Privacy Policy

The protection of your personal data is of particular concern to us. We process your data exclusively on the basis of applicable legal provisions (EU General Data Protection Regulation GDPR, TKG 2003). In this privacy policy, we inform you about the most important aspects of data processing in the context of our activities as management consultants and when visiting our website.

1. Encrypted Transmission

This website uses SSL encryption for security and data protection purposes, which prevents third parties from intercepting and reading the data you enter during transmission. You can recognize active encryption by the padlock symbol in the address bar of your browser.

2. Contact

When you contact us via the website form, by email or by other means, the data you provide (name, email address and optionally company and phone number) will be stored for the purpose of processing the inquiry and in case of follow-up questions for one year.

Should a contract result from the inquiry, the statutory retention periods apply. We will not share this data without your consent.

Data processing is based on Art. 6(1)(b) (contract performance) and Art. 6(1)(a) (consent) of the GDPR.

3. Data Storage for Consulting Services

For the purpose of providing management consulting services, the following data is collected and stored:

• Name, company, address, email address, phone number
• Relevant information in the course of consulting
• Results developed jointly during a project
• Contact information of employees
• Communication (phone, emails, messaging services, notes)

For accounting purposes, the necessary payment data (VAT number, account details, payment purpose) is stored. Disclosure is made exclusively to the processing banking institutions and our tax advisor.

Data processing is based on Art. 6(1)(c) (legal obligations) and Art. 6(1)(b) (contract performance) of the GDPR.

4. Data Storage for Workshops by Partners

For the purpose of conducting workshops organized by partners/organizations, the following data is collected and stored:

• Name, company, address, email, position/function, phone number
• Where applicable, after consultation, recordings in the form of photos and videos

Data processing is based on § 96(3) TKG and Art. 6(1)(a) (consent) and/or Art. 6(1)(b) (contract performance) of the GDPR.

5. Server Logs

The server hosting this website stores information automatically transmitted by your browser in so-called log files:

• Browser type and version
• Operating system used
• The page (URL) from which you came to us
• The IP address of the accessing computer
• Time of the request

This data is used exclusively for technical monitoring of the web server and is not linked to other data sources. It is deleted after three months.

Data processing is based on Art. 6(1)(f) (legitimate interests) of the GDPR.

6. Cookies

Our website uses so-called cookies. These are small text files that are stored on your device using your browser. They do not cause any harm.

Currently, we only use essential cookies that are required for the operation of the website. Your consent is not required for this. If you do not wish cookies to be stored, you can configure your browser accordingly.

Legal basis: Art. 6(1)(f) (legitimate interests) of the GDPR.

7. Contact Form and Information Download

You have the option of contacting us via our website and downloading information material. For this, we require your email address and thus your consent to be contacted by us.

Data processing is based on § 96(3) TKG and Art. 6(1)(a) (consent) of the GDPR.

You can cancel notifications at any time. Send your cancellation to: office@mich.company

8. Data Storage

The above-mentioned data is stored on encrypted systems secured by passwords and physical access controls, as well as in encrypted cloud solutions from:

• Microsoft (South County Business Park, Dublin, Ireland)
• Google (Google Ireland Limited, Gordon House, Dublin, Ireland)

We have concluded a data processing agreement with all named companies, in which they commit to compliance with the GDPR.

All data from a contractual relationship is stored until the expiry of the tax retention period (7 years). Access data for systems used by the client is deleted immediately upon termination of the contract.

9. Your Rights

You generally have the right to access, rectification, erasure, restriction, data portability, withdrawal and objection. Corresponding requests can be addressed to office@mich.company.

If you believe that the processing of your data violates data protection law, you can lodge a complaint with the supervisory authority. In Austria, this is the Data Protection Authority (Datenschutzbehörde).