Data protection declaration

The protection of your personal data is of prime importance to us. We therefore process your data exclusively in accordance with legal directives. In this data protection information, we present the most important aspects of data processing in the context of our website.

Name and address of the responsible party

The responsible party in relation to the General Data Protection Regulation (GDPR) and other national data protection laws of the member states, as well as further data protection regulations is:

Szieszta Panzió
Rákóczi út 57 / A
9600 Sárvár
Hungary

General information about data processing

1. Processing scope of personal data

In principle, we only gather and use personal data insofar as it is required for providing a functional website, as well as our content and services. As a rule, the gathering and use of the personal data of our users is only after consent by the user. An exception applies in cases in which the obtaining of prior consent is not possible for substantiated reasons and the processing of the data is permitted by legal provisions.

2. Legal basis for the processing of personal data

If we obtain consent from the person in question for the processing of personal data, Art. 6 Par. 1 lit. a of the General Data Protection Regulation (GDPR) serves as a legal basis for the processing of personal data.
In the processing of personal data that is required for fulfilling a contract whose contract party is the person in question, Art. 6 Par. 1 lit. b GDPR serves as a legal basis. This also applies to processing procedures required for carrying out pre-contractual measures.
If the processing of personal data is required for fulfilling a legal obligation that our company is subject to, Art. 6 Par. 1 lit. c GDPR serves as a legal basis.
If processing is necessary to safeguard a justified interest of our company or a third party and if the interests, basic rights and basic freedoms of the affected person do not outweigh the aforementioned interest, Art. 6 Par. 1 lit. f GDPR serves as the legal basis for the processing.

3. Data deletion and storage period

The personal data of the affected person is deleted or blocked as soon as the purpose of storing it no longer applies. Storage beyond this can occur if determined by the European or national legislature in Union regulations, laws or other directives that the responsible party is subject to. Data is also blocked or deleted if a storage period prescribed by the mentioned norms expires, unless there is a requirement for further storage of the data for conclusion or fulfilment of a contract.

Provision of the website and generation of log files

1. Description and scope of data processing

Every time our Internet page is accessed, our system automatically gathers data and information from the computer system of the accessing device.
The following data is hereby gathered:

– Information about the browser type and the version used
– The operating system of the user
– the Internet service provider of the user
– The IP address of the user
– Date and time of access
– Websites from which the system of the user reaches our webpage
– Websites that are accessed from the user’s system through our website

The data is also stored in the log files of our system. Storage of this data together with other personal data of the user does not occur.

2. Legal basis for data processing

The legal basis for the temporary storage of data and the log files is Art. 6 Par. 1 lit. f GDPR.
3. Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable a provision of the website to the user’s device. The IP address of the user must remain stored for this purpose for the duration of the session. The storage in log files is to ensure the functionality of the website. In addition, the data serve to optimise the website and to ensure the security of our technical information systems. There is no evaluation of the data for marketing purposes in relation to this.
Our justified interest in data processing according to Art. Par. 1 lit. f GDPR also lies in these purposes.
4. Duration of storage

The data is deleted as soon as it is no longer necessary for attaining the purpose of its gathering. In the case of gathering data for making the website available, this is the case when the particular session has ended.
In the case of storing the data in log files, this happens at the latest after 7 days. Storage beyond this is possible. In this case, the IP addresses of the users are deleted or alienated, so that it is no longer possible to assign them to the accessing client.
5. Objection and elimination possibility

The gathering of data to make the website available and the storing of data in log files is absolutely necessary for operating the webpage. There is no possibility of objection or opt-out by the user.

Contact form and e-mail contact

There is a contact form on our webpage that can be used for electronic contact. If a user makes use of this possibility, the data entered in the input fields is transmitted to us and stored.
In addition, the IP address of the accessing device and the date and time of registration are gathered upon registration.
Your consent is obtained for the processing of the data as part of the sending procedure and you are referred to this data protection declaration.
Alternatively, it is possible to make contact via the provided e-mail address. In this case, the personal data of the user transmitted with the e-mail is stored.
If you contact us via the contact form on our webpage or by e-mail, your input data is stored for 12 months for the purpose of processing the enquiry and in case of follow-up questions.
In relation to this there is no passing on of data to third parties. The data is used exclusively for processing the conversation.
Bookings or booking enquiries for requesting orders

The data entered in relation to a booking or booking enquiry is stored and used for the purposes of booking or, in the case of a booking enquiry, to send an offer.
You can be informed by e-mail about matters relevant to the offer, such as changes to the scope of the offer or technical circumstances.
The gathered data can be viewed on the entry form relating to the booking or booking enquiry. It includes name, telephone number, postal address, e-mail address, IP address, travel dates and your optional additional comments.
Newsletter

You have the option of subscribing to our newsletter through our website. To do so, we require your e-mail address, your name and your declaration that you agree with receiving the newsletter.
To provide you with targeted information, we also gather and process voluntary information e.g. address data, areas of interest etc., depending which newsletter you are subscribing to.
In addition, the IP address of the accessing device and the date and time of the registration are gathered when you register.
As soon as you have registered for the newsletter, we send you a confirmation e-mail with a link to confirm the registration.
If you purchase goods or services on our webpage and state your e-mail address, we may subsequently use this for sending a newsletter. In such a case, the newsletter exclusively contains direct advertising for our own similar goods or services.
You can cancel the newsletter subscription at any time by clicking on the corresponding unsubscribe link in the newsletter or alternatively by contacting us by e-mail. We then delete your data immediately in relation to the newsletter mailing. No data is passed on to third parties in connection with data processing for the mailing of newsletters. The data is used exclusively for sending the newsletter.
Cookies

Our website uses so-called cookies. These are small text files that are deposited on your end device with the help of the browser. They do not cause any damage. We use cookies to make out website user-friendly. Some elements of our webpage require that the accessing browser can still be identified after changing pages.
Some cookies remain stored on your end device until you delete them. This type of cookie contains a characteristic character string that enables a clear identification of the browser when accessing the webpage again.
If you do not want this, you can set your browser so that it informs you of the placing of cookies and you only allow it in individual cases.
When deactivating cookies, the functionality of our website can be compromised.
Google Maps

This website uses the “Google Maps and route planner” of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”) to present and calculate geographical information and arrival routes. Through Google Maps, data about your use of this website can be transmitted to website, gathered and used by Google. You can prevent such a data transmission if you deactivate “Javascript” in your browser. In this case, however, no maps can be displayed. By using this website and not deactivating “Javascript”, you are declaring your consent to your data being processed by Google for the purpose above. You can find further information about how “Google Maps” and the route planner use your data, as well as the Google data protection declaration at: https://www.google.com/intl/de_de/help/terms_maps.html
Social media buttons

On this website, users can share a variety of content quickly and easily on social networks such as Facebook, Twitter, Pinterest, Instagram or Google and/or follow our postings on social networks. Our social buttons allow users to use these services, whilst still safeguarding their privacy.
This allows users to post or follow content on social networks conveniently, without their generating complete surf profiles.
Our social buttons only establish direct contact between social networks and users when they clock actively on the share button.

If users use our social buttons, then the data protection declarations of the respective social network apply – detailed information about their data protection conditions can be found here:
Facebook: https://www.facebook.com/policy.php
Instagram: https://instagram.com/about/legal/privacy/
G+: https://www.google.com/intl/de/policies/privacy/
Pinterest: https://about.pinterest.com/de/privacy-policy
Twitter: https://twitter.com/de/privacy
Use of Facebook social plugins

This website uses social plugins of the social network facebook.com, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). The plugins can be identified by one of the Facebook logos (white “f” on a blue tile or a “thumbs up” sign) or are indicated with the addition “Facebook social plugin”. The list and the appearance of Facebook social plugins can be viewed here: https://developers.facebook.com/docs/plugins/

If a user accesses a website that contains such a plugin, their browser builds a direct connection with the Facebook servers. The content of the plugin is transmitted directly to your browser by Facebook and linked into the website. The provider therefore has no influence on the scope of the data that Facebook gathers by means of this plugin and informs the users accordingly to the state of knowledge:

Through the incorporation of the plugins, Facebook receives the information that a user has accessed the respective website. If the user is logged into Facebook, Facebook can attribute the visit to their Facebook account. If users interact with the plugins, for example by pressing the like button or making a comment, the respective information is transmitted by their browser directly to Facebook and stored there. If a user is not a Facebook member, it is nevertheless possible for Facebook to identify and store their IP address.

The purpose and scope of the data gathering and the further processing and use of the data by Facebook, as well as the applicable rights and possible settings for protecting the privacy of the users, are set out in the Facebook data protection specifications: https://www.facebook.com/about/privacy/

If a user is a Facebook member and does not want Facebook to gather data about them through this website and to link them with their member data stored at Facebook they must log out of Facebook before visiting the webpage.
It is also possible to block Facebook social plugins with add-ons for your browser, such as with the “Facebook blocker”.
+1 button for Google+

This website uses the “+1? Button of the social network Google Plus, which is operated by
Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”). The button is identified by the sign “+1? On a white or colour background.

If a user accesses a website that contains such a button, the browser builds a direct connection with the Google servers. The content of the “+1? Button is transmitted by Google directly to its browser and incorporated into the website. The provider therefore has no influence on the scope of the data that Google gathers with the button. According to Google, without a click on the button no personal data is gathered. Such data, including the IP address is only gathered and processed or members who are logged in.

The purpose and scope of the data gathering and the further processing and use by Google, as well as your associated rights and settings for protecting your privacy, are detailed in Google’s data protection specifications for the “+1? Button:

https://www.google.com/intl/de/+/policy/+1button.html and the FAQ: https://www.google.com/intl/de/+1/button/
Incorporation of third-party services and content

It can happen that third-party content, such as YouTube videos, Google Maps map material, RSS feeds or graphics from other websites are incorporated within this website. This always assumes that the providers of this content (hereinafter referred to as “third-party providers”) are aware of the IP address of the users, as without the IP address they could not send the content to the browser of the respective user. The IP address is therefore necessary for presenting this content. We do our best only to use such content whose provider only makes use of the IP address to supply content. However, we have no influence on whether the third-party provided stores the IP address e.g. for statistical purposes. Insofar as we are aware of this, we inform users accordingly.
Your rights

You have basic rights to information, correction, deletion, restriction, data portability, revocation and objection. If you believe that the processing of your data contravenes data protection law or your data protection rights have been infringed in any other way, you can complain to the regulatory authority.


to top