Data protection declaration

Data protection declaration

General

As the operator of this website and as a company, we come into contact with your personal data. This means all data that say something about you and with which you can be identified. In this data protection declaration, we would like to explain how, for what purpose and on what legal basis we process your data.

Responsible for data processing on this website and in our company:

TR TOURISM RESULTS e.U
Josefstädter Strasse 51-4-15, 1080 Vienna
Telephone: +43-664-4224200
E-mail: office@tourism-results.com

General information

SSL or TLS encryption

If you enter your data on websites, place online orders or send e-mails over the Internet, you must always expect unauthorized third parties to access your data. There is no complete protection against such access. However, we do everything we can to protect your data in the best possible way and to close the security gaps as far as we can.

An important protection mechanism is the SSL or TLS encryption of our website, which ensures that data that you transmit to us cannot be read by third parties. You can recognize the encryption by the lock icon in front of the entered internet address in your browser and by the fact that our internet address begins with https:// and not with http://.

How long do we store your data?

In some places in this privacy policy, we inform you about how long we or the companies that process your data on our behalf will store your data. In the absence of such information, we store your data until the purpose of the data processing no longer applies, you object to the data processing or you revoke your consent to the data processing.

In the event of an objection or revocation, however, we may continue to process your data if at least one of the following conditions applies:

  • We have compelling legitimate grounds for continuing to process the data that override your interests, rights and freedoms (only in the case of an objection to data processing; if the objection is to direct marketing, we cannot provide legitimate grounds).
  • The data processing is necessary to assert, exercise or defend legal claims (does not apply if your objection is directed against direct advertising).
  • We are required by law to retain your data.

In this case, we delete your data as soon as the requirement(s) cease to apply.
Data transfer to the USA

Data transfer to the USA

On our website, we also use tools from companies that transfer your data to the USA and store it there and process it if necessary. This is particularly important for you because your data in the USA does not enjoy the same protection as within the EU, where the General Data Protection Regulation (GDPR) applies. For example, US companies are obliged to hand over personal data to security authorities without you as the data subject being able to take legal action against this. It is therefore possible that US authorities (e.g. intelligence services) process, evaluate and permanently store your data on US servers for monitoring purposes. We have no influence on these processing activities.

Your rights

Objection to data processing

IF YOU READ IN THIS PRIVACY POLICY THAT WE HAVE LEGITIMATE INTERESTS IN THE PROCESSING OF YOUR DATA AND THEREFORE ARE BASED ON ART. 6 ABS. 1 SET 1 LIT. F) GDPR, YOU HAVE ACCORDING TO ART. 21 GDPR THE RIGHT TO OBJECT TO THIS. THIS ALSO APPLIES TO PROFILING TAKEN ON THE BASIS OF THE MENTIONED REGULATION. A CONDITION IS THAT YOU STATE REASONS FOR THE OBJECTION THAT RESULT FROM YOUR PARTICULAR SITUATION. NO JUSTIFICATION IS REQUIRED IF THE OBJECTION IS AGAINST THE USE OF YOUR DATA FOR DIRECT ADVERTISING.

THE CONSEQUENCE OF THE OBJECTION IS THAT WE ARE NO LONGER ALLOWED TO PROCESS YOUR DATA. THIS DOES NOT APPLY IF ONE OF THE FOLLOWING CONDITIONS APPLY:

  • WE CAN PROVE COMPREHENSIVE PROTECTIVE REASONS FOR PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOM.
  • THE PROCESSING IS FOR THE ESTABLISHMENT, EXERCISE OR DEFENSE OF LEGAL CLAIMS.

THE EXCLUSIONS DO NOT APPLY IF YOUR OBJECTION IS AGAINST DIRECT ADVERTISING OR PROFILING RELATED TO DIRECT ADVERTISING.

Further rights

Revocation of your consent to data processing

Many data processing operations are based on your consent. You grant this e.g. B. by ticking the appropriate box in online forms before you send the form, or by allowing certain cookies when you visit our website. You can revoke your consent at any time without giving reasons (Article 7 (3) GDPR). From the time of revocation, we may no longer process your data. The only exception: we are legally obliged to keep the data for a certain period of time. Such retention periods exist in particular in tax and commercial law.

Right to lodge a complaint with the competent supervisory authority

If you believe that we are violating the General Data Protection Regulation (GDPR), you have the right under Art. 77 GDPR to complain to a supervisory authority. You can contact a supervisory authority in the member state where you live, where you work or where the alleged infringement took place. The right to complain exists in addition to administrative or judicial remedies.

Right to data portability

Data that we process automatically on the basis of your consent or in fulfillment of a contract must be handed over to you or a third party in a common machine-readable format if you request this. We can only transfer the data to another person responsible if this is technically possible.

Right to data information, deletion and correction

According to Art. 15 GDPR, you have the right to receive information free of charge about what personal data we have stored about you, where the data comes from, to whom we transmit the data and for what purpose it is stored. If the data is incorrect, you have the right to rectification (Art. 16 GDPR), under the conditions of Art. 17 GDPR you may request that we delete the data.

Right to restriction of processing

In certain situations, according to Art. 18 GDPR, you can request that we restrict the processing of your data. Apart from storage, the data may then only be processed as follows:

  • with your consent
  • to assert, exercise or defend legal claims
  • to protect the rights of another natural or legal person
  • for reasons of important public interest of the European Union or a member state

The right to restriction of processing exists in the following situations:

  • You have contested the accuracy of your personal data held by us and we need time to verify this. Here the right exists for the duration of the examination.
  • The processing of your personal data is unlawful or was unlawful in the past. Here you have the right to alternatively delete the data.
  • We no longer need your personal data, but you need it to exercise, defend or assert legal claims. Here you have the right to alternatively delete the data.
  • You have lodged an objection in accordance with Art. 21 Para. 1 GDPR and now your and our interests must be weighed against each other. The right exists here as long as the result of the weighing up is not yet certain.

Hosting and Content Delivery Networks (CDN)

External hosting

Our website is hosted on a server of the following internet service provider (hoster): ALL-INKL.COM – New Media Münnich Owner: René Münnich Hauptstrasse 68, D-02742 Friedersdorf

Has an order processing contract been concluded with the hoster or are standard contractual clauses (SCC) used?

Yes

How do we process your data?

How do we process your data? The host saves all data from our website. This also includes all personal data that is collected automatically or through your input. In particular, this can be: your IP address, pages viewed, name, contact data and requests as well as meta and communication data. When processing data, our hoster adheres to our instructions and only processes the data to the extent that this is necessary in order to fulfill our obligation to perform.

On what legal basis do we process your data?

Since we address potential customers via our website and maintain contacts with existing customers, the data processing by our hoster serves to initiate and fulfill the contract and is therefore based on Article 6 (1) (b) GDPR. In addition, it is in our legitimate interest as a company to provide a professional internet service that meets the necessary security, speed and efficiency requirements. In this respect, we also process your data on the basis of Article 6 (1) (f) GDPR.

Data collection on this website

Use of cookies

Our website places cookies on your device. These are small text files that are used for different purposes. Some cookies are technically necessary for the website to function at all (necessary cookies). Others are needed to enable certain actions or functions to be carried out on the site (functional cookies). For example, without cookies it would not be possible to take advantage of a shopping basket in an online shop. Still other cookies are used to analyze user behavior or to optimize advertising measures. If we use third-party services on our website, e.g. to process payment transactions, these companies may also leave cookies on your device when you access the website (so-called third-party cookies).

How do we process your data?

Session cookies are only stored on your device for the duration of a session. As soon as you close the browser, they disappear by themselves. Permanent cookies, on the other hand, remain on your device if you do not delete them yourself. This can lead, for example, to your user behavior being permanently analyzed. You can use the settings in your browser to influence how cookies are handled:

  • Do you want to be informed when cookies are set?
  • Do you want to exclude cookies in general or for certain cases?
  • Do you want cookies to be automatically deleted when you close the browser?

If you deactivate or do not allow cookies, the functionality of the website may be limited.

If we use cookies from other companies or for analysis purposes, we will inform you about this within the framework of this data protection declaration. We also ask for your consent in this regard when you visit our website.

On what legal basis do we process your data?

We have a legitimate interest in ensuring that our online offerings can be used by visitors without any technical problems and that all desired functions are available to them. Necessary and functional cookies are therefore stored on your device on the basis of Article 6 (1) (f) GDPR. We use all other cookies on the basis of Article 6 (1) (a) GDPR, provided you give us your consent. You can revoke this at any time with effect for the future. If you consented to the placement of necessary and functional cookies when you asked for your consent, these cookies will also be stored exclusively on the basis of your consent.

Cookie consent with Borlabs Cookie

What is Borlabs Cookie?

Cookie plugin for GDPR compliance and e-privacy

Who processes your data?

Only us, not the provider of Borlabs Cookie

Where can you find more information about privacy at Borlabs Cookie?

How do we process your data?

We use Borlabs Cookie to obtain your consent to store cookies on your device. If you visit our website and close the Borlabs Cookie window with the request for consent, a Borlabs cookie with the following content will be stored in your browser:

  • cookie Duration
  • cookie version
  • website domain and path
  • consents
  • a randomly generated ID

This data is not transmitted to the provider of Borlabs Cookie. We store the data until the purpose of storing the data no longer applies, you delete the Borlabs cookie or request us to delete the data. This does not apply if we are legally obliged to store the data.

On what legal basis do we process your data?

We are legally obliged to obtain the consent of our website visitors for the use of certain cookies. In order to fulfill this obligation, we use Borlabs cookies. The legal basis for data processing is therefore Article 6 (1) (c) GDPR.

Server log files

Server log files record all requests and access to our website and record error messages. They also include personal data, in particular your IP address. However, this will be anonymized by the provider after a short time, so that we cannot assign the data to your person. The data is automatically transmitted from your browser to our provider.

Who processes your data?

Our provider saves the server log files in order to be able to track the activities on our website and to locate errors. The files contain the following data:

  • browser type and version
  • operating system used
  • referrer URL
  • host name of the accessing computer
  • time of server request
  • IP address (anonymized if necessary)

We do not merge this data with other data, we only use it for statistical analysis and to improve our website.

On what legal basis do we process your data?

We have a legitimate interest in our website running correctly. It is also in our legitimate interest to receive an anonymous overview of access to our website. Data processing is therefore lawful in accordance with Art. 6 Para. 1 lit. f) GDPR.

Analytics Tools and Advertising

We use the following tools to analyze the behavior of our website visitors and to show you advertising.

WP Statistics

Who processes your data?

We are always interested in optimizing our website for users and placing advertising in the best possible way. The plugin WP Statistics helps us, which analyzes the behavior of the users and thus provides us with the necessary database for adjustments. The provider is Veronalabs, ARENCO Tower, 27th Floor, Dubai Media City, Dubai, Dubai 23816, United Arab Emirates. WP Statistics records i.a. the following data:

  • IP address
  • referrer
  • browser used
  • origin of the user
  • used search engine
  • clicks, page views and other actions

The data is only stored locally.

On what legal basis do we process your data?

As a website operator, we have a legitimate interest in analyzing user behavior for the purpose of optimizing our website and the advertising placed there. The data processing is therefore lawful according to Art. 6 Para. 1 lit. f) GDPR. In the event that you z. B. have agreed to the storage of cookies or otherwise consented to data processing, Article 6 Paragraph 1 lit. a) GDPR is the sole legal basis. You can revoke your consent at any time with effect for the future.

Google Web Fonts (local hosting)

We use fonts from the US company Google on our website. We have installed the fonts locally so that there is no connection to the Google servers when you visit our website. You can find more information about Google Web Fonts at https://developers.google.com/fonts/faq and in Google’s data protection declaration: https://policies.google.com/privacy?hl=en.

On what legal basis do we process your data?

As a website operator, we have a legitimate interest in analyzing user behavior for the purpose of optimizing our website and the advertising placed there. The data processing is therefore lawful according to Art. 6 Para. 1 lit. f) GDPR. In the event that you z. B. have agreed to the storage of cookies or otherwise consented to data processing, Article 6 Paragraph 1 lit. a) GDPR is the sole legal basis. You can revoke your consent at any time with effect for the future.

Audio and Video Conferencing

As a company, we are in contact with many people: customers, business partners, service providers, etc. In addition to other means of communication, we also use so-called online conference tools for the exchange. Information relevant to data protection law about the provider(s) of the tools we use can be found at the end of this section. If you communicate with us via such a tool, not only do we process your personal data, but in particular the provider of the respective tool.

Who processes your data?

Online conference tools collect and store various personal data in order to enable participation in an online conference and its smooth execution. In addition to registration, conference and technical data, this also applies to certain communication content.

Login data:
Your e-mail address and/or telephone number and, if applicable, other data that you provide when registering for the conference.

Conference Dates:
Start, end and duration of your participation in the conference, the number of participants and other metadata about the conference.

Technical specifications:
IP address, MAC address, device ID, device type, operating system and version, client version, camera type, microphone or speakers, and the type of connection.

Communication content:
Cloud recordings, chat/instant messages, voicemails, uploaded photos and videos, files, whiteboards and other information shared while using the Service. For details on data processing, please refer to the data protection declarations of the respective conference tool provider.

How long do we store your data?

As your communication partner, we delete your data on our systems as soon as one of the following occurs:

  • The purpose of data processing no longer applies.
  • You ask us to delete the data.
  • You revoke your consent to storage.

This only does not apply if we are legally obliged to keep the data.

Cookies remain on your end device until you delete them.

The providers of conference tools also store your data for their own purposes. Please ask the providers directly what this means for the duration of the storage of your data.

On what legal basis do we process your data?

If we are already contractually bound or if you would like to conclude a contract with us, we use conference tools to fulfill the contract or to inform you about our services or products. In this respect, data processing takes place on the basis of Article 6 (1) (b) GDPR. Otherwise, the use of conference tools is used for quick and easy communication, without which we would not be able to run our company efficiently. We therefore also have a legitimate interest in data processing in accordance with Article 6 (1) (f) GDPR. Another legal basis can be your consent. In this case, Article 6 (1) (a) GDPR is relevant. This basis will no longer apply in the future if you revoke your consent.

Which online conference tools do we use?

Zoom

What is Zoom?

Communication platform for video meetings, voice communication, webinars and chats via desktop computers, phones, mobile devices and conference room systems

Order processing contract has been concluded.

Who processes your data?

Zoom Communications Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA

Privacy Policy Zoom: https://zoom.us/de-de/privacy.html

On what basis do we transfer your data to the USA?

Zoom Communications Inc. adheres to the standard contractual clauses of the European Commission (see https://explore.zoom.us/en/privacy/)

Microsoft Teams

What is Microsoft Teams?

Communication platform for teamwork

Order processing contract has been concluded.

Who processes your data?

Microsoft Corp., One Microsoft Way, Redmond, WA 98052-6399, USA

Data protection declaration: https://privacy.microsoft.com/en-us/privacystatement

On what basis do we transfer your data to the USA?

Microsoft adheres to the European Commission’s Standard Contractual Clauses (https://docs.microsoft.com/en-us/compliance/regulatory/gdpr)

Data processing on social media

What is social media?

By social media we mean the social networks on which we have created publicly accessible profiles. You can read below which social networks these are specifically.

Who processes your data?

The respective operating companies of the social networks. The individual operators can be found below with the respective networks.

How is your data processed?

The operators of social networks are usually able to collect and evaluate comprehensive data on the behavior of visitors and users of the network. It is not possible for us to trace all processing operations in the social networks we use, which is why other processing operations that are not listed here may be carried out by the operators of the social networks. You will find further information on this in the terms of use and data protection declarations of the respective social networks.

The processing of your data can be triggered by visiting the website of the social network or our profile page there. Even if you call up a website that uses certain network content, e.g. Like or Share buttons, data can already be transmitted to the operators of the social network. If you are a user of the social network and are logged into your user account, your visit to our profile page can be assigned to your account by the operator of the social network. Even if you have not registered a user account yourself or are not logged in, the operator of the network may still collect your personal data, e.g. by recording your IP address or setting cookies. With this data, the operators can create user profiles tailored to your behavior and interests and show you interest-based advertising inside and outside the network. If you are a registered user of the network, interest-based advertising can also be displayed on all devices on which you are or were logged in.

On what legal basis do we process your data?

Our profiles in social networks are intended to ensure that our company has the widest possible presence on the Internet. As a company, we have a legitimate interest in this. The data processing is therefore lawful according to Art. 6 Para. 1 lit. f GDPR.

The data processing operations and analyzes carried out by the operators of the social networks themselves may be based on other legal bases. These must be specified by the operators of the social networks.

Who is responsible for processing your data and how can you assert your rights?

If you visit one of our profiles in the social networks, we are responsible together with the operator of the respective network for the data processing operations triggered during this visit. In principle, you can assert your rights both against us and against the operator of the respective network.

Despite the joint responsibility with the operators of the social networks, our influence on the data processing operations of the respective operator is limited and is primarily based on the operator’s specifications.

How long do we store your data?

If we collect data via our profiles in the social networks, it will be deleted from our systems as soon as the purpose for storing it no longer applies, you ask us to delete it, or you revoke your consent to storage. Saved cookies remain on your end device until you delete them. Mandatory legal provisions – especially retention periods – remain unaffected.

We have no influence on how long the operators of the social networks store your data, which the operators collect for their own purposes. You can obtain information on this directly from the operator of the respective social network, e.g. in the respective data protection declaration.

Which social media do we use?

LinkedIn

What is LinkedIn?

A social network for business contacts

Who processes your data?

LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland

Will your data be transferred to third countries?

Where can you as a user adjust your privacy settings?

As a registered LinkedIn user, you can adjust your privacy settings in your user account. To do this, click on the following link and log in:
https://www.linkedin.com/psettings/

As of 2023