Information according to Article 13 General Data Protection Regulation (GDPR)

regarding the CRYPTAS it-Security GmbH as controller

The protection of your privacy is important to us. We process personal data exclusively to the extent which is required and in adherence to the applicable legal regulations. In the following sections, we explain which data will be processed and for which purpose in accordance with your business relationship with CRYPTAS, as well as your rights concerning this matter.

1. Extent of data collection when using our website

When you use our website, the browser used on your device automatically sends information to our website server. This information is temporarily stored in log files. The following information is recorded without your intervention and stored until it is automatically deleted:

  • IP address of the requesting computer,
  • Date and time of access,
  • Name and URL of the retrieved file,
  • Website from which access was made (referrer URL),
  • browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

The data mentioned will be processed by us for the following purposes:

  • Ensuring a smooth connection to the website,
  • Ensuring comfortable use of our website,
  • Evaluation for system security and stability purposes.

The legal basis for data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. Our legitimate interest follows from the data collection purposes listed above

2. Extent of data collection for the CRYPTAS it-Security newsletter

CRYPTAS collects, processes, and uses the following data when registering for the CRYPTAS it-Security newsletter:

  • First name
  • Last name
  • Email address
  • Registration data (date and time)

The following information is optional; if you provide this information, this data will also be processed.

  • Name of the organization
  • Any further comments

Should you decide to unsubscribe from the newsletter, this data will be deleted.

3. Extent of data collection for online inquiries to CRYPTAS, support, and sales inquiries

CRYPTAS collects and processes the following data when you contact us via an online inquiry or submit an online support or sales request:

  • First name
  • Last name
  • Email address
  • Name of the organization
  • Topic of inquiry, your questions or concerns

The following information is optional; if you provide this information, this data will also be stored and processed:

  • Your role in the organization
  • Address, telephone/fax number, and web address of the organization

This data will be processed for the duration of one calendar year (as long as there is no legal reason for further data processing).

4. Extent of data collection for CRYPTAS partner inquiries

If you are interested in registering as a CRYPTAS partner, the following data will be collected and processed:

  • First and last name
  • Email address
  • Your role in the organization
  • Name, address, telephone/fax number, and web address of the organization
  • Further comments

All data provided (see points 1, 2 & 3) will be processed by CRYPTAS it-Security GmbH in Vienna.

If no partner registration takes place, this data will be deleted after 6 months (as long as there is no legal reason for further data processing).

5. Disclosure to third parties

All data shared with CRYPTAS is strictly confidential and will be protected using the technical and organizational measures as part of our IT security policy. We will not share your data with third parties unless you have given your permission, or in the case that we are legally obligated to do so. This does not apply to our service partners who require access to data for order processing (i.e. the delivery company commissioned for delivery, and the credit institute commissioned for payment processing). In these circumstances, the extent of data transmission is limited to the minimum required.


6. Rights of those affected

If the legal requirements are met, you have the following rights under the GDPR:

Right to information, correction, deletion, restriction of processing, data portability, objection to processing. In addition, you have the right to complain to the relevant supervisory authority if you believe that the processing of your personal data is not taking place lawfully.

Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna, email:


7. Name and contact details of the responsible body

CRYPTAS it-Security GmbH
Franzosengraben 8/4th floor
1030 Vienna, AUSTRIA