Privacy Policy
The following information explains how we collect personal data when you use this website. The service provider and, therefore,the data controller under the EU General Data Protection Regulation(GDPR) isRaiffeisen Touristik Group GmbH.
For more information on how to contact us, please refer to our legal notice at
. Protecting your privacy and personal data is of great importance to us. We also pay close attention to this aspect in the implementation of our online activities. Our data protection practices are therefore in compliance with applicable data protection regulations and other legal requirements.
To provide the best possible protection for your data against accidental or intentional manipulation, loss, destruction, or access by unauthorized third parties, we employ technical and organizational security measures that we continuously optimize in line with technological and legal developments.
AtRaiffeisen Touristik Group GmbH,access to personal data is restricted to only those individuals who require this data to perform their duties within the responsible entity, who are informed of the legal provisions regarding data protection, and who have committed to complying with these provisions in accordance with applicable laws.
We would like to explain below what personal data we collect from you and how we use it. We therefore ask that you read the following information carefully.
1. Personal Data
Personal data, as defined in Article 4(1) of the GDPR, means any information relating to an identified or identifiable natural person (hereinafter referred to as the “data subject”); A natural person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
2. Collection and Storage of Personal Data
a) When visiting the website
When you access our website www.rtrtg.de, the browser used on your device automatically sends information to our website’s server. This information is temporarily stored in a so-called log file. The following information is collected without any action on your part and stored until it is automatically deleted:
IP address of the requesting computer,
date and time of access,
name and URL of the file accessed,
website from which access is made (referrer URL),
browser used and, if applicable, your computer’s operating system, as well as the name of your internet service provider.
We process the aforementioned data for the following purposes:
Ensuring a smooth connection to the website,
Ensuring a comfortable user experience on our website,
Evaluating system security and stability, as well as
for other administrative purposes.
The legal basis for data processing is Art. 6(1)(f) GDPR. Our legitimate interest arises from the purposes of data collection listed above. Under no circumstances do we use the collected data for the purpose of drawing conclusions about your identity.
In addition, we use cookies when you visit our website. You can find further details on this in Section 7 of this Privacy Policy.
b) When using our contact form at
If you have any questions, we offer you the option of contacting us via a form provided on the website. You must provide a valid email address so that we know who sent the inquiry and can respond to it. Additional information may be provided voluntarily.
Data processing for the purpose of contacting us is carried out in accordance with Art. 6(1)(a) of the GDPR based on your voluntary consent.
The personal data we collect when you use the contact form will be automatically deleted once your inquiry has been processed.
c) Subscription to our newsletter
On the website ofRaiffeisen Touristik Group GmbH,users are given the opportunity to subscribe to our company’s newsletter. The personal data transmitted to the data controller when subscribing to the newsletter is determined by the input form used for this purpose.
Raiffeisen Touristik Group GmbHinforms its customers and business partners at regular intervals via a newsletter about the company’s offers. The company’s newsletter can generally only be received by the data subject if
(1) the data subject has a valid email address and
(2) the data subject registers to receive the newsletter. For legal reasons, a confirmation email is sent to the email address initially provided by a data subject for the newsletter via a double opt-in procedure. This confirmation email serves to verify whether the owner of the email address, as the data subject, has authorized the receipt of the newsletter.
When you subscribe to the newsletter, we also store the IP address assigned by the Internet service provider (ISP) to the computer system used by the data subject at the time of registration, as well as the date and time of registration. The collection of this data is necessary to be able to trace any (potential) misuse of a data subject’s email address at a later date and therefore serves to provide legal protection for the controller.
The personal data collected in connection with a newsletter subscription is used exclusively for sending our newsletter. Data processing for the purpose of contacting us is carried out pursuant to Art. 6(1)(a) GDPR on the basis of your voluntarily given consent.
Furthermore, newsletter subscribers may be informed by email if this is necessary for the operation of the newsletter service or a related registration, as might be the case with changes to the newsletter offering or alterations to the technical conditions. Personal data collected in connection with the newsletter service is not disclosed to third parties. The data subject may cancel their subscription to our newsletter at any time. Consent to the storage of personal data that the data subject has provided to us for the purpose of sending the newsletter may be revoked at any time. A link for revoking consent is included in every newsletter. Furthermore, it is possible to unsubscribe from the newsletter at any time directly on the website of the data controller or to notify the data controller of this in another manner.
3. Disclosure of Data
Your personal data will not be disclosed to third parties for any purpose other than those listed below.
We will only disclose your personal data to third parties if:
you have given your explicit consent pursuant to Art. 6(1)(a) GDPR,
the disclosure is necessary pursuant to Art. 6(1)(f) GDPR for the establishment, exercise, or defense of legal claims, and there is no reason to assume that you have an overriding legitimate interest in the non-disclosure of your data,
in the event that there is a legal obligation for the disclosure pursuant to Article 6(1)(c) of the GDPR, as well as
where this is legally permissible and necessary pursuant to Article 6(1)(b) of the GDPR for the performance of contractual relationships with you.
4. Export and Processing of Data to Countries Outside the European Economic Area
Your personal data will not be exported to countries outside the European Economic Area (hereinafter EEA) if you object to such export.
However, if you are logged into social media plugins, personal data may be exported to the United States. For further details and information on how to prevent this data export, please refer to section “11. Social Media Plugins” of this Privacy Policy.
However, no personal data is transmitted to Google in connection with the use of analytics programs by the controller, as your IP address is transmitted only in anonymized form. Please refer to section “8. Analytics Programs” of this Privacy Policy.
The service providers engaged by the controller are based and operate their IT infrastructure exclusively within the EEA. This also applies to any use of cloud-based services. Contracts have been entered into with the service providers that comply with the data protection and data security requirements of the European Data Protection Directive (95/46/EC) and German data protection law, or, as of May 25, 2018, the GDPR. Even in the event of the engagement of external service providers, Raiffeisen Touristik Group GmbHremains the controller responsible for the processing.
5. Deletion of Your Data
Once yourdata is no longer needed for the aforementioned purposes, it will be deleted. If data must be retained for legal reasons, it will be blocked. The data will then no longer be available for further use.
6. Use of Cookies
When you visit our website, information is stored on your computer in the form of a cookie within your browser software. This cookie stores details about your use of the website. The use of cookies makes it easier for you to use the website’s features, as we can recognize your computer on subsequent visits, thereby eliminating the need for you to re-enter data.
The cookies we use (small files containing configuration information) help us determine the frequency of use and the number of users of our website and enable you to make full use of the service. Most browsers are set to automatically accept cookies. However, you can disable the storage of cookies or set your browser to notify you as soon as cookies are sent. In addition, you have the option to delete stored cookies from your hard drive at any time. Please note that if you disable the storage of cookies, you may only be able to use our website to a limited extent.
7. hCaptcha
To protect the contact form from unwanted, automated messages, I use the hCaptcha service provided by Intuition Machines, Inc. As soon as you click the “Load Captcha” button, your IP address is transmitted to hCaptcha. The service is provided by Intuition Machines, Inc., 350 Alabama St, #10, San Francisco, CA 94110, USA.
For more information and hCaptcha’s privacy policy, please visithttps://www.hcaptcha.com/privacy.
8. YouTube Video
YouTube Video is a streaming service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter “Google”). We use the YouTube embedding feature on our website, which allows us to display and play videos on our website.
To protect your data, we use a so-called consent banner in conjunction with our embedded YouTube videos. This banner helps ensure that your data is not processed by YouTube as soon as you access the page containing the YouTube video, but only after you have given your consent. Additionally, we use the enhanced privacy mode on our website, which means that the videos you watch are not used for personalizing your YouTube browsing experience or for personalizing advertisements. When a video is played on our website, YouTube uses local storage. As part of this service, Google processes the IP address, browser and device information (e.g., the operating system), the referrer URL, and information about the videos viewed.
Google is responsible for the data processing described above. Please note that Google transfers the aforementioned information to Google’s servers in the United States (see the section on data transfers to third countries). Data collection is carried out in accordance with Section 25(1) of the German Teleservices Data Protection Act (TTDSG), and subsequent data processing is based on your explicit consent in accordance with Article 6(1)(a) of the General Data Protection Regulation (GDPR). You can revoke your consent at any time with future effect under the “Cookie Settings” section at the bottom of our website.
For more information on Google’s privacy policy, please visithttps://policies.google.com/privacy?hl=de.
9. Liability for Links
Our website contains links to external third-party websites over whose content we have no control. Therefore, we cannot assume any liability for this third-party content. The respective provider or operator of the linked pages is always responsible for their content. The linked pages were checked for possible legal violations at the time the links were created. No illegal content was apparent at the time the links were created. However, continuous monitoring of the content of the linked pages is not reasonable without concrete evidence of a legal violation. If we become aware of any legal violations, we will remove such links immediately.
External links are marked with this symbol:
Data regarding the link destination is only transmitted when you click on an external link.
This is technically necessary due to the underlying protocol of the Internet (TCP/IP = TCP – Transmission Control Protocol + IP – Internet Protocol). The data transmitted includes, in particular: your IP address, the time at which you clicked the link, the page on which you clicked the link, and other information specified in Section II No. 1 of this notice.
Clicking on individual links may result in data being transferred to third parties. This may allow third parties, government agencies, or intelligence services to obtain connection data. If you do not want the aforementioned data to be transmitted to the link destination or to the third parties mentioned, or to be accessed by others, do not click on the link.
10. Contact Form
If you submit inquiries to us via the contact form, we will store the information you provide in the form, including the contact details you enter there, for the purpose of processing your inquiry and in case of follow-up questions. We will not share this data without your consent.
The processing of the data entered in the contact form is therefore based exclusively on your consent (Art. 6(1)(a) GDPR). You may revoke this consent at any time. To do so, simply send us an informal email. The lawfulness of the data processing operations carried out prior to revocation remains unaffected by the revocation.
The data you enter in the contact form will remain with us until you request its deletion, revoke your consent to its storage, or the purpose for storing the data no longer applies (e.g., after your inquiry has been processed). Mandatory legal provisions—in particular retention periods—remain unaffected.
11. Protection of Your Personal Data
To process your personal data as securely as possible, we always use SSL (Secure Socket Layer) security software for data transmission between your computer and our server. This ensures that all data transmission is encrypted. We also maintain up-to-date technical measures to ensure data security, particularly to protect your personal data during data transfers and against access by third parties. These measures are adapted as necessary in accordance with the current state of the art. The storage of your personal data is always carried out in compliance with the legal regulations within the Federal Republic of Germany.
12. Right of access, rectification, erasure (right to be forgotten), restriction of processing, data portability, objection, and withdrawal of consent.
You have the right to request information from us at any time regarding the data we have stored about you, in accordance with the provisions of Article 15 of the GDPR. You may also, at any time and without providing a reason, view your data free of charge, request its correction pursuant to Art. 16 GDPR and/or erasure pursuant to Art. 17 GDPR and/or restriction of processing of your personal data pursuant to Art. 18 GDPR, and/or exercise your right to data portability pursuant to Art. 20 GDPR and/or your right to object under Art. 21 GDPR, and/or revoke any consent you have given us for the collection and use of data without providing a reason. If you have given consent for the use of data, you may revoke it at any time free of charge without providing a reason.
For this purpose and/or to obtain further information on data protection, please contact our company data protection officer at the address provided in the legal notice or by email at datenschutz@rtrtg.de.
13. Filing a complaint regarding data protection violations with the supervisory authority
Anyone who believes that their rights have been infringed upon in connection with the collection, processing, or use of their personal data may contact the competent data protection supervisory authority in accordance with Article 77(1) of the GDPR. The competent supervisory authority for complaints regarding our data processing is the
Supervisory Authority
Bavarian State Office for Data Protection Supervision (BayLDA)
Promenade 27
91522 Ansbach
This authority will investigate the complaint and inform the data subject of the outcome.
14. Changes to the Privacy Policy
Since the processing methods we use may change or evolve due to technological advancements and organizational changes, we reserve the right to update this Privacy Policy in accordance with new technical requirements. We therefore ask that you review our Privacy Policy from time to time. If you do not agree with the changes made over time, you may request in writing, in accordance with Article 17 of the GDPR, the deletion of data that is not stored on the basis of other legal requirements, such as commercial or tax law retention obligations.
The service provider and entity responsible for this website is:
Raiffeisen Touristik Group GmbH
Burghauser Straße 4a
84503 Altötting
Phone: 08671 505-1000
Fax: 08671 505-1771
Managing Director: Wolfgang Altmüller
Commercial Register: AG Hamburg HRA 99961
VAT ID No. DE 186 194 857
For further information regarding the responsible entity, please refer to the legal notice on our website.
