top of page
Invest.png

Privacy Information

For Prospective Clients and Customers

Protecting personal data is important to us and is also required by law. Your personal data will be processed in accordance with data protection regulations. The following overview is intended to inform you about the key aspects of how your personal data is processed.

Responsible Party

Content Responsibility:

SILEO™
A joint brand presence of Hotel-Konzept GmbH (Company Reg. No.: 270375 k) & Virtual Real Estate Knapp GmbH (Company Reg. No.: 551884w)
Niklas Knapp, MA & Guido Fetzer, Certified Business Economist

Virtual Real Estate Knapp GmbH
Unterkrimml 80
A-5743 Krimml
Email: office@realestateknapp.com
Website: www.realestateknapp.com

Business Purpose: Real estate trustee, limited to real estate brokerage

VAT ID: ATU76575118
Company Register: FN 551884w
Register Court: Regional Court Salzburg
Company Headquarters: 5743 Krimml

Privacy Policy: https://www.realestateknapp.com/datenschutz/
Imprint: https://www.realestateknapp.com/impressum/

Chamber of Commerce: Salzburg Chamber of Commerce, Real Estate and Asset Trustees
Applicable Legal Provisions: Trade Regulation Act – Legal Information System of the Republic of Austria https://www.ris.bka.gv.at/
Supervisory Authority: District Authority Zell am See
Professional Title: Real estate trustee, limited to real estate broker
Country of Conferral: Austria
Jurisdiction: Zell am See

Online Dispute Resolution (Art. 14 (1) ODR Regulation):

The European Commission provides a platform for online dispute resolution (ODR) at: http://ec.europa.eu/consumers/odr/

Hotel-Konzept GmbH

Südtiroler Straße 2
5640 Bad Gastein
Austria

Company Reg. No.: 270375 k
VAT ID: ATU63392778
Email: info@hotel-konzept.com
Website: www.eggerfeld.at

Data Protection Officer

No data protection officer has been appointed, as there is no legal requirement to do so.

Purpose of Data Processing

Prospective and customer management in the context of real estate brokerage (including automatically generated and archived text documents such as correspondence related to these matters).

Legal Basis

Contract, contract initiation (brokerage agreement), and legal obligation.

Retention Period

The data will be stored for the duration of the contractual relationship and, after its termination, for at least as long as statutory retention periods apply or limitation periods for potential legal claims have not yet expired.

Recipients of Your Data (Possible Categories)

We only store and process the personal data you have provided or shared with us to the extent necessary for handling the contract (brokerage agreement). Data is only shared to the minimum extent required and if it is necessary for contractual fulfillment, based on legal grounds, or if there is a legitimate interest in the business transaction by involved (third) parties.

Possible recipients include:

  • Internal departments involved in business processing (e.g., IT, other administrative units), or companies within the corporate group (e.g., for the handling of joint projects)

  • Third parties involved in the transaction (persons and potential contracting parties necessarily participating in the process, other brokers, brokerage platforms, property managers, financial institutions, private and public bodies that can provide or require property-related information, insurance companies)

  • Service providers of the data controller (e.g., tax consultants, payroll services, lawyers), as well as authorities (social security, tax office, other public authorities), legal representatives (for asserting or defending legal claims, or in the context of administrative procedures), or companies contracted for the support of the IT infrastructure (software, hardware)

Your data will never be passed on for advertising or similar purposes.
Our employees and service providers are obliged to maintain confidentiality and comply with data protection regulations.

Data Portability:
There is no right to data portability.

The transfer of data to recipients in a third country (outside the EU) or to an international organization is foreseen. There is no automated decision-making (profiling).

You are neither contractually nor legally required to provide your data, and there is no obligation to do so. However, the data is necessary to properly carry out the contractual relationship.

As a data subject, you generally have the right to access, rectification, erasure, restriction, and objection. To exercise your rights, please contact:

SILEO™
A joint brand presence of Hotel-Konzept GmbH (Company Register Number: 270375 k) & Virtual Real Estate Knapp GmbH (Company Register Number: 551884w)
info@sileo.group

If you believe that the processing of your data violates data protection laws or your data protection rights have been violated in any way, you may lodge a complaint with the data protection authority.

The protection of your personal data is especially important to us.
We therefore process your data exclusively on the basis of legal provisions (GDPR, TKG 2003). In this privacy policy, we inform you about the key aspects of data processing, describe how and for what purpose your data is collected and used, and explain the options you have regarding your personal data.

By using this website, you agree to the collection, use, and transfer of your data in accordance with this privacy policy.

Table of Contents:

  1. Controller as defined in Article 4 No. 7 GDPR

  2. General Information on Data Processing within the Company and on the Website
    2.1 Types of Data Processed
    2.2 Purpose of Processing
    2.3 Legal Bases
    2.4 Cooperation with Processors and Third Parties
    2.5 Transfers to Third Countries
    2.6 Data Retention and Deletion
    2.7 Administration, Accounting, Office Management, Contact Management
    2.8 Online Presence in Social Media

  3. General Use of the Website
    3.1 Hosting
    3.2 Access Data / Server Log Files
    3.3 SSL Encryption
    3.4 Cookies
    3.5 Personal Data via Website
    3.6 Contacting Us
    3.7 Integration of Third-Party Services and Content
    3.8 Web Analytics – Google Universal Analytics
    3.9 Google Maps
    3.10 Google Fonts
    3.11 Wordfence
    3.12 Facebook Privacy Policy
    3.13 YouTube Privacy Policy
    3.14 Instagram Privacy Policy
    3.15 LinkedIn Privacy Policy
    3.16 Xing Privacy Policy
    3.17 Matterport Privacy Policy
    3.18 WhatsApp Privacy Policy

  4. Your Rights as a Data Subject
    4.1 Right to Confirmation and Access (Art. 15 GDPR)
    4.2 Right to Rectification/Completion (Art. 16 GDPR)
    4.3 Right to Erasure ("Right to Be Forgotten", Art. 17 GDPR)
    4.4 Right to Restrict Processing (Art. 18 GDPR)
    4.5 Right to Data Portability (Art. 20 GDPR)
    4.6 Right to Object (Art. 21 GDPR)
    4.7 Automated Decisions Including Profiling
    4.8 Right to Withdraw Consent
    4.9 Right to Lodge a Complaint with a Supervisory Authority (Art. 77 GDPR)

  5. Data Security

1. Controller as defined in Article 4 No. 7 GDPR

SILEO™
A joint brand of Hotel-Konzept GmbH (Company Register Number: 270375 k) & Virtual Real Estate Knapp GmbH (Company Register Number: 551884w)
Unterkrimml 80, 5743 Krimml and Innerfragant 50, 9831 Flattach
+43 664 14 44 974
info@sileo.group

If you wish to object to the collection, processing, or use of your data by us according to this privacy policy, either in whole or for individual measures, you may direct your objection to the controller.

You may save or print this privacy policy at any time.

2. General Information on Data Processing within the Company and on the Website

2.1 Types of Data Processed

  • Master data (e.g., names, addresses)

  • Contact data (e.g., email addresses, phone numbers)

  • Content data (e.g., text entries, photographs, videos)

  • Usage data (e.g., pages visited, interest in content, access times)

  • Meta/communication data (e.g., device information, IP addresses)

  • Contract data (e.g., contract subject, duration, customer category)

  • Payment data (e.g., bank details, payment history)

from customers, prospective customers, and business partners

2.2 Purpose of Processing

  • Provision of the online offer including functions and content

  • Responding to contact requests and user communication

  • Security measures

  • Reach measurement/marketing

  • Fulfillment of contractual services

  • Service and customer care

2.3 Legal Bases

According to Art. 13 GDPR, we inform you of the legal bases for our data processing. Unless otherwise stated in individual sections of this privacy policy, the following apply:

  • Consent: Art. 6 (1)(a) and Art. 7 GDPR

  • Processing for performance of a contract or to respond to requests: Art. 6 (1)(b) GDPR

  • Processing for compliance with legal obligations: Art. 6 (1)(c) GDPR

  • Processing for legitimate interests: Art. 6 (1)(f) GDPR

2.4 Cooperation with Processors and Third Parties

In principle, we use your personal data only within our company.

If and insofar as we involve third parties in fulfilling contracts (e.g., logistics service providers), they will receive personal data only to the extent necessary for the corresponding service.

If parts of data processing are outsourced ("order processing"), we contractually obligate the processors to use personal data only in accordance with data protection laws and to ensure the protection of data subjects' rights.

Disclosure or transmission of data to processors and third parties occurs only under the following conditions:

  • Based on legal permission (e.g., contract fulfillment under Art. 6 (1)(b) GDPR – such as to payment providers)

  • Based on your consent

  • Based on a legal obligation

  • Based on legitimate interests (e.g., when using agents, web hosts, etc.)

 

The commissioning of third parties for data processing through a data processing agreement is based on Article 28 GDPR.

2.5 Transfers to Third Countries

If data is processed outside the European Union (EU) or the European Economic Area (EEA) through the use of third-party services or through disclosure or transfer of data to third parties, this will only occur under the following conditions:

  • To fulfill (pre)contractual obligations

  • Based on your consent

  • Based on a legal obligation

  • Based on legitimate interests

Subject to legal or contractual permissions, we process or allow data processing in a third country only if the special conditions of Articles 44 et seq. GDPR are met – processing will take place based on special guarantees, such as the officially recognized determination of an adequate level of data protection (e.g., for the USA, through the "Privacy Shield") or the observance of officially recognized special contractual obligations.

2.6 Data Retention or Deletion

Data processed by us will be deleted or restricted in processing according to Articles 17 and 18 GDPR. Unless explicitly stated otherwise in this privacy policy, data will be deleted when they are no longer necessary for the purpose for which they were collected, and there are no legal retention obligations. If the data is required for other legally permissible purposes, it will not be deleted, but its processing will be restricted to prevent its use for other purposes. This applies, for example, to data that must be kept for commercial or tax reasons.

By legal requirements, data retention takes place for a period of 7 years according to § 132 (1) BAO (accounting records, receipts/invoices, accounts, receipts, business papers, revenue and expenditure statements, etc.), 22 years in connection with real estate, and 10 years for documents related to electronically provided services, telecommunications, broadcasting, and television services provided to non-entrepreneurs in EU member states, where the Mini One-Stop-Shop (MOSS) is used.

2.7 Administration, Financial Accounting, Office Organization, Contact Management

We process data in the context of administrative tasks, as well as the organization of our business operations, financial accounting, and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process in the context of providing our contractual services. The processing bases are Articles 6(1)(c) and 6(1)(f) GDPR. The processing affects customers, prospective customers, business partners, and website visitors. The purpose and our legitimate interest in the processing lie in administration, financial accounting, office organization, data archiving, and tasks that serve to maintain our business operations, perform our tasks, and provide our services. Data deletion in relation to contractual services and communication follows the information provided in the respective processing activities.

We disclose or transmit data to the tax administration, consultants such as tax advisors or auditors, as well as other fee institutions and payment service providers.

Furthermore, based on our business interests, we store information about suppliers, event organizers, and other business partners, e.g., for future contact. These mostly company-related data are stored permanently.

2.8 Social Media Presence

In order to communicate with active customers, prospective customers, and users and inform them about our services, we maintain company profiles on social networks and platforms. When visiting these networks and platforms, the terms and conditions and data processing policies of the respective operators apply. Unless otherwise stated in this privacy policy, we process user data if they communicate with us within the social networks and platforms (e.g., posting messages on our social media profiles or sending messages).

3 General Use of the Website

3.1 Hosting

The hosting services we use provide infrastructure and platform services, computing capacity, storage space, and database services, security services, and technical maintenance services, which we use for the operation of this online offer.

We or the hosting provider process inventory data, contact data, content data, contract data, usage data, and meta and communication data of customers, prospective customers, and visitors to this online offer based on our legitimate interests in an efficient and secure provision of this online offer according to Art. 6 (1)(f) GDPR in conjunction with Art. 28 GDPR (conclusion of a data processing agreement).

3.2 Access Data/Server Log Files

We or our hosting provider collect data about every access to the server on which this service is hosted (so-called server log files). We automatically collect information about your usage behavior and your interaction with us and register data related to your computer or mobile device. We collect, store, and use data about every access to our online offer. The access data includes:

  • Name and URL of the retrieved file

  • Date and time of retrieval

  • Transferred data volume

  • Notification of successful retrieval (HTTP response code)

  • Browser type and version

  • Operating system

  • Referrer URL (i.e., the previously visited page)

  • Websites accessed by the user's system through our website

  • Internet service provider of the user

  • IP address and the requesting provider

We use these log data without association with your person or any profiling for statistical evaluations to operate, secure, and optimize our online offer, as well as for anonymous tracking of the number of visitors to our website (traffic) and the extent and type of use of our website and services, and for billing purposes to measure the number of clicks received from cooperation partners. Based on this information, we can provide personalized and location-based content, analyze traffic, find and fix errors, and improve our services.

This also constitutes our legitimate interest according to Art. 6 (1)(f) GDPR.

We reserve the right to review the log data retrospectively if there is a reasonable suspicion of unlawful use. We store IP addresses for a maximum of 3 months in the log files if required for security purposes or for the performance or billing of a service, such as when you use one of our offerings. After the termination of the ordering process or upon receipt of payment, we delete the IP address if it is no longer necessary for security purposes. We also store IP addresses when there is a specific suspicion of a criminal offense in connection with the use of our website. Additionally, we store the date of your last visit (e.g., upon registration, login, clicking links, etc.) as part of your account. Data that must be retained for evidentiary purposes will not be deleted until the incident is fully clarified.

3.3 SSL Encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as inquiries and orders you send to us as the site operator. You can recognize an encrypted connection by the browser address bar changing from "http://" to "https://" and the lock symbol in your browser bar. More information on data security can be found in section 5.

3.4 Cookies

Our website uses cookies. These are small text files that are stored on your device through the browser. They do no harm.

We use cookies to make our offer more user-friendly. Some cookies remain stored on your device until you delete them. The purpose of using these cookies is to offer optimal user guidance, recognize visitors, and present a more attractive website and interesting content with repeated usage.

We use session cookies or temporary cookies in small amounts to optimize our online offer. A session cookie is a small text file that is sent by the respective servers when visiting a website and temporarily stored on your hard drive. This file contains a session ID that can be used to assign different requests from your browser to the same session. This allows your computer to be recognized when you return to our website. These cookies are deleted after you close your browser. They are used, for example, to allow you to use the shopping cart function across multiple pages.

We also use persistent cookies in limited amounts (also small text files stored on your device), which remain on your device and allow us to recognize your browser on your next visit. These cookies are stored on your hard drive and are automatically deleted after the specified time. Their lifespan is between 1 month and 10 years. This enables us to present our offer in a more user-friendly, efficient, and secure manner, such as displaying information tailored to your interests. The content of a persistent cookie is limited to an identification number. Name, IP address, etc., are not stored. No individual profiling based on your usage behavior takes place.

Our legitimate interest in the use of cookies according to Art. 6 (1)(f) GDPR is to make our website more user-friendly, effective, and secure.

In the cookies, data and information such as the following are stored:

  • Login information

  • Language settings

  • Entered search terms

  • Information on the number of views of our website and the use of individual features of our online presence.

 

Activation of Cookies:

When the cookie is activated, an identification number is assigned to it, and no association of your personal data with this identification number is made. Your name, IP address, or similar data that would allow the cookie to be linked to you are not placed in the cookie. Based on the cookie technology, we only receive pseudonymized information, such as which pages of our shop were visited, which products were viewed, etc.

You can disable the storage of cookies in your browser, limit it to specific websites, or configure your web browser (Chrome, IE, Firefox, etc.) to notify you whenever a cookie is sent. You can also delete cookies from your PC's hard drive at any time. However, please note that in this case, you can expect limited page display and reduced user navigation.

Links to Cookie Management in Popular Browsers:

  • Managing Cookies in Mozilla Firefox: More information

  • Managing Cookies in Google Chrome: More information

  • Managing Cookies in Microsoft IE / EDGE: More information

  • Managing Cookies in Apple Safari: More information

  • Managing Cookies in Apple iOS: More information

3.5 Personal Data via Website

Personal data that you electronically transmit on this website, such as name, email address, address, or other personal information, will only be used by us for the specified purpose, securely stored, and not shared with third parties. The provider automatically collects and stores information on the web server such as the browser used, operating system, referring page, IP address, access time, etc. This data cannot be assigned to specific individuals without checking additional data sources, and we do not analyze this data further unless unlawful use of our website is suspected.

3.6 Contacting Us

If you contact us (e.g., through contact forms, email, phone, or social media), the data you provide will be processed to handle the contact request and follow-up questions according to Art. 6(1)(b) DSGVO. Our legitimate interest according to Art. 6(1)(f) DSGVO is also relevant here. We do not share this data without your consent. Further personal data will only be stored and used if you consent or if legally permissible without special consent. The information provided by users can be stored in a Customer Relationship Management system (CRM system) or similar inquiry management system. We delete inquiries once they are no longer required. We review the necessity every two years. Legal archiving requirements apply.

You have the right to withdraw your consent at any time with effect for the future. In this case, your personal data will be deleted immediately. Your personal data will also be deleted without your withdrawal if we have processed your inquiry or you have withdrawn the consent to store it. This also happens if storage is legally prohibited for other reasons.

Required fields are marked with an asterisk ().*

3.7 Embedding Third-Party Services and Content

Within our online offering, we integrate third-party content or service offers to include their content and services, such as videos or fonts. This is based on our legitimate interests (i.e., the interest in analyzing, optimizing, and operating our online offering efficiently, according to Art. 6(1)(f) DSGVO).

This always requires that the third-party providers of these contents perceive the user's IP address, as they cannot send the content to their browsers without the IP address. The IP address is thus necessary for the display of this content. We strive to only use content whose respective providers use the IP address solely for delivering the content. Third-party providers may also use so-called pixel tags for statistical or marketing purposes. Through the pixel tags, information such as visitor traffic on the pages of this website can be evaluated. The pseudonymized information may also be stored in cookies on the user's device and may contain technical information about the browser and operating system, referring websites, visit times, and further details regarding the use of our online offering, and may be connected with information from other sources.

3.8 Web Analytics – Google Universal Analytics

We use Google Analytics, a web analytics service by Google LLC ("Google" 1600 Amphitheatre Parkway Mountain View, CA 94043, USA).

Google Analytics uses "cookies," text files stored on your computer that enable the analysis of your use of the website. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.

Google participates in the EU-US Privacy Shield (see https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active) and thus offers a guarantee to comply with European data protection law.

Due to the activation of IP anonymization on these websites, Google will shorten your IP address within member states of the European Union or other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

On behalf of the operator of this website, Google will use this information to evaluate your use of the website, compile reports on website activities, and provide additional services related to website usage and internet usage. Pseudonymous user profiles may be created from the processed data. We use Google Analytics in its "Universal Analytics" form. "Universal Analytics" refers to a method of Google Analytics where user analysis is based on a pseudonymous user ID, and a pseudonymous profile of the user is created with information from the use of different devices (so-called "cross-device tracking").

The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You can prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case, you may not be able to use all the features of this website to their full extent. Furthermore, you can prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plugin available under the following link (http://tools.google.com/dlpage/gaoptout?hl=en).

Alternatively, on mobile browsers, you can click on the following link to set an opt-out cookie that will prevent the collection by Google Analytics within this website in the future (this opt-out cookie works only in this browser and only for this domain. If you delete the cookies in your browser, you must click this link again): Disable Google Analytics

Further information on data usage by Google, settings and opt-out options can be found in Google's privacy policy (https://policies.google.com/technologies/ads) as well as in the settings for the display of advertising by Google (https://adssettings.google.com/authenticated).

The processing is based on the legal provisions of § 96 Abs 3 TKG 2003 as well as Art 6(1)(a) DSGVO (consent) if you have agreed to the use of cookies, as well as based on our legitimate interests according to Art 6(1)(f) DSGVO in the statistical evaluation of access to our website for improving and economically operating our offering and our web presence. The personal data of users will be deleted or anonymized after 26 months.

3.9 Google Maps

This website uses maps from the "Google Maps" service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. When using Google Maps, Google also collects, processes, and uses data on the use of the Maps features by visitors to the websites. The processed data may include IP addresses and location data of users, which will only be collected with their consent (usually managed through the settings of their mobile devices). The data may be processed in the USA. For more information on data processing by Google, you can refer to Google's privacy policy at https://www.google.at/intl/de/policies/privacy/. You can also change your settings in the privacy center there to manage and protect your data. An opt-out is possible at https://adssettings.google.com/authenticated.

Google participates in the EU-US Privacy Shield (see https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active) and thus offers a guarantee to comply with European data protection law.

3.10 Google Fonts

We integrate the fonts ("Google Fonts") of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The use of Google Fonts occurs without authentication, and no cookies are sent to the Google Fonts API. If you have a Google account, none of your Google account data is transmitted to Google while using Google Fonts. When you visit a page, your browser loads the required web fonts into its browser cache to correctly display texts and fonts.

For this purpose, the browser you use must establish a connection to Google's servers. This allows Google to learn that our website has been accessed via your IP address. Google also collects information about the usage of CSS and the fonts used and stores this data securely. For more questions, please refer to https://developers.google.com/fonts/faq. The use of Google Web Fonts is in the interest of a consistent and appealing presentation of our online offers. This constitutes a legitimate interest in the sense of Art. 6(1)(f) DSGVO. If your browser does not support web fonts, a standard font from your computer is used.

Google participates in the EU-US Privacy Shield (see https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active) and thus offers a guarantee to comply with European data protection law.

3.11 Wordfence

Our online offering uses the "Wordfence" service offered by Deviant Inc., 800 5th Ave Ste 4100, Seattle, WA 98104, USA. The use is based on our legitimate interests according to Art. 6(1)(f) DSGVO. This service helps detect and ward off unauthorized login attempts on the website. To do this, all login attempts are sent to a server in the USA, where they are analyzed. The stored data includes the entered login name, IP address, information about the browser used, the computer system, and the access time.

More information on the collection and use of data by Deviant

4o mini

3.12 Facebook Privacy Policy

We use features from Facebook on this website, a social media network by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. You can find out what features (Social Plugins) Facebook offers at https://developers.facebook.com/docs/plugins/. By visiting our website, information may be transmitted to Facebook. If you have a Facebook account, Facebook may associate this data with your personal account. If you do not wish this, please log out of Facebook.
The privacy policy, which describes what information Facebook collects and how it is used, can be found at https://www.facebook.com/policy.php.

3.13 YouTube Privacy Policy

Our site uses the service of YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA, represented by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, to embed videos. Typically, when you access a page with embedded videos, your IP address is sent to YouTube, and cookies are installed on your computer. However, we have embedded our YouTube videos with the extended privacy mode enabled (in this case, YouTube still connects to Google's DoubleClick service, but, according to Google's privacy policy, personal data is not processed). As a result, YouTube no longer stores information about visitors unless they watch the video. If you click on the video, your IP address will be sent to YouTube, and YouTube will learn that you have watched the video. If you are logged into YouTube, this information will be linked to your user account (you can prevent this by logging out of YouTube before watching the video).
We have no knowledge of or influence over the collection and use of your data by YouTube. Further information can be found in YouTube's privacy policy.

3.14 Instagram Privacy Policy

We use features of the social media network Instagram, operated by Instagram LLC, 1601 Willow Rd, Menlo Park, CA 94025, USA, on our website. The embedding features of Instagram allow us to display images and videos. When visiting pages that use these features, data (IP address, browser data, date, time, cookies) is transmitted to Instagram, stored, and processed. If you have an Instagram account and are logged in, this data will be associated with your personal account and stored data. The privacy policy, which explains what data Instagram collects and how it is used, can be found at https://help.instagram.com/519522125107875.

3.15 LinkedIn Privacy Policy

We use features of the social media network LinkedIn, operated by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA, on our website.
When visiting pages that use these features, data (IP address, browser data, date, time, cookies) is transmitted to LinkedIn, stored, and processed.
If you have a LinkedIn account and are logged in, this data will be associated with your personal account and stored data.
The privacy policy, which explains what data LinkedIn collects and how it is used, can be found at https://www.linkedin.com/legal/privacy-policy.

3.16 XING Privacy Policy

We use features of the social media network XING, operated by XING SE, Dammtorstraße 30, 20354 Hamburg, Germany, on our website.
When visiting pages that use these features, data (IP address, browser data, date, time, cookies) is transmitted to XING, stored, and processed.
If you have a XING account and are logged in, this data will be associated with your personal account and stored data.
The privacy policy, which explains what data XING collects and how it is used, can be found at https://www.xing.com/privacy.

Source: Created with the privacy policy generator by firmenwebseiten.at in cooperation with warkly.de.

3.17 Matterport Privacy Policy

Our website uses services from Matterport Inc., 352 E. Java Dr., Sunnyvale, CA 94089, USA. When you visit one of our pages with a Matterport 3D tour, a connection to Matterport's servers is established. During this, your IP address, browser version, displaying device, origin and destination URL, and the ID of the respective 3D tour are transmitted to Matterport servers in the USA. Matterport is certified under the "EU – U.S. Privacy Shield Frameworks."
The use of Matterport serves the purpose of presenting our online offerings attractively. This represents a legitimate interest within the meaning of Art. 6(1)(f) GDPR.
Further information about the handling of user data can be found in Matterport's privacy policy at https://matterport.com/legal/privacy-policy/.

3.18 WhatsApp Privacy Policy

We use WhatsApp Messenger for communication purposes and ask you to consider the following notes regarding functionality, encryption, risks of WhatsApp, use of metadata within the Facebook corporate group, and your options to object.
You do not have to use WhatsApp and can contact us via alternative methods, such as by phone or email. Please use the contact options provided to you or those listed on our website.
WhatsApp (WhatsApp Inc., WhatsApp Legal 1601 Willow Road, Menlo Park, California 94025, USA) is a U.S. service, which means that the data you send via WhatsApp may first be transmitted to WhatsApp in the USA before it is forwarded to us.
WhatsApp is certified under the Privacy Shield Agreement and therefore guarantees compliance with European and Swiss data protection laws (Privacy Shield certification).
WhatsApp also guarantees that the communication contents (i.e., the content of your message and attached images) are end-to-end encrypted. This means that the content of messages is not accessible, not even by WhatsApp itself. You should always use the current version of WhatsApp to ensure message content encryption.
We inform our communication partners, however, that while WhatsApp cannot view the content, it can learn that and when communication partners are communicating with us, and may process technical information regarding the communication partner's device and, depending on their device settings, location data (metadata). Except for the encrypted content, the data may be transmitted within the Facebook corporate group, particularly for service optimization and security purposes. Communication partners should also assume, unless they have objected, that their data processed by WhatsApp may be used for marketing purposes or tailored advertising.
If we request consent from communication partners before communicating with them via WhatsApp, the legal basis for processing their data is Art. 6(1)(a) GDPR. Otherwise, if we do not request consent and, for example, you contact us on your own, we use WhatsApp in the context of contract-related measures in accordance with Art. 6(1)(b) GDPR and for other interested parties and communication partners based on our legitimate interest in fast and efficient communication in accordance with Art. 6(1)(f) GDPR.
Further details regarding the purposes, types, and scope of data processing by WhatsApp, as well as your rights and privacy protection settings, can be found in WhatsApp's privacy policy at https://www.whatsapp.com/legal.
You can object to communication with us via WhatsApp at any time. If you subscribe to messages (also known as "Broadcasts") via WhatsApp, you can delete our contact number from your contacts and request that we remove your contact from our directory. For ongoing individual inquiries or communications, you can also ask us to cease communication via WhatsApp and delete the communication content.
In the case of communication via WhatsApp, we will delete WhatsApp messages as soon as we assume that any requested information has been provided, if no reference to previous conversations is expected, and if no legal retention obligations prevent deletion.
We also inform you that we do not transmit the contact data you provide to WhatsApp without your consent (e.g., through contact initiation via WhatsApp).
Finally, we reserve the right for safety reasons to refrain from answering inquiries via WhatsApp in cases where, for example, contract details require special confidentiality or a response via the messenger does not meet formal requirements. In such cases, we will refer you to more appropriate communication channels.

4 Your Rights as a Data Subject

Under applicable laws, you have various rights regarding your personal data. If you would like to exercise these rights, please send your request via email or post with clear identification of yourself to the address mentioned in section 1.
Below is an overview of your rights.

4.1 Right to Confirmation and Information under Art. 15 GDPR

You have the right to obtain confirmation from us at any time as to whether personal data concerning you is being processed. If this is the case, you have the right to request a free copy of the personal data stored about you.
Furthermore, there is a right to the following information:

  • the purposes of processing;

  • the categories of personal data processed;

  • the recipients or categories of recipients to whom the personal data has been or will be disclosed, especially recipients in third countries or international organizations;

  • if possible, the planned duration for which the personal data will be stored, or the criteria used to determine that duration;

  • the existence of the right to rectify or delete personal data concerning you, or to restrict processing by the data controller or to object to such processing;

  • the existence of a right to lodge a complaint with a supervisory authority;

  • if the personal data was not collected from you, all available information about the origin of the data;

  • the existence of automated decision-making, including profiling as per Articles 22(1) and (4) GDPR and, at least in such cases, meaningful information about the logic involved as well as the scope and intended effects of such processing for you.

If personal data is transmitted to a third country or international organization, you have the right to be informed about the appropriate safeguards according to Art. 46 GDPR in connection with the transmission.

4.2 Right to Rectification or Completion under Art. 16 GDPR

You have the right to request from us the immediate rectification of inaccurate personal data concerning you. Taking into account the purposes of processing, you have the right to request the completion of incomplete personal data – including by providing a supplementary statement.

4.3 Right to Deletion ("Right to be Forgotten") under Art. 17 GDPR

You have the right, according to Art. 17(1) GDPR, to request the immediate deletion of your personal data, and we are obligated to delete personal data immediately, if one of the following reasons applies:

  • The personal data is no longer necessary for the purposes for which it was collected or otherwise processed.

  • You revoke your consent on which the processing was based according to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, and there is no other legal basis for the processing.

  • You object to the processing according to Art. 21(1) GDPR, and there are no overriding legitimate grounds for the processing, or you object to the processing according to Art. 21(2) GDPR.

  • The personal data has been processed unlawfully.

  • The deletion of personal data is necessary to fulfill a legal obligation under Union law or the law of Member States to which we are subject.

  • The personal data was collected in relation to the services offered by the information society according to Art. 8(1) GDPR.

If we have made the personal data public and we are obligated to delete it according to Art. 17(1) GDPR, we will take reasonable steps, considering available technology and implementation costs, including technical measures, to inform data controllers who process the personal data that you have requested the deletion of all links to, or copies or replications of, this personal data.

4.4 Right to Restrict Processing under Art. 18 GDPR

You have the right to request the restriction of processing if one of the following conditions applies:

  • The accuracy of the personal data is contested by you, for a period enabling us to verify the accuracy of the personal data.

  • The processing is unlawful, and you have opposed the deletion of personal data and requested the restriction of its use instead.

  • We no longer need the personal data for the purposes of processing, but you require it for the establishment, exercise, or defense of legal claims.

  • You have objected to the processing according to Art. 21(1) GDPR, as long as it has not been determined whether our legitimate reasons override yours.

4.5 Right to Data Portability under Art. 20 GDPR

You have the right to receive your personal data, which you have provided to us, in a structured, commonly used, and machine-readable format, and you have the right to transmit those data to another controller without hindrance from us, if:

  • The processing is based on consent according to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, or on a contract according to Art. 6(1)(b) GDPR, and

  • The processing is carried out by automated means.

When exercising your right to data portability under paragraph 1, you have the right to request that the personal data be transmitted directly from us to another controller, where technically feasible.

4.6 Right to Object under Art. 21 GDPR

You have the right to object, at any time, to the processing of your personal data based on Art. 6(1)(e) or (f) GDPR, for reasons related to your particular situation, including profiling based on these provisions. We will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing is necessary for the establishment, exercise, or defense of legal claims.

If personal data is processed by us for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing, including profiling to the extent it is related to such direct marketing.

You also have the right to object, for reasons related to your particular situation, to the processing of your personal data for scientific or historical research purposes or for statistical purposes under Art. 89(1) GDPR, unless the processing is necessary for the performance of a task carried out for reasons of public interest.

4.7 Automated Decisions Including Profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which has legal effects concerning you or similarly significantly affects you.

No automated decision-making occurs based on the collected personal data.

4.8 Right to Withdraw Consent to Data Processing

You have the right to withdraw consent to the processing of personal data at any time.

4.9 Right to Lodge a Complaint with a Supervisory Authority under Art. 77 GDPR

You have the right to lodge a complaint with a supervisory authority, especially in the Member State of your residence, your workplace, or the location of the alleged infringement, if you believe that the processing of personal data violates data protection laws or your data protection rights have been violated. In Austria, the supervisory authority is the Data Protection Authority.

5 Data Security

We are committed to ensuring the security of your data in compliance with applicable data protection laws and technical capabilities.

Your personal data is transmitted securely via encryption. This applies to your orders as well as to the customer login. We use the SSL (Secure Socket Layer) encoding system but note that data transmission over the internet (e.g., when communicating by email) may have security gaps. Complete protection against access by third parties is not possible.

To secure your data, we maintain technical and organizational measures in accordance with Art. 32 GDPR, which we regularly adjust to the state of the art.

We also cannot guarantee that our services will be available at all times; disruptions, interruptions, or failures cannot be excluded. The servers we use are regularly secured.

You can reach us at the following contact details:

SILEO TM
A joint brand presence of Hotel-Konzept GmbH (Company Registration Number: 270375 k) & Virtual Real Estate Knapp GmbH (Company Registration Number: 551884w)

+43 664 14 44 974
info@sileo.group

bottom of page