Privacy Policy

1. Privacy Overview

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data are all data with which you can be personally identified. For detailed information on the topic of privacy, please refer to our privacy policy at the end of this text.

Data Collection on this Website

Who is responsible for data collection on this website?

The data processing on this website is carried out by the website operator. You can find their contact details in the section “Notice about the Responsible Party” in this privacy policy.

How do we collect your data?

Your data is collected on one hand by you providing us with this information. This can include data that you enter into a contact form.

Other data is collected automatically or with your consent when you visit the website by our IT systems. This mainly includes technical data (e.g., Internet browser, operating system, or time of the page view). These data are collected automatically as soon as you enter this website.

What do we use your data for?

Some of the data is collected to ensure the error-free provision of the website. Other data can be used to analyze your user behavior. If contracts can be initiated or concluded via the website, the transmitted data will also be processed for contract offers, orders, or other inquiries.

What rights do you have regarding your data?

You have the right to obtain information about the origin, recipients, and purpose of your stored personal data at any time free of charge. You also have the right to request the correction or deletion of this data. If you have given consent for data processing, you can revoke this consent at any time for the future. Additionally, you have the right to request the restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the responsible supervisory authority.

You can contact us at any time regarding this or any other questions about privacy.

Analysis Tools and Third-Party Tools

Your browsing behavior can be statistically evaluated when visiting this website. This occurs primarily with so-called analysis programs.

For detailed information about these analysis programs, please refer to the following privacy policy.

2. Hosting

We host the content of our website with the following provider:

External Hosting

This website is hosted externally. The personal data collected on this website are stored on the servers of the hoster. This may include, among others, IP addresses, contact inquiries, meta and communication data, contract data, contact details, names, website access and other data that are generated through a website.

The external hosting is carried out for the purpose of fulfilling contracts with our potential and existing customers (Art. 6 (1) lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offering by a professional provider (Art. 6 (1) lit. f GDPR). If explicit consent has been requested, the processing is based solely on Art. 6 (1) lit. a GDPR and § 25 (1) TDDG, as far as the consent concerns the storage of cookies or access to information on the user's end device (e.g., device fingerprinting) in the sense of the TDDG. The consent can be revoked at any time.

Our hoster will process your data only to the extent necessary to fulfill its service obligations and follow our instructions regarding this data.

We use the following hoster:

Framer Inc., Rozengracht 207, 1016 LZ Amsterdam, Netherlands

Order Processing

We have concluded a contract for order processing (AVV) for the use of the above-mentioned service. This is a contract required by data protection law, ensuring that this service processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

3. General Information and Mandatory Information

Privacy

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and according to the legal data protection regulations and this privacy policy.

When you use this website, various personal data is collected. Personal data are data with which you can be personally identified. This privacy policy explains which data we collect and for what purposes we use them. It also explains how and for what purpose this is done.

We point out that data transmission over the Internet (e.g., when communicating by email) may have security gaps. A complete protection of the data against access by third parties is not possible.

Notice about the Responsible Party

The responsible party for data processing on this website is:

Campingplatz Harfenmühle
Dieter Robert Koch
Harfenmühle 2
55758 Mörschied

Phone: 06786 1304
Email: mail@harfenmuehle.de

The responsible party is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).

Duration of Storage

As long as a more specific storage duration is not mentioned in this privacy policy, your personal data will remain with us until the purpose for which the data processing ceases. If you make a legitimate deletion request or revoke consent to data processing, your data will be deleted, unless we have other legally permissible reasons for the storage of your personal data (e.g., tax or commercial retention periods); in the latter case, deletion will take place after the cessation of these reasons.

General Information on the Legal Basis for Data Processing on this Website

If you have consented to data processing, we process your personal data based on Art. 6 (1) lit. a GDPR or Art. 9 (2) lit. a GDPR, if special categories of data are processed according to Art. 9 (1) GDPR. In the case of an explicit consent to the transfer of personal data to third countries, data processing also takes place based on Art. 49 (1) lit. a GDPR. If you have consented to the storage of cookies or to access information on your end device (e.g., via device fingerprinting), data processing occurs additionally based on § 25 (1) TDDG. The consent can be revoked at any time. If your data is necessary for the fulfillment of a contract or for the execution of pre-contractual measures, we process your data based on Art. 6 (1) lit. b GDPR. Furthermore, we process your data if it is necessary for the fulfillment of a legal obligation based on Art. 6 (1) lit. c GDPR. Data processing may also be based on our legitimate interests according to Art. 6 (1) lit. f GDPR. The relevant legal bases applicable in each individual case will be detailed in the subsequent sections of this privacy policy.

Recipients of Personal Data

In the context of our business operations, we work with various external entities. In this context, the transfer of personal data to these external entities may also be necessary. We only share personal data with external parties if this is necessary for the fulfillment of a contract, if we are legally obliged to do so (e.g., transfer of data to tax authorities), if we have a legitimate interest in the transfer according to Art. 6 (1) lit. f GDPR, or if another legal basis allows for the data transfer. When using processors, we only share personal data of our customers based on a valid contract for order processing. In the case of joint processing, a contract for joint processing is concluded.

Withdrawal of Your Consent to Data Processing

Many data processing operations are only possible with your explicit consent. You can revoke consent you have already given at any time. The legality of the data processing carried out until the withdrawal remains unaffected by the withdrawal.

Right to Object to Data Collection in Special Cases and Against Direct Advertising (Art. 21 GDPR)

IF THE DATA PROCESSING IS CARRIED OUT BASED ON ART. 6 (1) LIT. E OR F GDPR, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME, FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, TO THE PROCESSING OF YOUR PERSONAL DATA; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RELEVANT LEGAL BASIS FOR THE PROCESSING CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS OR THE PROCESSING IS NECESSARY FOR THE ESTABLISHMENT, EXERCISE, OR DEFENSE OF LEGAL CLAIMS (OBJECTION UNDER ART. 21 (1) GDPR).

IF YOUR PERSONAL DATA ARE PROCESSED FOR THE PURPOSE OF DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA CONCERNING SUCH ADVERTISING; THIS ALSO APPLIES TO PROFILING TO THE EXTENT THAT IT IS RELATED TO SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR THE PURPOSE OF DIRECT ADVERTISING (OBJECTION UNDER ART. 21 (2) GDPR).

Right to Lodge a Complaint with the Competent Supervisory Authority

In the event of breaches of the GDPR, affected individuals have the right to lodge a complaint with a supervisory authority, particularly in the member state of their usual residence, their place of work, or the place of the alleged infringement. The right to lodge a complaint is without prejudice to other administrative or judicial remedies.

Right to Data Portability

You have the right to have data that we process automatically based on your consent or in fulfillment of a contract handed over to you or to a third party in a commonly used, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only happen to the extent that it is technically feasible.

Right to Information, Correction, and Deletion

You have the right to obtain information about your stored personal data, their origin and recipients, and the purpose of the data processing at any time, free of charge, within the framework of applicable legal provisions, and possibly the right to correction or deletion of this data. You can contact us at any time for this or any other questions regarding personal data.

Right to Restrict Processing

You have the right to request the restriction of the processing of your personal data. You can contact us at any time regarding this. The right to restrict processing exists in the following cases:

If you dispute the accuracy of your stored personal data with us, we usually need time to verify this. For the duration of the verification, you have the right to request the restriction of the processing of your personal data.
If the processing of your personal data was unlawful, you may request the restriction of data processing instead of deletion.
If we no longer need your personal data but you need them for the establishment, exercise, or defense of legal claims, you have the right to request the restriction of processing instead of deletion.
If you have lodged an objection under Art. 21 (1) GDPR, a balance must be struck between your and our interests. As long as it is not established whose interests outweigh, you have the right to request the restriction of processing of your personal data.

If you have restricted the processing of your personal data, these data – apart from their storage – may only be processed with your consent or for the establishment, exercise, or defense of legal claims or to protect the rights of another natural or legal person or for important public interest reasons of the European Union or a member state.

SSL or TLS Encryption

This page uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

When SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.

Encrypted Payment Transactions on This Website

If, after the conclusion of a paid contract, you are required to transmit your payment data (e.g., account number for direct debit authorization), this data is necessary for payment processing.

The payment transactions via the available payment methods (Visa/MasterCard, direct debit) are carried out exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

With encrypted communication, your payment data that you transmit to us cannot be read by third parties.

Objection to Advertising Emails

The use of contact details published within the framework of the imprint obligation for the transmission of unsolicited advertising and informational materials is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, for example, through spam emails.

4. Data Collection on this Website

Cookies

Our internet pages use so-called “cookies.” Cookies are small data packets that do not harm your end device. They are either temporarily stored for the duration of a session (session cookies) or permanently (permanent cookies) on your end device. Session cookies are automatically deleted after the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or an automatic deletion occurs through your web browser.

Cookies can originate from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain services from third-party companies within websites (e.g., cookies for payment processing).

Cookies have various functions. Numerous cookies are technically necessary because certain website functions would not work without them (e.g., the shopping cart function or the display of videos). Other cookies can be used to evaluate user behavior or for advertising purposes.

Cookies that are required for performing the electronic communication process, for providing specific functions desired by you (e.g., for the shopping cart function), or for optimizing the website (e.g., cookies for measuring web audiences) are stored based on Art. 6 (1) lit. f GDPR, unless another legal basis is stated. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of his services. If consent to the storage of cookies and comparable recognition technologies has been requested, processing occurs solely based on this consent (Art. 6 (1) lit. a GDPR and § 25 (1) TDDG); the consent can be revoked at any time.

You can set your browser to notify you when cookies are set and to allow cookies only in individual cases, to exclude the acceptance of cookies for specific cases or generally, as well as to activate the automatic deletion of cookies when closing the browser. When cookies are disabled, the functionality of this website may be limited.

Which cookies and services are used on this website can be found in this privacy policy.

Consent with Usercentrics

This website uses the consent technology from Usercentrics to obtain your consent for the storage of certain cookies on your end device or for the use of certain technologies and to document this in compliance with data protection regulations. The provider of this technology is Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, website: https://usercentrics.com/de/ (hereinafter referred to as “Usercentrics”).

When you enter our website, the following personal data is transmitted to Usercentrics:

Your consent(s) or the withdrawal of your consent(s)
Your IP address
Information about your browser
Information about your end device
Time of your visit to the website
Geolocation

Furthermore, Usercentrics stores a cookie in your browser to be able to assign the granted consents or their withdrawal. The data collected in this way will be stored until you request us to delete it, you delete the Usercentrics cookie yourself, or the purpose for data storage ceases. Mandatory statutory retention obligations remain unaffected.

The Usercentrics banner on this website was configured with the help of eRecht24. You can recognize this by the fact that the logo of eRecht24 appears in the banner. To display the eRecht24 logo in the banner, a connection to the image server of eRecht24 is established. In this process, the IP address is also transmitted but is only stored in anonymized form in the server logs. The image server of eRecht24 is located in Germany with a German provider. The banner itself is provided solely by Usercentrics.

The use of Usercentrics is for the purpose of obtaining the legally required consents for the use of certain technologies. The legal basis for this is Art. 6 (1) lit. c GDPR.

Order Processing

Server Log Files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser transmits automatically to us. This includes:

Browser type and version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of the server request
IP address

A consolidation of these data with other data sources is not carried out.

The collection of this data occurs on the basis of Art. 6 (1) lit. f GDPR. The website operator has a legitimate interest in the technically error-free representation and optimization of his website – for this, server log files must be collected.

Inquiries by Email, Phone or Fax

If you contact us by email, phone, or fax, your request including all resulting personal data (name, request) will be stored and processed by us for the purpose of processing your concern. We do not share this data without your consent.

The processing of this data is based on Art. 6 (1) lit. b GDPR, if your inquiry relates to the fulfillment of a contract or is necessary for the execution of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective handling of inquiries directed at us (Art. 6 (1) lit. f GDPR) or on your consent (Art. 6 (1) lit. a GDPR) if this has been requested; the consent can be revoked at any time.

The data you send to us via contact inquiries will remain with us until you request us to delete it, revoke your consent to storage or the purpose for data storage ceases (e.g., after the processing of your concern has been completed). Mandatory legal provisions – particularly legal retention periods – remain unaffected.

5. Newsletter

Newsletter Data

If you wish to receive the newsletter offered on the website, we need an email address from you as well as information that allows us to verify that you are the holder of the provided email address and agree to receive the newsletter. No further data will be collected unless voluntarily provided. To process the newsletter, we use newsletter service providers described below.

Mailchimp

This website uses the services of Mailchimp for sending newsletters. The provider is the Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.

Mailchimp is a service that can organize and analyze the sending of newsletters among other things. If you enter data for the purpose of receiving the newsletter (e.g., email address), this data will be stored on the servers of Mailchimp in the USA.

With the help of Mailchimp, we can analyze our newsletter campaigns. When you open an email sent with Mailchimp, a file (so-called web beacon) contained in the email connects to the servers of Mailchimp in the USA. This allows us to determine whether a newsletter message has been opened and which links may have been clicked. Additionally, technical information is collected (e.g., time of retrieval, IP address, browser type, and operating system). This information cannot be assigned to the respective newsletter recipient. It serves solely for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.

If you do not want analysis by Mailchimp, you must unsubscribe from the newsletter. For this, we provide a corresponding link in every newsletter message.

The data processing occurs based on your consent (Art. 6 (1) lit. a GDPR). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.

The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter with us or the newsletter service provider and deleted from the newsletter distribution list after unsubscribing. Data that has been stored for other purposes remains unaffected.

The data transfer to the USA is based on the standard contractual clauses of the EU Commission. For details, please see: https://mailchimp.com/eu-us-data-transfer-statement/ and https://mailchimp.com/legal/data-processing-addendum/#Annex_C_-_Standard_Contractual_Clauses.

After your unsubscription from the newsletter distribution list, your email address will be stored with us or the newsletter service provider on a blacklist if this is necessary to prevent future mailings. The data from the blacklist is used only for this purpose and not combined with other data. This serves both your interest and our interest in compliance with the legal requirements for sending newsletters (legitimate interest within the meaning of Art. 6 (1) lit. f GDPR). The storage on the blacklist is not time-limited. You can object to the storage if your interests outweigh our legitimate interest.

For more information, please refer to the privacy policy of Mailchimp at: https://mailchimp.com/legal/terms/.

The company has a certification under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA that ensures compliance with European data protection standards in data processing in the USA. Every company certified under the DPF commits to adhere to these data protection standards. For more information, please contact the provider at the following link: https://www.dataprivacyframework.gov/participant/7693.

Order Processing

6. Plugins and Tools

Google Maps

This page uses the map service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. With this service, we can embed map material on our website.

To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transmitted to a server of Google in the USA and stored there. The provider of this page has no influence on this data transmission. If Google Maps is activated, Google may use Google Fonts for the uniform presentation of the fonts. When calling Google Maps, your browser loads the required web fonts into its browser cache to display texts and fonts correctly.

The use of Google Maps is in the interest of an appealing presentation of our online offers and a simple location of the places we have indicated on the website. This represents a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR. If explicit consent has been requested, processing occurs exclusively based on Art. 6 (1) lit. a GDPR and § 25 (1) TDDG, as far as the consent concerns the storage of cookies or access to information on the user's end device (e.g., device fingerprinting) in the sense of the TDDG. The consent can be revoked at any time.

The data transfer to the USA is based on the standard contractual clauses of the EU Commission. For details, please see: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

More information on the handling of user data can be found in Google's privacy policy: https://policies.google.com/privacy?hl=en.

OpenStreetMap

We use the map service from OpenStreetMap (OSM).

We host OpenStreetMap on the server of the following provider:

DataHub Rheinland-Pfalz
For presenting map information, events, images, and other tourist information, we use DataHub Rheinland-Pfalz, a service of Rheinland-Pfalz Tourismus GmbH, Löhrstraße 103-105, 56068 Koblenz. When you access this website, your IP address, device and browser identification, and any information on the use of this website will be transmitted to DataHub Rheinland-Pfalz and all service providers involved in operating the service. The permissibility of this processing is based on Art. 6 (1) b) GDPR (use relationship). Data processing is necessary to provide you with the aforementioned information in a clear manner, and to display it. A static embedding would not be suitable for making the existing functions available. Additional information on the collection and processing of your data by DataHub Rheinland-Pfalz can be found in the privacy policy of Rheinland-Pfalz Tourismus GmbH at:
https://www.rlp-tourismus.com/de/datenschutz

The use of OpenStreetMap is in the interest of an appealing presentation of our online offers and an easy location of the places we have indicated on the website. This represents a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR. If explicit consent has been requested, processing occurs exclusively based on Art. 6 (1) lit. a GDPR and § 25 (1) TDDG, as far as the consent concerns the storage of cookies or access to information on the user's end device (e.g., device fingerprinting) in the sense of the TDDG. The consent can be revoked at any time.