Privacy Policy Attorney-at-law Johannes Hebenstreit

1. Personal Data

The law firm RA Dr. Johannes Hebenstreit, Franz-Josef-Straße 15, 5020 Salzburg, collects, processes, and uses your personal data only with your consent, mandate, or order for the purposes agreed with you or if there is any other legal basis in accordance with the GDPR; this is done in compliance with data protection and civil law regulations.

Only such personal data are collected which are necessary for the execution and handling of legal services or which you have voluntarily provided us with.

Personal data are all data that contain individual details about personal or factual circumstances, such as name, address, email address, telephone number, date of birth, age, gender, social security number, video recordings, photos, voice recordings of individuals, and biometric data such as fingerprints. Sensitive data such as health data or data related to a criminal proceeding can also be included.

2. Information and Deletion

As a client or generally as a data subject, you have the right – subject to attorney-client confidentiality – to obtain information at any time about your stored personal data, their origin, and recipients, and the purpose of data processing, as well as the right to correct, transfer, object, restrict the processing, and block or delete incorrect or unlawfully processed data.

If changes to your personal data occur, please inform us accordingly.

You have the right to revoke a given consent for the use of your personal data at any time. Your request for information, deletion, correction, objection, and/or data transfer, provided it does not cause disproportionate effort, can be addressed to the law firm at the address mentioned in point 12 of this statement.

If you believe that the processing of your personal data by us violates the applicable data protection law or your data protection rights have been violated in any other way, you have the possibility to file a complaint with the competent supervisory authority. In Austria, this is the Data Protection Authority.

3. Data Security

The protection of your personal data is ensured by appropriate organizational and technical precautions. These precautions concern in particular the protection against unauthorized, unlawful, or accidental access, processing, loss, use, and manipulation.
Despite efforts to maintain a consistently high level of due diligence requirements, it cannot be excluded that information you disclose to us via the Internet may be viewed and used by others.

Please note that we do not accept any liability for the disclosure of information due to errors not caused by us during data transmission and/or unauthorized access by third parties (e.g., hacking attack on email account or telephone, interception of faxes).

4. Use of Data

We will not process the data provided to us for purposes other than those covered by the mandate contract or your consent or otherwise by a provision in accordance with the GDPR. An exception to this is the use for statistical purposes, provided the data provided has been anonymized.

5. Transmission of Data to Third Parties

To fulfill your order, it may also be necessary to forward your data to third parties (e.g., opposing parties, substitutes, insurers, service providers we use and to whom we provide data, etc.), courts, or authorities. Your data will be forwarded exclusively based on the GDPR, in particular to fulfill your order or based on your prior consent.

Furthermore, we inform you that in the course of our legal representation and support, it is regularly necessary to obtain factual and case-related information from third parties.

Some of the above recipients of your personal data are located outside your country or process your personal data there. The level of data protection in other countries may not correspond to that of Austria. However, we only transmit your personal data to countries for which the EU Commission has decided that they have an adequate level of data protection or we take measures to ensure that all recipients have an adequate level of data protection, for which we conclude standard contractual clauses (2010/87/EC and/or 2004/915/EC).

6. Disclosure of Data Breaches

We strive to ensure that data breaches are detected early and, if necessary, immediately reported to you or the competent supervisory authority, including the respective data categories that are affected.

7. Retention of Data

We will not retain data longer than necessary to fulfill our contractual or legal obligations and to defend against any liability claims.

8. Analysis Tools and Third-Party Tools

When visiting our website, your browsing behavior can be statistically evaluated. This is done primarily with cookies and so-called analysis programs. The analysis of your browsing behavior is usually anonymous; the browsing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. Details can be found in our privacy policy under the heading “Third-party modules and analysis tools.” You can object to this analysis. We will inform you about the objection options in this privacy policy.

9. Cookies

This website uses “cookies” to make our offer more user-friendly, effective, and secure.

A “cookie” is a small text file that our web server sends to the cookie file of the browser on your computer’s hard drive. This enables our website to recognize you as a user when a connection is established between our web server and your browser. Cookies help us determine the frequency of use and the number of users of our website. The content of the cookies we use is limited to an identification number that no longer allows personal reference to the user. The main purpose of a cookie is to recognize the visitors of the website.

Two types of cookies are used on this website:

  • Session Cookies: These are temporary cookies that remain in the cookie file of your browser until you leave our website and are automatically deleted after your visit.
  • Persistent Cookies: For better user-friendliness, these remain stored on your end device and allow us to recognize your browser on your next visit.

You can set your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for specific cases or in general, and to activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.

10. Server Log Files

To optimize this website with regard to system performance, user-friendliness, and the provision of useful information about our services, the provider of the website automatically collects and stores information in so-called server log files that your browser automatically transmits to us. These include your Internet Protocol (IP) address, browser and language settings, operating system, referrer URL, your internet service provider, and date/time.

This data is not combined with personal data sources. We reserve the right to retrospectively check this data if we become aware of specific indications of unlawful use.

11. Plugins and Tools

Google Web Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the necessary web fonts into its browser cache to display texts and fonts correctly. For this purpose, the browser you use must connect to the Google servers. This way, Google gains knowledge that our website was accessed via your IP address. The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.
If your browser does not support web fonts, a standard font from your computer will be used.
More information about Google Web Fonts can be found at and in Google’s privacy policy:

Google Maps
This site uses the Google Maps map service via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.
The use of Google Maps is in the interest of an appealing presentation of our online offers and easy findability of the places indicated by us on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. More information about the handling of user data can be found in Google’s privacy policy:

12. Contact Details

The protection of your data is particularly important to us. We are available for your questions or your revocation at the contact details below at any time.

Dr. Johannes Hebenstreit
Franz-Josef-Strasse 15, 5020 Salzburg,
Tel.: 0662 / 871 871, Fax: 0662 / 871 871 -22,