Wirecard Central Eastern Europe GmbH (Wirecard CEE) as well as the companies within the Wirecard Group (including Wirecard AG and its subsidiaries) offer their customers products and services relating to electronic payment transactions. The objective is to allow companies and consumers worldwide to process electronic transactions securely and smoothly. Security and the protection of personal data is one of the most important aspects in the context of handling and processing of payments. This is why the Wirecard Group places particular emphasis on high data protection standards.
As a subsidiary of Wirecard AG, Wirecard CEE processes personal data of visitors to the website as well as personal data of final consumers on behalf of our customers (merchants) when processing payment transactions.
1. Data Controller
The data controller within the meaning of the Austrian and EU legislation regarding the protection of personal data is Wirecard Central Eastern Europe GmbH, Reininghausstraße 13a, 8020 Graz.
2. General Information
Within this internet presence, we make available information on the services provided by Wirecard Group, as well as a contact form.
The General Data Protection Regulation (GDPR) of the European Union and the Austrian Data Protection Amendment Act 2018 (DSG) support the right to the protection of personal data. Wirecard only processes your data based on legal provisions and operates the website in accordance with these provisions (GDPR, DSG, Telecommunications Act 2003).
It is a matter of particular concern to us to protect and securely store all personal data you entrusted us with. This document shall give you more information on how we use and process your personal data.
3. Collection and Processing of Personal Data from Website Visitors
3.1 Anonymous use of the site
Visiting our website is possible without providing any personal data. Data collected automatically will always be made anonymous prior to their storage and usage.
3.2 Non-personal data collected automatically (log file information)
When visiting this website, so-called log file information will be recorded – which is a standard procedure on the Internet. This non-personal information is transmitted automatically by your web browser. This information includes in particular: IP address, accessed pages on the website, date and time of the visit, cookies, used browser, operating system of the accessing computer, language setting and transferred data volume. The processing of the log file information is done mainly in order to establish the connection, to ensure system security and for reasons of technical administration.
Also, log file information is exclusively stored and analyzed statistically in an anonymous form, in order to continuously improve this website, to adjust it to the users’ interests and to speed up the detection and/or elimination or bugs.
Wirecard shall store log file information for security reasons (e.g. in order to clarify cases of abuse or fraud), for a maximum period of seven days, and shall then delete such information. Data which must be stored beyond that period for reasons of evidence are excluded from the deletion until the relevant incident has been clarified.
Wirecard uses both cookies that process personal data and cookies that do not process personal data. In the latter case, processing is done anonymously and no conclusions on the identity of the user may be drawn. In the other case, Wirecard assures a transparent processing of personal data which is compliant with data protection requirements.
For further information on the cookies we use, go to https://www.wirecard.com/privacy-protection/cookies/.
3.4. Usage and forwarding of personal data
Your personal data will only be used for the specified purposes, and only to the extent required in order to achieve these purposes. Data will only be forwarded to third parties – if at all – within the limits of the respective statutory provisions. The transmission of personal data to government agencies and authorities shall be carried out only in line with mandatory national law, or if the forwarding is required for purposes of legal or criminal prosecution in the event of abuse or fraud. Forwarding for other purposes – in particular address trading – is excluded.
4. Web Analysis
In order to continuously improve this internet presence, to adapt it to the user’s interests, and to speed up the detection and/or elimination of bugs, logfile information will be stored under a pseudonym in so-called usage profiles, and will be analysed statistically.
However, if IP anonymization is activated on this website, your Google IP address will be truncated within Member States of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases the full IP address is transferred to a Google server in the USA and shortened there. IP anonymization is active on this website. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide further services to the website operator associated with the use of the website and the use of the internet.
5. Contact Form
Wirecard will store the personal data provided by you when you send the completed form (e.g. name, e-mail address, message) in its Customer Relationship Management System (“CRM System”). Wirecard will use such personal data
- in order to process the offers and, if a contract is concluded, to process this contract;
- in order to send the sender important information about this internet presence;
- in order to support our internal business objectives, namely data analyses, revisions, the development of new products, improvement of this internet presence, improvement of our services, detection of usage trends and determination of the effectiveness of our advertising campaigns (only in an anonymous form);
- in order to prevent and identify abuse or fraud.
The data collected via the contact form will not be forwarded to third parties.
6. Forwarding of Personal Data; Involvement of Service Providers
User data are not forwarded to third parties – in particular for the purposes of address trading.
Wirecard may employ service providers to collect and/or process data; for instance, a service provider may be assigned to provide technical support for the website, or to answer contact inquiries. Service providers will only act on behalf of, and according to instructions by, Wirecard (data processing).
7. Data Security
In order to protect stored personal data against accidental or unlawful manipulation, loss, destruction or unauthorized access, Wirecard implements adequate technical and organizational measures. Our security measures are optimized at regular intervals and in line with technological developments.
Wirecard only grants access to personal data to those staff members who require such personal data for their tasks and who are entitled to perform such processing of personal data. As a matter of principle, Wirecard does not transfer any personal data to third parties unless there is a specific legal obligation (e.g. legal proceedings in the event of abuse or fraud).
Personal data which Wirecard obtains from the website (e.g. via the contact form) are transmitted by means of a Digicert certificate (https://www.digicert.com/) and a highly secure encryption over the Internet.
Wirecard uses firewalls to prevent unauthorized access to servers. Servers are located at a safe location to which only authorized staff has access. All staff members and all persons involved in the processing of data are bound to comply with all laws relating to data protection, and to treat personal data confidentially. We would like to point out, however, that unfortunately we cannot assure complete security for transmission of data over the Internet or for unauthorized access by third parties.
8. External Links
The contents of our sites are created with the greatest possible diligence. However, we are unable to assume any liability for the correctness, completeness and actuality of the contents.
Our offers sometimes contain links to external websites of third parties. Neither have we control over the contents of such third party websites nor are we able to assume any liability for the correctness of the contents. Full responsibility for contents offered on a linked site of any particular provider lies with the respective site operator.
9. Your Rights
You are guaranteed the right to anytime obtain access from the respective controller to data relating to you. Unless there is legal obligation to store personal data, you are guaranteed the right to obtain the erasure of such data or to object to the processing of these data. You also have the right to rectification of data, the right to restriction of processing and the right to data portability, as well as to lodge a complaint with the Austrian Data Protection Authority (Wickenburggasse 8-10, 1080 Wien, E-mail: firstname.lastname@example.org).
10. Questions regarding data protection