Privacy Policy2018-08-07T11:01:19+00:00

Privacy Policy

Your Data privacy is very important for us here at ALP GOAT and we want to be open and transparent with our processing of your personal data.
That’s why whe have a policy setting out how your personal data will be processed and protected.

Who is the controller of your personal data?

ALP GOAT GmbH
Hainburgerstrasse 44 Top 1/2
1030 Vienna
Austria

Where do we store your data?
The data that we collect from you is stored within the European Economic Area (“EEA”) but may also be transferred to and processed in a country outside of the EEA. Any such transfer of your personal data will be carried out in compliance with applicable laws.
For transfers outside the EEA, ALP GOAT will use Standard Contractual Clauses and Shields as safeguards for countries without adequacy decisions from the European Commission.

Who can access your data?
We never pass on, sell or swap your data for marketing purposes to third parties outside our company.
Data that is forwarded to third parties, is only used to provide you with our services. You will find categories of third parties below.

What is the legal ground for processing?
For every specific process of personal data we collect from you, we will inform you whether the provision of personal data is statutory or required to enter a contract and whether it is an obligation to provide the personal data and possible consequences if you choose not to.


What are your rights?

Right to access:
You have the right to request information about the personal data we hold on you at any time. You can contact ALP GOAT and we will provide you with your personal data via e-mail.

Right to portability:
Whenever ALP GOAT processes your personal data, by automated means based on your consent or based on an agreement, you have the right to get a copy of your data transferred to you or to another party. This only includes the personal data you have submitted to us.

Right to rectification:
You have the right to request rectification of your personal data if the information is incorrect, including the right to have incomplete personal data completed.

Right to erasure:
You have the right to erase any personal data processed by ALP GOAT at any time except for the following situations:

*you have an ongoing matter with Customer Service
*you have an open order which has not yet been shipped or partially shipped
*you have an unsettled debt with ALP GOAT, regardless of the payment method
*if you are suspected or have misused our services within the last four years
*your debt has been sold to a third party within the last three years or one year for deceased customers
*your credit application has been rejected within the last three months
*if you have made any purchase, we will keep your personal data in connection to your transaction for book-keeping purposes

Your right to object to processing based on legitimate interest: 
You have the right to object to processing of your personal data that is based on ALP GOAT’s legitimate interest. ALP GOAT will not continue to process the personal data unless we can demostrate legitimate grounds for the process which overrides your interest and rights or due to legal claims.

Your right to object to direct marketing:
You have the right to object to direct marketing, including profiling analysis made for direct marketing purposes.

You can opt out from direct marketing by the following means:

* following the instruction in each marketing emails
* by editing the settings of your ALP GOAT account

Right to restriction:
You have the right to request that ALP GOAT restricts the process of your personal data under the following circumstances:

* if you  object to a processing based ALP GOAT’s legitimate interest, ALP GOAT shall restrict all processing of such data pending the verification of the legitimate interest.
* if you have claim that your personal data is incorrect, ALP GOAT must restrict all processing of such data pending the verification of the accuracy of the personal data.
* if the processing is unlawful you can oppose the erasure of personal data and instead request the restriction of the use of your personal data instead
* if ALP GOAT no longer needs the personal data but it is required by you to defend legal claims.

How can you exercise your rights?
We take data protection very seriously and therefore we have dedicated customer service personnel to handle your requests in relation to your rights stated above. You can always reach them at datenschutz@alpgoat.com.

Data Protection Officer:
We have appointed a Data Protection Officer to ensure that we continuously process your personal data in an open, accurate and legal manner. You can contact our Data Protection Officer at datenschutz@alpgoat.com and write DPO as subject matter.

Right to complain with a supervisory authority:
If you consider ALP GOAT to process your personal data in an incorrect way you can contact us. You also have the right to raise a complaint to a supervisory authority.

Updates to our Privacy Notice:
We may need to update our Privacy Notice. The latest version of the Privacy Notice is always available on our website. We will communicate any material changes to the Privacy Notice, for example the purpose of why we use your personal data, the identity of the Controller or your rights.

 

COOKIES

ALP GOAT’s website make use of cookies to save and retrieve information about your visit to our sites. Cookies are small files of software which save and retrieve information about your visit to a website or application. They reside in your internet browser to help remember your preferences and previous activity. You can find more information about cookies at www.allaboutcookies.org and www.youronlinechoices.eu.

Cookies currently used on our site identify you as an anonymized number. We and our partners (e.g., marketing partners, affiliates, or analytics providers) use cookies and log files to analyze trends, administer the website, track users movements around the website, and gather demographic information about our user base. We may receive anonymized reports based on the use of these technologies by our partners on an aggregated basis. We also use this data to provide the site’s content, ensure the functionality of our information technology systems, and to optimize our website. The legal basis for this processing is Art. 6(1)(f) GDPR. The data of log files will be stored separately from your other personal data.

Users can control and refuse the use of cookies at the individual browser level. Cookies installed can be deleted. If you reject cookies, you may still use our website, but your ability to use some features or areas of our website may be limited.

 

When you visit our website, the following categories of cookies will be set in your browser:

(1) Strictly necessary cookies
These cookies are essential in order to enable you to move around a site and use its features. Without these cookies services you have asked for cannot be provided.
Registered Visitor Cookie – A unique identifier given to each registered user, used to recognize you anonymously through your visit and when you return to the site.

(2) Performance cookies
These cookies collect information so that we can analyse how our visitors use our site. These cookies do not collect information that identifies you. All information these cookies collect is anonymous and is only used to improve how our site works.

(3) Functional cookies
These cookies allow websites and applications to remember choices you make (e.g., such as your user name or the region you are in) and provide enhanced, more personal features.

We may use information collected from functional cookies to identify user behaviour and to serve content based on the user profile. These cookies cannot track your browsing activity on other websites. They do not gather any information about you that could be used for advertising or to record where you’ve been on the Internet outside our site.

(4) Analytics cookies
In order to keep our website services relevant, easy to use and up-to-date, we use web analytics services to help us understand how people use the site.

Cookies allow web analytics services to recognise your browser or device and, for example, identify whether you have visited our website before, what you have previously viewed or clicked on, and how you found us. The information is anonymous and only used for statistical purposes, and it helps us to analyse patterns of user activity and to develop a better user experience.

 

Registration

(1) Be scription and scope of data processing
On our website, we offer users the opportunity to register by providing personal information. The data is entered into an input mask and transmitted to us and stored. A transfer of data to third parties does not take place. The following data is collectedduring the registration process:

(1)    salutation
(2)    first given name
(3)    Surname
(4)    Birthday (optional)
(5)    Telephone (optional)
(6)    e-mail address
(7)    Club / company (optional)
(8)    Ust -ID (optional)
(9)    address

At the time of registration, the following data is also stored:

(1)    The IP address of the user
(2)    Date and time of registration
(3)    language

As part of the registration process, the consent of the user to process this data is obtained.

(2) Legal basis for data processing
Legal basis for the processing of the data is in the presence of a consent of the user Art.   6 para.   1 lit.   a GDPR.

(3) Purpose of the data processing
User registration is required for the provision of certain content and services on our website.

(1)       order history
(2)       Customized prices

(4) Duration of storage
The data will be deleted as soon as it is no longer necessary for the purpose of its collection.
This is the case for the data collected during the registration process when the registration on our website is canceled or modified.

(5) Opposition and removal possibility
As a user, you always have the option to terminate the registration. You can change the data stored about you at any time.
A change of the data is possible at any time via the online customer account. To delete the data, send an e-mail to datenschutz@alpgoat.com .

Third Party Applications

We will respect and protect your privacy as set out in this Privacy Policy. We will share your personal data with third parties only in the ways that are described in this Privacy Policy – and do not and will not sell your personal data.

ALP GOAT shares your personal data with third parties, in particular non-ALP GOAT parties, only with your express consent or under another lawful basis for processing under the applicable law.

Categories of non-ALP GOAT parties with which we share your personal data include vendors such as host and cloud service providers, marketing and mailing agencies, and sub-contractors involved in the fulfilment of our contractual obligations towards our clients. The legal basis for this processing is Art. 6(1)(f) GDPR.

 

(1) Facebook conversion pixels
We use the “Custom Audience pixel” of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”) on our website. With its help, we can keep track of what users do after they see or click on a Facebook advertisement. This enables us to monitor the effectiveness of Facebook ads for purposes of statistics and market research. Data collected in this way is anonymous to us, which means we cannot see the personal data of individual users. However, this data is saved and processed by Facebook. Facebook can connect this data with your Facebook account and use it for its own advertising purposes, in accordance with Facebook’s Data Policy which can be found at https://www.facebook.com/about/privacy/. You can allow Facebook and its partners to place ads on and outside of Facebook. A cookie can also be saved on your device for these purposes.
Please click here if you would like to withdraw your consent https://www.facebook.com/settings/?tab=ads#_=_

 

(2) Google Analytics
Our website uses Google Analytics, a web analysis service of Google, Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, www.google.com (“Google Analytics” or “Google”). Google Analytics employs cookies that are stored to your computer in order to facilitate an analysis of your use of the site. The information generated by these cookies, such as time, place and frequency of your visits to our site, including your IP address, is transmitted to Google’s location in the US and stored there.
In using Google Analytics our website employs the extension “anonymizeIp”. In doing so, Google abbreviates and thereby anonymizes your IP address before transferring it from EU/EEA member states. Google uses this information to analyze your use of our site, to compile reports for us on internet activity and to provide other services relating to our website.
Google may also transfer this information to third parties where required to do so by law or where such third parties process this data on Google’s behalf. Google states that it will in never associate your IP address with other data held by Google. You can prevent cookies from being installed by adjusting the settings on your browser software accordingly as noted elsewhere in this Privacy Policy. You should be aware, however, that by doing so you may not be able to make full use of all the functions of our website.
Google Analytics also offers a deactivation add-on for most current browsers that provides you with more control over what data Google can collect on websites you access. The add-on tells the JavaScript (ga.js) used by Google Analytics not to transmit any information about website visits to Google Analytics. However, the browser deactivation add-on offered by Google Analytics does not prevent information from being transmitted to us or to other web analysis services we may engage.
Google Analytics also uses electronic images known as web beacons (sometimes called single pixel gifs) and are used along with cookies to compile aggregated statistics to analyze how our site is used.

You can find additional information on how to install the browser add-on referenced above at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

For the cases in which personal data is transferred to the US, Google has self-certified pursuant to the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework).

 

(3) Google Tag Manager (GTM)
Google Tag Manager (GTM”) is a tag management system to manage JavaScript and HTML tags used for tracking and analytics on websites. Tags are small code elements that, among other things, are used to measure traffic and visitor behaviour: to understand the effect of online advertising and social channels; to set up remarketing and orientation towards target groups; and to test and optimize websites. GTM makes it easier for us to integrate and manage our tags. We use GTM on our website to include the following tracking tools:

  • Google Analytics
  • Facebook Conversion Pixels

If you have performed deactivation, GTM takes this deactivation into account. For more information about GTM’s privacy practices can be found at https://policies.google.com/privacy?hl=en and terms of use at https://www.google.com/analytics/tag-manager/use-policy/.

 

(4) Youtube
Our website uses plugins from the Google-powered YouTube page. Site operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.
When you visit one of our YouTube plug-in-enabled sites, you will be connected to the servers of YouTube. It tells the YouTube server which of our pages you’ve visited.
If you’re logged into your YouTube account, YouTube will allow you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.
The use of YouTube is in the interest of an attractive presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. GDPR.

For more information about how to handle user data, please refer to the YouTube Privacy Policy at https://www.google.com/intl/en/policies/privacy.

 

(5) MailChimp
We use MailChimp to send our newsletter to our subscribers.MailChimp is a service provided by The Rocket Science Group, LLC, 512 Means Street, Suite 404, Atlanta, GA 30318, USA.
The data stored when you registered for the newsletter (email address, name, IP address, and time and date of registration) will be sent to a server operated by The Rocket Science Group in the United States and stored there in accordance with the EU-US Privacy Shield.

Further information about the data protection offered by MailChimp can be found at:
http://mailchimp.com/legal/privacy/

Further information about the EU-US Privacy Shield can be found at:
http://ec.europa.eu/justice/data-protection/international-transfers/eu-us-privacy-shield/index_en.htm

You may cancel your newsletter subscription and revoke your consent to the storage of this data at any time with future effect. For instructions to take this step, please refer to the confirmation email and each newsletter.

Newsletter tracking
Our newsletter includes so-called web bugs that allow us to recognise if and when an email has been opened and which links in the email have been clicked by its recipient.
This data is stored by us so that we can best align our newsletter to the wishes and interests of our subscribers. Accordingly, the data thus collected is used to send personalised newsletters to each recipient.
You will be asked to consent to the use of your personal data as follows:
“I agree that my data and my user responses will be stored electronically by newsletter tracking so that I can receive a personalised newsletter. The revocation of the consent to receive the newsletter constitutes a revocation of the consent for the tracking described above.”
By revoking the consent to receive the newsletter, the consent to the aforementioned tracking is revoked.

(6) Sendcloud
Shipping is done via the SendCloud shipping portal (SendCloud GmbH, Kanalstr. 10, 80538 München). In accordance with Art. 6 par. 1 letter b GDPR, we exclusively pass your data on to SendCloud for the purpose of processing your online order. Transmission of data only takes place, as far as this is necessary for the completion of the order. Details of SendCloud’s privacy policy can be found on the SendCloud website at https://www.sendcloud.com/privacy-policy/.

(7) Paypal

When paying via PayPal, credit card via PayPal, direct debit via PayPal or – if offered – “purchase on account” or “payment by instalments” via PayPal, we transmit your payment data to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”). The transfer takes place in accordance with Art. 6 (1) point b GDPR and only insofar as this is necessary for payment processing.

PayPal reserves the right to carry out credit checks for the payment methods credit card via PayPal, direct debit via PayPal or, if offered, “purchase on account” or “payment by installments” via PayPal. For this purpose, your payment data may be passed on to credit agencies on the basis of PayPal’s legitimate interest in determining your solvency pursuant to Art. 6 (1) point f GDPR. PayPal uses the result of the credit assessment in relation to the statistical probability of non-payment for the purpose of deciding on the provision of the respective payment method. The credit report can contain probability values (so-called score values). If score values are included in the result of the credit report, they are based on recognized scientific, mathematical-statistical methods. The calculation of the score values includes, but is not limited to, address data. For further information on data protection law, including the credit agencies used, please refer to PayPal’s data protection declaration at: https://www.paypal.com/uk/webapps/mpp/ua/privacy-full.

You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for contractual payment processing.

 

(8)   SOFORT
If the payment method “SOFORT” is selected, the payment is processed via the payment service provider SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany (hereinafter referred to as “SOFORT”), to which we will disclose your information communicated during the ordering process in addition to the information about your order in accordance with Art. lit 6 para. 1,. b Pass on GDPR. Sofort GmbH is part of the Klarna Group ( Klarna Bank AB ( publ ), Sveavägen46, 11134 Stockholm, Sweden). The transfer of your data is exclusively for the purpose of processing payments with the payment service provider SOFORT and only insofar as it is necessary for this. Further information about the privacy policy of SOFORT can be found at the following Internet address: https://www.klarna.com/sofort/datenschutz

You can object to the storage and use of your data for this purpose at any time by a message to the service provider.