We, Kreuzerhof, Fam. Plunger Oswald, hereby inform you in accordance with Article 13 of the General Data Protection Regulation (EU) 2016/679 (hereinafter referred to as “GDPR”) on the processing of person data concerning you (hereinafter referred to as “Your Data”) when you visit our website, which you reach at www.kreuzerhof.com. The present notice does not concern other websites, including those to which we may refer by link. In fact, we have no influence on such third-party websites.
Data Controller and Contact Details
We, Kreuzerhof, Fam. Plunger Oswald, are the data controller within the meaning of Article 4(7) GDPR as we determine the purposes and means of the processing of Your Data.
Our contact details are:
Fam. Plunger Oswald
Via Rosengarten 30,
39040 Siusi (BZ)
Tel. + Fax +39 0471 706147
Categories of data and purposes of the processing
If you visit our Website – as with any other website as well – your browser (e.g. Internet Explorer or Safari) automatically sends information to the server of our Website. Such information is temporarily stored in a server log file and therefore called log data. Log data may include, in particular, the IP address of your terminal equipment (e.g. computer, smartphone or tablet), the time stamp of access (date, time, time difference), the content of the request (specific page), the HTTP status code (e.g. “200” for a successful request), the amount of data sent (bytes) and information on the browser used and the operating system of your terminal equipment (e.g. Windows or iOS). Log data may be processed for the following purposes: (i) for establishing a connection between your terminal equipment and our Website; (ii for evaluating system security and stability and for identifying errors; and (iii) for investigating abusive page accesses (e.g. DoS/DDoS attacks). Such processing is based on our overriding legitimate interests (article 6(1)(f) GDPR) clearly resulting from the said purposes.
We may also process Your Data if and to the extent that this is necessary for the establishment, exercise or defence of legal claims. Such processing is based on our overriding legitimate interests (article 6(1)(f) GDPR) clearly resulting from the said purposes.
Recipients of your data
Categories of recipients: (i) our employees who, under our direct authority, are authorised to process Your Data and subject to an obligation of confidentiality; (ii) our external IT service providers (e.g. hosting provider), acting as processors who are bound to us by a relevant processor agreement and subject to an obligation of confidentiality15; and (iii) our external advisers (e.g. IT advisers), who we have obliged to maintain confidentiality. Disclosures of Your Data to such recipients are also based on our overriding legitimate interests (Article 6(a)(f) GDPR) in efficient business management.
If the processing of Your Data becomes necessary for the establishment, exercise or defence of legal claims, Your Data can typically also be disclosed, in particular, to lawyers, experts and judicial authorities.
No transfer to third countries or international organisations
We do not intend to transfer Your Data to a third country (e.g. USA or China) or international organisations.
No automated individual decision-making
You are not subject to a decision based solely on automated processing, including profiling, within the meaning of Article 22(1) GDPR.
These data are automatically deleted after 7 days, unless a security incident occurs (e.g. a DOS or DDoS attack). In this latter case the log data will be stored until we have resolved the incident. If legal claims are established, exercised or defended in this connection, the further retention is determined by relevant prescription periods.
The transmission of information over the internet is, unfortunately, never completely secure. However, we protect our Website against data breaches through appropriate technical and organisational measures. In particular, data in our Website is transmitted in encrypted form. For such purposes, we use the cryptographic protocol TLS.
Your legal rights
We are required to mention the following rights under the GDPR:
Access: Subject to the conditions of Article 15 GDPR, you have the right to obtain from us confirmation as to whether or not personal data concerning you are being processed. Where this is the case, you have the right to obtain the information listed in the said provision and a copy of Your Data.
Rectification: Subject to the conditions of Article 16 GDPR, you have the right to obtain from us without undue delay the rectification of inaccurate data and to have incomplete data completed.
Erasure: Subject to the conditions of Article 17 GDPR, you have the right to obtain from us the erasure of Your Data without undue delay. Such “right to be forgotten” shall not apply to the extent that processing is necessary, for example, for the establishment, exercise or defence of legal claims.
Restriction: Subject to the conditions of Article 18 GDPR, you have the right to obtain from us restriction of processing where one of the prerequisites set forth in the said provision are met. Such a prerequisite is met, for example, where you contest the accuracy of Your Data. In this case, restriction can be obtained for a period enabling us to verify the accuracy of the data.
Data portability: Subject to the conditions of Article 20 GDPR, you have the right to receive Your Data in a structured, commonly used and machinereadable format and to have the them transmitted directly to another controller, where technically feasible.
Objection: Where Your Data is processed based on our legitimate interests (Article 6(1)(f) GDPR) and subject to the conditions of Article 21 GDPR, you have the right to object, on grounds relating to your particular situation, at any time to processing of Your Data. Where the legal requirements are met, we will then no longer process Your Data.
You can exercise these rights by sending us a relevant e-mail to firstname.lastname@example.org. Please note, however, that further restrictions and possibly an exclusion of these rights may result from the GDPR itself.
Moreover, and without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of Your Data infringes the GDPR (Article 77 GDPR).
The lead supervisory authority competent for us is:
Garante per la protezione dei dati personali
Piazza Venezia n. 11
What are cookies?
Cookies are small text files that are stored in your terminal equipment (e.g. computer, smartphone or tablet). A cookie provides the party that has set the cookie with certain information, which can vary greatly depending on the cookie. Certain cookies, in fact, only enable certain functionality of a given website, while other cookies enable an analysis of the user’s surfing behaviour beyond that given website for marketing or even political purposes.
What cookies are being used?
The website and its associated sub-domains use the following types of cookies:
- Navigation cookies are necessary for normal navigation and use of the Site, without this cookie you may not be able to access these features or they may not function properly. Cookies are absolutely necessary to store an identifier so that we can uniquely identify each user and provide a consistent and customized service.
- Functionality cookies by saving your settings, these cookies enhance the functionality of the website. They record settings that you have made (e.g. user name or language) and enable us to improve the website.
- Performance cookies can be from us or from a third party. The information collected by these cookies is anonymous data and is not used to collect personal information or for advertising purposes.
- Cookies for marketing and retargeting purposes are used by third parties and are used to display advertisements. No personal information is processed, but a connection is made to your computer or other devices by tracking the information stored in them.
What cookies are used on this website, what is their lifetime and what are they used for?
- ga: Used to distinguish users (2 years)
- gat: Used to generate tracker objects (10 min)
How can cookies be blocked or deleted?
You can block cookies in the settings of your browser as a preventive measure or delete cookies already set. However, blocking, in particular, technical cookies may affect the functionality of our website.
You can click on the following links to find out more about the options for managing cookies on selected browsers:
If you are using a browser that is not listed above, you can probably find more information on your browser’s website.
Analysis tools and advertising
This website uses functions of the web analysis service Google Analytics. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google Analytics uses so-called “cookies”. These are text files which are stored on your computer and which enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.
The storage of Google Analytics cookies is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the analysis of user behaviour in order to optimise both his website and his advertising.
Changes to this notice
We may change this notice at any time with effect for the future. This may occur, for example, as a result of the further development of data protection law (also in light of new court rulings) or a change in our processing activities.
Version: August 2020