Instagram Whatsapp

Privacy Policy

Back to home

1. Data Controller

The data controller for this website is:
Agnes Hayden
Hauptplatz 4, 4020 Linz
info@agneshayden.art

2. General Information on Data Processing

Personal data is processed in accordance with applicable data protection laws, including the GDPR. This privacy policy provides information on which data is collected, how it is used, and the rights of data subjects.

3. Collection and Storage of Personal Data

a) Website Visit
When accessing the website, certain information is automatically collected by the browser, including:

  • IP address
  • Date and time of access
  • Browser type and version
  • Operating system
  • Referrer URL


These data are processed for the purpose of ensuring the proper functioning of the website and improving the online service. No combination with other data sources occurs.

b) Contact via WhatsApp, Email, or Instagram
Messages sent through WhatsApp (tattoo inquiries), the website contact form/email, or Instagram (other inquiries) are stored to process the respective requests. The legal basis is Art. 6(1)(b) GDPR (performance of a contract or pre-contractual measures).

Please note that WhatsApp is a third-party service, and its own privacy policy applies.

4. Cookies

The website may use cookies to provide a user-friendly experience. Browser settings can be configured to prevent cookie storage or to display a notification when cookies are set. Disabling cookies may affect website functionality.

5. Third-Party Services

The website uses the following third-party services:

  • Google Analytics (web analytics)
  • Google Fonts (typography)
  • Instagram Banner (embedded social media content)


These services may process personal data such as IP addresses. Third-party providers are selected carefully and used only when necessary for website operation.

The website is hosted by Ionos, which also processes data as a service provider.

6. Data Retention

Personal data is stored only as long as necessary for the respective purpose or as required by law.

7. Rights of Data Subjects

Data subjects have the right to:

  • Access stored personal data (Art. 15 GDPR)
  • Rectify inaccurate data (Art. 16 GDPR)
  • Request deletion of data (Art. 17 GDPR)
  • Request restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Object to processing (Art. 21 GDPR)


Requests can be addressed via the contact information above.

8. Withdrawal of Consent

Where processing is based on consent, consent may be withdrawn at any time without affecting the lawfulness of prior processing.

9. Data Security

Appropriate technical and organizational measures are implemented to protect personal data against unauthorized access, loss, or misuse.

10. Changes to this Privacy Policy

This privacy policy may be updated to reflect legal requirements or changes in services. The current version applies to all visits.