Privacy policy

1. Controller

The controller responsible for the processing of your personal data on this website is:

BFSM Schadenermittlung GmbH
Bernhard Mader (Managing Director)
Gunnersdorf 23/2/2
3142 Perschling
Austria

Phone: +43 720 518891
Email bfsm@gutkas-datenschutz.eu

Data protection officer:
Ulrike Gutkas, MA

2. General information on data processing

The protection of your personal data is important to us. We process personal data exclusively in accordance with the provisions of the General Data Protection Regulation (GDPR) and the applicable national privacy laws.

Personal data refers to any information relating to an identified or identifiable individual, such as a name, e-mail address or telephone number.

We process personal data only to the extent necessary for the operation of our website, the handling of enquiries or the provision of our services.

3. Processing of data when contacting us

If you contact us by e-mail or via a contact form, the data you provide will be stored so that we can process your enquiry.

The following data in particular may be processed:

  • Name
  • Email address
  • Phone number
  • Your enquiry

Processing is carried out on the basis of:

  • Point (b) of Article 6(1) of the GDPR (contract or pre-contractual measures)
  • Point (f) of Article 6(1) of the GDPR (legitimate interest in processing enquiries)

Your data will be deleted as soon as your enquiry has been definitively processed and there are no longer any legal obligations to retain it.

4. Processing as part of our services

As part of our work as a private investigation agency, we process personal data to the extent required for us to carry out assignments.

Such data include:

  • Contact details
  • Order details
  • Communication data
  • Invoicing and payment details

The data is processed for the following purposes:

  • Performance of assignments
  • Communication with clients
  • Compliance with legal obligations (e.g. accounting)

Legal bases:

  • Point (b) of Article 6(1) of the GDPR (contract performance)
  • Point (c) of Article 6(1) of the GDPR (legal obligation)
  • Point (f) of Article 6(1) of the GDPR (legitimate interest in processing business)

5. Disclosure of data

Personal data will only be disclosed if this is necessary for the provision of our services or if there is a legal obligation to do so.

Recipients may include:

  • Insurance companies in connection with claims
  • Tax consultants or accounting service providers
  • Public authorities
  • Attorneys or debt collection agencies for outstanding debts

6. Server log files

When you visit this website, technical information is automatically collected by the web server, which includes:

  • IP address
  • Date and time of access
  • Page visited
  • Browser type and browser version
  • Operating system

This data is used solely for the secure operation of the website and for technical fault analysis.

Legal basis:
Point (f) of Article 6(1) of the GDPR (legitimate interest in the secure operation of the website)

The log files are deleted after a reasonable period of time.

7. Cookies

Our website may use cookies. These are small text files that are stored on your device.

Cookies are used to provide certain website functions or to improve the user experience.

Where cookies are set that are not strictly necessary for the operation of the website, this is done solely on the basis of your consent in accordance with point (a) Article 6(1) of the GDPR.

You can delete or disable cookies at any time via your browser settings.

8. Retention period

Personal data is only stored for as long as is necessary for the relevant purposes or as required by statutory retention obligations.

Tax regulations mean that certain data may be retained for up to seven years.

9. Rights of data subjects

Under the GDPR, you have the following rights:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object to processing (Art. 21 GDPR)

You can contact us at any time to exercise your rights.

10. Right to complain

If you believe that your personal data is being processed in breach of data protection law, you may lodge a complaint with the relevant supervisory authority.

Responsible supervisory authority in Austria:

Austrian Data Protection Authority
Barichgasse 40–42
1030 Wien

Phone: +43 1 52 152-0
Email dsb@dsb.gv.at
Website: https://dsb.gv.at

11. Changes to this privacy policy

We reserve the right to amend this privacy policy as necessary to ensure that it remains compliant with current legal requirements or reflects changes to our services.