Privacy Policy

Data protection and the security of your data when using the website of LoopLab Bio GmbH, which can be accessed under the domain as well as the various subdomains (hereinafter referred to as “Our Website”), are important to us. We would therefore like to take this opportunity to inform you which of your personal data we collect when you visit Our Website and for what purposes this data is used. Since changes in the law or changes to our internal company processes may require an adaptation of this data protection declaration, we ask you to regularly retrieve the most current version of this data protection declaration under

§ 1 Controller and scope of application

Responsible for data processing within the meaning of the General Data Protection Regulation (GDPR) is:

LoopLab Bio GmbH
Muthgasse 11
1190 Vienna

Commercial register number: 601905 f
Commercial register court: Vienna

§ 2 What is personal data?

Personal data is any information relating to an identified or identifiable natural person. This includes information such as your name, age, address, telephone number, date of birth, email address or IP address. Information for which we cannot establish a reference to your person (or only with a disproportionate effort), e.g. by anonymizing the information, is not personal data. The processing of personal data (e.g. collection, use, storage or transmission) always requires a legal basis or your consent.

§ 3 Data processing on Our Website

1. Providing and using Our Website

a) Scope and purpose of data processing
In principle, we collect and use personal data of our users only to the extent necessary to provide a functional website. When you access and use Our Website, we collect the personal data that your browser automatically transmits to our server. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion: IP address of the requesting computer, date and time of access, name and URL of the retrieved file, website from which access is made (referrer URL), browser used and the operating system of your computer as well as the name of your access provider.

The aforementioned data will be processed for the following purposes:

  •  Ensuring a smooth connection to Our Website
  • Ensuring safe and convenient use of Our Website

b) Legal basis of processing
Article 6 (1) (f) GDPR serves as the legal basis for the data processing referred to under a). The processing of the aforementioned data is necessary for the provision of Our Website and the provision of a secure and comfortable use and thus serves to safeguard a legitimate interest of our company. In addition, there are no user interests of higher value, so that our interest prevails.

c) Storage period and data deletion
As soon as the aforementioned data is no longer required to display the contents of Our Website, it will be deleted. The collection of data for the provision of Our Website and the storage of the data in log files is necessary for the operation of Our Website. Consequently, there is no possibility of objection on the part of the user. Further storage will take place in individual cases, provided that this is required by law.

2. Contact
a) Type and scope of data processing
On Our Website we offer you to contact us via the contact form. If you use the contact form, the following personal data will be processed by you:

email address

The indication of these information serves the purpose of processing your request. When using the contact form, your personal data will not be passed on to third parties.

b) Legal basis of processing
The data processing described above for the purpose of establishing contact is carried out on the basis of the declaration of consent voluntarily submitted by you during the sending process (Art. 6 (1) (a) GDPR).

c) Storage period
As soon as the request made by you has been completed and the relevant facts have been conclusively clarified, the personal data processed via the contact form will be deleted.

§ 4 Data transfer to third parties

a) We only pass on your personal data processed in connection with the use of Our Website to third parties if

  • you have given your express consent to this (Art. 6 (1) (a) GDPR);
  • the transfer is necessary for the fulfilment of a contractual relationship with you (Art. 6 (1) (b) GDPR);
  • pursuant to Article 6 (1) (c) GDPR, there is a legal obligation to pass on data; or
  • the disclosure in accordance with Article 6 (1) (f) GDPR is necessary to safeguard legitimate corporate interests as well as to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data. [In principle, no personal data will be passed on to third parties outside the European Union and the European Economic Area.

b) Where necessary for the purposes set out above, we will transfer your personal data to the following categories of recipients:

  • Our legal advisors, if this is necessary in connection with legal proceedings, or to assert or defend claims;
  • Courts, authorities and other third parties, insofar as we are obliged to do so due to legal obligations, official or court decisions; and
  • Acquirers and insolvency administrators, insofar as this is necessary in connection with changes under company law (company sale, merger, restructuring, dissolution or similar events) or in the event of insolvency.

§ 5 Use of cookies on Our Website

a) Type and scope of data processing
We use cookies on Our Website. Cookies are small files that are sent by us to the browser of your device during your visit to Our Website and stored in your browser. Some functions of Our Website cannot be offered without the use of technically necessary cookies. Other cookies enable us to perform various analyses and are able, for example, to recognize the browser you are using when you visit Our Website again. With the help of cookies, we can make Our Website more user-friendly for you, for example by tracking your use of Our Website and determining your preferred settings (e.g. country and language settings). If third parties process information via cookies, they collect the information directly via your browser. Cookies cannot run programs and cannot contain viruses. Various types of cookies are used on Our Website, the function of which is explained below.

  • Transient cookies: These cookies are automatically deleted as soon as you close your browser. This type of cookie makes it possible to collect your session ID. As a result, various requests from your browser can be assigned to a session and it is possible for us to recognize your device during later website visits within one session.
  •  Persistent cookies: Persistent cookies are cookies that are stored in your browser for a longer period of time and transmit information to us. The respective storage period differs depending on the cookie. You can delete persistent cookies independently via your browser settings.
  • Necessary cookies: These cookies are required for technical reasons so that you can visit Our Website and use the functions we offer.
  • Performance-related cookies: These cookies allow us to carry out an analysis of website usage and to improve the performance and functionality of Our Website. For example, information is collected about how Our Website is used by visitors, which pages are accessed most frequently or whether error messages are displayed on certain pages. In addition, these cookies contribute to the safe and proper use of Our Website.

b) Legal basis of processing
Due to the purposes described above, the legal basis for the processing of personal data using cookies is Article 6 (1) (f) GDPR. If you have given us your consent to the use of cookies on the basis of a notice given by us on Our Website, the legality of the use is additionally based on Article 6 (1) (a) GDPR.

c) Storage period
As soon as the data transmitted to us via the cookies is no longer required to achieve the purposes described above, this information will be deleted. Further storage will take place in individual cases, provided that this is required by law.

d) Configuration of browser settings
Most browsers accept cookies by default. However, you can configure your browser to accept only certain cookies or no cookies at all. In this case, you may no longer be able to use all the functions of Our Website if cookies are deactivated by your browser settings on Our Website.

Insofar as the data processed by us in accordance with § 3 of this data protection declaration and listed above should be necessary for the fulfilment of the contractual relationship with you, we can no longer provide Our Website after deletion or in case you should refuse to provide this data.

§ 6 Plugins

Our Website contains social plugins of the following networks:

“LinkedIn” (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland)

These services are offered by the respective companies (“Provider”). The social plugins are identified by the respective buttons belonging to the service. Based on the data transmitted to the respective service via the social plugins, it can assign you to your account. In order to increase the protection of your data, the social plugins are integrated into Our Website by means of the “2-click solution”. This ensures that when you visit Our Website, no automatic connection is established with the servers of the respective Provider. To activate a social plugin, you must first click on the link on Our Website. This first activates the social plugin and your browser establishes a connection to the servers of the Provider. With a second click, you can interact with the social plugin and, for example, submit your recommendation. If you are already logged in to one of the social networks of a Provider, it can directly assign your visit to this website to your profile. The information may also be published on the social network and displayed there. If you wish to prevent a direct assignment of your data collected via Our Website to your profile, you must log out of your Provider’s account before visiting Our Website.

The scope and purpose of the data collection by the respective Provider as well as the further processing and use of your data there can be found in the data protection information directly on the website of the Provider. There you will find more information about your data protection rights and setting options to protect your privacy.

§ 7 Hyperlinks

On Our Website there are hyperlinks to websites of other Providers. By clicking on these hyperlinks, you will be redirected directly to the website of the other Providers. We cannot take any responsibility for the protection of your data on these websites nor assume any liability as regards the content or information provided on these websites as we have no influence on these companies. Please inform yourself about the handling of your personal data by these companies directly on their websites.

§ 8 Your rights as a data subject

As a data subject, you have certain rights within the meaning of the GDPR:

  • The right to information about your stored personal data, their origin, recipients and the purpose of the data processing (Art 15 GDPR).
  • The right to rectify and transfer your data as well as to object to the processing, to restrict the processing or deletion of processed data (Art 16 GDPR).
  • If you believe that the processing of your personal data violates applicable data protection law or your right to data protection has been violated in any other way, you can complain to the competent supervisory authority. In Austria, this is the data protection authority (email:

Your request for information, deletion, correction, objection and/or data transfer must be sent to the email address: The exercise of your user rights is free of charge and will be processed by us as soon as possible, at the latest within one month.

§ 9 Data security and security measures

We undertake to treat your personal data confidentially. In order to avoid manipulation or loss or misuse of your data stored by us, we take extensive IT-technical and organizational security precautions on Our Website, which is regularly checked and adapted to technological progress. However, we cannot prevent the data protection provisions from being ignored by persons or institutions outside our area of responsibility. In particular, data disclosed without encryption could be read by third parties. We have no technical influence on this. It is your responsibility as a user to protect the data you provide against misuse by using encryption or in any other way.