Protecting your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the legal provisions (GDPR, TKG 2003). In this privacy policy, we inform you about the most important aspects of data processing on our website.
Information pursuant to Art 13 GDPR
Your personal data, in particular:
- Your master data (name, first name, address, email address, telephone and fax number, date of birth),
- Data in travel documents (passport number, passport data, date of birth, issuing authority, validity period, nationality) and IDs (identity card, driver's license, etc., including issuing authority and validity period),
- Data on payment method and payment-related information, particularly with debit cards, credit cards, and bank cards,
- The length of stay requested by you and related information that you provide to us, and
- Special categories of data such as health data and information about special needs, are required for our services. This also includes bookings for dining, transfers, ski passes, guest cards, and events.
This data is therefore stored and processed by us for these purposes and, where necessary, transmitted to third parties with whom we cooperate to provide the most effective and best possible service for our customers – this may include processors in third countries, software, and agency service providers.
The legal bases for these data processing operations are:
- The fulfillment of our pre-contractual and contractual obligations towards you,
- Consents obtained from you,
- Legal, contractual, or other legal obligations on our part (e.g. documentation rights and obligations under accounting, tax and customs law, contract law, reporting obligations, legal disputes) as well as § 96 TKG, and
- Our legitimate interests (e.g. improving our customer service, including in the area of direct marketing, or asserting our own legal interests).
The duration of storage depends on the duration of our business relationship, the consents you have given, and, beyond that, the legal retention and documentation obligations applicable to us. We emphasize that in the case of regular cooperation, we strive to know your customer wishes already communicated to us so well that we can continuously and permanently satisfy you in the best possible way.
Contact with us
If you contact us via the form on the website or by email, the data you provide will be stored by us for six months for the purpose of processing the request and in case of follow-up questions. We do not share this data without your consent.
Online booking
Online bookings are made via the booking platform of the Serfaus-Fiss-Ladis Tourism Association.
IT Security
When visiting this website, log files are also stored that contain the IP address and other data regarding access to the website (e.g. date, time, user agent, referer). Data processing is time-limited (maximum seven days) and only for protection against DDOS attacks or other interventions in the functionality of the website and any underlying database systems.
Information about Cookies
This website uses so-called cookies. These are small text files that are stored on your device with the help of the browser. They do not cause any damage.
This page uses so-called session cookies. These are generated when the website is accessed and automatically deleted again. They serve to recognize you if you return to the same website within a short period of time, to retain settings you have already made. No personal data is stored or processed.
Cookies are intended to make the website offering user-friendly. Some cookies remain stored on your device until you delete them. This allows the website operator to recognize your browser on your next visit. If you do not wish this, you can set your browser to inform you when cookies are set and to allow this only in individual cases. However, deactivating cookies may limit the functionality of the website.
Use of Google AdWords Conversion Tracking
This website uses the online advertising program "Google AdWords" and within the scope of Google AdWords, the conversion tracking. Google Conversion Tracking is an analytics service provided by Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). If you click on an ad placed by Google, a cookie for conversion tracking will be stored on your computer. These cookies expire after a maximum of 90 days. If you visit certain pages of our website and the cookie has not yet expired, Google and the website operator can recognize that you clicked on the ad and were redirected to this page. The information obtained using the conversion cookie is used to create conversion statistics. The website operator learns the total number of users who clicked on an ad and were redirected to a page tagged with a conversion tracking tag and/or performed various actions on the page. However, the website operator does not receive any information with which users can be personally identified. If you do not wish to participate in tracking, you can object to this use by preventing the installation of cookies through an appropriate setting of your browser software (opt-out option). You will then not be included in the conversion tracking statistics. Further information and Google’s privacy policy can be found at: http://www.google.com/policies/technologies/ads/, http://www.google.de/policies/privacy/
The relationship with the web analytics provider in the use of Google AdWords Conversion Tracking is based on commissioned data processing. The transmission of data to the processor is based on an adequacy decision by the European Commission (Privacy Shield self-certification). In addition, Google is obliged to regularly delete the data (currently every 39 months).
Social Media
If Facebook social plugins are used on this website, they are operated by Facebook Inc. (1 Hacker Way, Menlo Park, California 94025, USA). These integrations are identifiable by the Facebook logo or the terms "Like", "Share" in Facebook's colors (blue and white). Information on all Facebook plugins can be found at: https://developers.facebook.com/docs/plugins/
The plugins are only activated when you click on the corresponding buttons. As long as they are displayed greyed out, the plugins are inactive. You have the option to activate the plugins on each visit.
The plugins establish a direct connection between your browser and the Facebook servers. This only happens after the plugin has been activated. The website operator has no influence on the nature and extent of the data that the plugin transmits to the servers of Facebook Inc. Information can be found here: https://www.facebook.com/help/186325668085084
The plugin informs Facebook Inc. that you as a user have visited this website. There is the possibility that your IP address is stored. If you are logged into your Facebook account while visiting this website, this information will be linked to it.
Map
This website uses an interactive map from Dr. DSGVO. The map is operated locally. This solution is privacy-friendly. When retrieving and operating the map, no personal data is passed on to third parties. Furthermore, we do not collect any personal data beyond the technically necessary data for retrieving and operating the map. The map does not use cookies.
Web Analysis
This website uses Matomo. By using this website, you agree to the processing of data collected about you.
Legal basis for data processing:
Data on this website is processed solely on the basis of the legal provisions (GDPR, TKG 2003).
Data processing (webshop, product reviews, booking tool, and user account) is carried out based on Art 6 para. 1 lit. b) (contract performance purposes) GDPR.
In the case of the use of analysis tools, data is used on the basis of Art 6 para. 1 lit. f) (legitimate interest) GDPR. The legitimate interest in data use is the improvement of the website and the measurement of the success of online advertising.
The use of IT data security measures is also based on Art 6 para. 1 lit. f) (legitimate interest) GDPR. The legitimate interest is to protect our IT systems.
The use of social media plugins is only based on consent. The legal basis is therefore Art. 6 para. 1 lit. a) GDPR. Consent must be given again each time the website is accessed.
Your Rights
You generally have the rights to access, rectification, deletion, restriction, data portability, withdrawal, and objection. If you believe that the processing of your data violates data protection law or your data protection rights have otherwise been infringed, you can lodge a complaint with the supervisory authority. In Austria, this is the Data Protection Authority.
Contact Details:
Muaneshof
Familie Silvia Schranz
Muanes 1
6534 Serfaus · Tirol · Austria
T +43 0664 1460120;
hotel@astoria-serfaus.at
