I, the public notary Dr. Hansjörg Brunner, Leonhard-von-Keutschach-Straße 6, 5020 Salzburg, process your personal data exclusively in the case of your consent or for the execution of the mandate you have assigned for the purposes agreed with you or when there is another legal basis within the meaning of the General Data Protection Regulation (GDPR). Only those personal data will be collected that are necessary for the performance and execution of my notarial tasks and services or that you have voluntarily provided to me.

Regarding the transactions mentioned in § 36a para. 1 NO (e.g., real estate transactions, corporate law events), special legal obligations apply to me according to the NO (Notaries Act) when processing personal data for the purposes of preventing money laundering and terrorist financing (in particular §§ 36a — 36f NO). The processing of personal data based on the NO for the purposes of preventing money laundering and terrorist financing is to be regarded as a matter of public interest according to the GDPR.

Your right to information and deletion (Rights of the data subject)

You have the right to information about your stored personal data, their origin and recipients, and the purpose of data processing, as well as the right to correction, objection, data transfer, restriction of processing, and blocking or deletion of incorrect/illegally processed data. Restrictions may arise from the confidentiality obligation of the notary according to § 37 NO.

You also have the right to revoke any consent given for the use of your personal data at any time. To assert your rights as a data subject (information, deletion, correction, objection, and/or - provided that this does not cause disproportionate effort - data transfer), please contact our substitute, Mr. Dr. Peter Giller.

If you believe that the processing of your personal data by me violates applicable data protection law or your data protection rights have been violated in any other way, you have the option to lodge a complaint with the competent supervisory authority. In Austria, this is the Data Protection Authority.

Use of Data — Security

The data provided to us will not be processed for purposes other than those outlined by the mandate contract or your consent or otherwise by a provision in accordance with the General Data Protection Regulation. An exception is the use for statistical purposes, provided that the data provided has been anonymized.

I have taken organizational and technical precautions corresponding to the state of the art to ensure the protection of your personal data (protection against misuse both from within and from outside (e.g., through firewalls, encryption, access permissions, etc.). However, it cannot be excluded that due to errors in data transmission not caused by me or due to unauthorized access by third parties (hackers, etc.), information from other persons may be viewed or used. I accept no liability for this, unless such misuse was culpably caused by me.

Transfer of Data to Third Parties (Transmission)

In principle, I do not make your personal data available to others. However, it is necessary to forward your data to third parties in order to fulfill your order or for legal reasons. These may include courts, authorities, legal representatives, or other involved third parties (also processors acting on my behalf). In this case, the transfer of your data is made solely on the basis of the GDPR (based on your consent, fulfillment of a contract, fulfillment of a legal obligation, etc.).

As a notary and within the scope of notarial activities, I also regularly obtain information about you from third parties.

I also point out that it may be that I transmit your personal data to recipients (see above) outside your country. However, I only transmit your personal data on the basis of the GDPR (adequate level of data protection or implementation of measures to ensure that all recipients have an adequate level of data protection).

Storage/Deletion of Data

I do not keep your personal data longer than is necessary for the purposes for which they are processed. Data retention also takes place for evidence purposes, taking into account the limitation periods or as long as a claim (liability) against us is possible.

Server Log Files

For the purpose of monitoring the technical functionality and increasing the operational security of my web host, connection data is processed. The duration of processing is limited to days.

The legal basis for data processing is the unconditional technical necessity of a server log file as a basic data basis for error analysis and security measures within the service "Website" expressly requested by your access according to § 96 para. 3 TKG.

Contact Form

On my website, there is the possibility to contact me directly through a contact form. After submitting the contact form, the personal data you have entered will be processed by the controller for the purpose of processing your request based on the consent you have given by submitting the form according to Art. 6 para. 1 lit. a GDPR until revoked.

There is no legal or contractual obligation to provide personal data. Failure to provide this will only result in the consequence that you cannot transmit your concern and I cannot process it.