Our Privacy Policy

General information

This privacy policy explains to you the nature, scope and purpose of the processing of personal data within our online service (www.crc.ag) and the websites, functions and content associated with it. The privacy policy applies regardless of the domains, systems, platforms and devices (e.g. desktop or mobile) on which the online service is executed.

We refer the terms used, such as "personal data" or their "processing", to the definitions in Art. 4 of the General Data Protection Regulation (GDPR). The personal data of users processed within the scope of this online offer include inventory data (e.g. names and contacts of users), content data (e.g. text entries in the contact form) and meta/communication data (e.g. IP addresses, device information).

The term "user" covers all categories of data subjects involved in data processing. These include our business partners, customers, interested parties and other visitors to our online services. The terms used such as "user" and "applicant" are to be understood in a gender-neutral way.

We process users' personal data only in compliance with the relevant data protection regulations. This means that the data of the users will only be processed if a legal permission has been obtained. I.e., in particular if the data processing is necessary for the provision of our contractual services (e.g. processing of orders) and online services, or is required by law, a consent of the users, as well as due to our legitimate interests (i.e. interest in the analysis, optimization and economic operation and security of our online services within the meaning of Art. 6 Para. 1 lit. f. GDPR), in particular for measuring reach, creating profiles for advertising and marketing purposes as well as collecting access data and using third-party services.

We would like to point out that the legal basis of the consents Art. 6 para. 1 lit. a. and Art. 7 GDPR, the legal basis for the processing to fulfill our services and implementation of contractual measures Art. 6 Fig. 1 lit. b.,GDPR the legal basis for the processing to fulfill our services and implementation of contractual measures Art. 6 Fig. 1 lit. b., GDPR, and the legal basis for the processing to safeguard our legitimate interests Art. 6 para. 1 lit. f. GDPR is.

Responsible entity in the sense of the data protection laws is:

TourisMarketing Service GmbH
Zur Schwedenschanze 2
18435 Stralsund

Phone: +49 (0) 3831 367 690
Fax: +49 (0) 3831 367 699
E-Mail: info@crc.ag
contact: Data Protection Officer, datenschutz@crc.ag

Security Measures

We take organizational, contractual and technical security measures in accordance with the state of the art to ensure that the provisions of the data protection laws are complied with and to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.

Disclosure of data to third parties and third-party providers

Data will only be forwarded to third parties within the framework of legal requirements. We only forward user data to third parties if this is necessary for contractual purposes, e.g. on the basis of Art. 6 Para. 1 lit. b. or on the basis of legitimate interests pursuant to Art. 6 Para. 1 lit. f. GDPR in the economic and effective operation of our business.

If we use subcontractors to provide our services, we will take appropriate legal precautions and take appropriate technical and organizational measures to ensure the protection of personal data in accordance with applicable laws.

If content, tools or other means from other providers (hereinafter jointly referred to as "third party providers") are used within the scope of this data protection declaration and their registered office is located in a third country, it is to be assumed that a data transfer to the registered office states of the third party providers takes place. Third countries are countries in which the GDPR is not a directly applicable law, i.e. in principle countries outside the EU or the European Economic Area. Data is transferred to third countries either if an appropriate level of data protection, user consent or other legal permission has been obtained.

Purpose of data collection, processing or use

We process personal data in accordance with the provisions of the GDPR and the Federal Data Protection Act as amended. (FDPA).

The collection, processing and storage of your personal data takes place only for the purposes explicitly stated here. Insofar as we have been granted consent for the processing of personal data for certain purposes mentioned above, the lawfulness of this processing is given on the basis of the consent. A given consent can be revoked at any time. The revoke of the consent does not affect the legality of the data processed until the revocation.

We process your personal data for the following purposes:

1. consent to the processing of the personal data of the data subject has been given pursuant to Art. 6 para. 1a GDPR:

   e.g. making contact using the contact form; application procedures

2. For the implementation of pre-contractual measures and/or for the fulfilment of contractual obligations pursuant to Art. 6 para. 1b GDPR.

   e.g. fulfilment of the existing contract of use; execution of a mediation order in the booking portal; establishment of contact via the contact form

3. As part of the balancing of interests pursuant to Art. 6 para. 1f GDPR.

   With each access to this offer, we shall, on the basis of our legitimate interests within the meaning of Art. 6 Para. 1 lit. f. GDPR make a declaration of our intent and obligation or by the service provider. This information, also known as server log files, is of a general nature and does not allow any direct conclusions to be drawn about your person. These include, but are not limited to: Name of the website, date, browser type, operating system and IP address.

   Without this data it would not be technically possible to deliver and present the contents of the website. In this context, the collection of data is absolutely necessary. In addition, we use the anonymous information for statistical purposes. They help us to optimise the offer and the technology. We also reserve the right to subsequently check the log files in the event of suspicion of illegal use of our services.

Cookies

We use cookies on our website. These are small files that are automatically created by your browser and stored on your IT system (laptop, tablet, smartphone, etc.) when you visit our site.

In the cookie, information is stored that arises in each case in connection with the specific end device used. This does not mean, however, that we thereby gain direct knowledge of your identity.

Through the use of cookies, we can provide the users of our website with more user-friendly services that would not be possible without the cookie setting. The use of cookies serves on the one hand to make the use of our offer more pleasant for them. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site.

In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your terminal device for a certain fixed period of time. If you visit our site again to use our services, it is automatically recognized that you have already been with us and which entries and settings you have made so that you do not have to enter them again.

On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These cookies enable us to automatically recognize that you have already been to our site when you visit it again. These cookies are automatically deleted after a period of 6 months.

Legal basis for the use of cookies

The data processed by the cookies, which are required for the proper functioning of the website, are thus necessary to protect our legitimate interests as well as those of third parties in accordance with Art. 6 para. 1 p. 1 lit. f DSGVO.

For all other cookies, you have given your consent to this via our opt-in cookie banner in accordance with Art. 6 (1) lit. a DSGVO.

Cookie consent with Matomo cookie

With your consent, we use the open source software Matomo to analyze and statistically evaluate the use of the website. Cookies are used for this purpose. The information thus obtained for website usage is transmitted exclusively to our servers and summarized in pseudonymous user profiles. We use the data to evaluate the use of the website. The data collected is not passed on to third parties.

The IP addresses are anonymized (IP masking), so that an assignment to individual users is not possible.

The processing of the data is based on Art. 6 para. 1 p. 1 lit. a DSGVO. We thereby pursue our legitimate interest in optimizing our website for our external presentation.

You can revoke your consent at any time by deleting the cookies in your browser or changing your privacy settings.

Embedded Youtube videos

On some of our websites we embed Youtube videos. Operator of the corresponding plugins is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit a page with the YouTube plugin, a connection to Youtube servers is established. Youtube will be informed which pages you are visiting. If you are logged into your Youtube account, Youtube can personally assign your surfing behavior to you. You can prevent this by logging out of your Youtube account beforehand.

If a Youtube video is started, the provider uses cookies that collect information about user behavior.

Those who have deactivated the saving of cookies for the Google Ad program will not have to reckon with such cookies when watching Youtube videos. However, Youtube also stores non-personal usage information in other cookies. If you wish to prevent this, you must block the storage of cookies in the browser.

You will find further information on data protection at "Youtube" in the provider's data protection declaration under: https://www.google.de/intl/de/policies/privacy/

Rights of users

Users have the right, upon request and free of charge, to obtain information about the personal data we have stored about them.

In addition, users have the right to rectify inaccurate data, limit the processing and delete their personal data, if applicable, to exercise their rights to data portability and, in the event of the assumption of unlawful data processing, to file a complaint with the competent supervisory authority.

Users can also revoke their consent, in principle with effect for the future.

Data protection for applications and in the application process

We collect and process the personal data of applicants for the purpose of processing the application process. Processing may also be carried out electronically. This is particularly the case where an applicant submits the relevant application documents electronically, for example by e-mail, to the person responsible.

If we conclude an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If no employment relationship is established, the application documents shall be automatically deleted two months after notification of the rejection decision, unless deletion conflicts with any other legitimate interests of the person responsible. Other legitimate interests in this sense include, for example, the duty to provide evidence in proceedings under the General Equal Treatment Act (Allgemeines Gleichbehandlungsgesetz - AGG).

Deletion or blocking of data

We adhere to the principles of data avoidance and data economy. We will therefore only store your personal data for as long as is necessary to achieve the purposes stated here or as required by the various storage periods provided for by law. After the respective purpose has ceased to exist or these periods have expired, the corresponding data will be routinely blocked or deleted in accordance with the statutory provisions.

Changes to our Privacy Policy

We reserve the right to amend this data protection declaration from time to time so that it always complies with current legal requirements or in order to implement changes to our services in the data protection declaration, e.g. when introducing new services. Your renewed visit will then be subject to the new Privacy Policy.

Questions to the Data Protection Officer

If you have any questions about data protection, please send us an e-mail or contact our data protection officer directly:

Mr. Martin Schult
WIIT AG
Joachim-Erwin-Platz 3
40212 Düsseldorf
E-Mail: datenschutz@crc.ag