Privacy Policy

    Data protection information according to GDPR

    Data Controller (Verantwortlicher)

    Smooth Flow Tech e.U.

    Owner: Hadi Alhlow
    Address: Horn, Austria
    Email: office@smoothflowtech.com
    Phone: +43 (0)676 762 2871
    Business Registration: Firmenbuchnummer 653808h

    Information We Collect

    We collect information you provide directly to us, such as when you create an account, contact us, or use our services. This may include:

    • Personal identification information (name, email address, phone number)
    • Company information (if provided)
    • Communication content (messages, inquiries)
    • Technical data (IP address, browser type, operating system, access times)
    • Usage data (pages visited, time spent on site, referral sources)

    This data collection is based on Article 6(1) GDPR and serves our legitimate business interests in providing and improving our services.

    Legal Basis for Processing (GDPR Article 6)

    Under the General Data Protection Regulation (EU) 2016/679, we process your personal data based on:

    • Consent (Art. 6(1)(a) GDPR): When you explicitly agree to processing
    • Contract performance (Art. 6(1)(b) GDPR): To fulfill contractual obligations
    • Legal obligation (Art. 6(1)(c) GDPR): To comply with Austrian and EU law
    • Legitimate interests (Art. 6(1)(f) GDPR): For business operations and service improvement

    Purposes of Processing

    • Providing and maintaining our IT services and consultancy
    • Processing and responding to your inquiries and requests
    • Contract management and invoicing
    • Website analytics and performance optimization
    • Compliance with legal and regulatory obligations
    • Protection against fraud and abuse

    Data Sharing and Recipients

    We do not sell your personal data. We may share your information with:

    • Service Providers: Third-party processors bound by data protection agreements (hosting, email services)
    • Legal Authorities: When required by Austrian or EU law
    • Business Partners: Only with your explicit consent for specific projects

    All data transfers to third countries comply with GDPR Chapter V requirements, including adequacy decisions or appropriate safeguards (Standard Contractual Clauses).

    Data Security

    We implement technical and organizational measures according to Article 32 GDPR, including: encryption, access controls, regular security assessments, and staff training. We follow Austrian data protection standards (Datenschutz-Grundverordnung Durchführungsgesetz - DSGVO-DG).

    Your Rights Under GDPR

    You have the following rights regarding your personal data:

    Access and Control

    • Access (Art. 15 GDPR): Right to obtain information about processing
    • Rectification (Art. 16 GDPR): Right to correct inaccurate data
    • Erasure (Art. 17 GDPR): Right to deletion ("right to be forgotten")
    • Restriction (Art. 18 GDPR): Right to limit processing

    Data Portability and Objection

    • Data Portability (Art. 20 GDPR): Right to receive data in structured format
    • Objection (Art. 21 GDPR): Right to object to processing
    • Withdraw Consent (Art. 7(3) GDPR): Right to revoke consent

    How to Exercise Your Rights

    To exercise any of these rights, contact us at office@smoothflowtech.com. We will respond within one month as required by Article 12 GDPR.

    Data Retention Periods

    We retain personal data only as long as necessary for the stated purposes:

    • Contact inquiries: 3 years from last contact
    • Contract data: 7 years (Austrian Commercial Code - UGB § 212)
    • Website analytics: 26 months maximum
    • Marketing communications: Until consent is withdrawn

    Cookies and Tracking

    Our website uses technically necessary cookies and may use analytics cookies with your consent. You can manage cookie preferences in your browser settings. We comply with the ePrivacy Directive and Austrian Telecommunications Act (TKG).

    International Data Transfers

    Any transfer of personal data to third countries or international organizations is conducted in accordance with Chapter V of the GDPR, ensuring adequate level of protection through adequacy decisions or appropriate safeguards.

    Supervisory Authority

    You have the right to lodge a complaint with the competent supervisory authority:

    Austrian Data Protection Authority (Datenschutzbehörde)

    Barichgasse 40-42, 1030 Vienna, Austria
    Phone: +43 1 52 152-0
    Email: dsb@dsb.gv.at
    Website: https://www.dsb.gv.at

    Data Protection Officer

    As a small enterprise under Austrian law, we are not required to appoint a Data Protection Officer. For all data protection matters, please contact us directly at the information provided above.

    Contact Us

    For questions about this Privacy Policy or to exercise your rights:

    Smooth Flow Tech e.U.

    Hadi Alhlow
    Horn, Austria
    Email: office@smoothflowtech.com
    Phone: +43 (0)676 762 2871

    Changes to This Privacy Policy

    We may update this Privacy Policy to reflect changes in our practices or applicable law. We will notify you of significant changes via email or website notice.