Data privacy
Table of Contents​
· Controller and Contact Information
· Hosting and Automatic Data Collection
· Cookies
· Contact Form and Pitch Deck Submissions
· Email Communication
· Embedded Content and Social Media
· Data Subject Rights
· Right to Lodge a Complaint
· Data Retention
· Data Security
· International Data Transfers
· Changes to This Privacy Policy
Privacy Policy
We have written this privacy policy (version 11.05.2026) to provide you with information in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679, the Austrian Data Protection Act (Datenschutzgesetz, DSG) and the Austrian Telecommunications Act 2021 (Telekommunikationsgesetz 2021, TKG 2021), as well as to explain what information we collect, how we use data and what choices you have as a visitor to this website. We only collect and use personal data via this website where there is a lawful basis to do so. Should you still have questions, we kindly ask you to contact us by email at team@roi-ventures.at. You can also find our contact information in our website's imprint.
Controller and Contact Information
The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:
ROI1 Ventures GmbH Freyung 1/1 1010 Wien, Österreich
E-Mail: team@roi-ventures.at
If you have questions about data protection or wish to exercise your rights as a data subject, please contact us at the email address above.
Hosting and Automatic Data Collection
Our website is hosted by Wix.com Ltd., 40 Namal Tel Aviv St., Tel Aviv 6350671, Israel, and its subsidiary Wix.com Inc., 500 Terry A. Francois Blvd., San Francisco, CA 94158, USA. Wix acts as a data processor on our behalf. When you visit our website, Wix's web servers automatically collect and store certain data in server log files that your browser transmits. This includes the full URL of the accessed page, the browser type and version, the operating system used, the URL of the previously visited page (referrer URL), the IP address of the requesting device, as well as the date and time of access. This data is collected for the purpose of ensuring the technical functionality, security and stability of the website. The legal basis for this processing is Art. 6(1)(f) GDPR, namely our legitimate interest in the secure and stable operation of our website. Server log files are typically stored for a maximum of 30 days and then automatically deleted. We do not pass this data on to third parties, but we cannot exclude the possibility that this data may be reviewed by authorities in the event of unlawful conduct. For further details on how Wix processes data, please refer to Wix's privacy policy at https://www.wix.com/about/privacy.
Cookies
Our website uses cookies. Cookies are small text files that are stored on your device by your browser when you visit a website. They serve various purposes, from enabling basic website functionality to analysing user behaviour.
Legal framework for cookies in Austria Under § 165(3) of the Austrian Telecommunications Act 2021 (TKG 2021), the storage of information on your device or the access to information already stored on your device requires your prior informed consent, unless the cookie is strictly necessary for the sole purpose of transmitting a communication over an electronic communications network, or is strictly necessary for the provision of a service you have explicitly requested.
Cookies on this website:
Our website uses cookies that are technically necessary for the website to function, such as session management and security features provided by our hosting provider Wix. These cookies do not require your consent under § 165(3) TKG 2021. If we use non-essential cookies, we will obtain your prior consent through a cookie consent banner before any such cookies are set on your device. You may withdraw your consent at any time by adjusting your cookie settings via the cookie banner or by deleting cookies in your browser settings.
How can I manage or delete cookies?
You decide if and how you want to use cookies. Regardless of which service or website cookies originate from, you always have the option to delete, deactivate or only partially allow them. You can manage cookies in your browser settings:
Chrome: Settings → Privacy and Security → Cookies Safari: Settings → Privacy Firefox: Settings → Privacy & Security → Cookies and Site Data Microsoft Edge: Settings → Cookies and Site Permissions
If you set up your browser to block all cookies, please note that some features of this website may not function properly.
Contact Form and Pitch Deck Submissions
When you use our contact form or submit a pitch deck via our website, we collect and process the following data: your name, your email address, your company or startup name, the content of your message, any documents you attach such as pitch decks or presentations, the date and time of submission, and your IP address which is collected automatically by our hosting provider.
We process this data for the purpose of evaluating potential investment opportunities, communicating with you about your submission, and — where there is mutual interest — entering into discussions or an investment relationship. The legal basis for this processing is Art. 6(1)(b) GDPR, as the processing is necessary for pre-contractual measures taken at your request, and Art. 6(1)(f) GDPR, namely our legitimate interest in evaluating investment opportunities, which is the core of our business activity.
We understand that pitch decks and related materials may contain commercially sensitive and confidential information. Submitted materials are accessible only to the partners and team members of ROI1 Ventures GmbH who are involved in deal evaluation. We do not share your pitch deck or related materials with third parties without your prior consent.
Email Communication
If you contact us via email at team@roi-ventures.at, we process your email address, the content of your message and any attachments for the purpose of responding to your enquiry. The legal basis for this processing is Art. 6(1)(f) GDPR, namely our legitimate interest in responding to enquiries directed at us, and Art. 6(1)(b) GDPR where the communication relates to pre-contractual measures. Email correspondence is retained for as long as necessary to address the subject of the communication, and thereafter in accordance with statutory retention obligations. Please note that standard email communication is not encrypted end-to-end. We recommend not sending highly sensitive personal data such as bank details or identity documents via unencrypted email.
Embedded Content and Social Media
Our website contains links to social media services, in particular LinkedIn. If you interact with social media elements embedded on our website, such as sharing buttons or linked content, data may be transferred from your browser to the respective social media service and stored there. We have no influence over the scope of data collected by the respective provider.
On our website we use elements from the social media network LinkedIn. The provider for the European Economic Area and Switzerland is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. LinkedIn is a subsidiary of LinkedIn Corporation, 1000 W Maude Ave, Sunnyvale, CA 94085, USA. When you visit a page on our website that contains a LinkedIn element, your browser may establish a direct connection to LinkedIn's servers. If you are logged into your LinkedIn account at the time, LinkedIn may associate your visit to our website with your account. The legal basis for the use of LinkedIn elements is Art. 6(1)(f) GDPR, namely our legitimate interest in presenting our company and networking on professional platforms, and Art. 6(1)(a) GDPR (your consent) where LinkedIn tracking scripts require prior opt-in via our cookie consent mechanism. For further information on data processing by LinkedIn, please refer to LinkedIn's privacy policy at https://www.linkedin.com/legal/privacy-policy.
Data Subject Rights Under the GDPR and the Austrian Data Protection Act (DSG), you are granted the following rights in relation to your personal data:
Right of access (Art. 15 GDPR) – You have the right to obtain confirmation as to whether we process personal data concerning you, and if so, to access that data and receive information about the processing.
Right to rectification (Art. 16 GDPR) – You have the right to request the correction of inaccurate personal data and the completion of incomplete data.
Right to erasure (Art. 17 GDPR) – You have the right to request the deletion of your personal data, subject to statutory retention obligations and other legal exceptions.
Right to restriction of processing (Art. 18 GDPR) – You have the right to request the restriction of processing under certain conditions.
Right to notification (Art. 19 GDPR) – We are obliged to notify all recipients of your data of any rectification, erasure, or restriction of processing, unless this proves impossible or involves disproportionate effort.
Right to data portability (Art. 20 GDPR) – You have the right to receive your personal data in a structured, commonly used and machine-readable format, and to transmit it to another controller.
Right to object (Art. 21 GDPR) – You have the right to object at any time to the processing of your personal data which is based on Art. 6(1)(f) GDPR (legitimate interest). If you object, we will no longer process your data unless we can demonstrate compelling legitimate grounds that override your interests, rights and freedoms.
Right not to be subject to automated decision-making (Art. 22 GDPR) – You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. We do not engage in automated decision-making.
Right to withdraw consent (Art. 7(3) GDPR) – Where processing is based on your consent, you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.
To exercise any of these rights, please contact us at team@roi-ventures.at. We will respond to your request within one month of receipt in accordance with Art. 12(3) GDPR.
Right to Lodge a Complaint
If you believe that the processing of your personal data violates data protection law, or that your data protection rights have been infringed in any other way, you have the right to lodge a complaint with the competent supervisory authority. For Austria, this is:
Österreichische Datenschutzbehörde (DSB) Barichgasse 40–42 1030 Wien, Österreich Website: https://www.dsb.gv.at E-Mail: dsb@dsb.gv.at
Data Retention
We retain personal data only for as long as necessary for the purposes described in this privacy policy, or as required by law. Applicable statutory retention obligations in Austria include a seven-year retention period for business records and correspondence under § 132 of the Federal Tax Code (Bundesabgabenordnung, BAO) and § 212 of the Austrian Commercial Code (Unternehmensgesetzbuch, UGB). After expiry of the applicable retention period, data is securely deleted or anonymised.
Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, destruction or alteration. These measures are regularly reviewed and updated in line with the current state of technology.
Changes to This Privacy Policy
We may update this privacy policy from time to time to reflect changes in our data processing practices or in applicable law. The current version is always available on our website at https://www.roi-ventures.at/privacy. Material changes will be indicated by updating the version date at the top of this document.