Data protection

Your personal user ID:
[borlabs-cookie type="uid"/]
Change data protection settings:
[borlabs-cookie type="btn-cookie-preference" title="Change cookie settings"/]
[borlabs-cookie id="google-analytics" type="btn-switch-consent"/]

Privacy policy and consents

Table of contents
1. objective and responsible body
2. basic information on data processing
3. processing of personal data
4. collection of access data
5. cookies & reach measurement
6. google analytics
7. google re/marketing services
8. integration of third-party services and content
9 User rights and cancellation
10. changes to the privacy policy

  1. Objective and responsible body

This privacy policy clarifies the nature, scope and purpose of the processing (including collection, processing and use as well as obtaining consent) of personal data within our online offer and the associated websites, functions and content (hereinafter collectively referred to as "online offer" or "website"). The privacy policy applies regardless of the domains, systems, platforms and devices used (e.g. desktop or mobile) on which the online offering is executed.

The provider of the online offer and the body responsible for data protection is ,
Owner:
Gasthof zum "Schwanen"
Füssener Straße 2
A 6600 Pflach

(Austria) (hereinafter referred to as "provider", "we" or "us"). For contact details, please refer to our legal notice

The term "user" includes all customers and visitors to our online offering. The terms used, such as "user", are to be understood as gender-neutral.

  1. Basic information on data processing

We only process users' personal data in compliance with the relevant data protection regulations in accordance with the principles of data minimisation and data avoidance. This means that user data is only processed if there is legal authorisation, in particular if the data is required to provide our contractual services and online services or is required by law or if consent has been given.

We take organisational, contractual and technical security measures in accordance with the state of the art to ensure that the provisions of data protection laws are complied with and to protect the data processed by us against accidental or intentional manipulation, loss, destruction or access by unauthorised persons.

If content, tools or other means from other providers (hereinafter jointly referred to as "third-party providers") are used within the scope of this privacy policy and their registered office is abroad, it can be assumed that data will be transferred to the countries in which the third-party providers are based. The transfer of data to third countries takes place either on the basis of legal authorisation, user consent or special contractual clauses that guarantee the legally required security of the data.

  1. Processing of personal data

In addition to the uses expressly stated in this privacy policy, personal data is processed for the following purposes on the basis of legal authorisations or user consent:
- The provision, execution, maintenance, optimisation and security of our services and user services;
- Ensuring effective customer service and technical support.

We only transfer user data to third parties if this is necessary for billing purposes (e.g. to a payment service provider) or for other purposes if this is necessary to fulfil our contractual obligations to users (e.g. providing addresses to suppliers).

When contacting us (via contact form or email), the user's details are stored for the purpose of processing the enquiry and in the event that follow-up questions arise.
Personal data is deleted if it has fulfilled its intended purpose and there are no retention obligations to the contrary.

  1. Collection of access data

We collect data about every access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.

We use the log data without allocation to the person of the user or other profiling in accordance with the statutory provisions only for statistical evaluations for the purpose of the operation, security and optimisation of our online offer. However, we reserve the right to check the log data retrospectively if there is a justified suspicion of unlawful use based on concrete evidence.

  1. Cookies & reach measurement

Cookies are pieces of information that are transferred from our web server or third-party web servers to the user's web browser and stored there for later retrieval. Users are informed about the use of cookies in the context of pseudonymised reach measurement as part of this privacy policy.

It is also possible to view this online offer without cookies. If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.

It is possible to manage many online advertising cookies from companies via the US site http://www.aboutads.info/choices or the EU site http://www.youronlinechoices.com/uk/your-ad-choices/.

  1. Google Analytics

We use Google Analytics, a web analytics service provided by Google Inc ("Google"). Google uses cookies. The information generated by the cookie about the use of the online offer by the user is usually transmitted to a Google server in the USA and stored there.

Google will use this information on our behalf to analyse the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with further services associated with the use of this online offer and the use of the Internet. Pseudonymised user profiles can be created from the processed data.

We only use Google Analytics with activated IP anonymisation. This means that the IP address of users is truncated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

The IP address transmitted by the user's browser will not be merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; users can also prevent Google from collecting the data generated by the cookie and relating to their use of the online offer and from processing this data by Google by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

You can find more information on the use of data for advertising purposes by Google, setting and objection options on the Google websites: https://www.google.com/intl/de/policies/privacy/partners ("Data use by Google when you use our partners' websites or apps"), http://www.google.com/policies/technologies/ads ("Data use for advertising purposes"), http://www.google.de/settings/ads ("Manage information that Google uses to show you advertising") and http://www.google.com/ads/preferences ("Determine which advertising Google shows you").

 

  1. Google Re/Marketing Services and remarketing services ("Google Marketing Services" for short) of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, ("Google").

Google marketing services allow us to display adverts for and on our website in a more targeted manner in order to present users only with adverts that potentially match their interests. If, for example, users are shown adverts for products that they were interested in on other websites, this is referred to as "remarketing". For these purposes, when our and other websites on which Google marketing services are active are accessed, a code from Google is executed directly by Google and so-called (re)marketing tags (invisible graphics or code, also known as "web beacons") are integrated into the website. With their help, an individual cookie, i.e. a small file, is stored on the user's device (comparable technologies can also be used instead of cookies). The cookies can be set by various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. This file records which websites the user has visited, what content they are interested in and which offers they have clicked on, as well as technical information about the browser and operating system, referring websites, time of visit and other information about the use of the online offer. The IP address of the user is also recorded, whereby we inform Google Analytics that the IP address is shortened within member states of the European Union or in other signatory states to the Agreement on the European Economic Area and only in exceptional cases is it transmitted in full to a Google server in the USA and shortened there. The IP address is not merged with the user's data within other Google services. This aforementioned information may also be combined with such information from other sources. If the user subsequently visits other websites, they can be shown adverts tailored to their interests.

User data is processed pseudonymously as part of Google marketing services. This means that Google does not store and process the user's name or email address, for example, but processes the relevant data in relation to cookies within pseudonymous user profiles. This means that, from Google's perspective, the adverts are not managed and displayed for a specifically identified person, but for the cookie owner, regardless of who this cookie owner is. This does not apply if a user has expressly allowed Google to process the data without this pseudonymisation. The information collected by "DoubleClick" about users is transmitted to Google and stored on Google's servers in the USA.

The Google marketing services we use include the online advertising programme "Google AdWords". In the case of Google AdWords, each AdWords customer receives a different "conversion cookie". Cookies can therefore not be tracked via the websites of AdWords customers. The information collected with the help of the cookie is used to create conversion statistics for AdWords customers who have opted for conversion tracking. AdWords customers find out the total number of users who clicked on their advert and were redirected to a page with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users.

We integrate third-party adverts on the basis of the Google marketing service "DoubleClick". DoubleClick uses cookies to enable Google and its partner websites to display adverts based on users' visits to this website or other websites on the Internet.

We also integrate third-party adverts on the basis of the Google marketing service "AdSense". AdSense uses cookies to enable Google and its partner websites to display adverts based on users' visits to this website or other websites on the Internet.

Another Google marketing service we use is the "Google Tag Manager", which can be used to integrate other Google analysis and marketing services into our website (e.g. "AdWords", "DoubleClick" or "Google Analytics").

Further information on the use of data for marketing purposes by Google can be found on the overview page: https://www.google.com/policies/technologies/ads, Google's privacy policy is available at https://www.google.com/policies/privacy.

If you wish to object to the collection by Google marketing services, you can use the setting and opt-out options provided by Google: http://www.google.com/ads/preferences.

 

  1. Integration of third-party services and content

It may happen that content or services from third-party providers, such as city maps or fonts from other websites, are integrated into our online offering. The integration of content from third-party providers always requires the third-party providers to recognise the IP address of the user, as they would not be able to send the content to the user's browser without the IP address. The IP address is therefore required to display this content. Furthermore, the providers of third-party content can set their own cookies and process the user's data for their own purposes. User profiles can be created from the processed data. We will use this content in a data-saving and data-avoiding manner as far as possible and select reliable third-party providers with regard to data security.

The following presentation provides an overview of third-party providers and their content, together with links to their data protection declarations, which contain further information on the processing of data and, in some cases already mentioned here, options for objection (so-called opt-out):

- External fonts from Google, Inc, https://www.google.com/fonts ("Google Fonts"). Google Fonts are integrated by calling up a Google server (usually in the USA). Privacy policy: https://www.google.com/policies/privacy/, Opt-Out: https://www.google.com/settings/ads/.

- Booking platform "book-in Hotelsoftware" of the third-party provider book-in Hotelsoftware, Bahnhofstraße 429/3, 8970 Schladming, Austria. Privacy policy: https://www.book-in.at/datenschutz .

  1. Rights of users and deletion of data

Users have the right, upon request and free of charge, to receive information about the personal data that we have stored about them.
In addition, users have the right to correct incorrect data, revoke consent, block and delete their personal data as well as the right to lodge a complaint with the competent supervisory authority in the event of the assumption of unlawful data processing.

The data stored by us will be deleted as soon as it is no longer required for its intended purpose and the deletion does not conflict with any statutory retention obligations.

 

  1. Changes to the privacy policy

We reserve the right to amend the privacy policy in order to adapt it to changed legal situations or in the event of changes to the service and data processing. However, this only applies with regard to declarations on data processing. If user consent is required or components of the privacy policy contain provisions of the contractual relationship with the users, the changes will only be made with the consent of the users. Users are requested to inform themselves regularly about the content of the privacy policy.