Your browser is outdated!

After spending too much time optimising our website for old browsers, we decided to create a solution that not only saves time, but it is also efficient: please update your browser.

Or download one of the latest browser versions:

Chrome Icon passiv Chrome Icon aktiv Firefox Icon passiv Firefox Icon aktiv Edge Icon passiv Edge Icon aktiv Safari Icon passiv Safari Icon aktiv Opera Icon passiv Opera Icon aktiv
Flugzeug

Data protection statement

Protecting your personal data is a top priority for us!

Our website can be used without providing personal data. 

We process the personal data of specific groups of data subjects exclusively in accordance with the provisions of the Austrian Protection Amendment Act and the General Data Protection Regulation. Data is deemed personal if it can be unambiguously assigned to a specific natural person. The general regulations on the website as well as regulations regarding various groups of data subjects provide you with information on the type, scope and purpose of the collection, use and processing of personal data by


FACC AG

Fischerstraße 9

4910 Ried im Innkreis

dataprivacy@facc.com

 

Since the company does not process data of authorities or public bodies, and its core activity does not consist in carrying out processing operations which require regular and systematic monitoring of data subjects, nor in the extensive processing of special categories of data pursuant to articles 9 and 10 of the General Data Protection Regulation, no data protection officer has been appointed. The data protection coordinator of FACC AG is happy to answer any inquiries regarding data protection at dataprivacy@facc.com.

In this data protection statement, we wish to inform you of the most important aspects of personal data processing within the framework of our website and of other processing activities in connection with external persons. 


Google Analytics

This website uses Google Analytics, a web analysis service of Google Inc. "("Google"). Google Analytics also uses cookies. The information generated by Google cookies about your use of this website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for us and providing other services relating to the use of the website and the internet. Google may also transfer this information to third parties if this is required by law or if third parties process this data on behalf of Google. Under no circumstances will Google associate your IP address with other Google data. By using this website, you consent to the processing of  data collected about you by Google in the manner and for the purposes described above. 

Please note that our website uses Google Analytics with the extension "_anonymizeIp()" to improve data protection. In this case, Google will first shorten your IP address within member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA before being shortened there. This therefore precludes personal identification when analyzing the use of our website. You can refuse the use of Google Analytics cookies by extending your browser, which allows you to exercise your right to object to the proactive collection, processing and use of data by Google Analytics. To do this, you can install the Google Analytics opt-out browser add-on. This prevents Google Analytics from storing information about websites you have visited. For more information and instructions for downloading and installing this opt-out browser add-on, click here.


Facebook Pixel

This website uses the Facebook pixel of the social networking site Facebook, which is operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA or, if you are a resident of the European Union, by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter referred to as "Facebook"). Facebook is certified under the Privacy Shield agreement and thus guarantees compliance with European data protection law.

When visiting our website, software establishes a connection and transmits data to Facebook servers, some of which are located in the USA. The Facebook pixel also uses cookies to store information about website users and to analyze visitors’ use of the website.

All personal data collected by FACC AG is anonymous and therefore does not allow FACC AG to infer the identity of the user. However, as this data is stored and processed by Facebook, a link to the respective Facebook user profile may be established. Facebook may also transfer this information to third parties if this is required by law or in the case that third parties process this data on Facebook's behalf.

Facebook processes data in accordance with Facebook's data usage guidelines. For more information on how the remarketing pixel works and how Facebook ads are displayed in general, please refer to Facebook's Data Use Policy.

FACC AG uses the Facebook pixel on its website for the purposes of pursuing its legitimate interests in analyzing, optimizing and efficiently managing its online content. The legal basis for the processing of personal data using the Facebook pixel is Article 6 para. 1 lit. f of the EU General Data Protection Regulation (GDPR).

The Facebook pixel allows Facebook to select visitors of the FACC AG website as target groups for the display of Facebook ads. FACC AG therefore uses the Facebook pixel accordingly so that the posted Facebook ads are only displayed to Facebook users who have shown an interest in the online content of FACC AG or who exhibit certain characteristics (e.g. an interest in certain topics or products determined on the basis of the websites visited) which FACC AG transmits to Facebook ("custom audiences"). By using the Facebook pixel, FACC AG also wishes to ensure that the Facebook ads match the potential interests of the users and are not perceived as a nuisance. In addition, the Facebook pixel allows FACC AG to track the effectiveness of Facebook ads for statistical and market research purposes by recording whether users were referred to the FACC AG website after clicking on a Facebook ad ("conversion"). For detailed information on how Facebook processes user data, please refer to Facebook's privacy policy.

Disabling the Facebook pixel

You can disable the collection of your user data on our website by activating the option "do not track" in your web browser. Our website recognizes the "do not track" signal that your web browser then transmits to all websites.

Alternatively, if you wish to disable the use of the Facebook pixel only, please click on the following link - an opt-out cookie will be set to prevent the collection of your data when visiting this website in the future: See below.

 

LinkedIn Insight Tag

This website uses the LinkedIn Insight Tag, a web analysis service of LinkedIn Ireland Unlimited Company (hereinafter referred to as "LinkedIn"), Wilton Place, Dublin 2, Ireland, on the legal basis of pursuing our overriding legitimate interests (website usage analysis) pursuant to Article 6 para. 1 lit. f of the EU General Data Protection Regulation (GDPR). 

When visiting our website, software establishes a connection and transmits data to LinkedIn servers, some of which are located in the USA. The LinkedIn Insight Tag also uses cookies to store information about website users and to analyze visitors' use of the website.

According to LinkedIn, the data collected will be used by LinkedIn to evaluate the use of the website, to compile reports on website activity and to provide other services relating to the use of the website and the internet. Furthermore, this information allows us to display relevant offers and recommendations tailored to your interests after you have consulted our website.

LinkedIn may also transfer this information to third parties to the extent that this is required by law or in the case that third parties process this data on behalf of LinkedIn.

Please refer to LinkedIn's privacy policy for further information on the collection and use of data and on your options and rights with respect to the protection of your privacy. Once you have logged in to LinkedIn, you can disable the collection of data at any time. LinkedIn is certified under the Privacy Shield agreement and thus guarantees compliance with European data protection law. 

Disabling the LinkedIn Insight Tag 

You can disable the collection of your user data on our website by activating the option "do not track" in your web browser. Our website recognizes the "do not track" signal that your web browser then transmits to all websites.

Alternatively, if you wish to disable the use of the LinkedIn Insight Tag only, please click on the following link - an opt-out cookie will be set to prevent the collection of your data when visiting this website in the future: See below.

 

Twitter Tag

This website uses the Twitter Tag, a web analysis service of Twitter Inc. (hereinafter referred to as “Twitter“) on the legal basis of pursuing our overriding legitimate interests (website usage analysis) pursuant to Article 6 para. 1 lit. f of the EU General Data Protection Regulation (GDPR). Data is transferred to the USA on the basis of the Privacy Shields agreement.

When visiting our website, software establishes a connection and transmits data to Twitter servers, some of which are located in the USA. The Twitter Tag also uses cookies to store information about website users and to analyze visitors' use of the website. 

According to Twitter, the data collected will be used by Twitter to evaluate the use of the website, to compile reports on website activity and to provide other services relating to the use of the website and the internet. Furthermore, this information allows us to display relevant offers and recommendations tailored to your interests after you have consulted our website.

Twitter may also transfer this information to third parties to the extent that this is required by law or in the case that third parties process this data on behalf of Twitter. 

Please refer to Twitter’s privacy policy for detailed information on the processing of user data.

Disabling the Twitter Tag 

You can disable the collection of your user data on our website by activating the option "do not track" in your web browser. Our website recognizes the "do not track" signal that your web browser then transmits to all websites.

Alternatively, if you wish to disable the use of the Twitter Tag only, please click on the following link - an opt-out cookie will be set to prevent the collection of your data when visiting this website in the future: See below.

 

Cookies policy

These cookies collect information on the browsing behavior of users of our website to ensure that only targeted advertising material which may be of interest to you is displayed. Targeting and advertising cookies may also be used to identify a repeat visit to our website or a visit to a website that is part of the network of our company's advertising partner. IP addresses are exclusively stored in an anonymous and encrypted form. The information to be displayed can be selected based on the interests of the user or on which advertisements he or she has previously viewed. These cookies also ensure that advertisements are displayed correctly and prevent the same advertisement from being shown too often. They are also used to measure the efficiency of advertising campaigns. The storage period of these cookies is three months. To view or delete the anonymized data stored by you (opt-out), please go to the following link.

 

Types of cookies used:

Strictly necessary

Cookie acceptance cookie

Is used to record that a user has consented to the use of cookies

Strictly necessary

Google Tag Manager

Allows Google to recognize a user

Web analysis

Google Analytics

Used by Google to store anonymous user data for Google Analytics

Advertising

Adform 

Used for managing advertising in the AdForm advertising network

Advertising

Facebook Cookie

Used to store information about the website user and to analyze the use of the website by the visitor

Advertising

Twitter Cookie

Used to store information about the website user and to analyze the use of the website by the visitor

Advertising

LinkedIn Cookie

Used to store information about the website user and to analyze the use of the website by the visitor

Competitions

After submitting the competition entry form, the data you have entered will be processed by the person responsible for data protection for the purpose of conducting the competition on the basis of the competition agreement thus concluded until the competition has been concluded. There is no legal or contractual obligation to provide personal data. However, you must provide this information in order to take part in the competition. Failure to do so will merely result in you not being able to enter the competition. Further processing of the data, which is compatible with the original processing purpose, shall be performed, until revocation, on the same legal basis for the purpose of direct marketing in forms not requiring consent, such as the postal dispatch of advertising material addressed to you. In this case, the data will be forwarded to the shipping provider.

X-Share registration

We offer you the possibility of contacting us on our website by using a contact form to request access to our data exchange solution "X-Share". The data you enter there will be used by our company to check and validate your request with respect to applicable law, in particular U.S. and EU export laws. In this case, the information provided by the user for the above-mentioned purposes will be forwarded to the responsible office at FACC. Your data will not be stored on the web server on which this homepage is operated. Your data will not be transferred to third parties and will be deleted upon completion of the check. For more detailed information regarding the procedure, please contact the office indicated on the registration form.

Protection of personal data

We take a number of security measures to ensure the protection and security of your personal data. We take appropriate data collection, storage and processing methods and measures to protect against unauthorized access, modification, disclosure or destruction of personal data processed by FACC. We also take reasonable steps to ensure that personal information is handled securely  by our contractors and service providers and in accordance with our privacy policy. The information is protected in a secure environment by a combination of physical and technical measures. There is no public access to this information. All information provided can only be accessed by special persons with access rights to our systems, who are obliged to keep the information strictly confidential. In addition, national legislation could force us to store information for a certain period of time. Encryption technology is used as required.

Rights

Pursuant to the General Data Protection Regulation, you can contact us free of charge if you have any questions regarding the collection, processing or use of your personal data, or if you wish to rectify, block, delete or object to this data or revoke your consent (the contact details are provided above). Please note that you have the right to have inaccurate data rectified, personal data deleted or data processing restricted if this is not in conflict with statutory storage obligations. You also have the right to appeal to the Austrian Data Protection Authority. 

  

Categories of data subjects


Interested parties

Interested parties are all persons who are interested in our product and our other services and would like to be kept up-to-date on our latest developments on a regular basis.

The personal data of interested parties is processed within the scope of the following processing activities for the following purposes:

Marketing for interested parties

Providing information about products and services

Event management

Planning and organizing events to promote the company and/or its products and services

The legal grounds for processing the personal data of interested parties are based on the following legal basis or legitimate interests:

Processing activity 

Legal basis/ legitimate interests

Marketing

Consent

Event management

Consent

The following categories of personal data are processed in the processing activities listed below:

Marketing

Marketing data

Data includes names, telephone numbers, email addresses, addresses, functions within the company and additional notes (what the interested party is interested in - a product, service or event, for example).

Event management 

Contact details for events

Data includes names, telephone numbers, email addresses and addresses.

 

We do not transfer personal data of the groups of data subjects concerned to recipients or categories of recipients within the scope of our processing activities.

We store your personal data for as long as is required by law and is necessary for the purposes for which it was collected or as is required for use in accordance with the legitimate interests of the company. After this storage period, the time limit for deletion as listed below applies.

Marketing data

3 years after the last contact.

Processing is limited immediately after expiration of the storage period, erase cycle of the data backup within one year.

Contact details for events

3 years after the last contact.

Processing is limited immediately after expiration of the storage period, erase cycle of the data backup within one year.

 

Article 14 of the General Data Protection Regulation also requires information on the origin of the data that we process for the groups of data subjects of concern to you to be disclosed:

Marketing data

The person concerned

Contact details for events

The person concerned

 Automated decision making, including profiling, is not performed in any of the above processing activities.
 


Customers

Customers are all persons who request and purchase products and services from us. 

The personal data of customers is processed within the scope of the following processing activities for the following purposes:

Order processing

Transmission of orders and invoicing for services

Marketing for customers

Providing information about products and services

Event management

Planning and organizing events to promote the company and/or its products and services

 

The legal grounds for processing the personal data of customers are based on the following legal basis or legitimate interests:

Processing activity 

Legal basis / legitimate interests

Order processing

Respective customer contract

Marketing

Consent or legitimate interest (direct advertising between customers and the company)

Event management

Consent or legitimate interest (direct advertising between customers and the company)

 

The following categories of personal data are processed in the processing activities listed below:

Order processing, marketing

Customer master data

Data includes names, addresses, company registration numbers, VAT identification numbers, email addresses and telephone numbers.

Event management 

Contact details for events

Data includes names, telephone numbers, email addresses and addresses.

We do not transfer personal data of the groups of data subjects concerned to recipients or categories of recipients within the scope of our processing activities.

We store your personal data for as long as is required by law and is necessary for the purposes for which it was collected or as is required for use in accordance with the legitimate interests of the company. After this storage period, the time limit for deletion as listed below applies.

Customer master data

For the duration of the business relationship and until all claims have been settled. Thereafter, processing is limited and the data is stored for 7 years (according to the Austrian Federal Fiscal Code).

Processing is limited immediately after expiration of the storage period, erase cycle of the data backup within one year.

Contact details for events

3 years after the last contact

Processing is limited immediately after expiration of the storage period, erase cycle of the data backup within one year.

 

Article 14 of the General Data Protection Regulation also requires information on the origin of the data that we process for the groups of data subjects of concern to you to be disclosed:

Customer master data

Directly from the customer or other publicly available sources

Contact details for events

The person concerned

 Automated decision making, including profiling, is not performed in any of the above processing activities.


Applicants

Applicants are all persons who apply for a vacant position in the company or by means of an unsolicited application.

The personal data of applicants is processed within the scope of the following processing activities for the following purposes:

Applicant management

Application procedure

 

The legal grounds for processing the personal data of applicants are based on the following legal basis or legitimate interests:

Processing activity 

Legal basis / legitimate interests

Applicant management

The applicant has given explicit consent to the processing of the application within the framework of applicant management in accordance with article 6 paragraph 1 lit a or article 9 paragraph 2 lit a of the General Data Protection Regulation.

 

The following categories of personal data are processed in the processing activities listed below:

Applicant management

Applicant details

Name, address, telephone number, date of birth, country of birth, nationality, email address

Professional qualifications, application photos, certificates and letters of application are treated as personal data and contents of the applicant which he/she voluntarily discloses and may contain data pursuant to article 9 (health data, religious affiliation) or article 10 (criminal convictions) of the General Data Protection Regulation.

 

We do not transfer personal data of the groups of data subjects concerned to recipients or categories of recipients within the scope of our processing activities.

Please note that the provision of personal data is required for a possible contract conclusion.

We store your personal data for as long as is required by law and is necessary for the purposes for which it was collected or as is required for use in accordance with the legitimate interests of the company. After this storage period, the time limit for deletion as listed below applies.

Applicant details

Application details: In accordance with legal requirements, but no longer than 6 months after completion of the application procedure

Limited data will be stored for 3 years for the purpose of examining claims for payment within the meaning of section 1486 of the Austrian Civil Code (ABGB).

Processing is limited immediately after expiration of the storage period, erase cycle of the data backup of one year.

 

Article 14 of the General Data Protection Regulation also requires information on the origin of the data that we process for the groups of data subjects of concern to you to be disclosed:

Applicant details

Directly from the applicant

 Automated decision making, including profiling, is not performed in any of the above processing activities.


External service providers

External service providers are all persons who provide services to the company and invoice them accordingly. 

The personal data of external service providers is processed within the scope of the following processing activities for the following purposes:

Service provision

Verification of the service fulfillment of the external service provider

Invoicing of services provided

Invoicing of services provided by external service providers 

Access ManagementManagement of access to the premises
Access Management for computer systemsManagement of usernames, passwords and access-protocols
Export ControlProcessing of Checks due to US/EU export control law

 

The legal grounds for processing the personal data of external service providers are based on the following legal basis or legitimate interests:

Processing activity 

Legal basis / legitimate interests

Service provision

Respective contract with the external service provider

Invoicing of services provided

Respective contract with the external service provider

Access ManagementProtection of business secrets
Access Management for computer systemsManagement of usernames, passwords and access-protocols to ensure information system integrity
Export ControlCompliance with legal requirements

 

The following categories of personal data are processed in the listed processing activities:

Service provision, invoicing of services provided, access management, access management for computer systems, export control

Data of external service providers 

Data includes names, addresses, copy of ID card, telephone numbers, bank details, services and fees.

 

We transfer personal data of the groups of data subjects concerned to the following recipients or categories of recipients within the scope of our processing activities: 

Type of data

Recipient

Non-EU country [Yes/No]

Purpose of transfer

Bank details, name, fee

Bank

No

Payment of fee

We store your personal data for as long as is required by law and is necessary for the purposes for which it was collected or as is required for use in accordance with the legitimate interests of the company. After this storage period, the time limit for deletion as listed below applies.

Data of external service providers 

For the duration of the business relationship or until all claims have been settled. Thereafter, processing is limited and the data is stored according to legal requirements. 

Processing is limited immediately after expiration of the storage period, erase cycle of the data backup of one year.

 

Article 14 of the General Data Protection Regulation also requires information on the origin of the data that we process for the groups of data subjects of concern to you to be disclosed:

Data of external service providers

Directly from the external service provider or from publicly available sources

Automated decision making, including profiling, is not performed in any of the above processing activities.


 

Visitors

Visitors are all persons from outside the company who are on the company premises under supervision and without a relevant employment contract. 

The personal data of visitors is processed within the scope of the following processing activities for the following purposes:

Visitor pass

Identification on the company premises

Video surveillance

Maintaining operational safety

Event management
Administration and documentation of corporate events

 

The legal grounds for processing the personal data of visitors are based on the following legal basis or legitimate interests:

Processing activity 

Legal basis / legitimate interests

Visitor pass

Protection of intellectual property, safeguarding trade and business secrets, fire safety

Video surveillance

Protection of company property

Event management
Documentation of company history for marketing purposes

 

The following categories of personal data are processed in the listed processing activities:

Visitor pass, video surveillance

Visitor data 

Data includes names, companies, copies of photo IDs and photos of the person concerned.

Event management
Image data of event visitors
Image of the data subject

 

We do not transfer personal data of the groups of data subjects of concern to you to recipients or categories of recipients within the scope of our processing activities: 

We store your personal data for as long as is required by law and is necessary for the purposes for which it was collected or as is required for use in accordance with the legitimate interests of the company. After this storage period, the time limit for deletion as listed below applies.

Visitor data

Video surveillance: Up to 72 hours, excluding the investigation of criminal offences

 Visitor passes: Up to 24 months after the last visit

Immediately after expiration of the storage period.

Image data of event visitors
Max. 20 years
Processing is limited immediately after expiration of the storage period, erase cycle of the data backup of one year.

 

Article 14 of the General Data Protection Regulation also requires information on the origin of the data that we process for the groups of data subjects of concern to you to be disclosed:

Visitor data

Directly from the visitor or the video surveillance system.

Image data of event visitors
Directly from the visitor or the hired event photographer

 Automated decision making, including profiling, is not performed in any of the above processing activities.


This statement has last been revised February 2019