Data privacy
Data privacy
We have written this privacy statement (version 28.02.2021-311267043) to explain to you, in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679, what information we collect, how we use data and what decision-making options you have as a visitor to this website.
Privacy statements usually sound very technical. This version, however, is intended to describe the most important things to you as simply and clearly as possible. As far as possible, technical terms are explained in a reader-friendly way. We also want to convey that we only collect and use information with this website if there is a corresponding legal basis. This is certainly not possible by providing the most concise, technical explanations possible, as is often standard practice on the Internet when it comes to data protection. I hope you find the following explanations interesting and informative, and perhaps there is one or two pieces of information you did not know.
If you still have questions, we would like to ask you to follow the existing links and look at further information on third party sites, or simply write us an e-mail. You will find our contact details in the imprint.
​
Automatic data storage
When you visit websites these days, certain information is automatically created and stored, including on this website. This collected data should be collected as sparingly as possible and only with justification. By website, by the way, we mean the entirety of all web pages on your domain, i.e. everything from the home page (homepage) to the very last subpage (like this one). By domain, we mean, for example, example.de or example.com.
Even while you are visiting our website right now, our web server - that is the computer on which this website is stored - usually automatically saves data such as the following for reasons of operational security, to compile access statistics etc.
-
the complete Internet address (URL) of the website accessed (e.g. https://www.beispielwebsite.de/beispielunterseite.html/)
-
browser and browser version (e.g. Chrome 87)
-
the operating system used (e.g. Windows 10)
-
the address (URL) of the previously visited page (referrer URL) (e.g. https://www.beispielquellsite.de/vondabinichgekommen.html/)
-
the host name and IP address of the device from which access is made (e.g. COMPUTERNAME and 194.23.43.121)
-
the date and time
-
in files, the so-called web server log files.
As a rule, these files are stored for a fortnight and then automatically deleted. We do not share this data, but we cannot exclude the possibility that this data may be viewed by authorities in the event of unlawful behaviour.
In short, your visit is logged by our provider (the company that runs our website on special computers (servers)), but we do not pass on your data!
​
Storage of personal data
Personal data that you provide to us electronically on this website, such as your name, email address, address or other personal details when submitting a form or commenting on the blog, together with the time and IP address, will only be used by us for the purpose stated in each case, kept secure and not passed on to third parties.
We therefore only use your personal data to communicate with those visitors who expressly request contact and to process the services and products offered on this website. We do not disclose your personal data without your consent, but we cannot rule out the possibility that this data may be accessed in the event of unlawful conduct.
If you send us personal data by e-mail - thus away from this website - we cannot guarantee secure transmission and protection of your data. We recommend that you never send confidential data by e-mail without encryption.
According to Article 6(1)(a) DSGVO (lawfulness of processing), the legal basis is that you give us consent to process the data you have entered. You can revoke this consent at any time - an informal e-mail is sufficient, you will find our contact details in the imprint.
​​
Rights under the General Data Protection Regulation
According to the provisions of the GDPR, you are generally entitled to the following rights:
-
Right to rectification (Article 16 GDPR)
-
Right to erasure ("right to be forgotten") (Article 17 GDPR)
-
Right to restriction of processing (Article 18 GDPR)
-
Right to notification - obligation to notify in connection with the rectification or erasure of personal data or the restriction of processing (Article 19 GDPR)
-
Right to data portability (Article 20 GDPR)
-
Right to object (Article 21 GDPR)
-
Right not to be subject to a decision based solely on automated processing, including profiling (Article 22 GDPR).
If you believe that the processing of your data violates data protection law or your data protection rights have otherwise been violated in any way, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI).
​
TLS encryption with https
TLS, encryption and https sound very technical and they are. We use HTTPS (the Hypertext Transfer Protocol Secure stands for "secure hypertext transfer protocol") to transfer data tap-proof on the internet.
This means that the complete transmission of all data from your browser to our web server is secured - no one can "listen in".
We have thus introduced an additional layer of security and fulfil data protection by design of technology Article 25(1) DSGVO). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data.
You can recognise the use of this data transmission protection by the small lock symbol at the top left of the browser to the left of the Internet address (e.g. beispielseite.de) and the use of the https scheme (instead of http) as part of our Internet address.
If you want to know more about encryption, we recommend a Google search for "Hypertext Transfer Protocol Secure wiki" to get good links to further information.
​
Transmission and storage of user data
When booking the newsletter, when leaving your contact details and in the case of booking a rental vehicle with Tenerife Rent a Classic Car, the data you enter will be transmitted to the web server using TLS encryption via https and stored there.
The following user data is transmitted to the web server and persistently stored:
Newsletter
-
E-mail address
Contact form
-
Name
-
E-mail address
-
Telephone number
-
Address
-
Subject
-
Message
Booking form
-
Name
-
Address
-
E-mail address
-
Telephone number
-
Model of the rental vehicle
-
optional message
-
agreement to privacy policy
-
Confirmation of driving licence ownership
-
Date and time of booking request
To ensure data security and availability, additional data is collected from the web server:
-
IP address of the client*
-
Date and time of client access*
* Client is your web browser and your device
​
The data presented in this data protection declaration is only collected for the purpose named here and is not passed on to third parties.
​
Source: Created with the privacy generator from AdSimple