1. General
In fulfillment of the information obligations under the EU General Data Protection Regulation (GDPR), we hereby inform you, as existing or prospective customers, about the most important aspects of data processing in the context of the contractual relationship. Protecting your personal data is a particular concern for us. Your data will be processed exclusively on the basis of legal provisions (GDPR, Austrian Telecommunications Act – TKG).
This privacy information provides you with key details about data processing carried out on our website.
pro aqua Diamantelektroden Produktion GmbH, 8712 Niklasdorf, Parkring 1 (hereinafter “pro aqua”), is responsible for personal data collected and processed in connection with the website www.proaqua.at in accordance with GDPR.

2. Purpose and Legal Basis of Data Processing
2.1
We store and process the data you provide for the following purposes:

• Customer management and support

• Responding to your questions and contacting you

• Handling your orders

• Creating your customer account as a personal profile

• Preparing invoices

• Providing our content and services

• Electronic payments

• Marketing and advertising activities

2.2
The legal bases for processing your personal data are:

1. Fulfillment of contract including contract initiation (Art. 6(1)(b) GDPR)

2. Fulfillment of legal obligations (Art. 6(1)(c) GDPR)

3. Legitimate interests (Art. 6(1)(f) GDPR)

4. Your consent (Art. 6(1)(a) GDPR)

2.3
We will not process the data made available to us for any purposes other than fulfilling and implementing our contractual or statutory duties and services or the purposes covered by your consent. An exception is anonymized statistical use if the data has been anonymized.

3. Use and Management of Customer Data, Electronic Payment, and Customer Account
3.1
To place orders via the website www.proaqua.at, customers may either order as a guest or create a password-protected customer account.
3.2
All data entered by customers in the course of an order is stored. This includes:

• First name and surname, company

• Delivery and billing address (country, street/house number, postcode, VAT number)

• Payment data (bank details, credit card details)

• Email address

• Any data necessary for delivery or order processing may be passed on to third-party service providers.

3.3
We also process your personal data for organizational purposes, invoice management, and payment processing.
3.4
If you use electronic payment, the payment service provider (e.g., credit card companies, PayPal, Klarna, Apple Pay, Google Pay) may collect additional personal data.
3.5
A customer account includes an overview of past orders and active transactions as well as the personal data listed above. You can manage and update your account using your username and password.

4. Duration of Data Storage
4.1
We process your personal data to the extent necessary for the purposes listed above, at least for the duration of contract processing, from initiation until termination. If you set up a customer account, your personal data will be stored until that account is deactivated. After deactivation, your personal data will generally be deleted.
4.2
Additionally, necessary personal data (name, address, purchased goods, purchase date) will be stored until statutory retention periods expire, including liability periods (warranty, product liability) and the resolution of any potential legal dispute.

5. Data Security and Data Sharing
5.1
Your personal data is protected with appropriate structural, organizational, and technical measures to prevent unauthorized, illegal, or accidental access, processing, loss, use, and manipulation.
5.2
Data transfer or forwarding occurs only in accordance with applicable legal provisions.
5.3
We regularly work with service providers and partner companies (external IT service providers, banks, payment processors, suppliers, printers, delivery services) who assist with order processing and service provision. These processors may receive access to your personal data to fulfill their tasks and are contractually bound to comply with data protection requirements.
5.4
Despite efforts to maintain high data protection standards, we cannot fully rule out that information provided via the internet might be viewed or used by others. We are not liable for unauthorized access or disclosure resulting from errors beyond our control.
6. Notification of Data Breaches
We strive to ensure that data breaches are recognized and resolved early and, if necessary, promptly reported to you and/or the relevant supervisory authority, including the affected data categories.
7. Contact via Inquiry Form
When you use the contact form, personal data (name, email, message text) you provide is stored for up to six months to process and respond to your inquiry and any follow-up questions. This data will not be shared with third parties without your consent.

8. Website Access Logs
8.1
When you access our website, the web server temporarily stores log data, including:

• IP address of requesting device

• Date and time of access

• URL and data transferred

• Success status of the request

• Browser and operating system identifiers

• Referring website

• Name of your internet access provider

8.2
This data is processed to ensure website operation, system security, and technical administration, as well as to optimize the online presence. IP addresses are only analyzed in case of attacks on the infrastructure.

9. Cookies and Website Analytics
9.1
The website uses WordPress and stores cookies—small text files placed on your device for later access. We use:

• Technically necessary cookies for navigation and website functionality

• Technically unnecessary persistent cookies for personalized offers and data retention (e.g., shopping cart info)

Necessary cookies are justified by our legitimate interest (Art. 6(1)(f) GDPR). For non-necessary cookies, your consent is requested in the cookie notice window and can be withdrawn at any time (Art. 6(1)(a) GDPR). You can manage or delete cookies via your browser settings.
9.2
The website uses Google Analytics, a web analytics service that uses cookies to analyze website usage data (including IP addresses). Data is sent to Google servers in the United States. We do not store this data ourselves. IP anonymization is enabled, and Google may share data with third parties if required by law or if third parties process data for Google. You can prevent Google Analytics tracking via your browser settings.
 
10. Links to External Sites
This privacy policy does not apply to websites accessed via links on our site. The operators of linked sites are exclusively responsible for their content.
 
11. Your Rights
11.1
You have the right to receive information about your stored personal data, its origin and recipients, and the purpose of processing, as well as the right to correction, data transfer, objection, restriction of processing, blocking, or deletion of incorrect or unlawfully processed data.
11.2
You may withdraw consent to data use at any time. Withdrawal does not affect the legality of processing carried out before the withdrawal.
11.3
Requests for information, deletion, correction, objection, or data transfer can be sent to info@proaqua.at, provided it does not result in disproportionate effort.
11.4
If you believe data processing violates data protection law or your rights have been violated, you may file a complaint with the relevant supervisory authority. In Austria, this is the Data Protection Authority (https://www.dsb.gv.at).
 
12. Contact Details
You can reach us at:
pro aqua Diamantelektroden Produktion GmbH
Parkring 1
A-8712 Niklasdorf
Email: info@proaqua.at
Web: www.proaqua.at, www.surfacecleaner.at