The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection provisions is:
Lansky, Ganzger, Goeth + partner Rechtsanwälte GmbH
Company Register Nr.: FN 214760z
VAT-Nr.: ATU52816403
Biberstraße 5
1010 Vienna
Tel.: +43 1/ 533-33-30-0
E-Mail: officelansky.sign: dotat
Website: www.lansky.at
The protection of personal data is particularly important to Lansky, Ganzger, Goeth + partner Rechtsanwälte GmbH (hereinafter also "LGP", "we" or "us"). We take appropriate organisational and technical precautions to ensure the security of your personal data. In particular, we protect your data from unauthorised, illegal or even accidental access, processing, loss, use or manipulation.
The obligation to maintain attorney-client confidentiality, which is also imposed on attorneys by the Austrian Bar Association through the Code of Professional Conduct, means that the highest level of confidentiality must be maintained for every attorney activity. In addition, we comply with all data protection regulations, in particular those of the GDPR (EU General Data Protection Regulation) and the DSG (Austrian Data Protection Act). This privacy policy explains in more detail how we process personal data, for what purpose we process it, what rights you have and how you can make use of these rights.
As a matter of principle, we only process personal data insofar as this is necessary to provide a functional website and our content and services. Personal data is regularly processed only with your consent.
If you establish a mandate or contractual relationship with us, you may provide us with personal data as well as company and business secrets, data about your relatives and employees. However, this personal data will only be processed to the extent that it is necessary for the scope of our legal representation or within the framework of the contractual relationship. This disclosure may be necessary vis-à-vis courts, authorities, or opponents in civil proceedings as well as the public prosecutor's office in criminal proceedings and other parties.
In order to fulfil your orders, it may be necessary to pass on your data to authorities, courts, third parties, employees of our law firm, external employees of our law firm, insurance companies, substitutes and others. Such disclosure will only take place on the basis of the data protection provisions applicable within the European Union and in Austria.
In the course of our work as lawyers, it is often necessary to obtain information about our clients from third parties. Depending on the individual case, we therefore obtain information, for example, via social networks, search engines, your company's website and from other sources. It may also be necessary to request authorities or courts to transfer your personal data. In all these cases, too, we always ensure that all legal provisions of the European Union, national data protection regulations and the confidentiality obligations of lawyers are complied with.
Under no circumstances will we process data provided for any purpose other than that which is necessary for the fulfilment of the mandate contract or within the scope of your consent. Anonymised data, which we process for statistical purposes, are excluded from this.
An exception also applies in cases where it is not possible to obtain prior consent for actual reasons and the processing of the data is permitted by legal regulations.
Insofar as we obtain the consent of the data subject for processing operations involving personal data, Art. 6 (1) (a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) (b) GDPR serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.
If processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 (1) c GDPR serves as the legal basis.
If processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 (1) lit. f GDPR serves as the legal basis for the processing.
The personal data of the data subject shall be deleted or blocked as soon as the purpose of the storage no longer applies. Storage may also take place if this has been provided for by the European or national legislator in Union regulations, laws, or other provisions to which the person responsible is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need to continue storing the data for the conclusion or performance of a contract.
In certain cases, we receive support from other companies for the processing of your personal data. However, we ensure without exception that the processing of your personal data is carried out exclusively in accordance with our high technical and organizational security standards. By means of order processing agreements, we impose the same technical and organizational measures on these companies as those that we ourselves adhere to with our high standards of care and using the latest IT technology. We also ensure that if data processing is necessary in a country that is not a member of the European Union or part of the European Economic Area, this processor complies with all standards in accordance with Art. 44 - 49 GDPR. We conclude a data processing contract with each processor in which we contractually bind the security of your data to our processors.
In order to protect our employees, our clients and the data stored in our office, areas of our building as well as the entrance area are video-monitored. The video surveillance also records sounds if this surveillance takes place in the entrance area. The surveillance in the entrance area is therefore also acoustic, as it must be possible to communicate with visitors to our law firm via the intercom system. Video surveillance is carried out on the legal basis of the legitimate interests of the responsible party and serves the preventive protection of persons or property in and directly in front of the entrance area of the business premises of the responsible party. The recording of the video surveillance as well as the acoustic surveillance in the entrance area is only temporary. Should we receive concrete evidence of a criminal offence having been committed, we will make this recording available to the law enforcement authorities. Apart from this provision for the aforementioned purpose, video surveillance and acoustic surveillance are never processed for other purposes or passed on to third parties and are regularly deleted after short intervals.
Our website uses cookies. Cookies are text files that are stored in the internet browser or by the internet browser on the user's computer system. When a user calls up a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again.
Technically necessary cookies
Technically necessary cookies ensure functions without which you cannot use our website. Consequently, these cookies are only used by us for this purpose and are first party cookies due to this fact, i.e. all information stored in the cookies is returned to our website.
The technically necessary cookies are there, for example, to grant the logged-in user access to various sub-pages of our website. The user data collected through technically necessary cookies are not used to create user profiles.
Cookies that are not technically necessary
We also use cookies on our website that enable an analysis of the user's surfing behaviour. When calling up our website, the user is informed about the use of cookies for analysis purposes and his or her consent to the processing of the data used is obtained. In this context, a reference to this privacy policy is also made.
More information on the analysis tools used can be found under point 5.
Technically necessary cookies
We do not require consent for the use of technically necessary cookies, which is why they cannot be deactivated or activated. The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 lit. f GDPR.
Cookies that are not technically necessary
The legal basis for the processing of personal data using cookies for analysis purposes is a relevant consent of the user Art. 6 (1) lit. a GDPR.
Technically necessary cookies
The purpose of using technically necessary cookies is to simplify the use of the website for users. Some functions of our website cannot be offered without the use of cookies.
Cookies that are not technically necessary
Analysis cookies are used to improve the quality of our website and its content. Through the analysis cookies, we learn how the website is used and can thus constantly optimize our offer.
Cookies are stored on the user's computer and transmitted from it to our site. Therefore, you as a user also have full control over the use of cookies. By changing the settings in your internet browser, you can deactivate or restrict the transmission of cookies. Cookies that have already been saved can be deleted at any time; this can also be done automatically. If you also deactivate technically necessary cookies, we cannot guarantee that you will be able to fully access our offer.
We use the open source software tool Matomo on our website to analyse the surfing behaviour of our users. The software sets a cookie on the user's computer (for cookies, see above). If individual pages of our website are called up, the following data is stored:
The software runs exclusively on the servers of our website. Personal data of the users is only stored there. The data is not passed on to third parties. The IP addresses of the users are anonymised by means of an IP masking procedure.
The legal basis for the processing of users' personal data is consent in accordance with Art. 6 (1) lit. a GDPR.
The processing of the users' personal data enables us to analyse the surfing behaviour of our users. By evaluating the data obtained, we are able to compile information about the use of the individual components of our website. This helps us to continuously improve our website and its user-friendliness.
The data is deleted as soon as it is no longer required for our recording purposes. The cookies have a maximum storage period of 13 months and are then automatically deleted. You can find more information at: https://matomo.org/faq/general/faq_146/
On our website, you have the option of subscribing to a free newsletter.
For sending our newsletter we use the service provider eworx of eworx Network & Internet GmbH, Hanriederstraße 25, 4150 Rohrbach-Berg, Austria. Eworx contains a web beacon, also called tracking pixel. This makes it possible to determine whether the e-mails have been opened or whether the links contained in the e-mails have been clicked on. We use this information to improve our email service and evaluate which information is read or clicked on the most. When the email is deleted, the web beacon is also automatically deleted. Our regular text emails do not contain web beacons. Except for the use of the newsletter tool eworx, your data will only be used for sending the newsletter and will not be passed on to third parties by us.
When registering for the newsletter, the data from the input mask is transmitted to us. These data are:
In addition, the following data will be collected during registration:
The legal basis for the processing of data after registration for the newsletter by the user is Art. 6 para. 1 lit. a GDPR if the user has given his consent. Your consent is obtained for the processing of data during the registration process and reference is made to this privacy policy.
The collection of the user's email address serves to deliver the newsletter. The collection of other personal data during the registration process serves to prevent misuse of the services or the e-mail address used (“Double-Opt-In-Procedure”).
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. The user's email address is therefore stored for as long as the subscription to the newsletter is active.
The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose, a corresponding link can be found in each newsletter.
Contact form and E-mail contact
Our website contains a contact form that can be used to contact us electronically. If a user makes use of this option, the data entered in the input mask is transmitted to us and stored. These data are:
For the processing of the data, your consent is obtained during the submission process and reference is made to this privacy policy.
Alternatively, it is possible to contact us via the provided e-mail address office@lansky.at. In this case, the user's personal data transmitted with the e-mail will be stored.
In this context, the data will not be passed on to third parties. The data is used exclusively for processing the conversation.
Online applications for job vacancies
It is always a pleasure for us to receive applications. In this context, your data will also be processed.
The legal basis for the processing of the data is Art. 6 (1) lit. a GDPR if the user has given his or her consent. If the e-mail contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.
The processing of the personal data from the input mask serves us solely to process the contact. In the case of contact by e-mail, this also constitutes the necessary legitimate interest in processing the data.
Data in connection with applications are processed both for the purpose of contacting you and for assessing your qualifications.
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected and no other legal obligations require it to be stored.
In the case of a speculative application, your application documents will be stored for 12 months, after which they will be deleted. In the case of an application procedure, your application documents will be deleted after 9 months at the latest if the application is not successful.
The user has the option to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he or she can object to the storage of his or her personal data at any time by sending an e-mail to officelansky.sign: dotat. In such a case, the conversation cannot be continued. All personal data stored in the course of contacting us will be deleted in this case.
If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:
You have the right to object at any time to the processing of personal data relating to you that is processed on the basis of Art 6 (1) lit. f GDPR.
You have the right to withdraw your consent at any time.
You have both the right to obtain confirmation as to whether data concerning you is being processed and the right to obtain information and a copy of such data in accordance with the law.
You have the right to request the completion or rectification of (inaccurate) data concerning you.
You have the right to have data concerning you deleted immediately or to have processing restricted in accordance with the legal provisions.
You have the right to receive data relating to you that has been provided to us by you in a common, structured and machine-readable format in accordance with the statutory provisions.
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory or data protection authority, in particular in the EU Member State where you have your habitual residence or place of work as well as in the place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR. The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.
Vienna, on 31.03.2023
(last updated on 31.03.2023)
