Privacy policy
Status: 18.12.2025
According to Arts. 13 and 14 of Regulation (EU) 2016/679 (General Data Protection Regulation; "GDPR"), the Controller must inform the Data Subject about the processing of personal data. With this document, we inform you about the personal data processed.
Definitions
For a better understanding of this privacy policy, a brief explanation of the terms used is provided below.Personal data ("data") means any data containing information about personal or material circumstances of natural persons, such as name, address, email address, telephone number, date of birth, age, gender, social security number, video recordings, photos, etc. Data of legal entities are not subject to the provisions of the GDPR.Processing means any operation or set of operations which is performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.Controller is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.Processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.Recipient is a natural or legal person, public authority, agency or other body to which the personal data are disclosed, whether a third party or not.
Our contact details
Should you have any further questions, we, as the controller of the data processing discussed herein, are happy to be at your disposal at the following contact details:
JARV-E Motor GmbH
Nötsch 361, 9611 Nötsch, Austria
Phone number: +43 660 900 16 27
E-Mail: support@jarv-e.com
Purposes and Legal Basis of Processing
Data may only be processed for a specific purpose and only if the processing can be based on a corresponding legal basis. Processing may be justified for the following reasons:We process your data for the following purposes based on the following legal bases:
Recipients
Recipients support us in complying with legal or regulatory obligations, in initiating and fulfilling contracts, in providing services that require your consent, or in performing processing operations that are in our legitimate interest. We transfer or disclose the data in part to the following recipients (processors or controllers) in particular:
We only transfer your data to other recipients if you have given your express consent in accordance with Art. 6 (1) (a) GDPR, if this is legally permissible and necessary in accordance with Art. 6 (1) (b) GDPR for the fulfilment of a contractual relationship with you, or if we are legally obliged to do so in accordance with Art. 6 (1) (c) GDPR, or if the transfer is necessary in accordance with Art. 6 (1) lit. f GDPR to safeguard our legitimate interests and to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data. We intend to transfer the data to the following third countries: United States of America.
The European Commission has issued an adequacy decision for the United States of America. In its decision of 10 July 2023 on C(2023) 4745 final, the European Commission ruled that the United States of America offers an adequate level of data protection within the meaning of Article 45 of the GDPR if our contractual partner is included in the EU/US Privacy Shield list. Information on the inclusion of individual providers in this list can be found in the relevant section of this privacy policy. In the absence of an adequacy decision, we may only transfer data on the basis of appropriate safeguards, such as standard contractual clauses, binding internal data protection regulations, approved codes of conduct, approved certification mechanisms, etc. Under the conditions of Art. 49 GDPR, a transfer may nevertheless be permissible. We will be happy to provide you with a copy of these safeguards for your specific case upon request. There is no intention to transfer the data to an international organisation.
Storage period
Data is generally only stored for as long as is necessary to comply with statutory retention obligations. Data may also be stored if this is necessary to enforce or defend against third-party claims. Important storage periods are listed below:
Webflow
The provider is Webflow, Inc., 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA (hereinafter referred to as Webflow). When you visit our website, Webflow collects various log files, including your IP addresses. Webflow is a tool for creating and hosting websites. Webflow stores cookies or other recognition technologies that are necessary for displaying the page, providing certain website functions and ensuring security (necessary cookies). For details, please refer to Webflow's privacy policy: https://webflow.com/legal/eu-privacy-policy.
The use of Webflow is based on Art. 6 (1) lit. f GDPR. We have a legitimate interest in ensuring that our website is displayed as reliably as possible. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 (1) lit. a GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time. Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:
The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when data is processed in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this is available from the provider at the following link:
Fonts
We use Google Fonts and other fonts on our website to make our content look good. These fonts are hosted locally on our server (provided by Webflow). This avoids a direct connection to Google's servers or other external providers, and your IP address or other data isn't sent to them. The use of these locally hosted fonts serves our legitimate interest in an appealing and user-friendly website design (Art. 6(1)(f) GDPR).
123reg
We use the web hosting provider 123reg for our website. The service provider is the British company 123reg, Studio 4th Floor, Parts C&D At East West, Tollhouse Hill, Nottingham, England, NG1 5FW. You can find out more about the data processed by 123reg in the privacy policy at https://www.123-reg.co.uk/terms/privacy/
Google services
General information
The provider of the following services is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland. Google's privacy policy can be found here. However, some services (such as Google Search or Google Maps) are provided by or transferred to the following company: Google LLC, 1600 Amphitheatre Pkwy, Mountain View, California 94043-1351, USA Google LLC is based in a third country. Google LLC is included in the list, meaning that data transfers to the USA comply with data protection regulations within the meaning of Art. 45 GDPR. Further information on the certification of Google LLC can be found here.
Some Google services use cookies. An overview of the cookies used, their purpose and storage duration can be found in the cookie section of this privacy policy. For the use of Google services and the setting of the necessary cookies, your consent within the meaning of Art. 6 (1) lit. a GDPR or § 165 (3) TKG will be obtained prior to processing.
Google Ads
We use Google Ads (formerly Google AdWords) as an online marketing measure to promote our products and services. Google Ads is used to better analyse user actions. When you click on one of our Google Ads, a ‘conversion’ cookie from a Google domain is stored on your device. We also use Google Ad Remarketing for our website. The most important cookies used in this context are:
Google Tag Manager
We use Google Tag Manager as an organisational tool that allows us to manage website tags centrally and via a user interface. Tags are used, for example, to record your activities on our website. The tags mostly originate from Google products such as Google Ads or Google Analytics. Google Tag Manager does not set any cookies or store any data. Rather, it acts as an administrator of the tags implemented in the system. The data is collected by the tags of the web analysis tools. In this sense, the data is passed on to the individual tracking tools and is not stored.
Google Analytics
Type and purpose of processing This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (‘Google’). The service is used to analyse website usage and continuously optimise our offerings. The statistics obtained enable us to improve our offering and make it more interesting for you as a user. Google Analytics uses so-called ‘cookies’ (see section $»$Cookies$«$), which are stored on your device and enable an analysis of your use of the website.
Categories of data processed:
The following data in particular is processed within the scope of Google Analytics:
IP address (is immediately pseudonymised by activating IP anonymisation, so that it is no longer possible to clearly identify the user).
Date and time of the website visit.
Pages visited and clicks.
Information about your device (browser, operating system, screen resolution).
Source of origin (which website you came to us from).
Metadata (e.g. geographical region, language setting).
Legal basis and consent (Austria):
The processing of data and the setting of cookies is carried out exclusively on the basis of your express and informed consent within the meaning of:
Art. 6(1)(a) GDPR (consent)
Section 165(3) TKG 2021 (consent for cookies that are not technically necessary and access to information on the end device)
Your consent is obtained via our cookie management tool before the Google Analytics scripts are loaded.
Storage period:
The data collected by Google Analytics and linked to cookies is automatically deleted after 14 months. The maximum lifetime of Google Analytics cookies is 2 years.
Third country transfer to the USA:
When using Google Analytics, the data collected is usually transferred to servers belonging to Google LLC in the USA and stored there. The USA is considered a third country outside the European Economic Area (EEA).
Guarantees:
The transfer is based on the EU-U.S. Data Privacy Framework (DPF), as Google LLC is certified under this framework and has therefore committed to complying with an adequate level of European data protection.
Residual risk:
Notwithstanding these guarantees, we would like to point out that transferring data to the US carries a residual risk, as US security laws (such as the Cloud Act or FISA 702) may potentially allow US authorities to access the data without you, as a data subject in the EU, having the same effective legal remedies available to you as under the GDPR. By giving your consent, you accept this risk.
Meta services
Meta Business Tools
Within our online offer, we use Meta Business Tools, which are operated and provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Meta").The following processing operations are carried out exclusively on the basis of your express consent in accordance with Art. 6 Para. 1 Lit. a GDPR.
Meta Pixel
Meta Pixel is a code that loads a collection of functions with which Meta can track user actions on our website. The Meta Pixel can store your actions on our website in one or more cookies. Further information on Meta Pixel can be found at Link. We also use Custom Audiences. Further information on this can be found here.
The pixel collects information such as your IP address and User ID and compares this with the data from your Facebook account. Meta uses different cookies depending on interaction and user behavior. The following cookies are used as examples:
Use of Uploadcare for File Uploads
In our forms, we use the service Uploadcare to upload, store, and process files (e.g., images, PDFs). The provider is Uploadcare Inc., 2711 Centerville Road, Suite 400, Wilmington, Delaware 19808, USA.
Purpose of Data Processing:
Uploadcare provides us with the technical infrastructure to enable you to upload files easily and securely via our website. Your uploaded files, as well as technical metadata (such as IP address, browser data), are processed and stored on Uploadcare's servers. Uploadcare also utilizes a Content Delivery Network (CDN) to ensure fast delivery of the files.
Legal Basis:
The use of Uploadcare is based on our legitimate interest in providing secure, efficient, and user-friendly upload functions in accordance with Art. 6 Para. 1 Lit. f GDPR. If the upload serves the performance of a contract or pre-contractual measures (e.g., job applications, order data), the legal basis is additionally Art. 6 Para. 1 Lit. b GDPR.
Data Transfer to Third Countries (USA):
Data transfer to the USA is based on the Standard Contractual Clauses (SCC) of the EU Commission. Uploadcare has contractually committed to maintaining a level of data protection equivalent to that of the EU. Further information can be found in Uploadcare's privacy policy: https://uploadcare.com/about/privacy-policy/
Data Processing Agreement:
We have entered into a Data Processing Agreement (DPA) with Uploadcare. This agreement ensures that Uploadcare processes the personal data of our users only in accordance with our instructions and in compliance with the GDPR.
Storage Duration:
Data uploaded via Uploadcare remains with us or the service provider until the purpose for data storage no longer applies (e.g., after your request has been fully processed) or until you request its deletion. Mandatory legal retention periods remain unaffected.
Cookies
Cookies are text files that are stored on your end device to recognize it. Cookies may contain information about the use of our offers and services. Based on the CJEU ruling Planet49 GmbH, consent is obtained for cookies even if they are not personal in nature.
Some of the cookies used are only stored until you close our offer (session cookies), whereas certain cookies are stored for a longer duration so that you can be recognized again (persistent cookies). Some cookies are strictly necessary for the function of the website (essential cookies), others record visits and the origin of the visitor and measure this data without the cookies being able to establish a reference to your person (performance cookies). Certain cookies are used for marketing purposes (marketing cookies).
Insofar as personal data is also processed by individual cookies used by us, the processing is carried out in accordance with Art. 6 Para. 1 Lit. b GDPR either for the performance of the contract, in accordance with Art. 6 Para. 1 Lit. a GDPR in the case of granted consent, or in accordance with Art. 6 Para. 1 Lit. f GDPR to safeguard our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the user experience.
Through the cookie declaration upon your first visit to the website, you can select which cookies you wish to allow. Your consent is required for marketing cookies. If you wish to withdraw your consent or change your cookie settings, you can make this change directly in your browser.
Legal Rights
Right of Access
You have the right to request confirmation as to whether personal data is being processed; if this is the case, you have a right to access this personal data. This includes the following information: the purposes of the processing; the categories of personal data; the recipients or categories of recipients; if possible, the planned duration for which the personal data will be stored, or, if this is not possible, the criteria for determining this duration; the existence of a right to rectification or erasure of the personal data concerned or to restriction of processing by the controller or a right to object to such processing; the existence of a right to lodge a complaint with a supervisory authority; all available information on the origin of the data; and the existence of automated decision-making, including profiling.
Right to Rectification
You have the right to request from the controller the rectification of inaccurate personal data and the completion of incomplete personal data.
Right to Erasure ("Right to be Forgotten")
You have the right to demand from the controller that personal data be erased immediately if one of the following reasons applies: The personal data is no longer necessary for the purposes for which it was collected. You withdraw your consent on which the processing was based and there is no other legal basis for the processing. You object to the processing (Art. 21 Para. 1 GDPR) and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 Para. 2 GDPR. The personal data was processed unlawfully. The erasure of the personal data is necessary to fulfill a legal obligation. The personal data was collected in relation to information society services offered pursuant to Article 8 Para. 1.
The right to erasure does not exist to the extent that processing is necessary: for exercising the right of freedom of expression and information; for compliance with a legal obligation or performance of a task carried out in the public interest; for reasons of public interest in the area of public health; for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes; or for the establishment, exercise or defense of legal claims.
Right to Restriction of Processing
You have the right to request the restriction of processing if one of the following conditions is met: the accuracy of the personal data is contested for a period enabling the controller to verify the accuracy of the personal data; the processing is unlawful and you oppose the erasure of the personal data and request the restriction of its use instead; the controller no longer needs the personal data, but you require it for the establishment, exercise or defense of legal claims; you have objected to processing pursuant to Article 21 Para. 1 pending the verification of whether the legitimate grounds of the controller override yours.
If processing has been restricted, such personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest.
Right to Data Portability
You have the right to receive the personal data you have provided to a controller in a structured, commonly used and machine-readable format, and you have the right to transmit those data to another controller without hindrance from the controller to which the personal data was provided, provided that the processing is based on consent or a contract and the processing is carried out by automated means.
Right to Object
You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is based on Art. 6 Para. 1 Lit. e or f GDPR; this also applies to profiling based on these provisions. The controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defense of legal claims.
Where personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data for the purpose of such marketing; this also applies to profiling to the extent that it is related to such direct marketing.
Right to Withdraw Consent
You have the right to withdraw consent based on Art. 6 Para. 1 Lit. a or Art. 9 Para. 2 Lit. a at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
Right to Lodge a Complaint
You have the right to lodge a complaint with the Austrian Data Protection Authority (Österreichische Datenschutzbehörde), Barichgasse 40-42, 1030 Vienna, T.: 00431521522569, E.: dsb@gsb.gv.at, if you believe that the processing violates applicable data protection law.
Other Information
The provision of personal data is partly required by law or necessary for the conclusion of a contract. In principle, you are not obliged to provide the data. If you do not provide the data, a contract cannot be concluded.There is no automated decision-making, including profiling, in accordance with Article 22 Paragraphs 1 and 4.