This data protection policy applies for data processing by
Ferienland Donau-Ries e.V. (hereinafter "Association" or "Controller")
86609 Donauwörth, Germany
Further information can be found in the imprint of this website.
If you have any comments or questions about the data processing by the Association, we are at your disposal at any time under the aforementioned contact data.
a) Visiting the website
When you open our website, the browser used on your end device automatically sends information to our website server. This information is saved temporarily in a log file. The following information is collected without any action on your part and saved until it is automatically deleted:
In addition, a session cookie is used.
We process and evaluate the session cookie and the specified data for the following purposes:
The data stored in the log file will be deleted automatically after 30 days. The session cookie will be deleted automatically when the browser is closed.
The legal base for the data processing is Art. 6 (1) 1st sentence lit. f GDPR. Our justified interest arises from the purposes given above. Under no circumstances shall we use the data collected for the purpose of drawing conclusions about you as an individual.
b) Ordering brochure material
If you order brochure material from our website, we collect the information provided in the order form for the purpose of processing the order. Compulsory information is marked with an asterisk symbol (*). The data are processed on the basis of Art. 6 (1) 1st sentence lit. b GDPR following your request and are required for the aforementioned purpose of fulfilling the contract and precontractual measures.
To ensure smooth and simple processing of your order and faster clarification of any queries, you can also voluntarily provide your electronic or telephone contact data. You can also send us a message. The legal base is Art. 6 (1) 1st sentence lit. a GDPR.
The data we collect for the order will be stored for 365 days and then anonymised so that they can be used for statistical purposes. After anonymisation, no conclusion can be drawn about the identity of the requester. Our anonymisation is also carried out on the basis of Art. 6 (1) 1st sentence lit. f GDPR. Creating and evaluating anonymised statistics is a justified interest.
c) Using the personal memo
If you use the "Personal memo" function, your memo will be saved in the session cookie and deleted after the end of the "session".
d) Using our contact form
If you contact us using the contact form, we collect the information provided in the contact form for the purpose of processing your message. Compulsory information is marked with an asterisk symbol (*). We process the fields marked with the asterisk symbol and your message on the basis of Art. 6 (1) 1st sentence lit. f GDPR. The processing and any required answering of questions are a justified interest.
You can also voluntarily provide your electronic or telephone contact data so that your contact can be processed faster. The legal base is Art. 6 (1) 1st sentence lit. a GDPR.
The data collected via the contact form during the processing will be deleted once the purpose of the use no longer applies.
We have commissioned Magenta4 GmbH, Pfahlstr. 25, 85072 Eichstätt for the technical implementation of the contact process via the contact form. A data processing contract pursuant to Art. 28 GDPR has been concluded with Magenta4 GmbH.
e) Online booking of accommodation services
Our website uses the online booking tool (hereinafter "OBT") of Bayern Reisen & Service GmbH, Im Gewerbepark D 33, 93059 Regensburg (www.bayern-reisen-service.de, hereinafter "BRSG") to enable the online booking of accommodation services and other travel services, and for processing questions. Within the OBT, BRSG processes the data as controller. The data protection information and provisions can be found in BSRG's data protection policy for the OBT, which you can access at any time from the OBT or read at https://www.bayern-reisen-service.de/datenschutzerklärung/.
This website uses "fonts.com", a font service offered by Monotype Imaging Holdings Inc. ("fonts.com"), Monotype GmbH, Horexstraße 30, 61352 Bad Homburg, Germany. Every time this website is accessed, files will be loaded from a "fonts.com" server to display the texts in a particular font. Your IP address can thereby be sent to a "fonts.com" server and saved during the usual web log. The further processing of this information is the responsibility of "fonts.com"; you can find the pertinent terms and conditions and possible settings in the data protection information provided by "Monotype Imaging Holdings Inc.)". https://www.monotype.com/de/rechtshinweise/datenschutzrichtlinie/
For your current browser session, you can use the following button to completely remove the integration of the font service.
g) Creating statistics on the use of the website with Google Analytics
On the basis of your consent, Art. 6 (1) 1st sentence lit. a GDPR, we use the Google Analytics service, a web analysis service offered by Google LLC. 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: "Google") on our website. This uses information to evaluate the use of the website, to compile reports on the website activities and to render further services related to the website use and Internet use for the purposes of market research and needs-based design of this website. The IP addresses will be anonymised, so that linking of the use to your person is not possible (IP masking).
In conjunction with this, pseudonymised usage profiles will be created and cookies will be used. The information created by the cookie about your use of this website such as
We have concluded a data processing contract with Google. Under that contract, Google warrants that the data will be processed as per our instructions and the protection of the data subjects' rights is ensured.
The information may be passed to third parties, in so far as this is required by law or if third parties process these data under contract. The processed data can be sent to servers in the USA and other unsafe third countries and processed there. Concerning that transfer, Google cites the standard contractual clauses approved by the EU Commission as a safeguard for ensuring a level of data protection comparable to the EU.
The user data collected by the Google Analytics cookies will be deleted automatically after 14 months.
h) Geographical search with Google Maps
This website uses the Google Maps map service to display map material. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. We use Google Maps on the basis of your consent, Art. 6 (1) 1st sentence lit. a GDPR.
If you click on a map from Google Maps on our website, information about your use of this website and your IP address will be sent to a Google server in the USA. This is done regardless of whether Google provides a user account via which you are logged in, or if there is no such user account. If you are logged in with Google, your data will be assigned directly to your account. Your data will be deleted, once they are no longer needed for the purpose of the processing.
Further data protection information in conjunction with Google Maps can be found in Google's data protection policy.
Google sends the information to Google servers in the USA. The data sent are merely pseudonyms, no linking to your name is possible. We will only send your data to Google, in so far as you have explicitly consented. In that case, you also give your consent in awareness of the risks described below that your data will be sent to the USA pursuant to Art. 49 (1) lit. a GDPR.
i) Implemented YouTube videos
On our website we use components (videos) of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: "YouTube"), a Google company. The implementation is on the basis of your consent pursuant to Art. 6 (1) 1st sentence lit. a GDPR. Loading the videos on our website will send data to Google. In particular, data about which of our Internet pages you have visited and device-specific information including the IP address will be sent to Google.
Here, we use the "privacy-enhanced mode" option provided by YouTube. If you open a page that has an embedded video, a connection to the YouTube servers will only be made and the content shown on the Internet page by instruction to your browser, if you actually watch the video.
If you are logged in with YouTube at the same time, that information will be assigned to your member account at YouTube. You can prevent this by first closing your member account before visiting our website. Your data will be deleted, once they are no longer needed for the purpose of the processing.
Further data protection information in conjunction with YouTube can be found in the Google data protection policy.
Google sends the information to Google servers in the USA. The data sent are merely pseudonyms, no linking to your name is possible. In that case, you also give your consent in awareness of the risks described below that your data will be sent to the USA pursuant to Art. 49 (1) lit. a GDPR.
Personal data will only be sent to a third country or an international organisation, if we inform you about it and the preconditions of Art. 44 ff. GDPR are satisfied.
A third country is a country outside the European Economic Area (EEA) in which the GDPR is not directly applicable. A third country is considered unsafe, if the EU Commission has not made an adequacy decision for that country pursuant to Art. 45 (1) GDPR, in which it is confirmed that there is an adequate level of protection for personal data in that country.
The USA is such an unsafe third country. This means that a level of data protection comparable to that in the EU is not provided in the USA. The following risks arise when sending personal data to the USA. There is a risk that US authorities can gain access to the personal data under the PRISM and UPSTREAM surveillance programs based on Section 702 FISA (Foreign Intelligence Surveillance Act) and on the basis of Executive Order 12333 or Presidential Police Directive 28. EU citizens have no effective possibilities of legal protection against such access in the USA or in the EU.
We will inform you in this data protection information about when and how we send personal data to the USA or other unsafe third countries. We send your personal data only if
Safeguards pursuant to Art. 46 GDPR can be standard contractual clauses. In those standard contractual clauses, the recipient warrants to sufficiently protect the data and so ensure a level of protection comparable to the GDPR.
You have the right:
In so far as your personal data are processed on the basis of justified interests pursuant to Art. 6 (1) 1st sentence lit. f GDPR, you have the right pursuant to Art. 21 GDPR to object to the processing of your personal data in so far as there are reasons which arise from your particular situation or the objection is to direct advertising. In the latter case, you have a general right to object which we will implement without your having to specify a particular situation.
To assert your rights, please use the contact data provided at the beginning of this data protection policy.
This data protection policy is the currently valid version and was last amended on 11 January 2021
The further development of our website and offers on or to changes in statutory or official requirements may make it necessary to change this data protection policy.