1. Name and contact details of the controller
Controller for the collection, storage and processing of personal data within the meaning of the General Data Protection Regulation (GDPR), DSG i.d.F. Datenschutzanpassungsgesetz 2018 and TKG 2003 when visiting this website is:
CHC – Christian Husak Consulting
Mag. Dr. Christian Husak
Henriette Fischer Gasse 2
8120 Peggau, Steiermark
Telefon : +43 676 840 300 100
2. Collection of personal data when visiting this website
When visiting our website, access data are stored on the server in the context of so-called log files (access.log, error.log – in the following simplified as log files). These files contain the following data categories:
- the visited website
- the date and time of your request
- browser type, browser language, browser version
- amount of data sent (in bytes)
- operating system and it´s version
- referral URL
- hostname and IP-address
The named data categories can not be assigned to any particular person without merging with other data sources. A merge of this data with other data sources does not take place. The log files will be deleted after 30 days.
The log files are prepared for statistical purposes on a daily basis with statistical software to improve the functionality and security of the website.
A conclusion to a specific person is not possible. We reserve the right to check the log files later to maintain the network and information security should concrete evidence point to illegal use (invalid logon attempts, Brute Force or DDOS attacks, etc.). (Art.6 (1) lit.f DSGVO)
This data is processed on servers located in Germany (Nuremberg, Falkenstein) in accordance with the guidelines of the data protection level of the European Union. We point out existing exceptions when using third-party tools or any API´s that may be used outside your server location. Our website uses the following API´s:
2.1 Google Fonts API
Our website uses external fonts – Google Fonts – from Google Inc., 1600 Amphitheater Parkway Mountain View, CA 94043, USA through an API. The integration of these web fonts is done by a server call – to a server of Google Inc. USA. This transmits the referrer – a record of the browser that made the request to our website to the server. The referrer contains your IP address, which can be seen as a personal data. For more information on how Google Inc. processes this information, see the Google Inc. Privacy Notice, available at:
3. Web analytics
Our website does not use web analytics software.
4. Data processing provided by web forms
Our website does not use web forms.
Our website uses only consent-free cookies (session cookies, translation cookies). These cookies are automatically deleted when the session is closed by closing the browser window. These cookies usually do not require any approval (§96 Telekommunikationsgesetz, TKG). The function “session cookie” is necessary for the performance of the desired service and therefore an exception under §96 Telekommunikationsgesetz (TKG): “The use of this cookies are strictly necessary for the provision of the service requested by the user”.
6. Information regarding the rights of the affected persons
According to the legal position of the General Data Protection Regulation (GDPR), affected persons have the right to information rectification or deletion and objection:
6.1 Right to information
You can ask us to confirm the extent to which data categories process and who receives that data. DSGVO Art.15, 46 (Guarantees for transmission to third countries)
6.2 Right to rectification
The affected person has the right to demand from us the correction of incorrect personal data concerning said affected person without delay. In consideration of the purposes of the processing the affected person has the right to request the completion of incomplete personal data, including by means of a supplementary statement. DSGVO Art.16, ErwG. 64-66, Art.19
6.3 Right to cancellation
The affected person has the right to ask us to immediately delete personal data if one of the following reasons applies: Personal data are no longer necessary for the purposes for which they were collected or otherwise processed, the person affected revokes the consent on which the processing is based and there is no other legal basis for the processing, the person affected files an objection against processing, the personal data were processed unlawfully, the personal data has been collected in relation to information society services offered (consent of a child), the right of deletion does not exist in particular if the processing is necessary for the fulfillment of a legal obligation of us or for the performance of a public interest. DSGVO Art.17 Abs.1 lit.a-f, Abs.2, 3
6.4 Right to restriction of processing
The person affected has the right to demand that we restrict processing if one of the following conditions is met: the accuracy of the personal data is disputed by the person affected, for a period allowing us to verify the accuracy of the personal data, the processing is unlawful and the affected person is refuses deletion of the data and instead requests the restriction on the use of personal data, we no longer need the personal data for the purposes of the processing, but the person affected requires them to assert exercise or defend legal claims or the person affected has objected to processing until such time as it has been determined, whether the legitimate reasons of us outweigh those of the person affected. DSGVO Art.18
6.5 Right to data portability
The affected person has the right to receive personally identifiable information provided to us in a structured, common and machine-readable format, and has the right to transfer that data to another responsible person. In exercising their right to data portability, the affected person has the right to grant that the personal data be transferred directly from one responsible party to another responsible party, where technically feasible. DSGVO Art.20
6.6 Right of objection
The person affected has the right, to object to this data processing if there is an overriding protection interest in it´s data. If personal data is processed to operate direct advertising, the affected person has the right to object at any time to the processing of their personal data for the purpose of such advertising. If the affected person objects to processing for direct marketing purposes, their personal data will no longer be processed for these purposes.
6.7 Right of appeal to the supervisory authority
Any affected person shall have the right to lodge a complaint with a supervisory authority without prejudice or to any other administrative or judicial remedy, in particular in the Member State of their residence, place of work or place of alleged violation, if the person affected considers that the processing of their personal data violates these legal requirements – see https://www.dsb.gv.at/rechte-der-betroffenen.
7. Rights of use over charge
If the person affected uses one of the rights unfounded or particularly frequently, we may demand a reasonable processing fee or refuse the process.
8. Scope of approval
We offer various services or products. Consent or revocation always applies to all services or products that you have obtained from us. Please let us know about the contact options if your consent or objection should relate to all or certain services or products.
9. Duty to participate
Please note that we are obliged to assist in providing information about access data in accordance with the law. Telecommunications Act (TKG) §94