Privacy policy
according to Article 13 DSGVO
Thank you for your interest in our website. The trust of all visitors and customers, the security of your data and the protection of your privacy are of central importance to us.
Your personal data will therefore be treated by us in accordance with the applicable statutory data protection regulations and this privacy policy. Personal data is information that can be used to find out your identity. Typical personal data include your surname, first name, address, telephone number, IP address, cookies and e- mail address.
When you view and use our website or otherwise explicitly transmit information to us, we process the data that is automatically transmitted to us with each request from your browser (see the section “Log data”). If you voluntarily provide us with personal data, the processing is exclusively related to the request or the respective order. We would like to point out that data transmission on the Internet can never be completely protected against access by third parties.
In the following, we would like to explain to you in more detail in the individual sections which data we process when and for what purpose. It will be explained how our offered services work and how the protection of your personal data is guaranteed.
Name and address of the person(s) responsible:
The responsible person within the meaning of the EU General Data Protection Regulation and other data protection regulations is:
Internationales Begegnungszentrum St. Marienthal Public foundation under civil law
St. Marienthal 10
02899 Ostritz
represented by the Chairman of the Executive Board Dr. Michael Schlitt
Email: info@ibz-marienthal.de
Legal basis for the processing of personal data
As a provider, we may only process the personal data of website visitors if one of the conditions explained below exists as a legal basis:
If we obtain the consent of the data subject for processing personal data, Art. 6 (1) a DSGVO serves as the legal basis. For the processing of personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.
If the processing of personal data is necessary for the fulfilment of a legal obligation to which our company is subject, Art. 6 (1) lit. c DSGVO serves as the legal basis. In the event that vital interests of the data subject or another natural person make it necessary to process personal data, Article 6(1)(d) DSGVO serves as the legal basis.
If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 (1) lit. f DSGVO serves as the legal basis for the data processing.
Data deletion and storage period
The personal data of the data subject shall be deleted as soon as the purpose of the storage ceases to apply. In addition, data may be stored if this is provided for by European or national laws or other regulations to which the controller is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned regulations expires, unless there is a need to continue storing the data for the conclusion or performance of a contract.
Contact
When contacting us (e.g. by contact form, e-mail, telephone or via social media), your data will be processed for the purpose of handling the contact request and its processing pursuant to Art. 6 (1) lit. b) DSGVO (so-called pre-contractual measure). We delete the requests if they are no longer necessary. We review this necessity every two years. Furthermore, the legal archiving obligations apply.
Legal basis
The legal basis for the processing of this data are so-called pre-contractual measures according to Art. 6 para. 1 lit. b DSGVO.
Log data
The provider of the Internet services (provider) automatically collects “log data” in server log files.
The log data includes the following information:
- Date and time of the respective request
- Internet address (URL) that was requested
- URL that the visitor has visited immediately before (referrer)
- Browser and language used
- Operating system used
- IP address and host name of the visitor
- Access status / http status code
- Data volume transferred in each case
The transmission of this data to us takes place automatically and this data cannot be assigned to your person with reasonable effort.
Legal basis
The legal basis for processing this data is our legitimate interest pursuant to Art. 6(1) sentence 1 lit. f DSGVO. The logging serves to control access and monitor the technical processes and their optimization. In addition, this data is used in accordance with § 76 BDSG to check the processing procedures under data protection aspects. A passing on to third, except to law enforcement authorities after judicial order in the cause case, does not take place.
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected, or after the legally specified deletion period has been reached. Consequently, there is no possibility of objection on the part of the user.
your rights
You have a right to free information about your personal data stored by us and, if applicable, a right to correction, restriction of processing or deletion of this data. You also have the right to data portability. Finally, you also have the right to complain about the processing of your personal data by us to the data protection supervisory authority.
Right of objection
We would also like to point out that you can object to the future processing of your personal data in accordance with the legal requirements pursuant to Art. 21 DSGVO at any time. The objection can be made in particular against the processing for purposes of direct advertising.
Right to information
If you have any questions about the collection, processing or use of your personal data, for information, for the correction, blocking or deletion of data, as well as for the revocation of any consent given or for objection to a particular use of data, please contact us using the following e-mail address:
Encryption by SSL / TLS
For security reasons, our website uses SSL or TLS encryption. This protects transmitted data and can not be read by third parties. You can recognize successful encryption by the fact that the protocol name in the status bar of the browser changes from “http://” to “https://” and that a closed lock symbol is visible there.
Link
This website may contain links to websites operated by other companies; including, for example, websites of social media channels. If you follow such links, you may come across cookies that are not subject to our sphere of influence. We cannot accept any liability for this and refer you to the data protection provisions or cookie guidelines of the respective websites.
Web hosting via all-inkl
We use the services of ALL-INKL.COM – Neue Medien Münnich, Hauptstraße 68, D- 02742 Friedersdorf for web hosting for our websites and have concluded a contract for order processing according to Art. 28 DSGVO with all-inkl.com.
For more information, please see all-inkl’s privacy policy at https://all- inkl.com/datenschutzinformationen.
Legal basis
The legal basis for the processing of this data is our legitimate interest in the operation and maintenance of the operational security of these web pages in accordance with Art. 6 (1) lit. f DSGVO.
Google Web Fonts
We use Google Web Fonts. All fonts are loaded locally. When using Google Web Fonts, no personal data is passed on to third parties.
“Share” function for social networks
We use the share function on our website for social media channels. The information is only transmitted to the social network when the corresponding buttons are actively clicked. This ensures that an unwanted and automatic data transmission to the corresponding social networks does not already take place when visiting our pages.
Legal basis
The legal basis for the processing of the data is our legitimate interest pursuant to Art. 6 (1) lit. f DSGVO, as we would like to offer you an appealing Internet presence as well as various up-to-date information and interaction options with us.
vioma Booking
In order to offer you the inquiry and booking process as pleasant and efficient as possible we use products of vioma GmbH, Industriestraße 27, 77656 Offenburg, Germany.
When you make a booking enquiry or online booking via our website, the following personal data is transmitted to us.
- Room supplies
- Number of adults persons
- Number of children
- Arrival; Departure dates
- Alternative travel date, if applicable
- First name, last name
- Phone number
- E-mail address
- Address
The data you send us will remain with us until the purpose for storing the data no longer applies (e.g. after processing your request has been completed). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected. To protect your data, we have concluded an order processing contract with Hotjar in accordance with Art. 28 DSGVO.
For more information, please visit the following link: https://www.vioma.de/de/company/datenschutzhinweise/.
Legal basis
The processing of your data for the online booking and the online booking request is based on Art. 6 para. 1 lit. b DSGVO and serves the fulfilment of a contract or the implementation of pre-contractual measures.
Web analysis with Matomo
Matomo is used on this website to analyse and statistically evaluate user behaviour anonymously with the help of cookies. The provider of this service is Innocraft Ltd, 150 Willis St, 6011 Wellington, New Zealand. As part of the processing of the data, the IP addresses of the users are anonymized. The data is stored on our servers and is not forwarded to third parties.
Further information can be found in MATOMO’s data protection declaration at https://matomo.org/privacy/.
Legal basis
for this processing of the data is Art. 6 para. 1 lit. f DSGVO.
Cookies
In order to make the visit to our website attractive and to enable the use of certain functions, we use so-called cookies. These are small text files that are stored on your terminal device and store certain information for exchange with our system.
Cookie types
First-party cookies – Necessary cookies
These are generated by our website and are necessary for the error-free operation of the application. These cookies are also called session cookies or transient and are automatically deleted after the browser session ends, i.e. after the browser is closed. Without these cookies, the error-free operation of the website is not guaranteed.
Legal basis
The legal basis for the processing of this data is Art. 6 (1) sentence 1 lit. f DSGVO.
Third-party cookies
These are set by various services (e.g. analysis services or Facebook) and store a unique identifier that recognizes your terminal device on your next visit (persistent cookies). These cookies remain on your end device for a specified duration. This duration is variable.
Legal basis
The legal basis for the processing of this data is Art. 6 (1) sentence 1 lit. a DSGVO. We would like to point out that with some providers, especially providers from the USA, there is the possibility that data will be transferred to the USA and processed by US authorities. According to the current legal situation, the USA is considered an unsafe third country with an inadequate level of data protection. Currently, there is no adequacy decision pursuant to Art. 45 GDPR, nor can appropriate safeguards pursuant to Art. 46 GDPR be offered. In part, U.S. companies have agreed to comply with the Standard Contractual Clauses for the transfer of personal data to third countries under Directive 2016/679 (SCC).
We would like to point out that in the event of non-compliance with the aforementioned standard contractual clauses, the legal basis is your express consent, pursuant to Art. 49 (1) lit. a DSGVO.
Disable cookies
Please note that certain cookies are already set as soon as you enter our website. You can set your browser in such a way that you are informed about the setting of cookies and can decide individually about their acceptance or can exclude the acceptance of cookies for certain cases, in particular cookies from third parties (third party cookies) or generally. If you do not accept cookies, the functionality of our website may be limited for you.
Google Maps
In order to offer you an appealing internet presence, our website has an interface to Google Maps. In order to use Google Maps, your IP address must be stored on a Google server in the USA. If you use Google Maps, Google Maps loads Google Web Fonts for the uniform display of the position. The recipient of the data is Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. This service is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
We would like to point out that there is a possibility that data will be transferred to the USA and processed by US authorities. According to the current legal situation, the USA is considered an unsafe third country with an insufficient level of data protection. Currently, there is no adequacy decision according to Art. 45 DSGVO. However, Google has committed to comply with the Standard Contractual Clauses (SCC) for transfers of personal data to third countries under Directive 2016/679.
More information on the standard contractual clauses is available at https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data- protection/standard-contractual-clauses-scc_de and at https://policies.google.com/privacy/frameworks?hl=de
In order to protect your personal data, we have concluded a contract for commissioned data processing in accordance with Art. 28 DSGVO as well as a special supplementary data processing addendum with Google, and have accepted the amendment regarding Google’s General Terms and Conditions and the amended commissioned data processing conditions with regard to the use of the standard contractual clauses.
For more information, please visit: https://privacy.google.com/businesses/processorterms/
Supplemental information is provided in the Google Privacy Policy at https://www.google.de/intl/de/policies/privacy.
Legal basis
The legal basis for this processing of data is your consent in accordance with Art. 6 Para. 1 lit. a DSGVO.