Version of: 13.08.2018
1. Who is responsible for the data processing and who can I contact?
You can contact us at:
2. What personal data do we use?
We understand personal data as being any information that relates to an identified or identifiable natural person. We collect the personal data from you ourselves, if:
2.1. You visit our website
In the course of a visit to our website the following information may be collected:
• the date and time when a page on our website is accessed,
• the IP address (of the computer and/or mobile device),
• a unique identifier of the mobile device,
• name and version of your web browser,
• the browser type and settings data (monitor resolution, colour depth, time zone settings, browser extensions and plug-ins, fonts),
• the operating system and
• the website (URL) which you visited before accessing this website.
2.2. You visit our online shop
• Where applicable log-in data (user name and password)
• Name (first name and surname),
• Post code and town/city,
• Date of birth
• Where applicable Name of company,
• Where applicable VAT No.,
• Country of origin,
• Delivery address,
• Invoice address (if the invoice address is not the same as the delivery address),
• Payment information.
Please note that the provision of the personal data that we collect within the framework of the online shop is contractually prescribed or necessary for the conclusion of the contract. If you fail to provide that data, a contract will not arise or it will not be possible to perform the contract.
2.3. You submit an enquiry to us
If you submit an enquiry, complaint or positive feedback to us, we may collect the following personal data:
• Name (first name and surname),
• Post code and town/city,
• Telephone number,
• E-mail address,
• Information relating to the damage (e.g. type of damage, severity of the damage etc.) and
• Other information that you voluntarily provide us with.
The provision of your personal data is voluntarily. However, if you fail to provide certain data (such as your e-mail address), we may not be able to process your enquiry.
3. Features and links to other websites
4. For what purpose do we process your personal data and on what legal basis?
We process your personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR):
4.1 on the basis of your consent (Article 6(1) point a) GDPR)
If you are not our active customer, we use the personal data referred to in section 2.2. and possibly also your log-in data (i.e. user name and password) for the purpose of sending advertising e-mails concerning JumpandReach and our products (“marketing information”). For that purpose we need your consent, i.e. your agreement as the owner of the e-mail address to the receipt thereof.
You may withdraw that consent at any time with effect for the future by sending an e-mail to email@example.com. The revocation of the consent will not affect the legality of the data processing that occurred on the basis of the consent up until the revocation.
4.2 for the fulfilment of contractual obligations or the implementation of pre-contractual measures (Article 6(1) point b) GDPR)
We process your personal data as specified in section 2.2. for the performance of the contract to which you are party or for the implementation of pre-contractual measures, in order to prepare the conclusion of a contract for you. This concerns cases where you order or would like to order products from our online shop. We then process your personal data in order to respond to your enquiry or process your order.
4.3 for the purpose of fulfilling a legal obligation to which JumpandReach is subject (Article 6(1) point c) GDPR)
As a company we are subject to various legal obligations, i.e. statutory requirements (e.g. the Federal Fiscal Code – Bundesabgabenordnung). For that purpose we are obliged to process invoice data (e.g. customer name, invoice number, invoice amount etc.) and store it for at least seven years.
4.4 on the basis of a legitimate interest of JumpandReach (Article 6(1) point f) GDPR)
Our overriding legitimate interests consists of the fact that:
• the personal data specified in section 2.1. is processed (1) in order to make this website available to you and further improve and develop it, (2) to enable us to create usage statistics and (3) to enable us to recognise, prevent or investigate attacks against our website.
• the personal data specified in section 2.3. is processed for the purpose of processing and responding to your enquiry, notification of a claim, complaint or positive feedback.
5. Who receives my data?
For the purposes referred to in section 4, we transmit your personal data to the following recipients:
• IT service providers that we use: We use contract processors to perform services on our behalf. The contract processors may only use or disclose that data according to our instructions and insofar as it is necessary for the purpose of performing services for us or in order to comply with legal regulations. We contractually obligate those contract processors to ensure the confidentiality and security of the personal data that they process on our behalf. We currently use the services of IDEEFIX System- und Softwareentwicklung GmbH.
• the manufacturer and deliverer of JumpandReach-products: The manufacturer and deliverer do not receive any personal data. The products are delivered by self-dispatch service.
6. Data protection and children
JumpandReach’s offers are not intended for children under 14 years of age. If we learn that we have recorded personal data of children under 14 years of age without legally valid consent of the parents, we will take appropriate measures to erase that data as soon as possible. We intentionally do not process any data of EU citizens under 14 years of age without the parents’ consent. If we learn that we have recorded personal data of an EU resident under 14 years of age without the parents’ consent, we will take appropriate measures to erase that data as soon as possible. We also adhere to other age restrictions and requirements in accordance with applicable local laws.
8. What data protection rights do I have?
Any data subject has the right to information under Article 15 GDPR, the right to rectification under Article 16 GDPR, the right to erasure under Article 17 GDPR, the right to restriction of the processing under Article 18 GDPR, the right to object under Article 21 GDPR and the right to data portability under Article 20 GDPR. You also have the right to lodge a complaint with a competent data protection supervisory authority (Article 77 GDPR). The competent data protection authority for Austria is the Austrian Data Protection Authority (Datenschutzbehörde), Wickenburggasse 8, 1080 Vienna.