Privacy Policy

We take the protection of your personal data very seriously. We therefore process your data exclusively based on the legal regulations (GDPR, TKG 2003). This information regarding data protection serves to inform you of the most important aspects of data processing within our website.

Miscellaneous

By using this website, you are declaring your consent to the use of personal and non-personal data as set out in this data protection declaration in the way and for the purpose described below.

You can revoke your consent at any time (also in part) by sending an email to office@roxenergy.com. This may impair the functionality of the contents offered on this website, particularly because some data applications are required to perform the service you have requested.

You also have a right to information concerning the personal data relating to you, to data portability and to the correction or erasure of personal data; you can also require the restriction of, or object to, the processing of your personal data. You can exercise these rights by sending an email to office@roxenergy.com.

You also have the right to file a complaint with the data protection authorities

Personal data (e.g. name, email address, telephone number) are processed and transmitted for exclusively legitimate purposes by ROX Company GmbH (particularly for the fulfilment of contractual obligations or based on your consent).

Making contact

If you make contact with ROX Company GmbH by email and/or using the contact form, the personal data you enter, particularly your name and email address, will be stored for 3 years so that we can process your enquiry and any further questions you may have. This data processing is thus required pursuant to Art. 8 (3) (4) of the German Data Protection Act (DSG) and Art. 6 (1) (b) GDPR.

If you enter any comments or other posts into the fields provided for that purpose, your IP address will be stored for a maximum of six months. This makes it possible to identify the responsible party in the event of any breaches of the law. It is therefore in the overriding interest of ROX Company GmbH pursuant to Art. 8 (1) (4) of the German Data Protection Act (DSG) and Art. 6 (1) (f) GDPR.

We will retain the data you enter into the contact form until you ask us to delete them or withdraw your consent to their storage, or until the purpose for which they have been stored no longer applies (e.g. once your enquiry has been successfully processed). This is without prejudice to any mandatory statutory provisions – particularly retention periods.

Presentation of the website

ROX Company GmbH stores the following data every time the website www.roxenergy.com (hereinafter referred to as “Website”) is accessed: The name of the website accessed, the file requested, date/time, the volume of data transmitted, notification of successful retrieval, browser type/version, operating system, previously visited site and IP address.

The short-term storage of the IP address of your device is necessary for the presentation of the contents of the website and is thus required pursuant to Art. 8 (3) (4) of the German Data Protection Act (DSG) and Art. 6 (1) (b) GDPR. Your IP address will be deleted once you have finished using the website.

ROX Company GmbH uses the aforementioned data only for statistical purposes.

Cookies

When you visit the website, one or more cookies (small text files) will be stored on your device. This is for the purpose of improving the service of ROX Company GmbH, e.g. by storing your user settings.

You can also use the website without cookies. You can deactivate the storage of cookies in your browser, limit it to particular websites or set your browser to inform you before a cookie is stored. You can use the data protection functions of your browser to delete the cookies from your computer’s hard drive at any time. In this case, the functions and user friendliness of the website may be impaired.

Server log files 

The website provider automatically collects and stores information in server log files which are automatically transmitted to us by your browser. These are:

  • Browser type and version
  • Tthe operating system in use
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server query
  • IP address

We do not merge these data with other data sources. The basis for the data processing is Art. 6 (1) (b) GDPR, which allows the processing of data for the fulfilment of the contract or pre-contractual measures.

SSL encryption

This website uses SSL encryption for security reasons and to protect the transmission of confidential contents, such as any enquiries you send to ROX Company GmbH. You can see when a connection is encrypted because the browser address line changes from “http://” to “https://” and a padlock symbol appears in the browser line. If SSL encryption is activated, the data which you send to ROX Company GmbH cannot be read by third parties.

Data storage in the case of online booking

This website uses SSL encryption for security reasons and to protect the transmission of confidential contents, such as any enquiries you send to ROX Company GmbH. You can see when a connection is encrypted because the browser address line changes from “http://” to “https://” and a padlock symbol appears in the browser line. If SSL encryption is activated, the data which you send to ROX Company GmbH cannot be read by third parties.

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google“), 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. Google Analytics uses cookies, text files which make it possible to analyse your use of the website. The data generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States for the duration of the www.roxenergy.com. An adequacy decision (http://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32016D1250&from=DE) has been made by the European Commission concerning the transmission of personal data to the US.

Google will use these transferred data on behalf of the ROX Company GmbH for the purpose of evaluating your use of the website, compiling reports on website activity for the ROX Company GmbH and furthermore providing other services relating to website activity and internet usage. Google may also transfer these data to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google.

In the case that IP anonymisation is activated on the website, your IP address will be shortened beforehand by Google within the Member States of the European Union or the European Economic Area. The full IP address will only be transferred to a Google server in the USA and truncated there in exceptional cases. The IP anonymisation is activated on this website.

You can prevent the storage of cookies in the context of Google Analytics by selecting the appropriate settings in your browser software. Please be aware, however, that you may not then be able to make full use of all the functions of this website. Moreover, you can prevent the capture of data generated by cookies related to the use of the website (incl. your IP address) by Google, as well as the processing of the data by Google by downloading and installing a browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de

You will find more detailed information on the terms and conditions and data protection in respect of Google Analytics at: https://www.google.com/analytics/terms/de.html

Google AdWords Remarketing

This website uses Google Remarketing. Google Remarketing is a Google advertising service which allows the specific sending of advertising content to previous visitors to the website.

Third-party providers, including Google, place advertisements on websites. For this purpose, cookies are stored on your device and used to show you advertisements based on your previous visits to this website. Cookies placed in the web browser are used to identify the users. With the help of these text files, user behaviour during visits to this website can be analysed and this analysis used for targeted product recommendations and interest-based advertising.

If you do not wish to receive interest-based advertising, you can use the advertising preferences manager to deactivate the use of cookies by Google for these purposes and change the advertisements in the Google display network by visiting Google at https://adssettings.google.com/?hl=de.

Google Maps

The website of ROX Company GmbH uses the Google Maps API of Google Inc. with registered office in the USA to present geographical information in visual form. When you use the Google Maps function, Google collects, processes and uses data. You can find more information about data processing by Google in the Google privacy policy: https://www.google.de/intl/de/policies/privacy/

Google Fonts

We use the Google Fonts service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, to integrate particular fonts. This is required for the presentation of the font used. To integrate the font, the Google server is called up and the font loaded into the browser cache. When the font is downloaded, your IP address and the website visited are transmitted to Google. You will find further information here. Google Fonts: https://developers.google.com/fonts/faq
Google’s Terms and Conditions: https://policies.google.com/privacy?hl=de

Google reCAPTCHA

What is reCAPTCHA?

Our primary goal is to secure and protect our website for you and for us in the best possible way. To ensure this, we use Google reCAPTCHA of the company Google Inc. For the European area, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With reCAPTCHA we can verify that you are a real person and not a robot or other spam software. By spam we mean any unsolicited information sent to us electronically. With the classic CAPTCHAS, you usually had to solve text or image puzzles to verify the information. With Google’s reCAPTCHA, we usually don’t have to bother you with such puzzles. Here, in most cases, it is enough to simply check a box to confirm that you are not a bot. With the new Invisible reCAPTCHA version you don’t even have to set a checkmark anymore. How this works and what data is used for this, you will learn in the course of this privacy policy.

reCAPTCHA is a free captcha service from Google, which protects websites from spam software and abuse by non-human visitors. The most common use of this service is when you fill out forms on the Internet. A captcha service is a kind of automatic Turing test that is designed to ensure that an action on the Internet is performed by a human and not by a bot. In the classic Turing test (named after the computer scientist Alan Turing), a human determines the distinction between a bot and a human. In captchas, this is also done by the computer or a software program. Classic captchas work with small tasks that are easy for humans to solve, but present considerable difficulties for machines. With reCAPTCHA you do not have to actively solve puzzles. The tool uses modern risk techniques to distinguish humans from bots. Here you only need to check the text field “I am not a robot” or with Invisible reCAPTCHA even that is no longer necessary. With reCAPTCHA a JavaScript element is integrated into the source code and then the tool runs in the background and analyzes your user behavior. From these user actions, the software calculates a so-called Captcha score. Google uses this score to calculate the probability that you are a human before the captcha is entered. reCAPTCHA or captchas in general are always used when bots could manipulate or abuse certain actions (such as registrations, surveys, etc.).

Why do we use reCAPTCHA on our website?

We only want to welcome people of flesh and blood to our site. Bots or spam software of various kinds can safely stay at home. That’s why we do everything we can to protect ourselves and provide the best possible user experience for you. For this reason we use Google reCAPTCHA from Google. This way we can be quite sure that we remain a “bot-free” website. By using reCAPTCHA, data is transmitted to Google to determine whether you are really a human being. reCAPTCHA therefore serves the security of our website and subsequently also your security. For example, without reCAPTCHA, it could happen that a bot registers as many e-mail addresses as possible during registration, in order to “spam” forums or blogs with unwanted advertising content. With reCAPTCHA we can avoid such bot attacks.

What data is stored by reCAPTCHA?

reCAPTCHA collects personal data from users to determine whether the actions on our website really come from people. Thus, the IP address and other data required by Google for the reCAPTCHA service may be sent to Google. IP addresses within the member states of the EU or other contracting states of the Agreement on the European Economic Area are almost always shortened before the data ends up on a server in the USA. The IP address is not combined with other Google data unless you are logged in with your Google account while using reCAPTCHA. First, the reCAPTCHA algorithm checks whether Google cookies from other Google services (YouTube. Gmail, etc.) are already placed on your browser. Then, reCAPTCHA sets an additional cookie in your browser and captures a snapshot of your browser window.

The following list of collected browser and user data, does not claim to be complete. Rather, it is a sample of data that, to our knowledge, Google processes.

  • Referrer URL (the address of the page from which the visitor comes)
  • IP address (e.g. 256.123.123.1)
  • Information about the operating system (the software that enables the operation of your computer. Known operating systems are Windows, Mac OS X or Linux)
  • Cookies (small text files that store data in your browser)
  • Mouse and keyboard behavior (every action you perform with the mouse or keyboard is stored)
  • Date and language settings (which language or date you have set on your PC is saved)
  • All JavaScript objects (JavaScript is a programming language that allows websites to adapt to the user. JavaScript objects can collect all kinds of data under one name)
  • Screen resolution (shows how many pixels the image consists of)

It is undisputed that Google uses and analyzes this data even before you click on the “I am not a robot” checkbox. With the Invisible reCAPTCHA version even the ticking is omitted and the whole recognition process runs in the background. Google does not tell you in detail how much and which data it stores.

The following cookies are used by reCAPTCHA: Here we refer to the reCAPTCHA demo version of Google at https://www.google.com/recaptcha/api2/demo. All these cookies require a unique identifier for tracking purposes. Here is a list of cookies that Google reCAPTCHA has set on the demo version:

Name: IDE
Value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-112450042-8
Purpose: This cookie is set by the company DoubleClick (also owned by Google),to register and report the actions of a user on the website in dealing with advertisements. In this way, advertising effectiveness can be measured and appropriate optimization measures can be taken. IDE is stored in browsers under the domain in doubleclick.net.
Expiration date: after one year

Name: 1P_JAR
Value: 2019-5-14-12
Purpose: This cookie collects statistics about website usage and measures conversions. A conversion occurs, for example, when a user becomes a buyer. The cookie is also used to display relevant advertisements to users. Furthermore, the cookie can be used to prevent a user from seeing the same ad more than once.
Expiration date: after one month

Name: ANID
Value: U7j1v3dZa1124500420xgZFmiqWppRWKOr
Purpose: We could not find out much information about this cookie. In Google’s privacy policy, the cookie is mentioned in connection with “advertising cookies” such as “DSID”, “FLC”, “AID”, “TAID”. ANID is stored under domain google.com.
Expiration date: after 9 months

Name: CONSENT
Value: YES+AT.de+20150628-20-0
Purpose: The cookie stores the status of a user’s consent to use various Google services. CONSENT is also used for security purposes to verify users, prevent login information fraud, and protect user data from unauthorized attacks.
Expiration date: after 19 years

Name: NID
Value: 0WmuWqy112450042zILzqV_nmt3sDXwPeM5Q
Purpose: NID is used by Google to match ads to your Google searches. With the help of the cookie, Google “remembers” your most frequently entered search queries or your previous interaction with ads. This way you will always get tailored ads. The cookie contains a unique ID to collect personal settings of the user for advertising purposes.
Expiration date: after 6 months

Name: DV
Value: gEAABBCjJMXcI0dSAAAANbqc112450042-4
Purpose: Once you have checked the “I am not a robot” box, this cookie will be set. The cookie is used by Google Analytics for personalized advertising. It collects information in an anonymous form and is further used to make user distinctions.
Expiration date: after 10 minutes

Note: This list cannot claim to be complete, as Google’s experience has shown that the choice of cookies is always changing.

How long and where is the data stored?

By inserting reCAPTCHA, data is transferred from you to the Google server. Google does not clearly explain where exactly this data is stored, even after repeated requests. Without confirmation from Google, it can be assumed that data such as mouse interaction, time spent on the website or language settings are stored on Google’s European or American servers. The IP address that your browser transmits to Google will not be merged with other Google data from other Google services. However, if you are logged in to your Google account while using the reCAPTCHA plug-in, the data will be merged. The deviating data protection provisions of the Google company apply.

How can I delete my data or prevent data storage?

If you do not want any data about you and your behavior to be transmitted to Google, you must log out of Google completely and delete all Google cookies before you visit our website or use the reCAPTCHA software. Basically, the data is automatically transmitted to Google as soon as you visit our site. To delete this data again, you must contact Google support at https://support.google.com/?hl=de&tid=112450042.

Therefore, when you use our website, you agree that Google LLC and its representatives automatically collect, process and use data. Please note that when you use this tool, data about you may be stored and processed outside the EU. Most third countries (including the USA) are not considered secure under current European data protection law. Data may therefore not simply be transferred to, stored in, and processed in non-secure third countries unless there are appropriate safeguards (such as EU standard contractual clauses) between us and the non-European service provider.

Legal basis

If you have consented to Google reCAPTCHA being used, the legal basis for the corresponding data processing is this consent. This consent constitutes the legal basis for the processing of personal data, as it may occur during the collection by Google reCAPTCHA, according to Art. 6 para. 1 lit. a DSGVO (consent).

We also have a legitimate interest in using Google reCAPTCHA to optimize our online service and make it more secure. The relevant legal basis for this is Art. 6 (1) f DSGVO (Legitimate Interests). Nevertheless, we only use Google reCAPTCHA if you have given your consent.

Google also processes data from you in the USA, among other places. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA.

Google uses so-called standard contractual clauses (= Article 46 (2) and (3) of the GDPR) as the basis for data processing for recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there. Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Google undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

The Google Ads Data Processing Terms, which reference the standard contractual clauses, can be found at https://business.safety.google/intl/de/adsprocessorterms/.

You can learn a bit more about reCAPTCHA on Google’s web developer page athttps://developers.google.com/recaptcha/. Google does go into more detail about the technical development of reCAPTCHA here, but you will search in vain for precise information about data storage and privacy-related issues there as well. A good overview of the basic use of data at Google can be found in the company’s own privacy policy at https://www.google.com/intl/de/policies/privacy/.

Facebook Custom Audiences

ROX Company GmbH uses Facebook Custom Audiences on its website. Facebook Custom Audiences is an advertising service of Facebook Inc., 1601 S California Ave, Palo Alto, CA, 94304, USA, which allows targeted advertising to be addressed to previous visitors to the website.

Facebook uses cookies to place advertisements based on the previous visits of a user to this website. Cookies placed and stored in the web browser are used to identify the users. With the help of these cookies, user behaviour during visits to this website can be analysed and this analysis used for targeted product recommendations and interest-based advertising.

If you do not wish to receive interest-based advertising on Facebook, you can opt out here (in English only): https://www.facebook.com/settings/?tab=ads

Social Media plug-In

ROX Company GmbH uses social media plug-ins (interfaces to social networks) on its website. When you visit a website, the system uses the integrated social media plug-in to automatically establish a connection with the social networking question and transmit data (IP address, visits to the website etc.).

ROX Company GmbH is not involved in this data transmission and has no responsibility for it. ROX Company GmbH would like to point out that you can prevent this data transmission by logging out of the social network concerned before you visit the website. The social network can allocate specific data to your activities profile through automatic data transmission only if you are “logged in”.
The automatically transmitted data are used exclusively by the operators of the social networks and not by ROX Company GmbH.

For more information on this topic, including the content of the data collected by the social networks, please visit the website of the social network in question. There you will also be able to adjust your privacy settings.

The social networks integrated into our website are:

Newsletter

If you wish to subscribe to the free newsletter of ROX Company GmbH, you need only give us the email address to which the newsletter should be set. This data processing is required pursuant to Art. 8 (3) (4) of the German Data Protection Act (DSG) and Art. 6 (1) (b) GDPR. Other personal data, such as your first and last name, your interests… are optional. This additional information about you is used only to personalise the newsletter.

We use the double-opt-in method for registration. Once you have registered, a confirmation and authorisation email will be sent to the email address you have given us with an invitation to click on the link it contains. This guarantees that only the user entitled to use the stated email address can register with our newsletter distributor.

You can unsubscribe from the newsletter at any time. At the end of each newsletter you will find an unsubscribe link. Alternatively, you can send an email to that effect to office@roxenergy.com. Your personal data will then be deleted from the newsletter distributor.

If we have received the corresponding information in the context of our contractual relationship with you, ROX Company GmbH reserves the right to permanently store your first and last name, postal address, year of birth and the description of your profession, industry or business in compiled lists and to use them to send you interesting offers and information concerning offers from ROX Company GmbH by post. You can object to the processing of your data for this purpose at any time by sending an email to office@roxenergy.com.

Prize competition

If you take part in competitions offered on the website of ROX Company GmbH, personal data, namely your title, first name, surname, email address, postal address and country of residence, will be collected. These data are required to run the competition, particularly for the allocation of participation requests to the respective participants and to identify and inform the winners – and are thus required pursuant to Art. 8 (3) (4) of the German Data Protection Act (DSG) and Art. 6 (1) (b) GDPR.

The collected personal data will be processed and used by ROX Company GmbH only to the extent required to run the competition. The personal data will be stored for the duration of the competition and – for the processing of any claims of winners and claims for compensation – for a maximum of three years and will then be deleted.

By taking part in the competition, you are giving your consent to the publication of your name on this website and on social media channels if you win a prize.

If you have any questions concerning data processing, please use the following contact information:

ROX Company GmbH
Eduard-Bodem-Gasse 1
A-6020 Innsbruck
Tel.: 0043 512 39 37 37
E-Mail: office@roxenergy.com

Copyright © 2022 Rox Energy. All rights reserved.

Imprint
Privacy Policy