§1 Objective and responsible entity
1.2 Responsible body for data protection concerns is Excursiones Maritimas Magic, S.L., Calle Picasso, Local 44, 35129 Mogán (hereinafter referred to as “canaryboattrips”).
1.3 Company details and contact information of canaryboattrips are available at: http://www.canaryboattrips.com/imprint
2.1 Personal data – Privacy protection refers to the protection of personal data. Personal data is information that helps to identify a person, therefore it can be traced back to a person. These include the name, email address or phone number or visited websites by an identifiable person.
2.2 Pseudonymised data – Pseudonymous data is usually statistical data. For example, what pages a website visitor has visited and how long he has stayed on them. Unlike personal data, the true identities of the visitors are not determinable, since this data is stored only in pseudonymous user profiles (e.g. “User profile 12923” instead of “User profile John Doe”).
2.3 Cookies – Cookies are small files that allow to save specific device related information on the user’s device (PC, smartphone, etc.) On the one hand they serve for the usability of web pages and thus for the users (e.g. storage of login data). On the other hand they serve us to collect statistical data of the website usage in order to analyze it for improving the offering.
2.4 IP address – The IP address is assigned to an internet connection by the internet provider when dialing into the internet (dynamic IP address). The connection holder can only be determined with the help of the provider, which publishes the data only on the basis of judicial decisions. According to the data protection extends this opportunity is sufficient to make a personal reference from (so-called “absolute personal reference”.) It is also possible that the IP addresses, e.g. in larger companies, remain unchanged (static IP address). We store the IP address only if it is necessary as prove due to legal obligations. For example, to be able to lead evidence that a user has registered with foreign data and signed in for the newsletter with it.
§3 Fundamentals concerning data processing and data security
3.2 We use organizational, contractual and technological security measures, such as firewalls, to encrypt personal data to ensure that the provisions of the data protection are observed and thus our processed data is protected against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our employees are obliged to maintain data secrecy.
§5 Transmission of personal data
5.1 We provide personal data of the visitor to third parties when necessary for billing purposes (especially for performing banking transactions) or to fulfill our contractual obligations.
5.2 If a data transmission to third parties is necessary, for example for the use of sub-contractors, we will obtain the consent of the vendor or close an agreement on contracted data processing with the third party. This means that the subcontractor must demonstrably comply with the statutory data standards, the data may be processed only for the fulfillment of our order and we keep the data control.
5.3 The transmission of data via interfaces belongs to the contractual data forwarding (also called “API”) between canaryboattrips and third parties. If the visitor uses these interfaces and enters data, electronic keys or access codes of the respective services, he consents to such data transmission. For details with regard to the data processing of the third parties, their privacy policies apply.
5.4Upon contract conclusion or due to specific cause (e.g. payment default) it is possible that we perform a credit check of our visitors (scoring information) at recognized information desks based on mathematical-statistical methods to prove credit worthiness.
§7 Collection of access data
7.1 We collect data on each access to the server on which our services are being provided (so called server log files). This access data includes the name of the accessed website, IP address, file, date and time of the call, amount of data transferred, notification of successful call, browser type plus version, the operating system of the user as well as the referrer URL (the previously visited page).
7.2 We use the log data without any other personal or pseudonymous profiling according to the legal provisions only for statistical evaluations for the purpose of the operation, safety and optimizing of our service.
§8 Google Analytics
8.2 The collected IP address will be anonymized, i.e., it won’t be stored completely, but only shortened, so that it cannot be assigned to the vendor or his customers. Only in exceptional cases the complete IP address will be transmitted to a server of Google in the USA and shortened there. Google will use this statistical information only on our behalf to evaluate the use of our service by the users, to compile reports on website activities and to provide other website- and internet use related services to us.
§9 Web beacons and statistical services
9.1 We use the following counting- and statistical services on our website canaryboattrips.com
9.2 Google AdWords – We use the online advertising program “Google AdWords” and in line with that the conversion tracking to measure the success of Google AdWords advertising. The cookie for conversion tracking will be set if the visitor clicks on an ad delivered by Google ads. These cookies expire after 30 days to be valid and are not used for personal identification. With the help of the cookies, we and Google can recognize whether the visitor has clicked on the ad and was forwarded to our website. Every Google AdWords customer gets a different cookie. Therefore cookies cannot be tracked through the websites of AdWords customers. However, we receive no information that can identify users personally. Users who do not wish to participate in tracking can easily disable the cookie for Google conversion tracking on their internet browser under user settings or use the opt-out options delivered by Google.
§10 Plug-Ins from Facebook
10.1 We also use the “Share-” and the “Like-” button of the social network of Facebook on our website, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. These plug-ins are marked through the Facebook logo – -the white “f” on a blue tile and a “thumbs up” sign. When you visit a website that contains such a plugin, your browser establishes a direct connection to the Facebook servers. The content of the plugin is transferred by Facebook directly to your browser, which embeds it into the website. Through the integration of the plug-ins Facebook receives the information that you have accessed this website. If you are logged into Facebook, Facebook can assign the visit to your Facebook account. If you interact with the plug-ins, for example by clicking the Like-button or entering a comment, the corresponding information is transmitted from your browser directly to Facebook and stored there. If you are not a member of Facebook, there is the possibility that Facebook retrieves your IP address and stores it anyways.
10.2 If you are a Facebook member and do not want Facebook to collect data on this internet presence about you and links it to your member data stored on Facebook, you must log out on Facebook before you visit this internet presence.
10.3 For further information about the scope and purpose of the data collection and the further use and processing of data by Facebook as well as your respective rights and setting options for protecting your privacy, please visit the privacy policies of Facebook.
§11 Cancellation, changes, corrections and updates
11.2 Obtained consents can be revoked. However, should this lead to the fact, that we cannot provide our services towards the visitor, we are freed from our liability.
12.2 If there are significant changes, we will notify our visitors directly. If consents are necessary due to the changes, we will ask our visitors explicit for this purpose.
As of 1 March 2015