Privacy policy

The present website is operated by PRISMA-solutions with its registered office in Austria on behalf of the project consortium. In Austria, the Data Protection Authority (formerly the Data Protection Commission) is responsible for data protection compliance in Austria. The legal basis is the Data Protection Directives and General Data Protection Regulation of the European Union (EU-DSGVO). Effective date: April 1, 2017.
This privacy policy governs and explains how PRISMA solutions manages and treats your personal information and data. We value your trust, which is why we strive to present our privacy policy in clear, simple language, rather than complicated legalese. The policy is structured so that you can quickly and conveniently find the answers to the questions that most interest you.
Unless otherwise stated, this Privacy Policy applies to all products, services and websites offered by PRISMA solutions and its respective affiliates. These products, services and websites are collectively referred to in this policy as “Services”. Supplemental privacy statements apply to some Services, which explain in more detail our specific privacy practices in connection with such Services. Unless otherwise stated, our services in Austria and cloud services in other countries are provided by the respective service providers.

What is the purpose of a public procedure directory?

A public register of procedures is a requirement of the European Union’s General Data Protection Regulation (EU GDPR). The public register of procedures serves to make the processing of personal data more transparent and thus to increase the protection of this data. It helps in the event of audits or inquiries by business partners and/or the supervisory authorities, which usually ask to see the document. Irrespective of this, every data subject has a fundamental right to inspect the procedure directory. It is therefore often referred to as the “Everyone Directory”.
PRISMA solutions attaches great importance to the protection of privacy and complies with the statutory data protection provisions. In the following, we explain how we handle your personal data. Below you will find PRISMA solutions’ public directory of procedures.

Procedure description for “Public services” of PRISMA solutions

COMPLIANCE-Note according to EU-DSGVO – public procedure directory for WWW services of PRISMA solutions.
Directory of procedures for “Private services or on-premises services” of PRISMA solutions.
These services are only accessible by invitation to a closed group of users. Each user must give his or her consent to data processing.
COMPLIANCE notice according to EU-DSGVO – public procedure description for CRM services.
COMPLIANCE notice in accordance with EU-DSGVO – public procedural description for project-related services.

1. Who is responsible for data protection at PRISMA solutions?

The responsible party in terms of data protection law is PRISMA solutions EDV Dienstleistungen GmbH (imprint).
Contact person for all data protection issues = DATENSCHUTZBEAUTRAGTER(at)

2. When and for which purpose does PRISMA solutions collect personal data??

PRISMA solutions collects, stores or processes data only for the exercise of its own business purposes. In principle, our websites are available to all users without collecting personal data. Personal data is collected, processed and used only to the extent necessary to provide the services requested or to make content available.

3. Collection of general information

When you access our websites, information of a general nature is automatically collected. This information includes, for example, the type of web browser used, the operating system used, the domain name of your Internet service provider and the like. This is exclusively information that does not allow any conclusions to be drawn about your person. Moreover, this data is also generated when accessing any other website on the Internet. It is therefore not a special function of our website. The information collected in this way is not statistically evaluated.

4. Handling of your personal data

We only handle personal data to the extent that this is possible in accordance with data protection regulations. In doing so, we also strive to take all necessary technical and organizational security measures to adequately protect your personal data from unauthorized access and misuse at all times.
Insofar as we store or process personal data, this is done within a secure data center with access regulations.
To protect the security of your data during transmission, we use encryption methods (e.g. SSL) via HTTPS.
Our servers are secured by firewall and virus protection.
Backup and recovery procedures are implemented.
Role and authorization concepts are a matter of course for us.
Our service providers and partners are obligated to observe the regulations of the EU data protection regulation and national laws and regulations as well as the decisions of the data protection authority when handling data.

5. Use of cookies on websites

In some cases, “cookies” are used on our websites. Behind this standard technology are small text files that are stored on the device you are using and that make it possible, among other things, to make visiting a website more comfortable or secure. Cookies can also be used to better tailor the offer on a website to the interests of visitors or to generally improve it on the basis of statistical evaluations.
You can determine yourself whether the browser you are using allows cookies or not. Please note that the functionality of websites may be limited or even suspended if cookies are not allowed.

8. Contacting PRISMA solutions / Lex2vehicle

If a website user contacts PRISMA solutions by e-mail via “”, the information provided by him or her will be stored in the e-mail service of the website operator PRISMA solutions – and/or in the CRM of PRISMA solutions – for the purpose of processing the request and for possible follow-up questions.

9. How long will the data be stored?

We adhere to the principles of data avoidance and data economy. We therefore store your personal data only for as long as is necessary to achieve the purposes stated herein or as stipulated by the various storage periods provided for by law. After the respective purpose has ceased to exist or these periods have expired, the corresponding data will be routinely blocked or deleted in accordance with the statutory provisions, at the latest at the end of the project period in February 2022.

10. Your rights to information, correction, blocking, deletion and objection

You have the right to obtain information about your personal data stored by PRISMA solutions at any time. To do so, you must clearly identify yourself. You also have the right to have your personal data corrected, blocked or, apart from the mandatory data storage for business processing, deleted. Please contact the data protection officer for this purpose.
To ensure that a blocking of data can be taken into account at any time, this data must be kept in a blocking file for control purposes. You can also request the deletion of data, unless there is a legal archiving obligation. If such an obligation exists, we will block your data upon request.
You can make changes or revoke consent by notifying us accordingly with effect for the future.

11. Modification of our privacy policy

We reserve the right to occasionally adapt this data protection declaration so that it always complies with the current legal requirements or in order to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new data protection statement will then apply to your next visit.

12. Questions to the data protection officer

If you have any questions about data protection at PRISMA solutions, please write us an e-mail or contact our data protection officer directly: mail to: Datenschutzbeauftragten.