Privacy Policy

1. Controller

The controller responsible for data processing on this website is:

If you have any questions about data protection or the processing of your personal data, you can contact us using the contact details above.

2. Scope

This Privacy Policy applies to the use of dein-reisebuero.com, including all pages, content, search functions, booking management functions, support channels, chat functions, partner and affiliate integrations and any other digital functions provided through this website.

3. Personal Data We Process

Depending on how you use the website, we may process the following categories of personal data in particular:

a) Technical Usage and Access Data

This includes, in particular, IP address, date and time of access, time zone, browser type, browser version, operating system, device type, language settings, referrer URL, pages accessed and technical events.

b) Communication Data

If you contact us or use the website chat, we may process, in particular, your name, email address, telephone number, the content of your message and related communication metadata.

c) Booking and Process Data

If you use booking management, login, cancellation or refund functions, we may process, in particular, booking number, email address used for the booking, verification code, process timestamps and the booking information required in this context.

d) Search, Preference and Interaction Data

If you use search forms, filters or travel overviews, we may process entered search parameters, travel dates, selected destinations, filters used, click paths and interactions with content.

e) Partner and Redirect Data

If you access or use a partner or affiliate offer, we may process the technical and transaction-related data required for this purpose or transfer such data to the respective partner, insofar as this is necessary for display, attribution, redirection or processing.

f) Special Data

Please do not send us sensitive personal data via website forms, chat or email unless this is absolutely necessary. If you voluntarily provide us with such data in connection with a specific request or booking matter, we will process it only to the extent necessary and legally permitted.

4. Purposes of Processing

We process personal data in particular for the following purposes:

• to provide, maintain and secure this website
• to technically deliver content and functions
• to process enquiries via support, email or chat
• to assign, verify and manage existing bookings
• to carry out pre-contractual measures
• to provide and technically integrate partner and affiliate offers
• to analyse errors, detect misuse and identify attacks
• to maintain internal documentation and evidence
• to improve user guidance, functionality and system security
• and, where permitted and appropriately configured, for reach measurement and optimisation

5. Legal Bases for Processing

We process personal data only where there is a valid legal basis. These include in particular:

a) Article 6(1)(b) GDPR

Where processing is necessary for the performance of pre-contractual measures, for providing requested functions or for managing an existing booking-related process.

b) Article 6(1)(c) GDPR

Where processing is necessary to comply with a legal obligation.

c) Article 6(1)(f) GDPR

Where processing is necessary for the purposes of our legitimate interests or the legitimate interests of a third party, in particular for the secure operation of the website, IT and server security, misuse prevention, documentation, troubleshooting, system monitoring and the orderly operation of the platform, unless your interests or fundamental rights and freedoms override these interests.

d) Article 6(1)(a) GDPR

Where you have given us your consent, in particular for non-essential cookies, analytics or tracking technologies or other optional functions.

Where special categories of personal data are processed, this will only take place if an additional condition under Article 9 GDPR is met.

6. Website Operation and Server Log Files

When this website is accessed, certain information is automatically processed for technical reasons and recorded in server log files. This serves in particular the technical provision of the website, system security, attack prevention, error diagnosis and website stability.

The processing of this data is based on our legitimate interest in the secure and functional operation of the website.

7. Contact and Support

If you contact us by email or via the chat provided on the website, we process the data you provide in order to receive, review, assign and respond to your enquiry.

This may include, in particular, your name, email address, telephone number, the content of your message, attachments, support context and follow-up communication.

Depending on the nature of the enquiry, processing is carried out for the performance of pre-contractual measures, for the fulfilment of a contract or on the basis of our legitimate interest in the structured and secure handling of support and contact enquiries.

8. Booking Management, Verification, Cancellation and Refunds

If you use functions for managing or verifying an existing booking, we process the data required for this purpose in order to ensure that only authorised persons can access the relevant information or functions.

This may include, in particular, booking number, email address used for the booking, one-time verification codes, usage timestamps and any further information required to process the matter.

Access to a booking management area does not automatically mean that a booking will be cancelled or that a refund will be triggered. Which steps are possible depends on the respective provider, rate and the underlying terms and conditions of the relevant partner or affiliate partner.

9. Partners, Affiliate Partners and Third-Party Services

Offers from partners or affiliate partners may be displayed, technically integrated or linked on this website. If you use such an offer, it may be necessary to transfer certain data to the respective partner, affiliate partner, technical integration partner or other service provider involved, insofar as this is necessary for display, attribution, redirection, booking, reservation or other processing.

Please note that partners or affiliate partners may act as independent controllers under data protection law with regard to the services they offer. In such cases, the privacy notices and terms of the respective partner will also apply.

10. Cookies and Similar Technologies

This website may use cookies and similar technologies.

Technically necessary cookies or comparable technologies may be used where they are required for the operation of the website or for functions expressly requested by you.

Non-essential cookies or tracking technologies are used only where valid consent has been given. You can withdraw or adjust your consent at any time with effect for the future via the cookie settings.

11. Analytics, Reach Measurement and Optimisation

Where analytics, statistics, comfort or marketing technologies are used, this is done only within the framework of the applicable legal bases and only where the relevant technical and legal requirements are met.

Where consent is required for this, the relevant technologies will only be activated after valid consent has been given.

12. Recipients and Categories of Recipients

We transfer personal data to third parties only where this is legally permitted and necessary for the respective purpose.

Recipients may include in particular:

• hosting and infrastructure service providers
• IT, security and maintenance service providers
• support and communication service providers
• consent, cookie and analytics service providers
• technical integration and API service providers
• partners and affiliate partners
• and other processors or recipients where this is necessary to fulfil the purposes described

Where external service providers process data on our behalf, this is done on the basis of a data processing agreement or another appropriate data protection basis.

13. International Data Transfers

Where personal data is processed outside the European Economic Area or transferred there, this will only take place if the legal requirements are met.

Where necessary, we base such transfers on an adequacy decision, standard contractual clauses or other appropriate safeguards under Chapter V GDPR.

14. Retention Period

We store personal data only for as long as this is necessary for the respective purposes or where statutory retention obligations or legitimate interests require longer storage.

Short, security-oriented retention periods apply to technical log data. Communication and support data is stored for as long as this is necessary for processing, follow-up, quality assurance and legal documentation. Booking and process-related data is stored for as long as this is necessary for processing, evidence, support, legal obligations or legitimate interests.

When data is no longer required, it will be deleted or anonymised, unless retention obligations prevent this.

15. Data Security

We take appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, unauthorised disclosure, manipulation or unlawful processing.

These measures include, in particular, system hardening, access control, role-based permissions, logging, secure communication channels, server environment protection, monitoring and measures to maintain confidentiality, integrity and availability.

16. Your Rights

Subject to the statutory requirements, you have the following rights in particular:

• right of access
• right to rectification
• right to erasure
• right to restriction of processing
• right to data portability
• right to object
• right to withdraw consent with effect for the future
• and the right not to be subject to a decision based solely on automated processing that produces legal effects concerning you or similarly significantly affects you

If you wish to exercise any of your rights, please contact us using the contact details provided above.

To the extent permitted by law, we may request additional information where this is necessary to confirm your identity or to assign your request securely and correctly. We will proceed in a data-minimising manner wherever possible.

17. Right to Lodge a Complaint

You have the right to lodge a complaint with a competent supervisory authority. For Ireland, this is in particular the Data Protection Commission. The DPC generally recommends contacting the controller first and then submitting a complaint in writing.

Before submitting a complaint to the supervisory authority, you are welcome to contact us directly first so that we can review your concern and resolve it as quickly as possible.

18. No Obligation to Provide Data in All Cases

The provision of personal data is not legally or contractually required in every case. However, certain data is necessary so that we can provide requested functions, process enquiries, assign booking processes or carry out secure verification.

If you do not provide required data, some functions or processes may not be available or may not be processed completely.

19. No Payment Card Data via Chat or Email

Please do not send us complete payment card details or other particularly sensitive payment information via the website chat or by email. If such information is required for a process, only the secure processes provided by the responsible provider should be used.

20. Changes to This Privacy Policy

We may update this Privacy Policy if legal requirements, technical processes, services used or the content of this website change.

The current version published on this website applies.

21. Contact

If you have any questions about data protection or this Privacy Policy, please contact us at: