Privacy Policy

Introduction

alphavortis AG ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and protect your personal information when you visit our website or use our services.

We are the data controller for the purposes of the General Data Protection Regulation (GDPR) and other applicable data protection laws. Our registered office is located at Rotenturmstraße 57, 8024 Graz, Styria, Austria.

Data Collection

We collect various types of information when you interact with our website and services. The data we collect includes:

• Contact Information: Name, email address, phone number, company name, and postal address when you contact us or request our services
• Website Usage Data: IP address, browser type, device information, pages visited, time spent on pages, and referral sources
• Communication Data: Records of correspondence and communications between you and alphavortis
• Technical Data: Cookies, log files, and other tracking technologies as detailed in our Cookie Policy
• Business Data: Information about your business needs and requirements when you engage our services

How We Use Your Information

We use your personal data for the following purposes, based on legitimate business interests and legal obligations:

• To provide and deliver our revenue forecasting services and solutions
• To respond to your enquiries and provide customer support
• To improve our website functionality and user experience
• To send you relevant business communications and service updates
• To comply with legal and regulatory requirements
• To analyse website traffic and usage patterns for business optimisation
• To protect our business interests and prevent fraud or misuse

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: When you provide explicit consent for marketing communications or cookie usage
• Contract Performance: When processing is necessary to fulfil our service agreements
• Legitimate Interest: For business operations, website improvement, and fraud prevention
• Legal Obligation: To comply with applicable laws and regulations

Data Sharing and Disclosure

We do not sell, rent, or trade your personal data to third parties. We may share your information in the following circumstances:

• Service Providers: Trusted third-party vendors who assist in our operations (hosting, analytics, email services)
• Legal Requirements: When required by law, court order, or government authorities
• Business Protection: To protect our rights, property, or safety, or that of our clients
• Business Transfers: In connection with mergers, acquisitions, or asset sales

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required by law. Our retention periods are:

• Contact Enquiries: 3 years from last contact
• Client Data: 7 years after service completion for legal and tax purposes
• Website Analytics: 26 months (Google Analytics default)
• Marketing Data: Until consent is withdrawn or 3 years of inactivity

Your Rights

Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Request limitation of how we use your data
• Right to Data Portability: Request transfer of your data to another organisation
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent for marketing or other consent-based processing

Data Security

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Access controls and authentication systems
• Regular security assessments and updates
• Staff training on data protection principles
• Incident response and breach notification procedures

International Data Transfers

We primarily process data within the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place, including:

• Adequacy decisions by the European Commission
• Standard Contractual Clauses approved by the European Commission
• Binding Corporate Rules or other approved transfer mechanisms

Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of significant changes by posting the updated policy on our website and updating the "last updated" date. We encourage you to review this Privacy Policy periodically.

Contact Information

If you have questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding data protection matters, please reach out to us:

You also have the right to lodge a complaint with the Austrian Data Protection Authority (Datenschutzbehörde) if you believe we have not handled your personal data in accordance with applicable law.