This privacy policy provides you with details about the collection, processing, and storage of your personal data in connection with our website and future services, such as an online shop. Protecting your data is a top priority for us, and we handle your personal information confidentially and in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
The controller responsible for data processing on this website is:
Anna Gabriela Palfinger Camacho
E-mail: hello@gavriela.com
Phone: +43 676 37 25 000
Our website is hosted by an external hosting provider. The hosting provider provides the technical infrastructure to ensure the secure and efficient operation of the website.
When you access our website, the following server log files are automatically collected:
These data are processed solely for technical purposes, such as ensuring the website’s functionality, security, and optimization. They are not combined with other data sources. The data are deleted after 14 days, unless legally required to be retained.
Legal Basis: Article 6(1)(f) GDPR (legitimate interest in secure website operation).
When you contact us via the contact form or email, the personal data you provide (such as your name, email address, address, or other personal details submitted through forms or comments) will be stored securely along with the time and your IP address. These data are used solely for the purpose stated at the time of submission, such as responding to inquiries or providing services and products requested via our website.
We only use your personal data to communicate with you and to process the services and products offered on this website. Your data will not be shared with third parties without your explicit consent.
Please note, however, that if you send us personal data via email—outside of this website—we cannot guarantee secure transmission or full protection of your data. We recommend not sending confidential information via unencrypted email.
Your data will be stored until it is no longer needed for the purpose for which it was collected or until you request its deletion or revoke your consent. In such cases, the data will be securely deleted unless there are legal retention obligations.
Legal Basis:
What Are Cookies?
Cookies are small text files stored on your device when you visit a website. They serve various purposes, such as ensuring the proper functioning of the website, improving user experiences, and providing analytics data to help enhance services.
Types of Cookies We Use:
Essential Cookies:
These cookies are necessary for the basic functionality of the website, such as enabling navigation or remembering items in your shopping cart.
Functional Cookies:
These cookies save your preferences (e.g., language settings or region) to enhance your browsing experience.
Analytical Cookies (Google Analytics):
These cookies help us analyze how visitors interact with our website, so we can optimize its performance.
Session Cookies:
Temporary cookies that are deleted when you close your browser.
Persistent Cookies:
Cookies that remain on your device until you delete them or they expire automatically.
What Information May Be Stored in Cookies?
We do not use cookies to store sensitive personal data or track your activity across other websites.
Managing Cookies
You can manage or delete cookies at any time through your browser settings. Below are links to guides for managing cookies in the most common browsers:
Disabling certain cookies may limit the functionality of the website.
Google Analytics
We use Google Analytics, a web analytics service provided by Google Ireland Limited, to analyze website traffic and improve our offerings. Google Analytics uses cookies to collect data about your interactions with our website.
Data collected through Google Analytics may include:
Google Analytics anonymizes your IP address before storing it, ensuring that no personally identifiable information is linked to the data.
Opting Out of Google Analytics:
You can opt out of Google Analytics tracking by:
For more information about Google Analytics and how it processes data, visit: Google Privacy Policy.
Cookie Consent
When you first visit our website, you will be asked to consent to the use of cookies. You can adjust your preferences at any time through [insert link to cookie settings tool, if available].
Legal Basis:
If you subscribe to our newsletter, we will process the email address you provide to send you regular updates about our services, art, events and products.
Legal Basis: Article 6(1)(a) GDPR (consent).
Your data will be deleted immediately after unsubscribing, unless retention is legally required.
In the future, an online shop will be available on our website. When you place an order, we process personal data such as:
Purposes of Processing:
Data Sharing with Payment Providers
To securely process payments, we use trusted third-party providers. These providers act as independent data controllers for your payment information. The payment providers we use are:
1. Stripe
We use Stripe, a global payment processor, to handle transactions securely. Stripe processes payments made via credit/debit cards, SEPA direct debit, and digital wallets like Apple Pay or Google Pay.
Stripe Data Processed:
Stripe is PCI-DSS compliant and ensures the highest level of payment security. For more details on how Stripe handles your data, please refer to their privacy policy: https://stripe.com/privacy.
2. PayPal
If you choose PayPal as your payment method, your payment information will be transmitted to PayPal. PayPal processes your data independently, ensuring compliance with global data protection standards.
PayPal Data Processed:
For more information on PayPal’s data practices, refer to their privacy policy: https://www.paypal.com/webapps/mpp/ua/privacy-full.
Data Sharing with other Third Parties:
We may share your data with:
Data Security and Retention:
All payment information is transmitted securely using encryption technologies (e.g., SSL). We do not store sensitive payment details like credit card numbers or CVV codes.
Payment providers may retain your data for the purposes of fraud prevention, legal compliance, and dispute resolution.
Retention Period:
Your data will be stored in accordance with legal retention periods (e.g., 7 years under Austrian tax law).
Legal Basis
YouTube
Our website integrates videos hosted on YouTube (Google Ireland Limited). When you play a video, YouTube may process data such as your IP address, browser type, and visited pages.
Legal Basis: Article 6(1)(f) GDPR (legitimate interest in optimizing our services).
More information: YouTube Privacy Policy.
Google Maps
We may provide interactive maps, therefore we may use Google Maps. This involves transmitting your IP address to Google.
Legal Basis: Article 6(1)(f) GDPR (legitimate interest in providing user-friendly navigation).
More information: Google Privacy Policy.
Google Fonts
We use Google Fonts to display consistent and appealing fonts. During this process, technical data such as your IP address may be processed.
Legal Basis: Article 6(1)(f) GDPR (legitimate interest in visually appealing website design).
Google Analytics
We use Google Analytics to analyze website usage and improve our services. Google Analytics uses cookies to collect information about your usage (e.g., IP address, visit duration, pages visited).
IP Anonymization: Your IP address is anonymized before being transmitted to Google.
Legal Basis: Article 6(1)(a) GDPR (consent).
You can deactivate Google Analytics here: Google Analytics Opt-Out.
You have the following rights regarding your personal data:
To exercise your rights, contact us at hello@gavriela.com.
If you believe that your data is being processed unlawfully, you have the right to lodge a complaint with a supervisory authority. In Austria, this is the Data Protection Authority: https://www.dsb.gv.at.
Anna Gabriela Palfinger Camacho
E-mail: hello@gavriela.com
Phone: +43 676 37 25 000
