Privacy and Cookie Policy
Effective date: 25 February 2026
This Privacy Policy explains how Elaris FlexCo (“we”, “us”) processes personal data when you use our website and what rights you have under the EU General Data Protection Regulation (GDPR).
1. Controller (responsible entity)
Elaris FlexCo
Karl-Farkas-Gasse 22, 1030 Wien, Austria
Email: office@elaris.com
2. What we do not do (no tracking)
We do not use:
- tracking technologies for advertising,
- third-party marketing cookies,
- website analytics tools (e.g., Google Analytics),
- profiling or cross-site tracking.
3. Cookies and similar technologies
3.1 Use of cookies
We do not use tracking cookies. If our website uses cookies at all, they are limited to strictly necessary cookies required to deliver the website or a feature you explicitly request (e.g., security, basic site functions).
Under Austrian cookie rules (TKG 2021), consent is generally not required for cookies that are strictly necessary for transmission or for providing a service explicitly requested by the user.
3.2 How to control cookies
You can usually delete or block cookies via your browser settings. Please note that blocking strictly necessary cookies may affect website functionality.
4. Data we process when you visit the website (server logs)
When you access our website, we (or our hosting provider) may process technical data that your browser automatically transmits, such as:
- IP address (and related network information),
- Date and time of access,
- Requested page / file,
- HTTP status code,
- Browser type/version, operating system,
- Referrer URL (if applicable),
- Error and security logs.
Purpose
To deliver the website, maintain security, prevent abuse, and troubleshoot technical issues.
Legal basis
This processing is based on legitimate interests (GDPR Art. 6(1)(f))—in particular, the secure and reliable operation of the website.
Retention
Server log files are processed daily and archived. Archived logs are retained for up to approximately one month and deleted as part of monthly housekeeping, unless longer retention is required to investigate security incidents.
5. Contacting us
If you contact us (e.g., by email), we process the data you provide (such as name, email address, and message content) to handle your request.
- Purpose: responding to inquiries and communicating with you.
- Legal basis: depending on context, performance of a contract / pre-contractual steps (GDPR Art. 6(1)(b)) or legitimate interests (GDPR Art. 6(1)(f)) in efficient communication.
- Retention: we retain communications for as long as needed to handle the request and meet legal or documentation obligations.
6. Hosting and recipients
Our website is hosted by GoDaddy. In operating the hosting environment, GoDaddy may process technical data (e.g., server logs) on our behalf.
Where required, we use contractual arrangements with processors in line with GDPR requirements (Art. 28).
7. International data transfers
Depending on the hosting setup and support operations, data may be processed in countries outside the European Economic Area (EEA). Where this involves transfers to “third countries”, appropriate safeguards (such as EU Standard Contractual Clauses) are used where required.
8. Your rights
Under the GDPR, you have the right to:
- access your personal data,
- rectification,
- erasure,
- restriction of processing,
- data portability,
- object to processing based on legitimate interests (Art. 6(1)(f)),
- withdraw consent at any time if processing is based on consent (note: this website generally does not rely on consent for tracking because we do not track).
To exercise your rights, contact us at office@elaris.com.
9. Right to lodge a complaint
You can lodge a complaint with the Austrian supervisory authority:
Österreichische Datenschutzbehörde (DSB)
Barichgasse 40–42, 1030 Wien, Austria
Tel: +43 1 52 152-0
Email: dsb@dsb.gv.at
10. Changes to this Privacy Policy
We may update this Privacy Policy to reflect changes in the website or legal requirements. The “Effective date” at the top indicates the latest version.