All Countries
Data Privacy
Company Privacy Notice

Company Privacy Notice Template for Austria

Create a bespoke document in minutes,  or upload and review your own.

4.6 / 5
4.8 / 5

Let's create your Company Privacy Notice

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Get your first 2 documents free

Your data doesn't train Genie's AI

You keep IP ownership of your information

Key Requirements PROMPT example:

Company Privacy Notice

"I need a Company Privacy Notice for my Austrian e-commerce startup that processes customer payment data and uses AI-driven marketing analytics, with plans to expand operations to Germany and Switzerland by March 2025."

Celebrated by
Collaborations with
Investors
Document background
The Company Privacy Notice is a mandatory document under both Austrian and EU data protection law, designed to fulfill transparency obligations under Article 13 and 14 of the GDPR, as well as requirements under the Austrian Data Protection Act (DSG). This document must be provided to data subjects whose personal data is being processed, explaining in clear and plain language how their data is collected, used, shared, and protected. It serves as a crucial compliance tool for organizations operating in Austria, helping them meet their legal obligations while building trust with stakeholders. The notice should be regularly reviewed and updated to reflect changes in data processing activities, organizational practices, or legal requirements. It's particularly important in the Austrian context where both federal data protection laws and EU regulations must be considered.
Suggested Sections

1. Introduction: Overview of the privacy notice and its purpose

2. About Us: Information about the company as data controller, including contact details and Data Protection Officer information if applicable

3. Scope of This Privacy Notice: Description of who the notice applies to and what activities it covers

4. Personal Data We Collect: Comprehensive list of personal data categories collected and processed

5. How We Collect Your Personal Data: Sources of personal data collection, including direct collection and third-party sources

6. Legal Basis for Processing: Explanation of the legal grounds under GDPR for processing personal data

7. Purposes of Processing: Detailed description of how and why personal data is used

8. Data Sharing and Recipients: Information about third parties with whom data is shared

9. International Data Transfers: Details about any transfers outside the EEA and safeguards in place

10. Data Security: Measures taken to protect personal data

11. Data Retention: How long personal data is kept and criteria for determining retention periods

12. Your Rights: Explanation of data subject rights under GDPR and how to exercise them

13. Updates to This Notice: Information about how changes to the privacy notice will be communicated

14. How to Contact Us: Contact details for privacy-related queries and complaints

Optional Sections

1. Cookies and Tracking Technologies: Required if the company operates websites or apps using cookies or similar technologies

2. Marketing Communications: Required if the company engages in direct marketing activities

3. Automated Decision Making: Required if the company uses automated processing to make decisions about individuals

4. Children's Privacy: Required if services might be accessed by or data collected from children

5. Employee-Specific Processing: Required if the privacy notice covers employee data processing

6. CCTV and Access Control: Required if the company uses surveillance systems or electronic access controls

7. Special Categories of Data: Required if the company processes sensitive personal data

8. Joint Controller Information: Required if the company acts as a joint controller with other entities

Suggested Schedules

1. Cookie List: Detailed list of cookies used, their purposes, and duration

2. Data Retention Schedule: Specific retention periods for different categories of personal data

3. Third Party Processors: List of data processors and their roles

4. Technical and Organizational Measures: Detailed description of security measures implemented

5. International Transfer Mechanisms: Details of transfer mechanisms used for international data transfers

6. Legitimate Interests Assessment Summary: Summary of legitimate interests assessments for relevant processing activities

Authors

Alex Denne

Head of Growth (Open Source Law) @ Genie AI | 3 x UCL-Certified in Contract Law & Drafting | 4+ Years Managing 1M+ Legal Documents | Serial Founder & Legal AI Author

Linkedin in social icon imageX social icon image
alex.den.21@genieai.co
Relevant legal definitions
Personal Data
Processing
Data Subject
Data Controller
Data Processor
Special Categories of Personal Data
Consent
Data Protection Officer (DPO)
Supervisory Authority
Austrian Data Protection Authority (DSB)
GDPR
Austrian Data Protection Act (DSG)
Data Breach
Third Party
Recipient
Profiling
Pseudonymization
Automated Decision-Making
Cross-border Processing
Filing System
Joint Controller
Data Transfer
EEA
Legitimate Interest
Data Minimization
Storage Limitation
Cookie
Log File
IP Address
Encryption
Privacy Notice
Data Protection Impact Assessment
Technical and Organizational Measures
Binding Corporate Rules
Standard Contractual Clauses
Direct Marketing
Data Subject Rights
Right of Access
Right to Erasure
Right to Rectification
Clauses
Purpose Limitation
Data Collection
Legal Basis
Data Sharing
International Transfer
Data Security
Data Retention
Data Subject Rights
Consent Management
Information Obligations
Breach Notification
Cookie Usage
Marketing Communications
Data Protection
Accountability
Automated Processing
Special Categories Processing
Children's Privacy
Third Party Processing
Record Keeping
Transparency
Access Rights
Rectification Rights
Erasure Rights
Portability Rights
Objection Rights
Complaint Handling
Privacy Impact Assessment
Data Minimization
Storage Limitation
Relevant Industries

Technology

Retail

Healthcare

Financial Services

Manufacturing

Professional Services

Education

Hospitality

Transportation

Real Estate

Energy

Telecommunications

Media and Entertainment

Non-profit Organizations

Construction

Agriculture

Public Sector

E-commerce

Insurance

Consulting

Relevant Teams

Legal

Compliance

Information Security

Human Resources

Information Technology

Risk Management

Data Protection

Corporate Governance

Operations

Executive Leadership

Marketing

Customer Service

Internal Audit

Privacy Office

Relevant Roles

Data Protection Officer

Chief Privacy Officer

Legal Counsel

Compliance Manager

Information Security Manager

HR Director

IT Manager

Risk Manager

Chief Information Security Officer

Chief Legal Officer

Chief Executive Officer

Privacy Analyst

Compliance Officer

Data Protection Specialist

Information Governance Manager

Operations Director

Chief Technology Officer

General Counsel

Privacy Manager

Corporate Secretary

Industries
General Data Protection Regulation (GDPR): The fundamental EU regulation governing personal data processing, which directly applies in Austria and sets the main requirements for privacy notices
Austrian Data Protection Act (Datenschutzgesetz - DSG): The national law implementing GDPR in Austria and providing additional data protection requirements specific to the Austrian context
Austrian Labor Constitutional Act (Arbeitsverfassungsgesetz - ArbVG): Relevant for aspects of employee data processing and works council participation rights regarding data protection measures
Austrian Telecommunications Act (Telekommunikationsgesetz - TKG): Applicable if the company processes electronic communications data or uses electronic communications for marketing
E-Commerce Act (E-Commerce-Gesetz - ECG): Relevant if the company operates online services or engages in electronic business activities
Trade Act (Gewerbeordnung - GewO): Contains provisions relevant to customer data processing in various business sectors
Federal Statistics Act (Bundesstatistikgesetz): Relevant if the company needs to process data for statistical purposes or reporting to authorities
Austrian Civil Code (Allgemeines Bürgerliches Gesetzbuch - ABGB): Provides general legal framework for privacy rights and personality rights protection
Teams

Employer, Employee, Start Date, Job Title, Department, Location, Probationary Period, Notice Period, Salary, Overtime, Vacation Pay, Statutory Holidays, Benefits, Bonus, Expenses, Working Hours, Rest Breaks,  Leaves of Absence, Confidentiality, Intellectual Property, Non-Solicitation, Non-Competition, Code of Conduct, Termination,  Severance Pay, Governing Law, Entire Agreemen

Find the exact document you need

Notice Of Personal Data Processing

An Austrian law-compliant privacy notice detailing personal data processing activities and data subject rights under GDPR and local regulations.

find out more

Data Privacy Notice

An Austrian law-compliant privacy notice detailing personal data processing activities and individual rights under GDPR and DSG.

find out more

Customer Privacy Notice

Austrian law-compliant Customer Privacy Notice outlining personal data handling practices under GDPR and DSG requirements.

find out more

Data Processor Privacy Notice

An Austrian law-compliant privacy notice for data processors, outlining personal data handling practices and GDPR obligations.

find out more

Personal Data Notice

An Austrian law-compliant Personal Data Notice detailing how personal data is processed in accordance with GDPR and DSG requirements.

find out more

Applicant Privacy Notice

An Austrian-law governed Applicant Privacy Notice outlining how job applicants' personal data is handled during recruitment, compliant with GDPR and local data protection laws.

find out more

Company Privacy Notice

An Austrian law-compliant privacy notice detailing an organization's personal data processing practices under GDPR and DSG requirements.

find out more

Data Processing Notice

An Austrian law-compliant Data Processing Notice outlining how an organization handles personal data in accordance with GDPR and DSG requirements.

find out more

Download our whitepaper on the future of AI in Legal

By providing your email address you are consenting to our Privacy Notice.
Thank you for downloading our whitepaper. This should arrive in your inbox shortly. In the meantime, why not jump straight to a section that interests you here: https://www.genieai.co/our-research
Oops! Something went wrong while submitting the form.

Genie’s Security Promise

Genie is the safest place to draft. Here’s how we prioritise your privacy and security.

Your documents are private:

We do not train on your data; Genie’s AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

Our bank-grade security infrastructure undergoes regular external audits

We are ISO27001 certified, so your data is secure

Organizational security

You retain IP ownership of your documents

You have full control over your data and who gets to see it

Innovation in privacy:

Genie partnered with the Computational Privacy Department at Imperial College London

Together, we ran a £1 million research project on privacy and anonymity in legal contracts

Want to know more?

Visit our Trust Centre for more details and real-time security updates.

Read our Privacy Policy.