Privacy Policy

Birlika Collective processes personal data in accordance with the General Data Protection Regulation (GDPR) and applicable Austrian data protection laws. The approach to data handling is based on minimization, transparency, and purpose limitation.

This website is designed primarily as an informational platform and does not require user registration or account creation. Personal data is collected only where necessary and typically only when voluntarily provided by the user, such as through direct email communication or contact forms.

In such cases, the data collected may include name, email address, and any additional information provided by the user. This data is used exclusively for the purpose of responding to inquiries, maintaining communication, and, where applicable, developing a professional relationship.

In addition to voluntarily provided data, certain technical information may be automatically processed. This includes IP address, browser type, operating system, referring URLs, and interaction behavior on the website. This data is used to ensure system security, maintain operational stability, and analyze usage patterns in an aggregated manner.

The legal basis for data processing is derived from Article 6 of the GDPR. Processing may be based on user consent, the legitimate interests of Birlika Collective in operating and improving its platform, or compliance with legal obligations.

Personal data is retained only for as long as necessary to fulfill its intended purpose. Communication data may be stored for a limited period to ensure continuity and context, typically not exceeding twelve months unless required for ongoing interaction.

Users have the right to request access to their personal data, to correct inaccuracies, to request deletion, to restrict processing, and to object to data processing where applicable. Requests may be submitted via the contact email provided above. Users also have the right to lodge a complaint with the Austrian Data Protection Authority.

Appropriate technical and organizational measures are implemented to protect personal data against unauthorized access, loss, or misuse. However, as with any online system, absolute security cannot be guaranteed.

Where third-party service providers are used, such as hosting providers or analytics tools, they operate under data processing agreements that ensure compliance with GDPR requirements. Any transfer of data outside the European Economic Area is conducted in accordance with applicable legal safeguards.