Controller
The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws as well as other data protection provisions is:
SAMVEST GmbH
Hörnesgasse 1/16, 1030 Vienna, Austria
E-mail: office@samvest.at
Phone: +43 664 52 57 020
Commercial Register (Firmenbuch) No. 673403z, Commercial Court of Vienna (Handelsgericht Wien)
Principles of Data Processing
The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the statutory provisions (GDPR, Austrian Data Protection Act – DSG). In this privacy policy, we inform you about the most important aspects of data processing on our website.
We collect, process and use personal data only to the extent necessary for the provision of our services or where you have given your express consent. Your data is treated confidentially and is not passed on to third parties without your consent, unless this is necessary for the performance of a contract or required by law.
Data Collected & Processing Purposes
When you visit our website, the web server automatically records the following technical data:
IP address of the requesting device, date and time of access, name and URL of the file retrieved, volume of data transferred, notification of successful retrieval, browser type and version, operating system, and the referrer URL (the page visited previously).
This data is evaluated exclusively for the purpose of ensuring the smooth operation of the website and improving our services, and does not allow us to identify individual persons.
When you contact us by e-mail, we store your e-mail address, your name (if provided) and the content of your message in order to process and respond to your enquiry.
Legal Bases for Processing
Your personal data is processed on the following legal bases pursuant to the GDPR:
Art. 6(1)(a) GDPR – Consent: where you have given us your consent to process your personal data for specific purposes.
Art. 6(1)(b) GDPR – Performance of a contract: where processing is necessary for the performance of a contract to which you are a party, or for the implementation of pre-contractual measures.
Art. 6(1)(c) GDPR – Legal obligation: where processing is necessary for compliance with a legal obligation to which we are subject.
Art. 6(1)(f) GDPR – Legitimate interests: where processing is necessary to safeguard our legitimate interests or those of third parties, provided that your interests or fundamental rights do not prevail.
Storage Period
Personal data is stored only for as long as is necessary for the respective processing purpose or as required by statutory retention periods. Server log files are generally deleted after no more than 30 days.
Data submitted when contacting us is deleted once your enquiry has been fully processed, unless statutory retention obligations apply. Retention periods under tax and commercial law may require longer storage (generally 7 years under Austrian law).
Disclosure to Third Parties
Your personal data is not transferred to third parties for purposes other than those listed below. We only pass on your personal data to third parties if:
You have given your express consent, the transfer is necessary for the performance of a contract with you, the transfer is necessary for compliance with a legal obligation, or the transfer is necessary to safeguard legitimate business interests or to assert, exercise or defend legal claims, and there is no reason to assume that you have an overriding interest worthy of protection in your data not being disclosed.
No data is transferred to third countries outside the EU or the EEA.
Your Rights
As a data subject, you have the following rights under the GDPR:
To exercise your rights, please contact: office@samvest.at
Cookies
Our website uses only technically necessary cookies that are required for the operation of the website. These cookies do not store any personal data and serve solely to ensure the functionality of the website.
No analytics, marketing or tracking cookies are used. Consent for the use of cookies is therefore not required. You can disable the storage of cookies in your browser settings; however, this may limit the functionality of the website.
Hosting & Server Logs
This website is operated on servers of an Austrian or European hosting provider. The servers are located exclusively within the European Union, so all data is subject to European data protection law.
When you access our website, the web server automatically creates and stores server log files. This data does not allow any conclusions to be drawn about your person and is not combined with other data sources. The legal basis for this data processing is Art. 6(1)(f) GDPR (legitimate interests in the secure operation of the website).
Contacting Us
If you contact us by e-mail, the data you provide will be stored by us for the purpose of processing your enquiry and in case of follow-up questions. We do not pass on this data without your consent. Processing is based on Art. 6(1)(b) GDPR (performance of a contract / pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interests).
Right to Lodge a Complaint with the Supervisory Authority
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a data protection authority if you believe that the processing of your personal data infringes the GDPR. The competent supervisory authority in Austria is:
Austrian Data Protection Authority (Datenschutzbehörde, DSB)
Barichgasse 40–42, 1030 Vienna
Phone: +43 1 52 152-0
E-mail: dsb@dsb.gv.at
Website: www.dsb.gv.at
Changes to this Privacy Policy
We reserve the right to amend this privacy policy so that it always complies with current legal requirements, or to reflect changes to our services in the privacy policy, e.g. when introducing new services.
The new privacy policy will then apply to your next visit. Date of this privacy policy: April 2026.