Privacy Policy

Stand 25.09.2025

Introduction

With the following privacy policy, we inform you about the type, scope, and purpose of the processing of personal data within our online service, our websites, mobile applications, and external online presences (collectively, the „online service“). The terms used are gender-neutral and correspond to the definitions in the GDPR.

Responsible Party

Company name: Ramp Air GmbH
Address Äpfelberg 38, 5231 Schalchen, Austria
Owner / Responsible Party Mag. Walter Jammernegg
Email: info@rampair.bike
Phone: +43 7742 30160
Imprint https://rampair.bike/impressum

Contact Data Protection Officer

A data protection officer has not been appointed, as it is not legally required. For data protection concerns, please contact the person in charge: Mag. Walter Jammernegg, info@rampair.bike.

Governing Legal Basis

We process personal data based on the GDPR, in particular:

  • Art. 6(1)(a) GDPR (Consent)

  • Art. 6(1)(b) GDPR (performance of a contract / pre-contractual measures)

  • Art. 6 (1) (c) GDPR (legal obligation)

  • Art. 6(1)(f) GDPR (legitimate interests; e.g., secure, economical, and user-friendly provision of our online services)

Safety measures

We implement appropriate technical and organizational measures to ensure a level of security commensurate with the risk. This includes, in particular, safeguarding the confidentiality, integrity, and availability of data.

SSL/TLS encryption (https): Data transmission via our website is encrypted.

Transmission and Revelation of Personal Data

As part of our processing, data may be transferred or disclosed to other parties, such as IT service providers, payment institutions, shipping companies, or providers of embedded content. Corresponding order processing agreements or data transfer agreements will be complied with.

Data processing in third countries

The processing of personal data in third countries outside the EU/EEA only takes place in compliance with legal requirements, particularly through adequacy decisions, standard contractual clauses, or based on consent.

Use of Cookies

We use cookies and similar technologies.

Types of Cookies:

  • Necessary Cookies (Operation & Security)

  • Statistics Cookies

  • Marketing and personalization cookies

Legal basis:

  • Consent (Art. 6(1)(a) GDPR)

  • Performance of a contract (Art. 6(1)(b) GDPR)

  • Legitimate interests (Art. 6(1)(f) GDPR)

Consent Management: We are using the tool Cookie Compliance there. Consents can be given, managed, and revoked there.

Storage duration Cookies are generally stored for up to 24 months, unless a shorter or longer storage period is specified.

Commercial and business services (shop, customer account, payments, shipping)

Shop System / Customer Account

Our online shop is based on WooCommerce.
Processed Data: Name, Address, Contact Information, Order Details, Payment and Billing Information, IP Addresses, Timestamps, Customer Account Data (if applicable).
Purposes Contract fulfillment, order processing, customer service, fraud prevention.
Legal basis: Art. 6 para. 1 lit. b, c, and f GDPR.
Storage duration at least 7-10 years for tax and commercial documents.

Payment processing

Payments can be made through external payment service providers, including PayPal, Klarna, Stripe, credit card, and bank transfer. Payment data is processed directly by the respective providers.

Shipping & Logistics

For delivery, we provide data such as name, address, email, and phone number to the shipping service provider. DPD Continue.

Provision of online services and web hosting

Our online offering is hosted by ALL-INKL.COM – Neue Medien Münnich, Germany.

Processed Data: Server log files (pages accessed, date/time, browser type, operating system, referrer URL, IP address, requesting provider).
Purposes Security, stability, operation.
Legal Basis: Art. 6(1)(f) GDPR.

Contact Us

When you contact us by email or phone, we process the information you provide to handle your request.
Legal basis: Art. 6(1)(b) and (f) GDPR.
Storage duration Deletion upon completion, provided that there are no statutory retention obligations.

Newsletter and electronic notifications

We send newsletters, emails, and other electronic notifications with information about our services and offers.

Procedure Registration is performed using a double opt-in procedure, including logging.
Contents Information about products, promotions, and RampAir.
Analyze Success measurement using tracking pixels (opens, clicks, technical data).
Legal basis: Art. 6(1)(a) and (f) GDPR.
Cancellation Possible at any time via unsubscribe link or by email to info@rampair.bike.

Web analysis, monitoring, and optimization

For range measurement and optimization, we use tools such as Google Analytics, Matomo, and etracker.

Data Usage data (pages visited, duration, interactions), metadata (IP, browser, operating system).
Security measure IP Anonymization (IP Masking).
Legal Basis: Art. 6(1)(a) GDPR.

Online marketing

We use online marketing methods such as Google Ads, Google Ad Manager, Google Tag Manager, and the Facebook Pixel.

Purposes Reach measurement, remarketing, conversion measurement, audience creation.
Data Usage and location data, meta/communication data, cookies.
Legal Basis: Art. 6(1)(a) GDPR.

Social Media Presence

We maintain presences on Facebook and Instagram.

Data processing Processing by the platform operators for analysis and marketing purposes, including cookies and usage profiles.
Legal Basis: Art. 6(1)(f) GDPR.

Plugins and embedded content

We embed external content that technically requires the processing of the IP address.

YouTube videos Provider: Google Ireland Limited (Google LLC, USA).
Google Fonts: Integration for uniform display of fonts.
Google Maps Google Maps.
reCAPTCHA: Google Spam Protection.
Social Plugins: Facebook and Instagram buttons.

Legal basis: Art. 6 para. 1 lit. a, b and f GDPR.

Data deletion

Data will be deleted as soon as the purpose ceases to exist or statutory retention periods expire. Instead of deletion, a restriction (blocking) may occur.

Data Subject Rights

You have the following rights under the GDPR:

  • Information (Art. 15 GDPR)

  • Rectification (Art. 16 GDPR)

  • Erasure (Article 17 GDPR)

  • Restriction (Art. 18 GDPR)

  • Data Portability (Art. 20 GDPR)

  • Objection (Art. 21 GDPR)

  • Revocation of consent (Art. 7 para. 3 GDPR)

  • Complaint to a supervisory authority (Art. 77 GDPR)

Competent Authority Austrian Data Protection Authority, Barichgasse 40–42, 1030 Vienna, dsb@dsb.gv.at, https://www.dsb.gv.at

Modification and updating of the privacy policy

We reserve the right to adapt this privacy policy in case of changes to data processing or legal circumstances. Please inform yourself regularly about the current status.

Definitions

  • Personal Data All information about identified or identifiable individuals.

  • Processing Any process relating to personal data.

  • Profiling: Automated processing for the evaluation of personal aspects.

  • Reach Measurement Analysis of visitor flows.

  • Tracking Tracking of usage behavior.

  • Responsible Person Entity that decides on the purposes and means of processing.

×