The protection of your personal data is of particular concern to us. We therefore exclusively process your data on the basis of the statutory provisions (DSGVO, TKG 2003). In this data protection information we inform you about the most important aspects of data processing within the framework of our website.
Contact with us
If you contact us via the website or via e-mail, the data you provide will be stored by us for six months for the purpose of processing your enquiry and in the event of follow-up questions. These data will not be passed on without your consent.
We would like to point out that the IP data of the connection owner are stored by the webshop operator within the framework of cookies, as are the name and address of the buyer, for the purpose of simplifying the purchasing process and for later contract processing.
In addition, the following data is also stored by us for the purpose of contract processing: Questionnaire data, such as gender age, disease and medication, etc.. The data provided by you is necessary for the fulfilment of the contract or for the implementation of pre-contractual measures. Without this data we cannot conclude the contract with you. A data transfer to third parties does not take place, with the exception of the analysis laboratories selected by us and the transport company / shipping company commissioned by us to deliver the goods and to our tax consultant to fulfill our tax obligations. Our myBioma Community supports medical research and therefore we make the analysis data available to research institutions in pseudonymised form.
The data stored by us will be deleted in the case that the shopping process is interrupted. If a contract is concluded, all data from the contractual relationship will be stored until the end of the tax retention period (7 years).
The data name, address, purchased goods and date of purchase are stored beyond that going up to the expiration of the product liability (10 years) or the medical data (likewise 10 years). The medical samples (DNA) are stored for up to 1 year, as they cannot be further processed afterwards. Data processing is carried out on the basis of the legal provisions of § 96 Para. 3 TKG and Art. 6 Para. 1 lit a (consent) and/or lit b (necessary for fulfilment of the contract) of the DSGVO.
Our website uses so-called cookies. These are small text files that are stored on your end device with the help of the browser. They do not cause any damage.
If you do not want this, you can set up your browser so that it informs you when cookies are set, allowing you to accept on a case-by-case basis.
If cookies are deactivated, the functionality of our website may be restricted.
Our website uses functions of the web analysis service Google Analytics and Google Ads, Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. The following web services are also used: Facebook, Instagram, LinkedIn and Twitter. Cookies are used to analyze the use of the website by users. The information generated in this way is transferred to the provider's server and stored there.
You can prevent this by changing the settings of your browser so that no cookies are stored.
We have a corresponding contract with the providers for order data processing.
Your IP address is recorded, but immediately pseudonymised [by deleting the last 8 bits]. This means that only a rough localisation is possible.
The relationship with the web analysis providers is based on the Privacy Shield Agreement with the USA (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Data processing is based on the legal provisions of § 96 Para. 3 TKG and Art. 6 Para. 1 lit a (consent) and/or f (legitimate interest) of the DSGVO.
Our concern in the sense of the DSGVO (legitimate interest) is the improvement of our service and our website. Since the privacy of our users is important to us, the user data is pseudonymised.
The user data will be deleted or anonymized after a period of 14 months.
Our mobile app (iOS & Android) uses the analysis service Appcenter Analytics und Diagnostics, Microsoft Corporation, One Microsoft Way Redmond, WA 98052-6399 USA for tracking and generating crash reports.
You have the possibility to subscribe to our newsletter via our website. To do this, we need your e-mail address and your declaration that you agree to receive the newsletter. In order to provide you with targeted information, we also collect and process voluntarily provided information on areas of interest, birthday and zip code, complaints and health.
Once you have subscribed to the newsletter, we will send you a confirmation email with a link to confirm your subscription. For this purpose, we use the newsletter service provider MailChimp of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA.
You can cancel your subscription to the newsletter at any time. Please send your cancellation to the following e-mail address: email@example.com. We will then immediately delete your data in connection with the newsletter dispatch.
In principle, you are entitled to the rights to information, correction, deletion, restriction, data transferability, revocation and objection. If you believe that the processing of your data violates the data protection law or your data protection claims have otherwise been violated in any way, you can complain to the supervisory authority. In Austria, this is the data protection authority.
You can reach us at the following contact details:
Alleestraße 90, 2103 Langenzersdorf
+43 1 99 74 276
Our data protection officer is DI Johann Steszgal CMC, Kirchengasse 16/105, 1070 Vienna, firstname.lastname@example.org, phone number: +43 664 8373302
Status: March 2019