PRIVACY STATEMENT

The protection of personal data is an important concern for us. Therefore, we conduct our activities in compliance with applicable legal regulations regarding the protection of personal data and data security. Below, you will find information on what data we may collect, how we handle it and to whom we may disclose it.

We affirm compliance with legal data protection regulations. Specifically, data is used exclusively within the scope of the contracts, and measures are taken to ensure data security, including proper usage of data and protection against unauthorised access. Clients, service providers and their employees are obligated to maintain confidentiality and secrecy concerning the data disclosed to them unless a legally permissible reason exists for the transmission or disclosure of the entrusted or accessible data.

Upon request, you can receive free information at any time about the data stored concerning you and have inaccurate data corrected (Articles 15 and 16 GDPR). If the legal conditions are met, you can also request the blocking or deletion of stored data (Articles 17 and 18 GDPR).

Additionally, you can object to the processing of your personal data under Article 21 GDPR to stop the processing of your personal data as part of public tasks.

Please use our contact address: datenschutz@stadthalle.com

You are generally entitled to the rights of access, rectification, deletion, restriction, data portability, revocation and objection.

If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been infringed, you may lodge a complaint with the supervisory authority. In Austria, this is the Data Protection Authority.    
Data Protection Authority of the Republic of Austria https://www.dsb.gv.at/
Data Protection Officer: Mag. jur. Siegfried Gruber,  datenschutz@stadthalle.com

Controller: Wiener Stadthalle Betriebs- und Veranstaltungsgesellschaft m.b.H.              
Roland-Rainer-Platz 1 | 1150 Vienna


a) Personal data
We do not collect any personal data (such as names, addresses, phone numbers or email addresses) via our websites unless you voluntarily provide such data (e.g. through registration, surveys, contact requests or newsletter subscriptions), have given consent, or the applicable data protection laws permit it.


b) Use of cookies

When you use our website, "cookies" are stored on your device. These are small text files that store certain settings and data for interaction with our system via your browser. A cookie contains the domain name from which the cookie data was sent, information about the age of the cookie and an alphanumeric identifier ("cookie ID"), as well as the following data: IP address, browser and operating system. Cookies help us improve our website and provide optimised services.

Our "session cookies" temporarily store only the above-mentioned data related to your website usage. They store a "session ID" that allows various browser requests to be assigned to a single session. This enables your device to be recognised when you return to our website. Session cookies are deleted when you close your browser. We also use "persistent cookies", which are automatically deleted after a specified duration. These enable not only the recognition of your device when revisiting our website but also a non-personal analysis of your behaviour on our site. In the list below you will find information about how long the respective cookies are stored.

The following list lists all cookies used on www.stadthalle.com to measure user behaviour:

Essential cookies:

  • echonetCookieDecision (expiry: 90 days)

Logs and retains consent settings for services and functionalities regarding third-party systems used, including cookies. This also applies to services that do not use cookies but are nevertheless embedded (e.g. external content, iFrames)

  • RDTSID (expires: session)

Logs a session with the frontend of the CMS system "contentlife 4". It is not continued after the session ends.

  • SAPETSESSION313 (expires: session)

Logs a session for accessing the online shop to ensure correct data processing (e.g. shopping cart) with the SAP ET system (ticketing software)

  • SimpleSAML (expires: session)

Logs the login status of users or their lack of login status concerning the portal.

  • proxy_cookie_SAPETSESSION313 (expires: session)

An additional cookie for SAP ET session management

  • proxy_cookie_sap-et-CSRFTokenCookie-*** (expires: session)

A security cookie that protects against CSRF attacks by matching the user's identity with the ongoing process.

  • sap-et-CSRFTokenCookie-*** (expires: session)

A security cookie serving as a counterpart to proxy_cookie_sap-et-CSRFTokenCookie-***.

From other domains:

  • _gcl_au (expires: 90 days)

Integrated via *.stadthalle.com, domain origin: googletagmanager.com, Google Tag Manager

Provider: Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland

Data processed: cursor movement, timestamps, IP address, media usage (e.g. videos), user location, user behaviour, user agent (browser), language, visited website, time zone

  • test_cookie (expires: 90 days)

Integrated via *.stadthalle.com, domain origin: .doubleclick.net / www.google.com

Provider: Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland

Data processed: click paths, visibility of advertisements, cursor movement, timestamps, advertisement clicks, conversion tracking, IP address, date and time, user location, usage behaviour, user agent (browser), language, visited website, time zone

  • _pk_id (expires: 13 months)

meteostats.eu | Matomo tracking. Used to store and recognise certain unique user data upon returning to the website.

  • _pk_ref (expires: 6 months)

meteostats.eu | Matomo tracking. Used to store additional information regarding the website referrer.

  • _pk_ses, _pk_cvar, _pk_hsr (expiry: 30 minutes)

meteostats.eu | Matomo tracking. Used to record data for the respective visit to the website.

  • _pk_testcookie (expires: immediately)

meteostats.eu | Matomo tracking. Tests whether the browser accepts cookies.

Integrated external systems:

  • _cfuvid (expires: session)

vimeo.com, video integration.

Provider: Vimeo, Inc., 555 West 18th Street, New York, NY 10011, USA.

Data processed: visibility of advertisements, timestamps, IP address, user behaviour, user agent (browser), language, visited website, time zone

  • __cf_bm (expires: session)

cloudflare.com | VIMEO video system.

Provider: Cloudflare, Inc., Westminster Bridge Road, 6th Floor, Riverside Building, County Hall, London SE1 7PB, United Kingdom

Data processed: timestamps, IP address, visitor location to identify the optimal delivery location in the content delivery network, user agent (browser), language, visited website, time zone

 

c)  Registration for the newsletter and "My Stadthalle"

The prerequisite for registering and receiving the newsletter is correct entry of the required data (e.g. name, email address). The data provided is processed automatically for customer and contact management as well as for marketing purposes by Wiener Stadthalle. The transmitted data is treated with strict confidentiality and is shared only with WTS Wien Ticket Service GmbH for the purpose of sending the newsletter.

By entering your details into the newsletter database, you expressly consent to the transmission of emails ("newsletter") and other communications from Wiener Stadthalle to the provided email address, in accordance with section 174 of the Austrian Telecommunications Act 2021.
This consent can be revoked at any time by written declaration via email to registration@stadthalle.com, or, in the case of newsletters, via the unsubscribe link provided. Such revocation renders further processing of the data and the transmission of emails ("newsletter") or other communications unlawful.


d) Security

Technical and organisational security measures are implemented to protect your personal data against accidental or unlawful deletion, alteration, loss, unauthorised disclosure or unauthorised access.