Datenschutz

Data protection & Terms of Services

Protecting your personal data is of utmost importance to us. Our age verification system is designed to comply with the highest data protection standards, including the General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (DSG). Below, we provide a detailed explanation of how we process your data exclusively in Vienna, Austria.


1. Responsible Party

The data controller for the age verification system is:
PK Full Stack IT Solutions e.U.
Krottenbachstraße 111
1190 Wien
Österreich

For any questions or concerns about data protection, please contact: patrick@kloss.pk


2. Purpose of Data Processing

The age verification system is used solely to verify the minimum age of users. The process is secure, automated, and designed to prevent misuse while protecting your privacy.


3. Data Processed

For verification, the following data is temporarily processed:

  • Document Data: Name, date of birth, expiration date, and document number (e.g., from ID card, passport, driver’s license, residence permit, or eCard). A digital portrait from the document is also extracted.
  • Facial Data (Face Verification): A live portrait captured via a camera (e.g., smartphone) to verify that the person is real (anti-spoofing protection).
  • Face Matching: The live portrait is compared with the portrait from the provided document to confirm identity.

No additional personal data is processed, and the data is used solely for verification purposes.


4. Storage and Deletion Policy

We only process temporarily and do not store your data permanently. All processed data is automatically deleted immediately after verification.

Processing Duration: Data processing is completed in real time, typically within 15-60 seconds. All data is deleted immediately after the verification process is completed and can not be recovered or seen by other users in the user interface.


5. Legal Basis for Processing

The legal basis for processing your data is Article 6(1)(b) GDPR (performance of a contract) and Article 6(1)(f) GDPR (legitimate interests). Our legitimate interest is to provide a secure and reliable age verification system while preventing misuse.


6. Location of Data Processing

All data processing occurs exclusively in Austria, specifically in secure data centers located in Vienna. No data is transferred or processed outside of Austria.


7. Security Measures

We implement comprehensive technical and organizational measures to protect your data:

  • Encryption: All data transmissions are encrypted (TLS/SSL).
  • Access Controls: Not even our technicians can access the temporarily processed data.
  • Data Security: Biometric and other personal data are processed in isolated and highly secure environments.

8. Rights of the Data Subject

Under the GDPR, you have the following rights:

  • Right to Access: You can request a copy of your data during processing. (This will be empty as we do not save any of your data!)
  • Right to Deletion: As data is automatically deleted, no further deletion requests are necessary.
  • Right to Object: You can object to the processing, though verification will not be possible.
  • Right to Data Portability: Not applicable due to the lack of permanent data storage.

To exercise your rights, please contact us at patrick@kloss.pk


9. Automated Decision-Making

The age verification system operates entirely automatically. Your data is used solely for age verification and identity confirmation. No manual review of your data occurs.


10. Data Sharing

Your data is not shared with third parties. All processing is conducted exclusively by us using highly secure systems.


11. Updates to the Data Protection Policy

We may update this policy to reflect changes in legal or technical requirements.


Effective Date: 01.12.2024 (dd.mm.yyyy)

For further information, please contact us. Your trust is important to us, and we are committed to protecting your data.