Privacy Policy
(As of March 24, 2021)
HG Pharma GmbH, Antonigasse 97/6, 1170 Vienna, is responsible for the operation of this website. You can also contact us by email at frontdesk@hgpharma.at or by phone at +43 720 906 700.
We take the protection of your personal data very seriously. Your personal data will be treated confidentially and in accordance with applicable data protection laws, in particular the General Data Protection Regulation (GDPR), the Data Protection Act (DSG), and the Telecommunications Act (TKG 2003), as well as this privacy policy. Below, we inform you about which data we process when you use our website and for what purpose.
1. Evaluation of visitor behavior
The collected data is generally evaluated anonymously and we cannot draw any conclusions about your identity from your behavior on this website.
Even while you are currently visiting our website, our web server (the computer on which this website is stored) automatically saves data such as:
* the complete Internet address (URL) of the website accessed
* Browser and browser version (e.g. Chrome 87)
* the operating system used (e.g. Windows 10)
* the address (URL) of the previously visited page
* the hostname and IP address of the device from which access is made
* Date and time
in files, the so-called web server log files.
These files are usually stored for two weeks and then automatically deleted.
2. TLS encryption with https
We use HTTPS (Hypertext Transfer Protocol Secure) to securely transmit data over the internet. This means that the entire transmission of all data from your browser to our web server is secure – no one can eavesdrop.
We have thus introduced an additional layer of security and comply with data protection by design in accordance with Article 25, Paragraph 1 of the GDPR. By using TLS (Transport Layer Security), an encryption protocol for secure data transmission over the Internet, we can ensure the protection of confidential data.
3. Orders
You have the option of voluntarily registering on our website and creating a customer account. The personal data you provide when registering on our website (first name, last name, address, email address, and any voluntary information) will be processed by us to process orders within the scope of our product and/or service offerings in accordance with Article 6 (1) (b) GDPR.
Orders on our website are also possible without prior registration (as a "guest"). When ordering goods without registering, we collect your name, address, and email address so that we can send you the ordered goods and an electronic confirmation of the purchase. The processing of this data is carried out to fulfill the contract in accordance with Article 6 (1) (b) GDPR and is necessary for order and contract processing, including any possible reversal (in the case of returns).
As part of the ordering process, your personal data will also be shared with our technical service providers (contract processors), Rackspeed. We contractually oblige our contract processors to process your data exclusively within the scope of our instructions to fulfill our obligations and in accordance with applicable laws and regulations, and not to transfer your data to third parties. The payment process is handled by payment providers (Stripe Payments, PayPal), who are themselves "controllers" of your personal data within the meaning of the GDPR.
In order to deliver the goods you have ordered, we will pass on your name and address to Österreichische Post AG or DHL Express Austria GmbH, who are also “responsible” for the processing of your personal data within the meaning of the GDPR.
According to the Austrian Commercial Code (UGB) and the Federal Fiscal Code (BAO), we are required to retain business documents for seven years. After this period, the data will be deleted unless there is a legal authorization or obligation to continue processing this data.
4. Advertising your own similar products or services
We process the personal data you enter in connection with registration or the purchase of goods for the purpose of sending email advertising for our own similar products or services on the basis of Section 107 Paragraph 3 of the Telecommunications Act 2003 and within the scope of our legitimate interest in sales promotion in accordance with Article 6 Paragraph 1 Letter f) of the GDPR, provided that you do not object to this processing of your personal data when it is collected and are not entered in the ECG list of RTR GmbH.
You are free to refuse the processing of your data for advertising purposes free of charge and without any problems in advance by
a) object to the transmission of email advertising when registering or purchasing goods (opt-out), or
b) send us an email to the following address: frontdesk@hgpharma.at
Furthermore, you have the right to object to the processing of your personal data for advertising purposes at any time in accordance with Section 107 Paragraph 3 of the Telecommunications Act 2003 and Article 21 Paragraph 2 of the GDPR by clicking the unsubscribe link at the end of each message or by sending us an email to frontdesk@hgpharma.at. If you object to the processing of your personal data for direct marketing purposes, we will no longer process your data for these purposes.
5. Contact form and customer service
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be processed by us in accordance with Article 6 (1) (b) GDPR for the implementation of pre-contractual measures or within the scope of contract fulfillment for the purpose of processing your inquiry and stored by us in case of follow-up questions. If you contact our customer service by phone or post, the data you disclose will be processed automatically to the extent necessary on the basis of Article 6 (1) (b) GDPR.
We will not share this personal data without your consent unless it is necessary to fulfill your request. The data will be deleted as soon as it is no longer required for the purposes for which it was collected, unless there is a legal authorization or obligation to continue processing this data.
6. Newsletter
You have the option of voluntarily subscribing to our newsletter on the website. To do so, we require your email address and your consent to receive the newsletter. By consenting to receive the newsletter, you also consent to the use of your personal data (email address) for this purpose.
We use the personal data you provide exclusively for sending the newsletter. As part of the newsletter distribution, your data will be shared with our technical service providers (contract processors), Rackspeed. We contractually oblige our contract processors to process your data exclusively within the scope of our instructions to fulfill our obligations and in accordance with applicable laws and regulations, and not to transfer your data to third parties.
You can revoke your consent to receive the newsletter at any time by clicking the unsubscribe link at the end of each newsletter or by sending us your revocation by email to the following address: frontdesk@hgpharma.at . Revoking your consent does not affect the legality of the processing carried out on the basis of your consent until the revocation. Your data will be deleted immediately after revocation, unless there are other legal grounds for processing.
7. Cookies and web analysis
7.1 Cookies and cookie settings
Cookies are small text files that our website stores on your device in order to recognize your device.
A distinction is made between two different types of cookies: so-called “session cookies”, which are automatically deleted as soon as you close your browser, and “persistent cookies”, which are stored on your data storage device for a longer period of time (for example, to recognize your device on your next visit).
You can delete or disable cookies in your browser settings. After deleting cookies, we will ask you again whether you want to allow cookies on our website.
You can also configure your browser to inform you about the use of cookies and to only allow cookies on a case-by-case basis, to exclude cookies for specific cases or in general, and to automatically delete cookies when closing your browser. If cookies are completely deactivated, the functionality of our website may be limited.
7.2 Required or essential cookies
We use "session cookies," which are required to assign the entries you make on our website to you for the entire duration of your use of our website (e.g., when placing orders). These cookies are required for the registration and ordering process and are based on Section 96, Paragraph 3 of the Telecommunications Act 2003 (TKG 2003), as we need to know which user has placed which item in the shopping cart during the ordering process. These required cookies are automatically deleted from your hard drive after you finish using our website (end of the session).
7.3 Convenience cookies
If you select "Convenience Cookies" in your cookie settings (Article 6, Paragraph 1, Letter a) of the GDPR, Section 96, Paragraph 3 of the Telecommunications Act 2003), we use persistent cookies that can remain on your hard drive for an extended period of time. They are used to automatically recognize your device on subsequent visits and to identify your preferred entries and settings. These cookies are stored on your hard drive for three months after your last login and are automatically deleted after the specified period. You can also delete or deactivate cookies at any time in your browser settings.
7.4 Statistics and advertising cookies
If you select “Statistics and advertising cookies” in the cookie settings, cookies from the following third parties will be set and information from the cookies will be transmitted to them:
Google Analytics
This website uses features of the web analytics service Google Analytics. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics uses cookies, which are text files placed on your computer, to help the website analyze how users use the site.
If you consent to the use of Google Analytics (Article 6 (1) (a) GDPR, Section 96 (3) TKG 2003), Google will use this information on our behalf to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage. Cookies set as part of the use of Google Analytics are stored for 26 months. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. Google is certified under the EU-US Privacy Shield and therefore offers appropriate data protection guarantees for the transfer of data to the USA. Further information on your rights under the Privacy Shield can be found at https://www.privacyshield.gov/welcome .
We would like to point out that Google Analytics has been extended on this website with the code "gat._anonymizeIp();" to ensure anonymized collection of IP addresses (so-called IP masking) by Google Analytics. This means that your IP address will be shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.
You can also access our website without using Google Analytics by not giving your consent in the cookie settings.
Consent can be revoked at any time by sending an email to frontdesk@hgpharma.at revoked, meaning that the processing of your data will no longer be permitted from the time of receipt of your revocation. The legality of the processing of your data up to the point of revocation remains unaffected by your revocation.
For more information about Google Analytics’ privacy policy, please visit www.google.com/policies/privacy/partners/ .
Google Tag Manager
Our website uses Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager is a system that controls which tags (scripts) are executed on our website and when they should be executed. These can be statistical scripts or marketing tags intended for advertising. Such tags and scripts set cookies that collect data from their users to create statistics and marketing analyses.
Google Tag Manager does not process any personal data and does not set any cookies. However, if you consent to this in the cookie settings on our website, the statistical and advertising cookies listed in this privacy policy will be set and managed with the help of Google Tag Manager.
8. Online presence in social media
We, HG Pharma GmbH and alphaHSport+, are represented on social networks and platforms to communicate with users, interested parties, and customers who are active there. When you access these networks and platforms, the terms and conditions and data processing guidelines of the respective operators apply. Further information on the purpose and scope of data collection and the further processing and use of the data by the providers of these networks, as well as your related rights and settings options for protecting your privacy, can be found in the respective privacy policies.
Unless otherwise stated, we process users' data when they communicate with us on social networks and platforms.
Embedded YouTube videos
We embed YouTube videos on our website. The provider is Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. To protect your personal data when you visit our website, YouTube videos are not embedded directly; instead, a preview image is displayed first. The actual video content is only displayed after you click on the preview image. If you have not already agreed to this in your cookie settings, the video will only be loaded when you click on the preview image, and the provider will place a cookie in your browser. This tells the provider that your browser has accessed the corresponding page of our website, even if you do not have a user profile with the provider or are not currently logged in to the provider. This information (including your IP address) is transmitted from your browser directly to a server of the provider (usually in the USA) and stored there. By clicking on the video, you consent to the transfer of data to the provider (Article 6 (1) (a) GDPR). Google is certified under the EU-US Privacy Shield and therefore offers appropriate data protection guarantees for the transfer of data to the USA. Further information on your rights under the Privacy Shield can be found at https://www.privacyshield.gov/welcome . You can also access our website without using YouTube videos by not granting your consent as described above. You can revoke your consent at any time by sending an email to frontdesk@hgpharma.at The processing of your data will no longer be permitted from the time of receipt of your revocation. The legality of the processing of your data up to the time of revocation remains unaffected by your revocation. Further information on how user data is handled can be found in Google's privacy policy at: https://policies.google.com/privacy
9. Miscellaneous
9.1 Google Maps
This website uses Google Maps to display map information. When you use Google Maps, Google also collects, processes, and uses data about the use of the maps functions by visitors to the website. For more information about data processing by Google, please see Google's privacy policy at https://www.google.at/intl/de/policies/privacy/ There, you can also change your settings in the privacy center so that you can manage and protect your data.
9.2 Google Fonts
We use Google Fonts on our website. These are the "Google Fonts" of Google Inc. For the European region, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is responsible for all Google services.
You can find more information about Google Fonts and other questions on https://developers.google.com/fonts/faq?tid=221141965 .
9.3 Google reCAPTCHA
We use Google reCAPTCHA from Google Inc. on our website. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google reCAPTCHA allows us to determine whether you are actually a human being and not a robot or other spam software.
For further information, please visit https://policies.google.com/privacy?hl=de&tid=221141965 and https://developers.google.com/recaptcha/
10. Rights of the data subject
You have the right at any time to obtain free information about your stored personal data, its origin and recipient, and the purpose of data processing, as well as the right to rectification, restriction of processing, objection to data processing, and erasure of this data, as well as the right to data portability. You can contact us by post or email at frontdesk@hgpharma.at. contact.
If you believe that the processing of your personal data violates data protection law or that your data protection rights have otherwise been violated in any way, you have the right to contact the supervisory authority. In Austria, the responsible authority is the Data Protection Authority, Barichgasse 40-42, 1030 Vienna, ( https://www.dsb.gv.at/ ).
List of cookies we collect
The following table lists the cookies we collect and the information they store.
| Cookie name | Cookie description |
|---|---|
| FORM_KEY | Stores randomly generated key to prevent forged requests. |
| PHPSESSID | Your session ID on the server. |
| GUEST VIEW | Allows guests to view and edit their orders. |
| PERSISTENT_SHOPPING_CART | A link to information about your shopping cart and to view your history, if requested. |
| STF | Information about products you have emailed to friends. |
| STORE | The business view or language you selected. |
| USER_ALLOWED_SAVE_COOKIE | Indicates whether a customer is allowed to use cookies. |
| MAGE-CACHE-SESSID | Facilitates caching of content in the browser to speed up page loading. |
| MAGE-CACHE-STORAGE | Facilitates caching of content in the browser to speed up page loading. |
| MAGE CACHE STORAGE SECTION INVALIDATION | Facilitates caching of content in the browser to speed up page loading. |
| MAGE-CACHE-TIMEOUT | Facilitates caching of content in the browser to speed up page loading. |
| SECTION DATA IDs | Facilitates caching of content in the browser to speed up page loading. |
| PRIVATE_CONTENT_VERSION | Facilitates caching of content in the browser to speed up page loading. |
| X-MAGENTO-VARY | Facilitates caching content on the server so pages load faster. |
| MAGE-TRANSLATION-FILE-VERSION | Facilitates the translation of content into other languages. |
| MAGE-TRANSLATION-STORAGE | Facilitates the translation of content into other languages. |