Privacy Policy

Version: 20.05.2026

The protection of your personal data is a matter of particular concern to us. With this privacy policy, we would like to inform you about how your personal data is processed when you book our "Fischerhütte" holiday home or use our website www.fischerhütte.at. We treat your data strictly confidentially and exclusively on the basis of the applicable legal provisions (GDPR, Austrian Data Protection Act DSG, TKG 2021).

 

1. Data Controller

Anita Kastl
Lindenfeld 32
4291 Lasberg
Austria
E-Mail: fischerhuette@ferien-steiermark.at

 

2. Collection and Processing of Personal Data During Booking and Contact

a) During a Booking

When you book our holiday home, we collect certain personal data to manage the booking and your stay. The collection takes place within the framework of the booking process, which is handled via a secure interface (iframe, widget, or script) by our external booking software provider, Hotelmeister.

  • Data collected: First and last name, postal address, telephone number, email address, payment and credit card information (if required for billing), data regarding your stay (arrival and departure dates, number of guests, age of accompanying children), and any other data you transmit to us during the booking process.
  • Purpose: Management of your reservation, fulfillment of the accommodation contract, fulfillment of legal reporting obligations (guest list), and transmission of necessary information regarding your stay.
  • Legal basis: Contract fulfillment (Art. 6 (1) lit. b GDPR) as well as fulfillment of a legal obligation (Art. 6 (1) lit. c GDPR for the legal guest registration requirements in Austria).

b) When Contacting Us (Email or Contact Form)

If you send us inquiries via email or a contact form, your details (including your email address and name) will be stored for the purpose of processing the inquiry and for any follow-up questions.

  • Purpose: Answering and processing guest contacts and individual booking inquiries.
  • Legal basis: Processing is carried out for the performance of pre-contractual measures or to answer inquiries (Art. 6 (1) lit. b GDPR) or is based on our legitimate interest in efficient customer communication (Art. 6 (1) lit. f GDPR).

 

3. Technical Data Processing on the Website

3.1. Cookies and External Booking Software (Hotelmeister)

No tracking technologies are used during an purely informative visit to our website to analyze your browsing behavior or to collect data for advertising purposes.

Note on the booking process: Only when you actively start the booking process to make a reservation is the external booking interface of our technical service provider, Hotelmeister, loaded. At this moment, technically absolutely necessary session cookies (temporary cookies) are set in your browser. These are strictly required to temporarily store your selection (dates, number of people) during the individual booking steps. These cookies are automatically deleted after you close your browser. A cookie consent banner is not legally required for these technically necessary functions.

3.2. Content Delivery Network and Security Proxy (Cloudflare)

To protect our website against cyberattacks (e.g., DDoS attacks) and to optimize loading speeds, we use the services of the security and hosting infrastructure provider Cloudflare (Cloudflare Inc., 101 Townsend St, San Francisco, CA 94107, USA).

All traffic to our website is routed through Cloudflare's network. The website visitor's IP address is processed by Cloudflare to block malicious traffic. For security reasons, only the anonymized IP addresses of the Cloudflare network and technical access by administrators for maintenance purposes are recorded on our downstream web server (operated by the company Cleops). No collection or storage of personal IP addresses of regular website visitors takes place on our origin server.

The use of Cloudflare is based on a data processing agreement (Art. 28 GDPR) to safeguard our legitimate interests in a secure and error-free operation of our online presence.

  • Legal basis: Legitimate interest (Art. 6 (1) lit. f GDPR).

3.3. Google Search Console

We use Google Search Console to analyze the purely technical visibility of our website in search results. This captures only anonymized, technical performance data. At no point is personal data of website visitors collected or stored here.

3.4. Service Worker and Progressive Web App (PWA)

Our website uses a Service Worker in the background to optimize loading speeds. This allows you to store the website locally on your device. The Service Worker does not collect personal data, does not track you, and only stores technical program information to improve website functionality.

 

4. Data Sharing with Third Parties

We only pass your personal data on to third parties if it is strictly necessary for the implementation and fulfillment of your booking or if there is a legal obligation:

  • Hotelmeister: Operator of the external booking software (interface for processing and managing reservations). Data processing takes place within the scope of a data processing agreement in accordance with Art. 28 GDPR.
  • Cleops: As a technical service provider for web hosting and technical operation of the website (Art. 28 GDPR).
  • Payment Service Providers: For the secure processing of deposits or credit card reservations during the booking process.
  • Local Tourism Authority / Municipality: For the legally required transmission of guest registration documents and the proper accounting of the tourism levy.

 

5. Retention and Deletion of Data

Your personal data will only be kept for as long as is necessary to fulfill the contract or the inquiry. After the stay has ended, the data will be stored for the duration of statutory tax and commercial retention periods (in Austria 7 years according to § 132 BAO for accounting and invoice documents) and subsequently deleted.

General contact inquiries that do not lead to a booking will be deleted as soon as the purpose of the inquiry has been resolved and no legal retention obligations conflict with deletion.

 

6. Your Rights as a Data Subject

According to the provisions of the GDPR, you have the following rights regarding the data we store about you:

  • Right to information about your processed data (Art. 15 GDPR)
  • Right to correction of inaccurate data (Art. 16 GDPR)
  • Right to deletion of your data, provided no legal retention obligations conflict (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability in a structured format (Art. 20 GDPR)
  • Right to object to processing (Art. 21 GDPR)

If you wish to exercise any of these rights, please contact us informally at: fischerhuette@ferien-steiermark.at.

Should you believe that the processing of your data violates data protection law, you have the right to lodge a complaint with the competent supervisory authority:

Austrian Data Protection Authority
Barichgasse 40-42, 1030 Vienna, Austria
Phone: +43 1 52 152-0
E-Mail: dsb@dsb.gv.at

 

7. Data Security

We employ modern technical and organizational security measures to protect your data against loss, misuse, manipulation, and unauthorized access from the outside. All data transmission on our website and the transfer to the booking system is encrypted (SSL/HTTPS).

 

8. Changes to this Privacy Policy

We reserve the right to adapt this policy as necessary to account for changes in technical circumstances or new legislation. The current version is always available directly on this page.

 

9. Validity and Language

The German version of this privacy policy is the only legally binding version. Any translations into other languages (e.g., English) on this website serve solely for the better understanding of international guests and do not give rise to any legal claims.

 

 

Ferienhaus Werkstatt'lVisit Holiday Home Werkstatt'l