Privacy Policy
Our Privacy Policy
- Home
- Privacy Policy
Privacy Policy
Last updated: July 17, 2026
Introduction and Overview
We have drafted this privacy policy to explain to you, in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679 and applicable national laws, which personal data (data for short) we as controllers and the processors commissioned by us (e.g., providers) process, will process in the future, and what legal options you have. The terms used are to be understood as gender-neutral.
In short: We provide you with comprehensive information about the data we process about you.
Data protection is important to us. We therefore process your data exclusively on the basis of the statutory provisions (GDPR, DSG). In this data protection information, we inform you about the most important aspects of data processing within the scope of our website.
Data Controller
Responsible for data processing on this website is:
Fragon Studios e.U.
Moosfelderstraße 45
4030 Linz
Austria
Email: office@fragonstudios.com
Website: www.fragonstudios.com
Automatic Data Storage
When you visit websites today, certain information is automatically created and stored, including on this website.
Even as you are visiting our website right now, our web server (the computer on which this website is stored) automatically stores data for reasons of operational security, to optimize our offer and to create access statistics, such as:
- the complete internet address (URL) of the accessed web page
- Browser and browser version (e.g., Chrome 120)
- the operating system used (e.g., Windows 11)
- the address (URL) of the previously visited page (referrer URL)
- the hostname and the IP address of the device from which access is made
- Date and time
- Files (web server log files)
Legal Basis
The processing is based on Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest lies in the improvement, stability, functionality and security of our website.
Storage Duration
The data will be deleted as soon as they are no longer necessary for the purpose of their collection. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. In the case of storage of data in log files, this is the case after 14 days at the latest.
We do not pass this data on to third parties, with the exception of the processors named in this privacy policy (such as Google reCAPTCHA to protect our forms from spam). We also cannot rule out that this data may be viewed by authorities in the event of illegal behavior.
Cookies
Our website uses cookies - small text files stored in your browser to provide certain functions. We use cookies sparingly and deliberately.
Necessary cookies
These cookies are required to provide basic website functions, such as storing your cookie settings or your language selection. Without them, the website does not work properly. The legal basis is our legitimate interest in the technically error-free and secure operation of the website (Art. 6(1)(f) GDPR).
Processing based on your consent
To protect our forms from spam, we use the Google reCAPTCHA service (for details see the “Google reCAPTCHA” section). reCAPTCHA is only loaded after you have expressly consented via our cookie notice. To that extent, the processing is based on your consent (Art. 6(1)(a) GDPR). You can withdraw your consent at any time with effect for the future.
We do not use any analytics, statistics, marketing or tracking cookies, nor do we embed any corresponding third-party services.
Managing and deleting cookies
On your first visit, no consent-requiring services other than the necessary cookies are loaded. Via our cookie notice you decide yourself whether you consent to the integration of Google reCAPTCHA; you can change or withdraw your decision at any time, for example via the “Cookie Settings” link in the footer. Independently of this, you can use your browser settings at any time to see which cookies are stored and to delete, deactivate or partially allow them.
Storage Duration
The storage period depends on the respective cookie. Necessary cookies are retained for as long as they are required for the respective function. Cookies set in the context of reCAPTCHA are subject to Google's specifications.
SSL/TLS Encryption
For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses SSL or TLS encryption. This means that data that you transmit via this website cannot be read by third parties. You can recognize an encrypted connection by the “https://” address line of your browser and by the lock symbol in the browser line.
Hosting
Our website is operated and hosted on our own servers. The personal data collected on this website is stored on our own servers. This can include, in particular, IP addresses, contact requests, meta and communication data, contract data, contact data, names, website access and other data generated via a website.
Self-hosting is for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer (Art. 6 para. 1 lit. f GDPR).
By hosting independently, we have complete control over the processing of your data and can guarantee the highest security standards. Our hosting servers are located in the EU (Germany and Finland) and are subject to the strict European data protection regulations. We rent the dedicated server hardware from Hetzner Online GmbH (Germany); in this respect, Hetzner acts as a processor on the basis of a data processing agreement under Art. 28 GDPR. Embedded third-party services such as Google reCAPTCHA may process data outside the EU; see the Google reCAPTCHA section for details.
For client projects in which we process personal data on behalf of our clients, we offer a data processing agreement under Art. 28 GDPR.
Contact Form
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions.
Legal Basis
The processing of this data is based on Art. 6 para. 1 lit. b GDPR, provided that your request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) if this has been requested.
Storage Duration
The data you enter in the contact form will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions, in particular retention periods, remain unaffected.
Booking Form
Via our booking form you can arrange an appointment for a get-to-know or consultation meeting. We process your name, your email address, optionally your company name, as well as the selected appointment and any information in the notes field. We use this data solely to organize, confirm and conduct the appointment with you.
Legal Basis
The processing is based on Art. 6(1)(b) GDPR for carrying out pre-contractual measures taken at your request, as well as on our legitimate interest in efficient appointment coordination (Art. 6(1)(f) GDPR).
Storage Duration
We store the appointment data for as long as it is necessary to carry out and follow up on the appointment. The data is then deleted, unless statutory retention periods apply or you have consented to further storage.
Google reCAPTCHA
To protect our forms (contact and booking form) from automated abuse and spam, we use Google reCAPTCHA, a service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). reCAPTCHA uses various signals to check whether an input comes from a human.
reCAPTCHA is only loaded and executed after you have expressly consented to its use via our cookie notice. Only from that point on is data such as your IP address, information about your browser and device, and your interaction behaviour transmitted to and processed by Google. As long as you do not consent, reCAPTCHA is not loaded.
A transfer to the USA cannot be ruled out in this context. Google relies on its certification under the EU-US Data Privacy Framework for this; in addition, the European Commission's standard contractual clauses apply.
Legal basis
The processing is carried out exclusively on the basis of your consent pursuant to Art. 6(1)(a) GDPR. You can withdraw your consent at any time with effect for the future, for example via the “Cookie Settings” link in the footer. The lawfulness of the processing carried out until the withdrawal remains unaffected. Further information can be found in Google's privacy policy and terms of service.
Email Communication
If you contact us by email, the information you provide will be stored for the purpose of processing your request and for possible follow-up questions.
Legal Basis
The processing is based on Art. 6 para. 1 lit. f GDPR (legitimate interest in processing your request).
Storage Duration
The data will be deleted as soon as the purpose of storage no longer applies or you request us to delete it.
Your Rights under the General Data Protection Regulation
Right to Information (Article 15 GDPR)
You have the right to request confirmation from us as to whether personal data concerning you is being processed. If this is the case, you have a right to information about this personal data.
Right to Rectification (Article 16 GDPR)
You have the right to demand the immediate correction of incorrect personal data concerning you. Taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data.
Right to Erasure ('Right to be Forgotten') (Article 17 GDPR)
You have the right to demand that we delete personal data concerning you immediately, provided that one of the legally stipulated reasons applies and insofar as the processing is not necessary.
Right to Restriction of Processing (Article 18 GDPR)
You have the right to demand that we restrict processing if one of the legal requirements is met.
Right to Notification (Article 19 GDPR)
If you have asserted the right to rectification, erasure or restriction of processing against us, we are obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing.
Right to Data Portability (Article 20 GDPR)
You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format. You also have the right to transmit this data to another controller.
Right to Object (Article 21 GDPR)
You have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you, which is based on Art. 6 para. 1 lit. e or f GDPR.
Right to Withdraw Consent under Data Protection Law (Article 7 (3) GDPR)
You have the right to withdraw your consent under data protection law at any time. The withdrawal of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the withdrawal.
Automated Individual Decision-Making, Including Profiling (Article 22 GDPR)
You have the right not to be subject to a decision based solely on automated processing, including profiling, which has legal effect on you or similarly significantly affects you.
Right to Lodge a Complaint with a Supervisory Authority
If you believe that the processing of personal data concerning you violates the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work or the place of the alleged infringement.
In Austria, the competent supervisory authority is:
Austrian Data Protection Authority
Barichgasse 40-42
1030 Vienna
Phone: +43 1 52 152-0
Email: dsb@dsb.gv.at
Website: https://www.dsb.gv.at/
Data Security
We use technical and organizational security measures to protect your data managed by us against manipulation, loss, destruction and against access by unauthorized persons. Our security measures are continuously improved in line with technological developments.
Actuality and Change of this Privacy Policy
This privacy policy is currently valid and has the status of July 2026.
Due to the further development of our website and offers above or due to changed legal or official requirements, it may become necessary to change this privacy policy. The current privacy policy can be accessed and printed by you at any time on the website.
Contact
If you have any questions about data protection, the exercise of your rights or this privacy policy, please contact us at:
Email: office@fragonstudios.com
Postal address:
Fragon Studios e.U.
Moosfelderstraße 45
4030 Linz
Austria
We will process your request as quickly as possible.