Data protection

The operators of these pages (hereinafter referred to as the "controller" or "operator") take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

It is generally possible to use our website without providing personal data. If personal data (e.g. name, address or e-mail addresses) is collected on our website, this is always done on a voluntary basis as far as possible. This data will not be passed on to third parties without your express consent.

The processing of your personal data, such as your name, address, email address or telephone number, is always carried out in accordance with national and European law, in particular the General Data Protection Regulation (hereinafter referred to as "GDPR").

We would like to point out that data transmission over the Internet (e.g. when communicating by email) may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible.

1. Definitions

The data protection declaration of these pages is based on the terms used in Article 4 of the GDPR, which were defined by the European Union when the General Data Protection Regulation (GDPR) was adopted.

a) Personal data

Personal data means any information relating to an identified or identifiable natural person (hereinafter referred to as "data subject" or "user").

b) Data subject

Data subject is any identified or identifiable natural person, whose personal data is processed by the controller responsible for the processing.

c) Processing

Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

d) Restriction of processing

Restriction of processing is the marking of stored personal data with the aim of limiting their processing in the future.

e) Profiling

Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements.

f) Pseudonymization

Pseudonymization is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.

g) Controller or controller responsible for the processing

Controller or controller responsible for the processing is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

h) Processor

Processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

i) Recipient

Recipient is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not.

j) Third party

Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.

k) Consent

Consent is any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

2. Rights of the user

It is also important to us to inform you about your rights under the GDPR with regard to the processing of your data:

a) Right to confirmation (Art. 15 para. 1 GDPR)

Every data subject has the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed.

b) Right of access (Art. 15 (1) and (3) GDPR)

Any person affected by the processing of personal data has the right to obtain from the controller free information about the personal data stored about them and a copy of this information at any time.

the purposes of the processing

the categories of personal data concerned

the recipients or categories of recipient

where possible, the envisaged period for which the personal data will be stored

the existence of the right to request rectification or erasure

the existence of the right to lodge a complaint with a supervisory authority

where the personal data are not collected from the data subject: Available information about the origin of the data

the existence of automated decision-making, including profiling

c) Right to rectification (Art. 16 GDPR)

Any person affected by the processing of personal data has the right to request the immediate rectification of inaccurate personal data concerning them. Furthermore, the data subject has the right to request the completion of incomplete personal data, including by means of a supplementary declaration, taking into account the purposes of the processing.

d) Right to erasure (right to be forgotten) (Art. 17 GDPR)

Each data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay, and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies, as long as the processing is not necessary:

The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.

The data subject withdraws consent and there is no other legal ground for the processing.

The data subject objects to the processing and there are no overriding legitimate grounds for the processing.

The personal data have been unlawfully processed.

The erasure of personal data is necessary for compliance with a legal obligation.

The personal data have been collected in relation to the offer of information society services.

e) Right to restriction of processing (Art 18 GDPR)

Each data subject shall have the right to obtain from the controller restriction of processing where one of the following applies:

The accuracy of the personal data is contested by the data subject.

The processing is unlawful and the data subject opposes the erasure.

The controller no longer needs the data, but the data subject needs it for legal defense.

The data subject has objected to processing.

f) Right to data portability (Art. 20 GDPR)

Any data subject affected by the processing of personal data has the right to receive the personal data concerning them in a structured, commonly used and machine-readable format. They also have the right to transmit this data to another controller without hindrance.

g) Right to object (Art. 21 GDPR)

Any person affected by the processing of personal data has the right to object to the processing of personal data concerning them at any time for reasons arising from their particular situation.

3. cookies

Our website uses cookies. Cookies are text files that are placed and stored on a computer system via an internet browser.

What types of cookies does this website use?

Two different types of cookies may be used on this website, so-called "session cookies" and "persistent cookies".

Third-party cookies

The controller also uses various service providers who may also place cookies on the user's device on behalf of the controller.

Which cookies do these pages use?

The following is a list of the different types of cookies that may be used when you visit our website.

Strictly necessary cookies

These cookies are essential for the functioning of the site and enable the user to navigate the site and use its services and functions.

Name

Purpose

Purpose

Type

Provider

i18next

Saves the selected language on this page.

End of session

HTML

Website

PHPSESSID

Assigns your browser to a session on the server.

End of session

HTTP

Website

4. Data processing when using PMS systems (widgets)

Widgets from the company zadego GmbH (easybooking) may be implemented on these pages.

zadego GmbH
Anton-Melzer-Straße 10
6020 Innsbruck
Austria

The provider is a PMS system, which is the provider of the hotel software of the person responsible. Depending on the tourism company, the widgets may be as follows:

Enquiry form

Booking form

Small search (inquiry, booking)

Category view

Room view

Package widget

Price overview

Price comparison

Availability calendar

xml-ph-0027@en booking, it is necessary that the data you provide to the controller is processed.

The controller named above and zadego GmbH have a contractually regulated business relationship. The controller obtains its hotel management and booking software from zadego GmbH.

b) Collection of data

As part of an inquiry or booking with the tourism company, you provide the relevant data for this purpose. These are generally the following:

First name and surname

Email address

Address

Telephone

Payment data (bank details, credit card details)

Birth data (to identify children)

c) Purpose of this data processing

The controller will process your personal data for the purpose of processing your request.

Quotation

Online check-in

Compliance with reporting obligations

Payment processing

Invoicing

5. Obligation to register

In accordance with the applicable registration law, the controller is obliged to register all guests residing with the controller with the data specified in the registration law. This includes the following data:

Name

Name of accompanying persons

Date of birth

Gender

Nationality

Country of origin

Address

Travel document (type, number, date of issue, issuing authority, country)

In accordance with a legal obligation, the person responsible must keep a record of all guest data transmitted to him for a booking in a so-called guest directory.

6. SSL encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as the requests you send to us as the site operator.

You can recognize an encrypted connection by the fact that the address line of the browser changes from http:// to https:// and by the lock symbol in your browser line.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

7. privacy policy Open Street Maps

This site uses services (maps) provided by the OpenStreetMap Foundation, 132 Maney Hill Road, Sutton Coldfield, West Midlands, B72 1JU, United Kingdom. OpenStreetMap is a mapping tool like Google Maps.

The map is integrated on our website by means of an iFrame or by retrieving the so-called tiles (map images) from the provider's server. As a result, your IP address is transmitted to the Openstreetmap server.

When integrating the map data, we refer to Art. 6 para. 1 lit. f GDPR, i.e. as a website operator we have a legitimate interest in improving the user-friendliness of our website.

By using this website, you consent to the collection, processing and use of data collected automatically by Google Inc, its representatives and third parties.

The privacy policy of Open Street Maps can be found under "Privacy Policy".

8. Data protection provisions about the application and use of Google Analytics (with anonymization function)

On this website, the controller has integrated the component of Google Analytics (with the anonymizer function). Google Analytics is a web analysis service. Web analysis is the collection, gathering and evaluation of data about the behavior of visitors to websites.

The operating company of the Google Analytics component is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

The controller uses the "_gat._anonymizeIp" add-on for web analytics via Google Analytics. By means of this addition, the IP address of the data subject's internet connection is shortened and anonymized by Google.

Google Analytics places a cookie on the data subject's IT system. With the setting of the cookie, Google is enabled to analyze the use of our website.

The data subject may, at any time, prevent the setting of cookies through our website by means of a corresponding setting of the Internet browser used, and may thus permanently deny the setting of cookies.

Furthermore, the data subject has the option of objecting to and preventing the collection of data generated by Google Analytics relating to the use of this website and the processing of this data by Google. To do this, the data subject must download and install a browser add-on from the link https://tools.google.com/dlpage/gaoptout.

9. Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are

Browser type and browser version

Operating system used

Referrer URL

Host name of the accessing computer

Time of the server request

This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of unlawful use.

10. Non-existence of automated decision-making

As a responsible company, we do not use automated decision-making or profiling.

11. Note on online dispute resolution

Online dispute resolution pursuant to Art. 14 para. 1 ODR-VO: The European Commission provides a platform for online dispute resolution (OS), which you can find at http://ec.europa.eu/consumers/odr/.

12. Objection to advertising emails

We hereby object to the use of contact data published in the context of the imprint obligation to send unsolicited advertising and information material. The operators of this website expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

13. Changes to this privacy policy

We may update our privacy policy from time to time. It is therefore recommended that you check this page regularly for changes. We will notify you of any changes by posting the new Privacy Policy on this page. These changes will take effect immediately after publication on this page.

14. How you can contact us

If you have any questions, suggestions or concerns regarding this policy or the use of your data, please contact us at the address given in the imprint or this privacy policy.