Dear visitors to our website,
we look forward to your visit to our website. So that you feel safe and comfortable when visiting our website, we would like to inform you below about how your data is handled. The following data protection provisions are intended to inform you about our handling of the collection, use and disclosure of personal data.
For data collection and processing, is responsible for DER Touristik Hotels & Resorts GmbH, Humboldtstrasse 140 – 144, 51149 Cologne, datenschutz@dertouristik.com.
Find more data protection information about our social media presence on: https://www.dertouristik.com/en/data-protection-social-media/
COPYRIGHT
The contents of the DER Touristik website are protected by copyright. All rights reserved. With the exception of the downloads offered for use in the original version, the use of texts and images, in whole or in part, without the prior written consent of DER Touristik violates the provisions of copyright law and is therefore illegal. This also applies in particular to all rights of exploitation such as reproduction, translation or use in electronic systems. Registered trademarks, trade names and logos are utilised on our website. Even if these are not marked as such where they are used, the relevant statutory provisions apply.
HANDLING PERSONAL DATA
The protection of your privacy is very important to us. For this reason, as a matter of principle, we have created our website to be used anonymously. We use the information we obtain and save during your visit to our websites exclusively for internal purposes and to improve the design of our websites. We save the IP address transmitted by your web browser only for a period of 28 days time to detect, isolate and eliminate disruptions or errors (for example attacks on our servers). Following this period of time, we delete or anonymise the IP address. We use the IP address strictly for the purpose of security as stated above. You can find further information on processing the IP address under the following section “Usage Data”.
USAGE DATA/LOG FILES
When you visit our website, what is known as usage data is temporarily saved as protocol on our web server for statistical purposes to improve the quality of our websites.
This data set consists of:
the page from which the file was requested,
the name of the file,
the date and time of the query,
the amount of data transferred,
the access status,
the description of the type of web browser used,
the IP address of the requesting computer (see above; this is anonymised after the period of time mentioned above).
We use this information to enable access to our website, to control and administer our systems and to improve the design of our websites. This data is stored anonymously in accordance with applicable statutory requirements. As a result, personal user profiles cannot be created. Data about individuals or their individual behaviour is not collected.
LEGAL BASIS
DATA PROCESSING FOR THE PERFORMANCE OF A CONTRACT: TRAVEL BOOKING / BOOKING REQUEST
We process the following data in accordance with Art. 6 para. 1 lit. b GDPR for the purpose of fulfilling the contract.
We receive the data directly from you or someone else who has placed an order. If you transmit personal data of other people (e.g. fellow travelers) to us, you must ensure that they agree and that you are allowed to transmit the data. You must ensure that these persons know how their personal data can be processed by us and what rights they have.
Form of address (of all travellers)
First name, last name (of all travellers)
Address information (to send the invoice and travel documents)
Date of birth / age of all travellers
Telephone number of the main traveller/contact person (for contact at short notice in the event of any changes)
Email address (to send the summary of booking details)
Credit card details if payment is made by credit card
Bank details if payment is made by SEPA direct debit
This also includes customer service provided to you in the course of contract performance.
We send your booking confirmation to the email address you provided. In addition to your booking confirmation, we may also send further emails tailored to your trip that contain promotional content for our own products of a similar nature. You may object to this information being sent at any time by sending us an email to datenschutz@dertouristik.com, without incurring other costs besides the cost of transmitting the email. After receipt of your objection, we will stop sending such information immediately.
If necessary, personal data will be passed on to the companies involved in the performance of this contract e.g. service providers such as hotel operators, airlines or financial institutions for payment processing.
The data required to perform the contract is stored in accordance with statutory retention periods (e.g. German Fiscal Code (AO), German Commercial Code (HGB)) and deleted following the expiry of these periods.
DATA PROCESSING ON THE BASIS OF CONSENT
Provided you have given separate consent, processing is carried out on the basis of Art. 6 (1) (a) of the GDPR. You may revoke your consent at any time without this affecting the lawfulness of processing before consent was revoked. If consent is revoked, we will discontinue the relevant data processing.
Separate consent may be given on our portal for the following services:
NEWSLETTER MAILING
You have the option on our website of subscribing to our free newsletter. Our newsletter contains current trip offers, great specials and attractive prize draws.
We require the following information for subscriptions to the newsletter:
Form of address
First name, last name (to address you personally in the newsletter)
Email address (to send the newsletter)
You may unsubscribe from the newsletter at any time by directly contacting us, through the newsletter website, and via the link “Unsubscribe from newsletter”, which is included in every newsletter. Alternatively, you may unsubscribe by sending a return email to a customer emailing, without incurring other costs besides the cost of transmitting the email.
PARTICIPATION IN PRIZE DRAWS, COMPETITIONS OR SIMILAR PROMOTIONS
From time to time, we offer the opportunity to take part in prize draws or competitions and similar promotions. To carry out these promotions, personal data such as email address, name, address and possibly other information necessary for the promotion may be collected and processed. All personal data provided for such a promotion will only be used to carry out the promotion, e.g. to determine and notify the winner or to send the prize. The data is deleted after the promotion has finished.
DATA PROCESSING TO FULFIL LEGAL OBLIGATIONS
We process your data to comply with our legal obligations (e.g. under fiscal and commercial law). In this case, data processing is carried out on the basis of Art. 6 (1) (c) of the GDPR. The data is deleted after the necessary retention periods.
DATA PROCESSING TO SAFEGUARD LEGITIMATE INTERESTS
We process your data for our own marketing purposes (e.g. promotional reasons, market analysis). In this case, data processing is carried out on the basis of Art. 6 (1) (f) of the GDPR. The data is deleted after the given retention periods.
You have the right to object to this form of data processing. You can find further information under the following section “Rights of the data subject”.
DATA PROCESSING TO PROTECT VITAL INTERESTS
We process your data in the specific case of protecting your vital interests, e.g. to provide emergency services with an evacuation list in an emergency situation. In this case, data processing is carried out on the basis of Art. 6 (1) (d) of the GDPR. The data is deleted after the necessary retention periods.
DATA PROCESSING FOR DIRECT MARKETING
We process your data for direct marketing purposes, in particular to send emails tailored to your trip with information and offers related to your trip. In this case, data processing is carried out on the basis of Art. 6 (1) (f) of the GDPR and in the interest of keeping you informed about new products and services. Each customer has the individual right to object to this form of processing, and if exercised, this will result in the discontinuation of data processing for direct marketing purposes. To the extent that data is saved exclusively for direct marketing, it will be deleted after the objection has been made.
ONLINE APPLICATION FOR EMPLOYMENT
We process your personal data in accordance with the applicable data protection regulations.
You determine the scope of the data you would like to transfer to us in the context of your online job application. Online job applications are encrypted and transferred to the responsible Human Resources of the companies affiliated with us and processed there. As a rule, applications are forwarded to the head of the respective responsible department. No further forwarding of your data takes place. Your information will be treated confidentially in our company.
We process the data you have disclosed to us in your online application exclusively for the purpose of selecting candidates for employment, and it will not be processed for any other purpose. If you would like us to consider your application for other or future job vacancies, please make a note of this on your application.
DATA RECIPIENTS
We only transfer your data to third parties (e.g.to service providers such as hotel operators, airlines or financial institutions for payment processing) if transfer authority exists pursuant to data protection laws.
In addition, your data may be passed on to external service providers (e.g. IT service providers, companies that destroy or archive data, print service providers), which support us in data processing on our behalf based on strict instructions.
In this case, data processing may take place outside the EU/EEA. As an appropriate safeguard for the lawfulness of these data transfers, we have, among other measures, concluded standard EU contracts with the processor in accordance with Art. 46 (2) (c) of the GDPR.
We will neither sell nor otherwise market your personal data to third parties.
INFORMATION ON THE RIGHT TO OBJECT TO DIRECT MARKETING
We process your data for direct marketing purposes. You have the individual right to object to this form of processing, and if exercised, this will result in the discontinuation of data processing for direct marketing purposes. Please direct your objection to: datenschutz@dertouristik.com
WEBSITE ANALYSIS AND TRACKING
USE OF COOKIES
When you visit our website, information may be stored on your computer in the form of cookies to identify visitor preferences, for example, and optimally design the website accordingly. This also helps us make navigation easier and ensures a high level of user-friendliness.
Cookies are text files that are stored on a user’s hard drive when visiting a website. They are not harmful to your computer and cannot be seen by third parties. They enable information to be stored for a specified period of time and allow the user’s computer to be identified.
By accepting our cookies, they remain on your computer for a period of 30 days, unless you delete them. During an online booking, cookies are temporarily stored for the duration of the booking and are automatically deleted after 30 minutes of inactivity or after closing the website.
You may object to obtaining and storing your data via this service at any time. To prevent the activation of cookies, disable them in your browser. Please be aware, however, that disabling cookies may restrict the use of the website and the services offered.
GOOGLE ANALYTICS
This website uses Google Analytics, a web analysis service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google). Google Analytics uses the cookies stored on your computer to help analyse how users use our website. The information generated by the cookie about your use of this website will usually be transmitted to and stored on a Google server in the United States.
We would like to advise you that on this website, Google Analytics has been extended to include the code “gat._anonymizeIp()” to ensure that IP addresses are collected anonymously (this is known as IP masking). If IP masking is enabled on our website, your IP address will be truncated beforehand by Google within the member states of the European Union or in other countries which are contracting parties to the Agreement on the European Economic Area.
Only in exceptional cases is the full IP address sent to a Google server in the USA and truncated there. Google will use this information for the purpose of evaluating how you use the website, compiling reports on website activity for us and providing further services to us related to website and internet usage.
The IP address transferred by your browser within the scope of Google Analytics will not be associated with any other data held by Google. Google will only transfer this data to third parties where required to do so by law or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google.
By using this website, you consent to the processing of data collected about you by Google in the manner and for the purpose described above. You can block the storage of cookies by using the corresponding setting in your browser software. You can also prevent Google’s collection and processing of data by downloading and installing the browser plug-in available under: https://tools.google.com/dlpage/gaoptout?hl=en.
You can find more information on the terms of service and the privacy policy under:https://www.google.com/analytics/terms/us.html and https://policies.google.com/?hl=en
TWITTER
Functions and content from Twitter, which is provided by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, can be integrated within our online offer can be linked from within our online offer. They could include, for example, images, videos or text, and buttons for users to express their opinions about the content, answer the authors of the content, or subscribe to our articles.
If users are themselves members of the Twitter platform, Twitter can assign access to the above-described content and functions to the user’s Twitter profile. Twitter is certified according to the Privacy Shield agreement and thus offers a guarantee that it complies with European data protection law.
We note that as the provider of the website, we have no knowledge of the content of the transferred data or its use by Twitter. You will find more information in the Twitter Privacy Policy.
https://twitter.com/en/privacy
You can change your data privacy settings at Twitter in the account settings.
https://twitter.com/login?redirect_after_login=%2Faccount%2Fsettings
USAGE-BASED ONLINE ADVERTISING
This website anonymously collects and processes information about your usage behaviour (e.g. which subpages you accessed during your visit). We use this information to send you interest-based advertising and thus provide you with added value. A cookie is stored on your computer to record your usage behaviour. We use the tools listed below and work with the service providers mentioned to optimise advertising based on your interests. This information is stored using a pseudonym so that an individual fundamentally cannot be identified. You can prevent the storage of cookies by selecting “do not accept cookies” in your browser settings. You can also set your browser so that it asks you whether you agree before cookies are stored. Finally, you can also delete stored cookies at any time. However, we would like to point out that if you do so, it may not be possible for you to make use of the full scope of all functions on our websites. If you have deleted cookies, you may need to reactivate stored opt-out-cookies. We use the following tools and service providers to collect data that allows us to send usage-based online advertising.
Google Doubleclick https://policies.google.com/privacy?hl=en
Opt out: https://www.google.com/settings/u/0/ads/authenticated
FORM PAGES
You also have the option on our website of getting in touch with us on various topics using forms – for example to request a booking, to be called back, to provide feedback, to make a specific request etc.
Depending on the reason for getting in touch, different data is requested in the form. Personal details such as form of address, first name, last name and email address are usually required to make contact with you and address you personally. If you use a form to request a call back or make an appointment, additional data may be requested, such as your telephone number. For questions related to travel or existing bookings, you also have the option of providing your booking or invoice number.
DATA SECURITY
To protect your data from unauthorised access, we use an encryption procedure. You can recognise this process through the closed lock which appears in the status bar of your browser, and the address line which begins with “https://”.
RIGHTS OF THE DATA SUBJECT
Data subjects have the right to request information from the controller about personal data concerning them and the correction of inaccurate data or the deletion of data, provided a reason set forth in Art. 17 of the GDPR applies, e.g. where the data is no longer necessary in relation to the purposes intended. The data subject also has the right to restrict data processing if any of the conditions referred to in Art. 18 of the GDPR apply and, in cases referred to in Art. 20 of the GDPR, to the right to data portability. If data is collected on the basis of Art. 6 (1) (e) or (f), the data subject has the right to object to the processing of personal data on grounds relating to his or her particular situation. In such a case, we will then no longer process personal data, unless there are compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.
COMPLAINT WITH A SUPERVISORY AUTHORITY
Every data subject has the right to lodge a complaint with a supervisory authority where he or she considers that the processing of data relating to him or her infringes data protection regulations. In particular, you may exercise the right to lodge a complaint before a supervisory authority in the Member State of your habitual residence or the place of the alleged infringement.
CONTACT DETAILS OF THE DATA PROTECTION OFFICER
Please contact our Data Protection Officer for any questions related to data protection.
DER Touristik Hotels & Resorts GmbH
Datenschutzbeauftragter
Emil-von-Behring-Straße 6
60424 Frankfurt am Main
E-Mail: datenschutz@dertouristik.com