PRIVACY POLICY

Hotel Sonnalp

Cookies

Our website uses HTTP cookies to store user-specific data.
In the following, we explain what cookies are and why they are used, so that you can better understand this privacy policy.

What are Cookies?

Whenever you browse the Internet, you use a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer, and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.

One thing is certain: cookies are really useful little helpers. Almost all websites use cookies. More precisely, they are HTTP cookies, since there are other types of cookies for other purposes. HTTP cookies are small files that are stored on your computer by our website. These cookie files are automatically placed in the cookie folder, which is basically the “brain” of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.

Cookies store certain user data, such as language or personal site settings. When you visit our site again, your browser sends this “user-related” information back to our site. Thanks to the cookies, our website knows who you are and provides you with your usual default settings. In some browsers, each cookie has its own file; in others, such as Firefox, all cookies are stored in a single file.

There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, while third-party cookies are created by partner websites (e.g., Google Analytics). Each cookie should be considered individually, as each cookie stores different data. The expiration time of a cookie also varies, ranging from a few minutes to several years. Cookies are not software programs and do not contain viruses, Trojans, or other “malware.” Cookies also cannot access information on your PC.

Here’s an example of what cookie data might look like:

Name: _ga
Expiration: 2 years
Use: Distinguishes website visitors
Example value: GA1.2.1326744211.152211099505

A browser should support at least the following minimum sizes:

A cookie should be able to store at least 4096 bytes
At least 50 cookies should be able to be stored per domain
At least 3000 cookies should be able to be stored in total

What is the difference?

The specific cookies we use depend on the services we use and are explained in the following sections of this privacy policy. At this point, we would like to briefly explain the different types of HTTP cookies.

There are four types of cookies:

Strictly necessary cookies
These cookies are essential to ensure basic functions of the website. For example, these cookies are needed when a user adds a product to the shopping cart, continues browsing other pages, and later proceeds to checkout. Thanks to these cookies, the shopping cart is not deleted even if the user closes their browser window.

Functional cookies
These cookies collect information about user behavior and whether the user receives any error messages. They also measure loading times and the website’s behavior in different browsers.

Performance cookies
These cookies improve usability. For example, they store entered locations, font sizes, or form data.

Advertising cookies
These cookies are also known as targeting cookies. They are used to deliver customized advertising to the user. This can be very convenient, but also very annoying.

Usually, when you visit a website for the first time, you are asked which types of cookies you would like to allow. And of course, this decision is also stored in a cookie.

How can I delete Cookies?

How and whether you want to use cookies is up to you. Regardless of which service or website the cookies come from, you always have the option to delete cookies, allow them only partially, or disable them altogether. For example, you can block third-party cookies but allow all other cookies.

If you want to see which cookies are stored in your browser or if you want to change or delete your cookie settings, you can do so in your browser settings:

Chrome: Delete, enable, and manage cookies in Chrome
Safari: Manage cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have stored on your computer
Internet Explorer: Delete and manage cookies
Microsoft Edge: Delete and manage cookies

If you generally do not want any cookies, you can set your browser to always notify you when a cookie is about to be set. This way, you can decide for each individual cookie whether you allow it or not. The procedure varies depending on the browser. The best way is to search Google for instructions using the keyword “delete cookies Chrome” or “disable cookies Chrome” for Chrome, or replace “Chrome” with the name of your browser, e.g., Edge, Firefox, or Safari.

What about my data privacy

Since 2009, there have been the so-called “cookie guidelines.” These state that storing cookies requires the consent of the website visitor (that means you). However, within EU countries there are still very different responses to these guidelines. In Austria, this directive was implemented in § 96 (3) of the Telecommunications Act (TKG).

If you would like to learn more about cookies and are not afraid of technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments by the Internet Engineering Task Force (IETF) titled “HTTP State Management Mechanism.”

Analysis of visitor behavior

In the following privacy policy, we inform you whether and how we analyze data from your visit to this website. The analysis of the collected data is usually carried out anonymously, and we cannot draw any conclusions about you personally based on your behavior on this website.

You can find out more about how to object to this analysis of visitor data in the following privacy policy.

TLS encryption with HTTPS

We use HTTPS to transmit data securely over the Internet (data protection by design, Article 25, paragraph 1 of the GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transfer on the Internet, we can ensure the protection of confidential data. You can recognize the use of this secure data transmission by the small lock symbol at the top left of your browser and the use of the HTTPS scheme (instead of HTTP) as part of our web address.

Newsletter Privacy Policy

If you sign up for our newsletter, you transmit the above-mentioned personal data to us and give us the right to contact you by email. The data stored as part of the newsletter registration will be used exclusively for our newsletter and will not be passed on to third parties.

If you unsubscribe from the newsletter — you will find the link to do so at the bottom of every newsletter — we will delete all data that was stored in connection with the newsletter subscription.

Google Analytics Privacy Policy

We use Google Analytics from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) on this website to statistically analyze visitor data. Google Analytics uses performance-oriented cookies for this purpose.

Cookies from Google Analytics

_ga
Expiration: 2 years
Use: Distinguishes website visitors
Example value: GA1.2.1326744211.152211099505

_gid
Expiration: 24 hours
Use: Distinguishes website visitors
Example value: GA1.2.1687193234.152211099505

gat_gtag_UA
Expiration: 1 minute
Use: Used to throttle the request rate. If Google Analytics is deployed via Google Tag Manager, this cookie is named dc_gtm.
Example value: 1

For more information on terms of use and privacy, please visit http://www.google.com/analytics/terms/ or https://support.google.com/analytics/answer/6004245?hl=en.

Pseudonymization

In line with the GDPR, our aim is to improve our services and our website. Since the privacy of our users is important to us, user data is pseudonymized. Data processing is carried out on the basis of the legal provisions of § 96 (3) TKG as well as Article 6 EU-GDPR paragraph 1 lit a (consent) and/or f (legitimate interest) of the GDPR.

Deactivation of data collection by Google Analytics

With the browser add-on for deactivating Google Analytics JavaScript (ga.js, analytics.js, dc.js), website visitors can prevent Google Analytics from using their data.

You can prevent the collection of data generated by the cookie and related to your use of the website, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en

Google Analytics data processing addendum

We have entered into a direct customer contract with Google for the use of Google Analytics by accepting the “Data Processing Addendum” in Google Analytics.

You can find more information about the Data Processing Addendum for Google Analytics here: https://support.google.com/analytics/answer/3379636?hl=en&utm_id=ad

Google Analytics IP anonymization

We have implemented IP address anonymization for Google Analytics on this website. This feature was developed by Google to help this website comply with applicable data protection laws and the recommendations of local data protection authorities when they prohibit the storage of full IP addresses. The anonymization or masking of the IP address takes place as soon as the IP addresses arrive in the Google Analytics data collection network and before any storage or processing of the data occurs.

You can find more information about IP anonymization at https://support.google.com/analytics/answer/2763052?hl=en.

Rights under the General Data Protection Regulation

According to the provisions of the GDPR and the Austrian Data Protection Act (DSG), you generally have the following rights:

Right to rectification (Article 16 GDPR)
Right to erasure (“right to be forgotten”) (Article 17 GDPR)
Right to restriction of processing (Article 18 GDPR)
Right to notification — obligation to notify in connection with the rectification or erasure of personal data or restriction of processing (Article 19 GDPR)
Right to data portability (Article 20 GDPR)
Right to object (Article 21 GDPR)
Right not to be subject to a decision based solely on automated processing — including profiling — (Article 22 GDPR)

If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been infringed, you can lodge a complaint with the supervisory authority, which in Austria is the Data Protection Authority. You can find their website at https://www.dsb.gv.at/.

Privacy Policy

We have created this Privacy Policy (version 08.08.2019-211099505) to explain to you, in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679 and the Data Protection Act (DSG), which information we collect, how we use data, and which choices you have as a visitor to this website.

Unfortunately, it is in the nature of the matter that these explanations sound very technical. However, we have made every effort to describe the most important points as simply and clearly as possible.

Google Analytics reports in demographic characteristics and interests

We have enabled the advertising reporting features in Google Analytics. The reports on demographic characteristics and interests include information about age, gender, and interests. This allows us to gain a better understanding of our users — without being able to assign this data to individual persons. You can learn more about the advertising features at https://support.google.com/analytics/answer/3450482?hl=en.

You can disable the use of your Google account activities and information via the checkboxes under “Ad Settings” at https://adssettings.google.com/authenticated.

Google Analytics deactivation link

If you click the following deactivation link, you can prevent Google from recording further visits to this website. Please note: Deleting cookies, using your browser’s incognito/private mode, or using a different browser will result in data being collected again.

Deactivate Google Analytics

Automatic Data Storage

When you visit websites today, certain information is automatically created and stored — and this also applies to our website.

When you visit our website, our web server (the computer on which this website is hosted) automatically stores data such as:

the address (URL) of the accessed website
browser and browser version
the operating system used
the address (URL) of the previously visited page (referrer URL)
the hostname and IP address of the device from which access is made
date and time
in files (web server log files).

As a rule, web server log files are stored for two weeks and then automatically deleted. We do not share this data but cannot rule out that it may be accessed in the event of unlawful behavior.

Storage of personal data

Personal data that you transmit to us electronically on this website — such as your name, email address, address, or other personal details submitted via a form or comments in the blog — will be used by us together with the time and IP address only for the stated purpose, stored securely, and not passed on to third parties.

We use your personal data only to communicate with visitors who expressly request contact and to process the services and products offered on this website. We do not share your personal data without your consent, but we cannot rule out that this data may be accessed in the event of unlawful behavior.

If you send us personal data by email — and thus outside of this website — we cannot guarantee secure transmission or the protection of your data. We therefore recommend that you never send confidential data by email without encryption.

Integrate Social Media Elemente Datenschutzerklärung

We integrate elements from social media services on our website to display images, videos, and text.
When you visit pages that display these elements, data from your browser is transmitted to the respective social media service and stored there. We have no access to this data.
The following links will take you to the pages of the respective social media services where you can find information on how they handle your data:

Instagram-Datenschutzrichtlinie: https://help.instagram.com/519522125107875
Für YouTube gilt die Google Datenschutzerklärung: https://policies.google.com/privacy?hl=de
Facebook-Datenrichtline: https://www.facebook.com/about/privacy
Twitter Datenschutzrichtlinie: https://twitter.com/de/privacy

Facebook Privacy Policy

We use functions of Facebook, a social media network operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, on this website.

You can find out which functions (social plug-ins) Facebook provides at https://developers.facebook.com/docs/plugins/.
By visiting our website, information can be transmitted to Facebook. If you have a Facebook account, Facebook may associate this data with your personal account. If you do not wish this to happen, please log out of Facebook.
Facebook’s privacy policy, which explains what information Facebook collects and how it is used, can be found at https://www.facebook.com/policy.php.

Instagram Privacy Policy

We use functions of the social media network Instagram, operated by Instagram LLC, 1601 Willow Rd, Menlo Park, CA 94025, USA, on our website.

With the embedding functions (Embed function), we can display images and videos.

When you visit pages that use such functions, data (IP address, browser data, date, time, cookies) is transmitted to Instagram, stored, and analyzed.

If you have an Instagram account and are logged in, this data will be linked to your personal account and the data stored within it.

You can find Instagram’s privacy policies, which detail what information Instagram collects and how it is used, at https://help.instagram.com/519522125107875.

Google Fonts Lokal Privacy Policy

We use Google Fonts from Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) on our website. We have integrated the Google Fonts locally, i.e., on our own web server — not on Google’s servers. This means there is no connection to Google’s servers and therefore no data is transmitted or stored by Google.

What is Google Fonts?

Google Fonts (formerly Google Web Fonts) is an interactive directory with more than 800 fonts provided by Google LLC for free use. With Google Fonts, you could use the fonts without having to upload them to your own server. However, to completely prevent any transfer of information to Google’s servers in this regard, we have downloaded the fonts to our own server. In this way, we comply with data protection regulations and do not transmit any data to Google Fonts.

Google Fonts Privacy Policy

We use Google Fonts from Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) on our website.

You do not need to register or enter a password to use Google Fonts. Furthermore, no cookies are stored in your browser. The files (CSS, fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, the requests for CSS and fonts are completely separate from all other Google services. If you have a Google account, you do not need to worry that your Google account data will be transmitted to Google while using Google Fonts. Google records the use of CSS (Cascading Style Sheets) and the fonts used and stores this data securely. We will take a closer look at how this data is stored in detail later on.

Why do we use Google Fonrs on our website?

Google Fonts (früher Google Web Fonts) ist ein interaktives Verzeichnis mit mehr als 800 Schriftarten, die die Google LLC zur freien Verwendung bereitstellt.

Viele dieser Schriftarten sind unter der SIL Open Font License veröffentlicht, während andere unter der Apache-Lizenz veröffentlicht wurden. Beides sind freie Software-Lizenzen. Somit können wir sie frei verwenden, ohne dafür Lizenzgebühren zu zahlen.

Warum verwenden wir Google Fonts auf unserer Webseite?

With Google Fonts, we can use fonts on our own website without having to upload them to our own server. Google Fonts is an important component for maintaining the quality of our website. All Google fonts are automatically optimized for the web, which saves data volume and is a big advantage, especially for use on mobile devices. When you visit our site, the small file size ensures fast loading times. In addition, Google Fonts are so-called secure web fonts. Different rendering systems in various browsers, operating systems, and mobile devices can sometimes cause errors. These errors can distort text or even entire websites visually. Thanks to the fast Content Delivery Network (CDN), there are no cross-platform issues with Google Fonts. Google Fonts supports all common browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). We use Google Fonts to present our entire online service as attractively and consistently as possible.

Which data is stored by Google?
When you visit our website, the fonts are loaded via a Google server. This external request transmits data to Google’s servers. This also allows Google to recognize that you or your IP address have visited our website. The Google Fonts API was designed to reduce the collection, storage, and use of end-user data to what is necessary for the efficient provision of fonts. (API stands for “Application Programming Interface” and acts, among other things, as a data transmitter in the software domain.)

Google Fonts securely stores CSS and font requests with Google and thus keeps them protected. By collecting usage statistics, Google can determine the popularity of the fonts. Google publishes these results on internal analytics pages, such as Google Analytics. In addition, Google also uses data from its own web crawler to determine which websites use Google Fonts. This data is published in the BigQuery database of Google Fonts. BigQuery is a web service from Google for companies that want to process and analyze large amounts of data.

However, it should be noted that with every Google Fonts request, information such as IP address, language settings, browser screen resolution, browser version, and browser name is also automatically transmitted to Google’s servers. Whether this data is stored is not clearly determined or clearly communicated by Google.

How long and where is the data stored?

Google stores requests for CSS assets on its servers for one day, and these servers are mainly located outside the EU. This allows us to use fonts via a Google stylesheet. A stylesheet is a template that makes it quick and easy to change, for example, the design or font of a website.

The font files themselves are stored by Google for one year. Google’s goal with this is to generally improve the loading time of websites. When millions of websites refer to the same fonts, they are cached after the first visit and then appear immediately on all other websites visited later. From time to time, Google updates the font files to reduce file size, increase language coverage, and improve the design.

How can I delete my data or prevent data from being stored?

The data that Google stores for a day or a year cannot simply be deleted. The data is automatically transmitted to Google when you access the page. To have this data deleted early, you must contact Google Support at https://support.google.com/?hl=en&tid=211099505. The only way to prevent this data from being stored is by not visiting our website.

Unlike other web fonts, Google allows us unrestricted access to all fonts. This means we can access an unlimited range of fonts and get the best possible result for our website. You can find more information about Google Fonts and related questions at https://developers.google.com/fonts/faq?tid=211099505. While Google does address privacy-related topics there, truly detailed information about data storage is not provided. It is relatively difficult (almost impossible) to obtain precise information from Google about the data that is stored.

You can also read about which data is generally collected by Google and how this data is used at https://www.google.com/intl/en/policies/privacy/.

Google reCAPTCHA Privacy Policy

Our top priority is to ensure that our website is as secure and protected as possible for both you and us. To guarantee this, we use Google reCAPTCHA from Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). With reCAPTCHA, we can determine whether you really are a human being and not a robot or other spam software. By spam, we mean any unwanted information that reaches us electronically without being requested. With classic CAPTCHAs, you usually had to solve text or image puzzles for verification. With Google’s reCAPTCHA, we generally don’t have to bother you with such puzzles anymore. In most cases, it’s enough for you to simply check a box to confirm that you are not a bot. With the new Invisible reCAPTCHA version, you don’t even need to check a box. How exactly this works and, above all, which data is used for it, can be found in the course of this privacy policy.

What is reCAPTCHA?

reCAPTCHA is a free captcha service from Google that protects websites from spam software and misuse by non-human visitors. This service is most commonly used when you fill out forms online. A captcha service is an automatic Turing test designed to ensure that an action on the Internet is carried out by a human and not a bot. In the classic Turing test (named after the computer scientist Alan Turing), a human determines the difference between a bot and a human. With captchas, this task is also performed by a computer or software program. Traditional captchas use small tasks that are easy for humans to solve but pose significant challenges for machines. With reCAPTCHA, you no longer have to actively solve puzzles. The tool uses advanced risk analysis techniques to distinguish humans from bots. All you need to do is check the “I am not a robot” box—or with Invisible reCAPTCHA, even that is no longer necessary. With reCAPTCHA, a JavaScript element is embedded into the source code, and then the tool runs in the background and analyzes your user behavior. From these user actions, the software calculates what is known as a captcha score. Using this score, Google determines—before the captcha input—how likely it is that you are a human. reCAPTCHA or captchas in general are used whenever bots could manipulate or misuse certain actions (such as registrations, surveys, etc.)

Why do we use reCaptcha on our website?

We only want to welcome real human beings to our website. Bots or spam software of any kind can safely stay away. That’s why we do everything we can to protect ourselves and offer you the best possible user experience. For this reason, we use Google reCAPTCHA from Google. This allows us to be quite certain that our website remains “bot-free.” By using reCAPTCHA, data is transmitted to Google, which Google uses to determine whether you really are a human. reCAPTCHA therefore serves to protect the security of our website and, consequently, your security as well. For example, without reCAPTCHA, a bot could register as many email addresses as possible during a sign-up process and then flood forums or blogs with unwanted advertising content. With reCAPTCHA, we can prevent such bot attacks.

Which data is stored by reCaptcha?

reCAPTCHA collects personal data from users to determine whether actions on our website are genuinely performed by humans. It may transmit the IP address and other data required by Google for the reCAPTCHA service to Google. IP addresses are almost always shortened beforehand within the member states of the EU or other contracting states of the Agreement on the European Economic Area before the data is transferred to a server in the USA. The IP address is not combined with other Google data unless you are logged into your Google account while using reCAPTCHA. First, the reCAPTCHA algorithm checks whether Google cookies from other Google services (such as YouTube, Gmail, etc.) have already been placed on your browser. Then, reCAPTCHA sets an additional cookie in your browser and captures a snapshot of your browser window.

The following list of collected browser and user data does not claim to be exhaustive. Rather, these are examples of data that, to our knowledge, are processed by Google.

Referrer URL (the address of the page from which the visitor comes)
IP address (e.g., 256.123.123.1)
Information about the operating system (the software that enables your computer to run. Well-known operating systems include Windows, Mac OS X, or Linux)
Cookies (small text files that store data in your browser)
Mouse and keyboard behavior (every action you perform with the mouse or keyboard is recorded)
Date and language settings (the language and date you have preset on your computer are recorded)
All JavaScript objects (JavaScript is a programming language that enables websites to adapt to the user. JavaScript objects can collect all kinds of data under a single name)
Screen resolution (indicates how many pixels make up the display)

It is undisputed that Google uses and analyzes this data even before you click the “I am not a robot” checkbox. With the Invisible reCAPTCHA version, even the act of clicking the checkbox is omitted, and the entire verification process runs in the background. Exactly how much and which data Google stores is not disclosed in detail by Google.

The following cookies are used by reCAPTCHA: Here we refer to Google’s reCAPTCHA demo version at https://www.google.com/recaptcha/api2/demo. All these cookies require a unique identifier for tracking purposes. Here is a list of cookies that Google reCAPTCHA set in the demo version:

Name: IDE
Expiration: after one year
Use: This cookie is set by DoubleClick (which is also owned by Google) to register and report a user’s actions on the website in relation to advertisements. This allows the effectiveness of ads to be measured and corresponding optimization measures to be taken. IDE is stored in browsers under the domain doubleclick.net.
Example value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-211099505

Name: 1P_JAR
Expiration: after one month
Use: This cookie collects statistics on website usage and measures conversions. A conversion occurs, for example, when a user becomes a buyer. The cookie is also used to show users relevant ads and to ensure that a user does not see the same ad more than once.
Example value: 2019-5-14-12

Name: ANID
Expiration: after 9 months
Use: We were not able to find much detailed information about this cookie. In Google’s privacy policy, this cookie is mentioned in connection with “advertising cookies” such as “DSID,” “FLC,” “AID,” and “TAID.” ANID is stored under the domain google.com.
Example value: U7j1v3dZa2110995050xgZFmiqWppRWKOr

Name: CONSENT
Expiration: after 19 years
Use: This cookie stores a user’s consent status for using various Google services. CONSENT also serves security purposes to verify users, prevent fraudulent use of login credentials, and protect user data from unauthorized attacks.
Example value: YES+AT.de+20150628-20-0

Name: NID
Expiration: after 6 months
Use: NID is used by Google to customize ads for your Google search. Using this cookie, Google “remembers” your most frequently entered search queries or your previous interactions with ads. This way, you always see tailored ads. The cookie contains a unique ID that Google uses to collect a user’s personal preferences for advertising purposes.
Example value: 0WmuWqy211099505zILzqV_nmt3sDXwPeM5Q

Name: DV
Expiration: after 10 minutes
Use: As soon as you check the “I am not a robot” box, this cookie is set. The cookie is used by Google Analytics for personalized advertising. DV collects information in an anonymized form and is also used to differentiate between users.
Example value: gEAABBCjJMXcI0dSAAAANbqc211099505

Note: This list cannot claim to be exhaustive, as Google regularly changes the selection of its cookies.

How long and where is the data stored?

By integrating reCAPTCHA, data about you is transmitted to Google’s servers. Google does not clearly state exactly where this data is stored, even after repeated inquiries. Without confirmation from Google, it can be assumed that data such as mouse interactions, time spent on the website, or language settings are stored on Google’s servers in Europe or the United States. The IP address that your browser transmits to Google is generally not merged with other Google data from different Google services. However, if you are logged into your Google account while using the reCAPTCHA plugin, the data will be combined. In this case, the separate privacy policies of Google apply.

How can I delete my data or prevent data storage?

If you do not want any data about you or your behavior to be transmitted to Google, you must completely log out of your Google account and delete all Google cookies before visiting our website or using the reCAPTCHA software. In principle, the data is automatically transmitted to Google as soon as you access our website. To have this data deleted, you must contact Google Support. https://support.google.com/?hl=de&tid=211099505

So, by using our website, you agree that Google LLC and its agents may automatically collect, process, and use data.

You can learn more about reCAPTCHA on Google’s developer page at https://developers.google.com/recaptcha/. While Google does provide more technical details about the development of reCAPTCHA there, you will not find precise information about data storage and privacy-related topics. A good overview of how Google generally handles data can be found in their own privacy policy at https://www.google.com/intl/en/policies/privacy/.

Online Booking on our Website

Description and scope of data processing
On our website you have the possibility to book and/or inquire rooms and offers. If a user uses this option, the data entered in the input mask will be transmitted to us and saved. This data is: title, first name, surname, email address, telephone number, address, number of guests, requests, date, time.

Online bookings via our website are completed using the online reservation system of websLINE Internet- & Marketing GmbH, Sägewerkstrasse 24, 83395 Freilassing, Germany. All booking data you enter shall be encrypted. websLINE commits to the data privacy-appropriate handling of your personal data. The company takes all organisational and technical measures to protect your data.

In this context, no further transfer of your data to third parties takes place. The data is used exclusively for processing your booking and for communication purposes.

Legal basis for the processing of data
The legal basis for the processing of the data is the conclusion of an accommodation contract with the user.

Purpose of data processing
The processing of personal data from the input mask serves solely to process your booking request and to process payment transactions.

Duration of storage
The data will be deleted as soon as it is no longer necessary for the purpose of its collection. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual retention requirements have been met.

Means of objection and removal
The user has the option to object to the processing of their personal data at any time.

We would like to point out that in the case of objection, the booking cannot be completed or the communication cannot be continued

Description and scope of data processing
On our website you can subscribe to a free newsletter. When registering for our newsletter, the following data from the input mask will be sent to us:

Email address
Surname
First name
Interests
IP address of the calling computer
Date and time of registration

Data is not disclosed to third parties in connection with the processing of data for the sending of newsletters. The data will be used exclusively for sending the newsletter.

Legal basis for the processing of data
The legal basis for the processing of data after a user registers and gives consent for our newsletter is Article 6 par. 1 p. 1 lit. a GDPR.

Purpose of data processing
The user’s email address is collected in order to deliver the newsletter.

The collection of other personal data in the context of the registration process serves to prevent misuse of the services or the email address used.

Duration of storage
The data will be deleted as soon as it is no longer necessary for the purpose of its collection. The user’s email address is therefore stored as long as the subscription to the newsletter is active.

The other personal data collected during the registration process will typically be deleted after a period of seven days.

Means of objection and removal
Subscription to the newsletter may be terminated by the user at any time. To do so, a corresponding link can be found in each newsletter.

This also allows consent to the storage of the personal data collected during the registration process to be revoked.

Quelle: Erstellt mit dem Datenschutz Generator von firmenwebseiten.at in Kooperation mit stoked.at und websline