Privacy Policy
We have drafted this Privacy Policy (Version 19.11.2019-211107253) to explain to you in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679 and the Data Protection Act (DSG) what information we collect, how we use data, and what choices you as a visitor to this website have.
Storage of Personal Data
Personal data that you electronically transmit to us on this website, such as your name, email address, address, or other personal information in the context of submitting a form or commenting on the blog, will be used by us only for the purpose stated at the time, stored securely along with the timestamp and IP address, and not passed on to third parties.
We use your personal data only for communication with those visitors who expressly wish to be contacted and for the processing of services and products offered on this website. We do not disclose your personal data without consent, but we cannot rule out the possibility of these data being viewed in the event of unlawful behavior.
If you send us personal data by email - thus outside of this website - we cannot guarantee secure transmission and protection of your data. We recommend that you never transmit confidential data unencrypted by email.
Why do you collect personal data from your guests?
Enabling and executing the guest's booking; Conducting the guest's stay; Tailoring the stay to the guest's wishes and interests; The possibility of offering services in accordance with the guest's interests in the future; Marketing related to the hotel's services and improving the hotel's services.
Visitor Behavior Analysis
In the following Privacy Policy, we inform you about whether and how we analyze data from your visit to this website. The analysis of the collected data is usually anonymous, and we cannot infer your identity from your behavior on this website. For more information on how to object to the analysis of visitor data, please refer to the following Privacy Policy.
TLS Encryption with https
We use https to transmit data securely over the Internet (data protection through technology design Article 25 paragraph 1 GDPR). Through the use of TLS (Transport Layer Security), an encryption protocol for secure data transmission over the Internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission security by the small padlock symbol in the upper left corner of the browser and the use of the https scheme (instead of http) as part of our Internet address.
Google Analytics Privacy Policy
We use Google Analytics from Google LLC (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on this website to statistically analyze visitor data. Google Analytics uses target-oriented cookies.
Google Analytics Cookies _ga Expiration: 2 years Usage: Distinguishing website visitors Example value: GA1.2.1326744211.152211107253
_gid Expiration: 24 hours Usage: Distinguishing website visitors Example value: GA1.2.1687193234.152211107253
gat_gtag_UA Expiration: 1 minute Usage: Used to throttle request rate. If Google Analytics is provided via Google Tag Manager, this cookie is named dc_gtm. Example value: 1
For more information on terms of use and privacy, please visit http://www.google.com/analytics/terms/de.html or https://support.google.com/analytics/answer/6004245?hl=de.
Pseudonymization
Our aim in accordance with the GDPR is to improve our offerings and our web presence. Since the privacy of our users is important to us, user data is pseudonymized. Data processing is based on the legal provisions of § 96 para. 3 TKG as well as Art. 6 EU-DSGVO para. 1 lit a (consent) and/or f (legitimate interest) of the GDPR.
Disabling Data Collection by Google Analytics
Using the browser add-on to disable Google Analytics JavaScript (ga.js, analytics.js, dc.js), website visitors can prevent Google Analytics from using their data.
You can prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=de
Google Analytics Data Processing Amendment
We have concluded a direct customer contract with Google for the use of Google Analytics by accepting the "Data Processing Amendment" in Google Analytics.
For more information about the Data Processing Amendment for Google Analytics, please visit: https://support.google.com/analytics/answer/3379636?hl=de&utm_id=ad
We have enabled the advertising reporting features in Google Analytics. The reports on demographic characteristics and interests include information about age, gender, and interests. This allows us to create a better picture of our users without being able to identify individual people based on this data. For more information about the advertising features, please visit: https://support.google.com/analytics/answer/3450482?hl=de_AT&utm_id=ad.
You can end the use of activities and information from your Google account under "Ad settings" at https://adssettings.google.com/authenticated by checking the checkbox.
Embedded Social Media Elements Privacy Policy
We embed elements of social media services on our website to display images, videos, and text. By visiting pages that display these elements, data is transferred from your browser to the respective social media service and stored there. We do not have access to this data. The following links will take you to the pages of the respective social media services where you can find out how they handle your data:
Instagram Privacy Policy: https://help.instagram.com/519522125107875 For YouTube, the Google Privacy Policy applies: https://policies.google.com/privacy?hl=de Facebook Data Policy: https://www.facebook.com/about/privacy Twitter Privacy Policy: https://twitter.com/de/privacy Facebook Privacy Policy
We use selected Facebook tools from Facebook on our website. Facebook is a social media network operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. With the help of these tools, we can offer the best possible range of products and services to you and people who are interested in our products and services. In the following, we will give you an overview of the various Facebook tools, the data sent to Facebook, and how you can delete this data.
What are Facebook tools? Among other things, Facebook offers the so-called "Facebook Business Tools." This is the official name of Facebook's tools. However, since the term is hardly known, we have decided to simply call them Facebook tools. These include:
Facebook Pixel Social plugins (such as the "Like" or "Share" button) Facebook Login Account Kit APIs (Application Programming Interfaces) SDKs (Collection of programming tools) Platform integrations Plugins Codes Specifications Documentation Technologies and services
These tools enable Facebook to provide services and have the ability to obtain information about user activities outside of Facebook.
Why do we use Facebook tools on our website?
We use Facebook tools on our website to display our services and products only to people who are genuinely interested in them. With the help of advertisements (Facebook Ads), we can reach precisely those individuals. To show users relevant ads, Facebook requires information about people's desires and needs. This involves providing Facebook with information about user behavior (and contact details) on our website. This allows Facebook to gather better user data and display suitable advertisements for our products or services to interested individuals. These tools enable tailored advertising campaigns on Facebook.
Facebook refers to data about your behavior on our website as "event data." These data are also used for measurement and analysis services. Facebook can create "campaign reports" about the effectiveness of our advertising campaigns on our behalf. Additionally, through analyses, we gain better insights into how you use our services, website, or products. This optimization of user experience on our website is achieved using some of these tools. For example, you can directly share content from our site to Facebook using social plug-ins.
What data is stored by Facebook tools?
By using individual Facebook tools, personal data (customer data) can be sent to Facebook. Depending on the tools used, customer data such as name, address, phone number, and IP address may be transmitted.
Facebook uses this information to match the data with its own data it has from you (if you are a Facebook member). Before customer data is transmitted to Facebook, a process called "hashing" is performed. This means that a data set is transformed into a string of characters. This also serves to encrypt the data. In addition to contact details, "event data" is also transmitted. "Event data" refers to the information we receive about you on our website. For example, which subpages you visit or which products you purchase from us. Facebook does not share the received information with third parties (such as advertisers) unless the company has explicit permission or is legally obligated to do so. "Event data" can also be linked to contact details. This enables Facebook to offer better personalized advertising. After the aforementioned matching process, Facebook deletes the contact details.
To optimize the delivery of advertisements, Facebook uses event data only when it has been combined with other data collected by Facebook through other means. Facebook also uses these event data for security, protection, development, and research purposes. Many of these data are transferred to Facebook through cookies. Cookies are small text files used to store data or information in browsers. Depending on the tools used and whether you are a Facebook member, different numbers of cookies will be placed in your browser. The descriptions of each Facebook tool provide more details about individual Facebook cookies. You can also find general information about the use of Facebook cookies at https://www.facebook.com/policies/cookies.
How long and where are the data stored?
In general, Facebook stores data until it is no longer needed for its own services and products. Facebook has servers distributed worldwide where your data is stored. However, customer data is deleted within 48 hours after being matched with Facebook's own user data.
How can I delete my data or prevent data storage?
According to the General Data Protection Regulation (GDPR), you have the right to access, rectify, transfer, and delete your data. Complete deletion of data will only occur if you completely delete your Facebook account. Here's how to delete your Facebook account:
The storage of data that Facebook receives from our site is also done through cookies (e.g., social plugins). In your browser, you can disable, delete, or manage individual or all cookies. Depending on the browser you use, this works in different ways. The following instructions show you how to manage cookies in your browser:
Chrome: Delete, enable, and manage cookies in Chrome
Safari: Manage cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have placed on your computer
Internet Explorer: Delete and manage cookies
Microsoft Edge: Delete and manage cookies
Facebook is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. You can find more information about this at www.privacyshield.gov/participant. We hope we have provided you with the most important information about the use and data processing by Facebook tools. If you want to learn more about how Facebook uses your data, we recommend checking the data policies at www.facebook.com/about/privacy/update.
Instagram Privacy Policy
We have integrated Instagram features on our website. Instagram is a social media platform operated by Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA. Since 2012, Instagram has been a subsidiary of Facebook Inc. and is part of the Facebook products. Embedding Instagram content on our website is referred to as embedding. This allows us to display content such as buttons, photos, or videos from Instagram directly on our website. When you visit pages on our website that have integrated Instagram features, data is transmitted, stored, and processed by Instagram. Instagram uses the same systems and technologies as Facebook. Your data is therefore processed across all Facebook companies.
In the following, we will give you a more detailed insight into why Instagram collects data, what data is involved, and how you can largely control data processing. Since Instagram is a subsidiary of Facebook Inc., we obtain our information from both Instagram policies and Facebook data policies.
What is Instagram?
Instagram is one of the most well-known social media networks worldwide. Instagram combines the benefits of a blog with the advantages of audiovisual platforms like YouTube or Vimeo. On "Insta" (as many users casually call it), you can upload photos and short videos, edit them with various filters, and share them on other social networks. And if you prefer not to be active yourself, you can also follow interesting users.
Why do we use Instagram on our website?
Instagram is a social media platform that has seen significant growth in recent years. Naturally, we have responded to this boom. We want you to feel as comfortable as possible on our website. Therefore, it is only natural for us to present our content in a varied manner. Through embedded Instagram features, we can enrich our content with helpful, fun, or exciting content from the Instagram world. Since Instagram is a subsidiary of Facebook, the collected data can also be used for personalized advertising on Facebook. This way, our advertisements are shown only to people who are genuinely interested in our products or services.
Instagram also uses the collected data for measurement and analysis purposes. We receive summarized statistics and gain more insight into your preferences and interests. It is important to note that these reports do not personally identify you.
What data is stored by Instagram?
When you encounter a page on our website that has integrated Instagram features (such as Instagram images or plug-ins), your browser automatically connects to Instagram's servers. Data is transmitted, stored, and processed by Instagram and Google as a result. This occurs regardless of whether you have an Instagram account or not. This includes information about our website, your computer, purchases you have made, ads you have seen, and how you use our offerings. Additionally, the date and time of your interaction with Instagram are also stored. If you have an Instagram account or are logged in, Instagram stores even more data about you.
Facebook distinguishes between customer data and event data. We assume that this is also the case with Instagram. Customer data includes information such as name, address, phone number, and IP address. This customer data is only transmitted to Instagram after it has been "hashed." Hashing refers to the process of transforming a data set into a string of characters, which allows the encryption of contact details. The aforementioned "event data" is also transmitted. "Event data" refers to data about your user behavior, according to Facebook, and consequently Instagram. It may also happen that contact details are combined with event data. The collected contact data is matched with the data that Instagram already has about you.
Through small text files (cookies), which are mostly set in your browser, the collected data is transmitted to Instagram. Depending on the Instagram features used and whether you have an Instagram account, varying amounts of data are stored.
We assume that data processing works the same way on Instagram as it does on Facebook. This means that if you have an Instagram account or have visited www.instagram.com, Instagram has likely set at least one cookie. If that is the case, your browser sends information to Instagram via the cookie whenever you interact with an Instagram feature. These data will be deleted or anonymized no later than 90 days after being matched. Although we have extensively examined Instagram's data processing, we cannot say exactly which data Instagram collects and stores.
The following are cookies that are set in your browser at a minimum when you click on an Instagram feature (such as a button or an Insta image). In our test, we assume that you do not have an Instagram account. If you are logged into Instagram, more cookies will naturally be set in your browser.
These cookies were used in our test:
Name: csrftoken Value: "" Purpose: This cookie is most likely set for security reasons to prevent forgery of requests. However, we could not ascertain this with certainty. Expiration: after one year
Name: mid Value: "" Purpose: Instagram sets this cookie to optimize its own services and offerings both within and outside Instagram. The cookie assigns a unique user ID. Expiration: after the end of the session
Name: fbsr_211107253124024 Value: no information Purpose: This cookie stores the login request for users of the Instagram app. Expiration: after the end of the session
Name: rur Value: ATN Purpose: This is an Instagram cookie that ensures functionality on Instagram. Expiration: after the end of the session
Name: urlgen Value: "{“194.96.75.33”: 1901}:1iEtYv:Y833k2_UjKvXgYe211107253" Purpose: This cookie serves Instagram's marketing purposes. Expiration: after the end of the session
Note: We cannot claim completeness here. The cookies set in individual cases depend on the embedded features and your use of Instagram.
How long and where are the data stored?
Instagram shares the received information among Facebook companies, external partners, and people worldwide with whom you connect. Data processing is carried out in compliance with its own data policy. For security reasons, among others, your data is distributed on Facebook's servers around the world. Most of these servers are located in the United States.
How can I delete my data or prevent data storage?
Thanks to the General Data Protection Regulation, you have the right to access, transfer, rectify, and delete your data. You can manage your data in Instagram settings. If you want to completely delete your data on Instagram, you must permanently delete your Instagram account.
Here's how to delete your Instagram account:
First, open the Instagram app. On your profile page, scroll down and click on "Help Center." This will take you to the company's website. On the website, click on "Managing Your Account" and then on "Delete Your Account."
When you delete your account entirely, Instagram will delete posts such as your photos and status updates. Information shared by other people about you is not part of your account and will not be deleted.
As mentioned above, Instagram primarily stores your data through cookies. You can manage, disable, or delete these cookies in your browser. Depending on your browser, managing cookies works slightly differently. Here are instructions for the main browsers:
Chrome: Delete, enable, and manage cookies in Chrome
Safari: Manage cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have placed on your computer
Internet Explorer: Delete and manage cookies
Microsoft Edge: Delete and manage cookies
Instagram is a subsidiary of Facebook Inc., and Facebook is an active participant in the EU-U.S. Privacy Shield Framework. This framework ensures correct data transfer between the United States and the European Union. You can find out more about this at https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG. We have tried to provide you with the most important information about data processing by Instagram. You can find more details about Instagram's data policies at https://help.instagram.com/519522125107875.
YouTube Privacy Policy
We have embedded YouTube videos on our website to present interesting videos directly to you on our site. YouTube is a video platform that has been a subsidiary of Google LLC since 2006. The video platform is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you access a page on our website that has an embedded YouTube video, your browser automatically connects to YouTube's servers, which may transmit various data, depending on your settings. Google is responsible for the entire data processing, and Google's privacy policy applies.
We would like to explain to you in more detail the data that is processed, why we have embedded YouTube videos, and how you can manage or delete your data.
What is YouTube?
On YouTube, users can watch, rate, comment on, and upload videos for free. Over the past years, YouTube has become one of the most important social media channels worldwide. In order to display videos on our website, YouTube provides a code snippet that we have integrated into our site.
Why do we use YouTube videos on our website?
YouTube is the video platform with the most visitors and the best content. We strive to provide you with the best possible user experience on our website, and of course, interesting videos are a crucial part of that. Through our embedded videos, we offer you additional helpful content alongside our text and images. Furthermore, our website is more easily discoverable on the Google search engine through these embedded videos. Even when we run Google Ads advertisements, Google can use the collected data to show these ads only to people who are genuinely interested in our offerings.
What data is stored by YouTube?
As soon as you visit one of our pages that has a YouTube video embedded, YouTube sets at least one cookie that stores your IP address and our URL. If you are logged into your YouTube account, YouTube can usually assign your interactions on our website to your profile using cookies. This includes data such as session duration, bounce rate, approximate location, technical information such as browser type, screen resolution or your internet provider. Other data may include contact details, any ratings, sharing content via social media or adding to your favorites on YouTube.
If you are not logged into a Google account or a YouTube account, Google stores data with a unique identifier associated with your device, browser, or app. For example, your preferred language setting is retained. But a lot of interaction data can't be stored because fewer cookies are set.
In the following list, we show cookies that were set in a test in the browser. On the one hand, we show cookies that are set without a YouTube account logged in. On the other hand, we show cookies that are set with a logged-in account. The list cannot claim to be complete, because the user data always depends on the interactions on YouTube.
Name: YSC
Value: b9-CV6ojI5Y
Purpose: This cookie registers a unique ID to store statistics of the video watched.
Expiration date: after session end
Name: PREF
Value: f1=50000000
Purpose: This cookie also registers your unique ID. Google gets statistics about how you use YouTube videos on our website through PREF.
Expiration date: after 8 months
Name: GPS
Value: 1
Purpose: This cookie registers your unique ID on mobile devices to track GPS location.
Expiration date: after 30 minutes
Name: VISITOR_INFO1_LIVE
Value: 95Chz8bagyU
Purpose: This cookie tries to estimate the user's bandwidth on our web pages (with embedded YouTube video).
Expiration date: after 8 months
Other cookies set when you are logged in with your YouTube account:
Name: APISID
Wert: zILlvClZSkqGsSwI/AU1aZI6HY7211107253-
Purpose: This cookie is used to create a profile about your interests. Used for personalized advertisements.
Expiration date: after 2 years
Name: CONSENT
Value: YES+AT.en+20150628-20-0
Purpose: The cookie stores the status of a user's consent to use various Google services. CONSENT is also used for security purposes to verify users and protect user data from unauthorized attacks.
Expiration date: after 19 years
Name: HSID
Value: AcRwpgUik9Dveht0I
Purpose: This cookie is used to create a profile about your interests. This data helps to display personalized advertising.
Expiration date: after 2 years
Name: LOGIN_INFO
Value: AFmmF2swRQIhALl6aL...
Purpose: This cookie stores information about your login details.
Expiration date: after 2 years
Name: SAPISID
Value: 7oaPxoG-pZsJuuF5/AnUdDUIsJ9iJz2vdM
Purpose: This cookie works by uniquely identifying your browser and device. It is used to create a profile about your interests.
Expiration date: after 2 years
Name: SID
Value: oQfNKjAsI211107253-.
Purpose: This cookie stores your Google account ID and your last login time in digitally signed and encrypted form.
Expiration date: after 2 years
Name: SIDCC
Value: AN0-TYuqub2JOcDTyL
Purpose: This cookie stores information about how you use the website and what advertisements you may have seen before visiting our site.
Expiration date: after 3 months
How long and where is the data stored?
The data that YouTube receives from you and processes is stored on Google servers. Most of these servers are located in America. You can see exactly where Google data centers are located at https://www.google.com/about/datacenters/inside/locations/?hl=de. Your data is distributed across the servers. Thus, the data can be retrieved more quickly and is better protected against manipulation.
Google stores the collected data for different lengths of time. Some data you can delete at any time, others are automatically deleted after a limited time, and still others are stored by Google for a longer period of time. Some data (such as items from "My Activity", photos or documents, products) stored in your Google Account will remain stored until you delete it. Even if you are not signed into a Google Account, you can delete some data associated with your device, browser, or app.
How can I delete my data or prevent data storage?
Basically, you can delete data in Google Account manually. With the automatic deletion feature of location and activity data introduced in 2019, information will be stored depending on your decision - either 3 or 18 months and then deleted.
Whether you have a Google account or not, you can configure your browser to delete or disable cookies from Google. Depending on which browser you use, this works in different ways. The following instructions show how to manage cookies in your browser:
Chrome: Delete, enable and manage cookies in Chrome.
Safari: Manage cookies and website data with Safari.
Firefox: Delete cookies to remove data that websites have placed on your computer
Internet Explorer: delete and manage cookies
Microsoft Edge: delete and manage cookies
If you generally don't want cookies, you can set your browser to notify you whenever a cookie is about to be set. This way, you can decide for each individual cookie whether you allow it or not. Since YouTube is a subsidiary of Google, there is a common privacy policy. If you want to learn more about how your data is handled, we recommend the privacy policy at https://policies.google.com/privacy?hl=de.
Cookies
Our website uses HTTP cookies to store user-specific data.
Below we explain what cookies are and why they are used so that you can better understand the following privacy policy.
What exactly are cookies?
Whenever you browse the Internet, you use a browser. Popular browsers include Chrome, Safari, Firefox, Internet Explorer, and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.
One thing can't be denied: Cookies are really useful little helpers. Almost all websites use cookies. More precisely, they are HTTP cookies, as there are other cookies for other applications. HTTP cookies are small files that are stored on your computer by our website. These cookie files are automatically placed in the cookie folder, effectively the "brain" of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.
Cookies store certain user data about you, such as language or personal page settings. When you return to our site, your browser transmits the "user-related" information back to our site. Thanks to cookies, our site knows who you are and offers you the setting you are used to.
In some browsers, each cookie has its own file; in others, such as Firefox, all cookies are stored in a single file.
There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie must be evaluated individually, as each cookie stores different data. Also, the expiration time of a cookie varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans or other "pests". Cookies also cannot access information on your PC.
For example, cookie data may look like this
Name: _ga
Value: GA1.2.1326744211.152211107253 Purpose: to distinguish website visitors
Expiration date: after 2 years
A browser should be able to support these minimum sizes
At least 4096 bytes per cookie
At least 50 cookies per domain
At least 3000 cookies in total
What types of cookies are there?
The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the privacy policy. At this point, we would like to briefly discuss the different types of HTTP cookies.
We can distinguish 4 types of cookies:
Essential cookies.
These cookies are necessary to ensure basic functions of the website. For example, these cookies are needed when a user adds a product to the shopping cart, then continues browsing on other pages, and only later goes to the checkout. These cookies do not delete the shopping cart even if the user closes his browser window.
Purpose cookies
These cookies collect information about user behavior and whether the user receives any error messages. In addition, these cookies are also used to measure the loading time and the behavior of the website with different browsers.
Target-oriented cookies
These cookies provide a better user experience. For example, entered locations, font sizes or form data are stored.
Advertising cookies
These cookies are also called targeting cookies. They are used to deliver customized advertising to the user. This can be very convenient, but also very annoying.
Usually, when you visit a website for the first time, you are asked which of these cookie types you want to allow. And of course, this decision is also stored in a cookie.
How can I delete cookies?
How and whether you want to use cookies is up to you. Regardless of which service or website the cookies come from, you always have the option to delete, disable or only partially allow cookies. For example, you can block third-party cookies but allow all other cookies.
If you want to find out which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find it in your browser settings:
Chrome: Delete, enable and manage cookies in Chrome.
Safari: Manage cookies and website data with Safari.
Firefox: Delete cookies to remove data that websites have placed on your computer.
Internet Explorer: delete and manage cookies
Microsoft Edge: delete and manage cookies
If you generally don't want cookies, you can set your browser to notify you whenever a cookie is about to be set. This way, you can decide for each individual cookie whether or not to allow it. The procedure varies depending on the browser. It is best to search for the instructions in Google using the search term "delete cookies Chrome" or "disable cookies Chrome" in the case of a Chrome browser.
What about my privacy?
Since 2009, there are the so-called "Cookie Guidelines". In it, it is stated that the storage of cookies requires the consent of the from you. Within the EU countries, however, there are still very different reactions to these directives. In Austria, however, this directive was implemented in Section 96 (3) of the Telecommunications Act (TKG).
If you want to know more about cookies and are not afraid of technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called "HTTP State Management Mechanism".
Facebook Pixel Privacy Policy