Hermes Consulting eG
Matschilsstrasse 66
9495 Triesen
Liechtenstein
+423 797 55 66
be******@he**************.li
www.hermesconsulting.li
1. scope of the processing of personal data
Our processing of our users' personal data is limited to the data required to provide a functional website and our content and services. The processing of our users' personal data only takes place for the purposes agreed with them or if there is another legal basis (within the meaning of the GDPR). We only collect personal data that is actually required for the performance and processing of our tasks and services or that you have voluntarily provided to us.
2. your rights (data subject rights)
You have the right to request information about your personal data processed by us. In particular, you can request information about the purposes of processing, the categories of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, data portability, the origin of your data if it was not collected by us, and the existence of automated decision-making, including profiling. This applies provided that the data transfer does not cause a disproportionate effort.
You also have the right to withdraw your consent to the use of your personal data at any time.
If you are of the opinion that the processing of your personal data by us is contrary to the applicable data protection regulations, you have the option of complaining to the data protection authority.
1. purpose of data processing
We process personal data of our clients for the following purposes:
2. data category
In our data directories, the following categories of data are processed in accordance with Art. 4 No. 1 GDPR to fulfill our activities within the scope of the purposes listed under Section 1:
3. recipients of personal data
We process clients' personal data exclusively for the fulfillment of our contractual obligations for the purposes listed in section 1.
The following bodies may receive personal data for this purpose:
4. origin of the data
The data is collected directly (e.g. during meetings or as part of correspondence with clients; internal background and due diligence checks) and in some cases by third-party service providers.
Third party service providers can be:
5. storage period
The personal data will be processed and stored during the ongoing business relationship in accordance with the statutory provisions. After termination of the business relationship, this data is stored for 10 years on the basis of statutory provisions (PGR, SPG, ABGB). Data will only be stored for longer periods on the basis of statutory or contractual retention obligations.
6. automated decision-making (Art. 22 GDPR)
No automated decision-making takes place with the personal data of clients. If such procedures are used in individual cases, we will inform the clients to the extent required by law.
7. necessity of the data (Art. 13 para. 2 let. e GDPR)
In order to be able to offer our services to clients to the extent requested by them and in compliance with legal obligations, we require the data listed in section 2. Failure to provide this data will result in the non-establishment or termination of the business relationship, in addition to any statutory reporting obligations to the competent supervisory authorities.
We maintain up-to-date technical measures to ensure data security, in particular to protect your personal data from risks during data transmission and from third parties gaining knowledge of it. These are adapted in line with the current state of the art.
