Our company takes the protection of personal data very seriously. We want you to know when we store which data and how we use it. When processing personal data, we comply with the requirements of the EU General Data Protection Regulation (GDPR) and the new Federal Data Protection Act (BDSG).
The use of the TMGS website does not require the disclosure of personal data. Every time you access one of our websites, data about your visit to the website is stored in a log file. These log files and prepared usage statistics are made available to us via our web host. This data is not personal; we cannot trace which user has retrieved which data. No data will be passed on to third parties. Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. It is not possible to fully protect the transferred data from being accessed by third parties.
Server log files
The website provider automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. This information includes:
• Browser type, browser version and browser language
• Operating system used
• Referrer URL
• Host name of the accessing computer
• Time of server request
• Date and time zone difference for GMT of server request
• IP address
• Name and URL of the retrieved file or website
• The volume of data transferred
• Access status / http status code
• Notification of successful retrieval
We use the log data only for statistical evaluations for the purpose of operation, security and optimisation of our service/ website. We do not combine this data with other data sources.
We may need personal data in individual cases for certain offers and services. In that case, the data voluntarily provided by you - for example via a form - shall only be used by us for the purpose you have requested, for example, for getting in touch with you. No data will be passed on to third parties.
Usage of cookies
"Cookies" are small files that enable us to store information specific to you, the user, on your PC while you are visiting one of our websites. Cookies help us to ascertain the number of users who have used our web pages and the usage frequency and to make our services as convenient and efficient as possible for you.
On the one hand, we use so-called "session cookies", which are stored temporarily solely for the period that you use one of our web pages.. On the other hand, we use "permanent cookies" to record information about visitors who access one of our websites on a repeated basis. This allows us to offer you optimized user guidance as well as to "recognize" you and with repeated use to present you with a website which is as varied as possible and which contains new content. The content of a permanent cookie is limited to an identification number. Name, IP address etc. are not stored. No individual profiles are created about your user behaviour.
It is also possible to use our services without cookies. You can disable the storage of cookies in your browser, restrict it to certain websites or set your browser such that it notifies you as soon as a cookie is sent. You can also delete cookies from your computer’s hard drive at any time (Folder: "Cookies"). Please note that in this case you must expect a restricted display of the website and limited user guidance.
Rights of data subject
Data subject is entitled:
- To request information about your personal data which is being processed by us in accordance with Art. 15 GDPR. In particular, you may request information on the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the right to rectification, deletion, restriction of processing or objection, the right of complaint, the origin of your data, unless it has been collected from us, as well as the existence of an automated decision-making,including profiling and, where appropriate, meaningful information about their specifics;
- Pursuant to Art. 16 GDPR, you are entitled to demand the rectification of inaccurate or the completion of your personal data stored by us without delay.;
- Pursuant to Art. 17 GDPR, you are entitled to request the erasure of your personal data stored with us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.;
- Pursuant to Art. 18 GDPR, you are entitled to demand the restriction of the processing of your personal data if you dispute the accuracy of the data, if the processing is unlawful but you refuse its deletion and we no longer need the data, but you need it to assert, exercise or defend legal claims or you have filed an objection against the processing in accordance with Art. 21 GDPR.
To do this, please contact us by e-mail at email@example.com. Alternatively, as in all other cases, you can of course contact our company at the postal address provided.
Furthermore, pursuant to Art. 7 para. 3 GDPR, the data subject is entitled to revoke its consent to the processing of personal data for one or more purposes in the future. Revoking your consent will not affect the legality of any processing that took place before the revocation. However, revoking your consent may affect the purpose for which the data was collected. To do this, please contact us by e-mail at firstname.lastname@example.org.
Deletion of personal data
Personal data will be deleted if the purpose for the storage no longer applies and no legal provision (e.g. pertaining to the statutory retention period) prescribes the retention of the data. The provisions of Art. 17 GDPR in conjunction with Section 35 BDSG apply. Where the deletion is impossible for legal, contractual, commercial or tax-related reasons, the processing of data may be restricted at the data subject's request.
Data subject's right to data transferability
Pursuant to Art. 20 GDPR, the company guarantees the right to data transferability . Every data subject is entitled to receive a copy of his/her personal data in a standard machine-readable file format.
Data subject's right of appeal
Pursuant to Art. 77 GDPR, the data subjects are entitled to file a complaint with a supervisory authority. As a rule, you can contact the supervisory authority at your usual place of residence or at our headquarters.
Right of objection in accordance with Art. 21 GDPR
Where your personal data is processed based on legitimate interests pursuant to Art. 6 para. 1 p. 1 (f) GDPR, you have the right, pursuant to Art. 21 GDPR, to object to the processing of your personal data on grounds relating to your particular situation or if the objection is directed against direct advertising. In the latter case, you have a general right of objection, which is implemented by us without stating a particular situation. If you wish to exercise your right of revocation or objection, please send an e-mail to email@example.com.
We implement current technical measures to ensure data security, in particular to protect your personal data against the data transmission hazards and against third parties gaining unauthorised access to your data. These are adapted to the current state of the art in each individual case.
We use the most common SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser when you visit our website. Typically, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual Web page of our website is transmitted in encrypted form by the closed representation of the key or lock symbol in your browser status bar.
We also implement appropriate technical and organisational security measures to protect your data against accidental or intentional tampering, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.
Our websites incorporate the plug-ins of the social networks Facebook, Youtube and Twitter. You can recognise the plug-ins by the corresponding logos or "Like-Buttons" on our website. In order to protect your personal data, the respective plug-in does not initially establish a direct connection between your browser and the servers of the providers of social media services Facebook, Youtube and Twitter. They become active and establish the connection to the social networks only after you enable these buttons and thus consent to communicate with Facebook, Google or Twitter.
The 2-click system
The connection to the social media services is established only on the second click of the particular button. Clicking on one of these buttons therefore means that you are granting your consent as a user to share data with the particular operator of the social network. But only for this website and the selected service. The disabled button reappears when you retrieve further TMGS pages.
The buttons of the social networks you regularly use can also be activated permanently. For this purpose, place a tick mark under the gearwheel icon. The selected button is always immediately active. This can be changed later again using the gearwheel icon.
Pay attention to what information you disclose in these channels via comments. This is visible to other visitors of the website and to the website administrators. Since the websites are generally accessible, any data you share with a website is deemed as public information. This means that a comment can also be used outside the respective social media channel. Please keep in mind that this information may be indexed by search engines, including Google. We do not evaluate or otherwise collect this information, either now or in the future. The statistics provided by the respective social media channels are aggregated and do not allow any conclusions to be drawn about personal data.
Our website includes plugins for the social network Facebook, Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. You can recognise the Facebook plug-ins by the Facebook logo or the “like” button on our Web page. You can find an overview of Facebook plug-ins here: https://developers.facebook.com/docs/plugins/.
When you visit our websites, the plug-in does not establish a direct connection between your browser and the Facebook server. Only when you click on the buttons and agree to communicate with Facebook will a connection to the social network be established.
If you click the Facebook "Like button" while you are logged into your Facebook account, you can link the content of our websites to your Facebook profile. This allows Facebook to associate your visit of our websites with your user account. Please note that as the provider of the websites, we do not have any information regarding the content of the transferred data and its usage by Facebook. You can find further information regarding this topic in the privacy statement of Facebook at https://www.facebook.com/policy.php.
If you do not want Facebook to associate your visit to our website to your Facebook user account, please log out of your Facebook account.
Our website uses plug-ins from the YouTube site operated by Google. The site is operated by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA.
If you visit one of our websites provided with a YouTube plug-in, no direct connection to Google's servers will be established initially. Only when you activate the YouTube videos embedded in our websites do you enter the scope of Google data usage guidelines at https://policies.google.com/privacy?hl=en. This will transfer information about your use of YouTube to the operator in the USA and may save it.
If you are logged in to your YouTube account, you can enable YouTube to associate your browsing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account.
You can find more information about the handling of user data in YouTube's privacy statement at: https://policies.google.com/privacy?hl=en.
Our website includes plug-ins of the social network Twitter, provider Twitter, Inc., 355 Market Street, San Francisco, California 94103, USA. You can recognise the Twitter plug-ins by the Twitter logo or the Tweet button our website. You can find an overview of Twitter plug-ins here: https://dev.twitter.com/web/overview.
When you visit our websites, the plug-in does not establish a direct connection between your browser and the Twitter server. Only when you click on the buttons and agree to communicate with Twitter will a connection to the social network be established.
By using Twitter and the "Re-Tweet" feature, the websites you visit are linked to your Twitter account and disclosed to other users. Data is also transferred to Twitter in this way. Please note that as the provider of the websites, we do not have any information regarding the content of the transferred data and its usage by Twitter. You can find more information about this in Twitter's privacy statement at http://twitter.com/privacy.
You can change your privacy settings on Twitter in your account settings under http://twitter.com/account/settings.
Our website uses the "Google Maps" component of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as "Google".
If you visit one of our websites provided with a Google Maps feature, no direct connection to Google's servers is established initially. Only when you activate the Google Maps maps embedded in our websites do you enter the scope of the Google data usage guidelines at https://policies.google.com/privacy?hl=en as well as the additional terms and conditions for "Google Maps" https://www.google.com/intl/en-en/help/terms_maps.html.
When you visit this website, data such as your IP address is transmitted to Google. Google processes this data as user profiles for the purpose of tailoring its services, advertising and market research to meet your needs. If you are logged in to Google, this data is directly assigned to your account. If you do not want this, you must first log out.
Google sets a cookie each time the "Google Maps" component is accessed in order to process user settings and data when the website incorporating the "Google Maps" feature is displayed. Typically, this cookie is not deleted when you close your browser, but expires after a certain period of time unless you delete it manually beforehand.
If you do not agree with this processing of your data, it is possible to deactivate the "Google Maps" service and thus prevent the transmission of data to Google. For this purpose, you must disable the Java script feature in your browser. However, please note that in this case you cannot use "Google Maps" or can only use it to a limited extent.
Use of Google AdWords
We also use the Google advertising tool "Google-Adwords" for advertising purposes. As part of this, our website uses the "Conversion Tracking" analysis service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as "Google". If you access our website via a Google ad, a cookie is placed on your computer. Cookies are small text files that your Internet browser downloads and stores on your computer. These so-called "conversion cookies" cease to be active after 30 days and are no longer used to identify you personally. If you visit certain pages of our website and the cookie is till active, we and Google know that you as a user have clicked on one of our advertisements placed with Google and have been redirected to our webpage.
Google uses the information obtained through “conversion cookies” to compile statistics for our website. These statistics tell us the total number of users who have clicked on our ads, as well as which pages of our website were subsequently accessed by each user. However, neither we nor other advertisers who use “Google-Adwords” receive any kind of information that can be used to personally identify users.
You can prevent the installation of "conversion cookies" by making the appropriate settings in your browser, such as a browser setting that generally disabled the automatic setting of cookies or specifically blocks only the cookies from the "googleadservices.com" domain.
Links to other websites
Our homepage contains links to other websites. We have no influence on whether their operators comply with the data protection regulations. Please note the disclaimer in the Imprint.
e clicked. This information cannot be assigned to the individual newsletter recipients. The evaluations are used for recognising the readers' reading habits and to adapt our contents accordingly.
If you do not agree to the storage and evaluation of the data related to your visit, you can veto the storage and usage subsequently at any time by a mouse click. In this case, a so-called opt-out cookie is stored in your browser, which means that Matomo does not collect any session data at all. Please note: when you delete your cookies, this results in the opt-out cookie also being deleted and it may be necessary for you to activate it again.
We use the services of etracker GmbH from Hamburg, Germany (www.etracker.com) to analyse usage data. Cookies are used to enable statistical analysis of the usage of this website by its visitors and the display of usage-related content or advertising. Cookies are small text files that are stored by the Internet browser on the user's terminal device. etracker cookies do not contain any information that enables identification of a user.
etracker processes and stores the data generated with etracker on behalf of the provider of this website exclusively in Germany and is therefore subject to the strict German and European data protection laws and standards. etracker has been independently tested, certified and awarded the data protection seal of approval ePrivacyseal
Data processing is carried out on the legal basis of Art. 6 para. 1(f) (legitimate interest) of the EU General Data Protection Regulation (EU GDPR). Our legitimate interest comprises the optimisation of our online offerings and our website. Because the privacy of our visitors is of paramount importance to us, the IP address at etracker is anonymised as early as possible and login or device IDs at etracker are converted into a unique key that is not assigned to a person. etracker does not use the data for any other purpose, combine it with other data or pass it on to third parties.
You can object to the aforementioned data processing at any time if it is personal. Your objection has no detrimental consequences for you.
I object to the processing of my personal data with etracker on this website.
Further information on data protection at etracker can be found at https://www.etracker.com/en/data-privacy/.
We use your e-mail address exclusively to inform you regularly about interesting travel destinations and current events. You give your consent only to the Tourismus Marketing Gesellschaft Sachsen mbH. No data shall be transferred to unauthorised third parties. You can unsubscribe from the newsletter at any time by simply using the link directly in the newsletter.
Notes on the newsletter and consents
Our website offers you the possibility to subscribe to various newsletters. These newsletters inform you about our offers at regular intervals. In order to receive our newsletter, you need a valid e-mail address. We send newsletters, e-mails and other electronic notifications containing advertising information (hereinafter referred to as "newsletters") only with the consent of the recipient or a legal permission. Our newsletters contain information on travel-related topics (e.g., tourist information, events and bookable offers), from the field of market research and tourism cooperation.
Double opt-in and logging
You can register for our newsletter through a so-called Double-Opt-In procedure. This means that after registration you will receive an e-mail in which you will be asked to confirm your registration. This confirmation is necessary to ensure that nobody can register with external e-mail addresses. Subscriptions to the newsletter are logged in order to be able to prove the registration process in accordance with legal requirements. This includes the storage of registration and confirmation time, as well as the IP address. Similarly, changes to your data stored with Maileon are logged.
Usage of the "Maileon" dispatch service
The newsletter is sent via "Maileon", a newsletter dispatch platform of the German provider XQueue GmbH, Advanced E-Mail-Marketing Technologies, Christian-Pleß-Str, 11-13, 63069 Offenbach am Main.
The e-mail addresses of our newsletter recipients, as well as their other data described in the context of this notice, are stored on the XQueue servers in Germany. XQueue uses this information to send and evaluate the newsletter on our behalf. Furthermore, XQueue can use this data to optimise or improve its own services, such as the technical optimisation of the dispatch and the presentation of the newsletter, for example However, XQueue does not use the data of our newsletter recipients to write to them down or pass them on to third parties. XQueue undertakes to comply with the EU General Data Protection Regulation.
To subscribe to the newsletter, simply enter your e-mail address. Optionally, we ask you to enter your title as well as your first and last name. This information is only used to personalise the newsletter. We also ask you to optionally enter your place of residence and your country. We only use this information to adapt the contents of the newsletter to the interests of our readers.
Statistical survey and analyses
Statistical surveys include determining whether newsletters are opened, when they are opened and which links are clicked. This information cannot be assigned to the individual newsletter recipients. The evaluations are used for recognising the readers' reading habits and to adapt our contents accordingly.
Online access and data management
Termination / revocation
You can terminate the receipt of our newsletter at any time, i.e. revoke your consent. You will find a link to unsubscribe from the newsletter at the end of each newsletter. At the same time, your consents to its dispatch via XQueue and the statistical analyses also expire. Unfortunately, it is not possible to separately revoke the dispatch via XQueue or the statistical analysis. The information is stored for as long as you are subscribed to the newsletter. After a termination / revocation, we store the data for purely anonymous statistical purposes.
PROCESSING AUTHORITY OR CONTROLLER
The processing authority or controller as defined in the General Data Protection Regulation and the Federal Data Protection Act is Tourismus Marketing Gesellschaft Sachsen mbH in 01099 Dresden, Bautzner Str. 45-47.
Data protection officer
Our company has appointed an external data protection officer to safeguard data protection rights. You can find our data protection officer at
Astrid Kloss - Consultant for Data Protection and Data Security, www.kloss-consulting.de
Dresden, May 25, 2018