Privacy Policy
Privacy Policy
We, Alpreva Recycling Solutions FlexCo (hereinafter “we”, “us”, “our”), take the protection of the data of users (“users” or “you”) of our website and/or our mobile app (together: “digital assets”) very seriously and are committed to protecting the information provided to us in connection with the use of our digital assets in accordance with applicable data protection laws.
This privacy policy describes our practices regarding the collection, use, and disclosure of your data when you use our digital assets. Please read this privacy policy carefully before using our services. By continuing to use our services, you confirm your acceptance of this privacy policy and any changes to it.
What data do we collect?
We collect two types of data:
1. Non-personal data:
This includes technical information and usage data that does not allow conclusions to be drawn about your identity. This information includes, for example, the use of our services, technical information about your device, and aggregated usage data.
2. Personal data:
This includes information that can directly identify you, such as your name, email address, postal address, telephone number, IP address, and other information you provide to us when using our services. In addition, we collect data about your deposit transactions (e.g., number of returned containers and deposit amounts paid out) as well as data about your use of our app.
How do we collect data?
Data is collected in different ways:
• Automatically through use of the services: When you use our digital assets, we automatically collect technical and usage information.
• Information provided by you: When you register, contact us, or provide feedback, we collect the data you provide.
• Data from third parties: If you sign in via third-party providers such as Google or Facebook, we collect the relevant data that these platforms make available to us.
Why do we collect this data?
We process your data on the basis of Art. 6(1)(b) GDPR to fulfill our contractual obligations (provision of deposit return machines and app services) and on the basis of Art. 6(1)(f) GDPR in the context of our legitimate interests. This includes, among other things:
• Providing and operating our services
• Processing deposit returns and refunds to customers
• Improving our services and analyzing usage patterns
• Fraud prevention and security
• Communicating with you, for example to respond to inquiries or send updates
• Analyzing feedback and usage patterns in order to optimize our services
• Compliance with legal requirements
Who do we share the data with?
We may share your data with trusted third-party providers who support us in providing our services, such as:
• Hosting providers for storing and managing data
• Cloud service providers for providing storage space and backup services
• Technical service providers for troubleshooting and improving our services
• Third parties for legal purposes: to investigate and prevent fraud, abuse, or other unlawful activities or to comply with legal requirements (e.g., disclosure to authorities)
• Local entities to comply with the requirements of the respective deposit system and to provide connected and functional deposit machines.
Data transfers to countries outside the European Economic Area (EEA) will only take place if an adequate level of data protection according to EU standards is ensured or appropriate safeguards have been implemented (e.g., standard contractual clauses).
How long do we store the data?
We store your data only as long as necessary to provide our services, fulfill legal obligations, or resolve disputes. Transaction data (e.g., deposit transactions) and app usage data are stored and shared in accordance with legal requirements.
How do we protect your data?
We take appropriate technical and organizational measures to protect your data against unauthorized access, loss, or misuse. These measures include:
• Encryption of data transmissions via HTTPS
• Secure storage of data on servers protected by firewalls
• Compliance with industry standards
Despite our efforts, we cannot guarantee absolute security. Therefore, we recommend that you do not transmit confidential information through insecure channels such as email or instant messaging.
Cookies and similar technologies
Our website and app use cookies and similar technologies to improve the user experience and analyze the use of our services. These tracking technologies allow us to:
• Improve the functionality of our website and app
• Collect statistics about the use of our services
• Personalize the user experience
Automated decision-making
We do not use automated decision-making or profiling within the meaning of Art. 22 GDPR.
Your rights
As a user in the European Union (EU), you have the following rights under the General Data Protection Regulation (GDPR):
• Right to access the personal data we store about you
• Right to rectification of inaccurate data
• Right to erasure of your personal data, provided no legal retention obligations prevent this
• Right to restriction of processing of your personal data
• Right to data portability
• Right to object to the processing of your data
Withdrawal of consent
If processing of your personal data is based on your consent, you may withdraw this consent at any time with effect for the future. The withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.
Right to lodge a complaint
You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates applicable data protection law. In Austria, the competent supervisory authority is:
Austrian Data Protection Authority (Datenschutzbehörde)
Barichgasse 40–42
1030 Vienna
Austria
Children's data
Our services are not directed at persons under the age of 16. We do not knowingly collect personal data from children under the age of 16. If we become aware that personal data from a child under 16 has been collected without parental consent, we will take steps to delete such information.
Contact and Data Controller
The controller responsible for data processing is:
Alpreva Recycling Solutions FlexCo.
Eisenbachgasse 15 / 2, 1130 Vienna, Austria.
FN 670533d
If you have questions about this privacy policy or wish to exercise your rights, you can contact us at:
Last updated: March 2026