Welcome to www.bergfilm-tegernsee.de.
We are delighted by your interest in our region and in the services we offer. We care very much about protecting your privacy and your personally identifiable data (“personal data”). That is why we always make sure to collect and use your data in accordance with the regulations stipulated by the General Data Protection Regulation, GDPR, (EU) 2016/679, by the German Data Protection Act (Bundesdatenschutzgesetz, BDSG) and by the German Telemedia Act (Telemediengesetz, TMG). The following pages will tell you what kind of data we – as the “controller” or organisation responsible for data processing – collect and how we use this data.
The GDPR defines personal data as any kind of information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. We only store personal data insofar as this is necessary for the performance of booked services, for compliance with legal regulations or for the purpose stated below.
Anonymised Data / Log Files
You may visit our website without necessitating any collection of personal data. Still, during each visit to our website, we collect certain anonymised data, for instance the pages or offers you accessed. This data however is not personalised and therefore the GDPR’s and BDSG’s legal regulations do not apply.
The website host or provider of this page collects data regarding the accessing of pages and stores these as “server log files”. The following data is logged in this fashion:
Website visited, time of access, volume of data sent in bytes, source/hyperlink that brought you to the page, browser used, operating system used, IP address used.
The collected data is solely used for statistical analysis and for the improvement of the website. The website host however reserves the right to check server log files retrospectively, should there be concrete indications of unlawful use.
We merely collect anonymised data for statistical analysis, so as to improve our services. Please note the paragraph titled “Freedom of Information / Right to Withdrawal”.
Purpose of Personal Data Collection
Collection of personal data becomes indispensable if and when you participate at the festival competition, when you use our platform to book a stay or another service, when you make contact with us, subscribe to our newsletter or wish to avail of other services offered on our website which can only be delivered with the help of personal data. This includes voucher purchases and participation in sweepstakes.
In accordance with legal regulations and for the purpose of data economy, we generally only collect the kind of data which is necessary for the delivery of any one specific service. Should any of our forms request further information, its disclosure is always voluntary and marked as such.
The temporary storage of an IP address through the system is necessary to facilitate access to the website on the user’s computer. For this purpose, the user’s IP address must be stored for the duration of the session. Further storage within log files is meant to safeguard the website’s operability. Furthermore, this data helps us to optimise the website and to guarantee the security of our information technology systems. In this context, no data processing for marketing purposes takes place. The aforementioned purposes legitimise our interest in data processing in accordance with GDPR Art. 6 Section 1f.
When you book a stay or some other service, data collected for this purpose is used to process the booking, for advertising purposes in accordance with legal regulations and for statistical purposes.
Legal basis for sending out our newsletter following upon the sale of products or services is German Fair Trade Law (Gesetz gegen unlauteren Wettbewerb, UWG) § 7 Section 3.
Once you subscribe to our newsletter, we store and use data you provide during a booking regarding your person and stay, based on GDPR Article 6 Section 1f, so as to be able to deliver optimal newsletter services.
Legal basis for the processing of data after a newsletter subscription, provided the user has given their consent, is GDPR Article 6 Section 1a.
We furthermore use stored personal data for the purpose of nurturing our client relationships, customer care (e.g. information about the itinerary of your stay), for the execution of our own advertising and marketing measures (e.g. mailing out brochures and other advertising materials in accordance with applicable laws, feedback requests) and for the successful delivery of booked services.
Legal Basis for the Processing of Personal Data
Whenever we obtain consent for the collection of personal data for procedural purposes from the data subject, the legal basis for this is EU General Data Protection Regulation (GDPR) Article 6 Section 1a.
When we process personal data required for the fulfilment of a contract whose contracting party is the data subject, the legal basis for this is GDPR Article 6 Section 1b. This also applies for any aspects of data processing necessary for the fulfilment of contractual obligations.
Whenever the processing of personal data is necessary for compliance with legal obligations that apply for our organisation, the legal basis for this is GDPR Article 6 Section 1c.
Whenever vital interests of the data subject or another natural person necessitate the processing of personal data, the legal basis for this is GDPR Article 6 Section 1d.
Should data processing prove necessary for the protection of the legitimate interests pursued by our organisation or by a third party and should the interests, fundamental rights and freedoms of the data subject not overrule the aforementioned interest, the legal basis for this is GDPR Article 6 Section 1f.
Disclosure of Personal Data to Third Parties
We solely disclose your personal data in keeping with applicable legal regulations, specifically in compliance with competition and data protection laws.
As far as this is necessitated by our performance of a contracted service or by legal obligation, we also disclose your data to sub-contractors or service providers acting on our behalf or by our order for the purpose of delivering said service (e.g. technical execution of postal or emailing services, payment management, customer care).
Moreover, we disclose data to individuals or companies entrusted with the delivery of your booking, particularly to hotels, accommodation providers, public authorities etc. Please note that the data protection laws at the place of residence or business of these persons or companies might differ from those in Germany.
We also disclose and transmit your data to third parties inasmuch as we are obliged to do so by virtue of law or based on a legally binding judicial procedure.
Storage and Deletion of Data
We store your personal data for the purposes listed under the header “Purpose of Personal Data Collection”. A data subject’s personal data will be erased or restricted as soon as the purpose of storage expires. We might keep storing data, if this is prescribed by European or national legislation through union-wide regulations, laws or other provisions that apply for us. The legislator has stipulated diverse obligations and retention periods for data storage. Data will also be restricted or deleted, if a retention period stipulated through the abovementioned norms elapses, except in cases where further storage is necessary for the completion or fulfilment of a contract.
Technical specifications are set in place to only allow cookies to be read by the server that sent them. Be assured that we do not store personal data within cookies.
Unfortunately, only limited use of our services is possible as long as you do not accept cookies. Therefore, we recommend that you permanently activate cookies for our Internet platform. Most browsers accept cookies by default. However, you can deactivate the storage of cookies and change your browser settings to notify you as soon as cookies are being sent.
Legal basis for the processing of personal data with the help of cookies is GDPR Article 6 Section 1f.
Legal basis for the processing of personal data with the help of cookies for the purpose of analysis, provided the data subject has agreed to it, is GDPR Article 6 Section 1a.
Use of Google Analytics
This website’s Google tracking codes use an anonymising function, meaning that IP addresses will only be transferred in a shortened format so as to preclude the possibility of personal identification. You can always opt out of future collection and storage of your data. Clicking the “deactivate” button prohibits any further tracking. To make the refusal last, the used browser must accept cookies. Alternatively, data collection can be refused through use of a Google browser plugin which prevents the sending of data collected through cookies (including your IP address) to Google Inc. and its use by Google Inc. The following hyperlink gives you access to the respective plugin: http://tools.google.com/dlpage/gaoptout?hl=de.
Use of Matomo
How to opt out of tracking by Matomo:
It is up to you to decide whether a distinct web analytics cookie may be deposited in your browser, allowing the host of the website to collect and analyse various statistical data.
If you opt against this, please click on the following link to install the Matomo deactivation cookie in your browser:
Use of Econda
For the purpose of demand-actuated design and continued optimisation of this website we use solutions and technologies by econda GmbH (www.econda.de) to collect anonymised data and create pseudonym-based user profiles from this data. For this purpose, cookies might be used which allow for recognition of a specific Internet browser. Without explicit consent by the visitor, user profiles are never merged with data about the user behind the pseudonym. In particular, IP addresses are rendered unrecognisable immediately after collection. At any point in time, visitors of this website can opt out of such data collection and storage for future visits at the following link: www.econda.de/widerruf-zur-datenspeicherung/.
After opting out, an opt-out cookie will be deposited on your computer. If you should delete your cookies, you will need to click the link again.
Use of WordPress.com-Stats (Jetpack)
Information regarding your usage of our Internet services created by the cookie are stored on a server in the USA. Before storage, the IP address is anonymised. You can prohibit the installation of cookies by choosing the respective settings in your browser software. However, please take note that in this case, you might not be able to make comprehensive use of all our website’s functions.
You can opt out of the collection and use of data by Quantcast for future visits by clicking on the “click here to opt out” link and installing an opt-out-cookie in your browser: https://www.quantcast.com/opt-out.
Should you delete all cookies on your computer, you will need to reinstall the opt-out-cookie.
Reviews via Trusted Shops
Provided you gave your explicit consent during or after your order by clicking the respective box or button (“Später bewerten” / rate later), we transfer your email address for the purpose of a reminder to review your order to Trusted Shops GmbH, Subbelrather Str. 15c, 50823 Köln, Germany (www.trustedshops.de) so that this company can remind you via email of the option to leave a review. This consent can be repealed at any point in time by giving notice to the contact listed below or directly to Trusted Shops.
Facebook Social Plugins
This Internet platform uses social plugins by the social media network facebook.com, operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). The plugins are represented by the Facebook logo (white “F” on a blue tile or a “like” icon in the shape of a hand with raised thumb) or by the wording “Facebook Social Plugin”. The list and looks of Facebook social plugins are available here: https://developers.facebook.com/docs/plugins/?locale=de_DE.
When you access a web page on our Internet platform which contains such a plugin, your browser creates a direct connection to the Facebook servers. The plugin’s content is transferred directly by Facebook to your browser, which integrates it into the website. Therefore, we have no influence on the data volume collected by Facebook by means of this plugin and can only offer knowable information: with the help of the integrated plugin, Facebook learns that the respective page of our Internet platform was accessed. If you are logged into Facebook, then Facebook can connect the visit to your Facebook account. When you interact with the plugins (e.g. by clicking “like” or posting a comment), the respective information is transferred by your browser to Facebook and saved there. Even if you are no Facebook member, it is possible that Facebook retrieves and saves your IP address. You can view the purpose and extent of data collection, further data processing and use by Facebook as well as respective rights and settings for the protection of your privacy in Facebook’s data privacy statement: http://www.facebook.com/policy.php.
If you are a Facebook member but do not wish for Facebook to collect data via our Internet platform and to connect it with your member data stored by Facebook, you must log out of Facebook before visiting this Internet platform. It is also possible to block Facebook social plugins with the help of browser add-ons, e.g. with the Facebook Blocker.
Facebook Conversion Pixel
This Internet platform uses Facebook Pixel by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). With its help, user behaviour can be traced once the user has seen or clicked on a Facebook ad. This process helps to evaluate the efficacy of Facebook ads for statistical and market research purposes and may help optimise future advertising strategies.
The collected data remains anonymous for us and therefore offers no means of inferring the user’s identity. However, Facebook stores and processes the data, meaning that a connection to the respective user profile is possible and that Facebook can use this data for its own advertising purposes in accordance with Facebook’s privacy guidelines (https://www.facebook.com/about/privacy/). Users can allow Facebook and its partners to place ads on and outside of Facebook. For this purpose, Facebook might install a cookie on the user’s computer.
Use of the Google +1 Button
This Internet platform uses the +1 button by the social network Google Plus, operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”). The button displays a “+1” icon on white or coloured ground. When you access a website of this Internet platform that contains such a button, your browser automatically connects to the Google servers. The content of the +1 button is transferred by Google directly to your browser, which integrates it into the website. The website host therefore has no influence on the data volume collected by Google by means of this button, but assumes that the user’s IP address is also collected. You can view the purpose and extent of data collection, further data processing and use by Google as well as respective rights and settings for the protection of your privacy in Google’s data privacy statement regarding the +1 button: http://www.google.com/intl/de/+/policy/+1button.html. If the visitor is a Google Plus member but does not wish for Google to collect any personal data via this Internet platform and to connect it to member data saved by Google, they need to log out of Google Plus before visiting this Internet platform.
Use of Twitter’s Tweet Button
This Internet platform uses the tweet button by the social media network Twitter, operated by Twitter Inc., 750 Folsom Street, Suite 600, San Francisco, CA 94107, United States (“Twitter”). The button displays a dark blue bird and the word “tweet” on light blue ground. When you access a website of this Internet platform that contains such a button, your browser automatically connects to the Twitter servers. The content of the tweet button is transferred by Twitter directly to your browser, which integrates the twitter tweet. The website host therefore has no influence on the data volume collected by Twitter by means of this button, but assumes that the user’s IP address is also collected. You can view the purpose and extent of data collection, further data processing and use by Twitter as well as respective rights and settings for the protection of your privacy in Twitter’s data privacy statement: http://twitter.com/privacy. If the visitor is a Twitter member but does not wish for Twitter to collect any data via this Internet platform and to connect it to member data saved by Twitter, the visitor must log out of Twitter before visiting this Internet platform.
Use of Xing Social Plugins
Use of the wize.life Button
Use of the Pinterest Button
This Internet platform uses the “Pin It” button by the social media network Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA (“Pinterest”). On our web page, the Pinterest plugin is represented by a “Pin It” button with white letters on red ground or red letters on white ground or else by a red-and-white “P” on white ground.
Being already logged into your Pinterest account, simply click on the “Pin It” button on our website to link the contents of our website to your Pinterest profile. This makes it possible for Pinterest to connect your visit on our website to your user account. Please note that as the host of this website, we have no means of knowing the content of transferred data or its further use by Pinterest. For more information, please see the data privacy statement by Pinterest at: http://pinterest.com/about/privacy.
Security, Questions and Suggestions, Responsible Party
Security also depends on your own operating system. You should always handle your access information confidentially, never allow your Internet browser to save passwords and close the Internet browser window once you have completed your visit to our website. In this way, you limit third party access to your personal data.
Make sure to use an operating system that allows you to manage your user rights. Create several user accounts on your system for family use and never use the Internet with activated administrator rights. Make use of security software such as a virus scanners and firewalls and make sure your system is updated regularly.
Responsible controller for this online presence according to the General Data Protection Regulation, to other national data protection laws of EU member states and to further data protection regulations is:
Internationales Bergfilm-Festival Tegernsee
Rechtsträger Stadt Tegernsee
Phone: +49 (0) 8022-1801-0
Fax: +49 (0) 8022-180122
Freedom of Information / Right to Withdrawal; Further Rights of Data Subjects
You are entitled:
- according to GDPR Art. 15 to receive information about your personal data processed by us. In particular, you may request information about the purpose of the processing, the categories of personal data, the categories of recipients to whom your data has been or will be disclosed, the envisaged duration of storage, the existence of a right to rectification, erasure, restriction or objection to processing, the existence of a right to complaint, the source of your data in case it was not collected by us as well as about the existence of automated decision-making, including profiling and information regarding respective details;
- according to GDPR Art. 16 to demand instant rectification or completion of your personal data stored by us;
- according to GDPR Art. 17 to erasure of your personal data stored by us, as long as their processing is not necessary to exercise the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims;
- according to GDPR Art. 18 to the restriction of personal data processing, should you contest the accuracy of the personal data, should its processing be unlawful but you decline its erasure, should we no longer need the data but you need it for the establishment, exercise or defence of legal claims, or should you have objected to processing pursuant to GDPR Art. 21;
- according to GDPR Art. 20 to receive the personal data which you provided to us, in a structured, commonly used and machine-readable format or their transmission to another controller;
- according to GDPR Art. 7 Section 3 to withdraw your previously given consent from us at any time. In consequence, we must desist from future data processing based on this previous consent, and
- according to GDPR Art. 77 to lodge a complaint with a supervisory authority. Ordinarily you would contact the supervisory authority at the place of your habitual residence or work or at our place of business.
Obviously, you may avail of these rights free of charge. To revoke your consent to data use, to request information, rectification, restriction or erasure of your data or to exercise other data subject rights, please contact:
Internationales Bergfilm-Festival Tegernsee
Rechtsträger Stadt Tegernsee
Phone: +49 (0) 8022-1801-0
Fax: +49 (0) 8022-180122
Newsletter – Unsubscribe, Advertising Emails
If you no longer wish to receive our newsletter or emailed advertisements, please click on the link “Newsletter abmelden” (unsubscribe from newsletter), which is included at the end of all emails sent out by bergfilm-tegernsee.de.
For all legal purposes, the German language version of this document applies.