Privacy Policy

Information on the nature, scope and purpose of the collection and use of personal data

Scope

This privacy policy is intended to inform users of this website in accordance with the Federal Data Protection Act, Telemedia Act and EU General Data Protection Regulation on the type, scope and purpose of the collection and use of personal data by the provider of the website, the city of Friedrichshafen.

The provider takes the protection of your personal data very seriously and adheres strictly to the provisions of data protection laws. The provider has therefore taken measures to ensure that the rules on data protection are respected both by him and by his external service providers.

Usage and access data

Every time you access this website and every time a file is retrieved, general data is automatically stored in a log file ("server log file"). The following data is logged:

  • Visited website
  • Accessed page
  • Time of access to the website
  • Amount of data sent in bytes
  • Size of transferred file
  • Status code returned by the web server
  • Status code returned by the web server
  • last accessed page (referer, source / link, from which the website visitor has come to the page)
  • user user agent/ browser of the website visitor
  • Website visitor's operating system used
  • used IP address of the website visitor

The collected data collected is used only for system-related and statistical evaluations and to improve the website. The provider of the website reserves the right, however, to retrospectively check the server log files should concrete evidence point to unlawful use. A transfer of data to third parties or any other evaluation does not take place, unless there is a legal obligation to do so.

Personal Data

Personal data such as name, address, telephone number or e-mail address will only be processed (collected, used or saved) if you make use of one of the services offered on the website, in particular the booking and enquiry form. Your personal data will then be processed solely for the purpose for which it was collected. Without your consent, this data will not be disclosed to third parties. Your personal data will be deleted after processing your request or after a limited period of time.

Nature and purpose of the processed data

Type of processed data

  • Address data (first and last name, address, telephone number, e-mail)
  • text input (messages), photographs (uploads)
  • usage data, visited websites, access times
  • IP addresses and metadata (device information)

Affected persons

  • Visitors and users of our online offer

Purpose of processing

  • Providing the website with contents and functions
  • Processing of bookings, orders, contact requests and messages
  • Security measures
  • Statistical evaluations

Definition of terms

"Personal data" is any information that can be identified to persons known to us or by means of data stored with us.

"Processing" means any process, done manually or automatically, of loading, associating, storing or modifying personal data.

We refer to persons, authorities or institutions who decide on the purposes and means of processing personal data as "controller".

Legal basis of processing

Article 6 of the GDPR serves our company as the legal basis for all processing operations.

We process your data only if:

  • You have given your consent to the processing of your personal data for one or more specific purposes
  • the processing is necessary for the performance of a contract or for the performance of any precontractual actions that occur at your request
  • the processing is necessary to fulfill a legal obligation to which you are subject
  • the processing is necessary to protect your vital interests or those of another person
  • the processing is necessary for the performance of a task which is in the public interest or in the exercise of official authority which has been assigned to us (Registration Act)
  • the processing is necessary to safeguard our legitimate interests or those of a third party, unless the interests or fundamental rights and freedoms of the data subject requiring the protection of personal data prevail, in particular where the data subject is a Child acts.

Duration of storage

At the maximum duration of storage of your personal data, we comply with the respective statutory retention period. After this period, the corresponding data will be routinely deleted, if they are no longer required to fulfill the contract or to initiate a contract.

Deletion

All personal data processed by us will be deleted or restricted for further processing in accordance with Articles 17 & 18 GDPR. Specifically this means: Personal data will be deleted if they are no longer required for the fulfillment of the desired purposes or the legal storage obligation has expired. This applies in particular to invoices, accounting documents and business records.

Cooperation with order processors

If a transmission of the data to third parties is necessary for the fulfillment of the contract, this only takes place:

  • on the basis of legal permission in accordance with. Art. 6 para. 1 lit. b GDPR
  • on the basis of your consent
  • if a legal obligation so provides
  • based on our legitimate interests (e.g., when using agents, web hosts, etc.)

If we entrust third parties with processing on the basis of a so-called "contract processing contract", this is done on the basis of Art. 28 GDPR.

Cookies

This website uses cookies. These are small text files that are stored on your device. Your browser accesses these files. The use of cookies increases the user-friendliness and security of this website.

Popular browsers offer the setting option of not allowing cookies or informing the user about the appearance of cookies. Please use the help tool of your browser for information on changing these settings. We point out that you may not be able to use certain functions of our website if you have deactivated the use of cookies.

SSL encryption

To protect the security of your data during transmission, we use state-of-the-art encryption techniques (e.g., SSL) over HTTPS.

Online booking and contact forms

The processing of our contact forms takes place with software of my.IRS GmbH & TBox AG (Dornierstraße 4, 82178 Puchheim, Privacy policy). If you contact us (e.g., by contact form, e-mail, telephone or via social media), the information of the user to process the contact request and their processing in accordance with. Art. 6 para. 1 lit. b GDPR is processed. The information provided by users is stored in a Customer Relationship Management System ("CRM System"). We will delete the requests, if these are no longer necessary to fulfill your concerns. We check the necessity every two years; Furthermore, the legal archiving obligations apply.

Booking System

The processing of our bookings or orders takes place with the software of my.IRS GmbH & TBox AG (Dornierstraße 4, 82178 Puchheim, Privacy policy).  This service provider is based on our legitimate interests. Art. 6 para. 1 lit. f GDPR and a contract processing agreement acc. Art. 28 para. 3 p. 1 GDPR does not use or use the resulting personal data itself or pass it on to third parties.

Data collected during a booking or order (contact data with address, communication data such as telephone number and e-mail address) as well as information about accompanying persons (names, dates of birth) are stored in a Customer Relationship Management System ("CRM System") saved. If you have special personal data, which are relevant to the performance of our services, such as allergy-related intolerance, they are also stored. We will delete this information if it is no longer necessary to fulfill your request. Furthermore, the legal archiving obligations apply.

Google Maps

This website uses maps from Google Maps. The website operator also uses services provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Irland).

When you visit this website, your browser will load the information you need from the Google server in the US into your browser cache. This is necessary so that your browser can display the maps on this website. It is transmitted to the Google server, which of our web pages you have visited. In addition, your IP address will be stored by Google.

For more information about Google Maps, visit https://maps.google.com/help/terms_maps.html

For general information about privacy at Google, visit https://policies.google.com/privacy?hl=en

Rights of the user: information, correction, objection and cancellation

Users may at any time, in accordance with the law, receive information about which personal data has been stored about them. If data are incorrect, then affected persons can request their correction in a corresponding manner. You may revoke your consent to the collection and storage of your personal data by us at any time. Furthermore, you have the legal right to delete or block the personal data. In this case, please contact the address below.

In addition to the aforementioned rights, you also have the right in principle to complain to the competent supervisory authority for data protection.

The city of Friedrichshafen has the right to change this privacy policy in compliance with the applicable legal data protection regulations at any time.

Contact person data protection and data storage

Person responsible within the meaning of the General Data Protection Regulation:

City of Friedrichshafen, represented by Mayor Andreas Brand
Adenauerplatz 1
88045 Friedrichshafen
Tel. +49 7541 203-0

Data protection officer:

External official data protection officer of the City of Friedrichshafen
Krailenshaldenstraße 44
70469 Stuttgart
Tel. +49 711 8108-14444