Cipacto App – Privacy Policy

Version 1.0.0 – 20 July 2022

In this privacy policy, we, Cipacto GmbH iG hereinafter referred to as “we”, “us” and “Cipacto”, office in Austria, 1030 Vienna, Muenzgasse 1/2/47, explain how personal data is processed in our app “CIPACTO” (hereinafter “APP”).

The protection of personal data is of particular concern to us. Therefore, when designing the APP, we have strictly adhered to the requirements of the GDPR for data protection through technology design and data protection-friendly default settings and of course always observe the legal requirements of the DSG and the GDPR when collecting and processing personal data.

In the following, we provide detailed information about the scope and purpose of the APP. Therefore, please read our privacy policy carefully before installing and using our APP.

1. CIPACTO APP functionality

Our APP is a pure business application that our contractual partners can use to provide authorized persons and vehicles with controlled access to their non-public tanks and tank facilities in the industrial sector.

Tanks and tank systems are central infrastructure components for companies and essential for operations. This makes it all the more important for companies that the tank systems are filled in good time, for example. Cipacto enables owners and suppliers to carry out the supply efficiently, proactively and transparently.

Our APP supports you in carrying out controlled refuelling processes and, among other things, in detecting and / or avoiding unauthorized use.

In order to use the APP, you need a valid registration as a contractual partner with Cipacto and correct settings in the administration tool (CAP) used by Cipacto by appropriately authorized persons of your company.

To increase safety, the successful refuelling process requires further system components. These are in particular a hardware component for the required vehicle identification as well as the Cipacto transmit-receive unit SRU. Without these two components and without the authorization of both the person and the specific vehicle, refueling is not possible. The APP does not collect any data from non-registered users (users) and does not record them.

2. Processing of personal data

Personal data is any information relating to an identified or identifiable natural person. This includes, for example, names, addresses, telephone numbers or dates of birth, but also IP addresses or geolocation data that allow conclusions to be drawn about natural persons.The APP can only be used functionally after CAP registration as a user in connection with the assignment to authorized vehicles and tank systems at Cipacto and subsequent login in the APP.

The APP can only be used functionally after CAP registration as a user in connection with the assignment to authorized vehicles and tank systems at Cipacto and a subsequent successful login in the APP.

By simply downloading and starting the APP, no personal data is collected.

Within the APP, only those personal data are collected and processed that the user (user) of the APP actively enters for use or that is recorded via log files. In particular, this includes the following log data, which we need to ensure the functionality of the app as agreed:

  • User ID
  • Vehicle ID
  • Mileage / operating hours vehicle at the start of refuelling (manual input)
  • Number of unaccepted / incorrect mileage / operating hours inputs
  • Tank ID
  • Location User (to determine the tank location)
  • Date and time of the request (start / end)
  • If applicable: Start of refuelling / end of refuelling process
  • If applicable: refuelled tank quantity
  • Tank level

This data will only be transmitted to third parties if it concerns the contractual partner with whose permission and by granting rights the user receives access to the tank system or to refuel authorized vehicles. The data is processed by us exclusively within the European Union. We store this data for the duration of our contractual relationship, as long as claims are asserted against us. We will then delete this data without being asked.

We do not use Google Analytics or any other analysis tool to evaluate the data.

3 Security & rights

Cipacto uses numerous technical and organizational measures to protect personal data against manipulation, loss, destruction and access by third parties. These security measures are constantly being improved in line with technological developments on the Internet.

In accordance with the GDPR and the Data Protection Act, data subjects have the following rights and remedies vis-à-vis Cipacto:

  • Right to information (Art. 15 EU GDPR)
  • Right to rectification (Art. 16) and deletion (Art. 17 EU GDPR)
  • Right to restriction of processing (Art. 18 EU GDPR)
  • Right to data portability (Art. 20 EU GDPR)
  • Right to object (Art. 21 EU GDPR)

Cipacto will respond to all reasonable requests within the legal framework free of charge and as soon as possible. The Data Protection Authority is responsible for requests concerning violation of the right to information, violation of the rights to confidentiality, correction or deletion. Their contact details are:

Austrian Data Protection Authority

Wickenburggasse 8, 1080 Vienna

Further and detailed information on data protection at Cipacto can also be found at

  • Contact information

Cipacto GmbH iG
Muenzgasse 1/2/47
1030 Vienna
T: +43 676 83083400