclude a contract for the SMATRICS Charge at Home.

The provision of data in this data processing is not required by law. However, without the provision of your data, we cannot provide our services.

Categories of data processed and categories of data subjects

The data processing exclusively concerns customers of SMATRICS.

Within the scope of this data processing, we process the following categories of data:

Data to identify you, Data to communicate with you, Delivery and billing address, Installation location as well as Payment data and Billing data.

Purposes of data processing

The purposes of the data processing are the providing of the contractual services, including its ancillary services and other obligations resulting from the contract and the fulfilment of legal storage obligations.

Legal basis of data processing

We process the categories of data listed above based on the implementation of (pre-)contractual measures pursuant to Art 6 para 1 lit b DSGVO and based on our legitimate interest pursuant to Art 6 para 1 lit f DSGVO.

Our legitimate interest is the contractual processing of the services specified in the contract and the ancillary services, which also includes the processing of payment and invoicing, the issuing of an invoice for sending the same and - if the contract has not been properly fulfilled - in the defense or assertion of legal claims.

Duration of data processing

All data will be processed until 3 years after complete fulfilment of the contract.

Thereafter, only those data will continue to be stored which must be stored in order to comply with the statutory retention obligations, in particular on the basis of § 132 para 1 of the Federal Fiscal Code (Bundesabgabenordnung). The mandatory storage of this data is based on Art 6 para 1 lit c DSGVO and Art 6 para 1 lit f DSGVO. The legitimate interest of us in this case is the fulfilment of legal retention obligations.

Recipients

Your data will be passed on by us to our IT infrastructure service providers as data processors, to our CRM service provider as data processor and to our suppliers and service providers for the fulfilment of deliveries and services under the contract. We pass your name with your employer to confirm your entitlement to enter into the contract.

Your personal data will be passed on to our CRM service provider, Sugar CRM Inc., 10050 N Wolfe Road, SW2-130 Cupertino, CA 95014, who will also send out the newsletter designed by us on our behalf.

Please note that SugarCRM Inc. is not covered by the adequacy decision between the US and the EU, but the data transfer is justified on the basis of appropriate guarantee, namely the conclusion of standard contractual clauses in combination with additional measures.

In the event of litigation or non-payment, we will also share your data with law firms and/or courts or with a debt collection service provider.

General information about this data processing

On our website you have several opportunities to use contact forms to get in touch with us.

The provision of data in this data processing is not required by law or contract. Without the provision of the e-mail address, we can not respond to your request. Without providing the data from the "How can we help you?" field, your request may be assigned to the wrong competent department, preventing or delaying the processing of the request. We cannot respond to a request without entering a message. The remaining data is optional and merely facilitates the processing of your request or shortens the processing time.

Categories of data processed and categories of data subjects

The data processing may only concern requesting persons. Such requesting persons may be customers, suppliers, interested parties or any other persons.

In the context of this data processing, we process the following mandatory categories of data: Contact data (e-mail address), data to classify your request, the request and technical data arising during processing (for example, error messages in the delivery of the response to the request).

Optionally, you can also provide data of the following data categories: Personal data (first name, last name), contact data (telephone number) and data on the company to which you belong (company name, country/region).

Purposes of data processing

The purpose of the data processing is to handle your request (for example, answering your questions, preparing an offer, conducting pre-contractual discussions and responding to criticism).

The optional data has the purpose of facilitating the processing of your request by allowing us to call you instead of sending you an email or to assign your request to you as a customer (if you are a customer of ours).

Legal basis of data processing

We process the mandatory data on the basis of the implementation of (pre-)contractual measures pursuant to Art 6 (1) point b GDPR and on the basis of our legitimate interest pursuant to Art 6 (1) point f DSGVO.

Our legitimate interest is the processing of the request and/or the conclusion of a contract, including all activities to be carried out until the conclusion of the contract.

Duration of data processing

If a request is attributed to you as a customer, the data will be stored for as long as your data is stored as a customer (usually until 3 years after termination of the contract).

If you are not a customer of ours, your data will be stored for 3 years from the time of the last communication.

Processors

Your personal data will be passed on to our service provider for Microsoft Office, VERBUND Services GmbH and to our CRM service provider as our order data processors.

Your personal data will be passed on to our CRM service provider, Sugar CRM Inc., 10050 N Wolfe Road, SW2-130 Cupertino, CA 95014, who will also send out the newsletter designed by us on our behalf.

Please note that SugarCRM Inc. is not covered by the adequacy decision between the US and the EU, but the data transfer is justified on the basis of appropriate guarantee, namely the conclusion of standard contractual clauses in combination with additional measures.

Other recipients

There are no other recipients.

However, data may be passed on in case of an occasion, for example, if the inquiry is a product inquiry and the product in question can only be offered with one of our partners, then your data will be passed on to this partner as own controller, or if a legal dispute arises from an inquiry, your data will be passed on to lawyers, courts or administrative authorities.

General information about this data processing

This section informs you about the data processing that will be carried out after submitting the form for our product CPOaaS.

The provision of data in this data processing is not required by law or contract. Without the provision of the contact data, no conversations can be initiated. Without the provision of the other data, we cannot create an offer, make an evaluation of whether CPOaaS is the right product and thus conclude a contract.

Categories of data processed and categories of data subjects

The data processing exclusively concerns interested parties in products offered by SMATRICS.

Within the scope of this data processing, we process the following categories of data:

Identification data, address data, contact data, communication data, offer data, contract data, location data, technical data on the installation site, technical data on already existing charging stations, data on the optional, desired service components, data on the desired charging infrastructure as well as other data on the service provision (site plan, energy diagram, other documents and freehand comments).

Purposes of data processing

The purposes of the data processing are the identification of our future contractual partner, the processing of the inquiry, which includes in particular the evaluation whether CPOaaS is the appropriate product and the evaluation of your needs, the contact with you to present the product CPOaaS and potentially other products, the conduct of pre-contractual discussions, the negotiations, the performance of an installation check, finally the preparation of an offer and the conclusion of the contract.

Legal basis of data processing

We process the categories of data listed above on the basis of our legitimate interest pursuant to Art 6 (1) point f GDPR and on the basis of the implementation of (pre-)contractual measures pursuant to Art 6 (1) point b GDPR.

Our legitimate interest is the preparation of an offer tailored to you, in the conduct of pre-contractual discussions, as well as in the performance of an installation check to determine the effort and material in the event of an installation and in the conclusion of a contract.

Duration of data processing

Should we conclude a contract with you, all data will be processed until 3 years after the termination of the contract or after the contractual services ended, whichever is later.

Thereafter, only those data will continue to be stored which must be stored in order to fulfill the statutory retention obligations, in particular due to § 132 (1) Federal Tax Code (in German: “Bundesabgabenordnung”). The mandatory storage of this data is based on Art 6 (1) point c GDPR.

If we do not conclude a contract with you, the data will be processed until 3 years after the time at which it is determined that no contract will be concluded.

Processors

Your data will be passed on by us to our CRM service provider as our data processor.

Your personal data will be passed on to our CRM service provider, Sugar CRM Inc., 10050 N Wolfe Road, SW2-130 Cupertino, CA 95014, who will also send out the newsletter designed by us on our behalf.

Please note that SugarCRM Inc. is not covered by the adequacy decision between the US and the EU, but the data transfer is justified on the basis of appropriate guarantee, namely the conclusion of standard contractual clauses in combination with additional measures.

In addition, we pass on certain data to one of our service providers to carry out an Install-Check as their own data protection controller.

Other Recipients

There are no other recipients.

General information about this data processing

You have the opportunity to register for various free webinars on our website.

The webinars will be recorded unless otherwise expressly announced. You will be notified before you enter the webinar that a recording is taking place. The recording will only capture the screen transmission and audio, but not the participants or chat. Therefore, if you do not wish to appear in the recording, we recommend that you use the chat for questions, comments, or anything else.

After the webinar, these will be made available to everyone on-demand.

The provision of data in this data processing is not required by law or contract. However, without providing the email address, we cannot send an invitation to the webinar.

Categories of data processed and categories of data subjects

The data processing exclusively concerns interested parties of SMATRICS products.

Within the scope of this data processing, we process the following categories of data: Contact data (email address), if you also speak in the webinar: Recording data (your voice in the recording). Optionally, you can enter identification data (first name, last name, company, position).

Purposes of data processing

The purpose of the data processing is to organize and conduct the webinar, including the preparation and follow-up of the webinar, including sending the webinar materials to you and contacting you for more detailed information about our products.

Legal basis of data processing

We process the categories of data listed above due to the performance of a contract pursuant to Art 6 (1) point b GDPR (conduction of the webinar).

Duration of data processing

Your personal data will be deleted 1 year after the email with which you are sent the webinar materials following the webinar. If no e-mail with the webinar materials is sent following a webinar, your data will be deleted 1 year after the webinar has been held.

However, this only applies as long as no permissible further processing of the data takes place, for example if you ask us questions about the webinar or a business relationship arises from the webinar.

Processors

Your personal data will be passed on to our CRM service provider, HubSpot Inc, as our data processor. This company sends the emails about the webinar on our behalf (registration confirmation, reminders and, following the webinar, the email about the recording and webinar materials).

Your personal data will be passed on to our CRM service provider, Sugar CRM Inc., 10050 N Wolfe Road, SW2-130 Cupertino, CA 95014.

Please note that SugarCRM Inc. is not covered by the adequacy decision between the US and the EU, but the data transfer is justified on the basis of appropriate guarantee, namely the conclusion of standard contractual clauses in combination with additional measures.

To conduct the webinar, we use the Zoom tool from Zoom Video Communications Inc, which is our data processor as well.

Other Recipients

There are no other recipients.

However, there may be a disclosure of data in case of cause, for example, if a legal dispute arises from a registration, your data will be disclosed to lawyers, courts or administrative authorities.
 

General information about this data processing

During your visit on any of our websites (smatrics.com or any other website we operate, such as white label websites; hereinafter all such websites are collectively or individually referred to as the "Website"), we use web analytics services.

We use the following web analytics tools:

• Google Analytics

Google Analytics is a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics enables us to analyze your use of our Website. Some information about your use of this Website is transmitted to a Google LLC server in the USA and stored there. To better protect your data, we have switched on IP anonymization in Google Analytics. Your IP address is shortened before it is stored on the Google LLC servers (so-called IP masking). Therefore, the full IP address is not transmitted to a Google LLC server in the USA. Only in exceptional cases the full IP address will be transferred to a Google LLC server in the USA and shortened there. Google LLC will use this information on our behalf for the purpose of evaluating your use of the Website, compiling reports on Website activity for Website operators and providing other services relating to Website activity and internet usage.

• Google Tag Manager

Our website uses the Google Tag Manager of Google Ireland Limited, Gordon House, 4 Barrow Street, Dublin, Ireland. Google Tag Manager is a solution that allows us to manage our Website tags through one interface and implements these tags. The tool only takes care of triggering other tags such as Google Analytics and controls when they are triggered. Google Tag Manager does not access this data itself. If a deactivation has been made at domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager.

• Google Ads

We use Google Ads, an online advertising program from Google Ireland Limited, which allows us to create web ads. Google Ads then shows the ads from us in various Google products. For this purpose, various statistics and analyses about interactions with these advertisements are made in anonymous form.

• Facebook Ads

In addition, we also use Facebook Ads, an online advertising program from Meta Platforms Inc, 1601 Willow Rd, Menlo Park, CA 94025, USA, which allows us to create web ads. Facebook Ads then shows the ads from us in various Meta Platforms products. For this purpose, various statistics and analyses about interactions with these ads are made in anonymous form.

• LinkedIn Ads

We also use LinkedIn Ads, an online advertising program from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA, which allows us to create web ads. LinkedIn Ads then shows the ads from us in LinkedIn. For this purpose, various statistics and analyses about interactions with these ads are made in anonymous form.

• Microsoft UET Tag

We use Universal Event Tracking (UET) Tag, which is a service provided by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin, Ireland 18,D18 P521. This service enables us to track the activities of users on our website if they have reached our website via ads from Microsoft Ads. If you arrive at our Website via such an ad, the Microsoft UET tag cookie is set on your device after you have given your consent in our Consent Management Tool. This is a code that, in conjunction with the cookie, stores some non-personal information about your use of the Website. This includes, among other things, the length of time spent on the Website, which areas of the Website were accessed, and through which ad the users arrived at the Website. In order to better protect your data, we have switched on IP anonymization in the Microsoft UET tag, which means that your IP address is shortened before it is stored on the Microsoft servers (so-called IP masking). Therefore, the full IP address is not transmitted to a Microsoft server in the USA. Information about your identity is not collected.

Microsoft also processes or collects personal data from you as an independent data controller. We are not responsible for this data processing.

For more information about Microsoft privacy and the Microsoft UET Tag, please see Microsoft's privacy policy: https://privacy.microsoft.com/en-us/privacystatement.

To do this, we use the following service providers:The provision of data in this data processing is neither legally nor contractually required.

Categories of data processed and categories of data subjects

The data processing exclusively concerns persons interacting with the Website. Such persons interacting with the Website may be customers, suppliers, interested parties or any other persons.

The data processed and cookies set as part of this data processing, including their purpose, their storage period, whether the cookie is a third-party cookie or not and the name of the cookie will be displayed to you at the respective service in our Cookie Consent Tool.

Purposes of data processing

The data collected is used to analyze user behavior on our digital channels, to measure the effectiveness of advertising activities, to improve and constantly develop marketing and sales activities, and to increase the efficiency and effectiveness of the available content and other SMATRICS services.

Legal basis of data processing

The processing of your data is based on your consent in accordance with Art 6 (1) point a GDPR in conjunction with § 165 para 3 TKG 2021. You can control the consent via our Cookie Consent Tool. It is also possible to give your consent only for certain services that you can select.

You can withdraw this consent at any time either by changing the settings via our Cookie Consent Manager (access it by pressing the button on the bottom left of your device).

Please note, that the withdrawal of your consent does not affect the lawfulness of the processing until the withdrawal.

Duration of data processing

Your personal data will be processed until you withdraw your consent.

Processors

The collection of your data and the preparation of statistics and analyses are carried out by our data processors.

For Google Analytics, Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, is our data processor.

For Google Tag Manager, Google Ireland Limited, Gordon House, 4 Barrow Street, Dublin, Ireland, is our data processor.

For Google Ads, Google Ireland Limited, Gordon House, 4 Barrow Street, Dublin, Ireland, is our data processor.

For Facebook Ads, Meta Platforms Inc, 1601 Willow Rd, Menlo Park, CA 94025, USA, is our data processor.

For LinkedIn Ads, Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA, is our data processor.

For Microsoft UET Tag (except for processing that Microsoft performs on its own), Microsoft Ireland Operations Limited , One Microsoft Place, South County Business Park, Leopardstown, Dublin, Ireland 18,D18 P521, is our data processor.

All of these data processors transfer personal data to a third country (namely the USA). Please note that there is no a EU Commission adequacy decision for this transfer. All of the above-mentioned data processors are covered by the EU Commission's adequacy decision. A data transfer to these order data processors located in the USA is therefore justified.

Nevertheless, we would like to point out that US authorities may access your transferred data.The USA therefore does not have a level of data protection comparable to that of the EU. It is therefore also possible that US authorities can access your transferred data and that you have no effective legal remedies against this.

The legal basis for the data transfer is your consent pursuant to Art 49 (1) point a GDPR.

Other Recipients

There are no other recipients.

However, there may be a transfer of data in case of cause, for example, if a legal dispute arises from this data processing. In such cases, your data will be passed on to lawyers, courts or administrative authorities.

General information about this data processing

When you visit one of our websites (smatrics.com or other websites that we operate, such as white label websites; hereinafter all such websites are collectively or individually referred to as our "website"), so-called server logs are created. These server logs record certain interactions between you and our website.

The provision of data in this data processing is neither legally nor contractually required.

Categories of data processed and categories of data subjects

The data processing exclusively concerns persons interacting with the Website. Such persons interacting with the Website may be customers, suppliers, interested parties or any other persons.

In this data processing, we process the following categories of data: Browser type and version, operating system used, website from which you visit our website (referrer URL), website you access on our server, date and time of your access, your IP address and technical data for assignment to a session (request ID).

Purposes of data processing

The collection of the aforementioned data is necessary to allow you to interact with the website correctly, to display the website correctly, in particular to allow our server to recognize whether to display the mobile variant or the desktop variant of the website shall be displayed and to detect, prevent and investigate attacks on our website.

Legal basis of data processing

The processing of your data is based on our legitimate interest pursuant to Art 6 (1) point f GDPR.

Our legitimate interest is the user-friendly display of our website, the trouble-free operation of our website and other IT systems that are linked to the website, the defense against attacks on our website and the investigation of possible crimes that have been or will be committed on our website.

Duration of data processing

Server logs are automatically discarded usually after 30-90 days, but at the latest after 6 months.

However, in case of an attack on our website, we keep copies of these server logs, which may be kept longer depending on the length of the attack and its investigation.

Processors

The server logs of our website smatrics.com and its subpages are collected by Digimagical GmbH, Legstattgasse 4-6, 3001 Mauerbach, as our data processor.

The server logs of the other websites, in particular the white label websites and their subpages, are collected by Amazon Web Services EMEA SARL, Austrian Branch, Wiedner Gürtel 13/Turm 24/17. OG, 1100 Vienna, as our data processor.

Other Recipients

If there is an attack on the website or an attack has already occurred, the data will be passed on to law enforcement authorities or to other persons for the purpose of clarifying and defending against the attack and possibly to lawyers for the purpose of evaluating and initiating possible legal action and remedies.

General information about this data processing:

You have the option of registering for our newsletter on our website so that you receive the most important first-hand information on the topic of electromobility.

The consent to the newsletter takes place according to the so-called "double opt-in" procedure to ensure that the consent is given from the data subject.

The provision of data in this data processing is neither legally nor contractually required. However, without the provision of the e-mail address, we can not send the newsletter.

Categories of data processed and categories of data subjects:

The data processing exclusively concerns subscribers to the newsletter.

Within the scope of this data processing, we process the following categories of data: Contact data (e-mail address), data regarding your consent (date of consent), technical information (undeliverability of the e-mail, error message) and the newsletter sent.

Purposes of data processing

The purpose of data processing is the delivery of the newsletter.

Legal basis of data processing:

We process the categories of data listed above based on your consent pursuant to Art 6 (1) point a GDPR.

You can withdraw your consent at any time by either clicking on the withdraw button in one of the newsletters or sending an email to info@smatrics.com. Please note, however, that the withdrawal of your consent does not affect the lawfulness of the processing until the withdrawal.

Duration of data processing:

Your personal data will be processed until you withdraw your consent.

Processors:

Your personal data will be passed on to our CRM service providers, HubSpot Inc., as well as Sugar CRM Inc., 10050 N Wolfe Road, SW2-130 Cupertino, CA 95014, who will also send out the newsletter designed by us on our behalf.

Please note that SugarCRM Inc. is not covered by the adequacy decision between the US and the EU, but the data transfer is justified on the basis of appropriate guarantee, namely the conclusion of standard contractual clauses in combination with additional measures.

Other Recipients:

There are no other recipients.

However, there may be a disclosure of data in case of cause, for example, if a legal dispute arises from a newsletter, your data will be disclosed to lawyers, courts or administrative authorities.

As a data subject, you have various rights. Below you will find a short description of the rights to which you are entitled as a data subject.

Right to access

You have the right to request information about the personal data processed. This right to information also includes your right to request a copy of the personal data about you.

Right to rectification

You have the right to request us to correct any inaccurate personal data concerning you and also the right to request us to complete any incomplete personal data concerning you.

Right to erasure

Under the circumstances established by law, you have the right to request from us the deletion of the personal data concerning you.

Right to restriction

In the circumstances established by law, you have the right to request from us the restriction of the processing of personal data concerning you.

Right to data portability

In the circumstances established by law, you have the right to request us to transfer the personal data concerning you to another controller or to receive the personal data concerning you in a structured, commonly used and machine-readable format.

Right to object

For reasons arising from your particular situation, you have the right to object to processing at any time, provided that our processing is based on Art 6 (1) point e GDPR, Art 6 (1) point f GDPR or if we do profiling.

Right to complain

If you believe that our processing of personal data concerning you violates applicable data protection law, you have the right to submit a complaint to the supervisory authority.

The supervisory authority responsible for us and its address is as follows:

Austrian Data Protection Authority
Barichgasse 40-42
1030 Vienna

Right to withdraw consent

If data processing is based on consent given by you, you may withdraw this consent at any time by writing an informal e-mail to info@smatrics.com stating that you withdraw your consent. This option exists besides any special withdrawal options, such as buttons in e-mails.

Please note that the withdraw of consent does not affect the lawfulness of the processing until the consent is withdrawed.

Profiling and automated decision in individual cases

Profiling or an automated decision individual decision-making does not take place.

This privacy policy will be updated continuously according to the further development of our services. Changes to our website will be announced in good time before they are implemented.

Last revised: September 2023