Your privacy is important to us.
Please take a moment to read this Privacy Policy (hereinafter “Policy”) and be informed on the way, the company “TÜV AUSTRIA Hellas (DEGA SHQIPËRI)”, based in Rr. Ibrahim Rugova Leskova Bldg. Kati 7-të, Zyra 30, Kutia postare: 1019, Tirana, Albania, tel. +355 4 4500523, email: info@tuv.al (hereinafter referred to as ” TÜV AUSTRIA in Albania” or “we” or “us”), as Data Controller, collects, stores, uses and generally processes the personal data you submit during your visit, use of the website (www.tuv.al) or upon conclusion and performance of a contract with us.
1. A few words about TÜV AUSTRIA in Albania. (Who we are?)
TÜV AUSTRIA in Albania is an independent organization providing integrated control, training, inspection and certification services for safety, quality, environment, and resource management. Its service portfolio focuses on serving the needs of customers to benefit the quality and competitiveness of products, services, and their human resources. The clientele of the company includes companies from all sectors of the economy such as agri-food, tourism, industry, the sector of elevators and lifting equipment, energy, construction, etc. At the same time, it focuses on the educational part, through its educational center, which is recognized as a level II Lifelong Learning Center.
2. Who can you contact for privacy questions or concerns?
If you have questions or comments about this Privacy Notice or how we handle personal data, please direct your correspondence to:
We aim to respond within 30 days from the date we receive privacy-related communications.
We will acknowledge your email within 14 days and seek to resolve your concern within 1 (one) month of receipt. Where the concern is complex or we have a large volume of concerns, we will notify you that the concern will take longer than 1 (one) month to resolve and we will seek to resolve your concern within 3 (three) months of the concern being first raised. We may accept your concern (and in that case implement one of the measures set out in the ‘Your Rights’ section below), or we may reject your concern on legitimate grounds.
In any event, you always have the right to lodge a complaint with the competent data protection state authority to report concerns you may have about our data handling practices at:
For Albania
Commissioner for Personal Data Protection of the Republic of Albania
Postal address: Rr. “Abdi Toptani”, Nd. 5, Kodi postar 1001, Tirana
E-mail: info@idp.al
Internet: https://www.idp.al/
For Kosovo
Information and Privacy Agency of the Republic of Kosovo
Postal address: Rruga “Luan Haradinaj” Nr. 36 10 000 Prishtine
3. Key Definitions
Data controller: A natural or legal person, public authority, agency, or any other body, which alone or jointly with others determines the purposes and means of processing of personal data, in compliance with the laws and applicable secondary legislation, responsible for the fulfilment of obligations defined by the law provisions.
Data processor: A natural or legal person, public authority, agency, or other body, which processes personal data on behalf of the data controller.
Personal data: Any information relating to an identified or identifiable natural person, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to their physical, physiological, mental, economic, cultural, or social identity.
Sensitive data: Any information related to a natural person and referring to their racial or ethnic origin, political opinions, trade union membership, religious or philosophical beliefs, criminal record, as well as with data concerning their health and sexual life.
Health data: Information related to the physical or mental health of a natural person, including the provision of health care services, which reveal information about the past, current, or future physical or mental health status.
Biometric data: Information resulting from biological features, physical, psychological, and behavioural characteristics of a natural person, which are unique and consistent, such as facial images or dactyloscopic data.
Pseudonymisation: The processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
Data subject: Any natural person whose personal data are being processed.
4. What Data do we collect?
At TÜV AUSTRIA in Albania we try to collect only the strictly necessary Data required for the intended purpose.
Specifically, we collect:
4.1 How do we collect personal data?
Directly. We obtain personal data directly from individuals in a variety of ways, including obtaining personal data from individuals who provide us their business card, complete our online forms, subscribe to our newsletters and preference centre, register for webinars, attend meetings or events we host, visit our offices, apply for open positions at our companies or client’s organizations or provide reference for job applicants. We may also obtain personal data directly when, for example, we are establishing a business relationship, performing professional services through a contract, or through our hosted software applications.
Indirectly. We obtain personal data indirectly about individuals from a variety of sources, including recruitment services and our clients. We may attach personal data to our customer relationship management records to better understand and serve our business clients, subscribers and individuals, satisfy a legal obligation, or pursue our legitimate interests.
5. For what purpose do we process your data?
TÜV AUSTRIA in Albania collects your Data for the following processing purposes, in the context of the Agreement either between us or after your express and special consent, per provided service of the Company and for your general convenience. In particular, we use your Data for the purposes set out below:
In particular, we use your Data in order to:
6. What is the legal basis for the processing of your Data by TÜV AUSTRIA in Albania?
7. Who are the recipients of your Data?
The recipients of your Data are our agents and / or subcontractors, in order to support, promote and execute our business relationship. As a rule, TÜV AUSTRIA in Albania does not transmit your Data to third parties except when clearly required by the Legislation / Regulatory framework or when we act as “intermediaries”. The above transmission takes place to the extent required for the provision of our services. Such third parties may be official Supervisors / Government Bodies or/and the TÜV AUSTRIA Group, when we are required to comply with the legislation / regulations on Certification / Training Bodies or/and to prevent us and against our Customers illegal actions (eg fraud, insult, infringement of personality rights, etc.).
Also, access to your Data has the absolutely necessary staff of TÜV AUSTRIA in Albania, which is committed to maintaining confidentiality.
8. How do we ensure that our associates/ representatives/ subcontractors respect your Data?
Our associates/ representatives/ subcontractors have agreed with the Company and are contractually bound in writing:
To keep confidentiality, and bind their staff, with the respective obligations
9. Do We transfer your Data abroad?
TÜV AUSTRIA in Albania imposes contractual restrictions on its associates, which ensure that they comply with applicable national and European legislation on personal data. In the context of our services, we may need to transfer your information to other countries [basically within and outside the European Economic Area (EEA)], on the basis of EU adequacy decisions, corporate binding rules, standard contracts and approved codes of conduct.
10. For how long we retain your Data and when do we erasure them?
We keep your Data only for the time required to fulfill the purpose for which we have collected them unless a time extension is required due to our legal claims or legal obligations. In case of termination of the contract, for any reason, TÜV AUSTRIA in Albania will retain the Personal Data based on the company retention policy, according to the nature of the data and the purpose of processing, in conjunction with the current legislation for the Institutions Certification / Education, but also the general tax and other legislation and Regulatory framework, based on the respective purpose of processing.
We erase the Data collected by Cookies, in accordance with the Cookies Policy.
11. Is Your Data Safe and Secure?
Your Data is only allowed to be processed by people authorized by us, employees and associates exclusively for the purposes stated above.
We have taken all the necessary and appropriate organizational and technical measures to secure and protect your Data from any form of accidental or fraudulent processing both physically and at a reasonable security level (for example physical security procedures, classified access to data, software).
The above measures shall be reviewed and amended as necessary.
12. What are your rights?
You have the following rights:
13. How can you exercise your rights?
You can contact by email at info@tuv.at (addressed towhom it may concern) or by post at the address of the company: TÜV AUSTRIA in Albania, Rr. Ibrahim Rugova Leskova Bldg. Kati 7-të, Zyra 30, Kutia postare: 1019, Tirana, Albania
14. Links to third party websites
The website of TÜV AUSTRIA in Albania may contain links that lead to other websites of third parties, independent bodies, such as e.g. of Accreditation Bodies, which operate exclusively by them as well as social media websites of the company. Therefore, TÜV AUSTRIA in Albania is not responsible for the content, actions or policies of these websites. We urge you to carefully read the current data protection policies on the websites you visit.
15. Do we make decisions based solely on automated processing, including profiling when processing your Data?
We do not make decisions, nor do we make profiling, based on the automated processing of your Data unless you use “Cookies” on our website www.tuv.al always under the condition of your prior information and consent.
16. Which law applies to the processing of your Data?
The principal legislation is as follows:
17. Where can you go to check if your rights have been respected?
You have the right to file a complaint with the Data Protection Commissioner (“the Commissioner”) https://www.idp.al/, if you think that the processing of your Personal Data violates the current national and regulatory legal framework for the protection of personal data.
18. How will you be informed on any changes to this Policy?
We may revise or update this Privacy Policy from time to time and in any case where necessary. Any changes to this Privacy Policy will take effect upon issuance of the revised Privacy Policy. We update this Policy whenever necessary. If there are significant changes in the Policy or in the way we use your Personal Data, we will publish on our website (www.tuv.al) the update of this before the changes are made in force and we will notify you in any convenient way. We encourage you to read this Policy regularly to know how your Data is protected.
Date of last modification
08/11/2022