Renty DIP GmbH & Co KG
Klosterwiesgasse 7, Top 1-3
8010 Graz, Austria
Email: office@elevatrion.com
Tel.: +43 316 231064
Website: www.elevatrion.com
Effective from: December 2, 2025
The protection of your personal data is of particular concern to us. We, Renty DIP GmbH & Co KG (hereinafter "Elevatrion", "we", "us"), process your data exclusively on the basis of legal provisions, in particular the EU General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (DSG). In this privacy policy, we inform you comprehensively about the most important aspects of data processing in the context of our website (www.elevatrion.com) and our services as an AI consulting and automation agency.
The processing of personal data is based on the following legal bases of the GDPR:
National Data Protection Regulations in Austria: In addition to the GDPR, national data protection regulations apply in Austria, in particular the Data Protection Act (DSG). This contains special regulations on the right to information, rectification, erasure, processing of special categories of personal data, processing for other purposes, transmission, and automated decision-making in individual cases.
We collect, process and use your personal data only to the extent necessary for the provision of our services, for the fulfillment of our contractual or legal obligations, or based on our legitimate interest, or if you have given us your consent.
The data we process includes in particular:
Legal Basis: Processing is based on Art. 6 para. 1 lit. a) GDPR (your consent, e.g., for cookies, newsletter, tracking), Art. 6 para. 1 lit. b) GDPR (for contract performance) and Art. 6 para. 1 lit. f) GDPR (our legitimate interest, e.g., in the security of our IT systems, in the optimization of our website and in the implementation of marketing measures).
We only disclose your data to third parties to the extent that this is legally permissible and necessary:
Some of the service providers we use (e.g., Google, Meta, LinkedIn, Calendly) are based in the USA or process data there. The transfer of personal data to the USA is based on:
Further information on third country transfers: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection_en?prefLang=de
We take appropriate technical and organizational measures (TOMs) in accordance with legal requirements, taking into account the state of the art, implementation costs, and the nature, scope, circumstances and purposes of processing, as well as the different probabilities of occurrence and the extent of the threat to the rights and freedoms of natural persons, to ensure a level of protection appropriate to the risk.
The measures include in particular:
To protect user data transmitted via our online services from unauthorized access, we use TLS/SSL encryption technology. Secure Sockets Layer (SSL) and Transport Layer Security (TLS) are the cornerstones of secure data transmission on the Internet. These technologies encrypt the information transmitted between the website or app and the user's browser (or between two servers), protecting the data from unauthorized access. TLS, as the more advanced and secure version of SSL, ensures that all data transmissions meet the highest security standards. When a website is secured by an SSL/TLS certificate, this is indicated by the display of HTTPS in the URL. This serves as an indicator for users that their data is being transmitted securely and encrypted.
We store your personal data only for as long as is necessary for the purposes for which it was collected. After the purpose ceases to exist (e.g., after the end of the contract), your data will be deleted, unless legal retention obligations (e.g., from tax or corporate law) prevent this.
Retention Periods According to Austrian Law:
Under the GDPR, you have the following rights:
Competent Supervisory Authority in Austria:
Austrian Data Protection Authority
Barichgasse 40-42, 1030 Vienna
Website: https://dsb.gv.at/
Contact for Exercising Your Rights:
Email: office@elevatrion.com
We process user data in order to be able to provide our online services to them. For this purpose, we process the user's IP address, which is necessary to transmit the content and functions of our online services to the user's browser or device.
Users (e.g., website visitors, users of online services)
Deletion in accordance with the information in the section "General Information on Data Storage and Deletion".
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
The term "Cookies" refers to functions that store and read information on users' devices. Cookies can also be used for different purposes, such as for the functionality, security and comfort of online services as well as for creating analyses of visitor flows.
We use cookies in accordance with legal requirements. To this end, we obtain the consent of users in advance if necessary. If consent is not necessary, we rely on our legitimate interests. This applies when storing and reading information is essential to be able to provide expressly requested content and functions. This includes, for example, the storage of settings as well as ensuring the functionality and security of our online services. Consent can be withdrawn at any time. We clearly inform about the scope and which cookies are used.
Whether we process personal data using cookies depends on consent. If consent is given, it serves as the legal basis. Without consent, we rely on our legitimate interests, which are explained above in this section and in the context of the respective services and procedures.
With regard to storage duration, the following types of cookies are distinguished:
Users can withdraw consents given at any time and also declare an objection to processing in accordance with legal requirements, including via the privacy settings of their browser.
Users (e.g., website visitors, users of online services)
Processing of Cookie Data on the Basis of Consent: We use a consent management solution (cookie consent tool) in which users' consent to the use of cookies or to the procedures and providers mentioned in the context of the consent management solution is obtained. This procedure serves to obtain, log, manage and withdraw consents, in particular with regard to the use of cookies and comparable technologies used to store, read and process information on users' devices. In the context of this procedure, users' consents for the use of cookies and the associated processing of information, including the specific processing and providers mentioned in the consent management procedure, are obtained. Users also have the option to manage and withdraw their consents. Consent declarations are stored to avoid repeated queries and to be able to prove consent in accordance with legal requirements. Storage takes place server-side and/or in a cookie (so-called opt-in cookie) or by means of comparable technologies, in order to be able to assign consent to a specific user or their device. If no specific information is available on the providers of consent management services, the following general notes apply: The duration of storage of consent is up to two years. A pseudonymous user identifier is created, which is stored together with the time of consent, information on the scope of consent (e.g., concerning categories of cookies and/or service providers) and information about the browser, system and device used. Legal bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR).
When you contact us via our contact form, by email or phone, we process the data you provide (name, email address, phone number, message) to answer your inquiry.
Legal Basis: Art. 6 para. 1 lit. b) GDPR (pre-contractual inquiries), Art. 6 para. 1 lit. f) GDPR (legitimate interest in communication)
Storage Duration: Until your inquiry has been fully processed, then deletion, unless legal retention obligations exist.
We use Calendly (Calendly LLC, 271 17th St NW, 10th Floor, Atlanta, GA 30363, USA) for appointment booking. When you book an appointment, your data (name, email address, possibly further voluntary information) is transmitted to Calendly and processed there.
Data Transfer to the USA: Calendly is certified under the EU-U.S. Data Privacy Framework (DPF). In addition, we have concluded Standard Contractual Clauses (SCC) and a Data Processing Agreement (DPA) with Calendly in accordance with Art. 28 GDPR.
Legal Basis: Art. 6 para. 1 lit. a) GDPR (your consent through voluntary use)
Storage Duration: Until deletion by you, withdrawal of your consent or cessation of the purpose (e.g., after the appointment has taken place), unless legal retention obligations exist.
Calendly Privacy Policy: https://calendly.com/privacy
You have the option to subscribe to our newsletter via our website. For this we need your name and email address as well as your declaration that you agree to receive the newsletter. Registration takes place using the double opt-in procedure (i.e., you receive a confirmation email after registration, in which you must confirm your registration again).
You can cancel your newsletter subscription at any time via the unsubscribe link in each email or by sending a message to office@elevatrion.com.
Legal Basis: Your registration is based on your consent in accordance with Art. 6 para. 1 lit. a) GDPR.
If you commission paid services from us, we use external payment service providers (e.g., Stripe, PayPal) for secure processing. Your payment data (e.g., credit card number, bank details) is transmitted directly and encrypted to the respective service provider. We do not store your sensitive payment data ourselves.
Legal Basis: The processing of your payment data is based on Art. 6 para. 1 lit. b) GDPR (contract performance).
Web analytics (also referred to as "reach measurement") serves to evaluate visitor flows to our online services and may include behavior, interests or demographic information about visitors, such as age or gender, as pseudonymous values. Using reach analysis, we can, for example, recognize at what time our online services or their functions or content are used most frequently, or invite reuse. Likewise, we are able to identify which areas need optimization.
In addition to web analytics, we may also use testing procedures to test and optimize different versions of our online services or their components.
Unless otherwise stated below, profiles may be created for these purposes, i.e., data summarized for a usage process, and information may be stored in a browser or on a device and then read. The information collected includes in particular visited websites and elements used there as well as technical information, such as the browser used, the computer system used, and information on usage times. If users have consented to the collection of their location data to us or to the providers of the services we use, the processing of location data is also possible.
In addition, users' IP addresses are stored. However, we use an IP masking procedure (i.e., pseudonymization by truncating the IP address) to protect users. In general, no clear data of users (such as email addresses or names) is stored in the context of web analytics, A/B testing and optimization, but rather pseudonyms. This means that we as well as the providers of the software used do not know the actual identity of the users, but only the information stored in their profiles for the purpose of the respective procedures.
If we ask users for their consent to the use of third-party providers, consent serves as the legal basis for data processing. Otherwise, user data is processed on the basis of our legitimate interests (i.e., interest in efficient, economical and recipient-friendly services). In this context, we would also like to refer you to the information on the use of cookies in this privacy policy.
Users (e.g., website visitors, users of online services)
Deletion in accordance with the information in the section "General Information on Data Storage and Deletion". Storage of cookies for up to 2 years (Unless otherwise stated, cookies and similar storage methods can be stored on users' devices for a period of two years).
IP masking (pseudonymization of IP address)
a) Google Analytics
We use Google Analytics to measure and analyze the use of our online services on the basis of a pseudonymous user identification number. This identification number contains no unique data, such as names or email addresses. It serves to assign analysis information to a device in order to recognize which content users have accessed within one or different usage processes, which search terms they have used, have accessed again or have interacted with our online services. Likewise, the time of use and its duration are stored, as well as the sources of users who refer to our online services and technical aspects of their devices and browsers.
Pseudonymous profiles of users are created with information from the use of various devices, whereby cookies can be used. Google Analytics does not log and store individual IP addresses for EU users. However, Analytics provides rough geographic location data by deriving the following metadata from IP addresses: City (and the derived latitude and longitude of the city), continent, country, region, subcontinent (and ID-based counterparts). For EU data traffic, IP address data is used exclusively for this derivation of geolocation data before being immediately deleted. They are not logged, are not accessible and are not used for further purposes. When Google Analytics collects measurement data, all IP queries are performed on EU-based servers before traffic is forwarded to Analytics servers for processing.
b) Google Tag Manager
We use Google Tag Manager, a software from Google that enables us to manage so-called website tags centrally via a user interface. Tags are small code elements on our website that serve to capture and analyze visitor activities. This technology helps us to improve our website and the content offered on it. Google Tag Manager itself does not create user profiles, does not store cookies with user profiles and does not perform independent analyses. Its function is limited to simplifying and making more efficient the integration and management of tools and services we use on our website. Nevertheless, when using Google Tag Manager, users' IP addresses are transmitted to Google, which is technically necessary to implement the services we use. Cookies may also be set. However, this data processing only takes place when services are integrated via the Tag Manager. For more detailed information on these services and their data processing, we refer to the further sections of this privacy policy.
We process personal data for the purposes of online marketing, which may include in particular the marketing of advertising space or the display of advertising and other content (collectively referred to as "content") based on potential interests of users as well as the measurement of their effectiveness.
For these purposes, so-called user profiles are created and stored in a file (so-called "cookie") or similar procedures are used, by means of which the information relevant to the display of the aforementioned content is stored for the user. This information may include, for example, viewed content, visited websites, online networks used, but also communication partners and technical information, such as the browser used, the computer system used, and information on usage times and functions used. If users have consented to the collection of their location data, this can also be processed.
Users' IP addresses are also stored. However, we use available IP masking procedures (i.e., pseudonymization by truncating the IP address) to protect users. In general, no clear data of users (such as email addresses or names) is stored in the context of online marketing procedures, but rather pseudonyms. This means that we as well as the providers of online marketing procedures do not know the actual identity of the users, but only the information stored in their profiles.
The information in the profiles is generally stored in cookies or by means of similar procedures. These cookies can later generally also be read on other websites that use the same online marketing procedure and analyzed for the purpose of displaying content as well as supplemented with further data and stored on the server of the online marketing procedure provider.
Exceptionally, clear data can be assigned to profiles, especially when users are members of a social network whose online marketing procedure we use and the network connects users' profiles with the aforementioned information. We ask you to note that users can make additional agreements with the providers, e.g., through consent in the context of registration.
We generally only have access to aggregated information about the success of our advertisements. However, we can check in the context of so-called conversion measurements which of our online marketing procedures have led to a so-called conversion, i.e., for example, to a contract conclusion with us. Conversion measurement is used solely to analyze the success of our marketing measures.
Unless otherwise stated, please assume that cookies used are stored for a period of two years.
If we ask users for their consent to the use of third-party providers, consent is the legal basis for data processing. Otherwise, user data is processed on the basis of our legitimate interests (i.e., interest in efficient, economical and recipient-friendly services). In this context, we would also like to refer you to the information on the use of cookies in this privacy policy.
Users (e.g., website visitors, users of online services)
Deletion in accordance with the information in the section "General Information on Data Storage and Deletion".
IP masking (pseudonymization of IP address)
a) Google Ads and Conversion Measurement
Online marketing procedure for the purpose of placing content and advertisements within the advertising network of the service provider (e.g., in search results, in videos, on websites, etc.), so that they are displayed to users who have a presumed interest in the advertisements. In addition, we measure the conversion of the advertisements, i.e., whether users have taken them as an occasion to interact with the advertisements and use the advertised offers (so-called conversions). However, we only receive anonymous information and no personal information about individual users.
b) Google Ads Remarketing
Google Remarketing, also called Retargeting, is a technology with which users who use an online service are included in a pseudonymous remarketing list, so that users can be shown advertisements on other online services based on their visit to the online service.
c) Meta Pixel (Facebook Pixel)
We use the Meta Pixel (formerly Facebook Pixel) on our website. The Meta Pixel is a code snippet that is integrated on our website and enables us to measure the effectiveness of our advertising by tracking the actions that users perform on our website after they have seen or clicked on a Meta advertisement. The Meta Pixel collects information about your activities on our website (e.g., pages visited, purchases made) and sends this to Meta (Facebook, Instagram).
This information is used to:
The Meta Pixel sets cookies on your device to recognize you and track your activities.
d) LinkedIn Insight Tag
Code that is loaded when a user visits our online services and tracks the user's behavior and conversions and stores them in a profile (possible uses: measurement of campaign performance, optimization of ad delivery, building custom and similar target groups).
e) LinkedIn Advertising
Placement of advertisements within the LinkedIn platform and evaluation of ad results.
We maintain a presence on social networks (e.g., LinkedIn, Instagram, TikTok, YouTube) to communicate with users and inform them about our services. The operators of these networks process your data (e.g., usage behavior, interactions with our posts) for their own purposes (e.g., market research, advertising). Data may also be processed outside the EU. For details on data processing by the operators, we refer to their privacy policies.
Legal Basis: Art. 6 para. 1 lit. f) GDPR (legitimate interest in public relations and communication)
Note: For information requests and the assertion of data subject rights, please contact the operators of the respective networks directly. If necessary, you can also contact us.
We reserve the right to adapt this privacy policy if necessary to adapt it to changed legal situations or changes in our services. The version published on our website applies. We will inform you about significant changes, if legally required.