Events

Events in and around Bad Gastein

Our privacy policy

Privacy information acc. Art. 13 and 14 GDPR

1. General

The protection of your personal data is of particular concern to us. We therefore process your data exclusively in a lawful manner on the basis of the legal provisions (especially DSGVO, DSG 2018, TKG 2021). In this data protection information, we inform you about the most important aspects of data processing – type, scope and purposes of the collection and use of personal data – in the context of the use of our website and in the context of other services provided by our company.

1.1. Person responsible for the processing of your data.

is the controller (as defined in Art. 4 Z 7 DSGVO) for the processing of your personal data (personal data as defined in Art. 4 Z 1 DSGVO):

Janus Hotel Operating Company Ltd.
Grillparzerstraße 1, 5640 Bad Gastein, Austria
Tel.: +43 (6434) 20 37-0
E-mail: hotel@salzburgerhof.com

Data Protection Officer:
We take the protection of personal data seriously and have appointed an external data protection officer for this purpose. Our data protection officer is MMag. Martin Zeppezauer, Thurnbichlweg 50, A-6353 Going am Wilden Kaiser(www.zepedes.com). You can contact our data protection officer at the e-mail address martin@zepedes.com.

Processing purposes

The purposes of processing your personal data generally arise from our business activities as a hotel: providing our online offers, processing customer inquiries, bookings, orders/purchases of third-party services, accounting, communication with business partners and customers. Detailed information on the purposes of the processing and, if applicable. for further processing for other compatible purposes as well as the categories of data processed can be found in the detailed descriptions of the individual data processing processes.

General data categories

  • Personal master data (e.g. name, date of birth and age, address)
  • Contact details (e.g. e-mail address, telephone number, fax number)
  • Communication data (time and content of communication)
  • Order or booking data (e.g. ordered goods or ordered services and invoice data such as service period, payment method, invoice date, tax identification number ...)
  • Payment data (e.g. account number, credit card data)
  • Contract data (contents of contracts of any kind)
  • Web usage data (e.g. server data, log files and cookies)
  • Identification numbers (e.g. identity card number, car license plate number...)
  • Video surveillance images

Special categories of data ("sensitive data") according to. Art. 9 GDPR

  • Health data: only if these are made available to us by you through your express consent for processing. E.g. food intolerances or allergies.

Legal bases for the processing

In principle, there is no obligation to provide the data for the data processing described in this data protection declaration. Failure to provide this information will only result in our inability to provide these services. The legal basis for the processing of your personal data, which is necessary for the fulfillment of a contract with you or an order from you to us, is Art. 6 (1) lit. b GDPR. Insofar as the processing of personal data is necessary for the fulfillment of a legal obligation on our part (accounting obligation, bookkeeping obligation or other legal documentation obligations), Art. 6 (1) lit. c DSGVO as the legal basis. If the processing is necessary to protect a legitimate interest of our company or a third party and your interests, fundamental rights and freedoms do not override our interest, Art. 6 (1) lit. f DSGVO ("legitimate interest") as the legal basis for the processing. In this case, we will also inform you about our legitimate interests. Insofar as we do not have any other legal basis for the processing of personal data as explained above, we will ask you for your consent to the processing of data, which in these cases will be based on Art. 6 (1) lit. a DSGVO or, in the case of the processing of sensitive data, on Art. 9 (2) lit. a DSGVO as the legal basis. You can revoke this consent at any time free of charge without affecting the lawfulness of the processing carried out on the basis of the consent until revocation.

1.3. Data transfer to processors and third parties

We process your personal data with the assistance of processors who help us provide our services. These processors are bound by a corresponding agreement iSd. Art. 28 DSGVO with us to strictly protect your personal data and may not process your personal data for any other purpose than to provide our services. Please refer to the detailed descriptions of the individual data processing procedures to find out which processors are involved.

A transfer of your personal data to companies other than our order processors is made to service providers typical for the economy, such as banks, tax consultants or auditors. Personal data will only be transferred to state institutions and authorities within the framework of mandatory national legal provisions.

Depending on your order (e.g. for bookings and inquiries), your personal data will only be processed to the extent necessary. also transmitted to other tourist service providers (e.g. ski school or ski rental), which are necessary for the fulfillment of your order. The personal data transmitted varies depending on the service.

1.4. Transfers to third countries or International Organisations

In principle, we process your personal data in the EU area. If we collect data in a third country (d. h. outside the European Union (EU) or the European Economic Area (EEA)) or this occurs in the context of the use of services of our processors or third parties, this is only done if the conditions of Art. 44 et seq. DSGVO for the transfer to third countries: i.e. on the basis of special guarantees, such as the officially recognized determination of a level of data protection corresponding to the EU or in compliance with officially recognized contractual obligations, the so-called "EU standard contractual clauses". If we rely on the EU standard contractual clauses as the legal basis for the transfer of your personal data, we will additionally examine the permissibility of this data transfer as part of a comprehensive risk assessment. Should we come to a negative result, we will not use this data without your express consent pursuant to Art. Art. 49 (1) lit. a and Art. 6 (1) lit. a GDPR  to a third country.

      

1.5. Data deletion and storage period

Your personal data will be deleted by us as soon as the purpose for which we collected your data no longer applies. Storage may occur beyond this if we further process the data for a purpose compatible with the original purpose. It can also take place if this is provided for by laws, ordinances or other regulations to which our company is subject.

1.6. Data sources

We collect your personal data exclusively from you and do not use any other data sources.

1.7. Profiling

We do not use any automated decision-making or profiling procedures that have a legal effect on you or similarly significantly affect you. However, with your consent, we will use your usage data to get to know your interests better and thus to be able to display information that is interesting to you or to make you customized offers, or to be able to display relevant information to you on third-party websites or social media platforms.

1.8. Safeguarding your data protection rights

In principle, you have the following rights pursuant to DSGVO the right to information, correction, deletion and restriction of processing of personal data. If the legal basis for processing your personal data is your consent or a contract concluded with you, you also have the right to data portability. You have the right to withdraw any consent you may have given for the processing of your personal data. This does not affect the lawfulness of the processing of your personal data until the time of revocation. You have the right to object to the processing of your personal data for the purpose of direct marketing. In case of objection, your personal data will no longer be processed for the purpose of direct marketing. A detailed explanation of these rights can be found here in Chapter III.

Right to complain

If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been violated in some way, you can complain to the competent supervisory authority. In Austria, this is the data protection authority (Wickenburggasse 8, 1080 Vienna, e-mail: dsb@dsb.gv.at).

2. Visit of our website

In this section we inform you how we process your personal data when you visit our website.

2.1. Website presentation

Server data

For technical reasons, on the basis of the legal basis of § 165 (3) S 3 TKG 2021 (required for the operation of our website), among other things, the following data that your Internet browser transmits to us or to our web space provider is collected (so-called "server log files"):

  • Browser type and version
  • Operating system and device type used (e.g. desktop / mobile)
  • Website from which you visit us (referrer URL)
  • Website you visit
  • Date and time of your access
  • Your Internet Protocol (IP) address

This data, which is anonymous for us, is stored separately from any personal data you may have provided and thus does not allow us to draw any conclusions about a specific person. They are evaluated for statistical purposes in order to be able to optimize our Internet presence and our offers.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the browser address bar changes from "http://" to "https://" or by the lock symbol in your browser bar. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Technical service providers

We create and edit the content of our website with the help of the following service providers, which we have contracted through a corresponding agreement iSd. Art. 28 DSGVO to process your data exclusively within the scope of our order:

Technical Conception:

  • Tandem GmbH (Landseestraße 17, A-6020 Innsbruck); More information on data protection at https://www.tandem.at/datenschutzerklaerung/

Webhosting:

  • myNET GmbH (Bruggfeldstr. 5, A-6500 Landeck) More information on data protection at https://www.mynet.at/service/datenschutz.html

2.2. Cookies

Cookie Banner - Cookies on our website

Our website uses cookies that help us to make our website more user-friendly and efficient for you, to perform statistical analyses of the use of our website or to display content of interest to you on other websites. Cookies are small text files that are used to store information when or about visiting websites and are stored on the website visitor's computer. The legal basis for cookies that are mandatory for the proper operation of our website (e.g. shopping cart cookie) is § 165 (3) S 3 TKG 2021. Cookies that are not necessary for the function of our website (e.g. analysis or marketing cookies) are deactivated and are only used with your consent in accordance with the German Data Protection Act. Art 6 (1) lit. a DSGVO activated in our cookie banner ("Accept"). By clicking on "Settings" you can activate or deactivate individual cookies or cookie groups. If you restrict the use of cookies on our website, you may no longer be able to use all the functions of our website to their full extent. Detailed information about the cookies used on our website can be found in our Cookie Banner.

You can adjust or revoke your selection at any time under the icon at the bottom left of the website.

Changing the cookie settings in your web browser

How the web browser you use handles cookies, i.e. which cookies are allowed or rejected, can be defined by you in the settings of your web browser. You can also delete cookies already stored on your computer/end device yourself at any time. Where exactly these settings are located depends on the web browser. Detailed information on this can be accessed via the help function of the respective web browser.

In addition, it is possible to generally object to cookies and similar tracking technologies via the services mentioned below by setting your individual preferences - which technologies for usage- and interest-based advertising you want to allow:

2.3. Communication with us

Contact form and e-mail

On our site we offer you the possibility to contact us by e-mail and/or via a contact form. In this case, the information you provide will be used for the purpose of processing your contact based on the legal basis of contract performance in accordance with. Art. 6 (1) lit. b GDPR. There is a legitimate interest on our part pursuant to Article 6 (1) lit.  f GDPR for the use of a contact form. The legitimate interest lies in offering our website visitors an opportunity to contact us that does not require them to call up their own e-mail client. There is no legal or contractual obligation to provide this personal data. Failure to do so will only result in you not submitting your request and us not being able to process it. Data will only be passed on to third parties if this is stated on the website or in this data protection declaration or is necessary for the fulfillment of the contract or is required by law. We store your data only as long as this is appropriate for the processing of your requests or for any queries.

2.4. Online store(s) / booking portal(s)

For the purpose of providing contractual services as well as their payment and execution in the context of online purchases, bookings and brochure orders, we process your personal master data, contract and payment data as well as communication data (IP address and server log files) on the basis of the legal grounds of Art. 6 (1) lit. b DSGVO (performance of contract) and Art. 6 (1) lit. c DSGVO (legal obligation for accounting and archiving).

We store this data as long as the purpose requires, legal regulations provide for this (retention period of invoices according to § 132 BAO for 7 years; voucher orders until the expiry of the redemption period for 30 years) or we store this data on the basis of the legal basis of Art. 6 (1) lit. f DSGVO (legitimate interest) to defend against possible liability claims. If you cancel the order process, we store the data for 14 days to clarify possible problems during the order process.

There is no legal or contractual obligation to provide the personal data. Failure to do so will only result in us not being able to process your bookings / orders.

"Bookvisit" online bookings

For the processing of online bookings, we process your personal data in order to provide you with the booked services with the help of our service provider BookVisit™ Sweden (Kungsgatan 34-36, 411 19 Gothenburg, Sweden). For this purpose, we store and process inventory data, communication data, contract data, payment data of our customers, prospective customers and other business partners. The processing is carried out for the purpose of providing contractual services or for the fulfillment of pre-contractual services on the basis of the legal grounds of Art. 6 para. 1 lit. b DSGVO (booking processes, answering quotation requests and sending brochures) and of Art. 6 para. 1 lit. c DSGVO (legally required retention periods of bookings or invoices). For this purpose, the data fields marked as required are necessary for the establishment and fulfillment of the contract. We disclose your personal data to third parties (other tourism service providers) in the context of this data processing on the legal basis of Art. 6 (1) lit. b DSGVO (if it is necessary for the processing of a booking transaction), or on the basis of our legitimate interest pursuant to. Art. 6 (1) lit. f DSGVO for the use of corresponding booking software. We have entered into a corresponding agreement with BookVisit™ Sweden pursuant to. Art. 28 DSGVO concluded as a processor, which ensures that your data is processed exclusively within the scope of our contract. For more information about BookVisit™ Sweden's privacy practices, please visit: https://www.visitgroup.com/cookie-policy.

The Fork table reservations

For the processing of table reservations in our restaurants, we process your personal data in order to be able to provide you with the booked restaurant seats using the table reservation program "The Fork" of our service provider La Fourchette SAS (70, rue Saint-Lazare, 75009 Paris, France). For this purpose, we store and process your name and email address as well as information about your table reservation. The processing is carried out for the purpose of providing contractual services or for the fulfillment of pre-contractual services on the basis of the legal grounds of Art. 6 para. 1 lit. b GDPR. For this purpose, the data fields marked as required are necessary for the establishment and fulfillment of the contract. We disclose your personal data within the scope of these data processing operations to our service provider La Fourchette SAS on the basis of our legitimate interest in accordance with. Art. 6 (1) lit. f DSGVO for the use of corresponding booking software. We have signed a corresponding agreement with the company La Fourchette SAS according to. Art. 28 DSGVO concluded as a processor, which ensures that your data is processed exclusively within the scope of our contract. For more information about La Fourchette SAS' privacy practices, please visit: https://www.thefork.at/legal#datenschutzerklarung-und-cookie-richtlinien.

External payment service providers

For the payment of the order transactions / bookings we use on the basis of the legal basis of Art. 6 (1) lit. b DSGVO (contract fulfillment) use external payment service providers through whose platforms you can make your payments. The payment data you enter as part of the order (e.g. account numbers, credit card numbers incl. check digits, passwords / TANs, etc.) are processed exclusively by our payment service providers and are not visible to us. We only receive a confirmation of the payment made or information that the payment could not be made via our payment service providers. For more information on data protection and T&Cs of our payment service providers, please visit:

2.5. Web analysis - Statistical analysis of our website

Google Tag Manager

We use the service of the provider Google Ireland Limited ("Google") (Gordon House, Barrow Street, Dublin 4, Ireland) to manage website tags via a common tool. The Google Tag Manager tool itself (which implements the tags) is a domain that does not set cookies and does not collect any other personal data. The tool takes care of triggering other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager. Google is a certified partner of the EU-US Data Privacy Framework. The legal basis for (at least a case-by-case) data transfers to the USA is thus an adequacy decision of the European Commission within the meaning of Art. 45 (3) GDPR, with which the European Commission certifies that the USA has an adequate level of data protection. Further information on Google's data protection can be found at: https://www.google.com/policies/privacy/.

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider of this service is Google Ireland Limited ("Google") (Gordon House, Barrow Street, Dublin 4, Ireland). The legal basis for the use of this service is your consent according to. Art. 6 (1) lit a DSGVO. Google Analytics uses cookies that are stored on the site visitor's computer and that enable an analysis of the site visitor's use of our website. The information generated by the cookie about your use of our website is usually stored on European servers and only in exceptional cases transferred to a Google server in the USA and stored there. We use Google Analytics with IP anonymization enabled. This means that your IP address is usually still shortened by Google within the European Union and only in exceptional cases is the full IP address transmitted to a Google server in the USA and only shortened there. Google is a certified partner of the EU-US Data Privacy Framework. The legal basis for (at least a case-by-case) data transfers to the USA is thus an adequacy decision of the European Commission within the meaning of Art. 45 (3) GDPR, with which the European Commission certifies that the USA has an adequate level of data protection. The IP address transmitted by the corresponding browser within the scope of Google Analytics is not merged with other Google data. On our behalf, Google will use the information collected to evaluate the use of the website in order to compile reports on website activity. The collection by Google Analytics can be prevented by the site visitor adjusting the cookie settings for this website. The collection and storage of the IP address and the data generated by cookies can also be objected to at any time with effect for the future. The corresponding browser plugin can be downloaded and installed at the following link: https://tools.google.com/dlpage/gaoptout. User data is stored for 14 month.  Further information on the use of data by Google, setting and objection options, can be found in Google's privacy policy(https://policies.google.com/privacy) and in the settings for the presentation of advertisements by Google (https://adssettings.google.com/authenticated).

Google Ads Conversion Tracking

Our website uses the service "Google Ads Conversion Tracking" of the provider . Google Ireland Ltd (Gordon House, Barrow Street, Dublin 4, Ireland). When we place ads on Google, we use the so-called conversion tracking. When you click on an ad placed by Google, a cookie is set for conversion tracking (storage period 30 days). This is how we recognize that you clicked on one of our ads and were redirected to our site. However, we do not receive any personal information, but only learn the total number of users who clicked on one of our ads and were redirected to a page tagged with a conversion tracking tag. We use Google Ads Conversion Tracking based on the legal basis of your consent (settings via our cookie banner) according to. Art. 6 (1) lit. a GDPR. Google is a certified partner of the EU-US Data Privacy Framework. The legal basis for (at least case-by-case) data transfers to the USA is thus an adequacy decision of the European Commission within the meaning of Art. 45 (3) GDPR, with which the European Commission certifies that the USA has an adequate level of data protection. Further information on the use of data by Google, setting and objection options, can be found in Google's privacy policy(https://policies.google.com/privacy) and in the settings for the presentation of advertisements by Google (https://adssettings.google.com/authenticated).

2.6. Web marketing

Google Remarketing

Our website uses on the basis of the legal basis of your consent acc. Art. 6 (1) lit. a GDPR the functions of "Google Analytics Remarketing" in connection with the cross-device functions of Google AdWords and Google DoubleClick. The provider is Google Ireland Ltd (Gordon House, Barrow Street, Dublin 4, Ireland). This function makes it possible to link the advertising target groups created with Google Analytics Remarketing with the cross-device functions of Google AdWords and Google DoubleClick. In this way, interest-based, personalized advertising messages that have been adapted to you depending on your previous usage and surfing behavior on one end device (e.g. cell phone) can also be displayed on another of your end devices (e.g. tablet or PC). If you have given your consent, Google will link your web and app browsing history to your Google Account for this purpose. In this way, the same personalized advertising messages can be served on every end device on which you log in with your Google account. To support this feature, Google Analytics collects Google-authenticated IDs of users that are temporarily linked to our Google Analytics data to define and create audiences for cross-device ad advertising. Cookies are deleted after 1 year. Google is a certified partner of the EU-US Data Privacy Framework. The legal basis for (at least case-by-case) data transfers to the USA is thus an adequacy decision of the European Commission within the meaning of Art. 45 (3) GDPR, with which the European Commission certifies that the USA has an adequate level of data protection. You can permanently object to cross-device remarketing/targeting by deactivating personalized advertising in your Google account; follow this link: https://www.google.com/settings/ads/onweb/. The aggregation of the collected data in your Google account is based solely on your consent, which you can give or revoke at Google (Art. 6 para. 1 lit. a GDPR). For more information about Google's privacy practices, please visit: https://www.google.com/policies/privacy/.

2.7. Integration of other services and contents of third parties

We integrate third-party content or functions within our website. This always requires that the providers of this content or function are aware of the IP address of the user. Because without the IP address, they could not send the content to the browser of the respective user. The IP address is thus required for the display of this content. We endeavor to use only such content whose respective providers use the IP address only for the delivery of the content. However, we have no influence if the third-party providers store the IP address, e.g. for statistical purposes. The legal basis for the use of these services, insofar as they are necessary for the function of our website, is our legitimate interest pursuant to Art. Art. 6 (1) lit. f GDPR, otherwise your consent according to. Art. 6 (1) lit a GDPR. Information on the purpose and scope of further processing and use of the data by the providers of the embedded services/content as well as further information iSd. Art. 13 and 14 GDPR can be found under the information links below. The following services/content are embedded in our website:

Google Maps

Our website uses the Google Maps service of the provider Google Ireland Ltd. (Gordon House, Barrow Street, Dublin 4, Ireland). This function makes it possible to display corresponding map material within our website. Your IP address as well as information about the browser version and language settings are transmitted to the servers of Google Ireland Ltd. According to Google's own information, the data is stored by Google for 1 year. There is a legitimate interest on our part within the meaning of the Art. 6 (1) lit. f GDPR for the use of Google Maps. Our legitimate interest lies in an appealing presentation of our online offer or the geographical presentation of the offers of our region. However, we only use Google Maps if you have given your consent. The legal basis for the processing of your data is therefore your consent in accordance with Art. 6 (1) lit. a GDPR. Google is a certified partner of the EU-US Data Privacy Framework. The legal basis for (at least case-by-case) data transfers to the USA is thus an adequacy decision of the European Commission within the meaning of Art. 45 (3) GDPR, with which the European Commission certifies that the USA has an adequate level of data protection. For more information about Google's privacy policy, please visit:  https://policies.google.com/privacy.

 

 

3. Other data processing in business and customer contact

In this section, we inform you about other data processing processes outside our website.

3.1. Job applications

The contact data and application documents submitted to us in the course of a job application are processed by us exclusively internally for the purpose of selecting suitable candidates for an employment relationship. There is no legal or contractual obligation to provide the personal data. Failure to do so will only result in you not submitting your request and us not being able to process it. The personal data transmitted in this process will be stored by us in accordance with the statutory provisions for max. 6 months, in case of explicit consent of the applicant to keep the documents on record, for max. Stored for 2 years.

3.2. Online presences in social media

In addition to our website, we maintain online presences within social networks and platforms: Facebook and YouTube in order to communicate with customers and business partners active there and to be able to inform them about our services on these networks. When calling up the respective networks and platforms, the GTCs and privacy policies of the respective operators of these networks apply.

3.3. Video surveillance

For the purpose of protecting our property as well as for the purpose of preventing or clarifying behavior relevant under criminal law, we have installed video surveillance in the reception/cashier area of our hotel and marked it accordingly. These surveillance images are only evaluated if there is a reason to do so and remain stored for a maximum of 72 hours unless there is a suspicious case, after which they are automatically deleted. In the event of an incident, the data shall remain stored for the duration of the processing of the procedure. The legal basis for this data processing is our legitimate interest according to. Art. 6 (1) lit. f GDPR the protection of our property. There is no right to object to the processing of this data and no right to data portability.

3.4. Guest registration data / obligation to register

As the owner of a lodging establishment, we are obligated according to. § 10 (1) Meldegesetz obliged to keep a register of guests staying with us (guest register), from which the data according to § 5 (1) and (3) Meldegesetz and the date of arrival and departure can be seen. This concerns the following data: Name, date of birth, gender, nationality, country of origin and address including postal code, as well as the date of arrival and departure. For foreign guests, we are additionally required to record the type, number, date of issue and issuing authority of the travel document. The legal basis for the processing of this data is our legal obligation pursuant to Art. 6 (1) lit. c GDPR. These data (guest list) are obligatory from us according to. § Section 10 (2) of the Registration Act for a period of seven years from the date of registration. There is therefore no right of objection on your part, nor a right to erasure or a right to restriction of processing (see point "Safeguarding your data protection rights" in this privacy statement). Likewise we are acc. § 6 Tourism Statistics Ordinance is obliged to forward the data on arrival, departure and country of origin to the municipality (mayor as the competent registration authority) in which our accommodation facility is located. The guest register is maintained by us electronically. The IT service provider used for this purpose, feratel Media Technologies AG (Maria-Theresien-Strasse 8, A-6020 Innsbruck, Austria), is authorized pursuant to Art. Art. 28 DSGVO as a processor is obliged to process your data exclusively within the scope of the order (maintenance of the electronic guest register). Your guest registration data will only be processed in the EU area, there will be no transfer to a third country.

3.5. Guest card system

Guest card system feratel

For the use of our regional guest card (under the data protection responsibility of Gasteinertal Tourismus GmbH (Tauernplatz 1, 5630 Bad Hofgastein), we process your personal data (first name, last name, date of birth, period of stay and country of origin/postcode) with the help of the service provider feratel Media Technologies AG (Maria-Theresien-Straße 8, A-6020 Innsbruck) for the purpose of providing you with the benefits of the free card. Furthermore, it is necessary to store their usage data for the purpose of billing and also to make this data available to service providers for the purpose of controlling internal billing. The legal basis of the processing is their consent according to. Art. 6 (1) lit a, which you give us in the context of your guest notification. You can revoke this consent at any time free of charge. Uses that have already been made remain unaffected and stored for billing purposes. There is no legal or contractual obligation to provide the personal data. Failure to do so will only result in us not being able to provide you with the guest card. Gasteinertal Toiurismus GmbH has concluded a corresponding agreement with the company feratel in accordance with the German Copyright Act (AktG). Art. 28 DSGVO concluded as a processor, which ensures that your data is processed exclusively within the scope of this contract. Further information on feratel's data protection can be found at: https://www.feratel.com/datenschutz.html. Further information on data protection at Gasteinertal Tourismus GmbH can be found at: https://www.gastein.com/gasteinertal/datenschutz/.

3.6. Guests/Visitors WLAN

We offer a password-protected visitor WLAN in our hotels. In order to provide the services of the hotspot for you, the use of personal data of your terminal device is required. In this context, the MAC addresses (media access control address) of end devices may also be stored temporarily. Furthermore, we may store log data ("log files") about the type and extent of use of the services for 7 days. This data cannot be assigned directly to your person, but it can be assigned directly to the terminal device you are using and thus indirectly to your person. To provide this offer, we use the services of the company Elektro Gassner (Martin-Lodinger-Straße 12, 5630 Bad Hofgastein) as our order processor. We have entered into a corresponding agreement with our processor pursuant to sec. Art. 28 DSGVO, which ensures that your data is processed exclusively within the scope of our order.

Current version of the privacy policy as of 13.09.2023

Janus HotelbetriebsgmbH. ∙ Grillparzerstraße 1 ∙ 5640 Bad Gastein ∙ Austria
Tel. +43 6434 / 20 37-0 ∙ Fax +43 6434 / 38 67 ∙ hotel@salzburgerhof.com

Janus HotelbetriebsgmbH. ∙ Grillparzerstraße 1 ∙ 5640 Bad Gastein ∙ Austria
Tel. +43 6434 / 20 37-0 ∙ Fax +43 6434 / 38 67 ∙ hotel@salzburgerhof.com