Ratscher Landhaus aus der Luft

Privacy policy

Ratscher Landhaus GmbH
Ottenberg 35, 8461 Ehrenhausen an der Weinstrasse
Phone: +43 3453 23130
E-mail: info@ratscher-landhaus.at

Contact person for data protection:
Michaela Muster – Phone: +43 3453 23130

1. GENERAL INFORMATION

The protection of your personal data is of particular concern to us. We process your data exclusively in accordance with the legal provisions of the Regulation (EU) 2016/679 (GDPR) and the Telecommunications Act (TKG 2003). This privacy policy informs you about the type, scope and purpose of the collection and use of your personal data by our company.

2. RESPONSIBLE FOR DATA PROCESSING

The controller for the processing of personal data is

Ratscher Landhaus GmbH
Ottenberg 35, 8461 Ehrenhausen an der Weinstrasse, Austria
E-Mail:info@ratscher-landhaus.at
Telephone: +43 3453 23130

3. PURPOSES AND LEGAL BASIS OF DATA PROCESSING

We process your personal data for the following purposes: fulfilment of contractual obligations, fulfilment of legal obligations, protection of the legitimate interests of the controller or if you give us your consent. Facilitation and execution of the guest’s booking; realisation of the guest’s stay; tailoring the stay to the guest’s wishes and interests; possibility of offering services in accordance with the guest’s interests in the future; marketing in connection with the hotel’s services and improvement of the hotel’s services.

  • Processing and administration of room bookings: The processing of your data is carried out to fulfil your booking and is necessary for the performance of the contract in accordance with Art. 6 para. 1 lit. b GDPR.
  • Payment processing via Hobex & Datatrans: The transfer of your payment data to our payment service providers is necessary to process the transaction and is based on Art. 6 para. 1 lit. b GDPR.
  • Responding to enquiries via email or telephone: The processing of your personal data is carried out to process your enquiries and is based on Art. 6 para. 1 lit. b GDPR.
  • Sending newsletters (via Smarthost): Your email address will only be processed to send newsletters with your consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke this consent at any time
  • Web analysis to improve our website: In order to make our website more user-friendly, we analyse user behaviour using web analysis tools. This is only done with your prior consent in accordance with Art. 6 para. 1 lit. a GDPR.
  • Social media presence and marketing: The processing of data in the context of our social media activities is based on our legitimate interest in an effective external presentation and communication in accordance with Art. 6 para. 1 lit. f GDPR.
  • Security measures & protection against misuse (Google ReCaptcha): To secure our website and to protect against spam or misuse, we use security measures that are based on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR.
  • Fulfilment of legal obligations (e.g. tax law): The processing of certain personal data is required by law, for example to comply with tax regulations. This processing is carried out in accordance with Art. 6 para. 1 lit. c GDPR.
4. RECIPIENT CATEGORIES

Your personal data will only be passed on to third parties if this is necessary for the fulfilment of the contract or due to legal requirements:

  • Seekda as channel manager for room bookings
  • Hobex & Datatrans as payment service provider
  • Tax consultants & tax authorities for the fulfilment of statutory retention obligations
  • Web analysis and marketing services (Google, Meta, LinkedIn, Pinterest, Smarthost)
  • Shipping service provider for postal dispatch

Data transfers to third countries (USA) take place exclusively on the basis of the EU Standard Contractual Clauses (SCCs) or the EU-U.S. Data Privacy Framework.

We transfer data to the following categories of recipients, some of which meet the definition of processors pursuant to Art. 28 (1) GDPR (with corresponding contracts pursuant to Art. 28 (3) GDPR):

Payroll accounting, bookkeeping, tax consultancy; IT and system administration; email, web and ICT providers; lawyers or debt collection service; insurance companies (liability – claims settlement) or all previously listed and named recipient groups of the data protection declaration. In addition, to service providers and their auxiliary persons who offer cloud-based software and data processing solutions for the hotel and who analyse and process the guest’s data (for the above purposes) on behalf of the hotel.

5. STORAGE PERIOD
  • Booking data: 7 years (retention obligations under tax law)
  • Contract-related data: 10 years Data transfer in accordance with Art. 6 para. 1 lit. c GDPR.
    Your data (name, registration address including country of origin, date of birth, nationality, gender and travel document details) will be forwarded to the responsible municipality in accordance with the applicable registration law (MeldeG1991).
  • Email enquiries: 6 months, unless a contractual relationship arises
  • Newsletter data: until consent is withdrawn

After these periods have expired, the data will be deleted, provided there are no other legal obligations.

6. COOKIES AND TRACKING TECHNOLOGIES

Our website uses cookies for technical functions and analysis purposes.
You can object to the use of cookies at any time via our cookie banner.

Find out more in our [cookie policy]

7. WEB ANALYSIS (GOOGLE ANALYTICS)

We use Google Analytics to analyse user behaviour.

  • Provider: Google LLC, USA
  • Processed data: IP address, location data, user behaviour
  • Transmission to the USA: On the basis of the SCCs or the Data Privacy Framework

Opt-Out: You can prevent storage using a browser plugin: Google Opt-Out Plugin

8. SOCIAL MEDIA PRESENCE

We are active on the following platforms

  • Instagram
  • Pinterest
  • LinkedIn
  • YouTube
  • Vimeo

Privacy policies of the platforms:

9. GOOGLE RECAPTCHA

We use Google ReCaptcha to protect against spam.

10. NEWSLETTER (SMARTHOST)

We send newsletters via Smarthost GmbH.

Unsubscribe: You can unsubscribe at any time using the unsubscribe link in the newsletter.

Smarthost privacy policy

11. YOUR RIGHTS UNDER GDPR

You have the right to:

We would like to point out that, depending on the situation (and individual case), you as the data subject have the right to information, erasure, restriction, rectification, data minimisation, data portability and objection within the meaning of the GDPR. To exercise your rights, please contact the controller listed above. We would also like to point out that you have the right to lodge a complaint with the supervisory authority (data protection authority) if you believe that we have breached data protection regulations. If you have any questions or require information, please do not hesitate to contact us at any time.

  • Information (Art. 15 GDPR)
  • Rectification (Art. 16 GDPR)
  • Erasure (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection to processing (Art. 21 GDPR)

Please direct any enquiries to: Michaela Muster – Phone: +43 3453 23130

If you believe that your data is being processed unlawfully, you can lodge a complaint with the Austrian Data Protection Authority.

12. CHANGES TO THIS PRIVACY POLICY

We reserve the right to update this privacy policy if necessary.

13. accessibility

We endeavour to make our website accessible in accordance with the Accessibility Act as amended to implement the European Accessibility Directive (Directive 2019/882) on accessibility requirements for products and services.

In doing so, the Web Content Accessibility Guideline – WCAG 2.2 was adhered to as far as possible.

Last update: 5.3.2025

 

Voucher and ticket sales via Incert

1. General

The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the statutory provisions (GDPR, TKG 2003). In this privacy policy, we inform you about the most important aspects of data processing in the context of voucher and ticket sales, which are processed via the platform Incert eTourismus GmbH & Co KG.

2. processing of personal data

In the course of processing voucher and ticket sales, we and our service provider Incert eTourismus GmbH & Co KG, Leonfeldner Str. 328, 4040 Linz, Austria process the following personal data:

  • Name
  • Address
  • E-mail address
  • Phone number (if provided)
  • Payment information (e.g. credit card details, PayPal, instant bank transfer)
  • IP address of the subscriber
  • Purchase details (vouchers/tickets purchased, date of purchase)

This data is required to complete the order process and fulfil the contract. No contract can be concluded without the provision of this data.

3. purpose of data processing

Your personal data is processed for the following purposes

  • Processing the order of vouchers and tickets
  • Payment processing via external payment service providers
  • Dispatch of the vouchers (by post or email)
  • Compliance with legal obligations (tax retention obligations)
  • Fraud prevention and abuse detection
  • Customer care and support for enquiries about the purchasing process

4. Disclosure of data to third parties

Your data will only be passed on in the following cases

  • To Incert eTourismus GmbH & Co KG for the technical and commercial processing of voucher and ticket sales
  • To the banking institutions and payment service providers commissioned by us to debit the purchase amount
  • To the commissioned transport company/shipping service provider for the delivery of physical vouchers
  • To our tax advisor for the fulfilment of tax obligations

No further transfer to third parties or transfer to third countries takes place.

5. storage and deletion of the data

  • In the event of a cancelled order process, the stored data will be deleted
  • If a contract is concluded, the data will be stored in accordance with the statutory retention periods:
    • Storage obligation under tax law: 7 years
    • Product liability: 10 years
  • After the deadlines have expired, your data will be deleted, provided there are no further legal obligations

6. legal basis for processing

Your data is processed on the basis of the following legal provisions

  • Art. 6 para. 1 lit. b GDPR (fulfilment of contract and pre-contractual measures)
  • Art. 6 para. 1 lit. c GDPR (fulfilment of legal obligations, in particular tax regulations)
  • § 96 para. 3 TKG (Telecommunications Act, storage of IP addresses and cookies)

7. Your rights

You have the following rights:

  • Right of access (Art. 15 GDPR) – You can request confirmation as to whether personal data is being processed
  • Right to rectification (Art. 16 GDPR) – You have the right to have inaccurate or incomplete data rectified
  • Right to erasure (Art. 17 GDPR) – Under certain conditions, you can request the erasure of your data.
  • Right to restriction of processing (Art. 18 GDPR).
  • Right to data portability (Art. 20 GDPR) – you can request the surrender of your data in a commonly used format.
  • Right to object (Art. 21 GDPR) – You can object to the processing of your data.

To assert your rights, please contact us using the contact details below.

8. Contact

If you have any questions about the processing of your data or would like to assert your rights, you can contact us. In addition, you have the right to lodge a complaint with the competent data protection authority if you believe that the processing of your personal data is not lawful.

INCERT eTourismus GmbH & Co KG

Leonfeldnerstraße 328, Stiege 1 Door 1,
4040 Linz,
Austria

Tel.: +43 732 89 00 18-0
Fax: +43 732 89 00 18-44
E-mail:office(at)incert.at

Use of Seekda as channel manager and Hobex as payment service provider

1. general information

The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the statutory provisions (GDPR, TKG 2003). In this privacy policy we inform you about the most important aspects of data processing in connection with the booking of your accommodation at Ratscher Landhaus.

2. responsible body

Responsible for data processing is

Ratscher Landhaus GmbH
Ottenberg 35
8461 Ehrenhausen an der Weinstrasse, Austria

3. Processing of personal data in the Seekda

booking system
We use the channel manager Seekda, a product of Seekda Hospitality Solutions GmbH based in Vienna, to process and manage room bookings. This system enables the centralised management of online bookings, both via our website and via external platforms (e.g. Booking.com or Expedia).

What data is processed

The following personal data is collected and processed as part of the booking process via Seekda:

  • First and last name
  • Address
  • Phone number
  • E-mail address
  • Booking details (room category, period of stay, number of guests)
  • Payment method (for online payments via Hobex or Datatrans)
  • IP address
Purpose of the processing

This data is processed for the purpose of:

  • Processing of the room booking
  • Processing enquiries and communication with the guest
  • Contract fulfilment in accordance with Art. 6 para. 1 lit. b GDPR
  • Fulfilment of statutory retention obligations pursuant to Art. 6 para. 1 lit. c GDPR
  • Improvement of our booking systems and statistical analyses in accordance with Art. 6 para. 1 lit. f GDPR

The data will not be passed on to unauthorised third parties. It will only be passed on to technical service providers (e.g. Seekda) or legally required authorities.

Further information on data processing by Seekda can be found in the privacy policy of Seekda Hospitality Solutions GmbH:
👉 Seekda Privacy Policy

4. Payment processing via Hobex and Datatrans

For payment processing, we use Hobex AG and Datatrans AG as payment service providers.

Payment processing via Hobex

Online payments are processed via Hobex AG, an Austrian-based company for cashless payment systems.

Data processed when paying via Hobex:

  • Name of the cardholder
  • Billing address
  • Payment information (e.g. credit card number, bank details)
  • Transaction details (amount, date, time)

    • The data transfer to Hobex takes place exclusively for the purpose of payment processing and is based on Art. 6 para. 1 lit. b GDPR (fulfilment of contract).
    Further information on data processing by Hobex can be found here:
    👉 Hobex Privacy Policy

    Payment processing via Datatrans

    We also use Datatrans AG, a Swiss company for digital payment solutions.

    Data processed when paying via Datatrans:

  • Name of the cardholder
  • Billing address
  • Payment information
  • Transaction details

    • The payment data is also processed on the basis of Art. 6 para. 1 lit. b GDPR.
    Further information on processing by Datatrans can be found here:
    👉 Datatatrans Privacy Policy

    Important:
    We do not store any credit card data ourselves. These are processed exclusively by Hobex or Datatrans.

    5. Storage and deletion of data

    Booking data

    • Cancelled bookings: If the booking process is not completed, we delete the stored data after [e.g. 30 days]
    • Successful bookings: Your data will be stored in accordance with legal requirements:
      • 7 years for tax documentation (§ 132 BAO)
      • 10 years for documents relevant to product liability
    Payment data
    • Payment information is not stored by us. This is stored exclusively by the payment service providers Hobex and Datatrans.
    • Transaction data remains stored in accordance with statutory retention obligations

    Your data will be deleted after the respective periods have expired, provided there are no legal obligations or legitimate interests for longer storage.

    6. Cookies and tracking technologies

    Our website uses cookies to improve the user experience and to enable booking via Seekda. You can deactivate the storage of cookies in your browser settings. Further details can be found in our separate Cookie Policy.

    7. Your rights

    You have the following rights under the GDPR:

    • Right of access (Art. 15 GDPR) – You can request confirmation as to whether personal data is being processed
    • Right to rectification (Art. 16 GDPR) – You can have incorrect or incomplete data corrected
    • Right to erasure (Art. 17 GDPR) – You can request the erasure of your data, provided that there are no statutory retention obligations to the contrary.
    • Right to restriction of processing (Art. 18 GDPR).
    • Right to data portability (Art. 20 GDPR) – you can receive your data in a structured format.
    • Right to object (Art. 21 GDPR) – You can object to the processing of your data.

    For enquiries about data processing, please contact us using the contact details below.

    I always thought cookies were biscuits! ...but we have them for dinner too!

    Michaela Muster

    Scroll to Top