Privacy Policy

BOUNCE DESIGN e.U.

Last updated: 01.06.2026

 

  1. General Information

The protection of your personal data is important to us. This Privacy Policy explains how BOUNCE DESIGN e.U. collects, uses and protects personal data when you visit this website, contact us, or work with us on a project.

We process personal data in accordance with the General Data Protection Regulation (GDPR), the Austrian Data Protection Act (DSG), the Austrian Telecommunications Act (TKG), and other applicable data protection laws.

  1. Controller

The controller responsible for data processing on this website is:

BOUNCE DESIGN e.U.
Philipp Baumgartner
Gerhard-Bronner-Strasse 9
1100 Vienna
Austria

Email: office@bounce-design.com
Website: https://www.bounce-design.com

If you have any questions about this Privacy Policy or the processing of your personal data, you can contact us at any time using the email address above.

  1. What Personal Data We Process

Depending on how you use this website or interact with us, we may process the following categories of personal data:

  • Name and contact details, such as email address, phone number, company name or website

  • Information you provide when contacting us, such as project descriptions, files, links, references or messages

  • Communication data, such as emails, meeting notes and project-related correspondence

  • Contract and billing data, such as offers, invoices, payment information, tax-related data and business records

  • Technical data, such as IP address, browser type, operating system, visited pages, date and time of access, referrer URL and server log files

  • Cookie and consent data, depending on your cookie settings and the tools used on this website

We only process personal data where this is necessary, legally permitted, or based on your consent.

  1. Purposes and Legal Bases of Processing

We process personal data for the following purposes:

Website operation and security
We process technical data and server log files to provide a stable and secure website, prevent misuse, detect technical problems and improve website performance. The legal basis is our legitimate interest in operating a secure and functional website according to Art. 6(1)(f) GDPR.

Responding to enquiries
If you contact us by email, contact form or other communication channels, we process the data you provide to respond to your enquiry. The legal basis is Art. 6(1)(b) GDPR if the communication relates to a potential or existing contract, or Art. 6(1)(f) GDPR based on our legitimate interest in responding to business enquiries.

Project communication and client work
If you work with us, we process the personal data necessary to prepare offers, communicate about projects, provide industrial design and product development services, exchange files, conduct meetings, document project decisions and deliver project results. The legal basis is Art. 6(1)(b) GDPR.

Accounting, tax and legal obligations
We process invoices, payment records, accounting documents and business correspondence where required by law. The legal basis is Art. 6(1)(c) GDPR.

Marketing and portfolio communication
Where permitted, we may process business contact data to maintain professional relationships, communicate about our services or present our work. We only use client work publicly where permission has been granted or where the material is already public and legally usable. The legal basis may be consent under Art. 6(1)(a) GDPR or our legitimate interest under Art. 6(1)(f) GDPR.

Cookies and optional third-party services
Where this website uses non-essential cookies, analytics, marketing tools, embedded media or similar technologies, we process the related data only with your consent where required. The legal basis is Art. 6(1)(a) GDPR.

  1. Server Log Files

When you visit this website, technical information may automatically be collected by the web server. This may include:

  • IP address

  • Date and time of access

  • Browser type and version

  • Operating system

  • Referrer URL

  • Pages visited

  • Amount of data transferred

  • Hosting/server information

This data is processed to ensure website functionality, stability and security. Server log files are usually stored temporarily and deleted or anonymized after the period required for technical and security purposes, unless longer storage is necessary to investigate misuse or security incidents.

  1. Contact by Email or Contact Form

If you contact us by email or through a contact form, we process the information you provide in order to respond to your message and handle your enquiry.

This may include your name, email address, company name, phone number, project description, uploaded files, links, references and any other information you choose to provide.

Please do not send confidential, sensitive or unnecessary personal data through the website unless required for your enquiry.

  1. Client and Project Data

When working with clients, we may process personal data and project-related information for the purpose of providing industrial design, CAD development, prototyping, DFM support, visualization, consulting and related services.

This may include:

  • Client contact details

  • Company information

  • Project briefs and specifications

  • CAD files, images, sketches, reference material and technical documents

  • Meeting notes and communication history

  • Offers, contracts, invoices and payment information

  • Project deliverables and documentation

Project-related data is processed only for the purpose of preparing, managing, performing and documenting the project, unless another legal basis applies.

  1. International Clients and Data Transfers

BOUNCE DESIGN e.U. works with clients and service providers in Austria, the European Union and other countries.

If personal data is transferred outside the European Economic Area (EEA), this will only take place where permitted under GDPR, for example where the transfer is necessary for contract performance, where an adequacy decision exists, where standard contractual clauses are used, or where another lawful transfer mechanism applies.

When communicating with clients outside the EEA, project-related communication data may be transferred to the respective country as part of the business relationship.

  1. Cookies

This website may use cookies and similar technologies. Cookies are small text files stored on your device.

Technically necessary cookies are used to make the website function properly, ensure security, remember essential settings or provide services you have requested.

Non-essential cookies, such as analytics, marketing, tracking or embedded third-party cookies, are only used where legally permitted and, where required, after you have given your consent.

You can manage or delete cookies through your browser settings. If a cookie banner or consent tool is available on this website, you can use it to adjust your cookie preferences.

  1. Analytics and Tracking

If this website uses analytics tools, such tools may process technical data such as visited pages, browser information, device information, approximate location, referrer URLs and usage behavior.

Analytics tools are used to understand how visitors use the website and to improve the website, content and services.

Where analytics tools are not technically necessary, they are only activated with your consent where required by law.

  1. Embedded Content and External Links

This website may include links to external websites or embedded content such as videos, images, social media posts, maps, portfolios or other third-party content.

External websites and embedded content may process personal data independently, especially if you are logged into an account with the respective provider. Such providers may collect data about your interaction with their content, use cookies, or combine the data with your account.

We have no control over the data processing of external websites. Please review the privacy policies of the respective providers.

  1. Fonts, Media and Design Assets

This website may use fonts, images, videos or other media assets. Where possible, fonts and media are hosted locally to reduce data transfers to third parties.

If external font or media providers are used, technical data such as your IP address may be transmitted to the respective provider when the content is loaded.

  1. Social Media Links

This website may contain links to social media profiles such as LinkedIn, Instagram, YouTube, Behance or other platforms.

If you click such links, you leave this website and access the respective platform. The platform provider is responsible for the processing of personal data on its platform. Please refer to the privacy policy of the respective provider.

  1. Hosting and Technical Service Providers

This website is hosted by an external hosting provider. The hosting provider processes technical data necessary to operate and secure the website.

We may also use technical service providers, plugins, website tools, email providers, cloud storage providers, file transfer tools, accounting tools or communication tools to run the website and manage client projects.

Where required, such providers act as processors under Art. 28 GDPR and process personal data only according to our instructions.

This website is hosted by:

tethis IT e.U.
Dipl. Ing. Christian Toller
Karl-Popper-Str. 22
1100 Vienna
Austria
Website: www.tethis-it.at
Email: office@tethis-it.at

The hosting provider processes technical data necessary to operate and secure the website, including server log files such as IP address, date and time of access, browser information, operating system, referrer URL and requested pages.

  1. Data Retention

We store personal data only for as long as necessary for the respective purpose or as required by law.

General enquiries are usually stored for as long as necessary to respond to the enquiry and manage the business relationship.

Project and client communication may be stored for the duration of the project and for an appropriate period afterwards for documentation, warranty, legal or business purposes.

Accounting, invoice and tax-related records are stored according to statutory retention obligations.

Technical server logs are usually stored temporarily and deleted or anonymized after the necessary security and operational period, unless longer storage is required for legal or security reasons.

  1. Data Security

We take appropriate technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration or disclosure.

These measures may include secure hosting, access controls, password protection, encrypted communication where available, regular updates and careful handling of project and client data.

However, no method of transmission over the internet or electronic storage is completely secure. Therefore, absolute security cannot be guaranteed.

  1. Your Rights

Under the GDPR, you have the following rights, subject to the applicable legal requirements:

  • Right of access to your personal data

  • Right to rectification of inaccurate or incomplete data

  • Right to erasure of your personal data

  • Right to restriction of processing

  • Right to data portability

  • Right to object to processing based on legitimate interests

  • Right to withdraw consent at any time where processing is based on consent

  • Right not to be subject to a decision based solely on automated processing, where applicable

If you wish to exercise any of these rights, please contact us using the contact details provided above.

  1. Withdrawal of Consent

If processing is based on your consent, you may withdraw that consent at any time with effect for the future.

The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

  1. Right to Lodge a Complaint

If you believe that the processing of your personal data violates applicable data protection law, you have the right to lodge a complaint with a supervisory authority.

In Austria, the competent supervisory authority is:

Austrian Data Protection Authority
Österreichische Datenschutzbehörde
Barichgasse 40-42
1030 Vienna
Austria
Website: https://www.dsb.gv.at

  1. No Automated Decision-Making

We do not use personal data collected through this website for automated decision-making or profiling within the meaning of Art. 22 GDPR.

  1. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements, website functionality, services or data processing activities.

The current version is always available on this website.

  1. Contact

For questions about this Privacy Policy or the processing of your personal data, please contact:

BOUNCE DESIGN e.U.
Philipp Baumgartner
Email: office@bounce-design.com