Privacy Policy

Last updated: November 17, 2025

Thank you for your interest in the information on our website!

With the help of this privacy policy, we would like to inform all persons who use this website about the nature, scope, and purposes of the processing of personal data. Personal data in this context is all information with which you as a user of our website can be personally identified (theoretically, if necessary via detours or by linking various data), including your IP address. Information stored in cookies is generally not personal data, or only in exceptional cases; however, these are covered by a special regulation that makes the admissibility of the use of cookies – depending on their purpose – largely dependent on the active consent of the users.

In a general section in this privacy policy, we provide you with information on data protection that generally applies to our processing of data, including data collection on our website. In particular, you as the data subject will be informed about your rights.
We strive to provide this information in gender-neutral language. If individual formulations do not yet take this into account, we would like to point out that this information applies to all people of all genders.

The terms used in our privacy policy and our data protection practice are based on the provisions of the EU General Data Protection Regulation (“GDPR”) and other relevant national legal provisions.

Controller within the meaning of the GDPR

hsb austria gmbh
Registration number: 146985
Dr.-Scheiber-Straße 28
4870 Vöcklamarkt
Austria

E: office@hsb.eu
T: +4376282831

Data Protection Officer:
Mr. Arnold Redhammer

Data Protection Coordinator:
Mr. DI René Dolinsek

Data collection on our website

Personal data from you is collected on the one hand when you expressly communicate it to us, and on the other hand, data, in particular technical data, is automatically collected when you visit our website. Part of this data is collected to ensure the error-free functioning of our website. Other data can be used for analysis purposes. However, you can generally use our website without having to provide any personal information.

Technologies on our website

Cookies and Local Storage

We use cookies on our website to make our website more user-friendly and functional. Some cookies remain stored on your device.

Cookies are small data packets that are exchanged between your browser and our/the web server when you visit our website. These do not cause any damage and are only used to recognize the website visitors. Cookies can only store information that is supplied by your browser, i.e. information that you have entered into the browser yourself or that is present on the website. Cookies cannot execute code and cannot be used to access your device.

The information stored in cookies can subsequently be sent back to us (“first-party cookie”) or to a web application of the third-party provider to which the cookie belongs (“third-party cookie”) when you next visit our website with the same device. The stored and returned information enables the respective web application to recognize that you have already accessed and visited the website with the browser of your device.

Cookies contain the following information:

• Cookie Name
• Name of the server from which the cookie originally came
• Cookie ID number
• A date on which the cookie is automatically deleted

Depending on the purpose and function, we divide cookies into the following categories:

• Technically necessary cookies to ensure the technical operation and basic functions of our website. This type of cookie is used, for example, to maintain your settings while you navigate the website; or they can ensure that important information is retained throughout the session (e.g. login, shopping cart).
• Statistics cookies to understand how visitors interact with our website by collecting and analyzing information anonymously. This gives us valuable insights to optimize both the website and our products and services.
• Marketing cookies to place targeted advertising activities for users on our website.
• Unclassified cookies are cookies that we are currently trying to classify together with providers of individual cookies.

Depending on the storage period, we also divide cookies into session and permanent cookies. Session cookies store information that is used during your current browser session. These cookies are automatically deleted when you close the browser. No information remains on your device. Permanent cookies store information between two visits to the website. This information is used to recognize you as a returning visitor the next time you visit and the website responds accordingly. The lifespan of a permanent cookie is determined by the provider of the cookie.

The legal basis for the use of technically necessary cookies is based on our legitimate interest in the technically flawless operation and smooth functionality of our website. Our website cannot function properly without these cookies. The use of statistics and marketing cookies requires your consent. You can revoke your consent to the use of cookies at any time for the future. Consent is voluntary. If it is not granted, there are no disadvantages. Further information about the cookies actually used by us (in particular about their purpose and their storage period) can be found in this privacy policy and in the information about the cookies used by us in our cookie banner.

You can also set your internet browser so that the storage of cookies is generally prevented on your device or you are asked each time whether you agree to the setting of cookies. Once set cookies can be deleted at any time. You can find out how all this works in detail in the help function of your browser.

Please note that a general deactivation of cookies may lead to functional restrictions on our website.

We also use so-called local storage functions (also called “local storage”) on our website. Data is stored locally in your browser’s cache, which can continue to exist and be read even after the browser is closed – provided you do not delete the cache or it is session storage.

Third parties cannot access the data stored in local storage. If special plugins or tools use the local storage functions, this is described in the respective plugin or tool.

If you do not want plugins or tools to use local storage functions, you can control this in the settings of your respective browser. We would like to point out that this may lead to functional restrictions.

Google Analytics

Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, E-mail: support-de@google.com
Parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Purpose: Web analysis, performance measurement, conversion tracking, collection of statistical data
Category: Statistics
Recipient: EU, USA
Processed data: IP address, information about the website visit, user data
Affected: Website visitors
Technology: JavaScript call, cookies (details in the cookie list), fingerprinting, local storage
Legal basis: Consent (purpose)
Certifications: EU-U.S. Data Privacy Framework, Swiss-U.S. Data Privacy Framework, UK Extension to the EU-U.S. Data Privacy Framework
Further information:
https://policies.google.com/privacy
https://safety.google/intl/de/principles/
https://business.safety.google/privacy/
https://business.safety.google/adsprocessorterms/
Here you can find out where exactly Google data centers are located: https://www.google.com/about/datacenters/locations/

We use the functions of the web analysis service Google Analytics on our website to analyze usage behavior and to optimize our website. The reports provided by Google are used to analyze the performance of our website and to measure the success of possible campaigns via our website.

Google Analytics uses cookies that enable an analysis of the use of our website. All details (name, purpose, storage period) of the cookies can be found in our specific list of the cookies used.

Google Analytics can use local storage. This is an alternative to using cookies for storing the client ID. This makes it possible to track user behavior without setting cookies.

Information about the use of the website such as browser type/version, operating system used, the previously visited page, hostname of the accessing computer (IP address), time of the server request are usually transmitted to a Google server and stored there. We have concluded a contract with Google for this purpose.

On our behalf, Google will use this information to evaluate the use of our website, to compile reports on the activities within our website and to provide us with other services associated with the use of our website and internet use.

We only use Google Analytics with IP anonymization activated by default. This means that the IP address of a user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. According to Google, the IP address transmitted by a user’s browser as part of Google Analytics will not be linked to other Google data.

During the website visit, user behavior is recorded in the form of so-called events. These can represent the following:

• Page views, the click path of a user
• First visit to our website
• visited websites
• Start of a session
• Interaction with our website
• User behavior (e.g. clicks, scrolls, dwell time, bounce rates)
• File downloads
• seen / clicked ads
• Interaction with videos
• internal search queries

furthermore, the following is recorded:

• approximate location (region)
• Date and time of the visit
• IP address (in shortened form)
• technical information about the browser or the end devices used (e.g. language setting, screen resolution)
• Internet provider
• Referrer URL (via which website/advertising material a user came to our website)

The processing of this data is essentially carried out by Google for its own purposes such as profiling (without our possibilities of influence).

The data about the use of our website will be deleted immediately after the end of the retention period set by us. Google Analytics gives us a default of 2 months for the retention period of user and event data, with the maximum retention period being 14 months. This retention period also applies to conversion data. The following options are available for all other event data: 2 months, 14 months, 26 months (Google Analytics 360 only), 38 months (Google Analytics 360 only), 50 months (Google Analytics 360 only). We choose the shortest storage period that corresponds to our intended use. You can ask us at any time about the retention period currently set by us.

The deletion of data whose retention period has been reached takes place automatically once a month.

Supplementary details can be found in the linked further information. It is recommended to check these links regularly for changes, as Google Analytics may update its functions and privacy policies. Further information on rights and contact details can be found in the general part of this privacy policy.

Google Fonts

Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company Google LLC (USA), https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active
Purpose: Integration of fonts
Category: Statistics
Recipient: EU, USA (possible)
processed data: IP address, language settings, screen resolution, version and name of the browser
Affected: Website visitors
Technology: JavaScript call
Legal basis: Consent, Data Privacy Framework
Website: www.google.com
Further information: https://developers.google.com/fonts/faq https://policies.google.com/privacy https://www.google.com/about/datacenters/inside/locations/

Our website uses so-called web fonts, which are provided by Google, for the uniform display of fonts.

To display web fonts from Google, the browser you use must connect to Google’s servers. This gives Google knowledge that our website has been accessed via your IP address. The IP address of the browser of the visitor’s device is also stored by Google. If your browser does not support web fonts, a standard font from your device will be used.

Each Google Font request automatically transmits information such as language settings, screen resolution, version and name of the browser to Google servers in addition to the IP address. Google can in any case determine the popularity of fonts using the collected usage data. Google publishes the results on internal analysis pages (e.g. Google Analytics).

With Google Fonts, we can use fonts on our own website and do not have to upload them to our server. Google Fonts is an important component to keep the quality of our website high. All Google fonts are automatically optimized for the web, which saves data volume and is a great advantage especially when using mobile devices. When you visit us, the low file size ensures a fast loading time. Furthermore, Google Fonts are secure web fonts and support all common browsers.

Google stores requests for CSS assets on its servers for one day. This enables us to use the fonts with the help of a Google stylesheet. The font files are stored at Google for one year. To delete data prematurely, you must contact Google support ( https://support.google.com ).

Google Tag Manager

Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC (USA)
Purpose: Management of tools and plugins
Category: Technically Required
Recipient: EU, USA
processed data: IP address
Affected: Users
Technology: JavaScript call
Legal basis: Legitimate interest, Data Privacy Framework, https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active
Website: https://www.google.com
Further information:
https://policies.google.com/privacy
https://safety.google/intl/de/principles/
https://business.safety.google/adsprocessorterms/
Here you can find out where exactly Google data centers are located: https://www.google.com/about/datacenters/locations/

The Google Tag Manager service is used on our website.

The Tag Manager is a service that allows us to manage website tags via an interface. This allows us to incorporate code snippets such as tracking codes or conversion pixels on websites without interfering with the source code. The data is only forwarded by the Tag Manager, but not collected or stored. The Tag Manager itself is a cookie-less domain and does not process any personal data, as it is purely for the management of other services in our online offering.

When the Google Tag Manager is launched, the browser connects to Google’s servers. These are mainly located in the USA. This allows Google to know that our website has been accessed via a user’s IP address.

The Tag Manager ensures the resolution of other tags, which in turn may collect data. However, the Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, it will remain in place for all tracking tags implemented with the Tag Manager.

Hosting

As part of the hosting of our website, all data to be processed in connection with the operation of our website is stored. This is necessary to enable the operation of the website. We therefore process the data accordingly on the basis of our legitimate interest in optimising our website offering. To provide our online presence, we use services from web hosting providers to whom we make the above-mentioned data available within the framework of commissioned processing.

Contacting us

Various options are offered on our website for contacting us, such as via contact forms or provided e-mail addresses. In the context of contacting us, the personal data provided will be processed exclusively for the purpose of processing and responding to the respective enquiry. The processing takes place insofar as this is necessary for the implementation of pre-contractual measures or for the fulfilment of a contract, or on the basis of legitimate interests, such as the maintenance of customer relations or the documentation of processes.

The provision of certain data may be necessary in order to process an enquiry completely. Without this information, the enquiry may not be processed or may only be processed to a limited extent.

Personal data from contact enquiries may also be stored in a customer or prospective customer database on the basis of legitimate interests in order to optimise communication and support. Use for marketing purposes will only take place if separate consent has been obtained for this purpose or if there is a legitimate interest and no overriding interests of the data subject worthy of protection conflict with this.

Personal data from contact enquiries will only be stored for as long as this is necessary for the processing and handling of the enquiry or as long as statutory retention obligations exist. After the enquiry has been processed and any statutory deadlines have expired, the data will be deleted or anonymised. As a rule, the data will be deleted no later than three years after the last contact, provided that there are no longer statutory or contractual retention obligations.

Further information on the handling of personal data can be found in the website’s privacy policy.

Server log files

For technical reasons, in particular to ensure a functional and secure website, we process technically necessary data about accesses to our website in so-called server log files, which your browser automatically transmits to us.

The access data that we process includes:

• Name of the website accessed
• Browser type used, including version
• Operating system used by visitors
• The previously visited page of the visitors (referrer URL)
• Time of the server request
• Amount of data transferred
• Hostname of the accessing computer (IP address used)

This data is not assigned to natural persons and is only used for statistical evaluations as well as for the operation and improvement of our website and for the security and optimisation of our Internet offering. This data is only transmitted to our website host. This data is not connected or merged with other data sources. If there is a suspicion of illegal use of our website, we reserve the right to check this data retrospectively. The data processing is based on our legitimate interest in the technically error-free presentation and optimisation of our website.

The access data will be deleted again shortly after the purpose has been fulfilled, usually after a few days, unless further storage is required for evidentiary purposes. Otherwise, the data will be stored until the incident has been finally clarified.

SSL encryption

We use the widespread SSL (Secure Socket Layer) method in connection with the highest encryption level supported by your browser for your visit to our website. You can recognise whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the status bar of your browser. The use of this method is based on our legitimate interest in the use of suitable encryption technologies.

In addition, we use suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments and kept up to date with the state of the art.

Webcare

Provider: DataReporter GmbH, Zeileisstraße 6, 4600 Wels, Austria
Purpose: Consent Management
Category: technically required
Recipient: EU, AT
Processed data: IP address, consent data
Affected: Users
Technology: JavaScript call, cookies, Swarmcrawler
Legal basis: Legitimate interest, consent (Swarmcrawler for evaluating search results)
Website: https://www.datareporter.eu/
Further information: https://www.datareporter.eu/company/info

We use the Webcare tool for consent management on our website. Webcare collects and stores the decision of the respective users of our website. Our consent banner ensures that statistical and marketing technologies such as cookies or external tools are only set or started when the user has given their express consent to their use.

We store information on the extent to which the user has confirmed the use of cookies. The user’s decision can be revoked at any time by accessing the cookie settings and managing the declaration of consent. Existing cookies are deleted after revocation of consent. A cookie is also set to store the information about the status of the user’s consent, which is referred to in the cookie details. Furthermore, the IP address of the respective user is transmitted to DataReporter’s servers when this service is called up. The IP address is neither stored nor linked to any other data of the user; it is only used for the correct execution of the service.

With the help of Webcare, our website is regularly checked for technologies relevant to data protection. This check is only carried out for those users who have expressly given their consent (for statistical or marketing purposes). The search results of the users are evaluated by Webcare in anonymised form and only in relation to technologies and used for the fulfilment of our information obligations. To start the Swarmcrawler technology, a request is sent to our servers and the IP address of the user is transmitted for the purpose of data transmission. Servers are selected that are geographically close to the respective location of the user. It can be assumed that for users within the EU, a server located within the EU will also be selected. The IP address of the user is not stored and is removed immediately after the end of the communication.

General information on data protection

The following provisions apply in principle not only to data collection on our website, but also generally to the other processing of personal data.

Personal data

Personal data is information that can be individually assigned to you. Examples of this include your address, your name and your postal address, e-mail address or telephone number. Information such as the number of users who visit a website is not personal data because it does not allow assignment to a single person.

Legal bases for the processing of personal data

Unless more specific information is provided in this privacy policy (e.g. for the technologies used), we may process your personal data on the basis of the following legal bases:

• Consent in accordance with Art. 6 para. 1 lit. a GDPR – the data subject has given their consent to the processing of their personal data for one or more specific purposes.
• Fulfilment of a contract and pre-contractual measures in accordance with Art. 6 para. 1 lit. b GDPR – The processing is necessary for the fulfilment of a contract to which the data subject is a party or for the implementation of pre-contractual measures.
• Legal obligation in accordance with Art. 6 para. 1 lit. c GDPR – The processing is necessary to fulfil a legal obligation.
• Protection of vital interests in accordance with Art. 6 para. 1 lit. d GDPR – The processing is necessary to protect the vital interests of the data subject or another natural person.
• Legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR – The processing is necessary to protect the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject override this.

Please note that in addition to the provisions of the GDPR, the national data protection regulations in your or our home country may apply.

Transfer of personal data

Your personal data will not be transferred to third parties for purposes other than those listed in this privacy policy.

We will only pass on your personal data to third parties if:

• You have given your express consent to this in accordance with Art. 6 para. 1 lit. a GDPR,
• the disclosure is necessary in accordance with Art. 6 para. 1 lit. f GDPR to protect the legitimate interests and to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
• there is a legal obligation for the disclosure in accordance with Art. 6 para. 1 lit. c GDPR, and this is legally permissible and / or
• it is necessary in accordance with Art. 6 para. 1 lit. b GDPR for the processing of contractual relationships with you.

Cooperation with processors

We carefully select our service providers who process personal data on our behalf. If we commission third parties with the processing of personal data on the basis of a data processing agreement, this is done in accordance with Art. 28 GDPR.

Transfer to third countries

If we process data in a third country or if this occurs in the context of the use of third-party services or disclosure or transfer of data to other persons or companies, this only takes place on the basis of the legal bases for the transfer of data presented above.

Subject to express consent or contractual necessity, we will only process or have the data processed in accordance with Art. 44-49 GDPR in third countries with a level of data protection recognised as adequate or on the basis of special guarantees, such as a contractual obligation through so-called standard contractual clauses of the EU Commission, the existence of certifications or binding internal data protection regulations.

Data transfer to the USA

We would like to expressly point out that on 10 July 2023, the EU Commission issued an adequacy decision on the EU-US Data Privacy Framework in accordance with Art. 45 para. 1 GDPR (Data Privacy Framework). Accordingly, organisations or companies (as data importers) in the USA that are registered in a public list as part of the self-certification of the Data Privacy Framework offer an adequate level of protection for data transfers. Whether the specific provider of a service is already certified can be found here: https://www.dataprivacyframework.gov/s/participant-search

The Data Privacy Framework is a valid legal basis for the transfer of personal data to the USA. This creates binding guarantees to take account of all the requirements of the ECJ; for example, it is provided that the access of US intelligence services to EU data is limited to a necessary and proportionate extent and that a court is created to review data protection, to which individuals in the EU also have access.

If a data transfer by us to the USA takes place at all or a service provider based in the USA is used by us, we refer to this explicitly in this privacy policy (see in particular the description of the technologies on our website).

It should be noted that, apart from significant improvements, the Data Privacy Framework only applies partially and only to data transfers to those data importers in the USA who appear in the public list of certified organisations / companies.

What can the transfer of personal data to the USA mean for you as a user and what risks exist in this context?

Risks for you as a user, insofar as data importers in the USA are affected who do not fall under the Data Privacy Framework, are in any case the powers of the US intelligence services and the legal situation in the USA, which, in the opinion of the ECJ, no longer ensure an adequate level of data protection. Among other things, these are the following points:

• Section 702 of the Foreign Intelligence Surveillance Act (FISA) does not provide for any restrictions on the surveillance measures of the intelligence services and no guarantees for non-US citizens.
• Presidential Policy Directive 28 (PPD-28) does not give data subjects effective legal remedies against measures taken by US authorities and does not provide for any restrictions on ensuring proportionate measures.
• the ombudsman’s office provided for in the Privacy Shield does not have sufficient independence from the executive; it cannot issue binding orders to the intelligence services.

Legally compliant transfer of data to the USA on the basis of standard contractual clauses for data importers who do not fall under the Data Privacy Framework?

In June 2021, the European Commission adopted new standard contractual clauses (SCC) with Decision 2021/914/EU. These create a new legal basis for data transfers where the same level of data protection does not prevail as in the EU.

Legally compliant transfer of data to the USA on the basis of consent?

If a data transfer to a service provider based in the USA takes place that does not fall under the Data Privacy Framework and this data transfer is based on express consent, we will inform you about this explicitly in this privacy policy, in particular in the description of the technologies used on our website.

What measures do we take to ensure that data is transferred to the USA in a legally compliant manner?

If US providers offer the option, we select the processing of data on EU servers. This should technically ensure that the data is located within the European Union and that access by US authorities is not possible.

Storage period in general

Unless an express storage period is specified when collecting data (e.g. as part of a declaration of consent), we are obliged in accordance with Art. 5 para. 1 lit. e GDPR to delete personal data as soon as the purpose of its processing no longer exists. In this context, we would like to point out that statutory retention obligations to which we are subject constitute a legitimate purpose for the further processing of the personal data covered by them.

Data will generally be stored and retained by us in personal form until the end of a business relationship or until the expiry of applicable guarantee, warranty or limitation periods, beyond that until the end of any legal disputes in which the data is required as evidence, or in any case until the expiry of the third year after the last contact with a business partner.

Storage period in particular

In the description of individual technologies on our website, you will find specific information on the storage period of data. In our cookie table, you will be informed about the storage period of individual cookies. In addition, you always have the option of directly requesting the specific storage period of data from us. To do so, please contact the contact details listed in this privacy policy.

Rights of data subjects

Data subjects have the right:

• (i) pursuant to Art. 15 GDPR, to request information about your personal data processed by us. In particular, you may request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of appeal, the origin of your data, if it has not been collected from us, and the existence of automated decision-making, including profiling and, where applicable, meaningful information on its details;
• (ii) pursuant to Art. 16 GDPR, to demand the immediate correction of incorrect personal data or the completion of your personal data stored by us;
• (iii) pursuant to Art. 17 GDPR, to demand the erasure of your personal data stored by us under certain circumstances, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;
• (iv) pursuant to Art. 18 GDPR, to demand the (temporary) restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you refuse its erasure, we no longer need the data, but you need it to assert, exercise or defend legal claims or you have objected to the processing pursuant to Art. 21 GDPR;
• (v) pursuant to Art. 20 GDPR, to receive from us your personal data that you have provided to us in a structured, common and machine-readable format or to request its direct transfer to another controller; However, this only covers those of your personal data that we process with the help of automated procedures after your consent or on the basis of a contract;
• (vi) pursuant to Art. 21 GDPR, if your personal data are processed on the basis of our legitimate interest, to object to the processing of your personal data, provided that there are reasons for this arising from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which is implemented by us without stating a particular situation;
• (vii) pursuant to Art. 7 para. 3 GDPR to withdraw your consent once given to us at any time. As a result, we may no longer continue the data processing based on this consent in the future. Among other things, you have the option of withdrawing your consent to the use of cookies on our website with effect for the future by calling up our cookie settings;
• (viii) pursuant to Art. 77 GDPR to complain to a supervisory authority regarding the unlawful processing of your data by us. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.

The competent supervisory authority for hsb austria gmbh is:

Austrian Data Protection Authority
Barichgasse 40-42, 1030 Vienna, Austria
Tel.: +43 1 52 152-0, dsb@dsb.gv.at

Assertion of data subject rights

You yourself decide on the use of your personal data. Therefore, should you wish to exercise any of your above-mentioned rights against us, you are welcome to contact us by e-mail at office@hsb.eu or by post, as well as by telephone.

Please support us in specifying your request by answering questions from our responsible employee regarding the specific processing of your personal data. In case of justified doubts about your identity, a copy of your identity card may be requested by us.

For questions about data protection, you can reach us at office@hsb.eu or at the other contact details listed in this privacy policy.

Vöcklamarkt, on November 17, 2025