rainbowtrekkers Privacy Policy

3.1 Server log files
Each time a user accesses a page on our website and each time a file is retrieved, access data about this process is stored in a log file on our server.

Each data record consists of:

• the page from which the file was requested (so-called referrer URL)
• the name of the file
• the date and time of the request (so-called “time stamp”)
• the amount of data transferred
• the access status (file transferred, file not found, etc.)
• a description of the type of internet browsing program used (English “web browser”, abbreviated “browser”; e.g. Mozilla Firefox, Google Chrome or Microsoft Internet Explorer, Apple Safari, Opera etc.)

The collection of this data is based on Art. 6 Para. 1 f) to protect our legitimate interests, in particular maintaining the function of the website, defending against attacks, or enforcing legal claims.

We generally do not pass on your data to third parties unless you have consented to this. However, for certain areas (e.g. hosting our website) we are dependent on the use of service providers, who we generally oblige to comply with the statutory requirements via order processing.

3.2 Form for requesting a place in our facility
When using the form to request a place, we collect your personal data to the extent provided by you. The data processing serves the purpose of processing your place request. The processing takes place on the basis of Art. 6 Para. 1 lit. b GDPR.

We only use your personal data to process your place request. Your data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. This is usually the case when it can be inferred from the circumstances that the matter in question has been conclusively clarified with regard to your place request.

3.3 Use of cookies and cookie consent tool “Borlabs Cookie”
We use cookies on our website. Cookies are small text files that are stored on your device. Some cookies are technically necessary for our website to function correctly (e.g. to save your language settings or your selection in the cookie banner). Other cookies are used for statistical or convenience purposes.

Processing using technically necessary cookies is carried out on the basis of Art. 6 Para. 1 lit. f GDPR (legitimate interest in a functional and user-friendly website). We only set cookies that are not technically necessary with your consent in accordance with Art. 6 Para. 1 lit. a GDPR.

We use the tool Borlabs Cookie to manage your consent. This stores your selection for individual cookie categories in a cookie on your device. In particular, the following information is processed:

• Consent status (opt-in/opt-out per category)
• Time of consent or change
• an anonymous identifier for assigning the settings

This processing takes place in order to be able to document and respect your decision in a legally secure manner (Art. 6 Para. 1 lit. c and lit. f GDPR). You can revoke your consent at any time with effect for the future by calling up the cookie settings again via the corresponding symbol or link on our website and adjusting your selection.

3.4 Technically necessary cookies and basic functions of the website
Our website is based on the content management system “WordPress”. This sets various technically necessary cookies, e.g. to

• to control the display of the website on your device,
• to provide protected areas (e.g. login areas for employees),
• to enable security functions.

These cookies generally do not contain any directly identifying information, but rather technical IDs and settings. The legal basis is Art. 6 Para. 1 lit. f GDPR. Our legitimate interest lies in providing a secure, stable and functional website.

3.5 Website security systems
To increase the security of our website, we use technical security solutions. These systems help us to recognize and prevent unauthorized access, login attempts and possible attacks (e.g. so-called brute force attacks).

In particular, the following data can be processed:

• IP addresses, possibly entered user names
• Date and time of access
• accessed URLs
• technical information about the browser and device
• possibly error messages

The processing takes place on the basis of Art. 6 Para. 1 lit. f GDPR. We have a legitimate interest in protecting our website from misuse and attacks and in ensuring the availability of our IT systems.

The stored data is regularly automatically deleted as soon as it is no longer required for the security purpose. It is not used for marketing purposes.

3.6 Creation of data backups (backups)
To secure our website, we regularly create data backups (backups). These include the technical content of the website and may also contain personal data that is stored in the system at the time of the backup (e.g. content from forms, provided that they have not yet been deleted).

The legal basis is Art. 6 Para. 1 lit. f GDPR. Our legitimate interest lies in securing our systems and the ability to restore the website after a technical problem, data loss or security incident.

Backups are only kept for as long as this is necessary to ensure safe and stable operation. Access to backups is restricted to a small group of authorized people.

3.7 Multilingual display (language module)
Our website can be offered in several languages. For this we use a language module that provides the content in different languages.

In particular, the module uses cookies or similar technologies to

• to save the language you have chosen,
• to automatically greet you in this language when you visit again.

The following are processed, for example:

• selected language or language code
• Time of selection

The legal basis is Art. 6 Para. 1 lit. f GDPR. Our legitimate interest lies in being able to show our visitors content in their preferred language.

The language module is used exclusively for language control on our website. It is not used for tracking or advertising purposes.

3.8 Virtual tours / 360° views
On individual subpages, 360° views or virtual tours of our facilities can be integrated. For this we use a corresponding module for displaying 360° content.

When you access a page with a 360° view, the image files required for this (e.g. panoramic images) are loaded from our web server. As with every page view, technical data is processed, in particular:

• IP address of the requesting device
• Date and time of access
• accessed URL
• technical information about the browser and device

This processing is technically necessary to display the virtual tour (Art. 6 Para. 1 lit. b and lit. f GDPR). We do not carry out any further evaluation for marketing or tracking purposes.

If, in exceptional cases, content from external platforms should be integrated, we will provide separate information about this (e.g. as part of a notice directly on the embedded content).

3.9 Web design and convenience functions
We use various web design tools for the design, structuring and accessible use of our website. These support, for example:

• the structure of the pages and content,
• the adaptation of the display to different screen sizes (responsive design),
• Navigation and menu functions,
• the implementation of accessibility options (e.g. font size, contrasts).

If information is stored on your device (e.g. to save operating or display settings), this is generally technically necessary or functions that you have expressly requested.

The legal basis is Art. 6 Para. 1 lit. f GDPR. Our legitimate interest lies in a modern, accessible and user-friendly presentation of our online offer. Data from these functions are not used for advertising or tracking purposes.

3.10 Systems for search engine optimization
To improve the findability of our content in search engines, we use technical systems for search engine optimization. These help us, for example, with the structuring of meta data, the creation of sitemaps and the implementation of structured data.

These systems work in our web server environment and generally do not process personal data of website visitors for their own purposes. These systems do not carry out any further analysis or tracking of user behavior.

The legal basis is Art. 6 Para. 1 lit. f GDPR. Our legitimate interest lies in preparing our website in a search engine-friendly manner and making it easier for interested people to find.

3.11 General information on the technical services and processors used
The functions described in this section are generally operated on our own web server within the existing website infrastructure. If external technical service providers support us in the operation, maintenance or care of the systems, this only happens if this is necessary and contractually secured (e.g. through order processing contracts in accordance with Art. 28 GDPR).

Personal data is only transferred to countries outside the European Union (third countries) if this is necessary in individual cases and the special requirements of Art. 44 ff. GDPR are met (e.g. on the basis of EU standard contractual clauses). We will provide separate information about such cases.