Privacy Policy

We have created this privacy statement in order to explain to you, in accordance with the EU General Data Protection Regulation (GDPR), what information we collect, how we use data and what choices you have as a visitor to this website.

Automatic Data Storage

When you visit websites today, certain information is automatically generated and stored, the same applies to this website. When you visit our website as you are doing now, our web server (computer on which this website is stored) automatically stores data such as the IP address of your device, the addresses of the pages visited, details of your browser (e.g. Chrome, Firefox, Edge,...) and date and time.

Collection and Processing of Personal Data

We do not require any personal data from you to visit our website. Personal data is only collected if you provide it to us voluntarily, e.g. by registering, filling out forms or sending e-mails, ordering products or services, making inquiries or requesting material. This data will not be passed on to third parties, unless they are contracted service providers who contribute to the processing and support of your donations.

Use and Distribution of Personal Data

The database and its contents remain with our associationand our provider. Your personal data will only be used by us to answer your inquiries and to process your online donation. They will not be made available to third parties in any form by us or by personnel authorized by us, unless your consent or an administrative order has been obtained or on the basis of other exceptions under the GDPR, particularly Art. 6 GDPR.
By withdrawing your consent to storage, the stored personal data will be deleted if its possession is no longer required to fulfil the purpose for which it was stored, or if storage of your data is inadmissible for other legal reasons.

Your Rights

In principle, you are entitled to the rights to information, correction, deletion, restriction, data transferability, revocation and objection. If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, you can complain to the supervisory authority. In Austria, this is the Data Protection Authority (Datenschutzbehörde), you can visit the website under
As a user of our website, you have the right, upon written inquiry, to request information from us about the data stored about you or your pseudonym.

Security Notice

We have taken technical and organisational measures to protect the personal data you have provided against loss, destruction, manipulation and unauthorised access. All our employees and third parties involved in data processing are obliged to comply with the GDPR and to treat personal data confidentially. We cannot guarantee complete data security for communication by e-mail. We therefore recommend that you send confidential information by post.
TLS encryption with https
For some of our services, we use https to transmit data over the Internet in a tap-proof manner. Through the use of TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission security by the small lock symbol in the top left corner of the browser and the use of the https schema as part of our Internet address.


Our website uses HTTP cookies to store user-specific data. A cookie is a short piece of data that is exchanged between a web browser and a web server, but is completely meaningless to the web server and only takes on a meaning for the web application, e.g. an online shop, such as the content of a virtual shopping cart. There are two types of cookies: first-party cookies are created by our website, and third-party cookies are created by other websites (such as Google Analytics). There are three categories of cookies: cookies that are essential to ensure the basic functionality of the website, functional cookies to ensure the performance of the website, and targeted cookies to improve the user experience. We use cookies to make our website more user-friendly. Some cookies remain stored on your device until you delete them. They allow us to recognize your browser the next time you visit. If you do not wish this, you can setup your browser to inform you when cookies are set and that only accept them in individual cases. You can delete or deactivate cookies that are already on your computer at any time. The procedure for this varies depending on your browser, it is best to search for the instructions in Google using the search term "delete cookies chrome" or "deactivate cookies chrome" in the case of a chrome browser or exchange the word "chrome" for the name of your browser, e.g. edge, firefox, safari. If you do not allow us to use cookies in general, i.e. deactivate them via browser settings, some features and pages may not work as expected.


In connection with the data storage in the webshop, we would like to point out that for the purpose of an easier donation process and for later handling, IP address, name, e-mail and the donation amount are stored.
The storage period of the data is the legal retention period. If the data is necessary for official proceedings, it will also be processed for the duration of the proceedings.
Payment processing is carried out by external payment service providers (Stripe). The data necessary for the payment is only processed by the payment service providers and stored by them.
The respective data protection declarations can be read here:

In the section "Public Data" of the webshop, we separately collect thes data that the donor wants to publish on the digital roof tiles chosen in the grid of the webshop. It is not mandatory to provide this data. The data specified under the bullet point "Public Data" is generally and publicly accessible and can be viewed by every visitor to the webshop who selects the corresponding digital roof tile in the grid of the webshop. By entering this data, the donor explicitly agrees to the publication of this data. If the donor enters data of third parties in the "Public Data", the donor must obtain the consent of these third parties.