Privacy

Demo notice: This privacy policy is a placeholder text. It is not legally reviewed and must be adapted to the actual processing operations before going live.

1. Controller

The controller in terms of the GDPR is the provider named in the imprint.

2. Purposes of processing

We process personal data to operate the website, answer enquiries, handle bookings and comply with legal obligations. Legal bases are in particular Art. 6 (1) (b), (c) and (f) GDPR.

3. Server log files

When the website is accessed, technically necessary data is stored in server logs (e.g. anonymised IP address, date/time, requested resource, user agent). The data is used solely for operational security and is generally deleted after 14 days.

4. Contact and enquiry forms

When you use our contact and enquiry forms, we process the information you provide to handle the enquiry. The data is deleted as soon as the purpose has been fulfilled and no statutory retention obligations apply.

5. Cookies and wishlist

We use technically necessary cookies (e.g. for the wishlist, language preference, booking funnel). No consent is required for these. Marketing or analytics cookies are only set with your explicit consent.

6. Recipients

Where necessary for contract execution, we share data with processors (e.g. payment service providers, IT hosting). We have data processing agreements with these providers in accordance with Art. 28 GDPR.

7. Your rights

You have the right at any time to information (Art. 15), rectification (Art. 16), deletion (Art. 17), restriction of processing (Art. 18), data portability (Art. 20) and objection (Art. 21). You may lodge complaints with the competent supervisory authority.

8. Contact for data protection matters

For information requests and data protection matters, please contact us using the details in the imprint.