Data protection
(Status: 03/24/2021)
HG Pharma GmbH, Antonigasse 97/6, 1170 Vienna, is responsible for the operation of this website. You are also welcome to contact us by email at frontdesk@hgpharma.at or by phone on +43 720 906 700.
We take the protection of your personal data very seriously. Your personal data will be treated confidentially and in accordance with the applicable data protection laws, in particular the General Data Protection Regulation (GDPR), the Data Protection Act (DSG) and the Telecommunications Act (TKG 2003), as well as this data protection declaration. In the following we will inform you about which data we process as part of your website use and for what purpose.
1. Evaluation of visitor behavior
The evaluation of the collected data is usually anonymous and we cannot draw any conclusions about your person from your behavior on this website.
Even while you are visiting our website, our web server (the computer on which this website is stored) usually automatically saves data such as:
* the full Internet address (URL) of the website accessed
* Browser and browser version (e.g. Chrome 87)
* the operating system used (e.g. Windows 10)
* the address (URL) of the previously visited page
* the hostname and IP address of the device being accessed from
* Date and Time
in files, the so-called web server log files.
These files are usually stored for two weeks and then automatically deleted.
2. TLS encryption with https
We use HTTPS (the Hypertext Transfer Protocol Secure stands for "secure hypertext transfer protocol") to transmit data securely on the Internet. This means that the complete transmission of all data from your browser to our web server is secured - nobody can "eavesdrop".
We have thus introduced an additional security layer and comply with data protection through technology design in accordance with Article 25 Paragraph 1 GDPR. By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data.
3. Orders
You have the option of registering voluntarily on our website and thus creating a customer account. The personal data you provide when registering on our website (first name, last name, address, e-mail address and voluntary information) will be used by us to process orders within the scope of our range of goods and/or services in accordance with Article 6 Paragraph 1 lit. b ) DSGVO processed.
Orders on our website are also possible without prior registration (as a "guest"). When you order goods without registering them, we collect your name, address and email address so that we can send you the goods you ordered and an electronic confirmation of the purchase. The data mentioned is processed to fulfill the contract in accordance with Article 6 Paragraph 1 lit. b) GDPR and is required for order and contract processing, including any reverse processing (in the case of returns).
Your personal data will also be passed on to our technical service providers (processors), i.e. Rackspeed, as part of the ordering process. We contractually oblige our processors to process your data exclusively within the framework of our instructions for the fulfillment of the obligations and within the framework of the applicable laws and regulations and not to transmit your data to third parties. The payment process is handled by payment providers (Stripe Payments, PayPal), who are themselves “responsible” for the processing of your personal data within the meaning of the GDPR.
So that the goods you have ordered can be delivered, we will pass on your name and address to DHL, who are also “responsible” for the processing of your personal data within the meaning of the GDPR.
Due to the provisions of the German Commercial Code (UGB) and the Federal Tax Code (BAO), we are obliged to keep business papers for seven years. The data will then be deleted unless there is a legal authorization or obligation to continue processing this data.
4. Promote your own similar products or services
We process the personal data entered by you in connection with the registration or the purchase of goods for sending e-mail advertising for our own similar products or services on the basis of Section 107 Paragraph 3 TKG 2003 and within the scope of our legitimate interest in sales promotion Article 6 paragraph 1 lit. f) GDPR, provided you do not object to this processing of your personal data when it is collected and are not entered in the ECG list of RTR GmbH.
You are free to object in advance to the processing of your data for advertising purposes, free of charge and without any problems, by
a) object to the transmission of e-mail advertising when registering or purchasing goods (opt-out), or
b) send us an email to the following address: office@hgpharma.de
In addition, you have the right to object to the processing of your personal data for advertising purposes at any time in accordance with Section 107 Paragraph 3 TKG 2003 and Article 21 Paragraph 2 GDPR by clicking on the unsubscribe link at the end of each message or by emailing us at office@hgpharma .de. If you object to the processing of your personal data for direct marketing purposes, we will no longer process your data for these purposes.
5. Contact Form and Customer Service
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be processed by us to carry out pre-contractual measures or as part of the fulfillment of the contract for the purpose of processing the inquiry in accordance with Article 6 Paragraph 1 lit. b) GDPR and stored by us in case of follow-up questions. If you contact our customer service by telephone or post, the data you disclose will be processed automatically to the required extent on the basis of Article 6 Paragraph 1 lit. b) GDPR.
We will not pass on this personal data without your consent, unless this is necessary to fulfill your request. The data will be deleted as soon as they are no longer necessary for the purposes for which they were collected, unless there is a legal authorization or obligation to continue processing these data.
6. Newsletters
You have the opportunity to voluntarily register for our newsletter on the website. For this we need your e-mail address and your consent to receive the newsletter. With your consent to the newsletter dispatch, you also agree to the use of your personal data (e-mail address) for this purpose.
We use the personal data you provide exclusively for sending the newsletter. As part of sending the newsletter, your data will be passed on to our technical service provider (processor), i.e. Rackspeed. We contractually oblige our processors to process your data exclusively within the framework of our instructions for the fulfillment of the obligations and within the framework of the applicable laws and regulations and not to transmit your data to third parties.
Consent to receive the newsletter can be revoked at any time by clicking on the unsubscribe link at the end of each mailing or by emailing us the revocation to the following address: office@hgpharma.de. A revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent up to the time of revocation. Your data will be deleted immediately after revocation, provided there are no other legal bases for processing.
7. Cookies and Web Analytics
7.1 Cookies and Cookie Settings
Cookies are small pieces of text information that are stored by our website on your end device in order to be able to recognize this end device.
A distinction is made between two different types of cookies, so-called "session cookies", which are automatically deleted as soon as you close your browser, and "persistent cookies", which are stored on your data medium for a longer period of time (e.g to recognize your end device on your next visit).
You can remove or disable cookies in your browser settings. After you have deleted cookies, we will ask you again if you want to allow the cookies on our website.
You can also set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when the browser is closed. If cookies are completely deactivated, the functionality of our website may be restricted.
7.2 Necessary or Essential Cookies
We use "session cookies", which are required to assign the entries you make on our website to you over the entire duration of your use of our website (e.g. when placing orders). The setting of these cookies is necessary for the registration and ordering process and takes place on the basis of Section 96 Paragraph 3 TKG 2003, since we need to know during the ordering process which user has placed which item in the shopping cart. The required cookies are automatically deleted from your hard drive after you have finished using our website (end of the session).
7.3 Convenience Cookies
If you select "comfort cookies" in the cookie settings (Article 6 paragraph 1 lit. a) GDPR, § 96 paragraph 3 TKG 2003), we use permanent cookies, which can remain on your hard drive for a longer period of time and serve to To automatically recognize the end device on a later visit and to recognize which inputs and settings you prefer. These cookies are stored on your hard drive for 3 months after the last login and are automatically deleted after the specified time. You can also remove or disable cookies at any time in your browser settings.
7.4 Statistics and Advertising Cookies
If you select "Statistics and advertising cookies" in the cookie settings, cookies from the following third-party providers will be set and information from the cookies will be transmitted to them:
Google Analytics
This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics uses cookies, which are stored on your computer and enable an analysis of your use of the website.
If you consent to the use of Google Analytics (Article 6 Paragraph 1 lit. a) GDPR, Section 96 Paragraph 3 TKG 2003), Google will use this information on our behalf to evaluate your use of the website in order to generate reports on website activity and to provide other services related to website and internet use to the website operator. The storage period of the cookies set as part of the use of Google Analytics is 26 months. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. Google is certified under the EU-US Privacy Shield and therefore offers appropriate data protection guarantees for the transmission of data to the USA. You can find more information about your rights under the Privacy Shield at https://www.privacyshield.gov/welcome .
We would like to point out that the Google Analytics code on this website has been expanded to include “gat._anonymizeIp();” in order to ensure that Google Analytics collects IP addresses anonymously (so-called IP masking). As a result, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there.
You can also visit our website without using Google Analytics by not giving your consent in the cookie settings.
Consent can be revoked at any time by sending an email to office@hgpharma.de , so that the processing of your data is no longer permitted from the time your revocation is received. The lawfulness of the processing of your data up to the point of revocation remains unaffected by your revocation.
For more information on data protection from Google Analytics, see www.google.com/policies/privacy/partners/ .
Google Tag Manager
Our website uses the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager is a system that controls which tags (scripts) run on our website and when they should run. It can be statistical scripts or marketing tags intended for advertising. Such tags and scripts set cookies that collect data from your users in order to compile statistics and marketing analysis.
No personal data is processed by the Google Tag Manager and no cookies are set. However, if you agree to this in the cookie settings on our website, the statistics and advertising cookies listed in this data protection declaration will be set and managed with the help of the Google Tag Manager.
8. Social media presence
We are represented as HG Pharma GmbH and alphaHSport+ within social networks and platforms in order to be able to communicate with users, interested parties and customers who are active there. When accessing these networks and platforms, the terms and conditions and data processing guidelines of the respective operator apply. You can find more detailed information on the purpose and scope of the data collection and the further processing and use of the data by the providers of these networks as well as your rights in this regard and setting options for the protection of your privacy in the respective data protection regulations.
Unless otherwise stated, we process user data when they communicate with us on social networks and platforms.
Embedded YouTube videos
We embed YouTube videos on our website. The provider is Google Inc., 1600 Amphitheater Parkway Mountain View, CA 94043, USA. To protect your personal data when you visit our website, the YouTube videos are not directly integrated, but a preview image is displayed first. The actual video content is activated only after you click on the thumbnail. If you have not previously agreed in the cookie settings, the video will only be loaded by clicking on the preview image and the provider will set a cookie in your browser, which will inform the provider that your browser has accessed the corresponding page of our website even if you do not have a user profile with the provider or are not currently logged in to the provider. This information (including your IP address) is transmitted directly from your browser to a server operated by the provider (usually in the USA) and stored there. By activating the video, you agree to the data being transmitted to the provider (Article 6 Paragraph 1 lit. a) GDPR). Google is certified under the EU-US Privacy Shield and therefore offers appropriate data protection guarantees for the transmission of data to the USA. For more information about your rights under the Privacy Shield, see https://www.privacyshield.gov/welcome . You can also access our website without using YouTube videos if you do not give your consent in the sense described above. Consent can be given at any time by e-mail to office@hgpharma.de , so that the processing of your data is no longer permitted from the time your revocation is received. The lawfulness of the processing of your data up to the point of revocation remains unaffected by your revocation. For more information on how to handle user data, see Google's privacy policy at: https://policies.google.com/privacy
9. Miscellaneous
9.1 Google Maps
This website uses Google Maps to display map information. When using Google Maps, Google also collects, processes and uses data about the use of the Maps functions by visitors to the website. For more information about data processing by Google, see Google's privacy policy https://www.google.at/intl/de/policies/privacy/ remove. There you can also change your settings in the data protection center so that you can manage and protect your data.
9.2 Google Fonts
We use Google Fonts on our website. These are the “Google fonts” from Google Inc. The company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services in Europe.
You can find more about Google Fonts and other questions at https://developers.google.com/fonts/faq?tid=221141965 .
9.3 Google reCAPTCHA
We use Google reCAPTCHA from Google Inc. on our website. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. With Google reCAPTCHA we can determine if you really are a real human being and not a robot or other spam software.
For more information, see https://policies.google.com/privacy?hl=de&tid=221141965 and https://developers.google.com/recaptcha/
10. Rights of the data subject
You have the right to free information about your stored personal data, its origin and recipient and the purpose of data processing as well as a right to correction, restriction of processing, objection to data processing and deletion of this data as well as the right to data portability at any time. You can do this by post or email at office@hgpharma.de to contact.
If you believe that the processing of your personal data violates data protection law or your data protection claims have otherwise been violated in any way, you have the right to appeal to the supervisory authority.
A list of the German supervisory authorities for data protection and their contact addresses can be found at:
https://www.bfdi.bund.de/DE/Service/Anschriften/anschriften_table.html
List of cookies we collect
The table below lists the cookies we collect and the information stored in them.
| cookie name | Cookie description |
|---|---|
| FORM_KEY | Stores randomly generated key to prevent forged requests. |
| PHPSESSID | Your session ID on the server. |
| GUEST VIEW | Allows guests to view and edit their orders. |
| PERSISTENT_SHOPPING_CART | A link to information about your shopping cart and to view its history, if prompted. |
| STF | Information about products that you have emailed to friends. |
| STORE | The business view or language you selected. |
| USER_ALLOWED_SAVE_COOKIE | Indicates whether a customer is allowed to use cookies. |
| MAGE CACHE SESSID | Facilitates caching of content in the browser to speed up page loading. |
| MAGE CACHE STORAGE | Facilitates caching of content in the browser to speed up page loading. |
| MAGE-CACHE-STORAGE-SECTION-INVALIDATION | Facilitates caching of content in the browser to speed up page loading. |
| MAGE CACHE TIMEOUT | Facilitates caching of content in the browser to speed up page loading. |
| SECTION DATA IDS | Facilitates caching of content in the browser to speed up page loading. |
| PRIVATE_CONTENT_VERSION | Facilitates caching of content in the browser to speed up page loading. |
| X-MAGENTO-VARY | Facilitates caching of content on the server to make pages load faster. |
| MAGE TRANSLATION FILE VERSION | Facilitates the translation of content into other languages. |
| MAGE TRANSLATION STORAGE | Facilitates the translation of content into other languages. |