Data Privacy Statement

Personal data (in the following mostly called 'data') is processed by us only if necessary and to provide an operative and user-friendly internet presence, including all content and the offered services.

According to Article 4, paragraph 1 of the General Data Protection Regulation (GDPR) (EU) 2016/679 (in the following only called „GDPR“) „processing“ means any operation or set of operations which is performed on personal data – wether by automated methods or not – such as collecting, recording, organising, sequencing, storage, adaptation or transformation, retrieval, consultation, use, disclosure by transmission, dispersion or other means of making available, alignment or combination, restriction, erasure or destruction.

With the following data privacy statement, we inform you especially about the manner, scope, purpose, duration and legal basis of our processing of personal data, insofar as we decide – wether alone or together with other parties – on the purposes and means of the processing.

In the following we also inform you about the third-party components we use to optimize our services and to increase the quality for our users, insofar as those third parties process data on their own responsibility

Our data privacy statement is structured as follows:

I. Information about us as the responsible party
II. Rights of users and affected persons
III. Information about data processing

    I. Information about us as the responsible party

    Responsible provider of this internet presence for reasons of data protection:

    Christa Barth
    Hinterer Holzweg 46
    73733 Esslingen a.N.
    Deutschland

    Phone: 0711 / 32 45 61
    Fax: 0711 / 3290110
    Mail: info@ferienhaus-griechenland.net

    Data controller at the provider:
    Christa Barth

    II. Rights of users and affected persons

    With regard to the data processing – which will be described in more detail in the following - the users and affected persons have the right to

    - receive confirmation as to whether or not personal data concerning them is being processed, receive information about the processed data, receive further information about the data processing and copies of the data (also compare Article 15 GDPR)
    - rectify or complete inaccurate or incomplete data (also compare Article 16 GDPR)
    - immediate erasure of personal data concerning them (also compare Article 17 GDPR) or, alternatively, insofar as further processing according to Article 17 paragraph 3 GDPR is necessary, the right to restrict the processing in accordance to Article 18 GDPR
    - to receive the personal data concerning them and provided by them and the right to transmit this data to another provider/responsible party (also compare Article 20 GDPR)
    - To file a complaint with the supervisory authority, if they think that the data concerning them is processed by the provider in breach of data protection regulations (also compare Article 77 GDPR).

    Furthermore, the provider is obligated to inform all receiving parties, who have been disclosed data by the provider, about every correction or deletion of data or restriction of processing, which have been made based on Articles 16, 17 paragraph 1, 18 GDPR.

    This obligation does not have to be met, hovever, if this information is impossible or could only be achieved through disproportionate expenditure.

    Nevertheless, the user still has a right to know which parties received the data.

    The users and the affected persons also have, according to Article 21 GDPR, the right to object to the future processing of personal data concerning them, insofar as this data is processed according to Article 6 paragraph 1 (f) GDPR.

    Especially permitted is an objection to the processing of personal data for the use in direct marketing.

    III. Information about data processing

    The personal data that is processed while you use our internet presence is deleted or closed off as soon as the purpose of the storage does not apply anymore, the deletion does not conflict with legal obligations to retain the data or no different statements with regard to individual processing procedures are made in the following.

    Server data

    For technical reasons, especially to guarantee a safe and stable internet presence, data is transmitted by your internet browser to us, respectively to our webspace provider.

    With these so-called server logfiles we collect among other things type and version of your internet browser, your operating system, the website you were coming from to our internet presence (Referrer URL), the website(s) of our internet presence you visit, date and time of your access and the IP address of the internet connection from which you access our internet presence.

    The thusly collected data is saved temporarily but not together with other data concerning you.

    This storage is legally based on Article 6 paragraph 1(f) GDPR.

    Our legitimate interest is the optimization, stability, functionality and safety of our internet presence.

    The personal data will be deleted at the latest after seven days, as long as no further storage for evidentiary purposes is required.

    Otherwise, the data is fully or partially excluded from deletion until the incident has been resolved.

    Contact request/contact opportunity

    If you contact us by contact form or email, the data provided by you is used to process your inquiry.

    The provision of this data is necessary to process and respond to your inquiry – without this provision we cannot respond to your inquiry or at the most respond in a limited way.

    The legal basis for this processing is Article 6 paragraph 1 (b) GDPR.

    Your data will be deleted if your inquiry has been answered concludingly and the deletion does not conflict with legal obligations to retain the data, e.g. a possible subsequent contract administration.

    Contract Administration

    The data that is transmitted by you to claim our range of services is processed by us for the objective of contract administration and is therefore necessary.

    Formation and conclusion of the contract are not possible without the provision of your data.

    The legal basis for the processing is Article 6 paragraph 1 (b) GDPR.

    We delete your data after the full completion of the contract, but we have to observe the retention period relating to tax and commercial law.

    Google Fonts

    Our internet presence uses Google Fonts to depict external fonts. Google Fonts is a service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA (in the following only called „Google“).

    As Google is an active participant in the EU-US Privacy Shield https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active, they guarantee that the data protection regulations of the EU are also maintained if the data is processed in the U.S.A.

    To depict certain fonts in our web presence, a connection to a Google server in the U.S.A. is established if you access our internet presence.

    The legal basis for this is Article 6 paragraph 1 (b) GDPR.

    Our legitimate interest is the optimization and the efficient operation of our internet presence.

    Through the connection to Google that is established when you access our internet presence, Google is able to determine from which website your request was sent and to which IP address the depiction of the font is to be transmitted.

    Google offers further information here

    https://adssettings.google.com/authenticated
    https://policies.google.com/privacy

    namely in particular regarding the possibilites to prevent the use of data.