inner.spaces e.U.
DI Lisa Posch, Austria
Benedikt-Schellinger-Gasse 9/16
1150 Vienna
Email: info@innerspaces.me
Phone: +43 650 9295992

The protection of your personal data is very important to us. We therefore process your data exclusively on the basis of the applicable legal provisions (EU General Data Protection Regulation GDPR, TKG 2021). In this privacy policy, we inform you about the most important aspects of data processing in the context of our activities.
‍
As a rule, it is possible to use our website without providing personal data. If you enter personal data, e.g. for the purpose of contacting us or subscribing to a newsletter, we will pass on the necessary information to companies that process data on our behalf (e.g. send the newsletter). We only commission companies that comply with the General Data Protection Regulation.

This privacy policy applies to all personal data processed by us within the company and to all personal data processed by companies commissioned by us (processors). By personal data, we mean information within the meaning of Art. 4 No. 1 GDPR, such as a person's name, email address, and postal address. The processing of personal data ensures that we can offer and bill our services and products, whether online or offline. The scope of this privacy policy covers:
‍
- all online presences (websites) that we operate
- social media presences, email communication, and communication via messenger services
- mobile apps for smartphones and other devices

If you contact us via the form on the website, by email, or by other means, the data you provide (name, email address, and optionally your telephone number) will be stored by us for one year for the purpose of processing your inquiry and in case of follow-up questions. If the inquiry results in a contract, the statutory retention periods apply. We will not pass on this data without your consent. Data processing is carried out on the basis of Art. 6 (1) (b) (contract fulfillment) and Art. 6 (1) (a) (consent) of the GDPR.

It is our general policy to store personal data only for as long as is absolutely necessary for the provision of our services and products. This means that we delete personal data as soon as the reason for data processing no longer exists. In some cases, we are legally obliged to store certain data even after the original purpose has ceased to exist, for example for accounting purposes.

If you wish to have your data deleted or revoke your consent to data processing, the data will be deleted as quickly as possible and insofar as there is no obligation to store it.

For security and data protection reasons, this website uses SSL encryption, which prevents third parties from intercepting and reading the data you enter during transmission. You can recognize active encryption by the padlock or similar symbols in the address bar of your browser.

- Data subjects: Website visitors
- Purpose: Professional hosting of the website and securing its operation
- Data processed: IP address, time of website visit, browser used, and other data. More details can be found below or from the respective web hosting provider.
- Storage period: Depends on the respective provider, but usually 14 days
- Legal basis: Art. 6 (1) (f) GDPR (legitimate interests). The legitimate interest within the meaning of the GDPR is the proper and secure functioning of the website.

Below you will find the contact details of our external hosting provider, where you can find out more about data processing in addition to the information above:

World4You Internet Services GmbH, Hafenstraße 35, 4020 Linz, Austria. You can find out more about data processing at this provider at https://www.world4you.com/de/unternehmen/datenschutzerklaerung.html.

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Our website uses cookies. These are small text files that are stored on your device with the help of your browser. They do not cause any damage. We use cookies to make our website user-friendly. Some cookies remain stored on your device until you delete them. They enable us to recognize your browser the next time you visit. Some of these cookies are necessary for the operation of the website and store your consent to non-essential cookies, your chosen language, and are used for login purposes.

If you do not want the necessary cookies to be stored, you can set your browser to inform you about the setting of cookies and only allow this in individual cases. The legal basis for the use of necessary cookies is Art. 6 (1) lit. f (legitimate interests) of the GDPR.

Legitimate interests within the meaning of the GDPR are the proper and secure functioning of the website and the optimization of our offer. In addition, further cookies that are not absolutely necessary for the operation of the website may be stored, but only with your consent. Details can be found in the following sections.

IF WE PROCESS YOUR PERSONAL DATA ON THE BASIS OF OUR OVERRIDING LEGITIMATE INTEREST AS PART OF A BALANCING OF INTERESTS, YOU HAVE THE RIGHT TO OBJECT TO THIS PROCESSING AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, WITH EFFECT FOR THE FUTURE. IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED. HOWEVER, FURTHER PROCESSING REMAINS RESERVED IF WE CAN PROVE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FREEDOMS, OR IF THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS. IF WE PROCESS YOUR PERSONAL DATA FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING. YOU CAN EXERCISE YOUR RIGHT TO OBJECT AS DESCRIBED ABOVE. IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNING YOU FOR DIRECT MARKETING PURPOSES.

We hereby object to the use of contact data published within the scope of the imprint obligation for sending unsolicited advertising and information materials. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, for example through spam emails.

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not pass on this data without your consent.

This data is processed on the basis of Art. 6 (1) lit. b GDPR, provided that your inquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective processing of inquiries addressed to us (Art. 6 (1) (f) GDPR) or on your consent (Art. 6 (1) (a) GDPR) if this has been requested; consent can be revoked at any time.

The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to its storage, or the purpose for data storage no longer applies (e.g., after your inquiry has been processed). Mandatory legal provisions—in particular retention periods—remain unaffected.

Our website is operated via the Webflow service. The provider is Webflow, Inc. Webflow provides the technical infrastructure for the construction, presentation, and hosting of this website. Each time you visit, technical connection data required for secure and stable operation is automatically processed. Webflow stores this data on servers in the USA. We have a contract with Webflow for order processing in accordance with Art. 28 GDPR and standard contractual clauses to ensure an adequate level of data protection.

We use Cloudflare's Content Delivery Network (CDN) to deliver the website quickly and securely. The provider is Cloudflare, Inc. The CDN is used to deliver static content such as images, scripts, or CSS files globally via various servers. Technical data such as IP addresses and browser information are processed briefly in order to deliver the content optimally and provide security functions. Cloudflare is used exclusively for performance and security purposes, not for tracking.

Only technically necessary cookies are set on this website. These cookies are required to provide basic functions such as displaying the page or storing your cookie selection. They do not contain any personal data and are not used to analyze or track your user behavior.

We do not use any tracking or analysis tools. No Google services, social media plugins, or marketing cookies are used. We do not analyze visitor behavior.

If you contact us by email or telephone, your request, including all resulting personal data (name, request), will be stored and processed by us for the purpose of processing your request. We will not pass on this data without your consent.

This data is processed on the basis of Art. 6 (1) (b) GDPR, provided that your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective processing of inquiries addressed to us (Art. 6 (1) (f) GDPR) or on your consent (Art. 6 (1) (a) GDPR) if this has been requested; consent can be revoked at any time.

The data you send us via contact requests will remain with us until you request us to delete it, revoke your consent to its storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal provisions—in particular statutory retention periods—remain unaffected.

With your express consent, we may also use the data you have provided to send you advertising by email in the future. You can revoke this consent at any time for the future without affecting the legality of the processing that has taken place up to that point.

We use services provided by Meta Platforms, Inc. (“Meta”), in particular Facebook and Instagram. Meta processes users' personal data in order to provide and improve its services and to enable personalized advertising. Since May 2025, Meta has also been using public posts and user data to train artificial intelligence (AI). Data subjects have the right to object to this use. For more information on data processing and options for objection, please refer to Meta's privacy policy at https://www.facebook.com/privacy/genai and https://privacycenter.instagram.com/policy/version/9168837699838785/.

Meta assumes responsibility for compliance with the GDPR for certain data processing operations. As the operator of this website, we are jointly responsible with Meta for data protection. Meta's privacy policy is available at https://www.facebook.com/policy.php.

The WhatsApp app from Meta Platforms, Inc. can be used to communicate with us. This involves the processing of personal data such as telephone numbers, contact details, message content, connection data, and device information. This data is used for the specific purpose of establishing contact and communication. All data that you voluntarily provide to us via WhatsApp will be processed in accordance with the WhatsApp privacy policy. WhatsApp uses the data to provide and improve the service and grants the provider access to the contacts stored in the address book, if permitted. The complete privacy information from WhatsApp can be found at https://www.whatsapp.com/legal/privacy-policy/.