Privacy Policy – hinterland.systems

Privacy Policy – Information Obligations under Article 13 GDPR

1. Introduction

The provider of the service 'Hinterland Registry' is the association 'Hinterland Systems – Association for the Promotion of Regenerative Regional Systems'. Hinterland Systems respects the privacy of its users and has created this Privacy Policy as a commitment to protecting your personal data. We collect, store, and process data about you in the course of our activities. This policy describes the use and sharing of your data, as well as your choices regarding these processes. Please read this document carefully before using our services. For questions, contact us at [email protected].

2. Controller

Controller pursuant to the General Data Protection Regulation (GDPR):
Hinterland Systems – Association for the Promotion of Regenerative Regional Systems
Hörlgasse 10/10, 1090 Vienna, Austria
Email: [email protected]
Website: https://hinterland.systems

3. Personal Data

3.1 Personal data refers to any information relating to an identified or identifiable natural person (the 'data subject').
3.2 We collect personal data when you use our website (via cookies & Google Analytics) or contact us directly.
3.3 Every time you access our website, your browser automatically transmits technical data to our server, used solely for technical/statistical purposes:
- IP address (anonymized)
- Date and time of access
- Location
- Browser type/version and window size
- Requested file (request)
- Operating system
- Referrer URL
- Language

3.4 For the provision of Hinterland Registry services, the following data is stored:
- Name + title (if applicable)
- Gender
- Email address
- Company + address
- Job title
- Phone number
- Country
- VAT number
- Company registration number
- Agricultural holding number

3.5 For land use certification projects, we collect:
- Name + title (if applicable)
- Email address
- Phone number
- Profile picture
- Country code
- Language
- Sender and recipient user IDs
- Credit card data
- Bank name
- API data

3.6 When contacting our support team, we process:
- Name
- Email address
- Phone number
- Request date/time
- Search term
- Subject
- IP address

4. Cookies and Server Log Files

4.1 We use cookies to optimize our services. Cookies are small text files stored in your browser/device.
4.2 We use Google Analytics for analyzing search queries for marketing purposes.
4.3 Our website uses Hotjar to collect anonymized behavioral and device data (e.g., anonymized IP, device type, browser, language).
Hotjar data is stored in pseudonymized profiles. For opt-out: https://www.hotjar.com/legal/policies/privacy
Linked services may use their own cookies. We are not responsible for third-party cookies. Further opt-out tools:
https://tools.google.com/dlpage/gaoptout?hl=en
https://disconnect.me/

5. Social Media Plug-ins

We integrate links and plug-ins from providers such as Google, YouTube, X, LinkedIn.
To avoid data transfer to these platforms, log out of the respective services before visiting our website.
For more information:
- https://policies.google.com/privacy
- https://x.com/privacy?lang=en
- https://www.linkedin.com/legal/privacy-policy
- https://chatra.com/privacy-policy

6. Legal Basis for Data Processing

6.1 Legitimate Interest – Art. 6(1)(f) GDPR:
To ensure service operation, contractual performance, website management, direct marketing, data security, and support.

6.2 Consent – Art. 6(1)(a) GDPR:
For voluntarily submitted data (e.g., business cards, feedback). You can revoke consent at any time by contacting [email protected]

6.3 Contract – Art. 6(1)(b) GDPR:
For processing data related to contract fulfillment, invoicing, and customer service.

6.4 Legal Obligation – Art. 6(1)(c) GDPR:
Where legally required (e.g., by tax or supervisory authorities).

7. Data Sharing with Third Parties

7.1 We use third-party providers for web hosting, IT systems, and CRM:
- Amazon Web Services (AWS)
- HubSpot (CRM)
- Stripe (Payment processing): https://stripe.com/en/privacy

7.2 Data may be transferred to countries outside the EU. Transfers only occur if the country is deemed adequate or appropriate safeguards are in place.
7.3 We may be legally required to share data with authorities for fraud prevention or network security.

8. Data Retention

We store personal data as long as necessary to meet contractual or legal obligations or until consent is withdrawn.

9. Your Data Protection Rights

You have the right to:
- Access your data
- Correct or delete it
- Restrict processing
- Data portability
- Object to processing

Please send your request to the contact mentioned in section 10.
If you believe your data has been processed unlawfully, you may file a complaint with the Austrian Data Protection Authority: https://www.dsb.gv.at

10. Contact for Data Privacy Requests

Hinterland Systems – Association for the Promotion of Regenerative Regional Systems
Hörlgasse 10/10, 1090 Vienna, Austria
Email: [email protected]

11. Changes to this Privacy Policy

We reserve the right to update this policy due to technical developments, legal changes, or new services. Please check our website regularly for updates.