Privacy Policy
Privacy Policy
Last Updated: March 2026
1. Controller
Responsible for data processing on this website:
Christian Bernard Prohinig Adi-Dassler-Gasse 2 9073 Klagenfurt am Wörthersee Austria
Email: [email protected] Phone: +43 678 783 5763
2. General Information on Data Processing
2.1 Scope of Processing of Personal Data
We process personal data of our users only to the extent necessary to provide a functional website and our content and services. Depending on the processing activity, this is done on the basis of your consent, to perform a contract, to comply with legal obligations, or on the basis of our legitimate interests.
2.2 Legal Basis
Insofar as we obtain consent from the data subject for the processing of personal data, Article 6(1)(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
For the processing of personal data necessary for the performance of a contract, Article 6(1)(b) GDPR serves as the legal basis.
Insofar as processing of personal data is necessary to fulfill a legal obligation, Article 6(1)(c) GDPR serves as the legal basis.
If processing is necessary to protect a legitimate interest of our company or a third party, Article 6(1)(f) GDPR serves as the legal basis.
3. Collected Data and Processing Purposes
3.1 Provision of the Website and Creation of Log Files
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer.
The following data is collected:
- Information about the browser type and version used
- The user’s operating system
- The user’s IP address (anonymized)
- Date and time of access
- Websites from which the user’s system reaches our website (referrer)
- Screen resolution and device information
This data is stored in our system’s log files. This data is not stored together with other personal data of the user.
Legal Basis: The temporary storage of data and log files is essential for the operation of the website (Article 6(1)(f) GDPR).
Storage Duration: The data is deleted as soon as it is no longer necessary to achieve the purpose for which it was collected.
3.2 Payment Processing via Stripe
We use Stripe to process payments, for example via payment links, invoices, or in connection with contracts, even where the payment is not initiated through a direct booking flow on this website. For users in the European Economic Area, the provider is generally Stripe Payments Europe, Limited, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland (hereinafter: “Stripe”).
Processed Data:
- Name
- Email address
- Billing address and invoicing details
- Transaction data (for example amount, currency, time, status, and reference or invoice number)
- Depending on the payment method, additional payment details Stripe requires to complete the transaction (for example card or bank account details)
Purpose: Processing payments, preventing fraud, and maintaining accounting and tax records.
Legal Basis: Article 6(1)(b) GDPR (performance of a contract), Article 6(1)(c) GDPR (legal obligations), and Article 6(1)(f) GDPR (legitimate interest in secure and efficient payment processing).
Recipients and Third-Country Transfers: Payment data is processed directly by Stripe. In this context, data may be shared with banks, payment service providers, or card networks. Processing outside the EEA may occur. Stripe states that it uses appropriate safeguards for such transfers, in particular Standard Contractual Clauses.
Storage Duration: We store billing- and contract-related data only for as long as necessary to perform the contract and comply with statutory retention obligations.
Further Information:
- Stripe Privacy Policy: https://stripe.com/privacy
4. Cookies and Tracking Technologies
4.1 Use of Cookies
Our website uses cookies. Cookies are text files that are stored in or by the Internet browser on the user’s computer system.
We use the following cookie categories:
4.1.1 Necessary Cookies
These cookies are strictly necessary for the website to function properly. They cannot be disabled.
| Cookie Name | Provider | Purpose | Storage Duration |
|---|---|---|---|
| cohub_cookie_consent | cohub.at | Stores your cookie preferences | 13 months |
Legal Basis: Article 6(1)(f) GDPR (legitimate interest)
4.1.2 Analytics Cookies (only with your consent)
These cookies help us analyze and improve the use of our website.
| Cookie Name | Provider | Purpose | Storage Duration |
|---|---|---|---|
| _ga | Google Ireland Limited | Google Analytics - User distinction | 2 years |
| _gid | Google Ireland Limited | Google Analytics - User distinction | 24 hours |
| _gat | Google Ireland Limited | Google Analytics - Request rate throttling | 1 minute |
Legal Basis: Article 6(1)(a) GDPR (consent)
You can withdraw your consent at any time through our Cookie Settings.
4.2 Google Tag Manager and Google Analytics
We use Google Tag Manager and Google Analytics, services provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: “Google”).
Purpose: Analysis of website usage to optimize our offering.
Processed Data:
- Anonymized IP address
- Pages visited and time spent
- Browser information and operating system
- Device information (desktop, mobile, tablet)
- Referrer URL (previous website)
Data Transfer to Third Countries: Google LLC (USA) processes data on behalf of Google Ireland Limited. Data transfer is based on Standard Contractual Clauses of the European Commission.
Google Consent Mode v2: We use Google Consent Mode v2, which means Google Analytics only collects personal data after your consent.
Legal Basis: Article 6(1)(a) GDPR (consent)
Storage Duration: Data collected by Google Analytics is automatically deleted after 26 months.
Right to Object: You can prevent Google Analytics from collecting data by installing the Google Analytics opt-out browser add-on: https://tools.google.com/dlpage/gaoptout
Further Information:
- Google Analytics Privacy Policy: https://policies.google.com/privacy
- Google Analytics Terms of Service: https://marketingplatform.google.com/about/analytics/terms/
5. Your Rights as a Data Subject
As a data subject, you have the following rights:
5.1 Right of Access (Article 15 GDPR)
You have the right to obtain confirmation from us as to whether personal data concerning you is being processed.
5.2 Right to Rectification (Article 16 GDPR)
You have the right to request the immediate correction of inaccurate personal data concerning you.
5.3 Right to Erasure (Article 17 GDPR)
You have the right to request that we immediately delete personal data concerning you.
5.4 Right to Restriction of Processing (Article 18 GDPR)
You have the right to request that we restrict processing.
5.5 Right to Data Portability (Article 20 GDPR)
You have the right to receive the personal data concerning you in a structured, commonly used, and machine-readable format.
5.6 Right to Object (Article 21 GDPR)
You have the right to object at any time to the processing of personal data concerning you for reasons arising from your particular situation.
5.7 Right to Withdraw Consent (Article 7(3) GDPR)
You have the right to withdraw your consent at any time. The lawfulness of processing carried out until withdrawal remains unaffected.
You can change or withdraw your cookie consent at any time through our Cookie Settings.
5.8 Right to Lodge a Complaint with a Supervisory Authority (Article 77 GDPR)
You have the right to lodge a complaint with a data protection supervisory authority about our processing of your personal data.
Competent Supervisory Authority in Austria:
Austrian Data Protection Authority (Österreichische Datenschutzbehörde) Barichgasse 40-42 1030 Vienna Austria
Phone: +43 1 52 152-0 Email: [email protected] Website: https://www.dsb.gv.at
6. Data Security
We use the widely used SSL (Secure Socket Layer) method in connection with the highest level of encryption supported by your browser when you visit our website.
We employ appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties.
7. Updates and Changes to This Privacy Policy
This privacy policy is currently valid and was last updated in March 2026.
Due to the further development of our website and offerings, or due to changed legal or regulatory requirements, it may become necessary to modify this privacy policy.
8. Contact
If you have any questions about data protection, please feel free to contact us:
Christian Bernard Prohinig Email: [email protected] Phone: +43 678 783 5763
This privacy policy was created in accordance with the GDPR (EU General Data Protection Regulation), the Austrian Data Protection Act (DSG), and the Telecommunications Act (TKG) § 96.