Privacy Policy

1. Introduction

quantiumboost AG ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, and protect your information when you visit our website or use our food safety compliance services.

As a company registered in Austria, we comply with the General Data Protection Regulation (GDPR) and Austrian data protection laws. We are the data controller for the personal information we process about you.

2. Data We Collect

We collect various types of information depending on how you interact with our services. The data we collect includes personal information you provide directly to us and technical data collected automatically when you use our website.

Information You Provide Directly:

• Contact details (name, email address, phone number, company name)
• Business information related to your restaurant or food service establishment
• Communication preferences and enquiry details
• Information provided in contact forms and support requests
• Payment information (processed securely through third-party payment providers)

Information Collected Automatically:

• Website usage data and analytics information
• Device information (browser type, operating system, IP address)
• Cookies and similar tracking technologies (see our Cookie Policy for details)
• Log files and technical diagnostic information

3. How We Use Your Information

We use your personal data for specific purposes based on legitimate business interests, your consent, or to fulfil our contractual obligations. How we use your information depends on the nature of our relationship and your interactions with our services.

Service Delivery:

• Providing food safety compliance consultations and services
• Processing and responding to your enquiries and support requests
• Delivering training materials and compliance documentation
• Managing client relationships and service agreements

Business Operations:

• Processing payments and managing billing
• Maintaining accurate business records and compliance documentation
• Improving our services based on client feedback and usage patterns
• Ensuring website security and preventing fraud

Marketing and Communication:

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

4. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Contract Performance: Processing necessary to provide our compliance services
• Legitimate Interests: Business operations, security, and service improvement
• Consent: Marketing communications and non-essential cookies
• Legal Obligation: Compliance with Austrian and EU regulations

5. Data Sharing and Third Parties

We do not sell your personal data to third parties. We may share your information with trusted service providers who assist us in delivering our services, always under strict confidentiality agreements and data protection requirements.

Service Providers:

• Website hosting and technical infrastructure providers
• Payment processing services
• Email communication platforms
• Analytics and marketing platforms (Google Analytics, Google Ads)
• Professional advisors (legal, accounting, audit services)

6. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements.

• Client Records: Retained for the duration of our business relationship plus 7 years for legal and regulatory compliance
• Marketing Data: Retained until you withdraw consent or request deletion
• Website Analytics: Typically retained for 26 months (Google Analytics default)
• Support Communications: Retained for 3 years for service improvement purposes

7. Your Rights

Under GDPR and Austrian data protection law, you have several rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right of Rectification: Request correction of inaccurate or incomplete data
• Right of Erasure: Request deletion of your personal data under certain circumstances
• Right to Restrict Processing: Request limitation of how we use your data
• Right to Data Portability: Request transfer of your data to another organisation
• Right to Object: Object to processing based on legitimate interests or direct marketing
• Right to Withdraw Consent: Withdraw consent for processing at any time

8. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your browsing experience, analyse website traffic, and support our marketing efforts. For detailed information about our use of cookies, including how to manage your preferences, please see our comprehensive Cookie Policy.

You can control cookie settings through our consent banner that appears when you first visit our website, or by adjusting your browser settings. Please note that disabling certain cookies may affect website functionality.

9. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and staff training on data protection
• Secure data storage and backup procedures
• Incident response and data breach notification procedures

10. International Data Transfers

Your personal data is primarily processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission.

11. Contact Information

If you have questions about this Privacy Policy, wish to exercise your rights, or need to contact us about data protection matters, please reach out to us:

12. Supervisory Authority

You have the right to lodge a complaint with the Austrian Data Protection Authority (Datenschutzbehörde) if you believe we have not handled your personal data in accordance with applicable laws. Contact details: www.dsb.gv.at