When accessing the website or the gateway, information is automatically sent to the server of our website by the browser used on your device. This information is temporarily stored in so-called server log files. The following data may be collected:

• IP address of the requesting computer
• Date and time of access
• Name and URL of the retrieved file
• Website from which the access occurs (referrer URL)
• Browser used and, if applicable, the operating system of your computer
• Name of your access provider

The processing of this data is carried out for the following purposes:

• Ensuring a smooth connection to the website
• Ensuring comfortable use of our website
• Evaluation of system security and stability
• For administrative purposes

The legal basis for data processing is Art. 6(1)(f) GDPR (legitimate interest). Our legitimate interest in collecting this data follows from the purposes listed above. Under no circumstances do we use the collected data to draw conclusions about your person.

The data is stored for a maximum period of one year unless legal requirements provide for longer periods.

If the data is not provided, the functionality of the website may be limited.

If you want to integrate BOUNZER.EU into your service, you must register on the BOUNZER.EU website. During registration and each login to the administrative area, in addition to the data mentioned in the section "Operation of the BOUNZER.EU Website and the BOUNZER.EU Authentication Gateway," the following data is collected:

• App-specific user identifier (see below "Authentication via BOUNZER.EU")

The processing of this data is carried out for the following purposes:

• The processing of your app-specific user identifier serves to uniquely and securely identify you within the system.

The legal basis for data processing is Art. 6(1)(b) GDPR (contractual necessity). Under no circumstances do we use the collected data to draw conclusions about your person.

The data is stored for a maximum period of one year from termination by the user, unless legal requirements provide for longer periods.

If the data is not provided, the BOUNZER.EU service cannot be used.

If you are redirected from a service to BOUNZER.EU for authentication, the following data is collected in addition to the data mentioned in the section "Operation of the BOUNZER.EU Website and the BOUNZER.EU Authentication Gateway":

• The national unique personal identifier (e.g., in Austria the sector-specific personal identifier). The national unique personal identifier is not forwarded to the service.
• Issuing country of the electronic identity document. The issuing country is not forwarded to the service.
• Security level of the electronic identity document. The security level is not forwarded to the service.

The processing of this data is carried out for the following purposes:

• The app-specific user identifier is derived from the national unique personal identifier. It is generated from the national unique personal identifier and various other values and converted into a non-reversible hash code, which is forwarded to the service. The calculation, processing, and forwarding of your app-specific user identifier serves your unique and secure identification when accessing the respective service.
• The processing of the issuing country of your electronic identity document is necessary to adapt the system to specific electronic identity documents if required.
• The processing of the security level ensures that only electronic identity documents with a "high" security level can be used.

The legal basis for data processing is Art. 6(1)(b) GDPR (contractual necessity). Under no circumstances do we use the collected data to draw conclusions about your person.

The data is stored for a maximum period of one year unless legal requirements provide for longer periods.

If the data is not provided, authentication cannot take place.