With this data protection declaration, we would like to inform you about the types of your personal data (hereinafter referred to collectively as “data”) that we process, for what purposes and to what extent, and how we use this data. We treat your personal data confidentially and in accordance with the statutory data protection regulations. Personal data is data with which you can be personally identified. Data subjects are hereinafter also referred to collectively as “users”. The terms used are not gender-specific.

Status of this privacy policy: June 2023

Person responsible for data collection on this website:

The data processing on this website is carried out by Maria Seidl
Address: Iglsbergweg 82, 5753 Saalbach
Phone: +43 (0)664 4110772

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

Data collection on this website

Your data is collected when you submit it to us by using, for example, our contact form. Other data is collected automatically when you access the website.

These are mainly the following technical data:

  • Address of the accessed web page (URL)
  • browser and version of the user’s browser
  • the operating system of the user
  • the address of the
  • previously visited page (referrer URL)
  • host name and IP
  • address of the device from which this website is accessed
  • date and time of the access

This data is stored in the web server log files for 2 weeks and then automatically deleted by the hoster. We do not merge this data with other data sources and do not evaluate it – thus this data cannot be assigned to specific persons. We reserve the right to check the server log files subsequently, in case of justified suspicion of unlawful activities We collect this data on the basis of Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website.


This website is hosted by an external service provider (hoster) The use of the hoster is in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f DSGVO). Our hoster will only process your data to the extent necessary to fulfill its service obligations. To ensure data protection-compliant processing, we have concluded an order processing contract with our hoster.

Types of data processed:

  • Inventory data (e.g., names, addresses).
  • Contact data (e.g., e-mail, telephone numbers).
  • Content data (e.g., text entries, photographs, videos).
  • Usage data (e.g., web pages visited, interest in content, access times).
  • Meta/communication data (e.g., device information, IP addresses).

Categories of data subjects:

  • Guests, interested parties, business partners.
  • Visitors and users of the online offer.

Purpose of processing:

To provide our online services Answering contact requests and communicating with users Security measures.

Legal bases of data processing

In the following, we share the legal basis of the General Data Protection Regulation (GDPR) on the basis of which we process personal data. Please note that in addition to the regulations of the DSGVO, national data protection regulations may apply in your or our country of residence and domicile. National data protection regulations in Austria: In addition to the data protection regulations of the General Data Protection Regulation, national data protection regulations apply in Austria. These include, in particular, the Federal Act on the Protection of Individuals with regard to the Processing of Personal Data (Data Protection Act – Datenschutzgesetz – DSG). In particular, the Data Protection Act contains special regulations on the right to information, the right to rectification or erasure, the processing of special categories of personal data, processing for other purposes and transmission, as well as automated decision-making in individual cases. Consent (Art. 6 para. 1 p. 1 lit. a DSGVO).

The data subject has given consent to the processing of personal data relating to him or her for a specific purpose or purposes. Performance of a contract and pre-contractual requests (Art. 6 (1) p. 1 lit. b. DSGVO) The processing is necessary for the performance of a contract to which the data subject is a party or for the performance of pre-contractual measures taken at the data subject’s request. Legitimate interests (Art. 6 (1) p. 1 lit. f. DSGVO) – Processing is necessary for the purposes of the legitimate interests of the controller or a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data.

Data processing in third countries
If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, entities or companies, this will only be done in accordance with the legal requirements. Subject to explicit consent or contractually or legally required transfer, we only process or have the data processed in third countries with a recognized level of data protection, which includes the US processors certified under the “Privacy Shield”, or on the basis of special guarantees, such as contractual obligation through so-called standard protection clauses of the EU Commission, the existence of certifications or binding internal data protection regulations (Art. 44 to 49 DSGVO, information page of the EU Commission: ).

Security measures / SSL encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as inquiries you send to us via our contact form. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

We take appropriate technical and organizational measures in accordance with Article 32 of the GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk; these measures include ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access concerning them, input, disclosure, ensuring availability and their separation. Furthermore, we apply procedures that ensure the exercise of data subject rights, deletion of data and response to data compromise. We already take the protection of personal data into account during the development and selection of hardware, software and processes, in accordance with the principle of data protection through technology design and through data protection-friendly default settings.

Cookies use

Cookies are text files that contain data of visited websites or domains and are stored by a browser on the user’s computer. Cookies do not cause any damage to your terminal device, but are primarily used to store information about a user during or after his visit within an online offer. The stored information may include, for example, the language settings on a website, or the login status. The term “cookies” also includes other technologies that perform the same functions as cookies (e.g., user IDs – information about the user that is stored on the basis of pseudonymous online identifiers):Temporary cookies, also known as session cookies: Temporary cookies are deleted at the latest after a user has left an online offer and closed his browser.
Permanent cookies: Permanent cookies remain stored on your terminal device until you delete them yourself or until they are automatically deleted by your web browser. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again.
First-party cookies: First-party cookies are set by ourselves.
Third-party cookies, also referred to as third-party cookies: Third-party cookies are mainly used by advertisers (so-called third parties) to process user information.
Necessary, also referred to as essential or absolutely necessary cookies: Cookies may be absolutely necessary for the operation of a website e.g. to store logins or other user input or for security reasons.
Statistical, marketing and personalization cookies: Furthermore, cookies are generally also used in the context of range measurement and when a user’s interests or behavior (e.g. viewing certain content, using functions, etc.) on individual websites are stored in a user profile. Such profiles are used, for example, to show users content that matches their potential interests. This procedure is also referred to as “tracking”, i.e., tracking the potential interests of users. These types of cookies are not set on our website
We do not use Google Analytics, Facebook Pixel

Which and whether you want to use cookies, you can determine yourself. You have the option to delete, disable or only partially allow cookies. For example, you can block only third-party cookies, but allow all other cookies. You can also set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. If you want to determine which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:

Chrome: Cookies in Chrome löschen, aktivieren und verwalten
Safari: Verwalten von Cookies und Websitedaten mit Safari
Cookies löschen, um Daten zu entfernen, die Websites auf Ihrem Computer abgelegt haben
Internet Explorer: Löschen und Verwalten von Cookies
Microsoft Edge:
Löschen und Verwalten von Cookies

Use Personal Data In the course of a contact:

Contact form If you use our contact form, the information you provide in the inquiry form, including the contact data you enter there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass on this data without your consent. By entering your data in the contact form, you agree that your data (your name and email address) will be stored at Maria Seidl KG, Iglsbergweg 82, 5753 Saalbachg. This consent can be revoked at any time by sending an e-mail to The processing of the data entered in the contact form is thus based exclusively on your consent (Art. 6 para. 1 lit. a DSGVO). The legality of the data processing operations carried out until the revocation remains unaffected by the revocation. At the same time, when using the contact form , you confirm that you have reached the age of 14. Purpose of data storage: processing your inquiry, making an appointment, sending information material. Duration of data storage: The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage or the purpose for storing the data is no longer given (e.g. after completion of processing your request).

Contacting us by e-mail, telephone or fax: If you contact us by e-mail, telephone or fax and provide us with personal data, such as name, e-mail address, address or other personal details, these will only be used by us for the stated purpose, stored securely and not passed on to third parties. Purpose of data storage: processing your inquiry, making an appointment, sending you information material. Duration of data storage: Your data will remain with us until you request us to delete it, revoke your consent to storage or the purpose for storing the data is no longer given (e.g. after processing your inquiry has been completed). Mandatory legal provisions – in particular retention periods – remain unaffected.


Da wir unsere Inhalte auch in Englisch anbieten verwenden wir das Plugin Polylang welches für die Mehrsprachigkeit verantwortlich ist. Polylang setzt ein Cookie um zu Erkennen und Merken der vom Nutzer verwendeten Sprache. Dieser Cookie wird nach einem Jahr gelöscht. Nähere Information zu Namen, Wert, Speicherdauer und zur Deaktivierung dieses Cookies können unter abgerufen werden.

Since we also offer our content in English, we use the plugin Polylang which is responsible for the multilingualism. Polylang sets a cookie to recognize and remember the language used by the user. This cookie is deleted after one year. More information about the name, value, storage time and deactivation of this cookie can be found at

Online presence in social media

We maintain online presences within social networks and platforms on the basis of our legitimate interests within the meaning of Art. 6 Para. 1 lit. f. DSGVO, we maintain online presences within social networks and platforms in order to be able to communicate with the customers, interested parties and users active there and to inform them about our services there. When calling up the respective networks and platforms, the terms and conditions and data processing policies of their respective operators apply.

We process the data of users if they communicate with us within the social networks and platforms, e.g. write posts on our online presences or send us messages.

Link to Facebook:

On this websiteis an external link to the social network “Facebook” integrated. Facebook is operated by the company Facebook Inc. with headquarters at 471 Emerson St. Palo Alto, CA 94301-160, (USA). This is not a plugin, but an icon with a text link. As a result, no direct connection is established between the user’s browser and the Facebook servers when visiting this website. Information is only transmitted when the user clicks on the link and is logged in with their respective user account. Logging out of your respective user account prevents Facebook from associating your user account with our website.

Your rights as a data subject

Right of appeal to the competent supervisory authority

In the event of violations of the GDPR, data subjects shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their main residence, your place of work or the place of the alleged violation. The right of appeal is without prejudice to other administrative or judicial remedies.

Right to data portability

You have the right to have data that we process on the basis of your consent handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

Information, deletion and correction

Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of data processing and a right to delete this data. For this and also for further questions on the subject of personal data, you can contact us at any time.