Book now

Privacy policy

ORIENTATION GUIDE

Data protection is very important to us. That is why our privacy policy is very comprehensive. Of course, this is also to fully comply with the legal requirements. To help you find your way around, here is a summary of the individual sections so that you can quickly find the information you are looking for.

  1. Preamble – Our position on data protection and which websites it applies to
  2. Cookies – What are cookies and where we use them
  3. Log data – websites also collect information about your web accesses
  4. Location Info – systems store your location when you access our services
  5. Tracking tools – Re-marketing/re-targeting with Google Analytics and Facebook Pixel
  6. Social media plugins – What it means when you click on one of these buttons
  7. Data storage – Which of your data is stored, how, why, where and for how long
  8. Data transfer – Here you can read transparently who receives your data from us and why
  9. Contact – Information on how you can get in touch with us
  10. Data security – What we do to protect your data as much as possible
  11. Your rights – We take these very seriously, more on this in this section

1. PREAMBLE

With the following privacy policy, we would like to inform you about the type, scope and purpose of the collection, processing and use of personal data in the context of the use of the services provided by the VIVAT Touristik und Managementservice GmbH (hereinafter referred to as “Hotel Drei Raben“) and the services offered via the website.

Hotel Drei Raben your trust and the protection of your personal data is very important to us. We would therefore like to show you transparently how and for what purpose your data is used. We process your data exclusively on the basis of the current legal provisions in accordance with the EU General Data Protection Regulation (GDPR) and the Telecommunications Act (TKG 2003).

We work according to these principles when processing your personal data:

  • You only provide us with the data that is necessary for the respective service
  • Your data will only be stored for as long as is necessary for these services
  • We only use your data for the purposes that we have mutually agreed upon
  • We only share your data with third parties who are necessary for the operation of these services
  • Your data will only be transmitted and stored by us in encrypted form

This privacy policy applies to this website, its sub-domains and all future sub-domains of Hotel Drei Raben. By storing, processing and using personal data, we aim to provide you with a user-friendly, smooth, customer-oriented and secure service.

We will not use or share your information except as described in this Privacy Policy. By using the Service, you consent to the collection and use of information in accordance with this Privacy Policy. Unless otherwise defined in this Privacy Policy, terms used in this Privacy Policy have the same meanings as in our Terms and Conditions.

2. COOKIES

Hotel Drei Raben uses so-called cookies on this website. These are small pieces of text information that are stored on your end device with the help of the Internet browser. They do not cause any damage. Cookies make it possible to speed up navigation on our website, to adapt it to your needs and interests and to prevent misuse of the services. As soon as you reconnect to our website, our server can identify your device in this way so that you do not have to log in every time you visit our website, for example.

Hotel Drei Raben uses so-called session cookies, which are deleted as soon as you close your web browser because they only contain information that is required for the one visit to Hotel Drei Raben were necessary. In addition to session cookies, we also use so-called permanent cookies. These enable the service to maintain and offer you your personal settings or advertisements over a longer period of time (depending on the respective service). Permanent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete cookies at any time in the security settings of your browser.

You can configure your browser settings according to your wishes and also refuse to accept cookies. However, we would like to point out that you may then not be able to use all the functions of the website.

Our concern with regard to these cookies within the meaning of GDPR Art. 6 para. 1 lit. f is the legitimate interest on our part for the improvement of our offer and our overall website.

Use of script libraries (FontAwesome & Google Webfonts)

In order to display our content correctly and graphically appealing across browsers, we use script libraries and font libraries on this website, such as FontAwesome Web Fonts, which are provided by Fonticons, Inc. or Google Web Fonts (https://www.google.com/webfonts/). Google web fonts are transferred to your browser’s cache to avoid multiple loading. If the browser does not support Google Web Fonts or prevents access, content is displayed in a standard font.

Calling up script libraries or font libraries automatically triggers a connection to the library operator. It is theoretically possible – although it is currently unclear whether and for what purposes – that operators of such libraries collect data.

The privacy policy of the library operator Google can be found here: https://www.google.com/policies/privacy/

Further information about Font Awesome can be found at https:// fontawesome.com/help and in the privacy policy of Fonticons, Inc: https://fontawesome.com/privacy.

3. LOG DATA

We may also collect information that your browser sends when you visit our Service or when you access the Service from a mobile device (“Log Data”).

This log data may include information such as browser type, browser version, device IP address, the pages you visit on our Services, the time and date of your visit, and the time spent on those pages and other statistics.

When you access the Service from or through a mobile device, this Log Data may include information such as the type of mobile device used, the mobile device’s unique ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser and other statistics.

4. LOCATION INFORMATION

We may use and store information about your location if you allow us to do so in your device settings. We use this information to provide features to improve and customize our Service. You can enable or disable location services at any time through your mobile device settings when you use our Service.

5. RE-MARKETING/RE-TARGETING THROUGH TRACKING TOOLS

We use tracking tools on our websites to measure user behavior on our websites in order to better understand and further develop our offers in a customer-oriented manner. This also enables us to target advertisements in the online area. This is done in accordance with GDPR Art. 6 para. 1 lit. f (for our legitimate interest).

For this purpose, we have installed a so-called “cookie banner” on all our websites, by means of which you can give us your consent (GDPR Art. 6 para. 1 lit. a) or, of course, refuse this. You can change this decision at any time by clicking on the link “Revoke cookie decision” (in the browser window at the bottom right).

Google Analytics

On our websites we use Google Analytics, a web analytics service provided by Google Inc (“Google”). Google Analytics also uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of our websites is usually transmitted to a Google server in the USA and stored there. However, by activating IP anonymization, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

Google will use this information on our behalf to evaluate your use of our websites, to compile reports on website activity and to provide us with other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

You can also prevent Google from collecting the data generated by the cookie and relating to your use of our website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available under the following link for deactivation: https://tools.google.com/dlpage/gaoptout?hl=de

We have also concluded a corresponding contract with Google for commissioned data processing. You can find more information on Google Analytics’ data protection compliance here: http://www.google.com/intl/de /analytics/privacyoverview.html

Facebook “Custom Audience”

Remarketing tags from Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA are integrated on our pages. When you visit our pages, a direct connection is established between your browser and the Facebook server via the remarketing tags. Facebook receives the information that you have visited our site with your IP address. This allows Facebook to associate your visit to our site with your user account.

We can use the information obtained in this way to display Facebook Ads. We would like to point out that, as the provider of the websites, we have no knowledge of the content of the transmitted data or its use by Facebook. Further information on this can be found in Facebook’s privacy policy at https://www.facebook.com/about/privacy/

If you do not wish data to be collected via Custom Audience, you can use Custom Audiences deactivate here.

“Facebook pixel”

With your consent via our cookie banner on all our websites, we use the “visitor action pixel” of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA within our website. With its help, we can track the actions of users after they have seen or clicked on a Facebook ad. This allows us to record the effectiveness of our Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, i.e. we do not see the personal data of individual users. However, this data is stored and processed by Facebook, and we will inform you of this to the best of our knowledge. Facebook can link this data to your Facebook account and also use it for its own advertising purposes in accordance with Facebook’s privacy policy https://www.facebook.com/about/privacy/. You can enable Facebook and its partners to place advertisements on and outside of Facebook. A cookie is stored on your computer for these purposes.

If you do not have a Facebook account, you can deactivate usage-based advertising from Facebook on the website of the European Interactive Digital Advertising Alliance: http://www.youronlinechoices.com/de/ preference-management/

6. USE OF PLUGINS (ICONS) FROM FACEBOOK, INSTAGRAM AND LINKEDIN ON OUR WEBSITES

Social plugins (“plugins”) from the social networks Facebook, Instagram, YouTube and LinkedIn are used on our website. Our concern in terms of the GDPR (legitimate interest) is the improvement of our offer and our overall web presence, the expansion of our community (followers) and for advertising purposes.

Facebook and Instagram are operated by Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA. An overview of the Facebook and Instagram plugins and their appearance can be found here:

https://developers.facebook.com/docs/plugins

https://www.instagram.com/developer/embedding/

LinkedIn is operated by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. An overview of the Twitter buttons and their appearance can be found here:
https://developer.linkedin.com/plugins

When you access a page on our website that contains such a plugin, your browser establishes a direct connection to the Facebook, Instagram or LinkedIn servers. The content of the plugin is transmitted directly to your browser by the respective provider and integrated into the page. By integrating the plugins, the providers receive the information that your browser has accessed the corresponding page of our website, even if you do not have a profile or are not currently logged in. This information (including your IP address) is transmitted directly from your browser to a server of the respective provider and stored there.

If you are logged in to one of the services, the providers can directly associate your visit to our website with your profile on Facebook, Instagram or LinkedIn. If you interact with the plugins, for example by clicking the Facebook “Like” button, the corresponding information is also transmitted directly to a server of the provider and stored there. The information may also be published on the social network with your consent and displayed to your contacts there.

The purpose and scope of the data collection and the further processing and use of the data by the providers as well as your rights in this regard and setting options to protect your privacy can be found in the providers’ data protection notices.

Data protection information from Facebook: https://www.facebook.com/about/privacy/

Data protection information from Instagram: https://help.instagram.com/155833707900388

Data protection information from LinkedIn: https://www.linkedin.com/legal/privacy-policy?_l=de_DE

If you do not want Facebook, Instagram or LinkedIn to assign the data collected via our website directly to your profile in the respective service, you must log out of the respective service before visiting our website. You can also completely prevent the plugins from loading with add-ons for your browser, e.g. with the script blocker “NoScript”(http://noscript.net/).

7. DATA STORAGE

The data you provide (name, address, e-mail address, telephone number for contacting you if necessary, names of employees and their e-mail addresses) are required to fulfill the contract or to carry out pre-contractual measures. Without this data, we cannot conclude or implement the contract with you. We endeavor to update this data regularly with our customers and to correct it if necessary. If a contract is concluded for consulting services or software development, all data from the contractual relationship will be stored until the expiry of the retention period under tax law (7 years), at the latest after the end of the cooperation. Data processing is carried out on the basis of the legal provisions of §96 para. 3 TKG and Art. 6 para. 1 lit. a (your consent) and/or lit. b (necessary for contract fulfillment) of the GDPR.

8. TRANSFER OF PERSONAL DATA TO THIRD PARTIES FOR THIS PURPOSE

We use third-party companies to provide our services, to perform service-related services within the framework of concluded contracts or to support us in analyzing how our service is used.

These third parties only have access to your personal data in order to carry out these tasks on our behalf and are obliged not to disclose or use it for other purposes. We have concluded corresponding data processing agreements with all third-party providers. In this way, we want to ensure that these data processors are also fully committed to the applicable legal provisions on data protection (GDPR).

We store personal data (names, job titles in the company, address, telephone number, e-mail address) for the fulfillment of contractual agreements and for customer support.

For this data storage, we use the Microsoft Office 365 Business software environment (MS Outlook, MS Office, MS Skype for Business, MS OneDrive cloud services) from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

9. CONTACT

On our website, you have the option of using our contact form to contact us personally. This requires at least the entry of your name and e-mail address. Data processing is carried out on the basis of the legal provisions of §96 para. 3 TKG and Art. 6 para. 1 lit. a (your consent) of the GDPR.

The personal data you provide here will be used to contact you directly. In the event of a business relationship arising from your inquiry, we will store your data for the duration of the relationship, otherwise this data will be deleted after 12 months. During this period, we will take the liberty of contacting you about our products to the usual business extent.

Google reCaptcha v3

We use “Google reCAPTCHA” (hereinafter referred to as “reCAPTCHA”) on our websites. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). For the European area, the company Google Ireland Limited, Gordon House, Barrow Street Dublin 4, Ireland, is responsible for all Google services.

The purpose of reCAPTCHA is to check whether data is entered on our websites (e.g. in a contact form) by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. With the new Invisible reCAPTCHA version used on this website, you do not have to take any action (e.g. solve a puzzle, check a box). The tool runs in the background and calculates a so-called captcha score from user actions. This score calculates the probability that you are human. Website visitors are not informed that an analysis is taking place.

This analysis begins automatically as soon as the website visitor visits the website and accepts the use of cookies in the cookie consent banner. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent on the website by the website visitor or mouse movements made by the user). The data collected during the analysis is forwarded to Google. IP addresses are almost always truncated within the member states of the EU before the data is sent to a server in the USA. The IP address is not combined with other Google data unless you are logged into your Google account while using the reCAPTCHA plugin. Then this data will be combined. If you do not want any data about you and your behavior to be transmitted to Google, you must log out of Google completely and delete all Google cookies. In general, the data is transmitted to Google as soon as you have given your consent in the cookie consent (query when accessing our website). To delete this data again, please contact Google Support at https://support.google.com/?hl=de&tid=331634192512

Data processing is carried out on the basis of Art. 6 para. 1 lit. f (legitimate interest) of the GDPR. The website operator has a legitimate interest in protecting its website from abusive automated spying and SPAM.

If you have consented to the use of Google reCAPTCHA, the data processing is also carried out on the basis of Art. 6 para. 1 lit. a (your consent) of the GDPR.

Further information about Google reCAPTCHA and Google’s privacy policy can be found in the following links:
https://www.google.com/intl/de/policies/privacy/
and https://www.google.com/recaptcha/intro/android.html .

10. DATA SECURITY

Data protection and children

Our Service is not directed to persons under the age of 14 (“Children”). We do not knowingly or intentionally collect Personal Data from children under the age of 14. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we are aware that we have collected personal information from children under the age of 14 without the consent of their legal guardians, we take steps to remove that information from our servers.

Technical and organizational measures for data security

The security of your Personal Information is very important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security.

We take these technical and organizational measures to ensure the security of your personal data:

  • Different passwords for all software tools
  • Virus protection for all IT hardware used
  • SSL encryption for secure data transmission
  • Firewall for our internal company network
  • Regular training on data security and protection for all employees
  • Regular updates of all software components
  • Regular data backups to ensure availability
  • Regular risk analyses of the corresponding IT systems

11. WE ARE HAPPY TO BE THERE FOR YOU TO FULFILL YOUR RIGHTS

You can contact us at any time if you have any questions about our data protection precautions or if you would like your profile and all personal data stored about you to be deleted or corrected. You also have the right to free information about your stored data at any time, as well as the right to restriction, data transfer of your data and to revocation or objection. If a third party has registered with us using your e-mail address, please inform us accordingly and we will delete your profile immediately if you so wish.

If you believe that the processing of your data violates data protection law or your data protection rights have been violated in any other way, you can bring this to the attention of the supervisory authority in the form of a complaint. In Austria, this is the Austrian Data Protection Authority, Wickenburggasse 8, 1080 Vienna, telephone: +43 1 52 152-0, e-mail: dsb@dsb.gv.at

As we continue to develop our services and implement new technologies, ITPM.CC reserves the right to update this privacy policy on an ongoing basis. We therefore recommend that you revisit and read this Privacy Policy from time to time.

If you have any questions about data protection, simply send us an e-mail: dreiraben@vivat.at, write to us at the postal address given in the preamble or call us at +43 316 71 26 86 in person.

Data protection is important to us!

With best regards

VIVAT Touristik und Managementservice GmbH