Last update: May 4, 2025
Privacy Policy
Scope of Application
Protecting your personal data as a user of www.refinq.com (“hereafter referred to as ‘refinq’”) is of particular importance to us.
Your data will be processed exclusively on the basis of legal provisions (if applicable: GDPR, DSG, and TKG 2003 / TKG 2021) and the present privacy policy. This privacy policy describes how refinq processes personal data collected during your use of the website. This privacy policy also serves as information disclosure according to Art 13 GDPR.
Personal Data
refinq will store and process the following data to the extent indicated: When filling out the "request demo" tab, refinq stores and processes the email address entered there.
Furthermore, refinq is allowed to store users' navigation behavior on the website. There is a legitimate interest in processing this data, namely the continuous optimization of the website's content for user-friendliness. For the functionalities listed, the IP address of the users may also be stored, especially to filter out multiple entries and to prevent misuse of the form.
Legal Basis for Data Processing
refinq processes the data based on the consent of the users to this privacy policy (Art 6 Para 1 lit a GDPR). Furthermore, the necessity of carrying out pre-contractual measures according to Art 6 Para 1 lit b GDPR is given as a particular basis for processing.
Data Transfer
The data according to point 2 may only be disclosed or accessed by other persons under the following circumstances:
• To authorities and courts for the judicial assertion of possible claims or to fulfill other sovereignly ordered duties.
• For the collection of possible receivables from the debtor or negotiation over these claims with the debtor.
• To companies with which refinq collaborates to provide its services.
• To companies that provide IT services to refinq based on contractual obligations, as far as this is necessary for the proper provision of IT services.
These companies are obligated to maintain confidentiality of all entrusted data. If necessary, a data processing contract must be concluded. The provision of the data is necessary for the service of the website, the corresponding contact, or information of the users.
Use of Cookies
This website uses "cookies" to make the offer more user-friendly, effective, and secure. A "cookie" is a small text file that we transmit from our web server to the cookie file of the browser on your computer's hard drive. This enables our website to recognize you as a user when a connection is established between our web server and your browser. Cookies help us determine the frequency of use and the number of users on our website. The content of the cookies we use is limited to an identification number that does not allow for personal reference to the users. The main purpose of a cookie is to recognize the visitors of the website.
Two types of cookies are used on this website:
Session Cookies
These are temporary cookies that remain in the cookie file of your browser until you leave our website and are automatically deleted after your visit.
Persistent Cookies
For better usability, cookies are stored on your device and allow us to recognize your browser on your next visit.
You can set your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for specific cases or in general, and to activate the automatic deletion of cookies when closing the browser. Deactivating cookies may limit the functionality of this website.
Duration of Data Storage
The users’ data is stored upon first entry on the website or when contact is made by email, for six months or until the revocation of consent if no further correspondence occurs. Beyond that, storage takes place to the extent of any statutory (retention) obligations, in connection with official or legal proceedings, or if refinq's legitimate interests in further processing outweigh.
Revocation of consent does not affect further processing based on other legal bases. Likewise, anonymised data can be processed indefinitely; these are data where assignment to individual persons is no longer possible and therefore do not fall under the GDPR.
Data Security
refinq is committed to maintaining the confidentiality and integrity of the transmitted personal data. All data from refinq is stored exclusively on servers in the European Union. The protection of users' personal data is ensured through appropriate organisational and technical precautions. These precautions particularly concern protection against unauthorised, illegal, or even accidental access, processing, loss, use, and manipulation.
Despite efforts to maintain a consistently high standard of due care, it cannot be ruled out that information disclosed to us over the Internet may be viewed and used by others. We therefore assume no liability for the disclosure of information due to errors in data transmission not caused by us and/or unauthorised access by third parties (e.g., hacking attack on web servers).
Rights of Users
Users have the following rights as data subjects under the provisions of the GDPR, under the conditions specified therein:
• Right to information and disclosure of stored data (Art 15 GDPR)
• Right to correction of incorrect or completion of incomplete personal data (Art 16 GDPR)
• Right to deletion of data in the presence of a reason for deletion, especially unlawful data processing (Art 17 GDPR)
• Right to restrict data processing (Art 18 GDPR)
• Right to data portability (Art 20 GDPR)
• Right to object to the processing of personal data (Art 21 GDPR)
• Users also have the right to revoke their consent to data processing, with the legality remaining intact until the time of revocation of the consent.
Processing of data based on other legal bases is not affected by the revocation of consent. The exercise of these rights is only available for personal data within the meaning of Art 4 No. 1 GDPR. For anonymised data, where assignment to individual persons is not possible, these rights do not apply.
To exercise these rights, an official photo ID must be presented. In principle, such information is free of charge. refinq may, if necessary, require further identification evidence. However, refinq reserves the right to charge a reasonable fee for administrative expenses for information that goes beyond the scope of the GDPR's duty to provide information.
Complaints about refinq’s processing of personal data can be made to the data protection authority, Barichgasse 40–42, A-1030 Vienna.
What is refinq and how does it support nature and climate risk management?
refinq is a Software as a Service (SaaS) platform that translates complex environmental data into nature and climate risk profiles, and provides recommendations for action that can be deployed by corporates. We assist businesses in assessing and managing nature and climate risks across their assets, ensuring compliance with frameworks like TNFD, CSRD, and ESRS, reducing business operating costs, and future-proofing supply chains. refinq’s tool expands the reach and effectiveness of corporate nature teams.
How does GaiaGuide enhance refinq's Nature Intelligence Hub?
GaiaGuide is an AI-powered tool within refinq's platform that provides tailored, location-specific nature-positive actions. It goes beyond identifying risks by offering actionable strategies to mitigate them, helping businesses leverage their natural capital for operational resilience.
What types of climate and nature risks does refinq assess?
refinq evaluates a range of climate hazards, including temperature changes, floods, and wind patterns, alongside nature risks like species extinction, land degradation, and biodiversity intactness (and many more). These assessments are location-specific and aligned with global regulatory frameworks (e.g. ESRS, TNFD).
Is refinq's data compliant with international reporting standards?
Yes, refinq's assessments align with key frameworks such as the Taskforce on Nature-related Financial Disclosures (TNFD), Corporate Sustainability Reporting Standard (CSRD), and European Sustainability Reporting Standards (ESRS), ensuring compliance with international regulations.
How granular is the data provided by refinq?
refinq offers hyper-granular data, creating nature assessments for any company location globally with a granularity of up to 25 meters. This allows for precise risk evaluation and management at the asset level.
Can refinq forecast environmental impacts into the future?
Yes, refinq allows for forecasting environmental impacts based on four climate scenarios up to the year 2100. This forward-looking approach aids in long-term strategic planning and risk mitigation.
How does refinq translate environmental risks into financial terms?
refinq provides financial damage estimates for both climate and nature risks, enabling businesses to quantify potential financial impacts and make informed investment and operational decisions.
Is refinq suitable for global operations outside the EU?
Absolutely. refinq's assessments follow international frameworks like TNFD and our data souces have truly global reach.
What industries can benefit from using refinq?
refinq serves a diverse range of industries, including utilities, manufacturing, financial institutions, and more. Any organisation seeking to understand and manage its nature-related risks can benefit from refinq's platform.
How does refinq’s transition risk product help boards and risk committees?
We map policy, market, technology and reputational risks based on up-to-date regulatory information concerning focal jurisdictions and business activities. This makes it possible for boards and committees to make decisions based on the latest and most credible information.
