The data controller responsible for the processing of your personal data is
Dr Stephan Beyrer
3500 Krems an der Donau
General purposes of processing
We use personal data for the operation of the website.
Types of personal data processed by us
Our service provider in the field of servers and hosting makes available the following, among others: server infrastructure and platform services, storage space and database services, security services as well as technical maintenance services used by us to operate the website.
Here we and/or our service provider process master data, contact data, content data, contract data. That is done on the basis of our legitimate interest in making our website available in an efficient and secure manner pursuant to Art. 6 Section 1 Subsection 1 f) GDPR in conjunction with Art. 28 GDPR.
We concluded a suitable contract for data processing with our service provider.
We process personal data due to the nature of a web server. Every request is processed by our web server in order to present the respective pages and files to you.
An example: You call up https://drbeyrer.com/privacy-policy/. Your browser sends a request to our web server. Then our server knows that you want to call up the page at the URL /privacy-policy/ and sends you the respective data.
Such queries comprise certain information about you, such as:
- Name and URL of the file retrieved
- Date and time
- Your browser type and browser version (UserAgent)
- Your operating system
- The referrer URL (i.e. the site visited before)
- Your IP address
These data are there due to the nature of various technical implementations. We will use these data in no other form, except for making the contents available! We will not store these data! We will collect no log files either! Specifically, our web server is configured in such a way that no log files are created on the basis of invocations.
We use no cookies. Cookies are data which can be stored locally in the user’s storage. They can be used to identify users for a longer period of time. Since we are aware of the risk involved in these technical features, our website requires no cookies.
When you contact us (e.g. by contact form or e-mail), we will process your data to process the request and in case there are follow-up questions.
If data processing is carried out to perform contractual measures at your request or if you are already a client of ours, for contract execution, the legal basis for this data processing is Art. 6 Section 1 Subsection 1 b) GDPR.
We will only process further personal data if you give your consent to that (Art. 6 Section 1 Subsection 1 a) GDPR) or if we have a legitimate interest in the processing of your data (Art. 6 Section 1 Subsection 1 f) GDPR). Answering your e-mail is a legitimate interest, for example.
We make every possible effort to protect your data in the scope of the applicable data protection laws and technical capabilities.
Your personal data will be transmitted encrypted by us. We use exclusively HTTPS as transmission protocol. Furthermore, we use HSTS (max-age=31536000; includeSubDomains; preload) to guarantee the use of secure connections.
We transmit and process no referrers of your requests. The referrer indicates the website visited by the user directly before he/she clicked on a link there and was referred to the current website. If you click on a link to another website on our website, we would (without referrer policy) share the information that you come from drbeyrer.com with the other website. This information reveals a lot about your surfing behaviour and enables automatic profiling.
Therefore the referrer comprises information similar to the one in your browser history. In comparison with that, a web server receives your information at most “one step back”, however, and only if a link to the current page was clicked on the previous website.
Our web server sets the referrer policy header to “no-referrer”. That prevents the passing on of data to third parties.
However, we would like to point out that data transmission on the Internet in general (e.g. during communication by e-mail) can involve security gaps. Complete protection of the data from third-party access is not possible.
Duration of storage
Unless specifically indicated, we will store personal data only as long as that is required to accomplish the purposes pursued.
In several cases, the legislator provides for the storage of personal data, such as in fiscal law or commercial law. In these cases, the data will only be continued to be stored for these statutory purposes and not processed otherwise, and deleted at the end of the statutory retention period.
You are principally entitled to the rights to information, rectification, erasure, restriction, data portability, withdraw consent and to object. If you are of the opinion that the processing of your data infringed data protection law or your data privacy rights were violated in any other way, you can file a complaint with the supervisory authority. In Austria, that is the Data Protection Authority.
You can reach us with the following contact data
Should you still have questions or concerns regarding data privacy, please send us your questions.