Data protection information

General information on data protection

The protection of your personal data is of special importance to the state administration of Styria. On this site, you will find information on the way in which the administrative offices and departments of the State of Styria collect and use personal data both on this website but also in the fulfilment of their tasks in accordance with the applicable provisions of data protection law. You will also learn about the scope and purpose of the collection and use of personal data by the state administration of Styria.

Visit to the website of the Government of the Province of Styria

The web presence of the Styrian Government can generally be used without providing any personal data. However, in some cases there may be some deviations from this rule for technical reasons; these deviations are listed below.

When you access our website, Land Steiermark collects and stores data on page access, such as:

  • visit to the website,
  • date and time of access to the website,
  • type of browser and operating system used,
  • anonymised IP address (i.e. the IP address is truncated so that only a geographical allocation is possible),
  • the link opened and the call-up method,
  • referrer (i.e. the internet site from where the user is referred to the website of the State of Styria)

In this context, the state administration reserves the right to review logs if it suspects illegal use.

Matomo and cookies

The Styria portal uses "Matomo" (previously "PIWIK") for the purpose of statistical analysis. Matomo uses "cookies". Cookies are text files that are stored on the computers of visitors to the Styria portal and make it possible for the state administration to analyse the use of its website.

To do so, the information about the use that is obtained through the cookie is transferred to the server of the State of Styria and stored there so that the user behaviour can be analysed. The IP addresses of the users are immediately anonymised; by this means it is impossible to identify a visitor to the Styria portal via their IP address. The information about the visit of our website that is generated by the cookie is not shared with third parties. Visitors to the Styria portal can prevent the use of cookies by adjusting the settings of their browser software accordingly. Matomo does not transfer any data to servers that are outside the control of the State of Styria.

SSL encryption

For safety reasons, all websites of the State of Styria use the SSL security protocol (SSL = Secure Sockets Layer). We also use SSL encryption for your safety when collecting or transmitting confidential data, e.g. when you enter data in web forms or upload documents. This is why non-encrypted pages from sub-domains are also redirected to encrypted pages. SSL encryption ensures that no one but us can read the data. A secure and encrypted connection is indicated by the padlock symbol in the status bar of your browser line. You can also recognise a secure connection by the change of browser address from "http://" to "https://".

Feedback feature

We always strive to continuously improve the internet provision of the State of Styria. With this in mind, we offer the users of our portal the opportunity to provide feedback through a variety of feedback tools. 

Depending on the feedback tool, you can provide your feedback anonymously. If feedback is given anonymously, no information on the user will be saved, unless the person enters personal data in a comment box themselves.

For all other feedback tools, it is necessary to state your name and e-mail address. We process this data because of the legitimate interest of being able to contact the feedback provider.

Use of personal data

Personal data means any information that serves to identify a person (for example, their name, address, e-mail address, telephone number) or provides information about them. The state administration uses your personal data to carry out procedures (especially procedures for which you file an application yourselves), to award grants, to provide services, etc.

Most of the personal data we process has been provided by you yourself, for example when you apply for a permit or funding, when you make an appointment, when you send us an inquiry (also on our website) or when you wish to make use of one of our services (newsletter, brochures, information events).

In addition, the data may come from the following sources, among others: reports of administrative offences, notifications from other authorities or courts, publicly accessible sources and registers, e.g. companies register, land register, register of residents, register of associations.

The general principles below apply to our processing of data:

Processing due to legal provisions

The State of Styria meets its legal obligations, enforces laws and performs other duties imposed by regulations that provide for the processing of data. In this case, we process the data that is explicitly mentioned in the legislation or that is required for performing our legal duty or public tasks; this includes data that make it possible for us to process applications submitted by you or to grant permits (e.g. applications for driving licenses, firearms licenses, trade licenses or any financial support to be granted under the Austrian Minimum Benefit Act or the Austrian Disabilities Act).  

Processing to fulfil a contract

In addition to the above, the State of Styria concludes contracts and is entitled to process data for the conclusion and performance of such contracts (including all pre-contractual measures, i.e. initiation of a contract).

This is of special importance with regard to subsidies granted by the state administrative bodies. The administrative bodies process your personal data for the purpose of initiating and concluding the funding agreement, to check the funding and to handle any repayment claims. This will be pointed out to you in the application forms and funding agreements. 

Processing due to legitimate interest

There are some cases in which Land Steiermark may process personal data because of a legitimate interest.

This is the case, for example, when you contact offices or departments of the Styrian Government and these offices or departments process your data - e.g. in responding to an inquiry or providing a service requested by you.

Legitimate interest also exists, among other things, when data is processed in the course of legal proceedings or video surveillance to collect evidence for criminal offences or for the protection of property.

Processing based on consent

Under certain conditions you will voluntarily provide us with data that we process (e.g. newsletter mailing). In these cases you give us your consent to process your data for precisely defined purposes. You can withdraw your consent any time without giving reasons. However, such a withdrawal of consent will not affect the lawfulness of any processing based on consent before its withdrawal. Roughly speaking, this means that a withdrawal of consent has no retroactive effect.

Recipients of personal data

As mentioned above, Land Steiermark uses personal data only to fulfil legal or contractual obligations and to protect legitimate interests. In certain cases, data is therefore transmitted to further recipients, e.g. due to legal obligations, because the departments/authorities have the duty to inform other bodies (authorities, courts, EU institutions) about certain facts or also in the case of a request from another authority (administrative assistance). Other third parties may also receive data if this is necessary for the fulfilment of a contract (e.g. financial institutions, recipients of bank transfers). Apart from that, your personal data will only be passed on if we have your consent to pass on the data to specific bodies.

In addition, personal data will be submitted to data processors of administrative bodies of Styria if this data is needed to fulfil their respective contractually assigned tasks. All data processors are contractually obliged to treat the data received confidentially and to process it only in the context of providing the service.

As a rule, data is only transferred to a third country if there are agreements under international law in this regard (e.g. administrative and legal assistance agreements).

Duration of storage of personal data

The State of Styria processes personal data in person-related form in each case only for as long as this is necessary for achieving the specific purpose intended. In addition, there are many cases where we are under a legal obligation to document processes and/or store data for a specific period of time. When these periods have expired, the personal reference is removed or the data deleted.

However, if personal data is found worthy of archiving for reasons of its scientific or historic importance, this data will not be deleted but transferred to the State Archives and can also be processed there for a longer period of time. Data stored in the State Archives is subject to special legal requirements.

Data security

The State of Styria is committed to protecting your personal data. The State of Styria ensures that all the necessary technical and organisational measures are taken in the processing of your personal data to protect your data according to the risk and from alteration, loss and unauthorised access. To prevent unauthorised access or disclosure of your data and to protect it from misuse or destruction, as well as to ensure the accuracy and lawful use of your data, the State of Styria has corresponding physical and administrative procedures in place to protect and secure the recorded data.

Citizens Portal of the Government of the Province of Styria

Citizens can use the Citizens Portal of the State of Styria ( digital.stmk.gv.at)

  • to carry out transactions with public authorities online and/or
  • to access selected applications online.

You can access  digital.stmk.gv.at on your desktop or mobile on your smartphone.

Registration  with a mobile phone signature  or citizen card to use the Styrian Citizens Portal.
For information on the mobile signature and the citizen card and their uses please refer to  www.buergerkarte.at.

The following information is taken from your mobile signature and/or citizen card when you register at the Styrian Citizens Portal:  

  • first name
  • family name
  • date of birth

An area-specific personal identifier will be created by means of the mobile signature or citizen card and saved.

The feature of the Source PIN, a highly encrypted derivation from your register in the Central Register of Residents, is described in detail at  www.buergerkarte.at/glossar.html.

Newsletter service of the Government of the Province of Styria

To keep the citizens of Styria up to date, the offices and departments of the State of Styria provide information on a variety of administrative topics and service provisions. To this end we send out newsletters to registered subscribers only.

We operate a central newsletter service. Citizens can subscribe to newsletters on various subject areas. All it takes is a one-time registration. You have to register yourself and give your consent to us processing your data.

In addition, some websites of Land Steiermark also offer the possibility to take out a newsletter subscription. To do that you have to provide your e-mail address and provide a declaration that you agree to receiving the newsletter.

You can unsubscribe from these newsletters any time.

Vdeo surveillance

The State of Styria uses video surveillance in individual cases, in particular for the surveillance of official properties (e.g. the area of the Burg, the Landhaus, official authorities) or car parks. Video surveillance serves the purpose of self-protection (protection of the organisation's property) and the protection of responsibility (fulfilment of traffic safety duties, contractual liability towards customers, etc.) plus the purpose of prevention, containment and clarification of criminally relevant behaviour, whereby the recordings are only analysed on occasions defined by the purpose. The surveillance is encrypted; the data is generally stored for 72 hours (in the event of an incident for the duration of the settlement of the proceedings).

In all these cases, citizens are informed about the video surveillance on signs.

our rights with regard to the processing of your data

As far as the processing of your personal data is concerned, the GDPR ensures your rights listed here. To exercise these rights please contact the controller in charge:

Right to access (Art. 15 GDPR)

You have the right to information about the data processed about you at any time. This includes information such as the purpose of processing, the categories of personal data, how long they are saved and who they will be shared with (recipients).

Right to rectification (Art. 16 GDPR), erasure (Art. 17 GDPR) and restriction of processing (Art. 18 GDPR)

As a data subject you have the right to have any incorrect data rectified by the controller. Taking into account the purposes of the processing, you also have the right to have incomplete personal data completed. In addition, you also have a right to erasure of your personal data, e.g. if the purpose of processing has been fulfilled and the data is therefore no longer necessary. You can also demand a restriction to the processing of your data when the prerequisites for this are met.

Right to revocation and objection (Art. 21 GDPR)

In certain cases, we are entitled to process your personal data subject to your consent. You can withdraw such consent at any time. Withdrawal of your consent has a future effect; this means that previously processed data will not be erased.
In addition, you have the right to object under certain conditions, which means that the data may no longer be processed by the data controller as a matter of principle.

Right to data portability (Art. 20 GDPR)

You have the right to data portability in specific cases. This means you have the right to receive your personal data that you provided to us in a structured, commonly used and machine-readable format.

Right to complaint (Art. 22 GDPR)

In the event of data processing that is contrary to data protection law or in the event of a breach of other legal data protection claims, you have a right to appeal to the  Austrian Data Protection Authority.

Controller, the person in charge of handling your data

The controller plays a central role in data protection legislation. The following departments are in charge of data processing at the Styrian Government:

Amt der Steiermärkischen Landesregierung/Office of the Styrian Government: if you are in contact with a department of the  Office or any other (also subordinate) office. Select the office or contact post@stmk.gv.at.

Bezirkshauptmannschaft/District Authority: the district authority you are in contact with. Select the  Bezirkshauptmannschaft in charge.

Agrarbezirksbehörde/Agricultural District Authority Styria:  Agrarbezirksbehörde Steiermark

The point of contact for processing is always the person in charge of processing.

Data Protection Officer

Controllers in the public domain are obligated to nominate a data protection officer. The Office of the Styrian Government, the District Authorities and the Agricultural District Authority have nominated a joint Data Protection Officer.

You can reach the Data Protection Officer at the following e-mail address: dsb@stmk.gv.at.

Was this information useful to you?

Thank you for your rating. Each contribution can only be rated once.

The average rating of this post is ( ratings).