Logo of aedge works

Privacy Policy

This privacy policy explains our methods for collecting, utilizing, and safeguarding your data. The complete legal text follows.

1. Controller

The responsible data controller in the sense of Art. 4 No. 7 GDPR is: aedge works GmbH & Co KG, Paulanergasse 7/5, 1040 Vienna, Austria; E-Mail: [email protected]; Website: aedge.io You can contact us concerning any data protection matters via email at: [email protected]

2. General Information

In operating our business and delivering our services, aedge requires personal data collection to fulfill our operational needs, service delivery, marketing activities, and regulatory requirements. We may also gather personal data for additional purposes, which will be clearly explained at the time of collection.

While you have the right to withhold any or all personal data requested, please note that doing so could restrict our ability to engage with you and limit our capacity to provide our services.

3. Logfiles

When you visit our website, we automatically collect technical data in our server log files. This includes:

  • Your IP address
  • Browser details (type and version)
  • Your internet service provider (ISP)
  • Pages you visit on our site
  • Entry and exit pages
  • Your operating system
  • Timestamp of your visit
  • Number of visits
  • Referring websites

We need this information to operate and secure our website properly. This processing is based on our legitimate interests according to Art. 6(1)(f) GDPR. We do not use this data to identify specific individuals, and we delete it after we’ve used it for the purposes mentioned above.

4. Contact

When you use our contact forms, we collect:

  • Your email address (required)
  • Your IP address and timestamp (to prevent form misuse)

For scheduling meetings, we use Google Calendar’s scheduling service. When using this service, your data is processed by Google. The following data may be collected:

  • Your name
  • Your email address
  • Your selected time slot
  • Any additional information you provide in the scheduling form

This data is processed by Google according to their privacy policy. For cases where personal data is transferred to the US, Google operates under the EU-US Data Privacy Framework. The legal basis for this processing is Art. 6(1)(b) GDPR (necessary for the performance of a contract) and Art. 6(1)(f) GDPR (legitimate interests).

You can also reach us via the email addresses listed in Section 1. Any personal data you send through these contact channels is automatically stored to handle your inquiry. This processing is based on our legitimate interests according to Art. 6(1)(f) GDPR.

We may request additional information such as:

  • Name
  • Occupation
  • Address
  • Telephone number

For this additional information, we will ask for your explicit consent. The legal basis for processing this data is Art. 6(1)(a) GDPR.

5. Unsolicited special categories of personal data

Our website is not intended to collect sensitive personal data (also known as special categories of personal data).

Under various privacy laws, including European (GDPR Art. 9) and United States regulations, special categories of personal data require additional protection and explicit consent. These include:

  • Racial or ethnic origin
  • Political opinions
  • Religious or philosophical beliefs
  • Trade union membership
  • Genetic data
  • Biometric data
  • Health information
  • Sexual orientation

Please do not submit any sensitive personal data unless specifically requested. To protect any personal data transmitted through our website, we use HTTPS and implement appropriate technical and organizational security measures.

6. Client-Side Storage

Our website uses Client-Side Storage for technical purposes only:

  • Storing your scroll position to enhance navigation
  • Maintaining page state through SvelteKit’s internal mechanisms

This technical data is stored locally in your browser and contains no personal information. We do not use cookies.

7. Third Party Applications

We use a limited number of third-party services that are essential for operating our website:

7.1 Hosting

Our website is hosted by Cloudflare, Inc. This is necessary for delivering our website to you. Cloudflare processes technical data required for website operation in accordance with their privacy policy and applicable data protection regulations.

7.2 Analytics

We use Posthog for anonymous website analytics. Our implementation:

  • Does not use cookies or persistent storage
  • Does not collect or store IP addresses
  • Treats each visit as independent
  • Cannot identify individual users or link multiple visits
  • Only collects anonymous, aggregated usage data to improve our service

The legal basis for using these services is Art. 6(1)(f) GDPR (legitimate interests), as they are essential for operating our website and understanding its usage in an privacy-preserving way. We do not sell your personal data and only share technical data with these providers to the extent necessary for website operation.

8. Deletion and Term of Storage

We process and store your personal data only for:

  • The time necessary to achieve the stated purpose
  • The duration permitted under applicable laws and regulations
  • The period required for contractual obligations

Your personal data will be deleted when:

  • The purpose for storage has been fulfilled
  • The legal retention period expires
  • You request deletion (unless we are legally required to retain the data)

9. Your rights as data subject

You have the following rights:

Right of access (Art. 15 GDPR)

You have the right to receive information about your personal data that we process. You can also request a copy of this data.

Right to rectification or erasure (Art. 16 and 17 GDPR)

You have the right to:

  • Have incorrect personal data corrected
  • Request deletion of your data when processing is no longer necessary
  • Request deletion when processing is unlawful
  • Request deletion when you withdraw your consent

Right to restriction of processing (Art. 18 GDPR)

If the conditions in Art. 18 GDPR are met, you have the right to have the processing of your personal data restricted, which means preventing further processing temporarily.

Right to object (Art. 21 GDPR)

When processing is based on Art. 6(1)(e) or (f) GDPR, you have the right to object to the processing of your personal data, subject to the conditions in Art. 21 GDPR.

Right to data portability (Art. 20 GDPR)

You have the right to receive your personal data in a machine-readable format and to have it transferred to another data controller, within the limits set by Art. 20 GDPR.

How to exercise your rights

You can exercise any of these rights by emailing us at [email protected].

Right to lodge a complaint

You have the right to file a complaint with a data protection supervisory authority if you believe your data is being processed unlawfully. You can choose the authority in:

  • Your place of residence
  • Your workplace
  • The place of the alleged infringement

10. Changes to the Policy

This Privacy Policy may be updated from time to time and will note the date of any updates. In the event of any material and significant changes, we will endeavor to provide a more prominent notice of the changes to this Privacy Policy. Updated: 11 December 2024