Data Protection

With the following information we would like to give you an overview of the processing of your personal data. Which data is processed in detail and how it is used depends largely on the commissioned or agreed services. In this respect, not all parts of this data protection notice may apply to you.

1 WHO IS RESPONSIBLE FOR DATA PROCESSING AND WHO CAN YOU CONTACT?

The controller responsible for processing your personal data is:

7BOTANICALS PTE. LTD.
10 Anson Road #33-10, Suite C,
International Plaza
Singapore 079903

E-Mail: office@pixit.design

Hereinafter referred to as the “Agency”.

2 WHAT DATA DO WE PROCESS

We process personal data that we receive from you in the course of our business relationship or that we collect when you use our website. In addition, we process personal data that we lawfully obtain from publicly accessible sources (e.g. commercial registers, association registers, media, the internet) or that are lawfully transmitted to us by other companies within our network or by other third parties. In particular, this includes personal details (e.g. name, address, telephone number, email address, date of birth, place of birth, nationality), identification data (e.g. ID document details), and authentication data (e.g. signature samples). Furthermore, payment data (e.g. payment instructions, incoming payments, outstanding payments), order and other contract data (e.g. order number, order content, tax data), information on financial circumstances (e.g. creditworthiness data), and documentation data (e.g. records, confirmations) may also be processed. When you use our website, we also process access data without specific personal reference, such as information about the device used, the web browser, the operating system, the IP address, or other similar operational data.

3 FOR WHAT PURPOSES DO WE PROCESS YOUR DATA AND ON WHAT LEGAL BASIS?

Personal data are processed in particular for the purpose of providing (pre-)contractual services, responding to your inquiries and communicating with you, technical administration, optimizing and ensuring the operation of the website, reviewing complaints, asserting, exercising or defending legal claims, and fulfilling statutory obligations.

We process personal data in accordance with the provisions of the General Data Protection Regulation (“GDPR”) and the Austrian Data Protection Act 2018 (“DSG”):
a) For the performance of contractual obligations (Art. 6(1)(b) GDPR):
Data are processed for the performance of our contracts with you or for carrying out pre-contractual measures taken at your request, or as necessary for the performance of the order.

b) On the basis of legitimate interests (Art. 6(1)(f) GDPR):
Where necessary, we process your data beyond the actual performance of the contract in order to safeguard our legitimate interests or those of third parties. Our legitimate interests include, in particular, optimizing and ensuring the quality of our services, (direct) marketing, engaging debt collection agencies, asserting, exercising or defending legal claims, or exchanging data with authorities or intermediaries.

c) On the basis of your consent (Art. 6(1)(a) GDPR):
Where you have given us your consent to process personal data for purposes beyond the scope of the order (e.g. photographs taken at events, newsletter distribution), the lawfulness of such processing is based on your consent.

d) On the basis of legal obligations (Art. 6(1)(c) GDPR) or in the public interest (Art. 6(1)(e) GDPR):
We are subject to various legal obligations that may require the processing of personal data, such as identity checks, reporting, documentation, and retention obligations.

4 WHO RECEIVES YOUR DATA

Within the agency, access to your data is granted only to those departments and individuals who require it to fulfill our contractual and legal obligations. Service providers engaged by us (such as tax advisors) and other vicarious agents may also receive access to your data to the extent necessary for the purposes stated above. It is essential that only those employees who actually need the data are granted access. All employees receive initial and recurring training regarding the requirements and obligations of the GDPR.

5 DISCLOSURE OF YOUR DATA

Where necessary for the performance of the contract or justified on the basis of our legitimate interests, we will disclose personal data to processors (service providers) engaged by us. These processors comply with the data protection requirements stipulated by the GDPR and are contractually bound to confidentiality. A written data processing agreement is concluded with each service provider engaged, in accordance with the requirements of the GDPR.

6 ARE DATA TRANSFERRED TO A THIRD COUNTRY OR TO AN INTERNATIONAL ORGANISATION?

Personal data are transferred to recipients outside the European Union or the European Economic Area (so-called “third countries”) only if a legal basis exists for such transfer (see section 3). Transfers to third countries are carried out exclusively in the following cases:

a) Where necessary in individual cases, your personal data may be transferred to IT service providers engaged by us in a third country in order to ensure the operation of the Agency’s IT systems, while maintaining an adequate level of data protection in accordance with European standards.

b) For other reasons, where we have implemented appropriate safeguards to protect your personal data, or where the transfer is made to a country which, in the opinion of the European Commission, provides an adequate level of data protection.

c) Where we are legally permitted to do so, for example if you have consented to the data transfer after being informed of potential risks, if the transfer is necessary for the performance of a contract, or if the transfer is permitted on the basis of statutory provisions (e.g. for the prevention of money laundering, terrorist financing, or other criminal offences).

7 HOW LONG WILL YOUR DATA BE STORED?

Where necessary, we process your personal data for the duration of the entire business relationship and beyond that in accordance with the applicable statutory retention and documentation obligations (e.g. under the Austrian Commercial Code (UGB) and the Federal Fiscal Code (BAO)). After the purposes stated above have been achieved and the statutory retention periods have expired, your data will be deleted unless you have expressly consented to further use of your data. Data that are required for the assertion, exercise or defence of legal claims before an authority may, in the event of a dispute, be stored until the matter has been finally and legally resolved. Furthermore, after the expiry of the statutory retention periods, we reserve the right to anonymise certain data and process them in anonymised form for statistical purposes.

8 TECHNICAL AND ORGANISATIONAL MEASURES

We have implemented appropriate technical and organisational measures to protect your personal data. These measures ensure that unauthorised access to, as well as unlawful processing of, the personal data provided does not occur. In particular, the technical and organisational measures include an access authorisation concept, a data backup concept, as well as physical and digital security measures relating to our IT infrastructure. We continuously endeavour to review and update these security measures in line with technological developments.

Newsletter and Email Marketing

If our website offers the option to subscribe to a newsletter, we will use the data you provide in the registration form exclusively for the purpose of sending you the newsletter. Your data will also be processed by Klaviyo Inc. (“Klaviyo”), which supports us as a data processor in the distribution of our newsletters.
You may unsubscribe from the newsletter at any time via the unsubscribe link included in each newsletter or by sending an email to: office@pixit.design. Upon withdrawal of your consent, the data you provided as part of the newsletter subscription will be deleted.
Where legally permitted, we may also send you electronic marketing communications. You may object to this at any time via the unsubscribe link included in the relevant email or by sending an email to: office@pixit.design. You also have the right to object to the processing of your data for direct marketing purposes at any time. In such cases, your data will no longer be processed for these purposes.

Cookies

Our website uses so-called cookies. These are small text files that are sent when you visit a website and stored on your device. We use cookies in particular to make our website more user-friendly, to ensure a smooth and secure operation, and to carry out anonymized analyses of website usage. Cookies enable the website to recognize your browser when you visit it again. Some cookies remain stored on your device until you delete them.

When you visit our website for the first time, a consent banner appears where you can choose whether you generally agree to the use of cookies on our website and, if so, which categories of cookies you consent to. If you no longer wish to use cookies, you can configure your browser settings accordingly. All common browsers allow you to control the placement of cookies and to set their storage duration. This allows you to generally prevent cookies from being stored on your device, shorten their storage period, or change your previous selection. You may also withdraw your consent at any time by deleting your browser history and reloading the website. Please note that the functionality of the website may be limited if you do not consent to the use of cookies or withdraw your consent. Further information can be found at: http://www.google.com/privacy/.

The use of cookies is based on the legal grounds mentioned above (Section 3). The storage duration generally depends on the type of cookie used, but is limited to a maximum period of twelve months (with this period starting from the initial storage).

Log Files

Each time the website is visited or used, as well as each time a file is accessed or an attempt is made to access a file on the server, data relating to this process is stored in a log file. It is not directly possible for us to identify which user has accessed which data. We also do not attempt to collect such information. This would only be possible in legally regulated cases and with the assistance of third parties (e.g. internet service providers). The data collected, processed and stored may include, for example, the browser type and version, the operating system used, the referrer URL, the hostname of the accessing device, the time of the server request, and the IP address. These data are processed in particular on the basis of our legitimate interest (Art. 6(1)(f) GDPR) in detecting, preventing and investigating attacks on our website.
Our website is hosted on a server of the German hosting provider Hetzner Online GmbH, located in a data center in Finland. Our email server is provided directly by Microsoft Corporation (Hosted Exchange), with the respective servers also located within the European Union.

HubSpot

Our website also uses the services of the software provider HubSpot, a company based in the United States with a branch in Ireland (Ground Floor, Two Dockland Central, Dublin 1, Ireland). HubSpot is a service platform. The service used is an integrated software solution that enables us to manage customer data and cover various aspects of online marketing (e.g. analysis of landing pages and reporting). The storage of cookies is based on your consent (Art. 6(1)(a) GDPR).

In particular, the following data are processed: IP address, geographic location, browser type, duration of the visit, and pages accessed. The information collected as well as the content of our website are stored on servers of our software partner HubSpot Ireland. We use HubSpot to analyze the use of our website in order to continuously optimize it and make it more user-friendly. In addition, we use this information to determine which of our services are of interest to customers and newsletter subscribers and to contact them for marketing purposes. Furthermore, we use these analyses to improve our web offering for you.
However, we only use your IP address in a shortened (anonymized) form. This means that users’ IP addresses are truncated by HubSpot within member states of the European Union or other contracting states of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transferred to a HubSpot server in the United States and shortened there. Further information and HubSpot’s privacy policy can be found at: https://legal.hubspot.com/de/privacy-policy

Google Analytics

This website uses functions of the web analytics service Google Analytics. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). As part of web analytics, cookies are used to enable an analysis of how you, as a visitor, use the website. The information generated by the cookies about your use of this website is usually transmitted to a Google server in the United States and stored there.

To protect your data, IP anonymization is activated on this website. This means that your IP address is truncated by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the United States and truncated there. Google uses this information on behalf of the website operator to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website and internet usage to the website operator. The IP address transmitted by your browser within the scope of Google Analytics is not merged with other Google data.

You can prevent the storage of cookies by selecting the appropriate settings in your browser software. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en
You can also prevent data collection by Google Analytics by clicking the following link. An opt-out cookie will be set that prevents the collection of your data on future visits to this website: Disable Google Analytics.

Please note that Google Analytics has been extended on this website by the code “anonymizeIp” to ensure anonymized collection of IP addresses (so-called IP masking). We also use Google Analytics to evaluate data from Google Ads for statistical purposes. Our website uses so-called social plugins (“plugins”) from the social networks Facebook and Google+. These services are provided by Facebook Inc. and Google Inc. (“providers”). Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). Google+ is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). An overview of the plugins and their appearance can be found here:
http://developers.facebook.com/plugins or https://developers.google.com/+/plugins

When you access a page of our website that contains such a plugin, your browser establishes a direct connection to the servers of Google or Facebook. The content of the plugin is transmitted directly from the respective provider to your browser and integrated into the page. Through this integration, the providers receive the information that your browser has accessed the corresponding page of our website, even if you do not have a profile with the respective social network or are not currently logged in. This information (including your IP address) is transmitted directly by your browser to a server of the respective provider in the United States and stored there.

If you are logged into one of the social networks, the providers can directly associate your visit to our website with your Facebook or Google+ profile. If you interact with the plugins, for example by clicking the “Like” or “+1” button, the corresponding information is also transmitted directly to a server of the providers and stored there. The information is also published on the social network and displayed to your contacts.

The purpose and scope of data collection and the further processing and use of the data by the providers, as well as your related rights and settings options to protect your privacy, can be found in the providers’ privacy policies:
Facebook privacy policy: http://www.facebook.com/policy.php
Google privacy policy: http://www.google.com/intl/en/+/policy/+1button.html

If you do not want Google or Facebook to associate the data collected via our website directly with your profile on the respective social network, you must log out of the respective network before visiting our website.

You can also completely prevent the loading of plugins by using add-ons for your browser, for example the “Facebook Blocker” (http://webgraph.com/resources/facebookblocker/).

Google Remarketing

Our website also uses the functions of Google Analytics Remarketing in conjunction with the cross-device features of Google Ads and Google DoubleClick. Data processing for the European Economic Area and Switzerland is carried out by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

This function makes it possible to link the advertising audiences created with Google Analytics Remarketing to the cross-device functions of Google Ads and Google DoubleClick. In this way, interest-based, personalized advertising messages that have been adapted to you based on your previous usage and browsing behavior on one device (e.g. smartphone) can also be displayed on another of your devices (e.g. tablet or PC).

If you have given your consent, Google will link your web and app browsing history with your Google account for this purpose. This allows the same personalized advertising messages to be displayed on every device on which you sign in with your Google account.

To support this function, Google Analytics collects Google-authenticated user IDs, which are temporarily linked with our Google Analytics data in order to define and create target groups for cross-device advertising.

You can permanently object to cross-device remarketing/targeting by disabling personalized advertising in your Google account. To do so, please follow this link: https://www.google.com/settings/ads/onweb/
Further information and Google’s privacy policy can be found at: https://policies.google.com/technologies/ads?hl=en

Web Fonts

This website uses so-called web fonts to ensure a consistent display of fonts, which are provided by Adobe Typekit, as well as so-called Google Fonts provided by Google. When you access the website, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly. For this purpose, the browser you use must establish a connection to the servers of Adobe Typekit and Google. As a result, Adobe Typekit and Google become aware that our website has been accessed via your IP address. The use of web fonts and Google Fonts is in the interest of a uniform and visually appealing presentation of the website. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. If your browser does not support web fonts and/or Google Fonts, a standard font from your device will be used instead.

LinkedIn Insight Tag

We use the retargeting tool and conversion tracking provided by LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland (“LinkedIn”). For this purpose, the LinkedIn Insight Tag is integrated on our website, which enables LinkedIn to collect statistical, pseudonymous data about your visit to and use of our website and to provide us with corresponding aggregated statistics on this basis. In particular, the LinkedIn User ID (cookie ID), the anonymized IP address, and metadata of the website visit (e.g. browser type, visited website) are collected and processed.

This also serves the purpose of being able to show you interest-based and relevant offers and recommendations after you have informed yourself on the website about certain services, information, and offers. The relevant data is stored in a cookie. If you wish to prevent this tracking, you can use the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Further information and LinkedIn’s privacy policy can be found here: Privacy Policy: https://www.linkedin.com/legal/privacy-policy, Cookie Policy: https://www.linkedin.com/legal/cookie_policy.

Facebook Pixel

With your consent, we use the “visitor action pixel” of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”) within our website. This allows us to track user behavior after users have been redirected to our website by clicking on a Facebook advertisement. This serves to evaluate the effectiveness of Facebook advertisements for statistical and market research purposes. By using this pixel, we can optimize our advertising activities. The data collected in this way is anonymous to us as the operator of the website. However, by accepting the cookie, you consent to Facebook storing and processing your data. This data may then be used by Facebook for its own advertising purposes.

Integration of Third-Party Services and Content

Within this online offering, content from third parties may be integrated, such as videos from YouTube, map material from Google Maps, RSS feeds, or graphics from other websites. This always requires that the providers of such content (hereinafter referred to as “third-party providers”) are able to perceive the users’ IP address. Without the IP address, they would not be able to deliver the content to the respective user’s browser. The IP address is therefore required for the display of this content. We endeavor to use only such content whose respective providers use the IP address solely for the purpose of delivering the content. However, we have no influence if third-party providers store the IP address, for example for statistical purposes. Where this is known to us, we inform users accordingly.

9 DATA SUBJECT RIGHTS

If the respective legal requirements are met, you are entitled, as a data subject, to the following rights:

a) the right to obtain information as to whether and, if so, which personal data are being processed, as well as the identity of third parties to whom the personal data are disclosed;

b) the right to receive copies of the stored personal data;

c) the right to rectification, completion, or erasure of personal data;

d) the right to restriction of the processing of personal data;

e) the right to data portability;

f) the right to object to the processing of personal data where the processing is based on a legitimate interest pursued by us or by third parties. Under certain circumstances, we may continue to process the data despite your objection;

g) the right to withdraw any consent given at any time, without affecting the lawfulness of the processing carried out on the basis of the consent prior to its withdrawal.

If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been infringed, please contact us (see section 2). You also have the right to lodge a complaint with the competent supervisory authority, the Austrian Data Protection Authority.

10 CHANGES TO THIS PRIVACY POLICY

We may make changes to this Privacy Policy from time to time. In such cases, we will inform you by announcing the update to the Privacy Policy and/or by publishing the updated version on our website, or by otherwise notifying you of the updated version in an appropriate manner. This Privacy Policy was last updated on: 01.01.2026.