Ski OKSki Oberstdorf KleinwalsertalWo Skifahren beginnt
de

Privacy Policy

I. General

(1) Here you will find information about the handling of your personal data when visiting our website. To provide our services, it is necessary for us to process personal data from you.

(2) Personal data is all information relating to an identified or identifiable natural person. A natural person is considered identifiable who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

(3) We take the protection of your personal data very seriously and treat your personal data confidentially and in accordance with statutory data protection regulations as well as this privacy policy.

(4) We point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.

II. Controller

The controller for data processing on this website is:

IG Skipass Kleinwalsertal-Oberstdorf

Walserstraße 77 6991 Riezlern Austria

Tel.: +43 8322 9600-0 E-Mail: info@ok-bergbahnen.com

Controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

III. Rights of the Data Subject

If personal data concerning you is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:

(1) Right of Access (Art. 15 GDPR)

You can request confirmation from the controller as to whether personal data concerning you is being processed by us. If such processing is taking place, you can request information from the controller about the following: the purposes for which the personal data is processed; the categories of personal data that are processed; the recipients or categories of recipients to whom the personal data concerning you has been or will be disclosed; the planned duration of storage of the personal data concerning you or, if specific information on this is not possible, criteria for determining the storage period; the existence of a right to rectification or erasure of personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing; the existence of a right to lodge a complaint with a supervisory authority; all available information about the origin of the data if the personal data is not collected from the data subject; the existence of automated decision-making including profiling pursuant to Art. 22 para. 1 and 4 GDPR and - at least in these cases - meaningful information about the logic involved as well as the scope and intended effects of such processing for the data subject.

(2) Right to Rectification (Art. 16 GDPR)

You have a right to rectification and/or completion vis-à-vis the controller if the processed personal data concerning you is incorrect or incomplete.

(3) Right to Erasure (Art. 17 GDPR)

You can request that the controller erase personal data concerning you without undue delay, and the controller is obliged to erase this data without undue delay if one of the statutory reasons applies.

(4) Right to Restriction of Processing (Art. 18 GDPR)

You have the right to request the controller to restrict processing if one of the statutory requirements is met.

(5) Right to Data Portability (Art. 20 GDPR)

You have the right to receive the personal data concerning you that you have provided to the controller in a structured, commonly used and machine-readable format.

(6) Right to Object (Art. 21 GDPR)

You have the right to object at any time, on grounds relating to your particular situation, to processing of personal data concerning you.

(7) Right to Withdraw Data Protection Consent

You have the right to withdraw your data protection consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

(8) Right to Lodge a Complaint with a Supervisory Authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.

IV. Data Security

We use the widespread SSL procedure (Secure Socket Layer) in connection with the highest level of encryption supported by your browser when visiting the website. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can recognize whether an individual page of our website is transmitted encrypted by the closed representation of the key or lock symbol in the lower status bar of your browser.

We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

V. Disclosure of Data

Your personal data will not be transmitted to third parties for purposes other than those listed below. We only pass on your personal data to third parties if:

  • You have given your express consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR,
  • The disclosure is necessary pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR for the assertion, exercise or defense of legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data,
  • In the event that there is a legal obligation for the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR, as well as
  • This is legally permissible and necessary pursuant to Art. 6 para. 1 sentence 1 lit. b GDPR for the processing of contractual relationships with you.

VI. Cookies

(1) We use cookies on our site. These are small files that your browser automatically creates and which are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not cause any damage to your end device, do not contain viruses, Trojans or other malware.

(2) Information is stored in the cookie which arises in each case in connection with the specifically used end device. However, this does not mean that we thereby directly obtain knowledge of your identity.

(3) The use of cookies serves on the one hand to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website.

(4) In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your end device for a specific defined period. If you visit our site again to use our services, it is automatically recognized that you have already been with us and which entries and settings you have made, so that you do not have to enter them again.

(5) On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These cookies enable us to automatically recognize that you have already been with us when you visit our site again. These cookies are automatically deleted after a respectively defined time.

(6) The data processed by cookies is necessary for the stated purposes to safeguard our legitimate interests as well as those of third parties pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR.

(7) Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a notice always appears before a new cookie is created. The complete deactivation of cookies may, however, result in you not being able to use all functions of our website.

VII. Contact Form

(1) If you send us inquiries via contact form, your details from the inquiry form including the contact data you provided there will be stored by us for the purpose of processing the inquiry and in case of follow-up questions.

(2) We do not pass on this data without your consent.

(3) The processing of the data entered into the contact form is therefore based exclusively on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. For this purpose, an informal notification by e-mail to us is sufficient. The lawfulness of the data processing operations carried out until the revocation remains unaffected by the revocation.

(4) The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after completion of processing your inquiry). Mandatory statutory provisions - in particular retention periods - remain unaffected.

VIII. Newsletter

(1) With your consent, you can subscribe to our newsletter, with which we inform you about our current interesting offers.

(2) For registration to our newsletter we use the so-called double opt-in procedure. This means that after your registration we will send you an e-mail to the e-mail address you provided, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. In addition, we store your used IP addresses and times of registration and confirmation. The purpose of the procedure is to be able to prove your registration and, if necessary, to clarify possible misuse of your personal data.

(3) The only mandatory information for sending the newsletter is your e-mail address. The provision of further data is voluntary and will be used to address you personally.

(4) The newsletter is sent on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke the consent you have given at any time. For this purpose, an informal notification by e-mail to us is sufficient or you can unsubscribe via the "unsubscribe" link in the newsletter. The lawfulness of the data processing operations already carried out remains unaffected by the revocation.

(5) The data you deposited with us for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and deleted after unsubscription from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.

IX. Hosting

(1) We use a provider to host our websites, on whose server our websites are stored and made available for retrieval on the Internet (hosting). The provider can process all data transmitted via the browser you use that occurs when using our websites. This includes in particular your IP address, which the provider needs to deliver our online offer to the browser you use, as well as all entries you make via our website. In addition, the provider we use can collect the date and time of access to our website, the time zone difference to Greenwich Mean Time (GMT), the access status (HTTP status), the amount of data transferred, the Internet browser and the operating system with which you access our online offer and the website you visited.

(2) The provider we use collects log file information on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in presenting our online offer on a server provided by a professional provider in order to be able to guarantee availability of our website of 99.9% as well as to improve and optimize our service offers.

(3) In order to oblige the provider of this service to process the transmitted data only in accordance with our instructions and to comply with the applicable data protection regulations, we have concluded a data processing agreement with the provider.

(4) Our hoster (Tramino) obtains its technical infrastructure from IDKOM Networks GmbH, Dieselstraße 1, D-87437 Kempten (Allgäu) and has concluded a contract for commissioned processing with this subcontractor.

(5) The following is stored in detail:

  • Name of the accessed web page or file
  • Date and time of access
  • Amount of data transferred, notification of successful access
  • Browser type and version as well as the operating system used
  • The address of the previously visited website
  • The IP address of the visitor at the provider used

(6) Log file information is stored for security reasons (e.g. to clarify abuse or fraud) for a maximum period of 30 days and then deleted. Data whose further retention is required for evidentiary purposes is excluded from deletion until final clarification of the respective incident.

(7) Our hoster will only process your data to the extent necessary to fulfill its performance obligations and follow our instructions regarding this data.

(8) If appropriate consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.

(9) Our hoster (Tramino) obtains its technical infrastructure from IDKOM Networks GmbH, Dieselstraße 1, D-87437 Kempten (Allgäu) and has concluded a contract for commissioned processing with this subcontractor.

X. Adobe Fonts

We use this service on our website.

The service enables us to use external fonts. To do this, the required font is loaded by your web browser into the browser cache when accessing our website. This is necessary so that your browser can display a visually improved representation of our texts. If your browser does not support this function, a standard font from your computer will be used for display. The integration of these fonts takes place through a server call to a server of the provider. This transmits to the server which of our web pages you have visited. The IP address of your end device's browser is also stored by the provider. We have no influence on the scope and further use of the data collected and processed by the provider through the use of the service.

We use the service for optimization purposes, in particular to improve the use of our website for you and to make its design more user-friendly.

The service transmits personal data to the USA. The EU Commission has decided that this country provides an adequate level of data protection (TADPF). The service has submitted to the TADPF.

The legal basis is Art. 6 para. 1 sentence 1 lit. a) GDPR (consent).

You can also prevent the storage of cookies generated by this service by making appropriate settings in your web browser. We point out that in this case you may not be able to use all functions of our website.

Provider: Adobe Systems Software Ireland Limited 4–6 Riverwalk Citywest Business Campus Dublin 24 Dublin Ireland Tel. +353 1 242-6700 Fax +353 1 242-6711 https://www.adobe.com/

XI. Bunny.net CDN

We use this service on our website.

The service enables us to deliver media content (videos, images) quickly and reliably via a Content Delivery Network (CDN). When accessing this content, technical data such as your IP address, the browser used, the operating system as well as the date and time of access are transmitted to the provider's servers. This data is required for the technical provision of the content.

We use the service for optimization purposes, in particular to improve the loading times of our website and to ensure an optimal user experience.

The provider processes data exclusively in data centers within the European Union and is GDPR compliant. A data processing agreement has been concluded with the provider.

The legal basis is Art. 6 para. 1 sentence 1 lit. f) GDPR (legitimate interest). Our legitimate interest lies in the optimization and economic operation of our website.

Provider: BunnyWay d.o.o. Cesta komandanta Staneta 4A 1215 Medvode Slovenia https://bunny.net https://bunny.net/privacy/

XVIII. Google Analytics

We use this service on our website.

We use the service to analyze the use of our website and to be able to continuously improve individual functions and offers as well as the user experience. Through statistical evaluation of user behavior, we can improve our offer and make it more interesting for you as a user. The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected.

The service uses cookies, i.e. small text files that are stored on your end device and that enable an analysis of your use of our website. The information generated by the cookie about your use of our website is transmitted to a server of the provider within the EU and stored there. The IP addresses are shortened on these servers. A correspondingly pseudonymized data set is transmitted to the USA.

The service transmits personal data to the USA. The EU Commission has decided that this country provides an adequate level of data protection (TADPF). The service has submitted to the TADPF.

You can also prevent the storage of cookies generated by this service by making appropriate settings in your web browser. We point out that in this case you may not be able to use all functions of our website. If you want to prevent the collection of data generated by the cookie and related to your user behavior (including your IP address) as well as the processing of this data by the service provider, you can also download and install the web browser plugin available at the following link:

https://tools.google.com/dlpage/gaoptout?hl=en

In order to oblige the provider of this service to process the transmitted data only in accordance with our instructions and to comply with the applicable data protection regulations, we have concluded a data processing agreement with the provider.

The legal basis is Art. 6 para. 1 sentence 1 lit. a) GDPR (consent).

Provider: Google Ireland Limited Google Building Gordon House Barrow St 4 Dublin Ireland Tel. +353 1 543 1000 Fax +353 1 686 5660 https://www.google.com/

XIX. Google Dynamic Remarketing

We use this service on our website.

The service enables us to display our advertisements to you during your further use of the Internet after you have visited our website. This is done by means of cookies stored in your browser, through which your user behavior when visiting various websites is recorded and evaluated by the provider. In this way, the provider can determine your previous visit to our website. According to the provider, the data collected in the context of remarketing is not merged with your personal data that may be stored by the provider. In particular, according to the provider, pseudonymization is used in remarketing.

We use the service for marketing and optimization purposes, in particular to place relevant and interesting advertisements for you and thus improve our offer, make it more interesting for you as a user and avoid annoying advertisements.

The service transmits personal data to the USA. The EU Commission has decided that this country provides an adequate level of data protection (TADPF). The service has submitted to the TADPF.

The legal basis is Art. 6 para. 1 sentence 1 lit. a) GDPR (consent).

Provider: Google Ireland Limited Google Building Gordon House Barrow St 4 Dublin Ireland Tel. +353 1 543 1000 Fax +353 1 686 5660 https://www.google.com/

XX. Google Tag Manager

We use this service on our website.

As a marketer, the service enables us to manage website tags via an interface. The tool that implements the tags is a cookieless domain and does not itself collect any personal data. The service triggers other tags, which in turn may collect data under certain circumstances. The service does not access this data. If deactivation has been made at the domain or cookie level, this remains in place for all tracking tags that are implemented with the service.

Provider: Google Ireland Limited Google Building Gordon House Barrow St 4 Dublin Ireland Tel. +353 1 543 1000 Fax +353 1 686 5660 https://www.google.com/ https://policies.google.com/privacy

Use of Meta (Facebook & Instagram)

Content and services from the social network Facebook and the Instagram platform may be embedded on our website. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

Examples of embedded content include widgets, images, videos or text links to the original content on Facebook or Instagram. If you are a member of Meta, Meta can assign the access of this content to your user account. Please note Meta's privacy policy.

Link: https://www.facebook.com/privacy/policy

Use of Meta Pixel

We use Meta Pixel on our website. The provider is also Meta Platforms Ireland Limited. According to Meta, the collected data is also transferred to the USA and other third countries. A contract based on EU standard contractual clauses has been concluded with Meta to ensure an adequate level of data protection.

The Meta Pixel enables us to define visitors to our website as a target group for the display of advertisements ("Facebook Ads" and "Instagram Ads"). This means our advertisements can only be shown to those Meta users who have already shown interest in our website or accessed certain content. Furthermore, we can statistically evaluate the effectiveness of our Meta advertisements by seeing whether users were redirected to our website after clicking on an advertisement.

If you are logged into Meta with your account, Meta can assign the visit to our website to your user account. The data collected by Meta is anonymous to us, so it does not provide us with any conclusions about your identity. However, Meta can link this data with your profile and use it for its own purposes (e.g. to improve its own advertising). We have no control over the scope and further use of the data by Meta.

The use of Meta Pixel is based on your consent according to Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. The consent can be revoked at any time.

Further information on data processing by Meta can be found in Meta's privacy policy and in the information about Meta Pixel.

Link: https://www.facebook.com/business/help/742478679120153?id=1205376682832142

Use of Microsoft Ads (Bing Ads)

Our website uses conversion tracking from Microsoft Advertising (Bing Ads). The provider is Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland.

If you reached our website through an advertisement placed by Microsoft, a cookie is set on your end device. This way Microsoft and we can recognize that someone clicked on an advertisement and was redirected to our website. We only learn the total number of users who clicked on a Bing advertisement and were subsequently redirected to a landing page marked with a conversion tracking tag. No personal information identifying the user is disclosed.

Microsoft may also process the collected data in the USA. An adequate level of data protection is ensured through EU standard contractual clauses and participation in the EU-US Data Privacy Framework (DPF).

You can deactivate the setting of cookies at any time in the browser settings or turn off personalized advertising via Microsoft's opt-out page.

Link: https://account.microsoft.com/privacy/ad-settings/signedout?refd=chatgpt.com&ru=https%3A%2F%2Faccount.microsoft.com%2Fprivacy%2Fad-settings%3Frefd%3Dchatgpt.com

The use of Microsoft Ads is based on your consent according to Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. The consent can be revoked at any time. Further information can be found in Microsoft's privacy policy.

Link: https://www.microsoft.com/privacy/privacystatement

Use of TikTok Ads

We use the TikTok Pixel from the social network TikTok on our website. The provider is TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland, and for data transfers outside the EU, TikTok Information Technologies UK Limited.

With the help of the TikTok Pixel, we can track the behavior of users who reached our website via TikTok advertisements. This allows us to measure the effectiveness of TikTok campaigns for statistical and market research purposes and optimize future advertising measures.

When using the TikTok Pixel, personal data such as IP addresses, device IDs, browser information or activities on the website can be transmitted to TikTok and processed there. If you are logged into TikTok, TikTok can assign the visit to our website to your user account. TikTok can also use this data for its own advertising purposes. We have no control over this data processing.

TikTok bases the transfer of personal data to third countries on EU standard contractual clauses to ensure an adequate level of data protection.

The use of the TikTok Pixel is based on your consent according to Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. You can revoke your consent at any time with effect for the future.

Further information on data processing by TikTok can be found in TikTok's privacy policy.

Link: https://www.tiktok.com/legal/page/eea/privacy-policy/en