Privacy policy and information according to the GDPR
Data protection is an important concern for the municipality of Farchant. We therefore also attach great importance to data-saving and citizen-friendly data processing in the processing of personal data associated with the fulfillment of our tasks.
This data protection declaration also refers to the processing of personal data and information within the meaning of § 25 TDDDG in the context of this website, including the services offered there.
1. Name and address of the controller
The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is the
Gemeinde FarchantAm Gern 1
82490 Farchant
Telefon: +49 8821 961696
E-Mail: info@farchant.de
2. Name and address of the data protection officer
Please contact our data protection officer directly with all questions relating to data protection and data security:
actago GmbHWeidenstraße 66
94405 Landau a. d. Isar
Telefon: +49 (0)9951 99990-20
E-Mail: datenschutz@actago.de
Internet: www.actago.de
3. General information
3.1 Purposes and legal bases for the processing of personal data
The purpose of the processing is to fulfill the public tasks assigned to us by law.
Unless otherwise stated, the legal basis for the processing of your data results from Art. 4 para. 1 of the Bavarian Data Protection Act (BayDSG) in conjunction with Art. 6 para. 1 lit. e of the General Data Protection Regulation (GDPR). Accordingly, we are permitted to process the data required to fulfill a task incumbent upon us.
If you have consented to processing, the data processing is based on Art. 6 para. 1 letter a GDPR
3.2 Recipients of personal data
The technical operation of our data processing systems is carried out by
NAGEL Werbeagentur
Hagenrainweg 15
82467 Garmisch-Partenkirchen
If necessary, your data will be transmitted to the responsible supervisory and auditing authorities to exercise the respective control rights.
Log data may be forwarded to the State Office for Information Security based on Art. 44 BayDiG to prevent threats to information security (for more details, see “Logging”).
3.3 Duration of storage of personal data
Your data will only be stored for as long as is necessary for the fulfillment of tasks, considering statutory retention periods.
3.4 Your rights
If we process your personal data, you have the following rights as a data subject:
- You can request information as to whether we process your personal data. If this is the case, you have a right of access to this data and to further information related to the processing (Art. 15 GDPR). Please note that this right of access may be restricted or excluded in certain cases (see in particular Art. 10 of the Bavarian Data Protection Act - BayDSG).
- If incorrect personal data is processed, you have the right to rectification (Art. 16 GDPR).
- If the legal requirements are met, you can request the deletion or restriction of processing (Art. 17 and 18 GDPR). However, the right to erasure pursuant to Art. 17 (1) and (2) GDPR does not apply if the processing of personal data is necessary for the performance of a task carried out in the public interest or in the exercise of official authority (Art. 17 (3) (b) GDPR)
- If you have consented to the processing and the processing is based on this consent, you can revoke your consent at any time for the future. This does not affect the lawfulness of the data processing carried out based on the consent until revocation.
- You have the right to object to the processing of your data at any time for reasons arising from your situation (Art. 21 GDPR). If the legal requirements are met, we will then no longer process your personal data. Further restrictions, modifications and, where applicable, exclusions of the aforementioned rights may result from the General Data Protection Regulation or national legislation. You can also obtain more detailed information on these rights from our data protection officer.
3.5 Right to lodge a complaint with the supervisory authority
You also have the right to lodge a complaint with the Bavarian State Commissioner for Data Protection. You can reach him at the following contact details
Postal address: P.O. Box 22 12 19, 80502 MunichAddress: Wagmüllerstraße 18, 80538 Munich
Phone: +49 89 212672-0
Fax: 089 212672-50
Online registration: https://www.datenschutz-bayern.de/service/complaint.html
4. Information on the website
4.1 Logging
When you access this or other Internet pages, you transmit data to our web server via your Internet browser. The following data is recorded during an ongoing connection for communication between your Internet browser and our web server:
- Date and time of the request
- Name of the requested file
- Page from which the file was requested
- Access status (file transferred, file not found, etc.)
- Web browser and operating system used
- complete IP address of the requesting computer
- amount of data transferred.
We store this data for reasons of technical security, to prevent attempts to attack our web server. After seven days at the latest, the data is anonymized by shortening the IP address at domain level so that it is no longer possible to establish a reference to individual users.
To prevent threats to information technology security, this data is forwarded to the State Office for Information Technology Security based on Art. 44 BayDiG.
4.2 Secure data transmission
When you access this information service, we offer a connection encrypted with HTTPS and Perfect Forward Secrecy, which is secured with at least the TLS 1.2 encryption protocol, so that your data is protected from being read by third parties during data transmission. We recommend that you keep your internet browser up to date to use this option.
5. Cookies
We use cookies to ensure the correct technical and functional provision of this information service. Cookies are small text files that are stored on the device you are using.
The legal basis for the storage of information and the processing of personal data by means of technically necessary cookies is § 25 para. 2 TDDDG and Art. 6 para. 1 lit. e GDPR in conjunction with Art. 4 BayDSG. Art. 4 BayDSG
Technically necessary cookies are only valid for the current session and are automatically deleted as soon as you close your browser.
The use of functional cookies is voluntary. If these cookies are blocked, the provision of certain functions may not be fully possible.
The legal basis for the use of technically unnecessary cookies is the user's consent in accordance with Section 25 (1) TDDDG in conjunction with Art. 6 (1) lit. Art. 6 para. 1 lit. a GDPR
When you access this website, we store cookies (small files) on your device. These are valid for:
| Name | Storage duration |
|---|---|
| CookieConsent | 365 Tage |
| _et4frontend_session | Session |
| History.store | Session |
| portalcache:metaPredefinedConfig:{"terminal":"" | Session |
| eaIntro | Session |
| rc::a | Persistent |
| rc::c | Session |
| 1401b2653a05ac5ae8561fe1b333c8fb | Session |
6. Contact by e-mail
6.1 Description and scope of data processing
You can contact us via the e-mail address provided. Your personal data transmitted with the e-mail will be stored. No data will be passed on to third parties in this context.
The data is used exclusively for processing the conversation.
6.2 Legal basis for data processing
The legal basis for the processing of your personal data transmitted in the course of sending an e-mail is Art. 6 para. 1 lit. e GDPR in conjunction with Art. 4 BayDSG. Art. 4 BayDSG. If the purpose of contacting us by e-mail is to conclude a contract, the additional legal basis for processing is Art. 6 para. 1 lit. b GDPR.
6.3 Purpose of data processing
The other personal data processed during the sending process is used to prevent misuse of the contact form and to ensure the security of our information technology systems.
6.4 Duration of storage
Your personal data will be deleted as soon as it is no longer required for the purpose for which it was collected. For personal data sent by email, this is the case when the respective conversation with you has ended. The conversation ends when it can be inferred from the circumstances that the matter in question has been conclusively clarified.
The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
6.5 Possibility of objection and removal
You have the option at any time to object to the processing of your personal data in the context of contacting us by email in the future. In such a case, the conversation between you and us cannot be continued. All personal data stored while contacting us will be deleted in this case.
7. Non-binding request for souvenirs
7.1 Description and scope of data processing
There is a form on our website that can be used to submit non-binding inquiries regarding souvenirs. If you use this option, the data entered in the input mask will be transmitted to us and stored. These data are
- Salutation
- First name
- Surname*
- E-mail address*
- Telephone number
- POSTCODE*
- City*
- Country*
- Your selection
- Your additional information
*Mandatory field
Your consent will be obtained for the processing of the data as part of the sending process and reference will be made to this privacy policy.
No data will be passed on to third parties in this context. The data will be used exclusively for processing the request.
7.2 Legal basis for data processing
The legal basis for the processing of your personal data is Art. 6 para. 1 lit. a GDPR if the user has given consent.
7.3 Purpose of the data processing
The processing of your personal data from the input mask serves us solely to process the request. The other personal data processed during the sending process is used to prevent misuse of the form and to ensure the security of our information technology systems.
7.4 Duration of storage
Your personal data will be deleted as soon as it is no longer required for the purpose for which it was collected. For the personal data from the input screen of the form for ordering souvenirs, this is the case when the respective conversation with you has ended. The conversation ends when it can be inferred from the circumstances that the matter in question has been conclusively clarified.
The additional personal data collected during the sending process will be deleted after a period of seven days at the latest
7.5 Objection and removal options
You have the option at any time to object to the processing of your personal data when contacting us via the souvenir order form. In such a case, the conversation between you and us cannot be continued. All personal data stored while contacting us will be deleted in this case.
8. Electronic mail (e-mail)
Information that you send to us unencrypted by electronic mail (e-mail) may be read by third parties during transmission. As a rule, we are also unable to verify your identity and do not know who is behind an e-mail address. Legally secure communication by simple e-mail is therefore not guaranteed. Like many e-mail providers, we use filters against unwanted advertising (“SPAM filters”), which in rare cases automatically classify normal e-mails as unwanted advertising and delete them. E-mails containing harmful programs (“viruses”) are automatically deleted by us in all cases.
If you have concerns about the transmission of personal data or other sensitive data, please agree suitable encryption with the recipient (our employees) before transmission or use letter post.
9. Active components
Active components such as Javascript, Java applets or Active-X controls are used in the information provided. You can disable this function by changing the settings in your Internet browser.
10. Google Web Fonts
This website may use Google Web Fonts for the uniform display of fonts. When using these fonts, your browser downloads the required fonts from our website system. These are then temporarily stored in the browser cache to display the fonts correctly. Your browser does not establish a connection to Google's servers. This ensures that Google does not gain any knowledge of your visit or your IP address.
11. Google reCaptcha
Google's reCaptcha can be used to protect against misuse of forms. In this case, the optional parameter “remoteip” is not set for the API query. When using reCaptcha, the required data is downloaded from Google by your browser. Your browser establishes a connection to the Google servers so that Google becomes aware of the request and your IP address via our website. The website operator has no influence on this data transfer.
The use of Google's Recaptcha is in the interest of preventing misuse of forms and is intended to impair the user-friendliness of the website as little as possible. The Captcha offers mostly automatic recognition and a wide range of functions.
ReCaptcha is only used after consent within the meaning of Art. 6 para. 1 lit. a GDPR.
When Google Recaptcha is called up, different data protection provisions of the company Google apply. Further information can be found at https://www.google.com/intl/de/policies/privacy/
12. cloudflare.com
This website uses services from “Cloudflare” (provider: Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA).
Cloudflare operates a content delivery network (CDN) and provides protection functions for the website (web application firewall). The data transfer between your browser and our servers flows via Cloudflare's infrastructure and is analyzed there to ward off attacks. Cloudflare uses cookies to enable you to access our website. The use of Cloudflare is in the interest of the secure use of our website and the defense against harmful attacks from outside. This constitutes a legitimate interest within the meaning of
Art. 6 para. 1 lit. e DSGVO i.V.m. Art. 4 BayDSG.
Further information can be found in the Cloudflare privacy policy: https://www.cloudflare.com/de-de/privacypolicy/
13. Eye-Able
Eye-Able is software developed by Web Inclusion GmbH to ensure barrier-reduced access to information on the Internet for all people. The necessary files such as JavaScript, stylesheets and images must be loaded from an external server. Eye-Able uses the browser's local storage to save the settings. All settings are only saved locally and are not transferred further.
The Eye-Able software uses services from IONOS (provider: 1&1 IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany) for these purposes only.
Eye-Able uses the Content Delivery Network (CDN) of BunnyWay d.o.o. (Cesta komandanta Staneta 4A, 1215 Medvode, Slovenia) to fend off attacks and provide our service in near real time.
The use is based on consent pursuant to Art. 6 para. 1 lit. a GDPR.
All transmitted data and servers always remain in THE EU in order to enable data protection-compliant processing in accordance with the GDPR. Web Inclusion GmbH does not collect or analyze personal user behavior or other personal data at any time.
To ensure data protection-compliant processing, Web Inclusion GmbH has concluded contracts for order processing with our hosters IONOS and BunnyWay.
Further information can be found in the data protection declarations:
https://eye-able.com/datenschutz/ https://www.ionos.de/terms-gtc/terms-privacy https://bunny.net/privacy
14. Use of et4 for events
“Submit event” (enter via web form)
We use the data you enter for the further processing of your submitted event. For this purpose, we will forward the data you provide to our editorial team via the web-based event software et4 from neusta destination.one GmbH. After the editorial team has checked the content, your submitted event will be published or rejected. For details on when events may be published, please contact our Tourism Office. By using this contact form, you are asking the website operator to publish all the data you have entered to promote your registered event without restriction and to publish and pass it on via partner websites, mobile apps, radio or print products. If the event has expired, the website operator will automatically stop publication. In individual cases, your reported data will be stored in encrypted form for up to three years to provide you with greater ease of use, such as pre-population of fields, when you report events again.
The requirements of the GDPR are fulfilled insofar as they do not conflict with the actual task of publishing the event you have registered for as often as possible.
et4 event - Show notepad
If you use the “Show notepad” module, we will send you various dates and information about events in your area. You must provide an e-mail address to receive the event reminder/recommendation.
et4 event - Subscribe to calendar / add to contacts
If you use the “Subscribe to calendar” module, we will send you a one-off e-mail on the date of the event with information about the event. You must provide an e-mail address to receive the event reminder/recommendation. You can also use the “Add to contacts” button to send us a corresponding .vcf file (vCard). When this file or vCard is opened, a contact form is opened in which contact information is displayed.
Further information on the handling of your data can be found in the privacy policy of neusta destination.one GmbH:https://www.destination.one/datenschutz/
15. feratel booking&more
A booking module from “feratel media technologies AG”, based in Maria-Theresien-Straße 8, 6020 Innsbruck, Austria, is embedded on this website.
“feratel media technologies AG” uses the web analysis service Google Analytics when components of its services are called up. Google Analytics uses cookies for this analysis. Cookies are small text files that are stored on your computer and enable your use of the “feratel media technologies AG” website to be analyzed. The user information generated by the cookies (e.g. time, place and frequency of your website visit, including your abbreviated IP address) is transmitted to the server of
“feratel media technologies AG” server and stored there. Your IP address is immediately anonymized during this process, so that you as a user remain anonymous to “feratel media technologies AG”.
The information generated by the cookie is not passed on to third parties. You can prevent the installation of cookies by setting your browser accordingly. However, please note that in this case you may not be able to use all functions of the services of “feratel media technologies AG” to their full extent.
The use of Feratel booking & more is based on the user's consent in accordance with Art. 6 para. 1 lit. a GDPR
You can revoke this consent at any time. In this case, all stored personal data will be deleted, if there are no legal storage periods to the contrary.
In this case, functions of the website cannot be used.
You can find more information on the handling of user data in Feratel's privacy policy: https://www.feratel.de/datenschutz/
16. OpenWeather
We use a plug-in from the provider openweathermap.org (Openweather Ltd, 4 Queens Road, Wimbledon, London, SW19 8YB, United Kingdom) on our website.
This shows the user the current weather forecast for the location. Your browser may transmit personal data to openweathermap.org.
The legal basis for the processing is the user's consent pursuant to Art. 6 para. 1 lit. a GDPR.
You have the option to object to processing by Openweather at any time. In this case, the information from OpenWeather cannot be displayed.
Further information on how Openweather handles personal data can be found in their privacy policy at:https://openweather.co.uk/privacy-policy
17. Panomax
We use the external provider Panomax GmbH, Landesstraße 23, A-5302 Henndorf, to integrate webcam images. For technical reasons, a direct connection to the provider's servers is established when the images are called up. This may result in the use of browser or end device data by the provider.
Panomax is used based on the user's consent in accordance with Art. 6 para. 1 lit. a GDPR.
For further information on the collection and use of such data, please refer to Panomax's privacy policy at the following link https://www.panomax.com/datenschutz.html
18. Tourinfra
We offer Tourinfra for tour management on our website. This is a product of green solutions GmbH & Co. KG, based at Viehmarktplatz 6, 82418 Murnau, Germany.
Personal data such as the user's IP address is forwarded to Tourinfra. This data is not forwarded to third parties.
The legal basis for the processing of your personal data is consent pursuant to Art. 6 para. 1 lit. a GDPR.
The legal basis for the processing of your personal data is consent pursuant to Art. 6 para. 1 lit. a GDPR. The personal data is processed to provide users of the website with a visually appealing and easy-to-use management solution for tourist infrastructures.
Your personal data will be deleted as soon as it is no longer required for our recording purposes.
You have the option to object to the processing of personal data by Tourinfra at any time.
You can find further information on this in the privacy policy
of green solutions GmbH & Co. KG: https://www.green-solutions.info/kontakt/datenschutz/
19. Deskline
This site uses the Deskline reservation system via an API. The provider is feratel media technologies AG, Maria-Theresien-Straße 8, A-6020 Innsbruck.
When you call up a page, your browser loads the required scripts into your browser cache in order to display the booking function correctly. For this purpose, the browser you are using must connect to the servers of feratel media technologies AG. This gives feratel media technologies AG knowledge that our website has been accessed via your IP address. We do not know what other data is transmitted. When a visitor makes a booking or inquiry, the data provided by the visitor is also initially processed by Deskline.
The legal basis for the processing is the user's consent in accordance with Art. 6 para. 1 lit. a GDPR.
If the processing serves the implementation of contractual or pre-contractual measures, the legal basis for the processing results from Art. 1 para. 1 lit. b GDPR.
You can revoke this consent at any time. In this case, all stored personal data will be deleted, if there are no legal storage periods to the contrary.
In this case, parts of the website may not be displayed correctly.
You can revoke this consent at any time. In this case, all stored personal data will be deleted, if there are no legal storage periods to the contrary.
In this case, functions of the website that are related to Deskline can no longer be used.
You can find more information about Deskline at: https://www.feratel.com/datenschutz
20. Note on the privacy policy
Unless otherwise specified, the use of all information that we have about you is subject to this privacy policy.
The controller reserves the right to continuously adapt this privacy policy to the necessary security measures in line with technological developments and will announce any changes here.
Status: December 24
21. Further information
21.1 Technical and organizational measures
The controller has taken technical and organizational measures to protect your data from loss, destruction or unauthorized access.
In addition, both the controller's employees and any service providers are obliged to maintain confidentiality and to comply with data protection regulations.
21.2 SSL or TLS encryption
For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses SSL or TLS encryption. This means that data that you transmit via this website cannot be read by third parties. You can recognize an encrypted connection by the “https://” address line of your browser and the lock symbol in the browser line.
22. Information on the initial collection of data
When personal data is collected for the first time, there is an obligation to provide information to the data subject.
We comply with this obligation by providing the information sheets offered here.
