Privacy Policy

HAP Risk FlexCo

The protection of your personal data is a matter we take seriously. We process personal data exclusively in accordance with the General Data Protection Regulation (GDPR), the Austrian Data Protection Act (DSG) and the Telecommunications Act (TKG 2021).

This Privacy Policy sets out the nature, scope and purpose of the processing of personal data in connection with our website.

1. Data Controller

HAP Risk FlexCo
Julius-Tandler-Platz 2B / TOP 92
1090 Vienna, Austria

Phone: +43 664 80586 580
Email: info@hap-risk.com
Website: https://hap-risk.com

2. Processing of Technical Data

When you visit our website, certain technical information is processed automatically, including:

  • IP address
  • Date and time of access
  • Browser type and operating system
  • Referring URL
  • Pages visited

This data is processed solely to ensure the technical operation of the website, for error analysis and to maintain IT security.

Legal basis: Art. 6(1)(f) GDPR (legitimate interests).

3. Hosting

Our website is hosted by a third-party hosting provider. A data processing agreement in accordance with Art. 28 GDPR is in place with this provider.

4. Contact

When you contact us by email, phone or via our contact form, we process the data you

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures) and Art. 6(1)(f) GDPR (legitimate interests).

5. Cookies

Our website uses cookies that are necessary for its operation.
Where optional cookies are used (such as analytics or marketing cookies), this only takes place with your consent, given via the cookie banner.

Legal basis:

  • Art. 6(1)(f) GDPR (technically necessary cookies)
  • Art. 6(1)(a) GDPR (optional cookies)

6. Third-Party Services

Where third-party content or services are integrated into our website (such as fonts, plugins or external content), technical data including your IP address may be transmitted to those providers.
Any transfer of data to third countries takes place only under the conditions set out in Art. 44 et seq. GDPR.

7. Retention Periods

Personal data is retained only for as long as necessary for the purposes for which it was collected, or as required by applicable statutory retention obligations.

8. Your Rights

You have the right to:

  • Access your data (Art. 15 GDPR)
  • Rectification of inaccurate data (Art. 16 GDPR)
  • Erasure of your data (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Object to processing (Art. 21 GDPR)

If you believe that the processing of your data is in breach of applicable data protection law, you have the right to lodge a complaint with the competent supervisory authority:

Austrian Data Protection Authority
Barichgasse 40–42
1030 Vienna
https://www.dsb.gv.at

9. Data Security

We implement appropriate technical and organisational measures to protect personal data against loss, manipulation and unauthorised access.

10. Changes to this Privacy Policy

We reserve the right to update this Privacy Policy as necessary.