Privacy Policy

Data Collection

We collect personal data when you interact with our website, contact us, or use our services. The data we collect includes information you provide directly to us and information automatically collected through your use of our website. This data collection is essential for providing our strategic business advisory services and maintaining our relationship with clients and prospects.

Personal data we may collect includes:

• Contact information (name, email address, phone number, postal address)
• Company information and job title
• Communication preferences and enquiry details
• Website usage data and analytics information
• Technical data (IP address, browser type, device information)
• Marketing and communications data

How We Use Your Information

We use your personal data for legitimate business purposes and with appropriate legal basis. How we use your information depends on the services you use, your relationship with us, and your preferences. The use of your data enables us to provide effective strategic advisory services and maintain professional business relationships.

We use your personal data to:

• Provide and deliver our strategic business advisory services
• Respond to your enquiries and communicate with you
• Process and manage your service requests
• Send you relevant business information and updates
• Improve our website and services through analytics
• Comply with legal and regulatory requirements
• Protect our business interests and prevent fraud

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our use of cookies, please refer to our Cookie Policy, which provides comprehensive information about the types of cookies we use, their purposes, and how you can control them.

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

• Consent: When you provide explicit consent for marketing communications or cookie usage
• Contract: To perform our contractual obligations when providing advisory services
• Legitimate Interest: For business development, website analytics, and service improvement
• Legal Obligation: To comply with applicable laws and regulations

Data Sharing and Disclosure

We do not sell your personal data to third parties. We may share your information with trusted service providers who assist us in operating our business, such as:

• IT service providers and hosting companies
• Analytics services (such as Google Analytics)
• Marketing and advertising platforms
• Professional advisors (lawyers, accountants)
• Regulatory authorities when required by law

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, and protect our legitimate business interests. Data retention periods vary depending on the type of data and the purpose for processing.

General retention periods include:

• Contact enquiries: 3 years from last contact
• Client data: 7 years after end of business relationship
• Marketing data: Until consent is withdrawn
• Website analytics: 26 months (Google Analytics default)
• Legal compliance data: As required by applicable law

Your Rights

Under GDPR and applicable privacy laws, you have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Request limitation of data processing
• Right to Data Portability: Request transfer of your data
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent for consent-based processing

International Data Transfers

As we operate within the European Union, your data is primarily processed within the EU/EEA. When we use third-party services that may process data outside the EU/EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training on data protection.

Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding data protection matters, please reach out to us:

Supervisory Authority

You have the right to lodge a complaint with the Austrian Data Protection Authority if you believe your data protection rights have been violated: