top of page
PRIVACY POLICY

Last updated: 20/10/2025

This Privacy Policy is provided pursuant to Regulation (EU) 2016/679 (“GDPR”) and applicable national data protection laws. Its purpose is to explain how Reparolux collects, uses, and protects the personal data of users and customers.

 

1. Data Controller

The data controller is:
Reparolux
Mühlbachweg 4, 5301 Eugendorf (Salzburg, Austria)
VAT No.: 93 282/2471
Tel: +43 670 1975060
E-mail: info@reparolux.com

 

2. Categories of Data Processed
 

a) Data provided voluntarily

  • First name, surname, e-mail, phone number, postal or delivery address, billing/tax details;

  • Information about items entrusted to Reparolux (photos, descriptions, service requests);

  • Content sent via e-mail, WhatsApp, Instagram, or other communication channels with Reparolux.

b) Data collected automatically

  • IP address, browser type, device used, date and time of access, pages visited (server logs and analytics tools);

  • Cookies and similar technologies (see separate Cookie Policy).

 

3. Purposes and Legal Bases
 

Personal data are processed for the following purposes:

  1. Performance of a contract (Art. 6(1)(b) GDPR)

    • Managing quotation requests, confirmations, and payments;

    • Performing the Services and/or delivering bespoke Products;

    • Communicating about the status of the order.

  2. Legal obligations (Art. 6(1)(c) GDPR)

    • Compliance with tax, accounting, and regulatory obligations.

  3. Legitimate interests of the Controller (Art. 6(1)(f) GDPR)

    • IT security and fraud prevention;

    • Protecting and enforcing rights in judicial or extra-judicial proceedings.

  4. Consent of the User/Customer (Art. 6(1)(a) GDPR)

    • Subscription to promotional communications (if offered);

    • Use of profiling cookies or third-party marketing tools (e.g., social plugins).

 

4. Methods of Processing

Processing is carried out using electronic and paper-based systems, with appropriate technical and organisational measures to ensure the security and confidentiality of the data.

 

5. Data Retention

  • Contractual and billing data: retained for the period required by law (10 years).

  • Unconfirmed quotations: deleted after 12 months.

  • Technical security logs (IP, access records): retained for up to 7 days.

  • Data processed on the basis of consent (e.g., marketing): retained until withdrawal of consent.

 

6. Data Sharing and Transfers

Data may be shared with:

  • Partner artisans entrusted with Services;

  • IT, hosting, and digital communication providers;

  • Professional advisers (e.g., accountants, lawyers);

  • Public authorities where required by law.

Processing takes place primarily within the European Economic Area (EEA). Some services (e.g., Google, Meta/Facebook, Instagram, WhatsApp) may involve transfers outside the EEA. Such transfers are based on adequacy decisions by the European Commission or Standard Contractual Clauses (SCCs).

 

7. Data Subject Rights

Users/Customers may exercise their rights at any time under Articles 15–22 GDPR:

  • Right of access;

  • Right to rectification or erasure;

  • Right to restriction or objection;

  • Right to data portability;

  • Right to withdraw consent at any time (without affecting the lawfulness of processing based on consent before withdrawal).

To exercise these rights, contact: info@reparolux.com.

Users/Customers also have the right to lodge a complaint with the competent supervisory authority (in Austria: Datenschutzbehörde, www.dsb.gv.at).

 

8. Security

Reparolux adopts appropriate technical and organisational security measures to prevent loss, unlawful use, or unauthorised access to personal data.

 

9. Updates

This Privacy Policy may be updated at any time. Changes will be published on the website https://reparolux.com with indication of the date of the latest update.

bottom of page