General
As the operator of this website and as a company, we come into contact with your personal data. This refers to all data that says something about you and with which you can be identified. In this privacy policy, we would like to explain to you in what way, for what purpose, and on what legal basis we process your data.Responsible for data processing on this website and in our company is:
Hallstatt Hideaway Private Suites private rental Dr. Silke Seemann
Dr.-Friedrich-Morton-Weg 2 44830 Hallstatt
Phone: 004369910483024
Email: welcome@hallstatt-hideaway.com
General Information
SSL/TLS Encryption
When you enter your data on websites, place online orders, or send emails over the internet, you must always expect that unauthorized third parties may access your data. There is no complete protection against such access. However, we do everything we can to protect your data as best as possible and to close security gaps as far as we are able.
An important protection mechanism is the SSL or TLS encryption of our website, which ensures that data you transmit to us cannot be read by third parties. You can recognize the encryption by the lock icon in front of the internet address entered in your browser and by the fact that our internet address begins with https:// and not http://.
Encrypted Payment Transactions
Payment data, such as account or credit card numbers, is particularly sensitive. Therefore, payment transactions with common payment methods on our site are processed exclusively via an encrypted SSL or TLS connection.
How long do we store your data?
In some places in this privacy policy, we inform you how long we or the companies that process your data on our behalf store your data. If no such information is provided, we store your data until the purpose of the data processing no longer applies, you object to the data processing, or you withdraw your consent to the data processing.
In the event of an objection or withdrawal of consent, however, we may continue to process your data if at least one of the following conditions is met:
We have compelling legitimate grounds for continuing the data processing that override your interests, rights, and freedoms (only in the case of an objection to data processing; if the objection is directed against direct marketing, we cannot put forward legitimate grounds).
The data processing is necessary to assert, exercise, or defend legal claims (does not apply if your objection is directed against direct marketing).
We are legally obligated to retain your data.
In this case, we will delete your data as soon as the condition(s) no longer apply.
Data transfer to the USA
We also use tools on our website from companies that transfer your data to the USA, where it is stored and possibly further processed. This is particularly important for you because your data in the US does not enjoy the same level of protection as it does within the EU, where the General Data Protection Regulation (GDPR) applies. For example, US companies are obligated to release personal data to security authorities without you, as the data subject, being able to take legal action against this. It is therefore possible that US authorities (e.g., intelligence agencies) may process, evaluate, and permanently store your data on US servers for surveillance purposes. We have no influence on these processing activities.
Your Rights
Objection to data processing
IF YOU READ IN THIS PRIVACY POLICY THAT WE HAVE LEGITIMATE INTERESTS FOR PROCESSING YOUR DATA AND THEREFORE BASE THIS ON ART. 6(1)(F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THIS UNDER ART. 21 GDPR. THIS ALSO APPLIES TO PROFILING BASED ON THE AFOREMENTIONED PROVISION. THE PREREQUISITE IS THAT YOU PROVIDE REASONS FOR THE OBJECTION THAT ARISE FROM YOUR PARTICULAR SITUATION. A REASON IS NOT REQUIRED IF THE OBJECTION IS DIRECTED AGAINST THE USE OF YOUR DATA FOR DIRECT MARKETING.
THE CONSEQUENCE OF THE OBJECTION IS THAT WE MAY NO LONGER PROCESS YOUR DATA. THIS ONLY DOES NOT APPLY IF ONE OF THE FOLLOWING CONDITIONS IS MET: