Trust is important, especially when it comes to your data.
For this reason, we consider it our obligation to collect only the data that is absolutely necessary as well as to manage the data with due care and to protect it from misuse. Berggasthaus Masescha AG strictly adheres to the data protection regulations when collecting and processing your data.
Below you will find information on the processing of your data and the rights you have:
Name and contact details of the person responsible
Berggasthaus Masescha AG
Fred Fehr
Maseschastrasse 48
9497 Triesenberg
Phone: +423-262 23 37
E-mail: fred.fehr@masescha.li
This data protection declaration applies (A.) to the website of Berggasthaus Masescha AG (www.masescha.li) and to the personal data collected via this website and (B.) to general data processing at Berggasthaus Masescha AG.
For Internet pages of other providers, to which reference is made e.g. via links, the data protection information and declarations of those providers shall apply.
- Data processing on our website
Categories of personal data collected
Each time our website is called up, our system automatically collects only the data and information technically required for the online forms from the computer system of the calling computer.
For the data collected in the online forms and transmitted to Berggasthaus Masescha AG, you will find the relevant information in the section “B. General data processing by Berggasthaus Masescha AG”.
Processing purposes
The processing of personal data on our website is limited to those data that are necessary for the provision of a functional website and user-friendly content and services.
In particular, we therefore collect personal data on our website,
– for internal administrative purposes (e.g. ensuring the stability and operational security of the system);
For the processing purposes of the data transmitted to Berggasthaus Masescha AG via online forms, please read the provisions in chapter “B. General data processing by Berggasthaus Masescha AG”.
Legal basis
The processing of personal data in connection with our Internet presence is carried out in accordance with Art. 6 .1 GDPR on the basis:
- Your consent, if you provide us with your data voluntarily, e.g. by filling out the contact form (Reg. a);
- our legitimate interest, e.g. in ensuring the stability and operational security of the system (Reg. f).
The legal basis for the processing of data transmitted to Berggasthaus Masescha AG via online forms can be found in the section “B. General data processing by Berggasthaus Masescha AG”.
Storage period
We store the personal data collected each time our website is accessed and files are transferred for a maximum period of one year. The data is stored for reasons of data security – in particular to defend against attempted attacks on our web server – as well as to ensure the stability and operational reliability of our system.
Your personal data in connection with your inquiry via the contact form will be deleted immediately after your inquiry has been processed.
Web analysis
We do not conduct our own Web analyses on our website and do not use any Web analysis tool. Thus, no evaluation of the visitor and usage data takes place.
Cookies
We use cookies on our website to make our offer user-friendly. Cookies are small files that your browser automatically creates and that are stored on your terminal device (laptop, tablet, smartphone, etc.) when you visit our site. The cookies remain stored until you delete them. This allows us to recognize your browser on your next visit.
If you do not wish this, you can set up your browser so that it informs you about the setting of cookies and you allow them in individual cases. However, we would like to point out that deactivation will mean that you will not be able to use all the functions of our website.
Online Forms
The following online forms are available on our website:
- Contact form
- Reservation form
The data transmitted to us via the online form will be processed exclusively for the purpose of dealing with the request contained therein. This data is used solely for the purpose stated in the online form; it is neither evaluated in any other way nor linked to other data.
The data entered in online forms is transmitted in encrypted form (HTTPS) via “Let’s Encrypt”.
For details on data processing by Berggasthaus Masescha AG in the context of inquiries or reservations, as well as the corresponding deletion periods, please refer to the following chapter “B. General data processing by Berggasthaus Masescha AG”.
Social Plugins
All integrated social plugins work via the 2-click procedure; this means that the recording of your surfing behavior by a plugin only starts when you activate the corresponding plugin by clicking on it in the first place. If you are also logged in with your account of a social media platform at the same time as visiting our website, for example, the page visit can be assigned to your user account after activating the plugin (first click).
2. General Data Processing of the Berggasthaus Masescha AG
Categories of personal data collected
Berggasthaus Masescha AG collects the following data with your consent:
- Salutation, first name, last name,
- address,
- e-mail address,
- telephone number (landline and/or cell phone),
Processing purposes
The collection of this data is carried out as far as necessary
- for correspondence with you
- to process your inquiries and reservations
Legal basis
Your data will be processed based on Art. 6.1.a GDPR (data processing is based on consent).
Recipients or categories of recipients of the personal data
For the purpose of online reservations, the reservation system of the company Aleno AG, based in Zurich/Switzerland, is used. Personal data is transferred to Aleno AG as a processor within the meaning of the GDPR for the purpose of the functionality of the tool, but is not stored on its servers, but is transferred directly to the servers of a GDPR-compliant cloud provider in Germany (EU) as a sub-processor and stored there. The database is backed up automatically and in real time by the cloud provider. The server structure of the cloud provider is set up in such a way that the data is continuously available to the account holder and the individual users, and the productive servers can take over in the event of a failure of the main instance. Accordingly, the cloud provider is listed on the list of sub-processors, which is publicly viewable via the Aleno Helpdesk.
Transfer of personal data to a third country
In the context of an online reservation via Aleno, your personal data will be transferred to the servers of a GDPR-compliant cloud provider in Germany (EU) as a sub-processor and stored there exclusively for the purpose and duration of processing by Berggasthaus Masescha AG.
Duration of storage of personal data
After being collected by Berggasthaus Masescha AG, your data will be stored until your request has been dealt with, for a maximum of 6 months.
3. Data Security
Website
Within the website visit we use the widespread “Let’s Encrypt” procedure in connection with the highest encryption level supported by your browser. You can see whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the address bar of your browser.
General data processing
In addition, we generally apply suitable technical and organizational security measures during data processing in order to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures correspond to the current state of the art.
4. Your rights
Data subject rights
According to the EU General Data Protection Regulation, you have the following rights:
(i) to receive information about the personal data processed or their categories, the processing purposes, the categories of recipients to whom your data have been or will be disclosed, the intention to transfer data to a third country or an international organization, including suitable guarantees for this, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if this has not been collected by us, as well as about the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details;
(ii) to request the rectification, completion, or deletion of your personal data that is incorrect or not processed in accordance with the law;
(iii) require us to restrict the processing of your personal data;
(iv) in certain circumstances, object to the processing of your personal data or request the processing of your personal data to be stopped.
(v) to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request the transfer to another controller;
(vi) lodge a complaint with the competent data protection supervisory authority.
Right of withdrawal in case of consent
If you have given your consent to processing by Berggasthaus Masescha AG by means of a corresponding declaration, you can revoke your consent at any time for the future. The lawfulness of the data processing carried out on the basis of the consent until the revocation is not affected by this.
If you wish to exercise your rights, please notify us by e-mail to fred.fehr@masescha.li or contact us at the address provided.