{"id":3241,"date":"2023-05-09T16:37:05","date_gmt":"2023-05-09T14:37:05","guid":{"rendered":"https:\/\/edi-service.partners\/privacy-policy\/"},"modified":"2026-01-21T15:00:04","modified_gmt":"2026-01-21T13:00:04","slug":"privacy-policy","status":"publish","type":"page","link":"https:\/\/edi-service.partners\/en\/privacy-policy\/","title":{"rendered":"Privacy policy"},"content":{"rendered":"\n

1. Data Protection (GDPR)<\/a><\/strong><\/p>\n\n

    \n
  1. General information<\/strong><\/strong><\/li>\n\n\n\n
  2. Definitions of terms<\/strong><\/li>\n\n\n\n
  3. Person responsible<\/strong><\/li>\n\n\n\n
  4. Data collection<\/strong><\/li>\n\n\n\n
  5. Cookies<\/strong>\n
      \n
    1. About Cookies<\/strong><\/li>\n\n\n\n
    2. Required<\/strong><\/li>\n\n\n\n
    3. Statistics<\/strong><\/li>\n\n\n\n
    4. Marketing<\/strong><\/li>\n<\/ol>\n<\/li>\n\n\n\n
    5. Sending of publications<\/strong><\/li>\n\n\n\n
    6. Photo and video recordings at events<\/strong><\/li>\n\n\n\n
    7. Contact option via the website<\/strong><\/li>\n\n\n\n
    8. Routine deletion and blocking of personal data<\/strong><\/li>\n\n\n\n
    9. Rights of data subjects<\/strong><\/li>\n\n\n\n
    10. Data protection in applications and the application process<\/strong><\/li>\n\n\n\n
    11. Further processing within the scope of the website<\/strong>\n
        \n
      1. Google Analytics<\/strong><\/li>\n\n\n\n
      2. Google Ads & Doubleclick.net<\/strong><\/li>\n\n\n\n
      3. LinkedIn<\/strong><\/li>\n\n\n\n
      4. Facebook & Instagram<\/strong><\/li>\n\n\n\n
      5. Calendly<\/strong><\/li>\n<\/ol>\n<\/li>\n\n\n\n
      6. Data forwarding<\/strong><\/li>\n\n\n\n
      7. Legal basis for processing<\/strong><\/li>\n<\/ol>\n\n

        2. Technical and Organizational Measures (TOMs)<\/a><\/strong><\/p>\n\n

          \n
        1. Confidentiality<\/strong><\/strong><\/li>\n\n\n\n
        2. Data integrity<\/strong><\/li>\n\n\n\n
        3. Availability and resilience<\/strong><\/li>\n\n\n\n
        4. Procedures for regular review, assessment, and evaluation<\/strong><\/li>\n<\/ol>\n\n

          3. Information Security & ISO\/IEC 27001:2022<\/a><\/strong><\/p>\n\n

          <\/div>\n\n
          \n\n
          <\/div>\n\n

          1. Data Protection (GDPR)<\/strong><\/h2>\n\n

          A. General information<\/h3>\n\n

          Thank you for your interest in our company. Data protection is of a very high priority for the management of Avenum. The use of Avenum’s website is essentially possible without providing any personal data. If a data subject wishes to make an appointment or make use of special services of our company via our website, it may be necessary to process personal data. Should this be necessary, we will obtain separate consent from the data subject. <\/p>\n\n

          The processing of personal data is always carried out in compliance with the General Data Protection Regulation (GDPR) and in accordance with national data protection regulations. With this privacy policy, our company aims to inform visitors about the content and purpose of the personal data we collect and process. Furthermore, this privacy policy provides information to data subjects about the rights they are entitled to. <\/p>\n\n

          Avenum, as the operator of the website, has implemented extensive technical and organizational measures to ensure reliable protection of the data processed through this website. However, data transfers between your device and our server may still have vulnerabilities, especially if you are communicating with our server using a device that is under external access. If you have concerns about security, you can also obtain information through other means, such as by phone or at one of our branches. <\/p>\n\n

          B. Definitions of terms<\/h3>\n\n

          Avenum’s privacy policy is based on the provisions and definitions of the General Data Protection Regulation (GDPR). Our privacy policy is designed to be easily readable and understandable for both visitors and customers as well as business partners. <\/p>\n\n

          To ensure this, we would like to explain the terms used in advance:<\/p>\n\n

          1) Personal dataPersonal data refers to any information that relates to an identified or identifiable natural person.<\/p>\n\n

          2) Data subjectA data subject is any identifiable natural person whose personal data is processed by a controller.<\/p>\n\n

          3) ControllerThe controller is the company that collects the data of data subjects and decides on the purposes and means of processing.<\/p>\n\n

          4) ProcessorThe processor is a natural person or a company that is involved in processing by the controller and is subject to the controller’s right to issue instructions.<\/p>\n\n

          5) RecipientThe recipient is a natural or legal person or public body to whom personal data is disclosed.<\/p>\n\n

          6) Third partyA third party is a natural or legal person or public authority which processes personal data on behalf of the controller or processor without being subject to instructions from the controller or processor.<\/p>\n\n

          7) ProcessingProcessing is any operation carried out in connection with personal data. This ranges from the collection and storage to the restriction or deletion of data. <\/p>\n\n

          8) Restriction of processingRestriction of processing means a reduction in the use of personal data.<\/p>\n\n

          9) ConsentConsent is any declaration made by a person stating that they agree to the processing of their personal data.<\/p>\n\n

          10) RevocationBy revoking consent, a person withdraws the right of the controller to process data on the basis of consent.<\/p>\n\n

          11) PseudonymizationPseudonymization separates the data from the identifiable person. This connection can only be re-established with the help of further, specially secured information. The process of pseudonymization corresponds to so-called data minimization. <\/p>\n\n

          12) ProfilingProfiling is any type of automated evaluation of personal data.<\/p>\n\n

          C. Person responsible<\/h3>\n\n

          Verantwortlicher im Sinne der DSGVO ist:AVENUM Technologie GmbH (\u201eAvenum\u201c)<\/strong>Leonard-Bernstein-Stra\u00dfe 101220 Wien\u00d6STERREICHTelefon +43 1 92101-0office@avenum.com<\/a><\/p>\n\n

          D. Data collection<\/h3>\n\n

          Each time the controller’s website is accessed, a range of data and information is stored in server log files. In this way, among other things <\/p>\n\n

          1) browser types and versions,2) your computer’s operating system,3) the website from which you were redirected to us,4) the pages accessed on our web server,5) the date and time of your visit,6) your IP address,7) your internet service provider<\/p>\n\n

          recorded.<\/p>\n\n

          When using this collected information, Avenum does not attempt to draw any conclusions about the data subject. However, this data is required to deliver the content of our website correctly and to display it optimally for you, and to provide authorities with the necessary information in the event of a hacker attack. This data is therefore processed by Avenum both statistically and as a technical measure to ensure the data protection and information security of this processing and your data. <\/p>\n\n

          E. Cookies<\/h3>\n\n

          Avenum’s Internet pages use cookies – text files that are stored in the file system of a computer via an Internet browser.<\/p>\n\n

          Cookies contain a cookie ID, which is a unique identifier. They enable Avenum to distinguish the data subject’s browser from other Internet browsers and to display content individually in order to respond to the data subject’s wishes and results.One example is the consent management cookies used to store your preferences.You can use our cookie settings to conveniently set which cookies you want to allow at any time. <\/p>\n\n

          Cookies already on your computer can be deleted at any time via the Internet browser or directly in the file system. Please note that deactivating cookies may limit the functionality of the website. <\/p>\n\n

          1. About Cookies<\/h4>\n\n

          Cookies are small text files that are stored on your computer, tablet computer or smartphone with the help of your browser when you visit a website. These files do not cause any damage and are only used to recognize the website visitor. The next time you visit the website with the same end device, the information stored in cookies can subsequently be sent back either to the website (“first party cookie”) or to another website to which the cookie belongs (“third party cookie”). You can set your browser so that the storage of cookies is generally prevented or you are asked each time whether you agree to the setting of cookies. Once cookies have been set, you can delete them at any time. You can find out how to do this in the help function of your browser. <\/p>\n\n

          A detailed list of the cookies used on this website can be found at https:\/\/edi-service.partners\/cookie-richtlinie\/<\/a><\/p>\n\n

          2. Technically Required<\/h4>\n\n

          These cookies are absolutely necessary for the website to function and cannot be deactivated in your systems. As a rule, these cookies are only set in response to actions you take, such as setting your privacy preferences, logging in or filling out forms. Our consent management also prevents cookies from being set by third parties if no consent has been given. You can set your browser so that these cookies are blocked or you are notified about these cookies. <\/p>\n\n

          3. Statistics<\/h4>\n\n

          These cookies allow us to count visits and traffic sources so that we can measure and improve the performance of our website. They collect information about how the website is used, such as which pages are visited most frequently and how visitors move around the website. They are intended to help us improve the user-friendliness of the website and thus the user experience. If you are logged into your Google account during your visit, Google can associate your visit to our website with your account. <\/p>\n\n

          4. Marketing<\/h4>\n\n

          Marketing cookies (also known as targeting or advertising cookies) are used to display personalized advertisements on third-party websites that are more relevant to the user and their interests. They are also used to limit the frequency with which an advertisement appears based on these interests and to measure and control the effectiveness of advertising campaigns. YouTube technologies are used when users visit websites that play embedded YouTube videos. Youtube.com is a platform operated by Google for hosting and sharing videos.If you are logged into your Google or Facebook account at the same time, both platforms can link your visit to our websites to your account. <\/p>\n\n

          F. Sending of publications<\/h3>\n\n

          Our mailings focus on offers, national and international EDI projects and the sharing of knowledge and experience from all sectors.The mailings provide readers with a holistic view of the complex challenges and innovative solutions along the value chain of their industry.To send the current publication, we need to process the name, address and, in the case of electronic delivery, the e-mail address of the recipient.<\/p>\n\n

          The legal basis lies either in your consent or in our legitimate interest in informing recipients about current topics in the construction industry. If you do not wish to receive our publications in future, please inform us briefly at office@avenum.com or by post to the address given under (C.). In this case, we will delete your contact data from this processing and discontinue any further mailing. <\/p>\n\n

          G. Photo and video recordings at events<\/h3>\n\n

          As part of our events, photos and videos are taken which are subsequently used for publication on websites, in social media channels and in our publications and other print media. Our aim is to promote our products and events, as well as the company itself, and to raise awareness in the construction industry. <\/p>\n\n

          The legal basis for this is our legitimate interest within the meaning of Article 6(1)(f) GDPR in public relations work and presenting the activities of the controller.If you do not consent to photographs or videos being taken at our events, please contact a representative of our company during the event.We have carefully weighed the interests of data subjects and our company in this processing and are convinced that no rights of data subjects are infringed. Nevertheless, you have the right to object to the processing of the photographs and video recordings made. To do so, simply send an email with a brief description of your objection to office@avenum.com. <\/p>\n\n

          H. Contact option via the website<\/h3>\n\n

          Due to legal regulations, our website contains information for easy contact with Avenum. If you contact us by e-mail, the data you provide will be stored automatically and used exclusively for the purpose of responding to your contact. <\/p>\n\n

          If you use a contact form on our website, we collect the following data from you: <\/p>\n\n

          – Name– E-Mail– Phone number– Company name– Your personal message. <\/p>\n\n

          By entering your data, you also consent to its use for the purpose of responding to your request in accordance with Art. 6 para. 1 lit. a GDPR.Unless other purposes arise from the response, about which we will inform you separately, the data entered will be deleted after the response or processing of your request.<\/p>\n\n

          I. Routine deletion and blocking of personal data<\/h3>\n\n

          Avenum processes and stores personal data of the data subject only for the period necessary to achieve the purpose of storage or as provided for by law.If the purpose or legal basis for processing no longer applies, your personal data will be blocked or deleted in accordance with the law on the basis of our processes.<\/p>\n\n

          J. Rights of the data subjects<\/h3>\n\n

          Extensive rights of data subjects apply to the processing of personal data in accordance with the GDPR. The following is a rough list of these rights for your information: <\/p>\n\n

          1) Right to informationEvery data subject has the right to receive information from the controller at any time about the personal data stored about them and a copy of this data.<\/p>\n\n

          2) Right to rectificationEach data subject shall have the right to obtain from the controller without undue delay the rectification or completion of inaccurate personal data concerning him or her.<\/p>\n\n

          3) Right to erasureEach data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her, where– the purposes of the processing have ceased to exist– the legal basis for the processing no longer exists (end of contract, withdrawal of consent).You may request the erasure of your personal data stored by us at any time by contacting an employee, in particular electronically at office@avenum.com.<\/p>\n\n

          4) Right to restrictionAny person affected by the processing of personal data has the right to request the controller to restrict the processing if:– the purposes for the processing no longer apply– the legal basis for the processing no longer exists (end of contract, withdrawal of consent).You can contact an employee at any time – in particular electronically at office@avenum.com – to request the restriction of your data stored by us.<\/p>\n\n

          5) Right to data portabilityEach data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where the processing is based on consent or on a contract and carried out by electronic means.You can contact an employee – in particular electronically at office@avenum.com – at any time for the transfer of your data stored by us.<\/p>\n\n

          6) Right to objectAny person affected by the processing of personal data has the right to object to the processing of personal data relating to them on the grounds of legitimate interest. Avenum shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defense of legal claims.To exercise the right to object, you can contact an employee at any time, in particular electronically at office@avenum.com. <\/p>\n\n

          7) Automated decisions in individual cases including profilingAs a responsible company, we do not use automated decision-making or profiling.<\/p>\n\n

          8) Right to withdraw consentEvery data subject has the right to withdraw consent to the processing of personal data at any time.You can contact an employee – in particular electronically at office@avenum.com – at any time to exercise your right to withdraw consent.<\/p>\n\n

          9) Right to lodge a complaint with a supervisory authorityYou have the right to lodge a complaint with a competent supervisory authority pursuant to Art. 77 GDPR if you consider that the processing of personal data relating to you infringes the provisions of the GDPR.You can contact the Austrian Data Protection Authority at Barichgasse 40-42, 1030 Vienna.<\/p>\n\n

          K. Data protection in applications and the application process<\/h3>\n\n

          Avenum collects and processes the personal data of applicants for the purpose of processing the application. Processing may also be carried out electronically. This is particularly the case if an applicant submits the relevant application documents to us electronically, for example by e-mail. If Avenum concludes an employment contract with an applicant, the transmitted data will be stored for the implementation of the employment relationship. If Avenum does not conclude an employment contract with the applicant, the applicant’s documents will be automatically deleted no later than thirteen months after receipt of the application, unless deletion conflicts with any other legitimate interests of Avenum or the applicant’s consent to further processing.If an applicant asserts his or her right to deletion, the data may be deleted as early as six months after rejection of the application. <\/p>\n\n

          What data is collected?<\/p>\n\n

          The following data is collected and processed for the automated processing of your application:1) First name, surname, e-mail and, if applicable, address\/location, date of birth, title, telephone number, citizenship2) Additional questions depending on the respective job advertisement (e.g. driving license) 3) Curriculum vitae 4) Professional experience and training 5) Competencies (e.g. Photoshop, MS Office) 6) Application photo (optional) e.g. driving license)3) CV4) Professional experience and training5) Skills (e.g. Photoshop, MS Office)6) Application photo (optional)7) Qualifications, awards and language skills8) Letter of motivation9) Files and documents that you may submit<\/p>\n\n

          L. Further processing within the scope of the website<\/h3>\n\n

          1. Google Analytics<\/h4>\n\n

          Our website uses “Google Analytics”, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses cookies, which are stored on your computer and enable your use of the website to be analyzed. The information generated by the cookie about your use of this website, such as browser type\/version, operating system used, referrer URL (the previously visited page), IP address, time of the server request are usually transmitted to a Google server in the USA and stored there. The information is used to carry out analyses of Internet and website usage, such as anonymized evaluations and graphs of page views and visits. The data is processed exclusively for market research, to optimize the website and to provide other services associated with Internet use. This information may also be transferred to third parties if this is required by law or if third parties process the data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymized after transmission, so that an assignment is not possible (IP masking). Further information on data protection in connection with Google Analytics can be found in the Google Analytics Help: https:\/\/support.google.com\/analytics\/answer\/6004245?hl=de.Google uses service providers in the United States whose level of data protection has been recognized as adequate under the EU\u2013US Data Privacy Framework and the European Commission\u2019s adequacy decision of July 10, 2023. Personal data may be transferred to these companies in accordance with Article 45 of the GDPR.Data processing is based on your consent (Art. 6 para. 1 lit. a GDPR).<\/p>\n\n

          2. Google Ads & Doubleclick.net<\/h4>\n\n

          We use the online advertising program Google Ads from Google and, as part of this, the conversion tracking offered by Google.Using Google’s remarketing technology, users who have already visited our website and shown an interest are addressed again through targeted advertising on the pages of the Google Partner Network. Advertising is displayed through the use of cookies. With the help of text files, user behavior when visiting the website can be analyzed and then used for advertising according to your interests. If you carry out search queries, visit other websites or use other mobile apps, the use of Google Remarketing enables us to offer you targeted advertising based on your interests and needs. As a user, you benefit from personalized advertising on other websites. This is the only way we can constantly optimize our offer to you. Further information on Google Remarketing and Google’s privacy policy can be found at: https:\/\/www.google.com\/privacy\/ads\/. <\/p>\n\n

          A cookie for conversion tracking is stored on your computer when you click on an ad placed by us on the Google search or advertising network. These cookies lose their validity after 30 days and are not used for personal identification. If you visit certain pages of our website while the cookie is valid, both we and Google can recognize that you have clicked on an ad and have been redirected to this page. Each Google Ads customer receives a different cookie. The information collected using the conversion cookie is used to generate conversion statistics for us as an Ads customer. We learn the total number of users who clicked on our ad and were redirected to a page with a conversion tracking tag. However, we do not receive any information with which you can be personally identified as a user. If you do not wish to participate in the tracking process, you can also reject the setting of a cookie required for this – for example, by using a browser setting that generally deactivates the automatic setting of cookies. You can also deactivate cookies for conversion tracking by setting your browser to block cookies from the domain “www.googleadservices.com”. You can find Google’s privacy policy on conversion tracking here https:\/\/policies.google.com\/privacy?gl=de<\/a> DoubleClick<\/strong> by Google uses cookies to present you with relevant advertisements. A pseudonymous identification number (ID) is assigned to your browser in order to check which ads have been displayed in your browser and which ads have been viewed. <\/p>\n\n

          The cookies do not contain any personal information. The use of DoubleClick cookies only enables Google and its partner websites to place ads based on previous visits to our or other websites on the Internet. The information generated by the cookies is transmitted by Google to a server in the USA for analysis and stored there. Google will only transfer the data to third parties on the basis of statutory provisions or as part of order data processing. Google will not combine your data with other data collected by Google. Google uses suppliers in the USA whose level of data protection has been found to be adequate under the EU-US Data Privacy Framework and the European Commission’s adequacy decision of July 10, 2023. Personal data may be transferred to these companies in accordance with Art. 45 GDPR. Data processing is based on your consent (Art 6 para 1 lit a GDPR). <\/p>\n\n

          3. LinkedIn<\/h4>\n\n

          You will find plugins from the social network LinkedIn or LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (hereinafter referred to as “LinkedIn”) on our website. You can recognize the LinkedIn plugins by the corresponding logo or the “Recommend” button. Please note that when you use the button, a connection is established between your internet browser and the LinkedIn server. LinkedIn is thus informed that our website has been visited with your IP address. If you click on the LinkedIn “Recommend” button while you are logged into your LinkedIn account, you have the option of linking content from our website to your LinkedIn profile page.This allows LinkedIn to associate your visit to our website with you or your user account. Please note that we have no knowledge of the content of the transmitted data and its use by LinkedIn. <\/p>\n\n

          Further details on the collection of data and your legal options as well as setting options can be found on LinkedIn. These are available at https:\/\/de.linkedin.com\/legal\/privacy-policy<\/strong><\/a> are made available to you. <\/p>\n\n

          LinkedIn Insight Tag:The LinkedIn Insight Tag is a JavaScript code that has been integrated into our websites. It is a tracking tool that records and analyzes LinkedIn members on our website. This gives us insights into our target group, the attractiveness of our offers and the performance of advertising campaigns on LinkedIn. <\/p>\n\n

          The LinkedIn tag sets a cookie in the browser of the website visitor via which the following data is collected:– URL– Referrer URL– Specification of your device– Properties of your web browser– Your IP address<\/p>\n\n

          LinkedIn links this information to your LinkedIn account if you are logged in there, but anonymizes the data collected via the cookie after 7 days and deletes it completely after 90 days.We do not receive any personal data of our visitors as a result and purpose of this data processing, but a report on the demographic distribution of our visitors and the performance of our ads on LinkedIn. <\/p>\n\n

          LinkedIn uses suppliers in the USA whose level of data protection has been found to be adequate under the EU-US Data Privacy Framework and the European Commission’s adequacy decision of July 10, 2023. Personal data may be transferred to these companies in accordance with Art. 45 GDPR. Data processing is based on your consent (Art 6 para 1 lit a GDPR). <\/p>\n\n

          4. Facebook & Instagram<\/h4>\n\n

          Avenum operates a fan page integrated on the platform of the provider Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”). Facebook operates social networks such as Instagram and Facebook, which provide Avenum with so-called “Page Insights” in joint processing in accordance with GDPR Art 26. “Page Insights” are page statistics on “likes”, post reach and other topics that we primarily use on an anonymized basis. You can find more information on this under the following link: https:\/\/www.facebook.com\/business\/a\/page\/page-insights. Details of the joint processing between Avenum and Facebook can be found at: https:\/\/www.facebook.com\/legal\/terms\/page_controller_addendum. This agreement states that Facebook has primary responsibility for the processing. If you have any concerns about security on our social media pages, you can also contact us at any time at our data protection contact address and we will forward your request to Facebook. We have no influence on the technical and organizational aspects of joint processing and can only influence the content relating to products and events. Facebook also uses sub-suppliers in the USA whose level of data protection has been found to be adequate under the EU-US Data Privacy Framework and the European Commission’s adequacy decision of July 10, 2023. Personal data may be transferred to these companies in accordance with Art. 45 GDPR. Data processing is based on your consent (Art 6 para 1 lit a GDPR). <\/p>\n\n

          5. Calendly<\/h4>\n\n

          We use the appointment scheduling service “Calendly” from Calendly LLC (address: 3423 Piedmont Road NE, Atlanta, GA 30305, USA) on our website. Calendly makes it easy to manage appointments by allowing visitors to book available time slots online. This allows us to organize our service efficiently and offer you a user-friendly appointment booking.When you access Calendly, you leave our website and a new browser window opens for the page of the independently responsible company Calendly. When booking an appointment via Calendly, the following data is generally collected and processed: <\/p>\n\n