Data protection
Introduction
We take the protection of the data of the users of our website and / or our mobile app (the "website" or the "mobile app") very seriously and commit ourselves to the information that users give us in connection with the use of our website and / or our mobile app (collectively: "digital assets"). Furthermore, we undertake to protect and use your data in accordance with applicable law.
This Privacy Policy explains our practices regarding the collection, use and disclosure of your information through your use of our digital assets (the “Services”) when you access the Services through your devices. Please read the privacy policy carefully and make sure you fully understand our practices in relation to your data before using our services. If you have read this policy, fully understood it and do not agree with our approach, you must stop using our digital assets and services. By using our services, you accept the terms of this privacy policy. Further use of the services constitutes your acceptance of this privacy policy and all changes to it.
In this privacy policy you will learn:
-
Who is responsible for data collection on this website?
-
What data do we collect?
-
How do we collect data?
-
Why do we collect this data?
-
Who do we pass the data on to?
-
Cookies and Similar Technologies
-
Where do we store the data?
-
How long will the data be kept?
-
How do we protect the data?
-
Hosting and Content Delivery Networks (CDN) - External hosting
-
How do we deal with minors?
-
Final notes
-
Updates or changes to the privacy policy
- Responsibility and contact
1. Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. You can find their contact details in the section "Note on the responsible body" in this data protection declaration.
2. What data do we collect?
Below is an overview of the data we can collect:
-
Unidentified and unidentifiable information that you provide during the registration process or that is collected through the use of our services ("non-personal data"). Non-personal data does not allow any conclusions to be drawn about who collected it. Non-personal information that we collect consists primarily of technical and aggregate usage information.
-
Individually identifiable information, ie all those that can be used to identify you or that could identify you with reasonable effort (“personal data”). The personal information we collect through our services may include information that is requested from time to time, such as names, email addresses, addresses, phone numbers, IP addresses, and more. If we combine personal data with non-personal data, we will treat these as personal data as long as they exist in combination.
-
Other data are recorded automatically or with your consent when you visit the website by our IT systems. This is mainly technical data (e.g. internet browser, operating system or time of the page view). This data is collected automatically as soon as you enter this website.
3. How do we collect data?
Below are the main methods we use to collect data:
-
We collect data when you use our services. So when you visit our digital assets and use services, we can collect, record and store the usage, sessions and related information.
-
We collect data that you provide to us yourself, for example when you contact us directly via a communication channel (e.g. an email with a comment or feedback).
-
We may collect data from third party sources as described below.
-
We collect data that you provide to us when you log into our services via a third party provider such as Facebook or Google.
4. Why do we collect this information?
We can use your data for the following purposes:
-
to provide and operate our services without errors;
-
to develop, customize and improve our services;
-
to respond to your feedback, inquiries and requests and offer help;
-
to analyze requirement and usage patterns;
-
for other internal, statistical and research purposes;
-
to improve our data security and fraud prevention capabilities;
-
to investigate violations and to enforce our terms and conditions and to comply with applicable law, regulations or government orders;
-
to provide you with updates, news, promotional materials and other information related to our services. In the case of promotional emails, you can decide for yourself whether you want to continue receiving them. If not, just click the unsubscribe link in those emails.
-
When you visit this website, your surfing behavior can be statistically evaluated. This is done primarily with so-called analysis programs.
-
other data can be used to analyze your user behavior.
5. Who do we pass this data on to?
We can pass on your data to our service providers in order to operate our services (e.g. storage of data via third-party hosting services, provision of technical support, etc.).
We may also disclose your information in the following circumstances: (i) to investigate, detect, prevent or take action against illegal activities or other misconduct; (ii) to establish or exercise our rights of defense; (iii) to protect our rights, property, or personal safety, and the safety of our users or the public; (iv) in the event of a change of control at our company or at one of our affiliated companies (by way of a merger, acquisition or purchase of (essentially) all assets, etc.); (v) to collect, hold and / or manage your data using authorized third-party providers (e.g. cloud service providers), insofar as this is appropriate for business purposes; (vi) to work with third parties to improve your user experience. To avoid misunderstandings, we would like to point out that we can transfer or pass on or otherwise use non-personal data to third parties at our own discretion.
6. Cookies and Similar Technologies
When you visit or access our services, we authorize third parties to use web beacons, cookies, pixel tags, scripts and other technologies and analysis services (“tracking technologies”). These tracking technologies can enable third parties to automatically collect your data in order to improve the navigation experience on our digital assets, to optimize their performance and to ensure a tailor-made user experience, as well as for security and fraud prevention purposes.
To find out more, please read our Cookie Policy.
We will not pass on your email address or other personal data to advertising companies or advertising networks without your consent.
7. Where do we save the data?
Non-personal data
Please note that our companies, as well as our trusted partners and service providers, are located around the world. For the purposes outlined in this privacy policy, we store and process all non-personal data that we collect in different legal systems.
Personal data
Personal data may be maintained, processed and stored in the United States, Ireland, South Korea, Taiwan, Israel and to the extent necessary for the proper provision of our services and / or required by law (as further explained below) in other jurisdictions.
8. How long will the data be kept?
Please note that we keep the collected data for as long as is necessary to provide our services, to comply with our legal and contractual obligations to you, to resolve disputes and to enforce our agreements. We can correct, supplement or delete incorrect or incomplete data at our own discretion at any time.
9. How do we protect the data?
The hosting service for our digital assets provides us with the online platform through which we can offer you our services. Your data can be stored via the data storage, databases and general applications of our hosting provider. It stores your data on secure servers behind a firewall and offers secure HTTPS access to most areas of its services.
All payment options offered by us and our hosting provider for our digital assets comply with the regulations of the PCI-DSS (data security standard of the credit card industry) of the PCI Security Standards Council. It is a collaboration between brands such as Visa, MasterCard, American Express and Discover. PCI-DSS requirements help to ensure the secure handling of credit card data (including physical, electronic and procedural measures) by our shop and the service providers.
Regardless of the measures and efforts taken by us and our hosting provider, we cannot and will not guarantee the absolute protection and security of the data that you upload, publish or otherwise pass on to us or others. For this reason, we would like to ask you to set secure passwords and, if possible, not to provide us or others with confidential information, the disclosure of which, in your opinion, could seriously or permanently harm you. Since e-mail and instant messaging are not considered secure forms of communication, we also ask you not to pass on any confidential information via any of these communication channels.
10. Hosting and Content Delivery Networks (CDN) - External hosting
This website is hosted by an external service provider (hoster). The personal data recorded on this website is stored on the host's servers. This can primarily involve IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses and other data generated via a website. The hoster is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 Para. 1 lit.b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 Para . 1 lit.f GDPR). Our host will only process your data to the extent that this is necessary to fulfill its performance obligations and follow our instructions with regard to this data.
We use the following hosters:
Wix Online Platforms Limited
1 Grant's Row
Dublin 2 D02HX96
Ireland
In order to ensure data protection compliant processing, we have concluded an order processing contract with our hoster.
11. How do we deal with minors?
The services are not intended for users who have not yet reached the legal age of majority. We will not knowingly collect information from children. If you are under the age of majority, you should not download or use the Services or provide any information to us.
We reserve the right to request proof of age at any time so that we can verify that minors are using our services. In the event that we become aware that a minor is using our services, we can prohibit these users from accessing our services and block them, and we can delete all of the data we have stored about this user. If you have reason to believe that a minor has disclosed data to us, please contact us as explained below.
12. Final notes
We will only use your personal data for the purposes set out in the privacy policy and only if we are convinced that:
-
the use of your personal data is necessary to perform or conclude a contract (e.g. to provide you with the services yourself or to provide customer service or technical support);
-
the use of your personal data is necessary to comply with relevant legal or regulatory obligations, or
-
the use of your personal data is necessary to support our legitimate business interests (provided that this is done at all times in a manner that is proportionate and respects your data protection rights).
As an EU resident you can:
-
request confirmation as to whether or not personal data relating to you is being processed and request access to your stored personal data and certain additional information;
-
request the receipt of personal data that you have provided to us in a structured, common and machine-readable format;
-
request the correction of your personal data that is stored by us;
-
request the deletion of your personal data;
-
object to the processing of your personal data by us;
-
request the restriction of the processing of your personal data, or
-
submit a complaint to a supervisory authority.
RIGHT TO OBJECT TO DATA COLLECTION IN SPECIAL CASES AND DIRECT ADVERTISING (ART. 21 GDPR)
IF THE DATA PROCESSING BASED ON ART. 6 ABS. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA FOR REASONS ARISING FROM YOUR SPECIAL SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RELEVANT LEGAL BASIS ON WHICH PROCESSING IS REQUIRED, CAN BE REFERRED TO IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN PROVIDE COMPULSORY REASONS FOR PROCESSING THAT OCCURS, EXECUTES OR EXECUTES YOUR INTEREST, OBSERVES THE RIGHTS OBJECTION ACCORDING TO ART. 21 PARA. 1 GDPR).
IF YOUR PERSONAL DATA ARE PROCESSED IN ORDER TO OPERATE DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA FOR THE PURPOSE OF SUCH ADVERTISING; THIS ALSO APPLIES TO PROFILING TO THE EXTENT IN CONNECTION WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR THE PURPOSE OF DIRECT ADVERTISING (OBJECTION ACCORDING TO ART. 21 (2) GDPR).
Please note, however, that these rights are not unlimited and may be subject to our own legitimate interests and regulatory requirements. If you have general questions about the personal information we collect and how we use it, please contact us as detailed below. In the course of providing the services, we can transfer data across borders to affiliated companies or other third parties and from your country / legal system to other countries / legal systems worldwide. By using the services, you consent to the transfer of your data outside of the EEA.
If you are based in the EEA, your personal data will only be transferred to locations outside the EEA if we are convinced that there is an adequate or comparable level of protection of personal data. We will take appropriate steps to ensure that we have adequate contractual arrangements with our third parties to ensure that appropriate security measures are in place so that the risk of unlawful use, alteration, deletion, loss or theft of your personal data is minimized and that these third parties act in accordance with applicable law at all times.
California Consumer Law Rights
If you use the Services as a California resident, you may be entitled under the California Consumer Privacy Act ("CCPA") to request access to and deletion of your information.
To exercise your right to access and delete your data, please read below how to contact us.
We do not sell users' personal data for the intentions and purposes of the CCPA.
13. Updates or changes to the privacy policy
We can revise this data protection guideline from time to time at our own discretion; the version published on the website is always up-to-date (see information on the "status"). We ask you to check this data protection guideline regularly for changes. In the event of significant changes, we will publish a notice on our website. If you continue to use the services after being notified of changes to our website, this will be considered as your confirmation and consent to the changes to the privacy policy and your consent to be bound by the terms of these changes.
14. Responsibility and contact
The responsible body for data processing on this website is:
Seilbahnen International Verlag GmbH
Straß 21, A-5301 Eugendorf / Salzburg
Tel .: +43 (0) 62 25/72 90
Fax: +43 (0) 62 25/72 90-14
Internet: www.simagazin.com
Administration: office@simagazin.com
The responsible body is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g. names, email addresses, etc.).
If you have general questions about the services or the data we collect about you and their use, please contact us at the address given under point 14.