Privacy Policy

Last updated: January 2026

Introduction

VitaMan respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you visit our website in compliance with the General Data Protection Regulation (GDPR) and Austrian data protection laws.

Data Controller

The data controller responsible for your personal data is:

VitaMan
Stephansplatz 3
1010 Vienna
Austria
Email: [email protected]
Phone: +43 676 45 89 217

Information We Collect

Information You Provide

We may collect the following personal information when you voluntarily provide it:

  • Contact information (name, email address) when you use our contact form
  • Any other information you choose to provide in communications with us

Information Collected Automatically

When you visit our website, certain information may be collected automatically:

  • IP address
  • Browser type and version
  • Operating system
  • Referring website
  • Pages visited and time spent on pages
  • Date and time of access
  • Cookie data (see our Cookie Policy for details)

How We Use Your Information

We use collected information for the following purposes:

  • To respond to your inquiries submitted through our contact form
  • To improve our website functionality and user experience
  • To analyze website usage and traffic patterns
  • To ensure website security and prevent fraud
  • To comply with legal obligations

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you provide consent for specific processing activities, such as accepting cookies
  • Legitimate Interests: For website analytics, security, and improving our services
  • Legal Obligation: When required to comply with applicable laws

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • Service Providers: We may share data with trusted service providers who assist in website operations, analytics, or hosting, under strict confidentiality agreements
  • Legal Requirements: We may disclose information if required by law, court order, or governmental authority
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this privacy policy:

  • Contact form submissions: Retained for 2 years or until inquiry resolution
  • Website analytics data: Retained for 26 months in accordance with standard practices
  • Cookie data: Retention periods vary by cookie type (see Cookie Policy)

After the retention period, data is securely deleted or anonymized.

Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

  • Right of Access: Request confirmation of whether we process your data and obtain a copy
  • Right to Rectification: Request correction of inaccurate or incomplete personal data
  • Right to Erasure: Request deletion of your personal data under certain conditions
  • Right to Restriction: Request limitation of processing in specific circumstances
  • Right to Data Portability: Receive your data in a structured, commonly used format
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
  • Right to Lodge a Complaint: File a complaint with the Austrian Data Protection Authority

To exercise any of these rights, please contact us at [email protected].

Cookies and Tracking Technologies

Our website uses cookies to enhance user experience and analyze website traffic. For detailed information about cookies we use, their purposes, and how to manage them, please refer to our Cookie Policy.

International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions by the European Commission
  • Other legally recognized transfer mechanisms

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using SSL/TLS protocols
  • Regular security assessments and updates
  • Access controls and authentication mechanisms
  • Employee training on data protection practices

However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

Children's Privacy

Our website is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.

Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.

Changes to This Privacy Policy

We may update this privacy policy periodically to reflect changes in our practices or legal requirements. We will notify users of significant changes by posting the updated policy on our website with a revised "Last updated" date.

We encourage you to review this privacy policy regularly to stay informed about how we protect your information.

Contact Information

If you have questions, concerns, or requests regarding this privacy policy or our data practices, please contact us:

VitaMan
Stephansplatz 3
1010 Vienna, Austria
Email: [email protected]
Phone: +43 676 45 89 217

Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Austrian Data Protection Authority:

Österreichische Datenschutzbehörde
Barichgasse 40-42
1030 Wien
Austria
Phone: +43 1 52 152-0
Email: [email protected]
Website: www.dsb.gv.at