+43 676 3030972 info@staudach.at
Staudach

 

Staudach
Staudach

Privacy Policy

1. An overview of data protection

Separator

The protection of your personal data is of particular importance to us. We process personal data exclusively on the basis of the applicable legal provisions, in particular the General Data Protection Regulation (GDPR), the Austrian Data Protection Act (DSG) and the Telecommunications Act 2021 (TKG 2021). In this privacy policy, we inform you about the most important aspects of data processing in connection with this website.

1. General Information

The following information provides an overview of what happens to personal data when you visit this website. Personal data means any data by which you can be personally identified (e.g. name, email address, IP address). Detailed information can be found in the sections below.

2. Controller

The controller (within the meaning of the GDPR) is:

Staudach - Alpinresidenz Zillertal · Johann Gruber · Oberbichl 743 · 6284 Ramsau im Zillertal

Phone: +43 676 3030972
E-mail:

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

3. Legal Bases for Processing

Depending on the occasion, we process personal data on the following legal bases:

  • Art. 6(1)(a) GDPR (consent)
  • Art. 6(1)(b) GDPR (contract / pre-contractual measures)
  • Art. 6(1)(c) GDPR (legal obligation)
  • Art. 6(1)(f) GDPR (legitimate interest)

Where consent is required for cookies, comparable technologies or access to information stored on a user’s terminal equipment, this is additionally carried out on the basis of Section 165 (3) TKG 2021.

In Austria, the fundamental right to data protection arises from Section 1 DSG.

4. Hosting

This website is hosted externally. Personal data required for the provision and maintenance of secure website operation (e.g. IP address, access data, log files) as well as data you transmit to us as part of enquiries are processed in this context.

Processing is carried out in particular on the basis of Art. 6(1)(f) GDPR (legitimate interest in secure and stable operation) and – where applicable – Art. 6(1)(b) GDPR (contract/pre-contractual measures).

Where consent is required for cookies/access to terminal equipment, processing is carried out on the basis of Art. 6(1)(a) GDPR in conjunction with Section 165 (3) TKG 2021.

We use the following hosting provider:
VIELSAITIG.media · Ing. Thomas Buchberger · Brandbergstraße 362 · 6290 Mayrhofen · Austria · T +43 650 9365078 · · www.vielsaitig.media

If the hosting provider acts as a processor, a data processing agreement pursuant to Art. 28 GDPR has been concluded.

5. Server Log Files

When accessing this website, information is automatically collected and stored in so-called server log files by the hosting provider. This may include:

  • IP address
  • Date and time of access
  • Accessed page or file
  • Browser type and version
  • Operating system used
  • Referrer URL

As a rule, this data is not combined with other data sources. The legal basis is Art. 6(1)(f) GDPR (security, stability, error analysis).

6. Cookies & Consent Management

This website uses cookies and, where applicable, comparable technologies. Cookies are small text files that are stored on your terminal device.

  • Technically necessary cookies may be required for the provision of the website. The legal basis is Art. 6(1)(f) GDPR (legitimate interest in a functional website).
  • Non-essential cookies (e.g. for statistics/marketing or external content) are only set if you have given your prior consent. The legal basis is Art. 6(1)(a) GDPR and Section 165 (3) TKG 2021.

You may withdraw or amend any consent given at any time with effect for the future (e.g. via the cookie settings).

7. Consent Management (Consent Tool)

We use a consent tool to manage and document your consents. Typically, a cookie is stored in order to recognise your selection.

The legal basis for documenting and managing consents is Art. 6(1)(c) GDPR (compliance with legal obligations). Where access to information stored on a user’s terminal equipment is concerned, this is additionally carried out in accordance with Section 165 (3) TKG 2021.

8. Contact

If you contact us by email, telephone or via a contact form, we process your details for the purpose of handling the enquiry and any follow-up questions.

Depending on the content of the enquiry, the legal basis is Art. 6(1)(b) GDPR (pre-contractual measures/contract) or Art. 6(1)(f) GDPR (legitimate interest in efficient communication). Where consent is required in individual cases, processing is carried out on the basis of Art. 6(1)(a) GDPR.

9. Google Fonts (local integration)

This website uses Google Fonts that are hosted locally on our server. No connection to Google servers takes place and no personal data is transmitted to Google.

10. Google Analytics (only with consent)

This website may use Google Analytics, a web analytics service provided by Google Ireland Limited. Google Analytics is only activated if you have given your prior consent.

Cookies or comparable technologies may be used to analyse user behaviour on the website. The legal basis is Art. 6(1)(a) GDPR in conjunction with Section 165 (3) TKG 2021. Consent may be withdrawn at any time.

11. YouTube (only with consent)

This website may embed videos from YouTube (Google Ireland Limited). YouTube content is only loaded if you have given your prior consent. In this context, personal data (e.g. IP address) may be processed and cookies may be set.

The legal basis is Art. 6(1)(a) GDPR in conjunction with Section 165 (3) TKG 2021. Consent may be withdrawn at any time.

12. Google Maps (only with consent)

Google Maps (Google Ireland Limited) may be integrated for the display of maps. Google Maps is only loaded if you have given your prior consent. Personal data (e.g. IP address) may be processed and transmitted to Google in this context.

The legal basis is Art. 6(1)(a) GDPR in conjunction with Section 165 (3) TKG 2021. Consent may be withdrawn at any time.

13. Social Media Content (Facebook & Instagram – only with consent)

This website may include content and functions from Facebook and/or Instagram (Meta Platforms Ireland Limited). This content is only loaded if you have given your prior consent.

When activated, a connection to Meta servers may be established. Personal data (e.g. IP address, technical information) may be processed in this context. If you are logged in to Facebook/Instagram, it may be possible to associate your visit with your user account. You can prevent this by logging out of your social media account before visiting this website.

The legal basis is Art. 6(1)(a) GDPR in conjunction with Section 165 (3) TKG 2021. Consent may be withdrawn at any time.

14. SSL/TLS Encryption

For security reasons and to protect the transmission of confidential content, this website uses SSL/TLS encryption. You can recognise an encrypted connection by the change in the browser’s address line from “http://” to “https://” and by the padlock symbol in your browser bar.

15. Storage Period

Unless a more specific storage period is stated within this privacy policy, we store personal data only for as long as the purpose of processing exists. Thereafter, the data will be deleted unless statutory retention obligations or other legal grounds require further storage.

16. Your Rights

Within the scope of the statutory provisions, you have in particular the following rights:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restriction of processing
  • Right to data portability
  • Right to withdraw consent given (with effect for the future)
  • Right to object to processing (in particular where processing is based on legitimate interest)

In Austria, the fundamental right to data protection is enshrined in Section 1 DSG.

17. Right to Lodge a Complaint (Austria)

If you believe that the processing of your personal data infringes data protection law, you may lodge a complaint with the supervisory authority. In Austria, the right to lodge a complaint is regulated in particular in Section 24 DSG.

Austrian Data Protection Authority
Barichgasse 40–42 · 1030 Vienna · Austria
www.dsb.gv.at

18. Amendments to this Privacy Policy

We reserve the right to amend this privacy policy where necessary in order to adapt it to changes in legal requirements or technical developments.