Data privacy policy

Cookie settings

Change privacy settings
View history of privacy settings
revoke consent

Privacy Policy – Overview

1. Introduction and General Information

We are committed to ensuring the protection of your personal data. This Privacy Policy explains how, to what extent, and for what purposes we collect, process, and store personal data when you use our website. All data processing activities are carried out in accordance with the General Data Protection Regulation (GDPR) and applicable Austrian data protection laws.

2. Scope of Application

This Privacy Policy applies to all personal data processed in connection with the use of the website www.pegasus-rd.com, including interactions via contact forms and embedded content such as videos or social media plugins.

3. Legal Basis for Processing

Personal data is processed on the following legal grounds, as defined by Article 6 of the GDPR:

  • Contractual necessity (Art. 6(1)(b) GDPR): Processing is necessary for the performance of a contract or for taking steps at your request prior to entering into a contract.
  • Consent (Art. 6(1)(a) GDPR): Processing occurs where you have given explicit consent, such as when subscribing to a newsletter.
  • Legal obligation (Art. 6(1)(c) GDPR): Processing is required to fulfill statutory obligations, e.g., for accounting or tax purposes.
  • Legitimate interests (Art. 6(1)(f) GDPR): Processing is necessary for the purposes of our legitimate interests, including website optimization, usage analysis, and the security of our services, provided that such interests are not overridden by your fundamental rights and freedoms.

4. Controller Contact Details

The data controller under the GDPR is:

Pegasus Research & Development GmbH
Rathausplatz 1-4/b01
8580 Köflach
Österreich

You may contact us at any time using the above details for any inquiries related to data protection or to exercise your rights as a data subject.

5. Rights of Data Subjects

Pursuant to the GDPR, you are entitled to the following rights:

  • Right of access (Art. 15 GDPR): Obtain confirmation as to whether your personal data is being processed and access to that data.
  • Right to rectification (Art. 16 GDPR): Request correction of inaccurate or incomplete data.
  • Right to erasure (Art. 17 GDPR): Request deletion of your personal data under certain conditions.
  • Right to restriction of processing (Art. 18 GDPR): Request limitation of processing under specific circumstances.
  • Right to data portability (Art. 20 GDPR): Receive your personal data in a structured, commonly used, and machine-readable format, or request transmission to another controller.
  • Right to object (Art. 21 GDPR): Object to processing based on legitimate interests.
  • Right to withdraw consent (Art. 7(3) GDPR): Withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

To exercise these rights, please contact us using the details provided in Section 4.

6. Supervisory Authority

You have the right to lodge a complaint with the competent supervisory authority if you believe that your data is being processed unlawfully:

Austrian Data Protection Authority
Barichgasse 40–42
1030 Vienna, Austria
Email: dsb@dsb.gv.at
Website: https://www.dsb.gv.at

7. Cookies

Cookies are small text files stored on your device to improve website functionality and user experience. We use the following types:

  • Strictly necessary cookies: Required for essential website features, such as navigation and language preferences.
  • Analytics cookies: Used to analyze user behavior and improve website performance.
  • Marketing cookies: Enable personalized advertising based on user interactions.

Cookie usage can be controlled via your browser settings. However, disabling certain cookies may impact the functionality of the website.

8. Web Hosting by External Provider

Our website is hosted by an external service provider. All processing of personal data by this provider is carried out on our behalf and in accordance with our instructions, in compliance with applicable data protection regulations.

9. Server Log Files

When you access our website, certain information is automatically recorded by the hosting provider in server log files, including:

  • IP address
  • Date and time of access
  • Referring URL
  • Accessed file(s)
  • Browser type and version
  • Operating system

These data are used solely for technical diagnostics, error analysis, and security purposes. Log files are deleted automatically after a limited retention period.

10. Use of Google Fonts (Local Hosting)

For consistent visual presentation, we use Google Fonts, which are hosted locally on our servers. No personal data is transmitted to Google. Should remote access occur, it may involve the processing of personal data by Google. For more information, please refer to Google’s Privacy Policy.

11. Contact via Website

If you contact us using the website’s contact form, the following data will be collected:

  • Name
  • Email address
  • Subject
  • Message content

This information is used exclusively to process your inquiry and is not shared with third parties. It will be deleted once it is no longer necessary or upon your request.

12. Data Retention

Personal data is retained only as long as necessary to fulfill the purposes for which it was collected or as required by law. Data that is no longer required is securely deleted or anonymized.

13. Data Transfers to Third Countries

Some services (e.g., Google Fonts, Vimeo) may involve the transfer of personal data to third countries outside the EU. In such cases, appropriate safeguards are implemented, such as standard contractual clauses, to ensure an adequate level of data protection.

14. Automated Decision-Making and Profiling

We do not use automated decision-making or profiling within the meaning of Article 22 GDPR, unless you have explicitly consented.

15. Use of Font Awesome (Local Hosting)

Font Awesome is used to display icons and is hosted locally on our servers. No data is transmitted to external servers. No personal data is collected or processed through the use of these icons.

16. Social Media Plugins

Our website integrates plugins from social media providers such as Facebook and Instagram. When you activate these plugins, a connection to the respective provider’s servers is established, and data may be transmitted. Please refer to the privacy policies of the respective providers for further information.

17. Consent Management – Real Cookie Banner

We use the “Real Cookie Banner” tool to manage cookies and similar technologies, including user consent. Further details on data processing are available at https://devowl.io/en/rcb/data-processing/.

Legal bases:

  • Art. 6(1)(c) GDPR (compliance with legal obligations)
  • Art. 6(1)(f) GDPR (legitimate interests in managing cookie consent)

Provision of personal data is not legally required. However, refusal may prevent us from managing your preferences properly.

18. Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, or disclosure. These include data encryption and secure processing procedures.

19. Children’s Privacy

Our website is not directed to individuals under the age of 14. We do not knowingly collect personal data from children without verifiable parental consent. If we become aware of such collection, we will delete the data without undue delay.

20. Amendments to this Privacy Policy

We reserve the right to update this policy in response to changes in legal requirements or service offerings. The current version is always available on our website.