Data protection notice
The legal foundations of data protection are in the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG)
Keep in mind that data transmission on the Internet can generally be subject to security vulnerabilities. Full protection against access by strangers is not possible.
The data collected by us will only be passed on to third parties if this is necessary for the purpose of contract processing or invoicing or if you have given your prior consent.
Collection, processing, and use of personal data
We automatically collect and store in our log files the information automatically provided by your internet browser. This includes:
- Browser type / version,
- operating system used,
- referrer URL (the previously visited website)
- the host name of the accessing computer (IP address)
- the time of the server request
- the amount of data transferred
- report as to whether the access attempt was successful.
Users' IP addresses will be erased or anonymised after cessation of use. In the case that the IP addresses are anonymised, they are changed in such a way that details of personal or material circumstances can no longer only be associated with an identified or identifiable natural person or can only be associated with an identified or identifiable natural person with a disproportionate investment of time, cost, and labour. The data in the log files are analysed by us in anonymous form in order to further improve the website, make it more user-friendly, and find and correct errors more quickly. In addition, they are used to control server capacities so that appropriate data volumes can be made available if necessary.
If you contact us using the form on the website or at firstname.lastname@example.org, we will store the data you provide for 2 months for the purpose of processing the request and in case of follow-up questions. We do not share this data without your permission.
After you submit the contact form, the above-mentioned data will be processed by the person responsible for data protection for the purpose of processing your request on the basis of your consent given by submitting the form. Unless you opt out, the data will be further processed on the same legal basis for the purpose of direct marketing, which is compatible with the original purpose of processing.
By ticking the checkbox, you agree to the above-mentioned personal data being processed for the purpose of an e-mail newsletter, on the basis of your consent until you opt out or revoke consent. The data are not passed on to other recipients.
You can subscribe to an e-mail newsletter via our website. For this we need your e-mail address and your declaration that you agree to receive the newsletter.
By submitting the newsletter form, you consent to the processing of the above-mentioned data by the person responsible for data protection for the purpose of an e-mail newsletter on the basis of your consent until you opt out or revoke consent. The data are not passed on to other recipients.
If you leave comments on our blog or other posts on our website, your IP addresses will be stored. This in case anyone writes illegal content in comments or posts (abuse, forbidden political propaganda, etc.). In this case, we ourselves could be prosecuted for the comment or post and are therefore interested in the identity of the author.
Each time you access the booking form, information is sent to our website/application server by your device's internet browser and temporarily stored in log files. The datasets stored in this way contain the following data, which are stored until automatic deletion: date and time of access, name of the page accessed, IP address of the requesting device, referrer URL (source URL from which you accessed our website), the amount of data transferred, and loading time, as well as the product and version information of the browser used and the name of your access provider.
The legal basis for processing the data is Article 6(1)(f) of the GDPR. Our legitimate interest arises from the need to
- Ensure the connection is established smoothly,
- Ensure easy use of our website/application,
- Evaluate system security and stability.
We would like to point out that we do not store any personal data in cookies for the purpose of contract processing.
We store the following data during the booking process: personal data (address and birth data provided, email address and telephone numbers) of the main booker, as well as the first name, surname, and date of birth of fellow travellers.
The age of the traveller at the time of travel is calculated to correctly calculate the discount; the date of birth is required for this.
In the case of rental bike bookings, the body size of the fellow travellers is entered so we can provide suitable rental bikes.
No payment information is required for the booking process (only the payment method is entered).
The data entered will not be transmitted to us until the purchase process has been successfully completed, which means that no intermediate storage of data on our servers takes place before the booking has been completed.
The data you provide are necessary to fulfil the contract or implement pre-contractual measures. We cannot conclude the contract with you without these data.
After the booking has been made, only the most necessary details such as the booking number, first name, and surname of travellers are transmitted to our contractual partners (e.g. contracting hotels, baggage transport companies) to process the booking.
In the event that a contract is concluded, all data from the contractual relationship will be stored until the expiry of the retention period under tax law (at least 7 years).
The name, address, goods purchased, and date of purchase data will also be stored until the expiry of the product liability (at least 10 years). Data processing is carried out on the basis of the legal provisions of § 96 paragraph 3 of the German Telecommunications Act (TKG) and § 6 Paragraph 1 item a (consent) and/or b (necessary for contract fulfilment) of the GDPR.
Under the conditions of Art. 21 para. 1 GDPR, data processing may be objected to for reasons arising from the particular situation of the data subject.
The above general right of objection applies to all processing purposes described in this Privacy Information for which the basis of the processing is Article 6(1)(f) GDPR. In contrast to the special right of objection directed at data processing for advertising purposes, under the GDPR, we are only obliged to implement such a general objection if you give us reasons of overriding importance (e.g. a possible danger to life or health).
Disabling cookies may limit the functionality of this website.
You can find more information about the cookies used on this website in the website's cookie notices.
Our pages use retargeting technologies from Google. This service is provided by Google Inc. 1600 Amphitheater Parkway Mountain View, CA 94043, USA.
This makes it possible to show visitors to our sites targeted, personalised, interest-based advertising. The adverts are inserted on the basis of cookie-based analysis of previous usage and surfing habits. To our knowledge, no personal data are stored in doing so. For this purpose, a cookie is stored that will collect anonymised data about the interests of users and customise advertising according to this information. These cookies are small text files that are stored on your computer or mobile device.
Script code from Monotype GmbH
Our website uses web fonts to display fonts. These are provided by Google (http://www.google.com/webfonts/). To do this, your browser loads the required web font into your browser cache when you visit our site. This is necessary so that your browser can also show an optically improved representation of our texts. If your browser does not support this feature, your computer will use a standard font for display.
For more information about Google Web Fonts, visit https://developers.google.com/fonts/faq?hl=en-GB&csw=1
For general information on data protection at Google, visit http://www.google.com/intl/de-DE/policies/privacy/
Right to information and right of revocation
You have the right to see your personal data, as well as the right to correct it, delete it, or restrict its processing, and the right to transmission of the data.
In addition, you have the right to revoke any consent you may have given to the processing of your personal data. The legality of the processing of personal data until the point at which consent is revoked is not affected by the revocation.
You have the right to opt out of the processing of your personal data for the purpose of direct marketing. If you opt out, your personal data will no longer be processed for direct marketing purposes.
You have the right to appeal to the supervisory authority (German Data Protection Authority: Bundesbeauftragter für den Datenschutz und die Informationsfreiheit, Husarenstraße 30, D-53117 Bonn, email@example.com, www.datenschutz.bund.de.
You can reach us via the following contact details:
Am Grollhamm 12a
Phone: +49 471 800 735
Fax: +49 471 800 73 527
You can reach our data protection officer at firstname.lastname@example.org.