Public voting is now open for the FOOH Awards! Have your say on the final winners.
Vote Now

Privacy Policy

Privacy Policy for FOOH - Fake Out-Of-Home Advertising

Last Updated: May 4, 2025

1. Introduction

FOOH.com is operated by:

FOOH FlexCo
Walling 12,
4300 St. Valentin,
Austria

Email: hello[ät]fooh.com
Company Registration Number (Firmenbuchnummer): FN 649844 d
VAT Identification Number (UID-Nummer): ATU81952601

This Privacy Policy explains how we collect, use, share, and protect your personal information when you use our website and services. We respect your privacy and are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (Datenschutzgesetz - DSG).

2. Types of Personal Data We Collect

2.1 Information You Provide to Us

We collect the following personal data when you submit forms on our website:

  • Name
  • Email address
  • Organization type
  • Company name
  • Location
  • Offered services
  • Website URL
  • Instagram URL (optional)
  • Artstation URL (optional)

2.2 Information We Collect Automatically

When you visit our website, we automatically collect certain information through cookies and similar technologies:

  • IP address
  • Device information
  • Browser type and version
  • Operating system
  • Visit timestamps
  • Pages visited
  • Referring website
  • Other usage data collected by our analytics services

2.3 Tracking Technologies

We use the following tracking technologies:

  • Meta Pixel & Conversion API
  • Google Analytics 4
  • LinkedIn Pixel

2.4 Special Categories of Data

We do not collect any special categories of personal data (such as information about your health, race, ethnicity, political opinions, religious beliefs, or sexual orientation).

3. How We Collect Your Data

3.1 Direct Collection

  • Forms on our website
  • When you register for an account
  • When you submit creative work
  • When you participate in the FOOH Award

3.2 Automated Collection

  • Cookies and tracking technologies
  • Browser or device information
  • Usage data

4. Purposes of Data Processing

We process your personal data for the following purposes:

4.1 Service Provision

  • Verifying creators’ work for proper crediting
  • Processing award submissions
  • Managing user accounts
  • Providing our services

4.2 Analytics and Improvement

  • Analyzing website traffic and user behavior (using Google Analytics 4)
  • Improving our website and services

4.3 Marketing

  • Targeted advertising (using Meta Pixel and LinkedIn Pixel)
  • Sending newsletters and promotional communications

We process your personal data on the following legal grounds:

  • For marketing communications
  • For the use of certain cookies and tracking technologies

5.2 Contractual Necessity (Art. 6(1)(b) GDPR)

  • To provide our services
  • To process award submissions
  • To maintain user accounts

5.3 Legitimate Interests (Art. 6(1)(f) GDPR)

  • To improve our website and services
  • For security purposes
  • For proper attribution of creative work
  • For analytics purposes

6. Data Retention Periods

We retain your personal data for as long as necessary to fulfill the purposes for which we collected it, including:

  • Account information: For the duration of your account plus 2 years after deletion
  • Award submission data: 5 years after the award cycle
  • Communication data: 3 years after the last communication
  • Analytics data: 26 months (Google Analytics 4 default)

We may retain certain information for longer periods if required by law or for legitimate business purposes such as accounting, dispute resolution, or to prevent fraud.

7. Data Sharing Practices

7.1 Third-Party Service Providers

We share your information with the following types of third-party service providers:

  • Analytics providers (Google Analytics 4)
  • Advertising platforms (Meta Business Suite, LinkedIn)
  • Payment processors (Stripe)

These providers may process data outside the EU/EEA. We ensure appropriate safeguards are in place through standard contractual clauses, adequacy decisions, or other legally recognized mechanisms.

7.2 International Transfers

When we transfer your data outside the EU/EEA, we rely on:

  • EU Commission adequacy decisions
  • Standard Contractual Clauses
  • Other appropriate safeguards as required by law

8. Data Security Measures

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Password protection and access controls
  • Regular security assessments
  • Encryption of sensitive data
  • Staff training on data protection
  • Limited access to personal data

8.1 Data Breach Procedures

In the event of a personal data breach, we will:

  • Notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible
  • Notify affected individuals without undue delay if the breach is likely to result in a high risk to their rights and freedoms
  • Document all breaches and our response actions

9. Your Rights

Under the GDPR, you have the following rights:

  • Right to access: You can request access to your personal data
  • Right to rectification: You can request correction of inaccurate data
  • Right to erasure: You can request deletion of your data
  • Right to restriction of processing: You can request that we limit how we use your data
  • Right to data portability: You can request a copy of your data in a structured, machine-readable format
  • Right to object: You can object to our processing of your data
  • Right to withdraw consent: You can withdraw consent at any time

To exercise these rights, please contact us at hello[ät]fooh.com.

10. Automated Decision-Making

We do not engage in automated decision-making or profiling that produces legal or similarly significant effects on you.

11. Contact Information

For questions related to this Privacy Policy or to exercise your rights, please contact:

Email: hello[ät]fooh.com

Data Protection Officer: Moritz Lumetsberger

12.1 Types of Cookies We Use

  • Strictly necessary cookies: Required for the website to function
  • Analytics cookies: Google Analytics 4
  • Marketing cookies: Meta Pixel, LinkedIn Insights
  • Functional cookies: To remember your preferences

By using our website, you consent to the use of cookies as described in this policy. Most web browsers allow you to manage your cookie preferences through browser settings. You can:

  • Delete cookies from your device
  • Block cookies by activating the setting on your browser
  • Configure your browser settings to notify you when you receive a cookie

However, please note that if you use your browser settings to block all cookies (including essential cookies), you may not be able to access all or parts of our website.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last Updated” date at the top. For significant changes, we will provide a more prominent notice, such as an email notification.

14. Complaints

If you have concerns about our handling of your personal data, please contact us first. You also have the right to lodge a complaint with a supervisory authority, in particular in the EU member state of your habitual residence, place of work, or place of the alleged infringement.

For Austria, the supervisory authority is: Austrian Data Protection Authority (Datenschutzbehörde) Barichgasse 40-42 1030 Vienna Email: [email protected]

Share: Copy Link Email LinkedIn WhatsApp Telegram Twitter / X