PRIVACY POLICY

Data Protection Statement/Information according to Art 13 and 14 GDPR

Controller:
Stratum1 GmbH
Schubertstraße 6a, 8010 Graz
T: +43 (0) 676 38 34 217
E: office@stratum1.io

Last updated: 21.08.2025 


1. General Information / Personal Data

We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website/platform and informs you of your rights under data protection law.

Personal data means any information relating to an identified or identifiable natural person (e.g. name, email address, IP address).
Processing means any operation performed on personal data, such as collection, storage, use, or disclosure.

It is important that the personal data you provide to us is accurate and up to date. Please notify us if your personal data changes during your relationship with us.

This Privacy Policy should be read together with our Terms and Conditions. Please note that the use of cookies and similar technologies is addressed separately under the Cookies section below.


2. Purposes and Legal Bases for Processing

We process your personal data only where permitted by law. The main purposes and legal bases are:

Purpose/ActivityData CategoriesLegal Basis
Customer account, registration, onboarding, training, authentication, verificationName, addresses, company, password, phone numberPerformance of a contract, legal obligation
Creation of an avatarPersonal featuresPerformance of a contract
Subscription of services, newsletterName, email addressConsent
Contact requests / supportName, email address, request/concern, phone numberConsent, performance of a contract
Payment processingPayment information, name, email addressPerformance of a contract, legal obligation
Notice & action procedure regarding illegal content or suspicion of criminal offencesName, email address, notice detailsLegal obligation
Ensuring operation, functionality, security and optimisation of our servicesIP address, browser/device data, server log files, location dataLegitimate interest
Use of metaverse/virtual spacesUser settings, audio/video, telemetry, recordings, location data, shared contentPerformance of a contract, consent
Compliance with retention and documentation obligationsVarious, depending on legal provisionsLegal obligation

3. Recipients of Personal Data

Within Stratum1 GmbH, only employees and departments who require access to your data for the above purposes will receive it.

We may also share your personal data with:

  • Courts and public authorities,

  • Attorneys, tax advisers, auditors,

  • Banks and insurance companies,

  • IT service providers and other processors (bound by our instructions).

Some recipients may be located outside the EU/EEA. In such cases, we ensure an adequate level of protection (e.g., through EU adequacy decisions or EU Standard Contractual Clauses).

When using our services, certain personal data (e.g. profile, shared content, audio/video in virtual spaces) may be visible to other users.


4. Data Retention

We store personal data only as long as necessary to fulfil the stated purposes and comply with legal obligations (e.g. under the Austrian Civil Code and Austrian Business Code).

If you withdraw consent or object to processing, your personal data will be deleted unless further retention is required by law or for the establishment, exercise, or defence of legal claims. Data may also be anonymised instead of deleted.


5. Data Security

We apply appropriate technical and organisational measures to protect your personal data from loss, misuse, and unauthorised access.

However, transmission of information over the internet may involve risks beyond our control. We cannot accept liability for data access caused by errors in transmission or unauthorised third-party access (e.g. hacker attacks).


6. Server Log Files

Our website automatically collects and stores information in server log files, including:

  • IP address

  • Browser and language settings

  • Operating system

  • Referrer URL

  • Internet service provider

  • Date and time of access

This data is processed on the basis of our legitimate interest in system stability, security, and optimisation.


7. SSL/TLS Encryption

For security reasons, our platform uses SSL/TLS encryption. You can recognise an encrypted connection by “https://” and the lock icon in your browser.


8. Your Rights

Under GDPR, you have the right to:

  • Access your personal data,

  • Rectify inaccurate data,

  • Erase personal data,

  • Restrict processing,

  • Object to processing,

  • Data portability,

  • Withdraw consent at any time.

You may lodge a complaint with the Austrian Data Protection Authority (Barichgasse 40-42, 1030 Wien, Tel: +43 1 52 152-0, E: dsb@dsb.gv.at).


9. Automated Decision-Making

We do not use automated decision-making, including profiling, under Art. 22 GDPR.


10. Changes to this Privacy Policy

We reserve the right to update this Privacy Policy in line with legal, technical, or business changes.


Cookies and Analytics

Cookies

Cookies are small text files stored on your device. They may be session-based (deleted after closing your browser) or persistent (stored until deleted or expired).

  • Necessary cookies: Required for proper website operation.

  • Optional cookies: Used for analytics, performance, and marketing. These require your consent.

You can configure your browser to reject cookies, although this may affect website functionality.

Analytics

We use:

  • Google Analytics (Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland)
    Google Analytics uses cookies to collect information such as IP address, browser details, pages visited, and date/time of access. We use this information to analyse website use and improve our services. IP addresses are anonymised before storage. Data may be transferred to the US, where Google is subject to additional safeguards (e.g., EU Standard Contractual Clauses). More information: Google Privacy Policy.

  • Our own analytics software
    We also operate in-house analytics to monitor usage of our platform. All data is stored exclusively within the EU and processed in pseudonymised or anonymised form where possible.

Third-Party Cookies

Our website may integrate social media buttons or plug-ins (e.g., Twitter, LinkedIn, Instagram, Facebook, Playcanvas.com, OpenAI.com, ReadyPlayer.me). If you activate such a plug-in, your data may be transmitted to the respective network operator.

We have no influence on the scope or further use of data by these networks. Please review the privacy policies of the respective providers before using such features.

Careers Imprint | Terms of Service

hello@arrival.space

© 2025 Stratum1 GmbH – All rights reserved I Schubertstraße 6a I Graz/Austria