1 General and Legal Basis

Thank you for your interest in the Evercyte GmbH website. The issue of data protection and confidentiality is a topic we take very seriously and we follow the applicable national and European data protection regulations.

All our staff and all third parties involved in data processing are subject to commitments under the Federal Act concerning the Protection of Personal Data (DSG 2000, EU General Data Protection Regulation, DSG 2018) and are obliged to confidentiality in the use of personal data. Our data protection measures are continually updated, reflecting technical developments.

Evercyte uses technical and organizational security measures to protect the stored personal data against accidental or intentional manipulation, loss or destruction and against access by unauthorized persons.

The EU General Data Protection Regulation, the Data Protection Act 2000 and the Data Protection Amendment Act 2018 stipulate the right to protection of personal data. We process your data exclusively on the basis of legal regulations (GDPR, DSG 2018).

With this statement on data protection measures, we would therefore like to provide you with information on the kind of data which we – that is, Evercyte GmbH (hereinafter referred to as “Evercyte”) – may wish to save and how we use such data.

Should you object to the acquisition, processing or utilization of your data by Evercyte in keeping with the stipulations of these data-protection provisions, whether entirely or for individual measures, you can send your objection per e-mail or by letter again using the mentioned contact options below.

E-Mail:

office@evercyte.com

Address:

Evercyte GmbH

Leberstraße 20

1110 Vienna

2 Website

2.1 Provision of the Website and Creation of Log Files

2.1.1 Description and Scope of Data Processing

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer. The following data is collected:

• Information about the browser type and the version used

• The user’s operating system

• The user’s Internet service provider

• The user’s IP address

• Date and time of access

• Websites that are accessed by the user’s system via our website

A storage of this data together with other personal data of the user does not take place.

2.1.2 Purpose of Data Processing

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user’s computer. To do this, the user’s IP address must remain stored for the duration of the session.

The log files are saved to ensure the functionality of the website. We also use the data to optimize the website and to ensure the security of our information technology systems. The data is not evaluated for marketing purposes in this context.

2.1.3 Legal Basis for Data Processing

The legal basis for the temporary storage of the data is Art 6 para 1 lit f GDPR (legitimate interests).

2.1.4 Duration of Storage

The data from the log files will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. Your data will be kept for the duration of a maximum of two (2) months.

2.2 Contact Form / Email Contact

2.2.1 Description and Scope of Data Processing

When you contact us via the options made available (e.g. contact form, telephone, e-mail or social media), your information will be processed and stored by us or our Service Provider to answer your inquiry. Your data will not be collected or shared without your consent.

2.2.2 Purpose of Data Processing

We handle your data to fulfill (pre-) agreed obligations or because of our legitimate interest in processing and answering inquiries from customers, interested parties and partners.

2.2.3 Legal Basis for Data Processing

The statutory basis for the processing of the data is Art 6 para 1 lit a GDPR (consent) as well as Art 6 para 1 lit f GDPR (legitimate interests).

2.2.4 Duration of Storage

Your data will be kept for the duration of the handling process depending on the occurrence.

2.3 Application Process

2.3.1 Description and Scope of Data Processing

We process data received from you during the application process. This includes data such as your name, address, contact data (e-mail address, phone number), date of birth, résumé, letter of motivation, credentials.

2.3.2 Purpose of Data Processing

A processing of your data takes place for the purpose of the storage, evaluation, allocation, and transmission of your application.

2.3.3 Legal Basis for Date Processing

The legal basis for the temporary storage of the data is Art 6 para 1 lit f GDPR (legitimate interests).

2.3.4 Duration of Storage

If your application is rejected, your data will be stored for currently seven (7) months from the rejection. After this period of time, your data will be deleted.

If your application was successful and you are offered an application interview, your data will be deleted after currently three (3) years.

If you are offered a position at Evercyte the necessary data will be adopted into the applicable system. In this case, you will receive a separate data protection notice.

2.4 Newsletter

2.4.1 Description and Scope of Data Processing

You can sign up for our newsletter on the website using the double-opt-in procedure. After registration, you will receive an e-mail requesting confirmation of your registration. You can unsubscribe or change your subscription preferences anytime. You agree that your personal data will be stored and processed by Evercyte GmbH, Leberstraße 20, 1110 Vienna, for the purpose of sending promotional newsletters. This consent can be revoked at any time by writing to Evercyte GmbH, Leberstraße 20, 1110 Vienna or by e-mail to office@evercyte.com.

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. The user’s email address is therefore stored for as long as the subscription to the newsletter is active.

2.4.2 Use of an External Mailing Service Provider

For sending and managing our newsletters we use processors. These have committed themselves to comply with the applicable data protection regulations. A Data Processing Agreement (according to Article 28 with MailChimp) was concluded. The newsletter is sent using “MailChimp”, a newsletter delivery platform from the US provider The Rocket Science Group, LLC, 675 Ponce De Leon Ave NE # 5000, Atlanta, GA 30308, USA.

The email addresses of our newsletter recipients, as well as their other data described in this notice, are stored on MailChimp’s servers in the USA. MailChimp uses this information to send and evaluate the newsletter on our behalf. According to its own information, MailChimp can also use this data to optimize or improve its own services, e.g. for the technical optimization of the dispatch and presentation of the newsletter or for economic purposes to determine from which countries the recipients come. However, MailChimp does not use the data of our newsletter recipients to write to them themselves or to pass the data on to third parties.

We trust in the reliability and IT and data security of MailChimp. We have concluded a “data processing agreement” with MailChimp. This is a contract in which MailChimp undertakes to protect the data of our users, to process it in accordance with its data protection regulations on our behalf and, in particular, not to pass it on to third parties. You can find more information on MailChimp’s use of cookies at https://mailchimp.com/legal/cookies/, and you can learn more about data protection at MailChimp (Privacy) at https://mailchimp.com/legal/privacy/.

2.4.3 Purpose of Data Processing

The collection of the user’s email address serves to deliver the newsletter.

2.4.4 Legal Basis

The data processing takes place on the basis of the legal regulations of Art 6 para 1 lit a GDPR (consent), as well as Art 6 para 1 lit b (the necessity of the contract fulfillment).

2.4.5 Duration of Storage

Generally, the data stays permanently saved on MailChimp’s servers and is deleted only when you request it. You can have your contact information with us deleted. This permanently removes all your personal data for us and anonymizes you in MailChimp’s reports. However, you can also request the deletion of your data permanently at MailChimp. Then all your data are removed from there and we receive a notification from MailChimp. After we receive the email, we have thirty (30) days to delete your contact from all integrations.

2.4.6 Objection and Removal Possibility

Subscription to the newsletter may be terminated at any time by the user concerned. For this purpose, there is a corresponding link in each newsletter.

2.5 Online Shopping

2.5.1 General

For the fulfillment of the agreement concluded with us, we need to store company-related data. In addition, we have two subcontractors that we use in the execution of the online store, as well as payment options, as explained in sections 2.5.5 and 2.5.6.

2.5.1.1 Purpose of Data Processing

We handle your data to fulfill (pre-)agreed obligations.

2.5.1.2 Legal Basis for Date Processing

The legal basis for the temporary storage of the data is Art 6 para 1 lit b (the necessity of the contract fulfillment).

2.5.1.3 Duration of Storage

In the case of an agreement conclusion, all data from the agreed relationship are stored until the end of product liability (currently ten (10) years).

2.5.2 Unzer E-Com GmbH

2.5.2.1 Description and Scope of Data Processing

A transmission of the data shall be made to external service providers for the purpose of debiting of the purchase price, to the transport company for the purpose of the delivery of the goods and to our tax adviser for the purpose the fulfillment of our tax obligations. These have committed themselves to comply with the applicable data protection regulations. The data passed on to our service providers in this context may only be used by them for fulfilling their duties. These Service Provider have committed themselves to comply with the applicable data protection regulations. A Data Processing Agreement (according to Article 28 of the GDPR) was concluded with Unzer E-Com GmbH.

2.5.2.2 Purpose of Data Processing

For the purpose of online purchasing and for subsequent agreement processing in the context of cookies, the IP data of the purchaser are stored, as well as name, address and credit card number. The data provided are required to fulfill the agreement and/or to carry out pre-agreed measures. Without this data we cannot conclude the agreement. The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user’s computer. To do this, the user’s IP address must remain stored for the duration of the session. The log files are saved to ensure the functionality of the website. We also use the data to optimize the website and to ensure the security of our information technology systems. The data is not evaluated for marketing purposes in this context.

2.5.2.3 Legal Basis for Data Processing

Our legitimate interest in data processing according to Art 6 para 1 lit f GDPR (legitimate interests).

The data processing takes place on the basis of the legal regulations of the Art 6 para 1 lit a GDPR (consent) as well as Art 6 para 1 lit b (the necessity of the contract fulfillment).

2.5.2.4 Duration of Storage

Unzer E-Com GmbH stores your data depending on the duration of data processing. If the processing of your personal data is based on a granted consent, the personal data will be deleted as soon as you have revoked this consent for the future, unless their – temporary – further processing is necessary for the following purposes:

• Fulfillment of legal storage obligations, which may arise, for example, from the Business Code and the Federal Fiscal Code. The periods specified there for storage or documentation are up to ten years.

• Preservation of evidence within the framework of the legal statute of limitations.

2.5.2.5 Data Protection

If you object the data storage, Unzer E-Com GmbH will no longer process your personal data unless they can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. The objection can be made form-free and should preferably be addressed to:

Payolution GmbH, Am Euro Platz 2, 1120 Vienna, support@unzer.com

2.5.3 WooCommerce Privacy Policy

2.5.3.1 Description and Scope of Data Processing

We have integrated WooCommerce (an open-source shop system) to our website as a plugin. WooCommerce is a subsidiary company of Automattic Inc. (60 29th Street #343, San Francisco, CA 94110, USA).

WooCommerce/Automattic collects user information when you enter into a text field on our website, such as email address, name, address, credit card or billing information

WooCommerce also sets a cookie in your browser to identify you as a user and serve interest-based ads.

2.5.3.2 Purpose of Data Processing

We use WooCommerce on our website in order to offer our products in the most user-friendly way. The purpose is to improve the shopping experience and simplify order processing.

2.5.3.3 Legal Basis for Data Processing

The data processing takes place on the basis of the legal regulations of Art 6 para 1 lit a GDPR (consent).

2.5.3.4 Duration of Storage

WooCommerce will delete your data if it is no longer needed for the purposes it was saved for. Server log files for example, the technical data for your browser and your IP address will be deleted after about thirty (30) days. The data is stored on Automattic’s American servers.

2.5.3.5 Data Protection

You can also manage, delete or deactivate cookies individually in your browser. However, please note that deactivated or deleted cookies may have a negative impact on the functions of our WooCommerce online shop. Depending on the browser you use, managing cookies differs slightly see under section 3.4.

3 Cookies, other Tracking Tools and Web Analytics

3.1 Description and Scope of Data Processing

By using our website, you consent to our use of cookies. You can refuse to accept cookies in your browser settings. How this works in detail, please refer to the instructions of your browser manufacturer. If you decide against certain technical and / or functional cookies, the functionality of our website may be restricted. Some cookies remain stored on your device until you delete them.

3.2 Use of Cookies

Cookies are small text files that are stored in the visitor’s local browser cache. Using such cookies it is possible to recognize the visitor’s browser in order to optimize the website and simplify its use and are more user-friendly, effective and secure overall. This type of storage helps Evercyte to design our websites and our offers for you and makes it easier for you to use them in that, for example, certain input from you can be stored so that you are not required to enter this repeatedly. Data collected via cookies will not be used to determine the personal identity of the website visitor. Most browsers are set-up to accept these cookies automatically. In addition, you can deactivate the storing of cookies or adjust your browser to inform you before the cookie is stored on your computer. Because cookies allow you to take advantage of some of Evercyte’s features, we recommend that you leave them turned on. For instance, if you block or otherwise reject our cookies, you will not be able to add items to your shopping cart or proceed to checkout.

3.3 Third-Party Cookies

These are cookies set on your machine by external websites whose services are used on this website. Cookies of this type are the sharing buttons across the site that allow visitors to share content onto social networks. Cookies are currently set as described in this Privacy Policy. You should be aware that these sites are likely to be collecting information about what you are doing all around the internet, including on this website.

3.4 Managing Cookies

You can disable all cookies that we use on our website by following these links in your browser. However, please note that deactivated or deleted cookies may have a negative impact on the functions of our website.

You may choose not to allow third- party cookies on your computer by visiting the Network Advertising Initiative opt-out page.

Please see the list below for a summary on how to manage your cookie settings.

Chrome: Cookie settings in Chrome are managed under Cookies within the Privacy section. You can delete specific cookies or clear all cookies and choose to allow or block cookies. Go to Clear, enable and manage cookies in Chrome for more information on these settings.

Internet Explorer: Cookie settings in Internet Explorer are managed by going to the Internet Options on the Tools menu, and then clicking the Privacy tab. The Privacy settings slider has six settings: Block All Cookies, High, Medium High, Medium (default level), Low, and Accept All Cookies. Visit How to Manage Cookies for more information on these settings.

Firefox: Cookie settings in Firefox are managed in the Options window’s Privacy panel. You can change your Firefox settings to allow you to approve or deny cookie storage requests, delete stored cookies automatically when you close Firefox, etc. See Settings for privacy, browsing history and do-not-track for more information on these settings.

If you would like more information about cookies, or how to control or delete them, then we recommend you visit www.aboutcookies.org for detailed guidance.

3.5 ReCaptcha for WooCommerce by i13 WebSolution

3.5.1 Description and Scope of Data Processing

ReCAPTCHA for WooCommerce by i13 WebSolution extension allows you to add reCaptcha to our website. With increased spam and hacking attempts, reCaptcha works as a security gateway and blocks bot traffic from login attempts, checkouts, password resets, spam comments.

ReCaptcha stores data, such as the IP address. The IP address is only linked to other personal data if you are logged in with your Google account when visiting the website. ReCaptcha also checks whether other Google cookies have been set in the browser and produces a screenshot of the browser window. Other data such as the date, language setting, screen resolution, information about the operating system, mouse and keyboard behavior, Javascript objects may also be stored by reCaptcha.

3.5.2 Purpose of Data Processing

ReCAPTCHA for WooCommerce by i13 WebSolution makes it possible to keep bots or spam software of all kinds away from the website, so that we are protected from them. Without reCAPTCHA it could e.g. happen that a bot would register as many email addresses as possible when registering, in order to subsequently “spam” forums or blogs with unwanted advertising content. With reCAPTCHA we can avoid such bot attacks.

3.5.3 Legal basis

The legal basis for this is Art 6 para 1 lit f GDPR (legitimate interests). Our legitimate interest follows from protecting our website from bot attacks.

3.5.4 Duration of Storage

To learn more about data protection, contact i13 Web Solution.

3.6 WP Statistics Privacy Policy

3.6.1 Description and Scope of Data Processing

We use WP Statistics on our website from Veronalabs (5460 W Main St, Verona, NY 13478, United States). WP Statistics does not set any cookies and the collected data are only used to generate anonymized statistics on the use of our website. WP Statistics also anonymizes your IP address. You cannot be identified as a person. WP Statistics collects visitor data when your web browser connects to our web server. These data are then stored in our server’s database. Your data will not be passed on or sold.

3.6.2 Purpose of Data Processing

WP Statistics helps Evercyte to continuously improve our website and make it even more interesting for you.

3.6.3 Legal basis

The use of WP Statistics requires your consent, which we obtained via our cookie popup. According to Art 6 para 1 lit a GDPR (consent), this consent represents the legal basis for personal data processing, such as when it is collected by web analytics tools.

In addition to consent, we have legitimate interest in analyzing the behavior of website visitors and thus technically and economically improving our offer. With the help of WP Statistics, we can recognize website errors, identify attacks and improve profitability. The legal basis for this is Art 6 para 1 lit f GDPR (legitimate interests). Nevertheless, we only use WP Statistics if you have given Evercyte your consent.

If you want to learn more about WP Analytics, you can view the company’s privacy policy at https://wp-statistics.com/privacy-and-policy/.

3.6.4 Duration of Storage

All data is retained locally on our web server. Your data will be stored on our web server until it is no longer needed for the purposes listed above.

3.7 Google Ads Conversion Tracking Privacy Policy

3.7.1 Description and Scope of Data Processing

We use Google Ads on our website of Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”) on our website. Google Ads sets a cookie “Conversion” when clicking on a Google Ads ad, with which user data can be collected. The name, user actions are stored. This allows Google Ads to analyse user actions.

3.7.2 Purpose of Data Processing

We use Google Ads (previously Google AdWords) as an online marketing measure, to advertise our products and services. Thus, we want to draw more people’s attention on the internet to the high quality of our offers.

3.7.3 Legal Basis

The legal basis for this is Art 6 para 1 lit f GDPR (legitimate interests).

3.7.4 Duration of Storage

Google Ads usually deletes the data transmitted with the set conversion cookie after thirty (30) days. After that, no more personal data is transmitted. All other cookies are deleted after three (3) months.

3.8 LinkedIn Privacy Policy

3.8.1 Description and Scope of Data Processing

In order for our website to be connected to LinkedIn, we use the social plugins from the social media network, of the LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.

LinkedIn stores data such as: IP address, login data, device information or information about your internet or cellular provider

LinkedIn stores “active impressions”. This is the case, for example, when you click on a plugin by sharing our content. If you are logged into your LinkedIn account, this data is also assigned to your profile.

3.8.2 Purpose of Data Processing

LinkedIn can be used to share interesting content directly on LinkedIn or to link directly to our LinkedIn page. We consider the built-in social plugins to be an enhanced service on our website. The data collected by LinkedIn also helps Evercyte to display potential advertising measures only to people who are interested in our offer.

3.8.3 Legal Basis

The data processing takes place on the basis of the legal regulations of Art 6 para 1 lit a GDPR (consent).

3.8.4 Duration of Storage

LinkedIn stores the data for as long as it is necessary for their service. If you delete your account, LinkedIn deletes the associated data after a maximum of thirty (30) days. However, some data is stored anonymously even after the deletion of the account.

3.8.5 Access of Account Data

In linkedin.com, click on your profile icon and select the “Settings & Privacy” section. Now click on “Data Privacy” and then on the section “How LinkedIn uses your data”. There you can instantly view selected data on your web activity and your account history.

In your browser you also have the option of preventing data processing by LinkedIn. As mentioned above, LinkedIn stores most data via cookies that are placed in your browser as explained in section 3.4.

You can generally set your browser to always notify you when a cookie is about to be set. Then you can always decide individually whether you want to allow the cookie or not.

At https://www.linkedin.com/legal/privacy-policy you can find out more about data processing of the social media network LinkedIn.

3.9 Borlabs Privacy Policy

3.9.1 Description and Scope of Data Processing

We use BorlabsCookie, Rübenkamp 32, 22305 Hamburg, Germany. This tool stores your cookie consent and thus determines which cookies are enabled.

Borlabs allows you to manage the cookies that are set. The cookies that you have accepted are stored and used when you visit our website again. Borlabs stores the user ID, consent time, cookie category details or tools, browser, device information.

3.9.2 Purpose of Data Processing

In order to inform about all cookies and tools on our website, we use Borlabs. Borlabs allows cookies to be set only when you accept them.

3.9.3 Legal Basis

The data processing takes place on the basis of the legal regulations of Art 6 para 1 lit a GDPR (consent).

3.9.4 Duration of Storage

BorlabsCookie stores the data for a maximum of one (1) year.

3.10 Google Fonts Local Privacy Policy

3.10.1 Description and Scope of Data Processing

On our website we use Google Fonts, from Google Inc. (Gordon House, Barrow Street Dublin 4, Ireland). We integrated Google Fonts locally, so on our own webserver and not on Google’s servers. Through the local integration, it is possible for Evercyte to use fonts that Google provides free of charge without allowing Google servers to access our data. Thus, we do not send any data to Google Fonts. Data such as browser, operating system and IP address are stored.

3.10.2 Purpose of Data Processing

Google Fonts offers numerous fonts for free. Previously, we could use them without integrating them on our server. However, in order not to send any data to Google servers, we integrated the fonts onto our server. They now help us to make the website more user-friendly.

3.10.3 Legal Basis

The legal basis for this is Art 6 para 1 lit f GDPR (legitimate interests).

3.10.4 Duration of Storage

The data from the log files will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. Your data will be kept for the duration of a maximum of two (2) months.

3.11 Font Awesome Local Privacy Policy

3.11.1 Description and Scope of Data Processing

On our website we use Font Awesome, of the company Fonticons (307 S. Main St., Suite 202, Bentonville, AR 72712, USA). We integrated Font Awesome locally, so on our own webserver and not on the companies’ servers. This allows Evercyte to make the website more user-friendly by using icons and fonts.

3.11.2 Purpose of Data Processing

This site uses Font Awesome for consistent font rendering. In order to prevent any information transfer to different servers in this regard, we have downloaded the fonts to our server. This way we act privacy compliant and do not share data.

3.11.3 Legal Basis

The legal basis for this is Art 6 para 1 lit f GDPR (legitimate interests).

3.11.4 Duration of Storage

Through the local integration, it is possible for Evercyte to use without allowing servers to access our data. The data from the log files will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. Your data will be kept for the duration of a maximum of two (2) months.

3.12 Google Custom Search Privacy Policy

3.12.1 Description and Scope of Data Processing

On our website we integrated Google’s custom search plug-in, operated by the American company Google LLC (1600 Amphitheater Parkway Mountain View, CA 94043, USA). Through Google Custom Search data can be transferred from you to Google.

The customised Google search only transfers your data to Google, if you actively use the Google search function that is integrated to our website. This means that only when you type a search term in the search bar and click on “Search” or “Enter”, the search term is sent to Google along with your IP address, where they are stored and processed. Based on the placed cookies, Google may also receive data on website use. If you search for content via the built-in Google search function on our website, while you are logged into your Google account, Google can assign the collected data to your Google account. As the website operator, we have no influence on what Google do with the collected data or how Google process this data.

3.12.2 Purpose of Data Processing

The purpose is to improve and simplify the search for targeted content. Google Custom Search helps to make this happen. Moreover, the built-in Google plug-in improves our website’s overall quality and makes searches easier for you.

3.12.3 Legal Basis

The legal basis for this is Art 6 para 1 lit f GDPR (legitimate interests). Our legitimate interest follows from ensuring a comfortable use of our website.

3.12.4 Duration of Storage

Google’s servers are located all over the world. Since Google is an American company, most data is stored on American servers. At https://www.google.com/about/datacenters/inside/locations/?hl=en you can find out where exactly Google’s servers are.

Your data is distributed across various physical data carriers. This means the data can be accessed quicker and is better protected against potential manipulation. Google also have special emergency programs for your data. In case e.g. internal technical problems occur and some servers would stop working, the risk of an interruption of service and data loss remains low.

Google store data for different lengths of time, depending on what type of data they are. You can delete some data yourself, while others are automatically deleted or anonymised by Google. However, Google stores certain data for longer if it is necessary for legal or business reasons.

4 Your Rights

If personal data is processed by you, you are the affected person within the meaning of the GDPR and you are entitled to the rights described below.

4.1 Information

You have the right to receive free information from Evercyte at any time as well as confirmation of personal data stored about you and a copy of this data.

4.2 Correction

You have the right to rectification and/or completion if the personal data you process is incorrect or incomplete.

4.3 Restriction of Processing

You have the right to request the restriction of processing if one of the following conditions is met:

• The accuracy of your personal information is contested by you for a period of time that allows Evercyte to verify the accuracy of your personal information.

• The processing is unlawful, you refuse the deletion of personal data and instead require the restriction of the use of personal data.

• We no longer need your personal information for processing purposes, but you need it to assert, exercise or defend your rights.

• You have objection to the processing according to Art 21 para 1 GDPR and it is not yet clear whether our legitimate reasons prevail over yours.

4.4 Deletion

You have the right to have your personal data deleted without delay, if any of the following is true and if processing is not required:

• The personal data has been collected for such purposes or otherwise processed for which they are no longer necessary.

• They revoke their consent on which the processing was based and lack any other legal basis for the processing.

• You object to the processing in accordance with Art 21 para 1 GDPR, and there are no legitimate reasons for the processing, or you object to the processing in accordance with Art 21 para 2 GDPR.

• The personal data were processed unlawfully.

• The deletion of personal data is required to fulfill a legal obligation under EU or national law to which we are subject.

4.5 Data Portability

You have the right to receive personally identifiable information you provide Evercyte in a structured, common and machine-readable format. You also have the right to transfer this data to another person without hindrance. In exercising this right, you also have the right to obtain that personal data relating to you are transmitted directly by Evercyte to another person responsible, insofar as this is technically feasible. Freedoms and rights of other persons may not be affected.

4.6 Objection

You have the right to object at any time to the processing of personal data relating to you which is “only” based on legitimate interests of Evercyte or third parties (Art 6 para 1 lit f GDPR). In the event of an objection, we will no longer process personal data unless we can demonstrate compelling legitimate reasons for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of asserting, exercising or defending legal claims.

4.7 Revocation of Consent

You have the right to revoke your data protection declaration at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

4.8 Right to File a Complaint

You also have the right to file a complaint with the Austrian Data Protection Authority (Barichgasse 40-42, 1030 Vienna, e-mail: dsb@dsb.gv.at).

Please contact Evercyte regarding your rights under office@evercyte.com or write to: Evercyte GmbH, Leberstraße 20, 1110 Vienna.

Basically, we do not process data of people aged below 14. By submitting your consent, you confirm that you have reached the age of 14 or that the consent of your legal representative has been obtained.

4.9 Changes to this Privacy Policy

We may need to update this policy from time to time. We will do our best to notify you about significant changes by placing a prominent notice on our site.

5 Contact

If you have any problems, questions or suggestions, please feel to contact us:

Corporate Privacy Officer at Evercyte GmbH

Otto Kanzler, CEO

Leberstraße 20, 1110 Vienna, Austria

phone.: +43 699 107 09 401

mailto: office@evercyte.com

© Evercyte GmbH, Vienna, Austria, Last Update 2nd August 2023

previous privacy policy versions

07/2021 – 01/2023 Version July2021

02/2023 – 06/2023 Version February2023

07/2023 – today Version July2023

08/2023 – today Version Aug2023