Last updated: June 2026
Protecting your personal data matters to us. This privacy policy explains which data is processed when you visit this website, why it is processed, and which rights you have under the General Data Protection Regulation (GDPR).
Hair by Janine
Janine Reginaldo
Leitegasse 22/1
9500 Villach, Austria
Phone: +43 681 8130 8189
Email: janine@hairbyjanine.at
Data Protection Officer: No data protection officer has been appointed because this is not required under Art. 37(1) GDPR.
When you access the website, the web server processes technically necessary access data, such as IP address, date and time of access, requested file, transferred data volume, referrer, browser, operating system and HTTP status code. This data is necessary to deliver the website, identify technical issues and protect the security of the service.
The legal basis is Art. 6(1)(f) GDPR. Our legitimate interest is the secure and stable operation of the website.
This website is hosted by World4You Internet Services GmbH, Hafenstrasse 35, 4020 Linz, Austria. The hosting provider processes access data on our behalf where this is required for website operation, maintenance and security.
If you contact us by email or phone, we process the data you provide in order to respond to your request and, where applicable, prepare appointments or services. Depending on the content of the request, the legal basis is Art. 6(1)(b) GDPR or Art. 6(1)(f) GDPR.
This website currently does not use a contact form.
The website uses a necessary first-party cookie named cb-enabled. This cookie stores whether you accepted or declined optional services. It is required for consent management and is not used for marketing purposes.
The legal basis is Art. 6(1)(f) GDPR. Our legitimate interest is to reliably store your cookie and service choice. The storage period is up to 180 days.
Accessing information on your device and storing non-essential cookies requires prior, explicit consent under Section 165 of the Austrian Telecommunications Act 2021 and, where applicable, Section 25 of the German TDDDG. Optional analytics and map services are therefore loaded only after your consent.
Google Analytics 4 is loaded on this website only if you accept optional services. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics helps us understand how the website is used so that we can improve content and technical performance. This may include processing page views, events, approximate location data, browser and device data, and shortened or otherwise protected online identifiers.
The legal basis is your consent under Art. 6(1)(a) GDPR. You can withdraw your consent at any time via the cookie settings. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
Google may also process personal data outside the European Economic Area. According to Google, such transfers are based among other things on appropriate safeguards such as the EU-U.S. Data Privacy Framework or standard contractual clauses.
The map is not loaded automatically. Google Maps is loaded only if you accept optional services or explicitly activate the map. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When the map is loaded, data such as your IP address, browser and device data, referrer information and usage data may be transferred to Google. The legal basis is your consent under Art. 6(1)(a) GDPR.
Google Maps is integrated in a data-minimising way and is loaded only after an active choice by the visitor.
This website contains links to Facebook and Instagram. No Facebook or Instagram plugins are embedded automatically. Processing by Meta Platforms Ireland Limited therefore only takes place if you click an external link or use the respective platform.
Personal data is shared with recipients only where this is necessary for website operation, communication, optional services or legal obligations. Recipients include in particular hosting and technical service providers such as World4You, web analytics and mapping services such as Google Ireland, and Meta Platforms Ireland if you click external Facebook or Instagram links.
Transfers to third countries, for example to Google LLC or Meta Platforms Inc. in the USA, take place only on the basis of an adequacy decision or appropriate safeguards, such as the EU-U.S. Data Privacy Framework or EU standard contractual clauses.
We store personal data only for as long as necessary for the respective purpose or as required by statutory retention duties. The necessary cookie cb-enabled is stored for up to 180 days. Server log files are stored only for a limited technical period and then deleted unless they are needed for investigating security incidents. Contact request data is deleted once the request has been completed and no statutory retention duties apply. Data that becomes part of business or accounting records may be stored for up to seven years under statutory retention duties.
Subject to the GDPR, you have in particular the right of access, rectification, erasure, restriction of processing, data portability, objection to processing based on legitimate interests, and withdrawal of consent.
To exercise your rights, you can contact us at any time using the contact details listed above. If processing is based on your consent, you may withdraw that consent at any time with effect for the future.
You also have the right to lodge a complaint with a data protection supervisory authority. In Austria, this is the Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna, email: dsb@dsb.gv.at, website: www.dsb.gv.at. In Germany, you may also contact the Federal Commissioner for Data Protection and Freedom of Information, Graurheindorfer Str. 153, 53117 Bonn, email: poststelle@bfdi.bund.de, website: www.bfdi.bund.de; depending on the matter, a German state data protection authority may be competent.
We implement appropriate technical and organisational measures under Art. 32 GDPR to protect personal data against loss, misuse and unauthorised access. These measures include encrypted transmission via HTTPS, access restrictions and data-minimising integration of optional third-party providers.
No automated decision-making, including profiling within the meaning of Art. 22 GDPR, takes place.
This privacy policy may be updated if technical, legal or organisational circumstances change.
