Back to sign in
Privacy Policy

Data Protection

Information about the handling of personal data on this website and in the EVG Extractor application.

This privacy policy is currently valid and was last updated in May 2026.

1. Responsible person

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

TecDevio, Anglerstraße 11, 9020 Klagenfurt am Wörthersee, Austria, Email: office@tecdevio.at

2. Overview of the processing operations

The following overview summarizes the types of data processed and the purposes of their processing, and refers to the data subjects.

Types of data processed:

  • Inventory data (e.g. names, addresses)
  • Usage data (e.g. websites visited, access times)
  • Metadata/communication data (e.g. IP addresses, device information)
  • Content data (e.g., uploaded documents, offer data)

3. Legal basis

Below you will find an overview of the legal bases under the GDPR on which we process personal data:

  • Contractual performance (Art. 6 para. 1 lit. b GDPR): The processing is necessary for the performance of a contract or for the implementation of pre-contractual measures.
  • Legitimate interests (Art. 6 para. 1 lit. f GDPR): The processing is necessary for the purposes of our legitimate interests, unless the interests or fundamental rights of the data subject override those interests.
  • Consent (Art. 6 para. 1 lit. a GDPR): The data subject has given his or her consent to the processing.

4. Provision of the online service and web hosting

We process user data to provide our online services. For this purpose, we process the user's IP address, which is necessary to transmit the content and functions of our online services to the user's browser or device.

Hosting: The hosting services we use provide the following: infrastructure and platform services, computing capacity, storage space and database services, security services, and technical maintenance services. Hosting is carried out in compliance with the GDPR within the European Union.

Collection of access data and log files: We collect data about every access to the server (so-called server log files). Server log files may include the address and name of the accessed web pages and files, the date and time of access, the amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL, and the requesting provider. Server log files are stored for a maximum of 30 days and then deleted. This data is stored for security reasons.

5. Processing of uploaded documents

As part of our service, users upload PDF documents (quotes, lists of essential information, sales reports). These documents are processed solely for the purpose of conversion and quote comparison. This processing is automated and server-side.

Purpose: Extraction of article data, prices and quantities for the creation of comparison overviews and XLSX exports.

Storage period: Uploaded documents are temporarily stored after processing and automatically deleted after 30 days.

Legal basis: Contract performance (Art. 6 para. 1 lit. b GDPR).

6. Cookies and storage technologies

We use cookies and similar technologies to provide and improve our service. Details can be found in our Cookie Policy.

7. Data transfer to third parties

Personal data is generally not transferred to third parties unless this is necessary for the performance of a contract or we are legally obligated to do so. Where external service providers gain access to personal data within the framework of commissioned data processing, technical and organizational measures as well as contractual agreements have been implemented to ensure compliance with the GDPR regulations.

8. Rights of data subjects

As a data subject, you have various rights under the GDPR:

  • Right of access (Art. 15 GDPR): You have the right to request confirmation as to whether personal data concerning you is being processed, and to access such data.
  • Right to rectification (Art. 16 GDPR): You have the right to request the rectification of inaccurate data and the completion of incomplete data.
  • Right to erasure (Art. 17 GDPR): You have the right to request the erasure of your personal data, provided the conditions for this are met.
  • Right to restriction of processing (Art. 18 GDPR): You have the right to request the restriction of the processing of your data.
  • Right to data portability (Art. 20 GDPR): You have the right to receive your data in a structured, commonly used and machine-readable format.
  • Right to object (Art. 21 GDPR): You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you.
  • Right to withdraw consent (Art. 7 para. 3 GDPR): You have the right to withdraw your consent at any time.
  • Right to lodge a complaint (Art. 77 GDPR): You have the right to lodge a complaint with a supervisory authority. The competent supervisory authority is: Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna.

9. Data security

During your visit to our website, we use the widely used SSL (Secure Socket Layer) protocol in conjunction with the highest level of encryption supported by your browser. You can recognize whether an individual page of our website is transmitted in encrypted form by the closed padlock symbol in your browser's address bar.

We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties.

10. Updates and changes to this privacy policy

This privacy policy is currently valid and was last updated in May 2026. Due to the further development of our website and services, or due to changes in legal or regulatory requirements, it may become necessary to amend this privacy policy.