Data privacy

Thank you for your interest in the website of the City of Freising tourism portal! Protection of your personal information is a very high priority for us. We thus take this opportunity to inform you of the data privacy measures in place at the City of Freising.

The following data privacy policy applies to use of our website at tourismus.freising.de (hereinafter “website”). We treat your personal data with complete confidentiality and comply with the statutory provisions in the EU General Data Protection Regulation (GDPR), the German Telemedia Act (TMG) and other data protection and privacy laws.

You can safely entrust your personal data to us! Your data are encrypted by digital security systems before they are transmitted to us. Technical measures are in place to protect our website against damage, destruction and unauthorised access.

In general, our website can be used without the need to enter personal data. Any collection of personal data (e.g. name, address or e-mail address) on our website is always on a voluntary basis and in compliance with the GDPR. These data will not be passed to third parties without your express permission.

By using this website, you consent to the collection, use and transfer of your data in accordance with this data privacy policy.

Name and address of the data controller

The data controller within the meaning of the GDPR, other European Union or Member State data protection laws, and other data protection regulations, is:

City of Freising
Obere Hauptstrasse 2
85354 Freising, Germany
Telephone: 08161-54 0
Fax: 08161-54 5 10 00
Email: sabina.kirchmaier@freising.de

See our Legal Information section.

Subject of this data privacy policy

The subject of this data privacy policy is personal data, defined in Art. 4 GDPR as any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data or online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Scope of data collection and storage

In general, our website can be used without the need to enter personal data. However, we may require your personal data in order to perform our services. This particularly applies to the service of responding to personal enquiries. If you instruct us to perform a service, we only collect and store your personal data for the length of time necessary for the provision of the service. Once provision of the service is completed, your data will be erased after expiry of the statutory retention period unless you have expressly consented to use of the data extending beyond this purpose.

Use of data for a specific purpose

We comply with the principle restricting use of data to a specific purpose. Hence, we only collect, process and store your personal data for the purposes for which you have supplied the data to us. Your personal data will not be shared with third parties without your express consent unless such sharing is necessary for provision of the service. Transfer of your data to state institutions and other official bodies authorised to receive such information will only take place within the scope of our statutory obligation to disclose information or in cases where we are subject to a court disclosure order.

Data protection at internal city level is also a high priority for us. Our employees and the service providers commissioned by us have been sworn to confidentiality and compliance with data privacy provisions.

Right of information and right of withdrawal

You can request information about your personal data stored by us at any time without the need to state reasons. You can, at any time, require us to block, correct or erase your data collected by us or object to our anonymised or pseudonymised collection and storage of your personal data for the purpose of optimising our website. You can also withdraw your consent to the collection and use of your data at any time without stating reasons. To do so, contact the address given in the Legal Information section of the website sabina.kirchmaier@freising.de. We are at your service at all times for further enquiries concerning our data privacy provisions and our processing of your personal data.
Please note that data privacy provisions and data privacy processing methods may change at any time. Given this, we advise and recommend that consumers inform themselves of the latest changes to statutory provisions on an ongoing basis.

Contact form

The contact form is an information service for your voluntary use. Collection of personal data in the form is the responsibility of the City of Freising. By using the service, you consent to our processing of your personal data. The data and other information required for processing your enquiry are stored on our central systems (e.g. mail system) and servers. The retention period depends on the process type. The data are collected for the purpose of processing your enquiry, contacting you to inform you of the results, and clarifying any remaining questions. Anonymous communications are not accepted. Completion of the fields marked * (last name, first name, message, email) are mandatory. Submission of further information is voluntary. The collected data are transferred as an email to the responsible offices in Freising city council or its affiliates and subsidiaries for the purpose of processing your enquiry. The data are not transferred to any other third party. The data and other information required for processing your enquiry are stored on our central systems (e.g. mail system) and servers. The retention period depends on the process type. You have the following rights under the General Data Protection Regulation: In cases where your personal data are processed, you have the right to receive information about the personal data concerning you that we have stored (Art. 15 GDPR). If incorrect personal data is processed, you have the right to obtain rectification (Art. 16 GDPR). Under appropriate legal circumstances, you may require your personal data to be erased or processing of the data to be restricted and you may lodge an objection to processing of the data (Arts. 17, 18, 21 GDPR). If you have consented to data processing or if a data processing contract has been concluded and data processing is performed by automated means, you may have the right to data portability (Art. 20 GDPR). If you decide to exercise the rights listed above, the responsible public body will verify whether the circumstances fulfil the legal requirements for you to do so. You further have the right to lodge a complaint with the Bavarian State Representative for Data Protection. If you have signed a statement giving your consent to the processing of your data by the City of Freising, you can withdraw this consent at any time with future (prospective) effect. Withdrawal of consent does not affect the lawfulness of the processing of your data up to the time of your withdrawal of consent.

Data privacy provisions in relation to purchase of tickets under Art. 13 GDPR

The organisation responsible for collecting data is the City of Freising, Obere Hauptstrasse 2, 85354 Freising, stadtverwaltung@freising.de, tel. 0049 (0)8161/54-0.

Contact details for Data Protection Officer
City of Freising, Data Protection, Obere Hauptstrasse 2, 85354 Freising, datenschutz@freising.de, tel. 0049 (0)8161/54-40800

Purposes and legal basis of data processing
Your data are collected for the purpose of contacting you with respect to your ticket purchase, arranging for shipping of the tickets and processing the payment.

Lawful basis of data processing
Your personal data are processed on the basis of Art. 6 1 b) GDPR. Recipient of your personal data

Your personal data are transferred to SWH Software GmbH (contract data processor). Your ticket purchase is processed using the electronic data processing systems of the data processing company SWH Software GmbH (reservation and booking of seats in the seating plan, billing of order, arrangement of shipping). Your order cannot be processed without using the software of this IT service provider. The City of Freising concludes contracts with this contractual partner in accordance with data privacy law under Article 28 GDPR. Furthermore, your data are transferred to other offices within the City of Freising. They may also be transferred to third parties (possibly also to third countries and their official authorities) for the purposes of debt enforcement.

Duration of storage of personal data
Your data are stored for a maximum of 10 years after collection. You may independently erase your data in your account.

Rights of data subjects
You have the following rights under the General Data Protection Regulation: In cases where your personal data are processed, you have the right to receive information about the personal data concerning you that we have stored (Art. 15 GDPR). Where the personal data being processed are incorrect, you have the right to obtain rectification (Art. 16 GDPR). Under appropriate legal circumstances, you may require your personal data to be erased or processing of the data to be restricted, and you may lodge an objection to processing of the data (Arts. 17, 18, 21 GDPR). If you have consented to data processing or if a data processing contract has been concluded and data processing is performed by automated means, you may have the right to data portability (Art. 20 GDPR). If you decide to exercise the rights listed above, the responsible public body will verify whether the circumstances fulfil the legal requirements for you to do so. You further have the right to lodge a complaint with the Bavarian State Representative for Data Protection.

Obligation to provide data
Provision of your data is mandatory as part of the ticket purchase process. The City of Freising requires your data in order to conclude the purchase contract with you. If you do not provide the necessary data, the purchase contract cannot be concluded with you.

Data privacy statement concerning use of Matomo

This website uses Matomo, an open source web analysis tool. Matomo uses “cookies”, text files which are saved on your computer and allow your use of the website to be analysed. The cookie collects information about your visit to our website and transfers the information to our server, where it is saved. Your IP address is anonymised prior to saving. The information generated by the cookie concerning use of our website is not passed to third parties. You can prevent cookies from being installed by entering the corresponding settings in your browser software. However, please note that in this case you may not be able to use the complete range of functions of this website to their full extent. If you do not agree to storage and use of your data, you can deactivate storage and use here. In this case an opt-out cookie is placed on your browser that prevents Matomo from storing your usage data. Please note that if you delete your cookies, this also deletes the Matomo opt-out cookie. If you visit our site again later, you will need to reactivate the opt-out link.

Server log files

The website provider automatically collects and saves information in server log files, which your browser automatically sends to us. This information comprises:

-Browser type and browser version
-Operating system
-Referrer URL
-Time of server request

These data cannot be attributed to specific individuals. They are never combined with data from other data sources. We reserve the right to examine these data subsequently if we become aware of concrete indications of unlawful use.

Cookies

Our website uses “cookies” at various points. Cookies do not harm your device and do not contain viruses. They serve to make our website more user-friendly, more effective and more secure. Cookies are small text files that are created on your computer and stored by your browser. Most of the cookies we use are “session cookies”, which are automatically deleted after your visit, Other cookies are stored on your device until you delete them or they expire.

These cookies enable us to recognise your browser on your next visit. You can alter your browser settings so that you are informed when cookies are created and can accept cookies only in individual cases, refuse cookies in specific cases or in general, and activate automatic deletion of all cookies when your browser is closed. Please note that deactivating cookies may limit your ability to use all the functions of this website.

Data privacy statement for use of the RCE Event Module (Events Calendar)

 “Announcing an event” (entry in web form)

We use the data you provide for processing the event you have submitted. To do so, we send your data to our responsible editorial team using RCE-Event, a web-based software program. The editorial team checks the content and publishes or rejects the event you have submitted. For details of the specifications governing publication of events, please contact the Tourism Information office.  By using this contact form you request the website operator to publish all the details you have submitted for the purpose of advertising your announced event, and to publish and share the event on partner websites, mobile apps, broadcasting channels or print products. If the event is past, publication is automatically blocked by the website operator. Your data will be stored in encrypted form for a period of up to three years in individual cases to enhance your convenience when announcing further events in the future, e.g. by means of pre-completed text fields. If you are not the event organiser (check box in registration form), your personal contact details will not be published or shared. However, they will likewise be stored in encrypted form for a period of up to three years for the event of any copyright infringement or unlawful content. Your personal data are not subjected to evaluation, shared or otherwise further processed. The provisions of the GDPR are fulfilled to the extent that they do not conflict with the purpose of publishing your event as often as possible.

RCE-Event event newsletter

When you sign up to the RCE-Event event newsletter we will send you regular mails containing information on events. Your email address is the only mandatory personal information we require to do so. Submission of further personal data is voluntary and will be used to address you personally. We use double opt-in consent for event newsletter mailings. This means that we only send you the event newsletter by email when you have expressly confirmed your consent to our so doing. Once you give your consent we send you a confirmation email asking you to click a link confirming that you wish to receive the event newsletter in future. By activating this confirmation link, you confirm your consent to our use of your personal data in accordance with Art. 6 (1) a) GDPR. When you register for our newsletter we store your IP address assigned by your Internet service provider (ISP) and the date and time of your registration. This enables us to trace any misuse of your email address at a later date. The data we collect when you register for the newsletter are used exclusively for advertising and promotional purposes in the newsletter. You can unsubscribe from the newsletter at any time by clicking the designated link in the newsletter or by sending an email to info@rce.de notifying of your wish to unsubscribe. After you unsubscribe we immediately delete your email address from our newsletter address list unless you have expressly consented to further use of your data or unless we reserve the right to further use of the data within the extent permitted by law and as set forth in this Privacy Policy.

RCE-Event event reminder (SMS reminder / email reminder) and event share email

If you use the “Event reminder” or “Event share” module we will send you one email and/or SMS text message with event information to remind you of the event date. Submission of a mobile phone number and/or email address is mandatory for use of the event reminder/evet share function. The data we collect for the technical execution of the event reminder/event share function are used exclusively for sending a one-time reminder/recommendation. Furthermore, the event reminder email or SMS is not sent from the advertising company but displays the name and email address of the recommender as the sender.

- The recommender can edit the subject line and message text.
- No advertising is included.
- Mass mailing or messaging is technically impossible.
- The recommender is clearly informed of the conditions of recommendation.

Data privacy policy for the use of Google Maps

Google Maps is used in the interests of making our website attractive and facilitating the location of places specified by us on the website. This constitutes a justified interest pursuant to Art. 6 (1) f GDPR. However, please note that clicking the link opens a new window in Google Maps. There is no direct link between Google Maps and our website, so that no personal data (in this case the IP address) is shared within our website.

Electronic mail

Any information you send to us in the form of an unencrypted email may potentially be intercepted by third parties during transmission. If you wish to send us confidential information with reliability, we recommend using encryption to prevent unauthorised access to the information during transmission, or sending us the information by post.

Contact details for Data Protection Officer

The officially appointed Data Protection Officer of the City of Freising is:

Ms Margit Stetka
Obere Hauptstrasse 2
85354 Freising
Email: datenschutz@freising.de