Privacy Policy

For us, KPPK Ziviltechniker GmbH, Gumpendorfer Straße 132/1/9, 1060 Vienna, Austria (hereinafter referred to as “we”, “us”), the protection of your personal data is a matter of utmost importance. We process your personal data exclusively in accordance with the provisions of the General Data Protection Regulation (GDPR), the Austrian Data Protection Act (DSG) and the Telecommunication Act (TKG). Below, we provide information about the most important aspects of data processing on our website kppk.at (“Website”).

1. What data do we process?

1.1 If you contact us:
If you contact us by email or telephone, the personal data you voluntarily provide (e.g. name and contact details) and the content of your message to us will be processed. We process this data to handle your enquiries and in the event of further questions on the basis of our legitimate interest pursuant to Art 6 (1) lit f GDPR, and to fulfil our (pre-)contractual obligations pursuant to Art 6 (1) lit b GDPR.

1.2 Registration for R.O.S.E.®:
You can apply for access to our software R.O.S.E.® via the website www.rose-kppk.at. For this purpose, we process your name, username, password, address, email address and, if applicable, company name and VAT number. We also process your billing information. This data is necessary for us to register you and provide you with access. The processing is therefore carried out to fulfil our (pre-)contractual obligations towards you in accordance with Art 6 (1) lit b GDPR and our legal obligations in accordance with Art 6 (1) lit c GDPR.

1.3 Usage data:
When you visit our Website, we collect your device’s IP address, the Internet browser you are using, your browser language, your operating system, the files requested on our Website, your Java settings, your screen resolution, your clicking behaviour on the Website (time of access, clicks) and the Website from which you are visiting us (referrer, URL).

We use your personal data for the following purposes based on our legitimate interests pursuant to Art 6 (1) lit f GDPR:

  • Improving our services and our Website and increasing user-friendliness and security; and
  • to personalise the services for users of the Website by temporarily storing search parameters.

1.4 Job applications:
If you respond to a job advertisement on our Website and apply to us, we will process the application documents you voluntarily submit to us, including the personal data contained therein (eg name, contact details, CV, references and letters of motivation). The processing is carried out for the purpose of reviewing and managing your application and thus fulfilling our (pre-)contractual obligations towards you in accordance with Art 6 (1) lit b GDPR.

2. Transfer of data

We will disclose your personal data to the following external service providers (processors) to the extent necessary:

  • IT service providers and/or providers of data hosting or data processing or similar services;
  • to other service providers, providers of software solutions, who also support us in providing our services and act on our behalf.

All our processors process your data only on our behalf and on the basis of our instructions for the provision of the above-mentioned services.

In addition, we transfer your personal data to the following recipients as necessary:

  • to any third parties who are involved in fulfilling our obligations to you (eg banks for payment processing);
  • to other external third parties to the extent necessary on the basis of our legitimate interests (eg auditors, insurance companies in case of an insurance claim, legal representatives in the event of legal matters, etc.);
  • to authorities and other public bodies to the extent required by law (eg tax authorities, data protection authorities, etc.).

3. How is your data protected?

We take appropriate technical and organisational security measures to protect your personal data against accidental or unlawful destruction, alteration, damage or loss and against unauthorised disclosure or access. In addition, we and our employees are obliged to maintain data confidentiality.

4. Use of Cookies

Our Website uses cookies. These are small text files that are stored on your device with the help of your browser. They do not cause any damage to your device.

We use cookies to make our Website user-friendly. Some cookies remain stored on your device until you delete them. This enables us to recognize your browser when you return to our Website.

Most of the cookies we use are so-called session cookies, which are only stored for the duration of your current visit to our Website. These temporary cookies enable you to use our Website more conveniently (eg by adapting user settings for sorting links and language selection to your needs). Session cookies are only valid for the duration of your specific visit to the Website and are then automatically deleted. In addition, we also use persistent cookies, which remain on your device and are not automatically deleted when you close your browser. Of course, you can also delete these cookies yourself at any time. Persistent cookies are used in particular to improve your user experience when you visit our Website again by adapting the Website to your personal needs and thus optimizing loading times.

The Website uses the following cookie categories:

  • Technically necessary cookies are essential for the proper functioning of the Website, the management of your consents, for data security and to prevent misuse, and enable you to use the content and services you have requested properly and securely. These cookies cannot therefore be deactivated. If you do not wish to have this category of cookies installed on your device, you are asked not to use the Website. Data processing is based on our legitimate interests in accordance with Art 6 (1) lit f GDPR in conjunction with Sec 165 (3) TKG 2021.
  • Cookies for external media and services enable us to display relevant embedded media content to you. Third-party cookies are loaded after retrieval to display the media content. Data processing is based on your voluntary consent in accordance with Art 6 (1) lit a GDPR in conjunction with Sec 165 (3) TKG 2021.

A complete list of cookies can be found in the cookie banner. The cookie banner appears automatically when you visit our Website for the first time. You can also access the cookie banner via the cookies button at the bottom left of the screen.

If you do not wish to accept cookies, you can set your browser to inform you about the use of cookies and only allow them in individual cases. In this case, we only collect anonymous data about your visit to our Website, eg to determine the total number of visitors to our website.

If you deactivate cookies, the functionality of our Website may be limited, but you will still be able to use our Website (with restrictions).

5. Retention and deletion periods:

We only store your personal data as long as it is necessary to fulfil our obligations towards you. The data required to fulfil accounting obligations (Sec 190, 212 UGB) and tax law requirements (Sec 132 BAO) will be stored for seven years in any case. In addition, in individual cases, data will be stored for a longer period until the end of the business relationship or a legal dispute or until the expiry of the warranty and guarantee periods and the limitation periods in the event of claims for damages or insofar as this is necessary to assert copyright claims.

We store the data from your enquiries for a period of six months so that we can respond to any queries. We store data relating to the registration and purchase of our software for the duration of access and for a further seven years to fulfil our accounting obligations.

If you send us an application and no employment relationship is established, we will store your data for up to seven months from the date of rejection. If you are hired, you will find further information on the processing of this data in the privacy policy for employees.

6. Your rights:

You have the right to obtain information in a clear, transparent and easily understandable manner about how we process personal data and about your rights as a data subject (Art 15 et seq GDPR):

You therefore have the right to obtain information about the personal data we process about you. In addition, you have the right to have incorrect data corrected and your personal data deleted (right to erasure). Furthermore, you can withdraw your consent to the processing of personal data with future effect if the processing is based on your consent. You also have the right to restrict processing, to receive the data you have provided in a structured, commonly used and machine-readable format (data portability) and the right to object.

In order for us to process your request regarding your above-mentioned rights and to ensure that personal data is not disclosed to unauthorised third parties, please send your request directly to us, clearly identifying yourself and providing a brief description of the scope of your above-mentioned rights as a data subject:

KPPK Ziviltechniker GmbH
Gumpendorfer Straße 132/1/9
1060 Wien
Telephone: +43 1 535 21 23 – 0
Fax: +43 1 535 21 23 – 30
Email: office(at)kppk.at

You also have the right to lodge a complaint with the supervisory authority. In Austria, this is the Data Protection Authority, Barichgasse 40-42, 1030 Vienna.

7. Final provisions

We will continuously adapt this privacy policy to any technical and legal developments. We will announce any changes on the Website in good time. You should therefore consult this privacy policy regularly to keep yourself informed of the current status.

As of: July 2025