Privacy policy.

The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the applicable legal provisions (EU Data Protection Regulation DSGVO, TKG 2003). In this privacy information, we inform you about the most important aspects of data processing within the scope of our activities.
The use of our website is generally possible without providing personal data. If you enter personal data, e.g. for the purpose of contacting us or subscribing to a newsletter, we will pass on the necessary information to companies that process data on our behalf (e.g. send the newsletter). We only use companies that are subject to the General Data Protection Regulation.

Encrypted transmission pan
This website uses SSL encryption for security and data protection reasons, which prevents third parties from intercepting and reading the data you enter during transmission. You can recognise active encryption by the padlock or similar symbols in the address bar of your browser.

Contact with us
If you contact us using the form on the website, by e-mail or by other means, the data you provide (name, e-mail address and optionally telephone number) will be stored by us for one year for the purpose of processing the enquiry and in the event of follow-up questions. Should a contract result from the enquiry, the statutory retention periods apply. We do not pass on this data without your consent. The data processing is based on Art 6 (1) (b) (fulfilment of contract) and Art 6 (1) (a) (consent) of the DSGVO.

Server protocols
The server from which this website is provided stores information that is automatically transmitted to us by your browser in so-called log files. These are:

  • Browser type and version
  • Operating system used
  • The page (URL) from which you came to us
  • The IP address of the accessing computer
  • Time of the request

This data is used exclusively for the technical monitoring of the webserver (utilisation, optimisation, error detection, security) and is absolutely necessary for this purpose. They are not linked to other data sources so that they cannot be attributed to individual persons. They are deleted after three months.
The data processing is carried out on the basis of Art 6 (1) (f) (legitimate interests) of the DSGVO. The legitimate interest within the meaning of the GDPR is the proper and secure functioning of the website.

Google reCaptcha

We use the service “Google reCaptcha” of the provider Google Inc.,1600 Amphitheatre Parkway Mountain View, CA 94043, USA, in order to protect our website from spam and abuse..
For this purpose, data is transmitted to Google which makes it possible to distinguish between humans and robots. In most cases, this happens without a person having to answer questions or recognise images.
The data processing is carried out on the basis of Art 6 (1) (f) (legitimate interest) of the DSGVO.
Our concern in terms of the GDPR (legitimate interest) is to protect our website from spam and abuse.
The Google Terms of Use and further information on the data processed can be found at the following links: https://www.google.com/analytics/terms/de.html

Google Fonts

We use fonts from Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA on our website. When you view our website, your browser downloads these fonts from Google.
Google Fonts are used without registration and no cookies are sent to Google. If you are logged in to Google when you visit our website, your Google account data will not be transmitted to Google. Google only records the use of the corresponding fonts and stores this data securely.
You can find details on https://developers.google.com/fonts/faq

Please also note the Google privacy policy on https://www.google.com/intl/de/policies/privacy/, where you can find more information about the data processed.

The data processing is based on Art 6 (1) (f) (legitimate interests) of the GDPR. The legitimate interest within the meaning of the GDPR is the appealing design of the website.

Google Maps

With your consent, we use Google Maps on our website, i.e. a street map of the company Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. This allows us to show you the location of our site and gives you the option of calculating a route to us.
If you click on the map, thereby signalling your consent, your IP address, the location viewed and your geographical position and possibly other data will be transmitted to Google in the USA. If you have a route calculated, also the starting point you entered. A cookie is also set, which Google can use to recognise you.
Please also note the Google privacy policy on https://www.google.com/intl/de/policies/privacy/, where you can find more information about the data processed.
The data processing is based on Art 6 para 1 lit a (consent) of the DSGVO.

Cookies

Our website uses cookies. These are small text files that are stored on your end device with the help of the browser. They do no harm.
We use cookies to make our offer user-friendly. Some cookies remain stored on your terminal device until you delete them. They enable us to recognise your browser the next time you visit.
Some of these cookies are required for the operation of the website and are used to log you in and store your consent to cookies that are not required. If you do not want the necessary cookies to be stored, you can set up your browser so that it informs you about the setting of cookies and you only allow this in individual cases.
The legal basis for the use of necessary cookies is Art 6 para 1 lit f (legitimate interests) of the DSGVO. Legitimate interests within the meaning of the GDPR are the proper and secure functioning of the website and the optimisation of our offer.
In addition, other cookies that are not absolutely necessary for the operation of the website may be stored and only with your consent. Details in the following sections.

Google Analytics

With your consent, our website uses functions of the web analysis service “Google Analytics” of the provider Google Inc.,1600 Amphitheatre Parkway Mountain View, CA 94043, USA. Cookies are used for this purpose, which enable an analysis of the use of the website by your visitors. The information thus generated is transferred to the provider’s server and stored there.
If you have consented to the use of Google Analytics, cookies are set in the browser that identifies you when you visit our website again and allow us to distinguish visitors and analyse what you have viewed on previous visits to our website. Since the privacy of our users is important to us, this data is pseudonymised, i.e. we cannot assign it to any specific person and do not know who the respective visitor was.
We have activated the “IP anonymisation” function on this website. This shortens your IP address before it is transmitted to the USA and can no longer be assigned to a specific person. Only a rough localisation is still possible. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
We have concluded a processor agreement with Google in which Google undertakes to comply with the standard contractual clauses defined by the EU Commission.
The data processing is carried out on the basis of the legal provisions of § 96 para 3 TKG and Art 6 para 1 lit a (consent) of the DSGVO.
The Google Terms of Use and further information on data protection can be found under the following links: https://www.google.com/analytics/terms/de.htmlund http://www.google.com/intl/de/policies/privacy/

Facebook-Pixel

With your consent, our website uses the functions of the “Facebook Pixel” of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”).
With the help of this Java script, Facebook can record your activities on our site. This enables us to recognise, for example, if you have accessed our site via a Facebook ad and purchase the advertised product there. This allows us to measure the effectiveness of Facebook ads and further improve our offering.
For this purpose, several cookies are stored in your browser, which Facebook uses to match information such as your IP address or user ID with your Facebook account. If you are logged into Facebook when you visit our website, your visit and activities will be directly assigned to your Facebook account.
The data collected is anonymous for us, i.e. we cannot draw any conclusions about the persons who have visited our website. We can also only access the evaluations in connection with Facebook advertising we have placed. However, the data is stored and processed by Facebook, of which we inform you according to our state of knowledge. Facebook may collect this data in accordance with Facebook’s privacy policy (see https://www.facebook.com/about/privacy/) use.
The data processing is carried out on the basis of Art 6 para 1 lit a (consent) of the DSGVO.

Comments

If you comment on a post on this website, your comment, name, email address and IP address will be stored.
Before your comment is published, we check it for legal violations such as insults or racist or inciting statements. The stored data is necessary in order to be able to take action against such authors if necessary. The data will be deleted as soon as the associated post is removed from the website.
The data processing is carried out on the basis of Art 6 para 1 lit a (consent) of the DSGVO.

Member area

A members’ area has been set up on our website, which you can access after purchasing one of our products via kirchleitn.com.
To restrict access to buyers, we store your email address, name, that of your order, the date of your last payment and the password for your access.
These data are necessary for the fulfilment of the contract, without them we cannot provide all purchased services. After cancellation of your membership, the data will be deleted immediately, as well as in case of late payment despite several reminders. In both cases, access to the members’ area is no longer possible afterwards.
The data processing is carried out on the basis of the legal provisions of § 96 para 3 TKG as well as Art 6 para 1 lit a (consent) and/or lit b (necessary for the fulfilment of the contract) of the DSGVO.

Data storage

For the purpose of accounting, the following data of our customers are stored with us: Name, address, telephone number, e-mail address, VAT. ID. If you have agreed to a direct debit mandate (SEPA direct debit mandate), also your bank details. This data is not passed on, with the exception of the transfer to the processing banking institutions/payment service providers for the purpose of direct debiting, as well as to our tax advisor for the purpose of bookkeeping and to fulfil our obligations under tax law. The data is stored exclusively within the EU.
The data you provide is required for the performance of the contract or for the implementation of pre-contractual measures. Without this data we cannot conclude and fulfil the contract with you.
All data from a contractual relationship are stored until the expiry of the retention period under tax law (7 years)..
The storage of the above data takes place

  • On encrypted local computer systems or portable computers secured by passwords and physical access protection.
  • in encrypted and password-protected cloud solutions provided by Microsoft (Microsoft Ireland Operations Limited, Atrium Block B, Carmenhall Road, Sandyford Industrial Estate, Dublin 18, Ireland).
    The data is stored exclusively on servers within the EU.
    We have concluded a processor contract with Microsoft in which Microsoft undertakes to comply with the standard contractual clauses defined by the EU Commission. You can find Microsoft’s privacy policy here

The data processing is carried out on the basis of Art 6 (1) (c) (statutory provisions) of the DSGVO and Art 6 (1) (b) (necessary for the performance of the contract) of the DSGVO.

Data processing in the context of order fulfilment and customer care

For the purpose of fulfilling the contract, access data for online services used by you such as web hosting, e-mail providers, office solutions, social media platforms, etc. will also be stored, if necessary for the order placed by you and actively transmitted by you.
The storage takes place

  • On encrypted local computer systems or portable computers secured by passwords and physical access protection.

For the purpose of social media design and social media marketing, we will publish content on your behalf on the desired social media platforms. The data to be published (images, videos, audio files) are provided by you. It is your responsibility to ensure that you have the necessary rights and consents for publication.
We use the following services to create, edit and publish social media content:

  • Adobe Photoshop, Adobe Systems Incorporated, USA
  • Canva, Australia

We have concluded a processor agreement with all the above-mentioned companies, in which these companies undertake to comply with the GDPR.
The companies based in the USA undertake to comply with the standard contractual clauses as defined by the EU Commission.
The data you provide is required for the performance of the contract or for the implementation of pre-contractual measures. Without this data we cannot conclude and fulfil the contract with you. Data will only be transferred to third parties with your express permission.
All data from a contractual relationship will be stored until the expiry of the retention period under tax law (7 years). Access data to systems used by the client will be deleted immediately after the end of the contract.
The data processing is carried out on the basis of the legal provisions of § 96 para 3 TKG as well as Art 6 para 1 lit a (consent) and/or lit b (necessary for the fulfilment of the contract) of the DSGVO.

Your rights

You are generally entitled to the rights of information, correction, deletion, restriction, data portability, revocation and objection. Corresponding enquiries can be sent to the e-mail address datenschutz@kirchleitn.com
If you believe that the processing of your data violates data protection law or your data protection rights have otherwise been violated in some way, you can complain to the supervisory authority. In Austria, this is the data protection authority.

You can reach us under the following contact details:

Alpina Tourismus GmbH
Rosennockstraße 13
9546 Bad Kleinkirchheim
Tel.: +43 4240 8244
E-Mail: datenschutz@kirchleitn.com