top of page

PRIVACY & DATA PROTECTION

Declaration on the information obligation (data protection declaration)

The protection of your personal data is very important to us. We therefore process your data exclusively on the basis of the statutory provisions. In this data protection information we inform you about the most important aspects of data processing on our website.

Responsible:

Data security

We generally guarantee the security of the data in every respect. To this end, we have taken the following technical and organizational measures and we use the following technical equipment.

  • Use of GDPR-compliant online providers for booking management (smoobu) and payment processing (Stripe).

  • The PCs we use are state-of-the-art with security and antivirus software. A regular data backup (to protect against data corruption) is carried out.

 

 

Contact us

If you contact us using the form on the website or by email, the data you provide will be stored by us for six months in order to process the request and in the event of follow-up questions. We do not pass on this data without your consent.

If a booking is made based on your request and our offer, your data will be stored for a period of 7 years after the end of the contractual relationship (end of your vacation) to meet our statutory retention period.

The data is only passed on to third parties if necessary to the municipality of Bad Ischl for the purpose of registering and charging the visitor's tax and, in certain cases, to the tax office.

Those affected have the right to information about the data, correction, deletion and restriction of the processing of the data as well as the right to object to the processing of the data and the right to data portability at any time.

 

Newsletter

If you subscribe to our newsletter, you transmit the above personal data and give us the right to contact you by email. We only use the data stored when registering for the newsletter for our newsletter and do not pass it on.

If you unsubscribe from the newsletter - you will find the link for this at the bottom of every newsletter - then we will delete all data that was saved when you registered for the newsletter.

 

 

Booking (smoobu)

In order to make a booking, you must provide your contact details. All you have to do is fill in the fields marked with an asterisk (specify mandatory fields here) and the data relating to the booking (e.g. period of stay). We also save your booking date and time. Any additional information (enter optional fields here) is not mandatory.

The data you provide on our website, including any notes, are personal data and are processed and used by us to ensure the processing of the booking and the provision of the requested service. We also use your data to provide you with relevant information about the booking or your stay. The personal data collected when booking is passed on to the following third parties:

Smoobu GmbH - Smoobu.com is software for renters of holiday apartments

Wönnichstrasse 68/70

10317 Berlin

Germany

Link to the privacy policy of Smoobu:

https://www.smoobu.com/datenschutz/

 

 

Payment (stripe)

We use Stripe for payment, analytics, and other business services. Stripe collects information about the devices that connect to its services. Stripe uses this information to operate and improve the services it offers us, including to detect fraud. You can find more information about Stripe in the privacy policy at https://stripe.com/privacy .

 

 

Cookies

Our website uses HTTP cookies to save user-specific data.
In the following we explain what cookies are and why they are used so that you can better understand the privacy policy.

 

What exactly are cookies?

Whenever you surf the Internet, you are using a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer and Microsoft Edge. Most websites save small text files in your browser. These files are called cookies.

One thing cannot be dismissed out of hand: Cookies are really useful little helpers. Almost all websites use cookies. More precisely, they are HTTP cookies, as there are also other cookies for other areas of application. HTTP cookies are small files that our website stores on your computer. These cookie files are automatically placed in the cookie folder, which is the “brain” of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.

Cookies store certain user data about you, such as language or personal page settings. When you visit our site again, your browser sends the “user-related” information back to our site. Thanks to cookies, our website knows who you are and offers you the settings that you are used to. In some browsers, each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file.

There are both first-party cookies and third-party cookies. First-party cookies are created directly from our side, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie must be evaluated individually, as each cookie stores different data. The expiry time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans or other "pests". Cookies cannot access information on your PC either.

For example, cookie data can look like this:

Name: _ga
Value: GA1.2.1326744211.152111604541-9
Purpose: Differentiation of website visitors
Expiry date: after 2 years

A browser should be able to support these minimum sizes:

  • At least 4096 bytes per cookie

  • At least 50 cookies per domain

  • At least 3000 cookies in total

 

What types of cookies are there?

The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the data protection declaration. At this point we would like to briefly discuss the different types of HTTP cookies.

There are 4 types of cookies:

Essential cookies
These cookies are necessary to ensure basic functions of the website. For example, these cookies are needed when a user puts a product in the shopping cart, then continues surfing on other pages and only goes to checkout later. These cookies do not delete the shopping cart, even if the user closes his browser window.

Appropriate cookies
These cookies collect information about user behavior and whether the user receives any error messages. These cookies are also used to measure the loading time and the behavior of the website in different browsers.

Goal-oriented cookies
These cookies ensure better user-friendliness. For example, entered locations, font sizes or form data are saved.

Advertising cookies
These cookies are also called targeting cookies. They serve to deliver customized advertising to the user. That can be very practical, but also very annoying.

When you visit a website for the first time, you will usually be asked which of these types of cookies you would like to allow. And of course this decision is also saved in a cookie.

 

How can I delete cookies?

You decide for yourself how and whether you want to use cookies. Regardless of which service or website the cookies originate from, you always have the option of deleting, deactivating or only partially allowing cookies. For example, you can block third-party cookies but allow all other cookies.

If you want to find out which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:

Chrome: Delete, activate and manage cookies in Chrome

Safari: manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have stored on your computer

Internet Explorer: deleting and managing cookies

Microsoft Edge: Deleting and managing cookies

If you generally do not want cookies, you can set up your browser so that it always informs you when a cookie is to be set. For each individual cookie, you can decide whether or not to allow the cookie. The procedure is different depending on the browser. It is best to search for the instructions in Google with the search term “delete cookies Chrome” or “deactivate cookies Chrome” in the case of a Chrome browser.

 

What about my data protection?

The so-called “cookie guidelines” have existed since 2009. It states that the saving of cookies requires your consent. Within the EU countries, however, there are still very different reactions to these guidelines. In Austria, however, this directive was implemented in Section 96 (3) of the Telecommunications Act (TKG).

If you want to know more about cookies and are not afraid of technical documentation, we recommend https://tools.ietf.org/html/rfc6265 , the Request for Comments of the Internet Engineering Task Force (IETF) called “HTTP State Management Mechanism”.

 

 

Web Analytics (Google Analytics)

We use Google Analytics, a web analysis service from Google LLC (“Google”), based on our legitimate interests (ie interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 Para. 1 lit. f. GDPR). Google uses cookies. The information generated by the cookie about the use of the online offer by the user is usually transferred to a Google server in the USA and stored there.

Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law ( https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active ).

Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with other services related to the use of this online offer and the internet. In doing so, pseudonymous user profiles can be created from the processed data.

We only use Google Analytics with activated IP anonymization. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. The full IP address is only transmitted to a Google server in the USA and shortened there in exceptional cases.

The IP address transmitted by the user's browser will not be merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; Users can also prevent Google from collecting the data generated by the cookie and relating to their use of the online offer and from processing this data by downloading and installing the browser plug-in available under the following link: http: // tools .google.com / dlpage / gaoptout? hl = de .

You can find more information on the use of data by Google, setting and objection options in Google's data protection declaration ( https://policies.google.com/technologies/ads ) and in the settings for the display of advertisements by Google ( https: // adssettings.google.com/authenticated ).

bottom of page