top of page

Privacy Policy & Accessibility Statement

Privacy Policy for ontrack

 

Last updated: 12.0.2025

 

This Privacy Policy describes how ontrack (“we”, “us”, “our”) collects, uses, discloses, and protects personal data when you use our website [ontrack.co.at] and services. We are committed to protecting your privacy and complying with applicable data protection laws, including the EU General Data Protection Regulation (GDPR).

 

1. Data Controller

  • Name: ontrack, a brand of the OnTours Software OG

  • Address: Glacisstraße 53, 8010 Graz, Austria

  • Contact email: offfice@ontours.app

  • Data Protection Officer: Paul Kalcher, MSc, (paul@ontours.app)

​

2. What personal data we collect

We may collect the following categories of personal data:

  • Contact information: name, email address, telephone number, mailing address

  • Account credentials: username, password (encrypted)

  • Usage data: pages you visit, time spent, browser type, device type, IP address, cookies and similar tracking technologies

  • Communication data: emails, messages you send us, feedback, support requests

  • Marketing data: preferences for receiving promotional materials

​

3. Legal basis for processing

We process your personal data under one or more of the following legal bases:

  • Consent – where you have given us clear consent to process your data for a specific purpose (e.g. newsletter subscription)

  • Performance of a contract – where processing is necessary to perform a contract to which you are party (e.g. for providing services you requested)

  • Legal obligation – to comply with laws, regulations, court orders, etc.

  • Legitimate interests – where we have a legitimate interest that does not override your fundamental rights or freedoms (e.g. improving our services, ensuring security, preventing fraud)

​

4. Purposes of processing

We will use your personal data to:

  • Provide, maintain, and improve our services and user experience

  • Communicate with you (e.g. respond to inquiries, send updates and notifications)

  • Send marketing and promotional materials, if you have consented

  • Analyse usage and trends to improve our content and offerings

  • Ensure security, detect and prevent fraud or abuse

​

5. Recipients / third-party access

We may share your personal data with:

  • Service providers who help us with web hosting, analytics, email delivery, marketing, customer support, etc.

  • Legal or regulatory authorities if required by law

  • Third parties in connection with business transactions such as mergers, acquisitions, or asset sales

We ensure that any third party we share data with is under contractual duty to protect your data and only use it for specified purposes.

 

6. Data retention

We retain personal data only as long as necessary for the purposes for which it was collected, and to comply with legal obligations. After that, we delete or anonymize it.

For example:

  • Account data is retained until account deletion plus 2 years

  • Marketing data until you withdraw consent

  • Usage logs for 6 months, unless needed longer for security or legal purposes

​

7. International transfers

If we transfer your personal data to countries outside the European Economic Area (EEA), we will ensure appropriate safeguards are in place, such as standard contractual clauses, adequacy decisions, or other legally approved mechanisms, to protect your data.

​

8. Your rights

Under the GDPR you have the following rights:

  • Right to access: obtain a copy of your personal data

  • Right to rectification: request correction of inaccurate or incomplete data

  • Right to erasure (“right to be forgotten”)

  • Right to restriction of processing

  • Right to object to processing, especially in case of direct marketing or profiling

  • Right to data portability (where technically feasible)

  • Right to withdraw consent at any time (for processing based on consent)

  • Right to lodge a complaint with a supervisory authority

​

9. Cookies and tracking technologies

We use cookies and similar technologies to:

  • Recognize you when you return to the site

  • Collect information about how you use the site for analytics and improvements

  • Provide some features (e.g. remembering login, preferences)

You may accept or decline non-essential cookies. Our cookie banner provides options for these.

​

10. Data security

We take appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. These include encryption, access controls, secure servers, data minimization, and regular reviews.

​

11. Changes to this Privacy Policy

We may update this policy from time to time. When we do, we will revise the “Last updated” date. We encourage you to review this page periodically.

 

12. Contact us

If you have any questions or concerns about this policy or our data practices, or wish to exercise your rights, please contact:

  • Paul Kalcher, MSc

  • Email: paul@ontours.app

  • Address: OnTours Software OG, Glacisstraße 53, 8010 Graz, Austria

​

Accessibility Statement for ontrack

At ontrack, we believe that the web should be accessible to everyone, including people with disabilities. Below is our accessibility statement describing the steps we take and the current status of our website’s accessibility.

 

1. Commitment

ontrack is committed to ensuring that our website ontrack.co.at is accessible and usable by people with disabilities. Our goal is to comply with recognized accessibility standards, and to continuously improve accessibility.

​

2. Standards and guidelines

We aim to meet the Web Content Accessibility Guidelines (WCAG) 2.1, Level AA, as well as the relevant legal requirements under the EU Web Accessibility Directive and any applicable Austrian laws. Also, we refer to EN 301 549 which harmonizes accessibility requirements in Europe.

 

3. How we test and maintain accessibility

We use a combination of:

  • Automated testing tools

  • Manual checks (by accessibility experts)

  • Feedback from users

to detect and fix accessibility issues.

 

4. Known limitations

Despite our efforts, some parts of the website are not fully accessible. Examples of known issues include:

  • Some images may lack descriptive alternative text

  • Some video content may not have captions or audio descriptions

  • Keyboard navigation may not be perfect in all sections

  • Some forms or interactive elements may not have appropriate labels

We are actively working to remedy these issues.

 

5. Feedback & Redress

If you encounter any barriers to accessibility on our site, please contact us and we will make all reasonable efforts to provide you with the content in an alternative way, or to solve the issue.

 

6. Compatibility

Our website has been tested and is intended to work with current versions of common browsers and assistive technologies, such as:

  • Chrome, Firefox, Safari, Edge

  • Screen readers such as NVDA, VoiceOver, JAWS

  • On mobile: VoiceOver (iOS), TalkBack (Android)

 

7. Updates to this Statement

This statement was last reviewed on [DATE]. We will review it at least annually or when significant changes are made to the website.

bottom of page