Privacy Policy

Introduction

We take the protection of user data from our website and/or mobile app very seriously and are committed to protecting the information that users provide to us in connection with their use of our website and/or mobile app (collectively: "digital assets"). Furthermore, we are committed to protecting and using your data in accordance with applicable law.

This privacy policy explains our practices regarding the collection, use, and disclosure of your data through the use of our digital assets (the “Services”) when you access the Services via your devices.

Please read the Privacy Policy carefully and ensure you fully understand our data practices before using our services. If you have read and fully understand this policy and do not agree with our practices, you must discontinue using our digital assets and services. By using our services, you acknowledge and accept the terms of this Privacy Policy. Continued use of the services constitutes your acceptance of this Privacy Policy and any amendments thereto.

This privacy policy informs you about:

  • How we collect data
  • What data we collect
  • Why we collect this data
  • Who we share the data with
  • Where the data is stored
  • How long the data will be retained
  • How we protect the data
  • How we deal with minors
  • Updates or changes to the privacy policy

 

What data do we collect?

 

Category: Always

Below is an overview of the data we can collect:

 

  • Non-identified and non-identifiable information that you provide during the registration process or that is collected through your use of our services (“non-personal data”). Non-personal data does not allow any conclusions to be drawn about who collected it. The non-personal data we collect consists primarily of technical and aggregated usage information.
  • Individually identifiable information, meaning any information that can be used to identify you or could be used to identify you with reasonable effort (“personal data”). The personal data we collect through our services may include information requested from time to time, such as names, email addresses, physical addresses, telephone numbers, IP addresses, and more. When we combine personal data with non-personal data, we will treat it as personal data for as long as it remains combined.

 

How do we collect data?

 

Category: Always

The following are the main methods we use to collect data:

 

  • We collect data when you use our services. Therefore, when you visit our digital assets and use our services, we may collect, record, and store usage data, sessions, and related information.
  • We collect data that you provide to us yourself, for example, when you contact us directly via a communication channel (e.g., an email with a comment or feedback).
  • We can collect data from third-party sources, as described below.
  • We collect data that you provide to us when you log in to our services via a third-party provider such as Facebook or Google.

 

Why do we collect this data?

 

Category: Always

We may use your data for the following purposes:

 

  • to provide and operate our services;
  • to develop, adapt and improve our services;
  • to respond to your feedback, inquiries and requests and to offer assistance;
  • to analyze requirement and usage patterns;
  • for other internal, statistical and research purposes;
  • to improve our data security and fraud prevention capabilities;
  • to investigate violations and enforce our terms and policies, as well as to comply with applicable law, regulations, or government orders;
  • to send you updates, news, promotional material, and other information related to our services. You can decide whether you wish to continue receiving promotional emails. If not, simply click the unsubscribe link in those emails.

 

To whom do we pass on this data?

 

Category: Always

We may share your data with our service providers to operate our services (e.g., storing data via third-party hosting services, providing technical support, etc.).

 

We may also disclose your data in the following circumstances: (i) to investigate, detect, prevent, or take action against unlawful activities or other wrongdoing; (ii) to establish or exercise our rights of defense; (iii) to protect our rights, property, or personal safety, as well as the safety of our users or the public; (iv) in the event of a change of control of us or one of our affiliates (through a merger, acquisition, or purchase of (substantially) all of our assets, among other things); (v) to collect, maintain, and/or administer your data through authorized third-party service providers (e.g., cloud service providers) to the extent appropriate for business purposes; (vi) to work with third-party service providers to improve your user experience. For the avoidance of misunderstanding, we would like to point out that we may, at our sole discretion, transfer, share, or otherwise use non-personally identifiable information with third parties.

 

Category: User has a blog or forum

Please note that our services allow social interactions (e.g., publicly posting content, information, and comments, and chatting with other users). We advise you that any content or data you make available in these areas can be read, collected, and used by others. We recommend that you refrain from posting or sharing information that you do not wish to make public. Uploading content to our digital assets or otherwise making it available while using a service is done at your own risk. We cannot control the actions of other users or members of the public who have access to your data or content. You acknowledge and agree that copies of your data may remain accessible even after you delete it from cached and archived pages, or after a copy/storage of your content has been made by a third party.

 

Cookies and similar technologies

When you visit or access our services, we authorize third parties to use web beacons, cookies, pixel tags, scripts, and other technologies and analytics services (“Tracking Technologies”). These Tracking Technologies may allow third parties to automatically collect your data to improve your browsing experience on our digital assets, optimize their performance, ensure a tailored user experience, and for security and fraud prevention purposes.

 

To learn more, please read our cookie policy.

Category: The user is NOT affiliated with an advertising service

Without your consent, we will not share your email address or other personal data with advertising companies or advertising networks.

 

Category: The user is connected to an advertising service, a campaign manager, or Facebook Ads.

We may deliver advertising through our services and digital assets (including websites and applications that use our services) that may be tailored to you, such as ads based on your recent browsing behavior on websites, devices or browsers.

 

To deliver these advertisements to you, we may use cookies and/or JavaScript and/or web beacons (including transparent GIFs) and/or HTML5 Local Storage and/or other technologies. We may also use third parties, such as network advertisers (i.e., third parties that display advertisements based on your website visits), to serve targeted ads. External ad network providers, advertisers, sponsors, and/or website traffic measurement services may also use cookies and/or JavaScript and/or web beacons (including transparent GIFs) and/or Flash cookies and/or other technologies to measure the effectiveness of their ads and to personalize advertising content for you. These third-party cookies and other technologies are subject to the specific privacy policy of the respective third party and not to this one.

 

Where do we store the data?

 

Category: Always

Non-personal data

 

Please note that our companies, as well as our trusted partners and service providers, are located around the world. For the purposes explained in this privacy policy, we store and process all non-personal data we collect in various jurisdictions.

 

Category: User collects personal data

Personal data

Personal data may be maintained, processed and stored in the United States, Ireland, South Korea, Taiwan, Israel and, to the extent necessary for the proper provision of our services and/or as required by law (as further explained below), in other jurisdictions.

How long will the data be retained?

 

Category: Always

Please note that we retain the collected data for as long as necessary to provide our services, to comply with our legal and contractual obligations to you, to resolve disputes and to enforce our agreements.

We may, at our sole discretion, correct, supplement or delete inaccurate or incomplete data at any time.

 

How do we protect the data?

 

Category: Always

The hosting service for our digital assets provides us with the online platform through which we can offer you our services. Your data may be stored via our hosting provider's data storage, databases, and general applications. They store your data on secure servers behind a firewall and offer secure HTTPS access to most areas of their services.

 

Category: User accepts payments/eCom

All payment options offered by us and our hosting provider for our digital assets comply with the PCI DSS (Credit Card Industry Data Security Standard) regulations of the PCI Security Standards Council. This is a collaboration of brands such as Visa, MasterCard, American Express, and Discover. PCI DSS requirements help ensure the secure handling of credit card data (including physical, electronic, and procedural measures) by our shop and service providers.

 

Category: Always

Notwithstanding the measures and efforts taken by us and our hosting provider, we cannot and will not guarantee absolute protection and security of the data that you upload, publish, or otherwise share with us or others.

For this reason, we ask you to choose strong passwords and, if possible, not to send us or others any confidential information whose disclosure you believe could cause you significant or lasting harm. Since email and instant messaging are not considered secure forms of communication, we also ask you not to share any confidential information via these channels.

 

How do we deal with minors?

 

Category: User does NOT collect data from minors

These services are not intended for users who have not yet reached the age of legal age. We will not knowingly collect data from children. If you are not yet of legal age, you should not download or use the services and should not provide us with any information.

 

We reserve the right to request proof of age at any time to verify whether minors are using our services. If we become aware that a minor is using our services, we may deny that user access and block their account, and we may delete all data we have stored about that user. If you have reason to believe that a minor has provided us with data, please contact us as explained below.

 

Category: User collects data from minors

Children can use our services. However, if they wish to access certain features, they may be required to provide some information. The collection of some data (including data collected through cookies, web beacons, and other similar technologies) may occur automatically. If we knowingly collect, use, or disclose data collected from a child, we will provide notice and obtain parental consent in accordance with applicable law. We do not require a child to provide more contact information than is reasonably necessary for participation in any online activity. We only use the data we collect in connection with the services the child has requested.

 

We may also use a parent's contact information to communicate about the child's activity on the services. Parents can view data we have collected about their child, prohibit us from collecting further data about their child, and request that all data we have collected be deleted from our records.

 

Please contact us to view, update, or delete your child's data. To protect your child, we may ask you to verify your identity. We may deny you access to the data if we believe your identity is questionable. Please note that certain data cannot be deleted due to other legal obligations.

 

Category: Always

We use your personal data only for the purposes set out in the privacy policy and only if we are convinced that:

 

  • the use of your personal data is necessary to fulfill or conclude a contract (e.g. to provide you with the services themselves or customer service or technical support);
  • the use of your personal data is necessary to comply with applicable legal or regulatory obligations, or
  • the use of your personal data is necessary to support our legitimate business interests (provided that this is always done in a proportionate manner and respects your data protection rights).

 

As an EU resident, you can:

 

  • to request confirmation as to whether or not personal data concerning you is being processed, and to request access to your stored personal data as well as certain additional information;
  • to request the receipt of personal data you have provided to us in a structured, commonly used and machine-readable format;
  • to request the correction of your personal data that is stored with us;
  • request the deletion of your personal data;
  • object to the processing of your personal data by us;
  • to request the restriction of the processing of your personal data, or
  • file a complaint with a supervisory authority.

Please note, however, that these rights are not absolute and may be subject to our own legitimate interests and regulatory requirements. If you have general questions about the personal data we collect and how we use it, please contact us as indicated below.

In the course of providing the services, we may transfer data across borders to affiliated companies or other third parties and from your country/jurisdiction to other countries/jurisdictions worldwide. By using the services, you consent to the transfer of your data outside the EEA.

 

If you are located in the EEA, your personal data will only be transferred to locations outside the EEA if we are satisfied that an adequate or comparable level of protection for personal data is in place. We will take appropriate steps to ensure that we have suitable contractual agreements with our third parties to guarantee that appropriate safeguards are in place, so that the risk of unlawful use, alteration, deletion, loss, or theft of your personal data is minimized, and that these third parties act in accordance with applicable laws at all times.

Rights under California Consumer Protection Act

 

If you are using the services as a resident of California, then you may be entitled under the California Consumer Privacy Act (CCPA) to request access to and deletion of your data.

 

To exercise your right to access and delete your data, please read below how to contact us.

 

Category: This website does not sell user data

We do not sell users' personal data for the purposes of the CCPA.

 

Category: Websites with a blog or forum

Users of the services who are California residents and under the age of 18 may request and obtain the removal of their posted content by emailing the address listed below in the "Contact" section. All such requests must be marked "California Removal Request." All requests must include a description of the content you wish to have removed, as well as sufficient information to allow us to locate the material. We will not accept any notifications that are not marked or not properly submitted, and we may not be able to respond if you do not provide sufficient information. Please note that your request does not guarantee that the material will be completely or comprehensively removed. For example, material you have posted may be republished or reposted by other users or third parties.

 

Updates or changes to the privacy policy

 

Category: Always

We may revise this Privacy Policy from time to time at our sole discretion. The version published on the website is always the most current version (see the "Date" date). We encourage you to check this Privacy Policy regularly for changes. In the event of significant changes, we will post a notice on our website. If you continue to use the services after being notified of changes on our website, this will be considered your acknowledgment and acceptance of the changes to the Privacy Policy and your agreement to be bound by the terms of those changes.

 

Contact

 

Category: Always

If you have general questions about the services or the data we collect about you and how we use it, please contact us at:

 

Name: Daniela Schmitz

Address: Vor Kyllerhöhe, 54576 Hillesheim

Email address: daniela@eifel-stay.de

 

EXCLUSION CLAUSE

The information contained herein does not constitute legal advice and should not be relied upon solely for its purposes. Specific requirements regarding legal terms and guidelines may vary from state to state and/or from jurisdiction to jurisdiction. As outlined in our Terms of Service, you are responsible for ensuring that your services are legal and that you comply with the laws applicable to you.

To ensure that you fully comply with your legal obligations, we strongly recommend that you seek professional advice to better understand which requirements apply specifically to you.