Data protection is an important concern for us at feratel media technologies AG. We therefore process your personal data in the context of our business relationships with you exclusively in accordance with legal regulations and requirements. In the following, we would like to inform you about the processing of your personal data.
The last update was made on: 05.03.2025
General information
1. controller for the processing of personal data
feratel media technologies AG
Maria-Theresien-Straße 8
A-6020 Innsbruck.
Phone: +43 (0) 512 / 7280-0
Fax: +43 (0) 512 / 7280-1080
E-mail: info@feratel.at
2. data protection officer
feratel media technologies AG is not obliged to appoint a data protection officer.
3. your rights as a data subject
As a person affected by the processing of personal data, you have the right to information, correction, deletion and restriction of processing. This also applies to the right to data portability if the processing is based on a contract or consent.
If your personal data is processed on the basis of Art. 6(1)(e) GDPR (data processing in the public interest), Art. 6(1)(f) GDPR (data processing on the basis of a balancing of interests) or in the context of profiling in accordance with Art. 4(4) GDPR, you also have the right to object. You also have this right if data is processed for direct marketing purposes.
If you have given your consent, you also have the right to revoke it at any time for the future.
Information on how you can exercise your rights can be found in the ‘Data protection contact’ section.
If you are of the opinion that the processing of your personal data is not lawful, you can contact any data protection authority. The supervisory authority responsible for us pursuant to Art. 55 GDPR is the Austrian Data Protection Authority (https://www.dsb.gv.at/), Barichgasse 40-42, 1030 Vienna, dsb@dsb.gv.at
4. data protection contact
If you have any questions in connection with this privacy policy or would like to exercise your rights as a data subject, you can contact us either by post at the above address or by email at privacy@feratel.at.
Processing activities
1. management and maintenance of business relationships
For the purpose of maintaining business relationships with you as one of our customers, suppliers and/or service providers, as well as for the planning, implementation and administration of (contractual) business relationships, but also for marketing and advertising purposes, we process from you or your contact persons, among other things Surname, first name, contact details, such as e-mail address, telephone number or address, title, position, function, company affiliation, company registration number, company register data, VAT number, bank details, data/information on the creditworthiness and payment and performance behaviour of the person concerned, dunning data/complaint data or other information that is related to correspondence or an enquiry on your part and enables a personal reference.
The processing of your personal data is based either on the legitimate interest (including the fulfilment of contractual obligations) pursuant to Art. 6 para. 1 lit. f GDPR, a legal obligation (including commercial or tax regulations) pursuant to Art. 6 para. 1 lit. c GDPR, and is therefore necessary, or your consent pursuant to Art. 6 para. 1 lit. a GDPR.
Your personal data will be deleted immediately after the purpose no longer applies (e.g. end of the business relationship), unless you have already objected in advance to the processing of your personal data based on the legitimate interest (Art. 21 GDPR) or revoked your consent in accordance with Art. 7 para. 3 GDPR, or any legal claims or statutory retention periods prevent deletion. Statutory retention periods may result, for example, from retention obligations under commercial and tax law (up to 7 years). If deletion is not possible due to legal retention periods, your personal data will be stored for a limited period.
In the context of the above-mentioned purposes, we also use (IT) service providers and suppliers in the areas of construction, infrastructure and organisation. Should these prove to be processors within the meaning of Art. Art. 4 No. 8 GDPR, corresponding data protection contracts have been/will be concluded with them, which oblige them to comply with legal requirements.
We only transfer your personal data to third parties (including subsidiaries, external banks, legal representatives, auditors, debt collection companies, contractual or business partners (who are involved or should be involved in the delivery or service), insurance companies, the Austrian Federal Statistical Office) if you have consented to this or if we are legally obliged to do so.
In the case of legitimate interest, you have the right to object in accordance with Art. 21 GDPR; in the case of consent, you have the right to withdraw consent in accordance with Art. 7 para. 3 GDPR. You can find more information on this in the section ‘Your rights as a data subject’.
2. contact enquiry
If you are interested in one of our products or services or have a general question and contact us by e-mail or telephone, we will process your surname, first name, e-mail address, the content of your message and, if applicable, other information that can also be derived from your signature and establish a personal reference for the purpose of establishing contact and communication (e.g. for processing enquiries, preparing offers and processing contracts or providing technical information on products and services).
The legal basis for the processing of your personal data in the context of merely making contact, without an offer being made or a contract being concluded, unless you are already a customer, supplier and/or service provider, is your consent in accordance with Art. 6 para. 1 lit. a GDPR. It is generally not necessary to provide your personal data, but if you do not provide it, we will not be able to process your enquiry. However, if you are already a customer, service provider and/or supplier with us, the legal basis is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR (e.g. to fulfil contractual obligations). In this case, the processing of personal data is necessary. If we also have to fulfil legal obligations (e.g. commercial or tax regulations), the processing of your personal data on the basis of legal requirements pursuant to Art. 6 para. 1 lit. c GDPR may also be considered and is necessary in this case. Automated decision-making within the meaning of Art. Art. 22 GDPR is not used.
If you have given us your consent or if there is a legitimate interest, e.g. the fulfilment of contractual obligations towards you, your personal data may also be transferred to our subsidiaries. However, data will only be transferred to other third parties if we have your consent or if it is necessary to comply with applicable law or to assert, exercise or defend legal claims.
If there is merely an interest on your part, but no offer is made or a contract is concluded, the data will be deleted after three years once the purpose no longer applies or if you have not withdrawn your consent in advance, unless you have consented to a longer retention period. In the event of an offer being made or a contract being concluded, we are obliged to store your data for a limited period after the purpose no longer applies due to statutory retention periods. Statutory retention periods may result, for example, from retention obligations under commercial and tax law (up to 7 years in Austria).
In the case of legitimate interest, you have the right to object in accordance with Art. 21 GDPR, in the case of your consent the right to revoke in accordance with Art. 7 para. 3 GDPR. You can find more information on this in the section ‘Your rights as a data subject’.
3. login for customers and partners
If you are a customer of ours and have purchased one of our products, you can access it directly via our login, operate it and, for example, store information in the application that is subsequently broadcast or operate your piste guidance system.
For this purpose, we process first and last names and information about when you logged in (location, time, date) and whether, for example, an update was made. The processing of your personal data is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR, which is justified by the fulfilment of contractual obligations towards you, as well as ensuring that only authorised persons gain access to our systems.
As these are exclusively products developed by us, there is generally no transfer or disclosure of the above-mentioned personal data. Should a transfer to third parties nevertheless be necessary, this will take place because we are legally or contractually obliged to do so or because you have given us your consent.
Personal data is generally deleted after the purpose no longer applies (e.g. end of the business relationship) or if, for example, an objection to the processing of personal data has been lodged in the case of legitimate interest (Art. 21 GDPR) and the interests of the data subject outweigh ours. However, in the context of protecting our systems, we store your personal data for a limited period of five years after the purpose no longer applies and then delete it irrevocably.
In the case of legitimate interest, you have the right to object in accordance with Art. 21 GDPR. Automated decision-making within the meaning of Art. Art. 22 GDPR is not used. You can find more information on this in the section ‘Your rights as a data subject’.
4. service desk for customers and partners
If you are one of our customers and you have a technical problem with one of our products, have questions about it or would like to find out more about a product you have purchased from us in self-study and access our knowledge base, we process your e-mail address, first and last name, information about your organisation and function and the history of enquiries made by your organisation, as well as when you logged in (location, time, date) in the context of accessing our service desk on our website. The processing of your personal data is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR, which is based on the fulfilment of contractual obligations towards you, as well as ensuring that only authorised persons have access to our systems. The provision of further information with personal reference, which may result from a signature in the ticket or the content of the ticket, is exclusively on a voluntary basis on your part.
We use the IT service provider Atlassian PTY Ltd (341 George Street, Sydney New South Wales 2000, Australia) to provide this service. As this provider is located in a third country and does not have an adequate level of data protection in accordance with Art. 45 GDPR, standard contractual clauses of the European Commission have been signed with it: commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en.
Furthermore, if a technical problem cannot be resolved directly by us in the event of an incident, for example, we use one of our European subsidiaries. Order processing contracts have been concluded with these subsidiaries to protect your personal data in accordance with Art. 28 GDPR. Data will only be transferred to third parties if we are legally or contractually obliged to do so or if you have given us your consent.
In the context of remote maintenance, we use the Teamviewer application. Information on the processing of your personal data can be found here: TeamViewer privacy policy. Apart from this, communication with Microsoft Teams cannot be ruled out. Information on the processing of your personal data can be found here: Microsoft Teams privacy policy.
Personal data is always deleted after the purpose no longer applies or if an objection to the processing of personal data has been lodged in the case of legitimate interest (Art. 21 GDPR) and the interests of the data subject outweigh ours. In the context of cancelling a ticket, we store your personal data for as long as we have a business relationship with you. This also applies to the use of our knowledge base, but access rights will be withdrawn from persons who are no longer employed by you and you have notified us accordingly.
If the processing is based on legitimate interest, you have the right to object (Art. 21 GDPR). Automated decision-making within the meaning of Art. Art. 22 GDPR is not used. You can find more information on this in the section ‘Your rights as a data subject’.
5. training courses, workshops & forum
If you register for or book one of our training courses, workshops or forums, we process your surname and first name, your e-mail address, company name and title for the purpose of processing the booking and carrying it out. When booking, you also have the option of entering your company address, telephone contact details, information on interests or any other message in the form. The processing of your personal data takes place on the legal basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR or - if there are contractual obligations between you and us - our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR, the fulfillment of the contract.
The processing of your personal data surname and first name in the context of the documentation and additionally your e-mail address for the purpose of sending the feedback questionnaire (link to the questionnaire) following participation in a workshop, training course or forum is also based on the legal basis of legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest is based on the one hand on the fact that we can use the participants to understand whether, for example, an incident and the associated maintenance effort on our part is due to the lack of participation in a necessary training/instruction in a product and is therefore not part of the contractual flat rate, but must be billed separately, and on the other hand on the fact that it is very important to us to learn from the information from the feedback and to constantly improve and develop ourselves in order to be able to offer you the best offer. With this in mind, we would like to point out that the evaluation of the questionnaire is anonymous. However, if you would like to enter your surname and first name in the feedback form, this is purely voluntary on your part.
Following the training course, you will also have the opportunity to download teaching materials from our knowledge database/platform or to engage in self-study after you have been registered with us in the system. In this context, we process your e-mail address for sending the link and user name, place, date and time of login and your IP address for registration and login. Your personal data is processed on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR.
In order to ensure that your physical well-being is not neglected during the event and, above all, to take into account, for example, dietary habits and intolerances in the catering, we will ask you for the relevant information before the start of the events. As this is health data within the meaning of Art. 4 No. 15 GDPR, such processing takes place exclusively on the basis of your express consent in accordance with Art. 9 para. 2 lit. a GDPR. In this context, we would like to point out that our catering services only receive the following information, for example (4x vegetarian, 1x vegan).
If, for example, the workshop takes place virtually, we use IT service providers such as Microsoft Teams or Zoom. Information on the processing of your personal data in this context can be found here:
Apart from the service provider Microsoft and Zoom, we use the IT service provider Atlassian PTY Ltd; 341 George Street, Sydney New South Wales 2000 in the context of the download option and our knowledge database. As this is located in a third country and does not have an adequate level of data protection in accordance with Art. 45 GDPR, standard contractual clauses of the European Commission have been signed with it: commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en
If you would like to remain in contact with the other participants, we will be happy to pass on your surname, first name and e-mail address to the other participants for the purpose of contacting you on the basis of your consent.
Your personal data will only be transferred to third parties (e.g. within the Group) if you have given us your consent to do so or if we are legally or contractually obliged to do so.
Your personal data will generally be deleted after the purpose no longer applies or in the event of revocation (Art. 7 para. 3 GDPR) or objection (Art. 21 GDPR), unless statutory retention periods or legal claims prevent deletion. In this case, the processing of your personal data will be technically restricted. Personal data in the context of the processing, booking and implementation of training courses, workshops or forums is stored for seven years in accordance with the Federal Fiscal Code, among other things, and personal data in the context of the documentation of the participants, as well as our knowledge database, is stored for the duration of the business relationship or as long as the participant is an employee of our customer and then deleted. If the video conferencing tool MS Teams and/or Zoom is used, you will find the relevant information on the storage period in the above data protection declarations for Microsoft Teams and ZOOM. The above-mentioned health data will be irrevocably deleted after the end of the event.
If the processing is based on your consent, you have the right to revoke your consent for the future (Art. 7 para. 3 GDPR), in the case of legitimate interest a right of objection (Art. 21 GDPR). Automated decision-making within the meaning of Art. Art. 22 GDPR is not used. You can find more information on this in the section "Your rights as a data subject".
6. video surveillance on the company premises
If you visit us at our Pfarrwerfen site, we would like to point out that our premises are under video surveillance. In addition to the data protection declaration, you will be made aware of this at the relevant entrances by appropriate signs.
In the context of video surveillance, we process your video recording as well as the date, time and location of the recording. Your personal data is processed for the purpose of self-protection / to enforce domiciliary rights - i.e. to protect our property and employees -, to prevent, contain and clarify criminally relevant behavior and to assert claims.
The processing of your personal data is based on the legal basis of the legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR or § 12 para. 2 lit. f DSG and is based - as already mentioned above - on ensuring security on the company premises.
Your personal data will be transmitted to third parties (law enforcement authorities, legal and public prosecutors, courts or insurance companies) on an ad hoc basis, e.g. in the event of a burglary or the occurrence of damage, for the assertion of any legal claims or the settlement of claims.
Your personal data will only be stored for a period of 30 days. After this period, the data will be automatically deleted unless it is required as evidence in connection with an event or for the assertion of any legal claims.
In the case of legitimate interest, you have the right to object (Art. 21 GDPR). Automated decision-making within the meaning of Art. Art. 22 GDPR is not used. You can find more information on this in the section "Your rights as a data subject".
