1. Personal data

We, Dr. Peter Griss, Dr. Edwin Mächler, Dr. Christiane Loidl-Rainey and Dr. Ulrike Hafner collect, process and use your personal data only with your consent or mandate or order for the purposes agreed with you, or if another legal basis exists in accordance with the GDPR; this in compliance with data protection and civil law provisions.

Only such personal data are collected which are necessary for the execution and processing of our legal services or which you voluntarily provided to us.

Personal data are all data that contain individual details about personal or factual circumstances, such as name, address, email address, telephone number, date of birth, age, gender, social security number, video recordings, photos, voice recordings of individuals and biometric data such as fingerprints. Sensitive data, such as health data or data related to criminal proceedings, may also be included.

2. Information and deletion

As a client or, more generally, as the person concerned, you have the right to information about your stored personal data, its origin and recipients, and the purpose of data processing as well as the right to correction, data transmission, objection, restriction of processing, blocking or deletion of incorrect or inadmissibly processed data at any time; this in compliance with our duty of confidentiality.

As far as changes of your personal data arise, we ask for appropriate notice.

You have the right to revoke your consent to the use of your personal data at any time. Your submission for information, deletion, correction, objection and/or data transmission, in the latter case if this does not cause disproportionate effort, can be addressed to the lawyer appointed in your case at the address stated in point 9 of this declaration.

If you believe that the processing of your personal data by us violates applicable data protection law or that your data protection claims have been violated in any other way, you may complain to the competent supervisory authority. In Austria, the Austrian Data Protection Authority is responsible for this.

3. Data security

Your personal data are protected by appropriate organizational and technical precautions. These precautions concern in particular the protection against unauthorized, illegal or also accidental access, processing, loss, use and manipulation.

Notwithstanding the efforts to maintain a consistently high level of due diligence, it cannot be excluded that information provided to us via the Internet may be viewed and used by others.

Please note that we therefore accept no liability whatsoever for the disclosure of information due to errors in data transmission and/or unauthorized access by third parties not caused by us (e.g. hacking of email accounts or telephone, interception of faxes).

4. Use of data

We will not process the data provided to us for purposes other than those covered by the mandate agreement or by your consent or otherwise by a provision in accordance with the GDPR. This does not apply to the use for statistical purposes if the data provided have been anonymized.

5. Transfer of data to third parties

In order to fulfil your order, it is also regularly necessary to pass on your data to third parties (e.g. law firm association/directing partner, opposing party, substitutes, insurance companies, service providers we use and to whom we make data available, etc.), courts or authorities. Your data will only be forwarded on the basis of the GDPR, in particular to fulfil your order or with your prior consent.

In the course of our legal representation and support, factual and case-related information will regularly also be obtained from third parties.

Some recipients may be outside your country or process your personal data there. The level of data protection in other countries may not be the same as in Austria. However, your personal data will only be transferred to countries for which the EU Commission has decided that they have an adequate level of data protection, or we take measures to ensure that all recipients have an adequate level of data protection, for which we conclude standard contractual clauses (2010/87/EC and/or 2004/915/EC).

6. Notification of data leaks

We make every effort to ensure that data breaches are detected at an early stage and, if necessary, reported immediately to you or the responsible supervisory authority, taking into account the respective data categories involved.

7. Storage of data

We will not keep data longer than is necessary to fulfil our contractual or legal obligations and to avert any possible liability claims.

8. Server log files

In order to optimize the website www.griss.at in terms of system performance, usability and providing useful information about our services, the provider of the website automatically collects and stores information in so-called server log files, which your browser automatically transmits. This includes your Internet protocol address (IP address), browser and language setting, operating system, referrer URL, your Internet service provider and date/time.

These data are not combined with personal data sources. We reserve the right to check these data subsequently if we become aware of concrete indications of an illegal use.

9. Our contact details

The protection of your data is particularly important to us. As responsible person according to the GDPR, the lawyer in charge of your case is available for questions or your revocation under these contact details:

Dr. Peter Griss, Glacisstraße 67, 8010 Graz, p.griss@griss.at

Dr. Edwin Mächler, Glacisstraße 67, 8010 Graz, e.maechler@griss.at

Dr. Christiane Loidl-Rainey, Glacisstraße 67, 8010 Graz, c.loidl-rainey@griss.at

Dr. Ulrike Hafner, Glacisstraße 67, 8010 Graz, u.hafner@griss.at