The protection of your personal data is particularly important to us. We process your data exclusively on the basis of the statutory provisions of the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and other applicable data protection regulations.

This privacy policy informs you about the type, scope, and purpose of the processing of personal data on the website schumbera.com.

The controller responsible for data processing on this website is:

Calvin Schumbera
Auf dem Lockhorn 13
27211 Bassum
Germany

Phone: +49 (0) 15678 248336
Email: calvin@schumbera.com

Travel planning and travel mediation services are offered via schumbera.com. In particular, users can:

• create user accounts
• plan trips or have trips planned
• request hotels
• request guided tours
• manage travel offers
• prepare bookings
• store travel preferences

Personal data is processed in particular for:

• providing the website
• managing user accounts
• processing travel requests
• communicating with hotels, tour guides, and service partners
• carrying out pre-contractual measures
• fulfilling contracts
• ensuring the technical security of the website

The legal bases are in particular:

• Art. 6 para. 1 lit. a GDPR (consent)
• Art. 6 para. 1 lit. b GDPR (contract / pre-contractual measures)
• Art. 6 para. 1 lit. c GDPR (legal obligation)
• Art. 6 para. 1 lit. f GDPR (legitimate interest)

The website is operated on servers of:

IONOS SE
Elgendorfer Str. 57
56410 Montabaur
Germany

Phone: +49 (0) 721 170 5522
Email: info@ionos.de

as part of a shared hosting offer.

IONOS automatically processes so-called server log files. These include in particular:

• IP address
• date and time of access
• browser type and browser version
• operating system used
• referrer URL
• pages accessed
• hostname of the accessing computer

Processing is carried out to ensure the technical security, stability, and error analysis of the website.

The legal basis is Art. 6 para. 1 lit. f GDPR.

A data processing agreement pursuant to Art. 28 GDPR was concluded with the hosting provider on July 11, 2024.

This website uses SSL or TLS encryption for the secure transmission of confidential content.

You can recognize an encrypted connection by:

• “https://” in the browser address bar
• the lock symbol in your browser

Users can create a user account on schumbera.com.

In particular, the following data is processed:

• first name
• last name
• email address
• phone number
• address
• date of birth
• encrypted password
• travel preferences
• family relationships between profiles
• dietary preferences
• voluntary profile information

Processing is carried out to provide and manage the user account and to process travel requests and travel planning.

Legal basis:
Art. 6 para. 1 lit. b GDPR.

The data is stored as long as the user account exists or statutory retention obligations apply.

If users request hotels, tour guides, or other tourist services, personal data is transmitted to the respective providers where necessary to process the request.

This may include in particular:

• first name
• last name
• phone number
• email address
• address
• date of birth
• nationality
• travel period
• number of travelers
• special requests
• dietary preferences
• voluntary information about health restrictions or accessibility

The transfer is made exclusively for the purpose of processing the respective travel request.

Legal basis:
Art. 6 para. 1 lit. b GDPR.

The respective privacy policies and terms and conditions of hotels, tour providers, or other service partners apply to their data processing.

Users may voluntarily provide sensitive information, for example:

• allergies
• dietary preferences
• health restrictions
• accessibility information

This information is provided exclusively voluntarily by the user.

Processing is carried out exclusively:

• for the purpose of travel planning or travel mediation
• on the basis of explicit consent pursuant to Art. 9 para. 2 lit. a GDPR

This data is only passed on to service partners where necessary to fulfill the request.

If you contact us via contact form or email, the data you provide will be processed.

This includes in particular:

• first name
• last name
• email address
• phone number
• message content

Processing is carried out to handle your request.

Legal basis:

• Art. 6 para. 1 lit. b GDPR
• Art. 6 para. 1 lit. f GDPR

The data will be deleted once the request has been fully processed and no statutory retention obligations apply.

In principle, no direct payment processing for hotels or tour providers takes place on schumbera.com itself.

Payments are made:

• by bank transfer
• or via external payment providers such as PayPal
• or via payment platforms of the respective hotels or tour providers

The privacy policies of the respective providers apply to payment processing.

Payment providers used by schumbera.com:

PayPal (Europe) S.à r.l. et Cie, S.C.A.
22-24 Boulevard Royal
L-2449 Luxembourg

Email: impressum@paypal.com

PayPal Privacy Policy:
https://www.paypal.com/de/legalhub/paypal/privacy-full

When PayPal is used, personal data may be transmitted to PayPal.

Only technically necessary cookies are used on schumbera.com.

These cookies are required to provide basic website functions, in particular:

• login functions
• session management
• website security
• technical stability

Legal basis:
Art. 6 para. 1 lit. f GDPR.

No analytics, tracking, or marketing cookies are currently used.

Google Fonts are used for the uniform display of fonts.

The fonts are integrated locally on the own server. No connection to Google servers is established in this context.

Therefore, no personal data is transmitted to Google.

Map materials from:

• OpenStreetMap
• Apple Maps

may be embedded to display geographic information.

When using these services, technical data such as the IP address may be processed.

Further information:

OpenStreetMap Privacy Policy:
https://osmfoundation.org/wiki/Privacy_Policy

Apple Privacy Policy:
https://www.apple.com/legal/privacy/de-ww

Videos from the YouTube platform may be embedded on this website.

Provider:

YouTube / Google
https://policies.google.com/privacy?hl=en

When accessing a page with an embedded YouTube video, a connection to YouTube servers may be established.

Personal data may be processed in this context.

Content from Instagram may be embedded on this website.

Provider:

Instagram Privacy Policy:
https://privacycenter.instagram.com/policy

When embedded content is loaded, data may be transmitted to Meta Platforms.

Widgets or content from GetYourGuide may be embedded on this website.

Provider:

GetYourGuide Privacy Policy:
https://www.getyourguide.com/de-de/c/privacy-policy

When embedded content is used, personal data may be transmitted to GetYourGuide.

For communication, the following are used:

• own SMTP servers
• email services from IONOS

Processing is carried out to handle inquiries and contractual communication.

Personal data is stored only for as long as necessary to fulfill the respective purposes or as long as statutory retention obligations exist.

In particular, the following apply:

• account data: until the account is deleted
• contract and booking data: in accordance with statutory retention periods
• communication data: until final processing
• server log files: according to IONOS hosting requirements

You have the right at any time to:

• access pursuant to Art. 15 GDPR
• rectification pursuant to Art. 16 GDPR
• erasure pursuant to Art. 17 GDPR
• restriction of processing pursuant to Art. 18 GDPR
• data portability pursuant to Art. 20 GDPR
• objection pursuant to Art. 21 GDPR
• withdrawal of consent granted pursuant to Art. 7 para. 3 GDPR

To exercise your rights, an informal notification to the following address is sufficient:

privacy@schumbera.com

You have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data.

The competent supervisory authority in Germany is in particular:

The Federal Commissioner for Data Protection and Freedom of Information (BfDI)
https://www.bfdi.bund.de/DE/Home/home_node.html

We reserve the right to amend this privacy policy if this becomes necessary due to technical changes, legal requirements, or new website functions.