The protection of your privacy and your personal data is very important to us. The collection and use of your data is therefore always in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679 (DSGVO) and the relevant regulations.
To protect against manipulation when recording data, all our forms are equipped with the SSL (Secure Socket Layer) protocol. This protocol leads to an encrypted recording as well as an encrypted transmission of the data.
In the following, we – as the responsible party for data processing – therefore inform you about which data is collected by us and in which way we process this data.
Personal data
Personal data within the meaning of the GDPR is any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. Personal data is stored only to the extent necessary to provide the booked service, to comply with legal requirements or for the purpose stated below.
Anonymized data / log files / IP address
You can visit our website without the need to collect personal data. Whenever you visit our website, certain anonymized data is nevertheless stored, e.g. which page or which offer was called up. However, this data is not personal and is therefore not subject to the legal regulations of the DSGVO.
The website operator or page provider collects data about accesses to the page and stores them as “server log files”. The following data is logged in this way: Visited website, time at the time of access, amount of data sent in bytes, source/reference from which you reached the page, browser used, operating system used, IP address used.
The collected data is only used for statistical analysis and to improve the website. However, the website operator reserves the right to subsequently check the server log files if there are concrete indications of illegal use.
Anonymous data is collected solely for statistical evaluation in order to improve our services. Please note the point “Right to information / right of withdrawal”.
Purpose of the collection of personal data
The object of our company is the organization of travel as well as tourist services in general and the related billing and services.
However, the collection of personal data becomes essential when you request or book a travel service or other service via our online presence, or contact us.
In accordance with legal regulations, we generally only collect data that is required for the provision of the service you have requested. If we ask for further information in our forms, the information is always voluntary and marked as such.
The data collection takes place at the following points for the provision of services as well as services:
Trip booking
For booking processing we need your name, address, date of birth and your telephone number and e-mail address for queries.
Trip request
For your travel request we need your title, first name, last name, as well as your telephone number and e-mail address for further communication and response to your request. All further personal data is provided voluntarily.
Request callback
We will be happy to call you back with your callback request. For this we need your first and last name, as well as your phone number.
The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session. Furthermore, the storage in log files takes place in order to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context. These purposes are also our legitimate interest in data processing according to Art. 6 para. 1 lit. f DSGVO.
In the case of a booking of a travel service or other service, the data collected in this context will be used for the processing of this booking and within the legal requirements for promotional purposes and for statistical purposes.
We also use the personal data stored by us to maintain customer relations, for customer support (e.g. information about the course of your stay), to carry out our own advertising and marketing measures (e.g. the dispatch of catalogs other advertising mailings within the legally permissible scope, queries about customer satisfaction) and for order processing.
Legal basis for the processing of personal data
Insofar as we obtain the consent of the data subject for processing operations involving personal data, Art. 6 (1) (a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.
Insofar as processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 (1) lit. c DSGVO serves as the legal basis.
In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Art. 6 (1) lit. d DSGVO serves as the legal basis.
If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override the first-mentioned interest, Art. 6 (1) f DSGVO serves as the legal basis for the processing.
Disclosure of personal data to third parties
Your personal data will only be passed on within the relevant requirements, in particular those relating to data protection and competition law.
Insofar as this is necessary for the provision of the contractual service owed by us or legal obligations, your data will also be passed on to subcontractors or service providers for the provision of the service in the name of or on behalf of us (e.g. technical processing of mail and email dispatch, payment processing, customer service).
In addition, the transfer of data to persons or companies for the processing of your order or booking, especially in the case of travel services to airlines, tour operators, hotels, travel agencies, destination agencies, car rental companies, cruise lines, authorities, etc.. Please note that the data protection regulations at the headquarters of these persons and companies may differ from those in Germany.
Disclosure and transfer of your data to third parties will also take place if we are obliged to do so by law or on the basis of a legally binding judicial procedure.
You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format. You also have the right to transfer this data to another controller without hindrance by the controller to whom the personal data was provided.
Data storage and deletion
Within the scope of the purposes stated under the point “Purpose of the collection of personal data”, your personal data will be stored. The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may take place beyond this if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the responsible party is subject. The legislator has enacted a variety of storage obligations and periods. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need to continue storing the data for the conclusion or performance of a contract.
Right to information / right of revocation; other data subject rights
You have the right
to request information about your personal data processed by us in accordance with Art. 15 DSGVO. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details;
in accordance with Art. 16 DSGVO, to immediately request the correction of incorrect or completion of your personal data stored by us;
in accordance with Art. 17 DSGVO to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims;
in accordance with Art. 18 DSGVO, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing in accordance with Art. 21 DSGVO;
in accordance with Art. 20 DSGVO to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request the transfer to another controller;
in accordance with Art. 7 (3) DSGVO, to revoke your consent once given to us at any time. This has the consequence that we may no longer continue the data processing, which was based on this consent, for the future; and
complain to a supervisory authority in accordance with Art. 77 DSGVO. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters for this purpose.
To revoke your consent to the use of data, to request information or the correction, blocking or deletion or to exercise the other data subject rights, please contact:
Onexperience e.K.
Brunnenstr. 35
10115 Berlin
E-Mail: info@onexperience.de
Internet: onexperience.de
You are of course entitled to this right free of charge, without incurring higher transmission costs than for the basic rates.
Security, questions and suggestions, responsible person
Last but not least, security depends on your system. You should always keep your access information confidential, never allow passwords to be saved by the web internet browser and close the internet browser window when you end your visit to our website. In this way, you will make it more difficult for third parties to access your personal data.
Use an operating system that can manage user rights. Set up multiple users on your system, even in the family, and never use the Internet under administrator rights. Use security software such as virus scanners and firewalls and keep your system up to date.
The responsible person for this online presence within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:
Onexperience e.K.
Brunnenstr. 35
10115 Berlin
E-Mail: info@onexperience.de
Internet: onexperience.de
Other
We point out that data transmission over the Internet (eg communication by e-mail) security gaps. A complete protection of data against access by third parties is not possible.
The use of contact data published within the framework of the imprint obligation by third parties for the purpose of sending unsolicited advertising and information material is hereby expressly prohibited. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.