Data policy

1. Controller

The controller responsible for data processing on this website is:

Jonathan Schröder
Sigmundsgasse 13/8-9
1070 Vienna
Austria
Email: mail@100ideasss.com

2. General Information on Data Processing

The protection of your personal data is of particular importance to us. We process personal data exclusively on the basis of the applicable legal provisions, in particular the General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (DSG).

Personal data is any information relating to an identified or identifiable natural person. This includes, in particular, name, email address, IP address, and usage data.

This website is intended for an international audience. Data processing is carried out by our hosting provider Ghost(Pro), which operates servers in various regions. Your data may therefore also be processed outside the EU/EEA, whereby an adequate level of protection is ensured through appropriate safeguards (e.g., EU Standard Contractual Clauses).

3. Hosting and Operation via Ghost(Pro)

This website is operated using the Ghost content management system and hosted via Ghost(Pro) (Ghost Foundation).

3.1 Data Processed

When visiting the website, the following technical data is automatically processed:

  • IP address of the accessing device
  • Date and time of access
  • Name and URL of retrieved files
  • Website from which access occurred (referrer URL)
  • Browser used and, if applicable, operating system
  • Name of your internet service provider

Processing takes place for the purpose of providing and securing the technical operation of the website.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest).
Our legitimate interest lies in the proper functioning, security, and optimization of our website.

3.3 Storage Duration

Data is stored in server log files for a maximum of 30 days and then automatically deleted.

3.4 Data Transfer

Ghost(Pro) may operate servers in various regions, including the United States. For data transfers outside the EU/EEA, EU Standard Contractual Clauses are used. Further information can be found in Ghost’s privacy policy:
https://ghost.org/privacy/

4. Newsletter Subscription

It is possible to subscribe to a newsletter on our website.

4.1 Data Processed

When registering for the newsletter, the following data is processed:

  • Email address (mandatory)
  • Name (optional, if provided)
  • Time of registration
  • IP address at the time of registration (to document consent)

Data processing takes place for sending newsletters containing information, updates, and offers.

Legal basis: Art. 6(1)(a) GDPR (consent).
Registration takes place via a double opt-in procedure: After registering, you will receive a confirmation email in which you must confirm your subscription by clicking a link.

4.3 Storage Duration and Withdrawal

Your data will be stored as long as you remain subscribed to the newsletter. You may withdraw your consent at any time by:

  • Using the unsubscribe link at the end of each newsletter email
  • Sending an email to mail@100ideasss.com

After unsubscribing, your data will be deleted immediately unless statutory retention obligations apply.

4.4 Technical Processing

Newsletter delivery is carried out via the Ghost platform. Ghost(Pro) processes your email address on our behalf as a data processor.

5. Cookies

This website uses cookies. Cookies are small text files stored on your device that contain information exchanged with our system.

5.1 Technically Necessary Cookies

We use cookies that are strictly necessary for the operation of the website, including:

  • Session cookies to maintain connection
  • Cookies to store your cookie preferences

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in the technical operation of the website).

You can configure your browser so that you are informed about the setting of cookies and allow cookies only in individual cases, exclude acceptance for certain cases or generally, and activate automatic deletion of cookies when closing the browser.

6. Your Rights as a Data Subject

Under the GDPR, you have the following rights:

6.1 Right of Access (Art. 15 GDPR)

You have the right to obtain information about the personal data we process.

6.2 Right to Rectification (Art. 16 GDPR)

You have the right to request correction of inaccurate data or completion of incomplete data.

6.3 Right to Erasure (Art. 17 GDPR)

You have the right to request deletion of your personal data unless statutory retention obligations apply.

6.4 Right to Restriction of Processing (Art. 18 GDPR)

You have the right to request restriction of processing under certain conditions.

6.5 Right to Data Portability (Art. 20 GDPR)

You have the right to receive your personal data in a structured, commonly used, machine-readable format.

6.6 Right to Object (Art. 21 GDPR)

You have the right, for reasons arising from your particular situation, to object at any time to processing of personal data concerning you based on Art. 6(1)(f) GDPR (legitimate interest).

Where processing is based on your consent (e.g., newsletter), you have the right to withdraw it at any time. The lawfulness of processing carried out before withdrawal remains unaffected.

6.8 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe that processing of your data violates data protection laws.

Competent supervisory authority in Austria:

Austrian Data Protection Authority
Barichgasse 40–42
1030 Vienna
Phone: +43 1 52 152-0
Email: dsb@dsb.gv.at
Website: https://www.dsb.gv.at

7. Contact for Data Protection Inquiries

For questions regarding data protection or to exercise your rights, you may contact us at any time:

Email: mail@100ideasss.com
Address: Jonathan Schröder, Sigmundsgasse 13/8-9, 1070 Vienna, Austria

8. Data Security

We implement technical and organizational security measures to protect your personal data against accidental or unlawful deletion, alteration, loss, unauthorized disclosure, or access. Our security measures are continuously improved in line with technological developments.

Data transmission is encrypted via HTTPS (SSL/TLS).

9. Validity and Changes to This Privacy Policy

This privacy policy is currently valid as of February 2025.

Due to further development of our website or changes in legal or regulatory requirements, it may become necessary to amend this privacy policy. The current version can always be accessed on this website.