Skip to main content

Privacy Policy

General Privacy Policy Business Partner

In the course of our business relationship with you, it is necessary for us to use your personal data. Personal data" means any information relating to natural persons either directly or indirectly (name and address data). The protection of personal data of our business partners (customers and suppliers) is very important to ÖSWAG Werft Linz GmbH, Hafenstrasse 61, Postfach 45, 4010 Linz, Austria, in short "ÖSWAG". We are obliged to protect your data and take this obligation seriously. We expect the same from our business partners.

Enclosed you will find a summary of the processing of personal data of business partners:

  1.  Data categories, purpose of processing and legal basis.

In the context of cooperation with business partners, ÖSWAG processes personal data for the following purposes:

  • Communication with business partners regarding products, services and projects (e.g. to process inquiries).  
  • Initiation, processing, administration and maintenance of (contractual) business relationships (e.g. for proper traceable order processing, for proper legally required execution of accounting, for smooth and careful processing of maintenance activities, repairs and complaints).
  • Conducting customer surveys, marketing campaigns, market analysis, sweepstakes, contests, or similar promotions and events
  • Maintaining and protecting the security of our products and services and our websites, preventing and detecting security risks, fraudulent activity, or other criminal or harmful activity
  • Compliance with legal requirements (e.g., tax and commercial retention obligations), as well as ÖSWAG guidelines
  • Settling legal disputes, enforcing existing contracts and asserting, exercising and defending legal claims.

For the aforementioned purposes, ÖSWAG processes the following categories of personal data, if applicable

  •  Professional contact information (name, contact address, telephone number, email address).
  •  Payment information (information required to process payment transactions or prevent fraud).
  •  information collected from publicly available sources, information databases, or credit reporting agencies
  •  other personal data provided voluntarily by you (orders placed, inquiries made or project details, correspondence, other data on cooperation).

The processing of personal data is necessary to achieve the above purposes, including fulfillment of a contractual relationship or a pre-contractual activity with the business partner.

The legal basis for the data processing is -unless expressly stated otherwise- Article 6 para 1 lit a (if consent has been given) or Art 6 para 1 lit b and f of the General Data Protection Regulation (DSGVO):

  • the processing is necessary for the performance of a contract to which the data subject is party or in order to take precontractual measures
  • the processing is necessary for the protection of the legitimate interests of the controller or a third party

If the aforementioned personal data are not provided or not provided to the required extent or if ÖSWAG is unable to collect them, the individual purposes described may not be fulfilled or the request(s) made may not be processed. Please note that this would not be considered a contractual non-performance on our part.

   2. Storage periods

If no explicit storage period is specified at the time of collection (e.g. as part of a declaration of consent), your personal data will be deleted insofar as it is no longer required to fulfill the purpose for which it was stored and no legal storage obligations (e.g. commercial and tax storage obligations) or the assertion of legal claims prevent deletion.

  3. Transmission and forwarding of personal data

ÖSWAG transmits personal data to other ÖSWAG companies or courts, authorities or law firms or other business partners (such as shipping or logistics partners for the execution and processing of orders) as permitted by law.

In addition, ÖSWAG commissions service providers (order processors) with the processing of personal data (e.g. within the framework of an IT support contract). These processors are contractually obligated to comply with the provisions of data protection law. The recipients described in this Section 3 may be located in countries outside the European Union ("Third Countries"), in which the applicable law does not ensure the same level of data protection as in your home country. In this case, a transfer will only take place in accordance with the legal requirements if an adequacy decision has been issued by the European Commission for the third country, appropriate guarantees have been agreed with the recipient (e.g. EU standard contractual clauses have been concluded), the recipient participates in an approved certification system (e.g. EU-US Privacy Shield), binding internal data protection rules pursuant to Art 47 GDPR are in place, or an exemption pursuant to Art 49 GDPR is in place (e.g., because you have expressly consented to the proposed data transfer after having been informed about the potential risks to you of such data transfers without the existence of an adequacy decision and without appropriate safeguards). For more information, as well as a copy of the measures implemented, please contact the contact indicated in point 6.

4. Protection of your personal data

The security of your personal data is of particular concern to us. To protect this data from misuse and loss, as well as from unauthorized access, modification or disclosure, we take the following measures, among others:

  •  Limiting access to our premises (access control).
  •  Implementation of access authorizations and protection of data media (access and disclosure control)
  •  Use of network security measures such as firewall, anti-virus software, security updates, etc. (network control)

We also transfer our understanding of security to the processors we use, who we have obligated to comply with similar or equivalent security measures.

    5. Right to information, correction, deletion or restriction of personal data

  • Pursuant to Art. 15 GDPR, you have the right to obtain confirmation as to whether personal data is being processed by the controller and the right to obtain information about such data.
  • Pursuant to Art. 16 of the GDPR, you have the right to obtain without undue delay the rectification of inaccurate data concerning you and/or the completion of incomplete personal data
  • Pursuant to Art. 17 DSGVO, you have the right to have your personal data deleted
  • As a result of Art. 18 DSGVO, you have the right to restriction of processing
  • As a result of Art. 20 DSGVO, you have the right to data transfer
  • As a result of Art. 21 DSGVO, you have the right to object to the processing of your data
  • Finally, you have the possibility to lodge a complaint with the supervisory authority
  • If the processing of your data is based on your consent, you have the right to withdraw your consent at any time, without affecting the lawfulness of the processing carried out on the basis of the consent up to the time of withdrawal

In order to ensure an efficient response to such requests, we ask you to contact us (contact details below), and at the same time we require proof of your identity (for example, by sending an electronic copy of your ID).

6. Contact

For questions regarding data protection (as well as for the assertion of the aforementioned rights), please contact the data protection organization of ÖSWAG at or ÖSWAG Werft Linz GmbH, IT Department, Hafenstraße 61, A-4010 Linz. This General Privacy Policy for Business Partners is updated on an ongoing basis.