Back to homepage

Privacy Policy

Information about personal data processing and your rights.

Last updated: April 2026

1. Controller

Webagentur Hochmeir e.U.
Jonathan Hochmeir
Moorweg 7, 4845 Rutzenmoos, Austria
Email: hello@webhoch.com
Phone: +43 680 2208354

2. General Information

We process personal data in accordance with the EU General Data Protection Regulation (GDPR) and applicable Austrian data protection law.

3. Website Usage

When you visit our website, technical data may be processed, including:

  • IP address,
  • browser type and version,
  • operating system,
  • date and time of access,
  • requested page,
  • referrer URL,
  • technical log data.

This processing is necessary to provide the website, maintain security, detect misuse and ensure technical stability.

Legal basis: Article 6(1)(f) GDPR.

4. Contact Requests

If you contact us by email, form, phone or otherwise, we process your contact details and message content to respond to your request, prepare an offer or perform a contract.

Legal basis: Article 6(1)(b) and/or Article 6(1)(f) GDPR.

5. Customer and Project Data

We process personal data required to provide our agency services, software development services, support, maintenance and billing.

Such data may include: contact details, company details, project information, billing data, communication records, access credentials where necessary for service provision.

Legal basis: Article 6(1)(b) GDPR.

6. SaaS and Online Services

If you use our SaaS products or online tools, we may process: registration and account data, login and authentication data, usage data, device and technical data, content you upload or generate within the service, support communications, subscription and payment data, service metadata.

We process such data to provide the service, ensure security, handle support, prevent abuse, improve the product and manage billing.

Legal bases: Article 6(1)(b), Article 6(1)(f) and, where applicable, Article 6(1)(a) GDPR.

7. Payment Processing

We may use external payment providers to process transactions. The relevant payment data is processed by the provider to the extent necessary to complete payment and manage subscriptions.

Legal basis: Article 6(1)(b) GDPR.

8. Cookies and Similar Technologies

We use technically necessary cookies where required for website operation and security.

Analytics, marketing or non-essential cookies are only used where legally permitted and, where required, based on your prior consent.

Legal bases: Article 6(1)(f) GDPR and/or Article 6(1)(a) GDPR.

9. Analytics, Ads and Conversion Tracking

Where we use analytics tools, ad technologies or conversion tracking, data may be processed to understand traffic sources, campaign results, conversions and user interactions.

Such processing is carried out only where legally permissible and, where required, on the basis of consent.

10. Anti-Spam and Security Measures

We may use anti-spam, abuse-prevention and bot-detection tools or behavioural checks to protect our forms, systems and services against misuse and attacks.

Legal basis: Article 6(1)(f) GDPR.

11. Third-Party Providers and Subprocessors

We may engage third-party providers for hosting, infrastructure, payment processing, email delivery, analytics, AI features, customer support, security monitoring, automation and integrations.

Where such providers process personal data on our behalf, we enter into appropriate data processing arrangements where required by law.

12. International Transfers

Where personal data is transferred outside the EEA, we do so only in accordance with applicable legal requirements, including adequacy decisions, standard contractual clauses or other valid transfer mechanisms where necessary.

13. Retention

We retain personal data only for as long as necessary for the relevant purposes, as required by law, or as needed for legal defence, security or legitimate operational reasons.

Customer data in SaaS services is generally deleted or anonymised after the end of the contractual relationship and after a reasonable retention period, unless legal obligations or legitimate operational reasons require otherwise.

14. Data Subject Rights

You have the following rights, subject to the legal requirements:

  • right of access,
  • right to rectification,
  • right to erasure,
  • right to restriction of processing,
  • right to data portability,
  • right to object,
  • right to withdraw consent at any time with future effect.

You may exercise your rights by contacting hello@webhoch.com.

15. Right to Lodge a Complaint

You have the right to lodge a complaint with a competent data protection supervisory authority if you believe your personal data is processed unlawfully.

16. Security

We implement appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect legal, technical or operational changes. The current version published by us shall apply.

Further Legal Information

Imprint

Company information and legal disclosure

 Terms of Service

Terms for agency services, software and SaaS products

 Data Processing Agreement

DPA pursuant to Article 28 GDPR