wefly-paragliding.at

We Fly Paragliding Logo Quer
Menu

Data Privacy

1. Introduction and Responsible Party

With this privacy policy, we inform you about the nature, scope, and purpose of the processing of personal data within our online offering and the associated websites, functions, and content (hereinafter jointly referred to as the “Website”). This privacy policy applies regardless of the domains, systems, platforms, and devices used (e.g., desktop or mobile) on which the Website is executed.

Responsible according to the General Data Protection Regulation (GDPR):

Dominik Tschoder

Franz‑Senn‑Str. 162

6167 Neustift im Stubaital

Austria

Email: info@wefly‑paragliding.at

2. Types of Processed Data

We process personal data only in accordance with the provisions of the GDPR and the Austrian Data Protection Act (DSG). These include:

  • Registration data: name, address
  • Contact data: e‑mail address, telephone number
  • Usage data: visited webpages, access times
  • Meta-/communication data: IP addresses, device information

3. Purposes of Data Processing

We process your data for the following purposes:

  • Provision of the online offering, its functions, and content
  • Responding to contact inquiries and communicating with users
  • Sending newsletters (if you have subscribed)
  • Security measures (e.g., protection against cyber attacks)
  • Reach measurement and analysis of user behavior to optimize our offering

4. Legal Bases for Processing

The processing of your personal data is based on the following legal grounds:

  • Consent (Art. 6(1)(a) GDPR): for processing that requires your consent (e.g., newsletter dispatch, analytics cookies)
  • Contract performance or pre‑contractual inquiries (Art. 6(1)(b) GDPR): for delivering our services and responding to your contact form inquiries
  • Legal obligation (Art. 6(1)(c) GDPR): when required by law
  • Legitimate interests (Art. 6(1)(f) GDPR): when the processing is necessary for our legitimate interests (e.g., technical security, website optimization) or those of third parties, provided that your interests or fundamental rights and freedoms are not overridden

5. Data Security

We implement technical and organizational measures in line with current technology standards to protect your data from accidental or intentional manipulation, loss, destruction, or unauthorized access.

6. Rights of the Data Subject

As a data subject, you have the following rights:

  • Right of access (Art. 15 GDPR): request information about your personal data processed by us
  • Right to rectification (Art. 16 GDPR): request correction of inaccurate or completion of incomplete data
  • Right to erasure (Art. 17 GDPR): request deletion of your personal data, unless processing is required for freedom of expression, legal obligation, public interest, or legal claims
  • Right to restriction of processing (Art. 18 GDPR): request limitation of processing your personal data
  • Right to data portability (Art. 20 GDPR): receive your data in a structured, commonly used, machine-readable format or request transfer to another controller
  • Right to object (Art. 21 GDPR): object at any time on grounds relating to your particular situation to processing based on Art. 6(1)(e) or (f)
  • Right to withdraw consent (Art. 7(3) GDPR): withdraw previously given consent at any time with future effect
  • Right to lodge a complaint (Art. 77 GDPR): file a complaint with a supervisory authority— in Austria: the Austrian Data Protection Authority

7. Data Deletion

We delete or restrict processing of your data once the purpose of processing is no longer applicable and no statutory retention obligations apply. If deletion is not possible due to legal retention requirements, processing will be limited. That means data is blocked and not further processed—e.g., data needed for commercial or tax law purposes.

8. Integration of Third-Party Services and Content

a. Contact Forms (Contact Form 7)

For contact requests on our website, we use the WordPress plugin Contact Form 7. The data entered (name, email address, message) is stored to process your inquiry and for follow-up questions. We do not share these data without your consent. Processing is based on Art. 6(1)(b) GDPR when the inquiry relates to contract performance or pre‑contractual measures; in all other cases, it is based on our legitimate interest in efficient handling (Art. 6(1)(f) GDPR).

b. Newsletters (Mailchimp and Brevo)

If you subscribe to our newsletter, we require a valid email address and verification of your ownership of the email and your consent to receive the newsletter. Consent may be withdrawn at any time.

  • Mailchimp (Rocket Science Group LLC, Atlanta, GA, USA): Newsletter data is stored on Mailchimp servers in the USA. Mailchimp is certified under the EU‑US Data Privacy Framework. We have an order processing contract with them.
  • Brevo (formerly Sendinblue) (Sendinblue GmbH, Berlin, Germany): Data is stored on Brevo servers in Germany.

Newsletter processing is based exclusively on your consent (Art. 6(1)(a) GDPR).

c. Google Analytics 4

Our website uses Google Analytics 4 (Google Ireland Limited, Dublin, Ireland). Google Analytics uses cookies, small text files stored in your browser to analyze website usage. The data generated is usually sent to Google’s servers in the USA and stored there.

We have configured Google Analytics 4 to anonymize IP addresses: within the EU or EEA, IPs are truncated before transfer. Only in rare cases is the full IP address transmitted to the USA and then anonymized. On our behalf, Google uses this data to evaluate website usage, generate reports, and provide related services. Your IP address is not linked with other Google data. Processing by Google Analytics 4 is based on your consent (Art. 6(1)(a) GDPR). You can withdraw consent any time via cookie settings or browser configuration. Please note that some website functions may not be available thereafter.

d. Google Fonts

We use Google Fonts to present text uniformly. Your browser loads the required fonts into its cache and connects to Google servers, giving Google knowledge of your IP address and the fact that our site was accessed. Font usage serves a legitimate interest—consistent, appealing display—based on Art. 6(1)(f) GDPR.

e. YouTube Videos

We embed YouTube videos (hosted on www.youtube.com) in “enhanced privacy mode,” meaning no data is transferred to YouTube unless you play the video. Once played, YouTube receives your IP address, time/date of access, browser type, OS, regardless of whether you’re logged in. If you are logged in to Google, the data may be associated with your account. If you don’t wish this, log out before activating the video. YouTube may use the data for advertising, market research, or tailoring content. You object rights against profiling rest with YouTube. See Google’s privacy policy for details.

9. Changes to the Privacy Policy

We reserve the right to adjust this privacy policy to comply with legal requirements or reflect changes in our services (e.g., new offerings). The version applicable on your next visit will apply automatically.