The alpha+ Non-profit foundation of the Austrian Science Fund FWF (hereinafter referred to as alpha+) is pleased that you are visiting our website. Data protection and data security when using our website are very important to us. We would therefore like to inform you about the personal data we collect during your visit to our website and about the intended purposes.
The controller according to the EU General Data Protection Regulation (hereinafter referred to as GDPR) and other national data protection acts of the Member States, as well as other data protection regulations, is:
Alpha+ non-profit foundation of the Austrian Science Fund FWF (alpha+)
Haus der Forschung
Tel: +43-1-505 67 40-0
Personal data are all information relating to an identified or identifiable natural person. This includes information such as your name, age, address, telephone number, date of birth, email address, IP address, or user behaviour. Information that cannot (or only with disproportionate effort) be referred to your person, e.g., by anonymising the information, is not personal data. The processing of personal data (e.g., the collection, retrieval, use, storage, or transmission) always requires a legal basis or your consent.
Processed personal data will be deleted as soon as the purpose of the processing has been fulfilled and no legally prescribed retention obligations are to be observed.
In case we process your personal data for the provision of certain offers, please find below information about the specific processes, the scope and purpose of data processing, the legal basis for processing, and the respective storage period.
Provision and use of our website
a. Description and scope of data processing
When you access and use our website, we collect the personal data that your browser automatically transmits to our server. This information is temporarily stored in a log file. When you use our website, we collect the following data, which are technically necessary for us to display our website to you and to guarantee stability and security:
b. Legal basis
Art. 6 para. 1 point f GDPR serves as the legal basis for the aforementioned data processing. The processing of the mentioned data is necessary for the provision of our website and thus serves the protection of a legitimate interest of our company.
c. Storage time
As soon as the mentioned data for the display of our website are no longer necessary, they will be deleted. The collection of data for the provision of our website and the storage of data in log files is absolutely necessary for the operation of our website. Consequently, there is no possibility of objection on the part of the user. Further storage may take place in individual cases if this is required by law.
We only share your personal data with third parties if:
We use tracking and analysis tools to ensure continuous optimisation and needs-based design of our website. With the aid of tracking measures, it is also possible for us to statistically record visitors’ use of our website and further develop our online offer for you with the help of the information we obtain from this. On the basis of these interests, the use of the tracking and analysis tools described below is justified in accordance with Art. 6 para. 1 sentence 1 point f GDPR. The following description of the tracking and analysis tools also provides information on the purposes of the processing concerned and the data that are processed.
After being processed and before being stored, the IP address is anonymised. However, we want to emphasise that despite the fully activated anonymisation function, total anonymisation cannot be achieved—only pseudonymisation. During use, Matomo creates an internal hash value, which is generated from various factors such as the IP address, resolution, browser, the plugins used, and the operating system. Even with the anonymisation function activated, this heuristic uses the full IP address for internal purposes so, with some effort, it is possible to convert the values back to the IP address and thus reliably determine the other information.
Our website contains hyperlinks to websites of other providers. When you activate these hyperlinks, you will be redirected from our website directly to the other providers’ website. You can recognise this, for example, by the change in the URL. We cannot accept any responsibility for the confidential handling of your data on these third-party websites, as we have no influence on whether these companies comply with data protection regulations. Please inform yourself about the handling of your personal data by these companies directly on their websites.
Under the GDPR, you, as the data subject of the processing of personal data, have the following rights:
When processing your personal data on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 point f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 insofar as there are reasons which arise from your particular situation or if the objection refers to direct marketing. In the case of direct marketing, you have a general right to objection, which we will implement without you needing to specify any particular situation.
We are committed to protecting your privacy and treating your personal data confidentially. In order to avoid manipulation, loss, or misuse of your data stored by us, we take extensive technical and organisational security precautions that are regularly reviewed and adapted to technological progress. This includes, among other things, the use of recognised encryption methods (transport-layer security or TLS). However, we would like to point out that due to the structure of the Internet, it is possible that the rules of data protection and the above-mentioned security measures may not be observed by other persons or institutions for which we are not responsible. In particular, unencrypted data—e.g., if this is done by email—can be read by third parties. We have no technical influence on this. It is the responsibility of the user to protect the data provided by him/her against misuse by encryption or in any other way.