PRIVACY

PRIVACY POLICY OF WWW.ADLERNEST.COM

This application collects personal data from its users.

Privacy policy of www.adlernest.com

This application collects personal data from its users.

 

Provider and responsible person according to article 4. par. 7 GDPR

Hotel Schwarzer Adler d. Gamper A. & Co. Kg
Our woman 26
39020 Schnals (BZ)
Italy
Tel: +39 0473 669652
E-mail:

 

Types of data collected

Personal data that this application processes independently or through third parties include: Cookie, Usage Data and Email.

Full details of each type of personal data processed are provided in the designated sections of this Privacy Policy or selectively through explanatory text displayed prior to data collection.
Personal data may be provided voluntarily by the user or, in the case of usage data, may be collected automatically when this application is used.
Unless otherwise specified, the provision of all data requested by this application is mandatory. If the user refuses to provide the data, this may result in this application being unable to provide its services to the user. In cases where this application expressly states that the provision of personal data is voluntary, users may choose not to provide such data without any consequences for the availability or functioning of the service.
Users who are unclear about which personal data is mandatory can contact the provider.
Any use of cookies – or other tracking tools – by this Application or third-party service providers used by this Application is for the purpose of providing the service requested by the User and any other purposes described in this document and, if any, in the Cookie Policy.

Users are responsible for all personal data of third parties obtained, published or disclosed through this Application and confirm that they have obtained consent for the transfer of personal data of any third parties to this Application.

 

Type and place of data processing

Processing methods

The Provider processes User Data in a proper manner and takes appropriate security measures to prevent unauthorized access and unauthorized forwarding, modification or destruction of data.
Data processing is carried out by means of computers or IT-based systems in accordance with organizational procedures and practices specifically aimed at the stated purposes. In addition to the data controller, other persons internally (human resources, sales, marketing, legal department, system administrators) or externally – and in the case where necessary, designated by the data controller as processors (such as technical service providers, delivery companies, hosting providers, IT companies or communication agencies) – could also operate this application and thus have access to the data. A current list of these parties may be requested from the provider at any time. 

Legal bases of the processing

The Provider may process personal data of Users only if one of the following applies:

  • Users have given their consent for one or more specific purposes. Note: In some jurisdictions, the provider may be permitted to process personal data until the user objects to such processing (“opt-out”) without relying on consent or any other of the following legal bases. However, this does not apply if the processing of personal data is subject to European data protection law;
  • the data collection is necessary for the fulfillment of a contract with the user and/or for pre-contractual measures arising therefrom;
  • the processing is necessary for compliance with a legal obligation to which the provider is subject;
  • the processing is related to a task carried out in the public interest or in the exercise of official authority vested in the provider;
  • the processing is necessary to protect the legitimate interests of the provider or a third party.

In any case, the provider will be happy to provide information about the specific legal basis on which the processing is based, in particular whether the provision of personal data is a legal or contractual obligation or a prerequisite for the conclusion of a contract. 

Location

The data will be processed in the Provider’s office and in all other places where the entities involved in data processing are located.

Depending on the user’s location, data transfers may involve the transfer of the user’s data to a country other than the user’s own. To learn more about the place of processing of the transmitted data, users can consult the section with the detailed information on the processing of personal data.

Users also have the right to be informed about the legal basis of the transfer of data to a country outside the European Union or to an international organization governed by international law or established by two or more countries, such as the UN, as well as about the security measures taken by the Provider to protect their data.

If such a transfer occurs, the user can learn more about it by reviewing the relevant sections of this document or by contacting the provider using the information provided in the contact section. 

Storage duration

Personal data is processed and stored for as long as required by the purpose for which it was collected.

Therefore applies:

  • Personal data collected for the purpose of fulfilling a contract concluded between the provider and the user will be stored until the complete fulfillment of this contract.
  • Personal data collected to protect the legitimate interests of the Provider shall be retained for as long as necessary to fulfill these purposes. Users can obtain more detailed information about the provider’s legitimate interests in the relevant sections of this document or by contacting the provider.

In addition, the Provider is permitted to store personal data for a longer period of time if the User has consented to such processing, as long as the consent is not revoked. In addition, the provider may be required to retain personal data for a longer period of time if this is necessary to fulfill a legal obligation or by order of an authority.

After the retention period has expired, personal data is deleted. Therefore, the right of access, the right of erasure, the right of rectification and the right of data portability cannot be exercised after the expiry of the retention period.

Processing purposes

Personal data about the user is collected so that the provider can provide the services. In addition, data is collected for the following purposes: Displaying content from external platforms, interaction with external social networks and platforms, remarketing and behavioral targeting, analytics, SPAM protection, tag management, handling payments, and managing landing pages and invitation pages.

Users can find more detailed information on these processing purposes and on the personal data used for each purpose in the relevant sections of this document. 

Detailed information on the processing of personal data

Personal data is collected for the following purposes using the following services: 

Analytics

The services listed in this section allow the Provider to monitor and analyze traffic and track the behavior of Users.

Facebook Ads Conversion Tracking (Facebook, Inc.)

Conversion tracking from Facebook Ads is an analytics service provided by Facebook, Inc. that combines data from the Facebook advertising network with actions taken through this application.

Personal data collected: Cookie and usage data.

Processing location: United States – Privacy Policy. Privacy Shield member. 

Google AdWords Conversion Tracking (Google Inc.)

AdWords conversion tracking is an analytics service provided by Google Inc. that combines data from the Google AdWords advertising network with actions taken through this application.

Personal data collected: Cookie and usage data.

Processing location: United States – Privacy Policy. Privacy Shield member. 

Google Analytics (Google Inc.)

Google Analytics is a web analytics service provided by Google, Inc. (“Google”). Google uses the data collected to track and study how this application is used, report on its activity, and share it with other Google services.
Google may use the data collected to contextualize and personalize the ads of its own advertising network.

Personal data collected: Cookie and usage data.

Processing location: United States – Privacy policy – Opt Out. Privacy Shield member.

Google Analytics with IP anonymization (Google Inc.)

Google Analytics is a web analytics service provided by Google, Inc. (“Google”). Google uses the data collected to track and study how this application is used, report on its activity, and share it with other Google services.
Google may use the data collected to contextualize and personalize the ads of its own advertising network.
IP anonymization has been activated on this website so that the IP address of users is truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there.

Personal data collected: Cookie and usage data.

Processing location: United States – Privacy policy – Opt Out. Privacy Shield member.

 

Interaction with external social networks and platforms

These types of services allow interaction with social networks or other external platforms directly through this application.
The interaction as well as the information collected via this application are always subject to the privacy settings made by the users for the respective social network.
If a service is installed for interaction with social networks, it may collect data from traffic for the pages on which it is installed even if users do not use the service.

 

SPAM protection

These types of services analyze the traffic that takes place through this application and may contain personal data of users in order to filter out parts of the traffic, messages and content that are considered SPAM.

Google reCAPTCHA (Google Inc.)

Google reCAPTCHA is a SPAM protection service provided by Google Inc.
The use of reCAPTCHA is subject to Google’s Privacy Policy and Terms of Use.

Personal data collected: Cookie and usage data.

Processing location: United States – Privacy Policy. Privacy Shield member.

 

Display content from external platforms

This type of service allows users to view and interact with content hosted on external platforms directly through this application.
If such a service is installed, it may collect data from traffic for the pages on which it is installed even if users do not use it.

Google Fonts (Google Inc.)

Google Fonts is a service provided by Google Inc. provided service for visualization of fonts, which allows this application to embed corresponding content on its pages.

Personal Data Collected: Usage data and various types of data as described in the Service’s Privacy Policy.

Processing location: United States – Privacy Policy. Privacy Shield member. 

Google Maps widget (Google Inc.)

Google Maps is a service provided by Google Inc. provided service for visualization of maps, with which this application can embed corresponding content on its pages.

Personal data collected: Cookie and usage data.

Processing location: United States – Privacy Policy. Privacy Shield member.

Regular Guest Club (Guest Club)

This website uses KunLeiSys guest club software (regular guest area). The provider is GASTROpoint GmbH, Pommernstraße 17, 83395 Freilassing, Germany. KunLeiSys Guest Club Software is a service that organizes and manages the guest club, offers, loyalty points, event emails and newsletter distribution.

You can register for the guest club on our website. We use the data entered for this purpose only for the purpose of using the respective offer or service. The mandatory information requested during registration must be provided in full. Otherwise, we will reject the registration. The processing of the data entered during registration is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke any consent you have given at any time free of charge. You can do this via the unsubscribe link in the email or by unsubscribing in the guest club.

The data you have deposited with us for the purpose of the guest club will be stored by us until you unsubscribe and will be deleted from our servers as well as from the servers of GASTROpoint GmbH after you have unsubscribed and deleted your guest club account.

For important changes, for example in the scope of the offer or in the case of technically necessary changes, we will use the e-mail address provided during registration or in your profile to inform you in this way. Statutory retention periods remain unaffected. We have concluded an order data processing contract with GASTROpoint GmbH and fully implement the strict specifications of the data protection authorities when using KunLeiSys Gäste-Club software.

 

Remarketing and behavioral targeting

This type of service allows this application and its partners to analyze how this application has been used in previous sessions of the user in order to target, optimize and deploy advertising.
This activity is done by tracking usage data and using cookies – information that is sent to partners responsible for remarketing and behavioral targeting campaigns.
In addition to any exclusion (or opt-out) option offered by the Services listed below, the User may opt-out of the use of cookies by third party Services by visiting the Network Advertising Initiative opt-out page. 

AdWords Remarketing (Google Inc.)

AdWords Remarketing is a remarketing and behavioral targeting service provided by Google Inc. that connects activity occurring through this application to the Adwords advertising network and the Doubleclick cookie.

Personal data collected: Cookie and usage data.

Processing location: United States – Privacy policy – Opt Out. Privacy Shield member.

Facebook Remarketing (Facebook, Inc.)

Facebook Remarketing is a remarketing and behavioral targeting service provided by Facebook, Inc. that connects activity occurring through this application to the Facebook advertising network.

Personal data collected: Cookie and usage data.

Processing location: United States – Privacy policy – Opt Out. Privacy Shield member.

 

Tag management

These types of services help the provider centrally manage the tags or scripts needed for that application.
This results in the user’s data flowing through these services and possibly being stored. 

Google Tag Manager (Google LLC)

Google Tag Manager is a tag management service provided by Google LLC.

Personal data collected: Cookie and usage data.

Processing location: United States – Privacy Policy. Privacy Shield member.

 

Landing page and invitation page management

This type of services can be used to create and manage landing pages and invitation pages, i.e. pages for presenting a product or service, where you can leave your contact details, such as the email address.
If such pages are managed, the service handles the personal data collected via the pages, this includes usage data. 

Unbounce (Unbounce Marketing Solutions Inc.)

Unbounce is a marketing solution developed by Unbounce Marketing Solutions Inc. provided service for managing landing pages, which allows this application to collect the email addresses of users interested in its service.
With Unbounce, the owner can track and analyze the response of users to traffic or their behavior after the created landing pages have been modified in terms of structure, text or other components.

Personal data collected: Cookie, e-mail and usage data.

Processing Location: Canada – Privacy Policy.

 

The rights of users

Users may exercise certain rights in relation to their data processed by the Provider.

In particular, users have the right to do the following:

  • Revoke consent at any time. If the user has previously consented to the processing of personal data, he may revoke his own consent at any time.
  • object to the processing of their data. The user has the right to object to the processing of their data if the processing is based on a legal basis other than consent. Further information on this is provided below.
  • Receive information regarding their data. The user has the right to know whether the data is processed by the provider, to receive information about individual aspects of the processing and to receive a copy of the data.
  • Verify and have corrected. The user has the right to verify the accuracy of his data and request its update or correction.
  • Restrict the processing of their data. Users have the right to restrict the processing of their data under certain circumstances. In this case, the provider will not process the data for any purpose other than storage.
  • Request deletion or other removal of personal data. Users have the right to request deletion of their data from the Provider under certain circumstances.
  • Receive their data and have it transferred to another responsible party. The user has the right to receive their data in a structured, common and machine-readable format and, if technically possible, have it transferred to another responsible party without hindrance. This provision is applicable if the data is processed by automated means and the processing is based on the user’s consent, on a contract to which the user is a party, or on pre-contractual obligations.
  • File a complaint. Users have the right to file a complaint with the competent supervisory authority.

 

Details on the right to object to processing

If personal data are processed in the public interest, in the exercise of a sovereign power conferred on the Provider or in order to safeguard the Provider’s legitimate interests, the User may object to such processing by providing a justification relating to his/her particular situation.

Users are informed that they may object to the processing of personal data for direct marketing at any time without giving reasons. To find out whether the Provider processes personal data for direct marketing purposes, Users may refer to the relevant sections of this document. 

How to exercise the rights

All requests to exercise user rights may be directed to the provider via the contact details provided in this document. Applications can be exercised free of charge and will be processed by the provider as soon as possible, at the latest within one month.

 

Further information on the collection and processing of data

Legal measures

The User’s personal data may be processed by the Provider for the purposes of law enforcement within or in preparation of legal proceedings arising from the improper use of this Application or the related services.
The User declares that he/she is aware that the Provider may be required by the authorities to disclose personal data.

More information about the personal data of the user

In addition to the information set forth in this Privacy Policy, this Application may provide the User, upon request, with additional contextual information relating to specific services or to the collection and processing of personal data.

System logs and maintenance

This application and third-party services may collect files that record the interaction that takes place through this application (system logs) or use other personal data (e.g., IP address) for this purpose for operational and maintenance purposes. 

Information not included in this privacy statement

Further information about the collection or processing of personal data can be requested from the provider at any time via the listed contact details. 

How “Do Not Track” requests are handled

This application does not support Do Not Track requests by web browsers.
For information on whether integrated third-party services support the no-tracking protocol, users can refer to the privacy policy of the respective service. 

Changes to this privacy policy

The Provider reserves the right to make changes to this Privacy Policy at any time by notifying its Users accordingly on this Site and, where applicable, through this Application and/or – to the extent technically and legally possible – by sending a notice to the Users via one of the contact details available to the Provider. Users are therefore advised to visit this page regularly, checking the date of last modification indicated at the bottom of the page. 

Insofar as changes affect a data use based on the consent of the user, the provider will – if necessary – obtain a new consent.

 

Definitions and legal information

Personal data (or data)

Any information by which the identity of a natural person is or can be determined, directly or in combination with other information.

Usage data

Information that this application (or third party services that this application uses) automatically collects, such as: the IP addresses or domain names of the computers of users that use this application, the URI (Uniform Resource Identifier) addresses, the time of the request, the method used to send the request to the server, the size of the response file received, the numeric code indicating the status of the server response (successful result, error, etc.), the country of origin, the features of the browser and operating system used by the user, the various times per request (e.g., how much time was spent on each page of the application), and information about the path to the server used by the user.), the country of origin, the functions of the browser and operating system used by the user, the various time details per call (e.g. how much time was spent on each page of the application) and information about the path followed within an application, in particular the order of the pages visited, as well as other information about the operating system of the device and/or the IT environment of the user.

Users

The person using this application who, unless otherwise specified, is the same as the person concerned. 

Affected

The natural person to whom the personal data relates. 

Order processor (or data processor)

Natural or legal person, public authority, agency or other body that processes personal data on behalf of the Controller as described in this Privacy Policy.

Responsible person (or provider, partly also owner)

The natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data and the means used for that purpose, including the security measures relating to the operation and use referred to in this Application. Unless otherwise specified, the responsible party is the natural or legal person through whom this application is offered. 

This application

The hardware or software tool used to collect and process the User’s personal data.

Service

The service provided through this Application, as described in the applicable Terms of Use (if any) and on this Site/Application.

European Union (or EU)

Unless otherwise indicated, all references in this document to the European Union refer to all current Member States of the European Union and the European Economic Area (EEA). 

Cookie

Small file stored by the application in the user’s device.

 

Legal notice

This Privacy Policy has been drafted based on provisions of various legislations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation).

This Privacy Policy applies solely to this Application, unless otherwise stated in this document.