image description
Privacy policyLearn how we handle your data here.
 
Contact
Our office hours

Monday to Thursday 9 am to 6 pm (CET)

+49 30 340 92 963

Please note our
office hours during the holidays.
You can find more information
here.

  • Home
  • Privacy Policy
Privacy Policy

Find out how we process your personal data

Privacy policy

We take the protection of your personal data very seriously and therefore process this data in accordance with the statutory data protection laws in accordance with the EU-DSGVO. With the following information on data protection, we would like to inform you about how we use your personal data. In particular, we want you to know how we process your data, in what way and for what we use your data.

What is personal data?

Personal data is information that can show a reference to your person, through which a conclusion to your identity is possible.

Principles for the processing of personal data

We do not process any fully or partially automated personal data from you. Our privacy notices therefore apply to the non-automated processing of personal data that we store or will store in our file systems. We assure you that we will process your personal data in a lawful manner that is comprehensible to you. We use your personal data only for specified and explicit purposes and do not use them in a manner incompatible with these purposes. Furthermore, we limit the processing of your personal data to what is necessary. Your personal data is protected against unauthorized, unlawful processing and against loss.

Lawfulness of processing

The processing of your data is lawful if you have given us your consent to process your personal data for one or more specific purposes. Furthermore, the processing of your data is lawful if it is necessary for the performance of a contract to which you are a party or for the implementation of pre-contractual measures, which is carried out at your request. The provision of your personal data is required at various points for the provision of one or more services. We store your data when you make a booking on our websites or send us a booking request. We also store your data if you instruct us by telephone to book a service for you or if you make a booking request by telephone. Without this data, we will usually have to refuse to conclude the contract or execute the order, or we will no longer be able to execute an existing contract and may have to terminate it.

Within the scope of our business relationship, you only have to provide the personal data that is required for the establishment, implementation and termination of a business relationship or that we are legally obligated to collect.

The processing of your personal data is also necessary for compliance with a legal obligation to which we are subject.

Conditions for your consent

In accordance with Article 7 EU-DSGVO, your consent is required for the processing, storage and disclosure of your personal data. You give us this consent for the specified purposes when you provide us with your data. You can revoke consent at any time with effect for the future. This also applies to declarations of consent that you gave us before the EU GDPR came into force, i.e. before May 25, 2018. The revocation only applies to future processing, not to processing that has already taken place. You are entitled at any time and free of charge to receive information in accordance with Article 15 EU-DSGVO and § 34 Federal Data Protection Act (BDSG), about your personal data stored by us. In addition, you have the right at any time to request deletion in accordance with Article 17 EU-DSGVO or § 35 BDSG, blocking or correction in accordance with Article 16 EU-DSGVO, the restriction of processing pursuant to Article 18 EU-DSGVO as well as data portability pursuant to Article 20 EU-DSGVO, of your data.

You also have the right to lodge a complaint with a data protection supervisory authority in accordance with Article 77 EU-DSGVO or Section 19 BDSG. This does not apply to data that is contrary to a legal provision, in particular billing or accounting data. You assure us, should you transmit data of another traveler, that you have the express permission of the other travelers to transmit the personal data to us.

Processing special categories

We do not process or store personal data relating to racial or ethnic origin, political opinions, religious or philosophical beliefs, genetic data, health data, data on sexual life or sexual orientations.

Which of your personal data do we need and which do we store

In case of a booking we ask and store the following master data: Your first and last name, your address, your e-mail address and your telephone number. In the event of a booking, we may continue to request health data for the prevention of accidents and for the protection of the traveler(s), which, however, we do not store: e.g. degree of physical disability, severely disabled ID, food intolerances, allergies, pregnancy. In the case of a booking request, we store and process your first and last name, e-mail address and telephone number. If you instruct us to arrange a flight for you and you are traveling to a country whose regulations require you to provide Advanced Passenger Information (API), we will still require from you your first, middle and last names as they appear on your passport, your passport number, passport validity, country of issue, nationality and date of birth.

The following countries currently require passport information from each traveler prior to travel: Australia, Ireland, New Zealand, Bahrain, Italy, Switzerland, Bangladesh, Japan, Spain, Brazil, Canada, Sri Lanka, China, Qatar, South Africa, Germany, Korea, Czech Republic, UK, Malta, USA, India, Netherlands, Cyprus, Indonesia, Austria.

According to U.S. law, travel and booking data, so-called Passengers Name Records (PNR), are transmitted by airlines to the U.S. Department of Homeland Security (DHS) prior to travel. This applies to flights operating into, out of, or over the United States. This data is primarily used to combat terrorism and other serious crimes.

These data can be matched with other data. PNR's are stored for 3 years and 6 months and can be shared with other authorities. In addition to these data, the data from your passport, the Advanced Passenger Information (API). A detailed explanation of how your data is used can be found in the EU Commission Decision 2004/535/EC.

Airlines will pass on passenger data to the BKA's Passenger Data Central Unit from May 25, 2018. The data will be stored by the BKA for five years. Among other things, name, seat, e-mail, telephone numbers the itinerary, hotels, rental cars, credit card number, number of pieces of luggage, membership of a frequent flyer program, travel companions, special meal requests and other details are stored, analyzed and passed on to other member states. This applies to flights outside the EU, and in Germany also to flights within the EU and Germany

Automated decision making

In accordance with Article 22 of the EU Data Protection Regulation, we do not use automated decision-making or profiling to establish and implement the business relationship.

Disclosure of your data to third parties

In order to provide a service, we share your personal information with third parties. These include, airlines, rental car companies, hotels, vacation rental providers, insurance companies, tour and transfer companies and credit card companies. We assure you that we only pass on the data to third parties that is necessary for the provision of a service. We also transmit your data only to companies known to us. Furthermore, we will request your bank details and/or credit card information, which will never be stored by us. Should a booking on our website or a telephone booking make it necessary for you to pay or deposit your booked service immediately, you will be forwarded to an external payment processor.

Airlines / consolidators we transmit your first and last name, your address, your date of birth, telephone number, and your bank or credit card data. Rental car companies we transmit your first and last name, as well as your date of birth, hotels, vacation home providers, receive from us your first and last name tour providers and transfer companies, receive from us your first and last name and telephone number. Insurance companies receive your first and last name, address, e-mail address and birthday. Credit card companies we transmit your credit card data, your first and last name.

Transfer of your personal data to third countries

We transmit your data to countries outside the European Union only insofar as this is necessary for the execution and processing of the commissioned services or is legally required or you have given us your consent (e.g. for long-distance travel).

How long will your personal data be stored?

Your personal data from booking requests, by phone, email or via our website will be completely deleted after 6 months. This includes your first and last name, your e-mail address, your telephone number, all information about the 2nd traveler, all e-mail correspondence.

All other data will be stored in accordance with the legally prescribed retention periods and subsequently deleted. In any case, we will inform you in writing about the correction or deletion of your personal data.

Legal requirements

We are subject to various legal obligations such as the commercial and tax retention periods under the German Commercial Code. According to § 257 HGB, we are obliged to keep the stored data on your booking in order to be able to keep complete commercial books and also to be able to provide all information relevant for our taxation according to §147 AO.

Weighing of interests

To protect legitimate interests, your data may be used by us or by third parties.
This is done for the following purposes:

  • Accounting purposes (external provider)
  • Providing IT security and IT development (external and internal)
  • Advertising and marketing purposes (external and internal)

Weighing of interests

We do not use social media plugins on our websites.

Newsletter

If you would like to receive the newsletter offered on the website, we require an e-mail address from you. You do not have to provide any further information. You will receive a confirmation email with an activation link. When you click this activation link, your email will be entered into our newsletter system. We use this e-mail exclusively for sending the requested newsletter and do not pass it on to third parties. You can cancel the sending of the newsletter at any time, for example via the link "unsubscribe newsletter" in the newsletter. Our newsletters contain images that allow us to recognize if and when an e-mail has been opened. Even if a link in a newsletter is clicked, we save that. We do not know who has opened a newsletter or who has clicked on which link. However, we only use the data statistically (i.e. without personal reference) to optimize our newsletters and offers and to better understand customer interests.

Hotel reviews

When you have made a booking, you will receive an email from us with a link to a hotel rating. The hotel rating is completely anonymous. Your personal data will not be published. Your email will be stored for a period of 3 months, unless you redeem the voucher code you received on one of our websites before the 3 months expire. In this case, your email will be deleted immediately.

Hotel reviews

Your information is encrypted from your computer to our server and vice versa via the Internet using 128 bit TLS encryption (Transport Layer Security), or better known as SSL (Secure Socket Layer). You can recognize this by the fact that the lock symbol is closed on the status bar of your browser and the address line begins with https://.

Cookies

We currently do not use cookies on our websites.

Logfiles

When you visit our websites, so-called usage data is temporarily stored on our web server as a log. This data record consists of:

  • The page from which the file was requested
  • The name of the file that was accessed
  • The date and time of the request
  • The amount of data transferred
  • The access status (file transferred, file not found)
  • Type of web browser used
  • IP address of the requesting computer, which is shortened so that a personal reference is not producible.
  • Data about persons or their individual behavior are not collected here.
  • The data will be deleted at the end of the day at 24:00.

Your rights

You have the right to object to the processing of your personal data at any time (Article 21 EU-DSGVO). If you lodge an objection, we will no longer process your personal data. You have the right to rectification (Article 16 EU GDPR), information (Article 15 EU GDPR) and deletion (Article 17 EU GDPR) of your personal data. Furthermore, you have the right to data transfer (Article 20 EU-DSGVO).

You have the right to lodge a complaint with the supervisory authority if you are of the opinion that the processing of data concerning you violates data protection regulations. The right of complaint can be made to the supervisory authority in your federal state or asserted at the location of the relevant violation. You can find a current list of the competent supervisory authorities at: Regulatory agencies.

To withdraw your consent to data use, request deletion information, correction or blocking, please send an email or call us.

Responsible for data protection is the operator of this website:
BlueFields GmbH
Ufnaustraße 11
10553 Berlin

Please direct inquiries to the data protection officer at: info@ourcompanyname.de please replace our company name with blue-fields. Or in writing to the above address.

This privacy notice is valid from 15.05.2020