Imprint/Privacy Policy

Privacy Policy

The responsible body in terms of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

Seilbahn Staubern AG
Daniel Lüchinger
CH-9467 Frümsen (SG)

Phone: +41 81 757 24 24
Email: staubern@bluewin.ch

Website: https://www.staubern.ch

General information

Based on Article 13 of the Swiss Federal Constitution and the federal data protection provisions (Data Protection Act, DSG), every person has the right to privacy and protection from misuse of their personal data. The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

In cooperation with our hosting providers, we make every effort to protect the databases as well as possible against unauthorized access, loss, misuse, or falsification.

We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.

By using this website, you agree to the collection, processing, and use of data as described below. This website can generally be visited without registration. Data such as pages accessed or names of files accessed, date and time are stored on the server for statistical purposes without this data being directly related to your person. Personal data, in particular name, address or email address, is collected on a voluntary basis as far as possible. Without your consent, the data will not be passed on to third parties.

Processing of personal data

Personal data is any information relating to an identified or identifiable person. A data subject is a person about whom personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, procurement, deletion, saving, modification, destruction, and use of personal data.

We process personal data in accordance with Swiss data protection law. In addition, we process personal data in accordance with the following legal bases in connection with Art. 6 para. 1 GDPR, insofar as and to the extent that the EU GDPR is applicable:

• lit. a) Processing of personal data with the consent of the data subject.

• lit. b) Processing of personal data for the performance of a contract with the data subject and for the implementation of corresponding pre-contractual measures.

• lit. c) Processing of personal data to fulfill a legal obligation to which we are subject under any applicable EU law or under any applicable law of a country in which the GDPR is wholly or partially applicable.

• lit. d) Processing of personal data to protect the vital interests of the data subject or another natural person.

• lit. f) Processing of personal data to safeguard the legitimate interests of us or third parties, unless the fundamental freedoms and rights and interests of the data subject prevail. Legitimate interests are, in particular, our business interest in being able to provide our website, information security, the enforcement of our own legal claims, and compliance with Swiss law.

We process personal data for as long as is necessary for the respective purpose or purposes. In the event of longer storage obligations due to legal and other obligations to which we are subject, we restrict processing accordingly.

Privacy policy for cookies

This website uses cookies. These are small text files that enable specific information relating to the user to be stored on the user's device while they are using the website. Cookies enable us to determine the frequency of use and number of users of the pages, analyze behavior patterns in the use of the pages, and also make our offering more customer-friendly. Cookies remain stored after the end of a browser session and can be retrieved when the page is visited again. If you do not want this, you should set your Internet browser to refuse cookies.

A general objection to the use of cookies for online marketing purposes can be declared for a large number of services, especially in the case of tracking, via the US website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/. Furthermore, the storage of cookies can be achieved by deactivating them in the browser settings. Please note that in this case, not all functions of this online offer may be available.

Privacy policy for SSL encryption

This website uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

Privacy policy for newsletter data

If you would like to receive the newsletter offered on this website, we need your email address and information that allows us to verify that you are the owner of the email address provided and that you agree to receive the newsletter. No further data is collected. We use this data exclusively for sending the requested information and do not pass it on to third parties.

You can revoke your consent to the storage of data, your email address, and its use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter.

Paid services

In order to provide paid services, we request additional data, such as payment details, so that we can execute your order or assignment. We store this data in our systems until the statutory retention periods have expired.

Privacy policy for Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To deactivate Google Analytics, Google provides a browser plug-in at https://tools.google.com/dlpage/gaoptout?hl=de. Google Analytics uses cookies. These are small text files that make it possible to store specific information relating to the user on the user's device. These enable Google to analyze the use of our website. The information collected by the cookie about the use of our pages (including your IP address) is usually transferred to a Google server in the USA and stored there. We would like to point out that on this website, Google Analytics has been extended by the code “gat._anonymizeIp();” in order to ensure anonymous collection of IP addresses (so-called IP masking). If anonymization is active, Google shortens IP addresses within member states of the European Union or in other signatory states to the Agreement on the European Economic Area, which means that no conclusions can be drawn about your identity. Only in exceptional cases is the full IP address transferred to a Google server in the USA and shortened there. Google complies with the data protection provisions of the Privacy Shield Agreement and is registered with the Privacy Shield Program of the US Department of Commerce and uses the information collected to evaluate the use of our websites, to compile reports for us in this regard, and to provide other related services to us. You can find out more at https://support.google.com/analytics/answer/6004245?hl=de.

External payment service providers

This website uses external payment service providers whose platforms enable users and us to carry out payment transactions. For example, via

• PostFinance (https://www.postfinance.ch/de/detail/rechtliches-barrierefreiheit.html)

• Visa (https://www.visa.de/nutzungsbedingungen/visa-privacy-center.html)

• Mastercard (https://www.mastercard.ch/de-ch/datenschutz.html)

• American Express (https://www.americanexpress.com/de/content/privacy-policy-statement.html)

• PayPal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full)

• Bexio AG (https://www.bexio.com/de-CH/datenschutz)

• Payrexx AG (https://www.payrexx.ch/site/assets/files/2592/datenschutzerklaerung.pdf)

• Apple Pay (https://support.apple.com/de-ch/ht203027)

• Stripe (https://stripe.com/ch/privacy)

• Klarna (https://www.klarna.com/de/datenschutz/)

• Skrill (https://www.skrill.com/de/fusszeile/datenschutzrichtlinie/)

• Giropay (https://www.giropay.de/rechtliches/datenschutz-agb/) etc.

In the context of fulfilling contracts, we use payment service providers on the basis of the Swiss Data Protection Ordinance and, where necessary, Art. 6 para. 1 lit. b. EU GDPR. In addition, we use external payment service providers on the basis of our legitimate interests in accordance with the Swiss Data Protection Ordinance and, where necessary, in accordance with Art. 6 (1) lit. f. EU GDPR in order to offer our users effective and secure payment options.

The data processed by the payment service providers includes inventory data, such as name and address, bank details, such as account numbers or credit card numbers, passwords, TANs, and checksums, as well as contract, sum, and recipient-related information. This information is necessary to carry out the transactions. However, the data entered is only processed and stored by the payment service providers. As the operator, we do not receive any information about (bank) accounts or credit cards, but only information confirming (acceptance) or rejection of the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit agencies. The purpose of this transmission is to verify identity and creditworthiness. For more info, check out the payment service providers' terms and conditions and privacy policy.

The terms and conditions and privacy policy of the respective payment service providers apply to payment transactions and can be found on their websites or in their transaction apps. We also refer you to these for further info and to assert your rights of revocation, information, and other rights as a data subject.

Privacy policy for YouTube

This website uses plugins from the Google-operated site YouTube. The operator of the site is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established. The YouTube server is informed which of our pages you have visited.

If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

Further information on the handling of user data can be found in YouTube's privacy policy at: https://www.google.de/intl/de/policies/privacy

Booking.com partner program

Based on our legitimate interests within the meaning of Art. 6 (1) lit. f. GDPR, we are participants in the Booking.com affiliate program, which was designed to provide a medium for websites through which advertising costs can be earned by placing advertisements and links to Booking.com (affiliate system). As a Booking.com partner, we earn money from qualifying bookings.

Booking.com uses cookies to track the origin of the booking. Among other things, Booking.com can recognize that you clicked on the partner link on our website and then made a booking with Booking.com.

Further information on data use by Booking.com and options for objection can be found in the company's privacy policy at the following link: https://www.booking.com/content/privacy.de.html.

Contractual services

We process the data of our contractual partners and interested parties as well as other clients, customers, clients, or contractual partners (collectively referred to as “contractual partners”) in accordance with the data protection provisions of the federal government (Data Protection Act, DSG) and the EU GDPR in accordance with Art. 6 (1) lit. b. GDPR in order to provide them with our contractual or pre-contractual services. The data processed in this context, the type, scope, and purpose of the processing, and the necessity of the processing are determined by the underlying contractual relationship.

The data processed includes the master data of our contractual partners (e.g., names and addresses), contact data (e.g., email addresses and telephone numbers), contract data (e.g., services used, contract content, contractual communication, names of contact persons), and payment data (e.g., bank details, payment history).

We do not process special categories of personal data unless they are part of commissioned or contractual processing.

We process data that is necessary for the establishment and fulfillment of contractual services and point out the necessity of providing this data if it is not evident to the contractual partners. Disclosure to external persons or companies only takes place if it is necessary within the framework of a contract. When processing data provided to us within the framework of an order, we act in accordance with the instructions of the client and the legal requirements.

When using our online services, we may store the IP address and the time of the respective user action. Storage is based on our legitimate interests, as well as the interests of users in protection against misuse and other unauthorized use. This data is not passed on to third parties unless it is necessary for the pursuit of our claims in accordance with Art. 6 (1) lit. f. GDPR or there is a legal obligation to do so in accordance with Art. 6 (1) lit. c. GDPR.

The data is deleted when it is no longer required for the fulfillment of contractual or statutory duties of care or for the handling of any warranty and comparable obligations, whereby the necessity of storing the data is reviewed at irregular intervals. Otherwise, the statutory retention obligations apply.

General disclaimer

All information on our website has been carefully checked. We make every effort to ensure that the information we provide is up-to-date, accurate and complete. Nevertheless, the occurrence of errors cannot be completely ruled out, which means that we cannot guarantee the completeness, accuracy and timeliness of information, including journalistic and editorial content. Liability claims arising from material or immaterial damage caused by the use of the information provided are excluded, unless there is evidence of wilful intent or gross negligence.

The publisher may change or delete texts at its own discretion and without notice and is not obliged to update the content of this website. Visitors use or access this website at their own risk. The publisher, its clients, or partners are not responsible for damages, such as direct, indirect, incidental, specifically determinable, or consequential damages, allegedly caused by visiting this website and therefore accept no liability for such damages.

The publisher also accepts no responsibility or liability for the content and availability of third-party websites that can be accessed via external links on this website. The operators of the linked sites are solely responsible for their content. The publisher hereby expressly distances itself from all third-party content that may be relevant under criminal or liability law or that violates public decency.

Changes

We may amend this privacy policy at any time without prior notice. The current version published on our website applies. If the privacy policy is part of an agreement with you, we will inform you of any changes by email or other appropriate means in the event of an update.

Questions for the data protection officer

If you have any questions about data protection, please send us an email or contact the person responsible for data protection in our organization listed at the beginning of the privacy policy.

Frümsen, April 7, 2021

Bergbahn Frümsen - Staubern
Address: Holengasse 11
CH-9467 Frümsen
Schweiz
VAT Number: merchant_vat_number
Email: staubern@bluewin.ch
Phone: +41817572424

PRIVACY POLICY-Extended version

Updated and Effective as of June 2018

We have prepared this privacy policy ("Privacy Policy" or "Policy") to explain to you how we collect, use, and share information and Personal Data (as defined under EU`s privacy regulations, the General Data Protection Regulation GDPR) we obtain through your use of the e-commerce platform (Services), that are provided by us. By using the Services, you consent to such collection, use and sharing of your information and Personal Data and agree to the terms of this Privacy Policy in the name of the data controller and its subsidiaries.

Information You Choose To Submit-To be able to do an online purchase

We collect your personal data because of the following reasons:
The ski pass or a ticket is mostly personal and we have to be able to check if it is the correct person using the ski pass or ticket. Seasonal ski passes and daily passes is different for different age groups. And In case of refunds or issue of new RFID cards, we will have to be able to identify the correct ski pass holder.

To be able todo a purchase You are required to provide certain Personal Data (for example, your name and e-mail address,), and you must also provide a user name and password.

Examples of personal data we collect:

• Name, email adress, address, zip, country, gender, birthdate, cell phone and picture ( this is product depended), ID number where this could be product mandatory. This information is often mandatory upon control of your personal skipass/ticket purchase.
  
• Your purchase information, what products you ordered. The validity period of the product
  
• Your team and their personal data, a set of information is collected from your team if you choose to e.g buy a product to friends or family. You confirm that you have made that person aware of how we collect, use and share their Personal data.
  
  

We use your Personal Data to fulfil your requests for products and services, to improve our Services, to contact you from time to time, with your consent, about us and our products and services, and as otherwise described in this Privacy Policy.

This information can be later managed by you under MY ACCOUNT

Information We Automatically Collect

We and our third-party service providers automatically collect certain information from your device or web browser when you interact with the Services to help us understand how our users use the Services . For example, each time you visit the Services we and our third-party service providers automatically collect your IP address, mobile device identifier, browser and computer type, access time, the Web page you came from, the URL you go to next, the Web page(s) that you access during your visit and your interaction with our Services.

We and our third-party service providers use such Usage Data for a variety of purposes including to diagnose problems with our servers and software, to administer the Services, to gather demographic information. The Usage Data we collect is generally non-identifying. We mainly use Google analytics to obtain this information.

Information Use

We use the information we collect, including Personal Data and Usage Data:

• to enable you to use our Services, to create an account or profile, to process information you provide via our Services (including verifying that your email address is active and valid) and to process your transactions;
• to provide related customer service and care, including responding to your questions, complaints, or comments and sending surveys (with your consent) and processing survey responses;
• to provide you with information, products, or services that you have purchased;
• with your consent, to provide you with information, products, or services that we otherwise believe will interest you, including special opportunities from us and our third-party partners;
• for internal business purposes, such as to improve our Services
• to administer offers;
• to contact you with administrative communications and, in our discretion, changes to our Privacy Policy, Terms of Use, or any of our other policies;
• to comply with regulatory and legal obligations

Social Network and Platform Integration

The Services contain integration with social networks and other platforms in which information is shared between us and such platforms. For example, if you create or log into your account through a third-party social media site, we will have access to certain information from that site, such as your name, email address, age, photo. If you don't want a social network to collect the information about you as described above, or you don't want a social network to share it with us, please review the privacy policy, privacy settings and instructions of the social network before you log into our e-commerce platform.

Our Information Sharing Practice

• Generally. We share Non-Personal Data, including Usage Data, de-identified Personal Data and aggregated user statistics, with third parties controlled by us. We share User Information, including Personal Data, as otherwise described in this Policy, and under the following circumstances:
• Service Providers. We use third parties who provide services to us (for example, analytics companies, data management and storage, payment partners In those circumstances, we disclose User Information so that such service providers can perform those services.They are also required to follow and to comply with appropriate security measures to protect your Personal Data.
• Third-Party. We will not sell or transfer any information to a Third-party without your consent.
• You will have a choice (opt-in or opt-out) before we share your information with third parties controlled by the Data controller (E.g ski schools and ski rentals) for marketing purposes. Provided that you have chosen to receive marketing messages, we share your information (including Personal Data) with these third parties. We also match your email address with these third parties with whom you have also consented to share your email address and use such match to deliver custom offers or emails to you.
• We reserve the right to share User Information: in response to court orders, or legal processes.

Anonymous Data

When we use the term "anonymous data," we are referring to data and information that does not permit you to be identified or identifiable, either alone or when combined with any other information available to a third-party. We may create anonymous data from the Personal Data we receive about you and other individuals whose Personal Data we collect. Anonymous data will include analytics information and information collected by us using cookies. We make Personal Data into anonymous data by excluding information (such as your name, photo and birthdate). Anonymous data are used to analyze usage and make improvements to our e-commerce platform

Your rights
we want you as a customer to have full control with your personal data.
As an online customer you may go to MY ACCOUNT and manage your personal data:

• You may update your personal information, both your customer account and members of your team.
• You may download a copy of your information
• You may delete your customer profile and members of your team.
• You may change your opinion about getting offers.
  
  

Berggasthaus Staubern guarantees its users to be able to exercise the rights on their data. In particular, clicking on "Manage personal data" in the "Account Settings" menu, you can:

Download personal data
By clicking on the "Download personal data" button, the system will send an email with all user data compressed and password protected, which is automatically generated and communicated only during the data download procedure.

Delete your data
By clicking on the "Delete user account" button, all user data will be deleted from the system, with the exception of the data that Berggasthaus Staubern must keep by law, and the data necessary to process the orders.

Choice of /Opt-IN/Opt OUT for further Communication

We offer you the opportunity to manage your communications from us. Even after subscribing to one or more newsletters and/or opting in to one or more offers to receive marketing and/or promotional communications from us or our third-party partners, users may elect to modify their preferences by going to the MY ACCOUNT anytime or by following the "Communications settings " and/or "Unsubscribe" link provided in any email received. You may also be able to change your preferences by updating your profile or account, depending on which of our Services you are using. Even if you do opt-out of marketing emails, we reserve the right to send you transactional and administrative emails including those related to the Services, service announcements, and to contact you regarding any goods or services you have ordered.

Choice of Updating, downloading and Deleting Your Personal Data

You may access the information we hold about you any time through MY ACCOUNT . Here you would may update, correct, modify or delete from our database any Personal Data. If you delete certain information you may not be able to order services in the future without re-submitting such information. Please note that we will maintain Personal Data in our database whenever we are required to do so by law.
Please note that we need to retain certain information and/or to complete any transactions that you began prior to requesting such change or deletion (for example, when you did a purchase of a lift ticket, you may not be able to change or delete the Personal Data provided until after the completion of such a purchase, e.g a yearly subscription ticket could have a validity of up to one year).
We will retain your Personal Data for the period necessary to fulfil the purposes outlined in this Policy unless a longer retention period is required or permitted by law.

Payment Details

Payment data will be processed for purposes pursuant to directive 2015/2366 (EU) and subsequent changes to payment services in the European internal market (so-called PSD2).

Contact us:
We are happy to answer any questions, you will find our contact details on top of the document If you are not satisfied on how we treat your personal data according to this privacy policy you have the right to contact the destinations local country data protection agency.