PRIVACY POLICY
1. INFORMATION ON THE COLLECTION OF PERSONAL DATA
( 1 ) The following provides information on the collection of personal data when using our website. Personal data includes all data that can be related to you personally, e.g., name, address, email addresses, and user behavior.
( 2 ) The controller pursuant to Art. 4 ( 7 ) of the EU General Data Protection Regulation ( GDPR ) is:
Traveller Sedona GmbH
Otto-Hahn-Straße 47
63456 Hanau Steinheim
Tel: +49 ( 0 ) 61 81 – 36 42 – 0
Fax: +49 ( 0 ) 61 81 – 36 42 – 101
Email: info@traveller-sedona.com
Website: https://traveller-sedona.com/ ( see our legal notice ).
( 3 ) When you contact us via email or a contact form, we store the data you provide ( your email address, and if applicable, your name and phone number ) in order to answer your inquiries. We delete the data collected in this context once storage is no longer necessary or restrict processing if legal retention obligations apply.
( 4 ) If we use contracted service providers for individual functions of our offering or wish to use your data for advertising purposes, we will inform you in detail about the respective processes below. In doing so, we will also specify the criteria for the storage period.
2. LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA
( 1 ) If we obtain the data subject’s consent for processing personal data, Art. 6 ( 1 ) ( a ) GDPR serves as the legal basis.
( 2 ) If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, Art. 6 ( 1 ) ( b ) GDPR serves as the legal basis. This also applies to processing operations required to carry out pre-contractual measures.
( 3 ) If the processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 ( 1 ) ( c ) GDPR serves as the legal basis.
( 4 ) In the event that vital interests of the data subject or another natural person make processing personal data necessary, Art. 6 ( 1 ) ( d ) GDPR serves as the legal basis.
( 5 ) If processing is necessary for the purposes of legitimate interests pursued by our company or a third party, and these interests are not overridden by the interests, fundamental rights, and freedoms of the data subject, Art. 6 ( 1 ) ( f ) GDPR serves as the legal basis.
The storage of information in the end user’s terminal equipment or access to information already stored in the terminal equipment is only permissible if covered by one of the following legal bases:
- Sec. 25 ( 1 ) German Telecommunications-Telemedia Data Protection Act ( TTDSG ): If the end user has consented based on clear and comprehensive information. The consent must be given in accordance with Art. 6 ( 1 ) ( a ) GDPR.
- Sec. 25 ( 2 ) ( 1 ) TTDSG: If the sole purpose is to carry out the transmission of a message over a public telecommunications network.
- Sec. 25 ( 2 ) ( 2 ) TTDSG: If storage or access is strictly necessary for the provider of a telemedia service to make a telemedia service expressly requested by the user available.
For the processing operations we carry out, we specify the applicable legal basis in each case below. Processing may also be based on multiple legal grounds.
3. YOUR RIGHTS
( 1 ) You have the following rights regarding your personal data:
- Right to access,
- Right to rectification or erasure,
- Right to restriction of processing,
- Right to object to processing,
- Right to data portability.
( 2 ) Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.
The supervisory authority responsible for us is:
The Hessian Commissioner for Data Protection and Freedom of Information
Gustav-Stresemann-Ring 1
65189 Wiesbaden, Germany
Email: Poststelle@datenschutz.hessen.de
Phone: +49 611 1408 – 0
The supervisory authority to which the complaint has been submitted will inform the complainant about the status and results of the complaint, including the possibility of a judicial remedy under Art. 78 GDPR.
4. COLLECTION OF PERSONAL DATA WHEN VISITING OUR WEBSITE
( 1 ) When using our website for informational purposes only, meaning when you do not register or provide us with information in any other way, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display the website and ensure stability and security (legal basis: Art. 6 ( 1 ) ( f ) ( GDPR ):
- IP address
- Date and time of the request
- Time zone difference from Greenwich Mean Time ( GMT )
- Content of the request ( specific page )
- Access status / HTTP status code
- Amount of data transferred
- Website, including subpages, from which the request originates
- Browser
- Operating system and its interface
- Language and version of the browser software.
( 2 ) In addition to the aforementioned data, cookies are stored on your computer when you use our website. Cookies are small text files stored on your hard drive and assigned to the browser you are using. They provide specific information to the entity that sets the cookie ( in this case, us ). Cookies cannot execute programs or transmit viruses to your computer. They serve to make the website more user-friendly and effective overall.
( 3 ) Use of Cookies:
( a ) Cookies
We use cookies on our website. Cookies are small text files that are stored on your hard drive and assigned to your browser via a unique string of characters. They transmit certain information to the party that sets the cookie. Cookies cannot run programs or transmit viruses to your computer, and they do not cause any harm. They help make the online experience more user-friendly, efficient, and pleasant.
Cookies may contain data that allow the recognition of the device being used. Some cookies, however, contain only information about certain settings that are not personally identifiable. Cookies cannot directly identify a user.
Cookies can be categorized as follows:
- Session Cookies: These are deleted once you close your browser.
- Persistent Cookies: These remain stored beyond a single session.
Furthermore, cookies can be classified based on their function:
- Technical Cookies: These are essential for navigating the website, using basic functions, and ensuring security. They do not collect data for marketing purposes or track visited pages.
- Performance Cookies: These collect information about how you use our website, such as which pages you visit or whether errors occur. They do not collect information that could identify you. All collected data is anonymous and is only used to improve our website and understand user interests.
- Advertising Cookies/Targeting Cookies: These serve to provide website users with tailored advertising or third-party offers and measure the effectiveness of these offers. Advertising and targeting cookies are stored for a maximum of 13 months.
- Sharing Cookies: These enhance the interactivity of our website with other services ( e.g., social networks ). Sharing cookies are stored for a maximum of 13 months.
The legal basis for cookies that are strictly necessary to provide the expressly requested service is Sec. 25( 2 )( 2 ) TTDSG. Any use of cookies that is not technically essential for this purpose constitutes data processing that is only permitted with your explicit and active consent pursuant to Sec. 25( 1 ) TTDSG in conjunction with Art. 6( 1 )( a ) GDPR. This applies in particular to the use of Performance, Advertising, Targeting, or Sharing Cookies. Furthermore, we only share your personal data processed via cookies with third parties if you have given your explicit consent pursuant to Art. 6( 1 )( a ) GDPR.
( b ) Cookie Policy
For more information about which cookies we use, how to manage your cookie settings, and how to disable certain types of tracking, please refer to our Cookie Policy at: https://www.traveller-sedona.com/.
5. ADDITIONAL FEATURES AND SERVICES ON OUR WEBSITE
( 1 ) In addition to the purely informational use of our website, we offer various services that you can use if interested. In this case, you will generally need to provide additional personal data, which we use to provide the respective service. The aforementioned data processing principles apply.
( 2 ) In some cases, we use external service providers to process your data. These providers have been carefully selected and commissioned by us, are bound by our instructions, and are regularly monitored.
( 3 ) We may also share your personal data with third parties if participation in promotions, contests, contract conclusions, or similar services are offered by us in cooperation with partners. You will receive further details either when providing your personal data or in the description of the respective offer below.
( 4 ) If our service providers or partners are based in a country outside the European Economic Area ( EEA ), we will inform you of the consequences of this circumstance in the description of the respective offer.
6. OBJECTION OR WITHDRAWAL OF CONSENT TO DATA PROCESSING
( 1 ) If you have given your consent to the processing of your data, you may withdraw it at any time. Such a withdrawal will affect the permissibility of processing your personal data after you have notified us.
( 2 ) If we base the processing of your personal data on legitimate interests, you may object to the processing. This applies in particular if the processing is not necessary to fulfill a contract with you, which we will outline in the function descriptions below. If you object, please explain the reasons why we should not process your personal data as we do. If your objection is justified, we will review the situation and either stop or adjust the data processing or demonstrate our compelling legitimate reasons for continuing the processing.
( 3 ) You can, of course, object to the processing of your personal data for advertising and data analysis purposes at any time. You can inform us of your objection using the following contact details:
TRAVELLER SEDONA GMBH
Otto-Hahn-Straße 47
63456 Hanau Steinheim, Germany
Phone: +49 ( 0 )6181 98276 0
Email: info@traveller-sedona.com
7. USE OF BLOG FUNCTIONS
( 1 ) You may have the opportunity to leave public comments on our blog, where we publish various posts on topics related to our activities. Your comment will be published along with the username you provide in connection with the post. We recommend using a pseudonym rather than your real name. Providing a username and email address is required, while all other information is voluntary.
If you leave a comment, we will also store your IP address, which will be deleted after one week. This storage is necessary for us to protect ourselves against liability claims in case of potentially unlawful content. We require your email address to contact you if a third-party objects to your comment as unlawful. The legal bases for this are Art. 6 ( 1 )( b ) and ( f ) GDPR.
Comments are not reviewed before publication. However, we reserve the right to delete comments if they are flagged as unlawful by third parties.
( 2 ) When writing a comment, you can opt in to our email notification service, which will inform you when other users leave a comment on the post. We use a double opt-in procedure, meaning you will receive an email asking you to confirm that you own the provided email address and wish to receive notifications.
You can unsubscribe from these notifications at any time by clicking the link in the email. Your personal data, including your email address, registration time, and IP address, will be stored until you unsubscribe from the notification service.
8. NEWSLETTER
( 1 ) With your consent, you can subscribe to our newsletter, which informs you about our latest offers and updates. The advertised goods and services are specified in the consent declaration.
( 2 ) To register for our newsletter, we use the double opt-in procedure. This means that after signing up, we will send an email to the provided email address asking you to confirm your subscription. If you do not confirm within 24 hours, your information will be blocked and automatically deleted after one month.
We also store the IP addresses and timestamps of your registration and confirmation. The purpose of this procedure is to verify your registration and, if necessary, clarify any misuse of your personal data.
( 3 ) The only mandatory information required for receiving the newsletter is your email address. Any additional data you provide ( marked as optional ) is used to address you personally. After confirmation, we store your email address to send the newsletter. The legal basis for this is Art. 6 ( 1 )( a ) GDPR.
( 4 ) When registering for the newsletter, we also store the IP address assigned by your internet service provider ( ISP )at the time of registration, along with the date and time of registration. This is necessary to trace potential misuse of an email address at a later time and thus serves as legal protection for the data controller.
( 5 ) You can withdraw your consent to receive the newsletter and unsubscribe at any time. You can do so by clicking the unsubscribe link in any newsletter email, using the form on our website, sending an email to info@traveller-sedona.com, or contacting us via the details provided in the imprint.
( 6 ) Newsletter Tracking:
We inform you that when sending the newsletter, we analyze user behavior. The sent emails contain web beacons or tracking pixels, which are single-pixel image files stored on our website.
For the analysis, we link the data specified in Section 4 and the web beacons with your email address and a unique ID. The data is collected pseudonymously, meaning the IDs are not linked to your personal data, so direct identification is not possible.
You can object to this tracking at any time by clicking the corresponding opt-out link in each email or by contacting us through any other means. The tracking information is stored as long as you are subscribed to the newsletter. After unsubscribing, we store the data only statistically and anonymously.
This tracking is also not possible if your email program blocks images by default. In this case, the newsletter will not be fully displayed, and you may not be able to use all functions. If you manually enable image display, tracking will occur as described above.
9. CONTACT OPTIONS VIA THE WEBSITE
Our website contains, due to legal regulations, information that enables quick electronic contact with our company as well as direct communication with us, including a general address for electronic mail ( email address ). If a data subject contacts the data controller by email or via a contact form, the personal data transmitted by the data subject is automatically stored.
Providing a valid email address is required so that we know from whom the request originates and so that we can respond to it. Further information can be provided voluntarily. The data processing for the purpose of contacting us is carried out based on Art. 6 Para. 1 S. 1 lit. a GDPR on the basis of your voluntarily given consent. The personal data collected by us for the use of the contact form will be automatically deleted after your inquiry has been processed.
10.USE OF SOCIAL MEDIA PLUG-INS
( 1 ) We currently use the following social media plug-ins: Facebook, Google+, Pinterest. We use the so-called two-click solution. This means that when you visit our site, no personal data is initially transmitted to the plug-in providers. You can recognize the provider of the plug-in by the marking on the box above its initial letter or logo. We offer you the option of communicating directly with the plug-in provider via the button. Only if you click on the marked field and activate it does the plug-in provider receive the information that you have accessed the corresponding website of our online offering. In addition, the data mentioned in Section 4 of this declaration is transmitted. In the case of Facebook, according to the respective providers in Germany, the IP address is anonymized immediately after collection. By activating the plug-in, personal data is thus transmitted from you to the respective plug-in provider and stored there ( for US providers, in the USA ). Since the plug-in provider collects data particularly via cookies, we recommend deleting all cookies via your browser’s security settings before clicking on the gray box.
( 2 ) We have no influence on the collected data and data processing procedures, nor are we aware of the full extent of data collection, the purposes of processing, or storage periods. We also have no information on the deletion of the collected data by the plug-in provider.
( 3 ) The plug-in provider stores the collected data about you as user profiles and uses them for advertising, market research, and / or demand-based website design. Such an evaluation is carried out in particular ( even for users who are not logged in ) to display needs-based advertising and to inform other social network users about your activities on our website. You have the right to object to the creation of these user profiles, and you must contact the respective plug-in provider to exercise this right. Through the plug-ins, we offer you the opportunity to interact with social networks and other users so that we can improve our offer and make it more interesting for you as a user. The legal basis for the use of plug-ins is Art. 6 Para. 1 S. 1 lit. f GDPR.
( 4 ) Data transmission takes place regardless of whether you have an account with the plug – in provider and are logged in there. If you are logged in with the plug – in provider, your data collected from us will be directly assigned to your existing account with the plug-in provider. If you press the activated button and, for example, link to the page, the plug-in provider also stores this information in your user account and publicly shares it with your contacts. We recommend logging out regularly after using a social network, especially before activating the button, to avoid being associated with your profile at the plug-in provider.
( 5 ) Further information on the purpose and scope of data collection and its processing by the plug – in provider can be found in the following privacy policies of these providers. There you will also find further information about your rights and settings options for protecting your privacy.
( 6 ) Addresses of the respective plug – in providers and URLs with their privacy policies:
( a ) Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland; http://www.facebook.com/policy.php; further information on data collection: http://www.facebook.com/help/186325668085084 and http://www.facebook.com/about/privacy/your-info-on-other#applications. Meta Platforms, Inc. has committed to the EU-US Privacy Shield, https://www.dataprivacyframework.gov/.
( b ) Google Inc., 1600 Amphitheater Parkway, Mountain View, California 94043, USA; https://policies.google.com/privacy?hl=en. Google has committed to the EU-US Privacy Shield, https://www.dataprivacyframework.gov/.
( c ) Pinterest Inc., 808 Brannan Street, San Francisco, CA 94103, USA; Privacy Policy: https://help.pinterest.com/en/topics/privacy-safety-and-legal.
11. SERVER LOG FILES
You can visit our websites without providing any personal information. Each time you access our website, usage data is transmitted to us or our web host/IT service provider by your internet browser and stored in protocol data ( so-called server log files ). These stored data include, for example, the name of the accessed page, date and time of access, IP address, amount of data transferred, and the requesting provider. Processing is carried out based on Art. 6 Para. 1 lit. f GDPR due to our overriding legitimate interest in ensuring the trouble-free operation of our website as well as improving our offer.
12. USE OF GOOGLE ANALYTICS
We use the web analytics service Google Analytics from Google LLC. ( 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google” ) on our website. If your habitual residence is within the European Economic Area or Switzerland, Google Ireland Limited ( Gordon House, Barrow Street, Dublin 4, Ireland ) is responsible for your data. Google Ireland Limited is therefore the affiliated company of Google that is responsible for processing your data and complying with applicable data protection laws.
The data processing serves the purpose of analyzing this website and its visitors. Google will use the information obtained on behalf of the operator of this website to evaluate your use of the website, compile reports on website activity, and provide further services related to website and internet usage to the website operator. The IP address transmitted by your browser within the scope of Google Analytics is not merged with other Google data.
Google Analytics uses cookies that enable an analysis of your use of the website. The information generated by these cookies about your use of this website is usually transmitted to a Google server in the USA and stored there. IP anonymization is activated on this website. This means that Google shortens your IP address within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before transmission. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there.
Google is certified under the US-EU Privacy Shield agreement and thus committed to complying with European data protection regulations.
You can prevent Google from collecting and processing the data generated by the cookie and related to your use of the website ( including your IP address ) by downloading and installing the browser plug – in available at the following link: [ https://tools.google.com/dlpage/gaoptout?hl=en ].
To prevent data collection and storage by Google Analytics across devices, you can set an opt-out cookie. Opt-out cookies prevent the future collection of your data when visiting this website. You must perform the opt-out on all systems and devices used for it to be fully effective. If you delete the opt-out cookie, requests will be sent to Google again.
If you click here, the opt-out cookie will be set: Disable Google Analytics.
For more information on terms of use and data protection, visit: [ https://www.google.com/analytics/terms/en.html ] or [ https://www.google.com/intl/en/policies/ ].
13. DATA DELETION AND STORAGE DURATION
Personal data of the affected person will be deleted or blocked as soon as the purpose of storage ceases to exist. However, storage beyond the specified period may occur in the case of an ( impending ) legal dispute with you or another legal procedure, or if storage is required by legal provisions to which we are subject ( e.g., Sec. 257 German Commercial Code ( HGB ), Sec. 147 Fiscal Code of Germany ( AO ) ). If the legally prescribed storage period expires, personal data will be blocked or deleted unless further storage is necessary and legally justified. Data will also be blocked or deleted when a legally mandated storage period expires unless further storage is necessary for contract conclusion or fulfillment.
14. DATA SECURITY
We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. This takes into account the state of the art, implementation costs, and the nature, scope, context, and purpose of processing, as well as the existing risks of a data breach ( including its likelihood and impact ) for the data subject. Our security measures are continuously improved in line with technological developments.
For further information, please contact us using the details provided in section 1. ( 2 ).
15. COOPERATION WITH DATA PROCESSORS
Like any large company, we use external domestic and international service providers to conduct our business transactions ( e.g., in IT, logistics, telecommunications, sales, and marketing ). These service providers act only according to our instructions and are contractually obligated under Art. 28 GDPR to comply with data protection regulations.
16. CONDITIONS FOR THE TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES
In the course of our business relationships, your personal data may be disclosed or transferred to third-party companies. These may be located outside the European Economic Area ( EEA ), meaning in third countries. Such processing occurs solely to fulfill contractual and business obligations and to maintain your business relationship with us ( legal basis: Art. 6 ( 1 ) lit. b or lit. f in conjunction with Art. 44 ff. GDPR ).
Some third countries are deemed by the European Commission to have an adequate level of data protection comparable to the EEA standard ( a list of these countries and copies of adequacy decisions are available at: [ https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en ] ). In other third countries where personal data may be transferred, there may be no consistently high level of data protection due to a lack of legal provisions. In such cases, we ensure that adequate data protection is maintained through binding corporate rules, standard contractual clauses of the European Commission for the protection of personal data under Art. 46 ( 1 ), ( 2 ) lit. c GDPR ( the 2021 standard contractual clauses are available at: [ https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A32021D0915&locale-en ] ), certifications, or recognized codes of conduct.
For further information, please contact us using the details provided in section 1. ( 2 ).
17. EXISTENCE OF AUTOMATED DECISION-MAKING
As a responsible company, we do not use automated decision-making or profiling.
18. UPDATES AND CHANGES TO THIS PRIVACY POLICY
This privacy policy is currently valid and was last updated in January 2025. Due to the continued development of our website and offerings or due to changes in legal or regulatory requirements, it may become necessary to amend this privacy policy.
The current privacy policy can be accessed and printed at any time on our website: [ https://www.traveller-sedona.com/privacy-police ].