Login
Jetzt Demo buchen
Jetzt Demo buchen
Login

Privacy Policy

2026-01

Below you will find the detailed privacy policy in accordance with the General Data Protection Regulation.

This website is operated by GENOA International GmbH (FN 463311s), both with a business address at Kapuzinerstraße 84a, 4020 Linz. In this privacy policy, we, as joint controllers pursuant to Article 4(7) of the EU GDPR, describe what data we collect when you visit our website and for what purpose we process it (Part A). We also inform you about how we generally process data from our customers, suppliers, and prospects for marketing purposes and explain in general terms what rights and safeguards we provide in the course of data processing. Please refer to Section 11 of this Privacy Policy for all relevant contact information. Since the protection of your personal data is of particular concern to us, we strictly adhere to the legal requirements of the DSG and the EU GDPR when collecting and processing your personal data. Below, we provide detailed information about the scope and purpose of our data processing, as well as your rights as a data subject. Please read our Privacy Policy carefully before continuing to use our website and, if applicable, giving your consent to data processing.

1. Personal Data

In general, you can use our website without providing any personal data. However, different rules may apply to the use of specific services, which we will bring to your attention separately.

Therefore, apart from the cookies described in detail below, we generally only collect and store data that you yourself provide to us by entering it into our input fields or by actively interacting with our website in other ways.

Personal data refers to any information relating to an identified or identifiable natural person. This includes, for example, your name, address, phone number, or date of birth, as well as your IP address or geolocation data that can be used to identify you.

2. Use of Cookies

a. If you use our website solely for informational purposes—that is, if you do not register for a service or otherwise provide us with information (e.g., via a contact form)—we collect only the personal data that your browser transmits to our server. Therefore, when you visit our website, we collect the following data, which is technically necessary for us to display the website to you and to ensure its stability and security in accordance with Article 6(1)(f) of the EU GDPR:

  • IP address

  • Date and time of the request

  • Time zone difference from Greenwich Mean Time (GMT)

  • Content of the request

  • Access status / HTTP status code

  • Amount of data transferred in each case

  • Website from which the request originates

  • Browser used

  • Operating system and its interface

  • Language and version of the browser software

b. In addition to the aforementioned data, first- and third-party cookies are stored on your computer when you use our website; these are small text files that are stored on your hard drive and associated with the browser you are using. The entity that sets a cookie (in this case, us and the third parties listed below) thereby receives certain information. We need these cookies, on the one hand, to recognize you as a user of the website and, on the other hand, to track the use of our services. Finally, we use cookies for marketing purposes to analyze your usage behavior and, where appropriate, to send you targeted advertising.

A basic distinction can be made between first-party cookies, third-party cookies, and third-party requests.

  • First-party cookies

First-party cookies are stored in your browser by us or our website itself to provide you with the best possible user experience. These are primarily functional cookies, such as shopping cart cookies. We store the following first-party cookies:

- iclvisitorlangjs (Duration: 1 day)
This cookie stores the language you selected on our website so that we can display each of our pages and subpages in your preferred language during your visit.

- wpmlbrowserredirecttest: (Duration: Session)
This cookie determines whether cookies can and are allowed to be stored in your browser.

- visitorid (Duration: 10 years)
This cookie assigns your browser a unique ID in our system so that we can identify you as an individual user of the website even during subsequent visits.

  • Third Party Cookies

Third-party cookies are stored in your browser by a third-party provider. These are mostly tracking or marketing tools that analyze your user behavior and also allow the third-party provider to recognize you on other websites you visit. For example, retargeting marketing is fundamentally based on the functionality of such cookies. We store the following third-party cookies:

- ga (Duration: 2 years)
- gid (Duration: 1 day)
- gatUA (Duration: 1 hour)
These cookies are used by the web analytics service Google Analytics and are stored for up to 2 years. We explain exactly how Google Analytics works in section 6.a. of this privacy policy. The following cookies are set by the Salesforce web service and serve various purposes.

- BrowserId (Duration: Session)
- BrowserIdsec (Duration: Session)
Used to log secure browser sessions/visits for internal security purposes.

- renderCtx
Used to serve requested pages and content based on a user’s navigation.

- sfdc-stream
Used to properly route server requests within the Salesforce infrastructure for persistent sessions.

- force-proxy-stream
Used to ensure that client requests hit the same proxy hosts and are more likely to retrieve content from the cache.

- force-stream
Used to properly route server requests within the Salesforce infrastructure for sticky sessions.

- pctrk
Used to count page views by unauthenticated users against license usage

c. We also use cookies to identify you on subsequent visits if you have an account with us - otherwise, you will need to log in again each time you visit.

3. Collection and Processing of Personal Data

a. Website
We process personal data beyond the information stored via cookies only if you voluntarily provide it to us, for example when you register with us, enter into a contractual relationship with us, or otherwise contact us. This data consists exclusively of contact information and details regarding the matters for which you contact us. We use the personal data you provide exclusively to the extent necessary to fulfill the respective purpose of the processing (e.g., registration, sending newsletters, processing an order, sending informational materials and advertising, conducting a contest, answering a question, or enabling access to certain information) and is legally permissible (in particular pursuant to Art. 6 of the EU GDPR) (e.g., sending advertising and informational materials to existing customers). The purpose of processing your data is to operate our website and to provide company-specific information in a targeted manner, including the presentation of our range of goods and services (marketing). Any further use of your data will only take place to the extent that you have previously given your express consent. You may revoke your consent at any time with future effect—as explained in more detail below.

b. Contract fulfillment, marketing, and more
In general, we use the personal data of our customers, suppliers, and other contractual and business partners—such as contact persons, their contact information, and marketing-related information - for the purpose of contract fulfillment and in accordance with legal retention requirements (e.g., accounting), and furthermore also based on legitimate interest, such as for marketing and customer service purposes.

In addition, we collect personal data from prospective customers (e.g., contact persons, their contact information, and marketing-related information) as part of our business development and sales activities. We are constantly on the lookout for potential contractual partners on the internet, at trade fairs, and at other events, and for this purpose we maintain a marketing database to enable targeted advertising for our products and services. We carry out all of the measures listed here in our legitimate interest for marketing purposes pursuant to Art. 6(1)(f) GDPR in conjunction with Recital 47 for a period of three years from the end of a contractual relationship (customers & suppliers) or from our initial (unsuccessful) contact (prospective customers), unless the data subject has provided explicit consent beyond this period.

If we do not collect personal data for marketing purposes directly from the data subject, we will also inform the data subject, in accordance with Article 14 of the GDPR, of the source of their data when we first contact them.

For tax and administrative reasons, we have established various companies both domestically and abroad with which we jointly process personal data, either as joint controllers within the meaning of Article 26 of the GDPR or within the framework of data processing agreements within the meaning of Article 28 of the GDPR. One example of this is our shared marketing database.

A complete list of our affiliated companies can be found at www.genoa.at. If, within the context of an ongoing business relationship or following an explicit request from a prospective customer, we are to provide products and services offered by other companies affiliated with us, we will transfer the prospective customer’s personal data to these affiliated companies for marketing purposes based on a legitimate interest, provided that such companies offer the products and services of interest to the specific data subject.

c. Application Management
We collect data from applicants for job openings at our company for the purpose of initiating a potential employment relationship (Art. 6(1)(b) GDPR) or, where applicable, based on explicit consent for record-keeping purposes.

4. Retention period

We generally retain data that you have provided to us solely for customer service, marketing or informational purposes for a period of three years following our last contact. However, if you wish, we will delete your data before this period expires, provided there are no legal obstacles preventing us from doing so.

In the event of contract negotiations or the conclusion of a contract, we process your personal data after the contract has been fully executed until the expiry of the warranty, guarantee, limitation and statutory retention periods applicable to us, and beyond that until the conclusion of any legal disputes in which the data is required as evidence.

Any data you may provide to us as part of a recruitment process will be retained for a period of 6 months only, without requiring separate consent.

Where retention is required by law, we will comply with the period specified therein. Should we process your personal data – for example, on the basis of a legitimate interest – for purposes other than those set out in this privacy policy, we will inform you of this separately before commencing such processing.

Translated with DeepL.com (free version)

5. Data transfer

a. General

We do not, as a rule, disclose your data to third parties, unless we are legally obliged to do so, the disclosure is necessary for the performance of a contractual relationship between us, or you have previously given your express consent to the disclosure of your data.

External processors or other cooperation partners will only receive your data to the extent that this is necessary for the performance of the contract or where we have a legitimate interest in doing so, which we will always disclose separately where applicable.

Where one of our processors comes into contact with your personal data, we ensure that they comply with data protection laws in the same manner as we do.

We do not sell your personal data to third parties or market it in any other way. If our contractual partners or data processors are based in a third country, i.e. a country outside the European Economic Area (EEA), we will inform you of the implications of this in the description of the service.

b. Data transfer

Data transfer to the USA
We occasionally offer certain services which involve, or may involve, the transfer of data to the USA. The transfer of data to the USA has consistently raised legal challenges in recent years. There are several legal bases for the lawful transfer of data to the USA, though we generally rely on two different legal bases:

  • Data transfers based on an adequacy decision

On 10 July 2023, the European Commission adopted a new adequacy decision pursuant to Article 45 of the GDPR for the USA – namely the EU-US Data Privacy Framework.

However, this adequacy decision applies only to those data importers in the USA that are included in the Privacy Framework List (https://www.dataprivacyframework.gov/s/participant-search).

For each of our service providers that is to receive personal data in the USA as a data importer, we check whether they are registered in the Data Privacy Framework List. If this is the case, this is stated in our privacy policy for the relevant service provider.

The European Commission’s press release on the EU-US Data Privacy Network can be found at: https://ec.europa.eu/commission/presscorner/detail/en/ip_23_3721.

  • Consent

However, if a data importer is not registered on the Data Privacy Framework List, it is necessary – unless there is another legal basis, such as the fulfilment of contractual obligations – for you to consent to the use of your data collected via these services, including where applicable in the USA (Article 49(1)(a) of the GDPR).

This is because we are currently unable to assess how case law will develop as a result of the EU-US Data Privacy Network. Depending on the service, we obtain this consent via our cookie banner or separately through a corresponding declaration of consent immediately before the use of a service offered.

Your consent is required because, according to the most recent decisions by authorities and courts and the case law of the ECJ, the US is not certified as having an adequate level of data protection when processing personal data (C-311/18, Schrems II). These regulatory and court decisions highlight in particular that access by US authorities (FISA 0702) is not comprehensively restricted by law, does not require authorisation by an independent body, and that no relevant legal remedies are available to data subjects in the event of such interventions.

Apart from the contracts we have concluded with US service providers, we have no direct influence over access by US authorities to personal data that is transferred to service providers in the US when these services are used. Although we assume that our service providers take the necessary steps to ensure the promised level of protection in accordance with the agreements concluded with us, access by US authorities to data processed in the US is nevertheless conceivable. We therefore ask for your consent to the processing of data in the USA before you use such services. We will indicate separately for each service or application that there is a possibility of data being transferred to the USA.

6. Newsletter

You have the option to subscribe to our free newsletter. Through this newsletter, you will receive regular updates on the latest news and information about our company, as well as tailored advertising. To receive our newsletter, you will need a valid email address.

We verify the email address you have entered in our registration form to ensure that you actually wish to receive newsletters. We do this by sending an email to the address you have provided, which you can confirm by clicking on a link provided in the email. Once you have confirmed the email, you will be subscribed to our newsletter. (Double opt-in)

When you first subscribe to the newsletter, we store your IP address, as well as the date and time of your subscription. This is done for security reasons in the event that a third party misuses your email address and subscribes to our newsletter without your knowledge. We do not collect or process any further data for the newsletter subscription; the data is used exclusively for the purpose of receiving the newsletter.

Unless you object, we will share your data within our group for the purposes of analysis and to send you information for marketing purposes. Within the group, the data you have provided to us to subscribe to the newsletter will be matched with data that we may have collected elsewhere (e.g. when you book a service).

Your data provided for newsletter registration will not be passed on to third parties outside the group of companies. You may unsubscribe from our newsletters at any time; details on how to unsubscribe can be found in the confirmation email and in every individual newsletter.

ActiveCampaign

Diese Website nutzt ActiveCampaign für den Versand von Newslettern. Anbieter ist die ActiveCampaign, Inc., 1 N Dearborn, 5th Floor Chicago, Illinois 60602, USA.

ActiveCampaign is a service that can be used, amongst other things, to organise and analyse the sending of newsletters. The data you provide for the purpose of subscribing to the newsletter is stored on ActiveCampaign’s servers in the USA.

Data analysis via ActiveCampaign

With the help of ActiveCampaign, we are able to analyse our newsletter campaigns. For example, we can see whether a newsletter message has been opened and which links, if any, have been clicked. This allows us to identify, amongst other things, which links have been clicked particularly frequently.

We can also see whether certain predefined actions were carried out after the message was opened or a link was clicked (conversion rate). For example, we can see whether you made a purchase after clicking a link in the newsletter.

ActiveCampaign also allows us to segment newsletter recipients into different categories (“cluster” them). For example, recipients can be grouped by age, gender or place of residence. This enables us to tailor the newsletters more effectively to the respective target groups. If you do not wish to be analysed by ActiveCampaign, you must unsubscribe from the newsletter. We provide a link for this purpose in every newsletter message.

For detailed information on ActiveCampaign’s features, please refer to the following link: https://www.activecampaign.com/email-marketing.

ActiveCampaign’s privacy policy can be found at: https://www.activecampaign.com/privacy-policy.

7. Tools and applications used

a. We use Google Analytics, a web analytics service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. This service uses cookies, the functionality of which has already been explained in detail above. The information generated by these cookies regarding your use of this website is usually transmitted to a Google server and stored there.

On our behalf, Google uses this information to evaluate your use of our website, to compile reports on website activity and to provide other services relating to website and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data.

You can prevent the storage of cookies required by Google Analytics by adjusting your browser settings accordingly; however, this may mean that you are unable to make full use of all the features of this website. You can also prevent the collection of data generated by the cookie and relating to your use of the website (including your IP address), as well as its transmission and processing by Google, by downloading and installing the browser plug-in available via the following link: http://tools.google.com/dlpage/gaoptout?hl=de

If you would like further information on the nature, scope and purpose of the data collected by Google, we recommend that you read their privacy policy: https://support.google.com/analytics/answer/6004245?hl=de
Google also processes your data in the USA, which is why we have taken appropriate measures to ensure that data processing complies with the law (“appropriate safeguards”).

b. We use Google Tag Manager, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Tag Manager is a tool that enables us to integrate tracking or statistics tools and other technologies into our website. Google Tag Manager itself does not create user profiles, store cookies or carry out independent analyses. It serves solely to manage and deploy the tools integrated via it. However, Google Tag Manager records your IP address, which may also be transferred to Google’s parent company in the United States.

The use of Google Tag Manager is based on Article 6(1)(f) of the GDPR. The website operator has a legitimate interest in the quick and straightforward integration and management of various tools on its website. Where consent has been sought, processing takes place exclusively on the basis of Article 6(1)(a) of the GDPR and Section 25(1) of the TDDDG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent may be withdrawn at any time.

The company is certified under the ‘EU-US Data Privacy Framework’ (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards when data is processed in the United States. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this is available from the provider via the following link: https://www.dataprivacyframework.gov/participant/5780.

c. We also use Google Maps on our website. This allows us to display interactive maps directly on our website and enables you to use the map function conveniently to find our location and make your journey easier.

When you visit our website, Google receives the information that you have accessed the relevant subpage of our website, along with the personal data listed under 2. This occurs regardless of whether you are logged in to a Google account or not. If you are logged in to Google, your data will be directly associated with your account. If you do not wish this to happen, you must log out of Google before using this service. Google uses your data for the purposes of advertising, market research and the customisation of its website. You have the right to object to the use of your data for these purposes, which you must address directly to Google.

Further information on the purpose and scope of data collection can be found in Google’s privacy policy, available at http://www.google.de/intl/de/policies/privacy. Google also processes your data in the USA, which is why we have taken appropriate measures to ensure that data processing complies with the law (‘appropriate safeguards’).

d. We also provide links to other websites on our site; these are provided for information purposes only. These websites are not under our control and are therefore not subject to the provisions of this privacy policy. However, if you click on a link, the operator of that website may collect data about you and process it in accordance with their privacy policy, which may differ from ours. Please always check the websites we link to for their current privacy policies.

e. Our website also offers the option to interact with various social networks via plugins. These are:

  • LinkedIn, operated by LinkedIn Inc., 2029 Stierlin Court, Mountain View, CA 94043, USA

When you click on a plugin for one of these social networks, it is activated and, as described above, a connection is established with the respective server of that network. We have no influence over the scope and content of the data transmitted to the respective operator of this social network when you click on the plugin. If you wish to find out more about the nature, scope and purpose of the data collected by the operators of these social networks, we recommend that you read the privacy policy of the respective social network.

f. Collection and processing of personal data in the “SEQiFY App”

When the “SEQiFY” service is used and the web app provided for this purpose is accessed, information – including personal data – is processed by our contractual partner and the devices and individuals registered by them in the system.

SEQiFY is a browser-based, cross-platform software solution for vulnerability analysis of system endpoints such as servers, clients, smartphones and tablets. It is designed to assist external or internal system administrators in the analysis and ongoing monitoring of endpoints within their own system environment or that of a customer.

In this context, we act as a data processor on behalf of our contractual partners; we therefore do not process any personal data for our own purposes, and we are not the ‘data controller’ for the associated data processing.

When using the “SEQiFY App”, registration data and device data (activity, IP address, device identity) are collected (by the customer as the data controller). We do not ourselves analyse or process the personal data collected in this way.

This data is processed for the duration of the contract awarded to us by our contractual partner.

IP anonymisation

Google Analytics IP anonymisation is enabled. This means that your IP address is truncated by Google within Member States of the European Union or in other signatory states to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services relating to website and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

Browser Plugin

You can prevent Google from collecting and processing your data by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

Further information on how Google Analytics handles user data can be found in Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.

8. Joint controllership pursuant to Article 26 of the GDPR

a. Facebook – Fan Page
We operate a Facebook fan page at https://www.facebook.com/profile.php?id=298945583577152 . The purpose of this fan page is to share information about our company’s activities, carry out marketing initiatives and provide an additional channel of communication with us.

In this context, we are ‘joint controllers’ with Facebook, operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, which provides this service to us. In principle, Facebook allows you to select in your settings which personal data is shared with us. If you do not wish to do so, we receive all information regarding the use of our fan page and personal data on visitors in anonymised form.

To this end, we have entered into a so-called Article 26 GDPR agreement with Facebook, which sets out the mutual rights and obligations of both us and Facebook. You can find this at https://www.facebook.com/-le-gal/EU_data_transfer_addendum/update. In this context, we also ask you to read Facebook’s privacy policy, which can be found at https://www.facebook.com/policy.php.

Under the Article 26 GDPR agreement we have entered into, Facebook undertakes to act as the first point of contact for data subjects regarding the processing of Insights data and to fulfil the associated obligations and responsibilities.

You may therefore exercise your data subject rights both against us in accordance with Section 10 of this Privacy Policy and against Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

b. Instagram profile
We operate an Instagram profile under the names GENOA Group and SEQiFY. We use this profile to carry out marketing activities, draw attention to our products and services, and create an additional channel of communication with our customers.

In this context, too, we are ‘joint controllers’ with Instagram, operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, which provides this service to us. Instagram generally allows you to select in your settings which personal data is shared with us. If you do not wish to do so, we receive all information regarding the use of our fan page and personal data relating to visitors in anonymised form.

To this end, we have entered into a so-called Article 26 GDPR agreement with Instagram, which sets out the mutual rights and obligations of both us and Instagram. You can find this at https://www.facebook.com/-le-gal/EU_data_transfer_addendum/update. In this context, we also ask you to read Instagram’s privacy policy, which you can find at https://help.instagram.com/519522125107875.

Under the Article 26 GDPR agreement we have entered into, Instagram undertakes to act as the first point of contact for data subjects regarding the processing of Insights data and to fulfil the associated obligations and duties.

You may therefore exercise your data subject rights both against us in accordance with Section 10 of this privacy policy and against Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

9. Security

We employ a wide range of technical and organisational security measures to protect your data against manipulation, loss, destruction and unauthorised access by third parties. Our security measures are continuously updated in line with technological developments on the internet. Should you require further information regarding the nature and scope of the technical and organisational measures we have put in place, we are always happy to respond to written enquiries on this matter.

10. Your rights

Under the General Data Protection Regulation and the Data Protection Act, as a data subject affected by our data processing, you have the following rights and remedies:

  • Right of access (Art. 15 of the EU GDPR)
    As a data subject in relation to the data processing described above and any other processing, you have the right to request information as to whether, and if so, which personal data concerning you is being processed. For your own protection – to ensure that no unauthorised person obtains access to your data – we will verify your identity in an appropriate manner before providing any information.

  • Right to rectification (Art. 16) and erasure (Art. 17 EU GDPR)
    You have the right to request the immediate rectification of inaccurate personal data concerning you or – taking into account the purposes of the data processing – the completion of incomplete personal data, as well as the erasure of your data, provided that the criteria of Article 17 of the EU GDPR are met.

  • Right to restriction of processing (Art. 18 GDPR)
    Subject to the legal requirements, you have the right to restrict the processing of all personal data collected. From the time the request for restriction is made, this data will only be processed with your individual consent or for the purpose of asserting and enforcing legal claims.

  • Right to data portability (Art. 20 GDPR)
    You may request the unimpeded and unrestricted transfer of personal data that you have provided to us to you or to a third party.

  • Right to object (Art. 21 EU GDPR)
    You may, on grounds relating to your particular situation, object at any time to the processing of personal data concerning you that is necessary to safeguard our legitimate interests or those of a third party. Your data will no longer be processed following your objection, unless there are compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to establish, exercise or defend legal claims. You may object at any time, with effect for the future, to the processing of data for the purposes of direct marketing.

  • Withdrawal of consent
    If you have given separate consent to the processing of your data, you may withdraw this consent at any time. Such a withdrawal will affect the lawfulness of the processing of your personal data from the moment you have notified us of it.

    If you take action to exercise your rights under the GDPR as set out above, GENOA must respond to the requested action or comply with the request without delay, and in any event within one month of receiving your request.

We will respond to all reasonable requests free of charge and as promptly as possible, within the limits of the law.

The Data Protection Authority is responsible for handling requests concerning breaches of the right to access, the right to confidentiality, the right to rectification or the right to erasure. Its contact details are as follows:

Österreichische Datenschutzbehörde
Barichgasse 40-42
1030 Wien
dsb@dsb.gv.at

11. Contact details / Contact person

a. Contact details of the joint controllers within the meaning of Article 26 of the GDPR

GENOA net works IT-Beratungs GmbH
Kapuzinerstr. 84a, 4020 Linz, Österreich
Phone: +43(732)774770
Fax: +43(732)7747703
Email: info@genoa.at

GENOA International GmbH
Kapuzinerstr. 84a, 4020 Linz, Österreich
Phone: +43(732)774770
E-Mail: info@international.genoa.at

We have agreed internally that all obligations relating to the GDPR and compliance with data protection laws will be fulfilled internally by GENOA net works IT-Beratungs GmbH. This company is therefore responsible, within the meaning of Article 26 of the GDPR, for ensuring that data subjects’ rights are upheld and that the associated information obligations are met, and acts as the point of contact for data subjects.

b. Contact details of the data protection officer:
Ing. Elmar Jilka, MSC
Managing Partner / CEO
dataprotection@GENOA.AT