Bonusclub

Data Security

Responsible for the
content:
 Franz Dengg
Company words: Hotel Post, Inh. Franz Dengg, e.U.
Company register No.: 17433m
UID number: ATU 467 134 09

This Privacy Statement applies to the collection and use of personal data. This information may be collected when you visit our website, when you make a request or booking through our website, or if you receive other services, such as .B purchase a voucher, or when you sign up for a newsletter. We would like to give you an overview of what types of data are collected, how it is used, what data is collected for. Please rest assured that the protection of your personal data is our highest priority and that we will handle your information entrusted to us carefully – as part of our offer, sales and services. Of course, we also inform you to what extent you can revoke your data storage. The Hotel Post is entitled to make changes from time to time, depending on the development and specifications. Should these be major and significant changes, we will inform you accordingly. All information provided is intended for both readers and readers and is not countered separately.

How is personal data collected, stored and reused?

We at Hotel Post collect personal data in order to provide you with the best possible service, to inform you and to provide you with a corresponding range of services. We ask for personal data that will help us to make an offer or to be able to provide a reservation confirmation at your request and thus include your data in our hotel program. In doing so, we act according to the principle of data economy and limit ourselves to data that is necessary for the fulfilment of the order or the pre-contractual offer. Furthermore, you help us with the fact that we can keep you up to date in the future with any special offers that may be of interest to you, new ones for your holiday. Of course, it is always possible to inform us – easily and free of charge – if you no longer wish to receive any further product offers, news, special offers. Your personal data will be stored for as long as is necessary to fulfil the services listed and we assume that you may have a legitimate interest in further information and as long as no revocation has been made. In addition, we would like to point out that it is not legally possible to delete data if we are not obliged to store the data under other – mandatory – legislation.

What data is collected?

In order to fulfill your wishes, such as .B to receive an offer, to make a booking, to buy a voucher, to register a newsletter, only those data that are necessary for the fulfilment of the contract or pre-contractual information will be requested and recorded. These can be: first name, last name, postal address, telephone number, email address. In addition, data could be requested to help us understand what information might still be important to you and for market research purposes to better understand the needs of our customers. The supply of this information is voluntary and is therefore marked as non-compulsory for the performance of the contract. Thus, you decide for yourself whether or not you want to fill out this information in a.B request form, in a newsletter system or similar.

What rights do you have in handling your data?

You have the right to rectification of your data: If you notice in our communication that we have received data incompletely/incorrectly, please let us know the corrections. Right to delete your data: If you do not wish to receive any further information, you have the right to delete and revoke the storage of your data. This applies if you .B no longer have any further interest in our offers or if the data is no longer necessary for the purposes for which they were collected. The right to erasure does not apply if another right is mandatory and therefore another legal law obliges us to store the data. Right to restriction: The data subject has the right to request the controller to restrict the processing. The right to object: the data subject has the right to object at any time to the processing of personal data concerning him or her for reasons arising from the particular situation. Of course, you have the right to information about your data at any time. Let us know by email or phone if you wish to exercise rights accordingly. We kindly point out that in the case of telephone or enquiries by email, we require a copy of your ID to ensure that you make a legitimate request.

To whom will your data be passed on and if so, why?

We at Hotel Post hereby confirm that we do not resell or otherwise make available guest data to third parties for marketing or other deviating purposes. However, to ensure that you receive our product offerings and company information, reservations and/or orders, we work with external partners who perform these services for us. These include .B printers, lettershops and IT service providers, who ensure that your desired mail and e-mails also arrive properly with you – as well as newsletter senders, the exclusively processors with whom we have an order data processor agreement and who have to comply with the highest level of data protection. These companies and/or persons are also obliged to treat your data with care in accordance with the Data Protection Declaration. In addition, we may be required by Hotel Post to disclose data to authorities, courts and offices in accordance with legal regulations or official instructions.

The setting of links from the hotel website to other external websites does not involve the disclosure of personal data, but only serves further information. We assume no responsibility for the content of other external, non-hotel websites. These can be links to sports partners, leisure facilities in the region, mountain railways, etc. Our guests decide for themselves whether you want to follow these links or not. We are also happy to inform you about any questions you may have by phone or email.

Information security and data protection

We take technical measures that increase information security in data protection and to protect your data from loss, theft, unauthorized access, disclosure and destruction. To this end, we work with technical and electronic procedures for data protection and information security. In areas where credit card information can be entered through the website, we pay attention to SSL encryption. This ensures the confidentiality of your personal credit card information when transactions are made over the Internet.

Personal data for applications submitted by email or applicant form

We are pleased that many applicants are contacting us by email and sending us their application documents. Applicant data is stored for the purpose of the application, the search for employees, the interest in a job advertised or perhaps advertised in the future. We store applicant data 7 (seven) (At the request of the person concerned, storage can also take place beyond) months and then delete applicant data if there is no employment relationship. Employee data after an employment relationship is deleted on request if no other mandatory legislation prohibits deletion.

Video recordings and photo data

If video recordings are made in our facilities, we will inform you about the appropriate marking. Video recordings are cancelled for 72 hours and viewed exclusively by authorized persons. Should photo shoots, events or events take place in our facilities, we will inform you accordingly at the appropriate place. We do not publish any guest photos or videos on our website or social media channels.

Voucher Shop INCERT – Order Data Processing

Due to a separate agreement on the processing of personal data, your data will be collected and processed by INCERT eTourismus GmbH & Co KG, Leonfeldner Strasse 328, 4040 Linz as part of order data processing in accordance with Art 28 GDPR in accordance with the corresponding legal requirements. As a processor in the event of support measures, INCERT eTourism also has access to your data, but may only use it for the purpose of support measures and may not use it for its own purposes.

Retention and deletion
of data
 After cancellation of the purchase or ordering process, the data stored by us will be deleted after 14 days in order to be able to support any problems during the ordering process. In the event of a contract being concluded, all data from the contractual relationship will be stored until the expiry of the tax retention period of 7 years.
The data “name, address, ordered voucher, purchased goods and date of purchase” are stored in addition until the expiry of the product liability (10 years) or until the expiry of the consumer protection on the basis of warranty and redemption period of vouchers (30 years).
After a declared objection, we, Hotel Post Lermoos, will ensure the deletion of the data by itself and any third parties to whom the data has been transmitted. The data processing is carried out on the basis of the statutory provisions of Section 96 (3) TKG as well as Art 6 (1) lit a (consent) and/or lit b (necessary for the fulfilment of the contract) of the GDPR.

Use of cookies

We use cookies on our website – however, you can deactivate the use of cookies at any time via the settings of your browser.

Cookies are used on various pages to facilitate the use of our website and communication and to better adapt our presence on the Internet to your needs. A cookie is a small text file that is placed on your hard drive by a website. Cookies do not cause any damage to your computer and do not contain viruses. Cookies are mainly used to find out which areas of our website are welcome to visit and to optimize the user-friendliness and usability of the website for the guest and visitor. You have the option to disable cookies at any time and still visit all pages of the website without restriction.

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA (“Google”). We have concluded a contract with Google for order data processing. The data is transferred to the USA on the basis of the Privacy Shield.

When you access our website, a connection to Google’s servers is established via software and data is transmitted to Google servers, some of which are located in the USA. Google Analytics also uses cookies to store information about the website user and to analyse the use of the website by the website users.

This website uses the “Activation of IP Anonymization” function. This will shorten your IP address from Google within Member States of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

According to Google, Google will use the data collected to evaluate the use of the website, to compile reports on website activity and to provide other services related to website and internet usage.

Google may also transfer this information to third parties if required to do so by law or if third parties process this data on Google’s behalf.

Detailed information on how to handle user data in Google Analytics can be found in the privacy policy of Google (https://policies.google.com/privacy?hl=de) or Google Analytics (https://support.google.com/analytics/answer/6004245?hl=de).

Disabling Google ads

(http://www.google.com/privacy_ads.html) or on the deactivation page of the Network Advertising Initiative (http://www.networkadvertising.org/managing/opt_out.asp)

Using Google Maps

Use of Google Maps: The media owner’s services use Google Maps to display maps and create map maps. Google Maps is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. When the user uses the platform, it establishes a direct connection to Google’s servers. Google thus receives device-specific data, location data, IP address (log files), information about cookies. By using the platform, the user agrees to the transmission, collection, processing and use of the automatically collected data by Google.

newsletter

With the newsletter we inform you about us and our offers. If you wish to receive the newsletter, we require you to provide a valid e-mail address as well as information that allows us to verify that you are the owner of the e-mail address provided or that the owner agrees to receive the newsletter. If more. voluntarily provided information about areas of interest, postcode, are only used to provide you with information in a targeted manner. This data will only be used for sending the newsletter and will not be passed on to third parties. By registering for the newsletter, we save your IP address and the date of registration. This storage serves solely as proof in the event that a third party misuses an email address and registers for the newsletter reception without the knowledge of the entitled party. You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time. The revocation can be made via a link in the newsletters themselves, in your profile area or by notification to the above contact options.

User’s consent

By using our website and the offers contained therein, you agree that the personal data you voluntarily provide will be stored by us and processed and used in compliance with this privacy policy.

Right

You have the unrestricted right to free information about your data stored by us as well as the right to erasure or blocking of inadmissible data or the right to rectification of inaccurate data. Upon request, we are happy to inform you in writing whether and what personal data we have stored about you. As far as possible, we will take appropriate measures to update or correct your data stored by us at short notice. In these cases, please contact our hotel management directly.

Social Media, “Share,” “Like” Buttons

The website has on some pages with social media buttons, buttons to share and / or mark with I like the page contents on the social media platforms Facebook, Google Plus, Pinterest, Twitter. The buttons are ideally designed to protect the personal data of our website visitors, as the script (computer program) behind the buttons does not collect or process any personal data. The heise Verlag offers precise information about the function of the buttons as publisher of the IT trade journal c’t and as developer of the buttons.

Website visitors who want to share our site and /or like it will be directed directly to the “share” pages of the respective social media platforms by clicking on the buttons. Only there / then the scripts necessary for sharing / marking the page contents are loaded. The terms and conditions of business and data protection agreed by the website visitor with the respective social media platforms shall then apply. Detailed information about this is provided by the respective platforms FacebookGoogle Plus, Pinterest, Twitter.

Facebook Pixel

This website uses Facebook Pixel, a web analytics service of Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (“Facebook”). We have signed a contract with Facebook for order data processing. Some of the data will be transferred to the USA. The data is transferred to the USA on the basis of the Privacy Shield.

When you access our website, a connection to Facebook’s servers is established via software and data is transmitted to Facebook servers, some of which are located in the USA. Facebook Pixel also uses cookies to store information about the website user and to analyse the use of the website by the website users.

According to Facebook, Facebook will use the data collected to evaluate the use of the website, to compile reports on website activity and to provide other services related to website and internet usage.

Facebook may also transfer this information to third parties if required to do so by law or if third parties process this data on behalf of Facebook.

Detailed information on how facebook handles user data can be found in Facebook’s privacy policy (https://www.facebook.com/privacy/explanation).

Your security has top priority! That is why when paying by credit card, data such as credit card number, bank sorting code, account number, name, and address are transferred via a secure SSL line. Thanks to that, no unauthorised persons can read the data you enter during the transfer. To increase security in voucher shops even more, we use several additional security measures.              

We use EDP-supported processing of your information. You will receive advertising information such as top offers and news only from Hotel Post Lermoos KG Of course, you can block this at anytime. This data will not be passed to third persons.


All access to post-lermoos.bonuspunkt.com/en, is recorded and stored in the log files of the used web servers. Only information transmitted automatically by your web browser to the server is stored in the log files. This information includes especially: IP address, time of server query, operating system, browser type/version, name of your Internet provider, website from which you got to our site, and sites that you access on post-lermoos.bonuspunkt.com/en or other websites operated by Hotel Post Lermoos KG. The provision of only this information prevents inferences being drawn pertaining to your person. This data is stored solely for statistical reasons. Please also read the information about Google Analytics stated below.

Other personal data is collected only if you send us this information voluntarily, e.g. via e-mails, inquiries or registration. If you provide us with personal data, we will use it only for processing your inquiries/bookings, providing other services, as well as for administrative reasons.

The User agrees that his/her personal data will be stored and, where required, processed. The personal data of Users will be treated as confidential, in accordance with the provisions of the Data Protection Act.

We will not sell personal data to third parties or otherwise market it. Your personal data will be passed or otherwise conveyed to third parties only if necessary for business transactions, or if you give us prior consent. You can revoke your consent at anytime. We may also be obliged to disclose your personal data on the basis of legal requirements or legal procedures. Upon written request (see the address above), we will inform you about the stored data regarding your person. You can also correct incorrect data and erase impermissibly processed data at anytime.

The provisions of the Data Protection Act apply.

Usage of Facebook social plugins

Our websites use social plugins ("plugins") of the social network facebook.com, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). The plugins can be identified on the basis of the Facebook logo (white "f" on a blue tile or a "thumbs-up" icon), or are marked with the addendum "Facebook Social Plugin". The list and the appearance of Facebook social plugins can be viewed here: developers.facebook.com/plugins. If you access one of our websites that contains such a plugin, your browser will establish a direct connection with Facebook servers.

The content of the plugin will be transmitted by Facebook directly to your browser, which will integrate it into the website. That is why we have no influence on the extent of data that is collected by Facebook using this plugin, and therefore we inform you according to our state of knowledge:

By integrating the plugin, Facebook receives the information that you have accessed our corresponding website. If you are logged in on Facebook, Facebook can allocate the visit to your Facebook account. If you interact with the plugin, e.g. you push the like button or post a comment, the relevant information will be transmitted by your browser directly to Facebook and stored there.

If you are not a member of Facebook, Facebook can still ascertain and store your IP address. For the purpose and extent of data collection, and further processing and usage of the data by Facebook, as well as for the relevant rights and setting options regarding the protection of privacy, please refer to the privacy policy of Facebook: www.facebook.com/policy.php.

If you are a Facebook member and do not want Facebook to collect data about you via our websites and link it to member data stored at Facebook, you have to log out of Facebook before visiting our website.

You can also block Facebook social plugins with add-ons for your browser, e.g. with the "Facebook Blocker".

Etracker



The provider of this website uses the services of etracker GmbH, Hamburg, Germany (www.etracker.com) to analyse usage data. We do not use cookies for web analysis by default. If we use analysis and optimisation cookies, we will obtain your explicit consent separately in advance. If this is the case and you agree, cookies are used to enable a statistical range analysis of this website, a measurement of the success of our online marketing measures and test procedures, e.g. to test and optimise different versions of our online offer or its components. Cookies are small text files that are stored by the Internet browser on the user's device. etracker cookies do not contain any information that could identify a user.

The data generated by etracker on behalf of the provider of this website is processed and stored by etracker solely in Germany by commission of the provider of this website and is thus subject tothe strict German and European data protection laws and standards. In this regard, etracker was independently checked, certified and awarded with theePrivacyseal data protection seal of approval.

The data processing is based on Art. 6 Section 1 lit f (legitimate interest) of the General Data Protection Regulation (GDPR). Our legitimate interest is the optimisation of our online offer and our website. As the privacy of our visitors is very important to us, the data that may possibly allow a reference to an individual person, such as IP address, registration or device IDs, will be anonymised or pseudonymised as soon as possible. etracker does not use the data for any other purpose, combine it with other data or pass it on to third parties.

You can object to the outlined data processing at any time. Your objection has no disadvantageous consequences.


Further information on data protection with etracker can be found here.