1
Jump to content
(Link opens in a new tab)
Jump to footer
(Link opens in a new tab)

Data protection

Information

This page explains how we process your personal data. If you want to change your privacy settings (grant consent or revoke your previously granted consent), you can change your settings.

Controller

The controller of your personal data on our website is:

Eurotrek AG
Lerzenstrasse 21
8953 Dietikon
Switzerland
Tel.: +41 44 316 10 0
E-Mail: eurotrek@eurotrek.ch

Consent Management Tool

LEGALWEB.IO via KEY CDN

This website uses the Consent Management Tool of our processor LEGALWEB.IO, legal web GmbH, Bayerhamerstraße 14, 5020 Salzburg, Austria. The tool sets a cookie on your device in order to save the services you have selected or not selected. That cookie does not involve a user-specific ID and does not save any other personal data. It is saved for a maximum of 1095 days and is then deleted automatically. The legal basis of processing is your consent according to 6 Abs. 1 lit. f GDPR. The Consent Management Tool is loaded by our sub-processor Key CDN, proinity LLC, Faerberstrasse 9, CH-8832 Wollerau, Switzerland. Key CDN only collects your IP address to ensure the security of the data center. Your IP address will not be transmitted to legal web GmbH. Data are transferred to Switzerland pursuant to Article 45 GDPR in conjunction with the Adequacy Decision C(2000) 2304 of the European Commission.

For monitoring the proper operation of the Consent Management Tool, appropriate signals are sent to the data processor LEGALWEB.IO, legal web GmbH, Bayerhamerstraße 14, 5020 Salzburg, Austria when selecting the respective consents or the chosen button. The IP address of the device transmitted for technical reasons is discarded immediately upon receipt and not further processed. No storage of other information that could be used for personal identification occurs. The legal basis of processing is your consent according to 6 Abs. 1 lit. f GDPR. The processing of the statistical information collected in this way is carried out by the sub-processor Microsoft Ireland Operations Ltd. (Microsoft Azure), One Microsoft Place, South County Business Park, Carmanhall And Leopardstown, Dublin, D18 P521, Ireland. Microsoft Azure only collects your IP address to ensure the security of the data center. There is no transmission of your IP address to legal web GmbH.

Data processing on your end device

The processing operations described in the following text use technologies such as scripts, cookies, WebSQL, LocalStorage, session storage. These technologies store or read data on your end device these out.

Webhost

Amazon AWS

Personal data is processed when you visit this website. Processed data categories: technical connection data of the server access (IP address, date, time, requested page, browser information). Purpose of processing: Monitoring of the technical function and to increase the operational security of our web server, Delivery and provision of the website and Anonymization and creation of statistics. The legal basis for processing: a legitimate interest that overrides the rights and freedoms of the data subject (Art. 6 (1) f GDPR). Legitimate interests: strong economic interest in safe and functioning operation of the technical systems. Data is transmitted: to the data processor Amazon Web Services, Inc., 410 Terry Avenue North, Seattle, WA 98109, USA. This may also mean a transfer of personal data to a country outside the European Union. The data is transferred to the USA on the basis of Art. 45 GDPR in conjunction with the European Commission's adequacy decision C(2023) 4745, since the data recipient has committed to comply with the data processing principles of the Data Privacy Framework (DPF).

Content Delivery Network

Key CDN

When accessing some sub-services of our website, additional personal services are processed. Processed data categories: technical connection data of the server access (IP address, date, time, requested page, browser information). Purpose of processing: Delivery and provision of the website. The legal basis for processing: a legitimate interest that overrides the rights and freedoms of the data subject (Art. 6 (1) f GDPR). Legitimate interests: strong economic interest in safe and functioning operation of the technical systems. Data is transmitted: to the data processor proinity LLC, Färberstrasse 9, CH-8832 Wollerau, Switzerland. This may also mean a transfer of personal data to a country outside the European Union. The data is transferred to Switzerland on the basis of Art. 45 GDPR in conjunction with the European Commission’s adequacy decision C(2000) 2304.

Tag Manager

Google Tag Manager

When accessing some sub-services of our website, additional personal services are processed. Processed data categories: technical connection data of the server access (IP address, date, time, requested page, browser information). Purpose of processing: Triggering, controlling and managing other services on our website. The legal basis for processing: Your consent according to Art. 6 (1) a GDPR. Data is transmitted: to the data processor Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. This may also mean a transfer of personal data to a country outside the European Union. The data is transferred to the USA on the basis of Art. 45 GDPR in conjunction with the European Commission's adequacy decision C(2023) 4745, since the data recipient has committed to comply with the data processing principles of the Data Privacy Framework (DPF).

Web analysis

Google Analytics

Personal data is processed when you visit this website. Processed data categories: technical connection data of the server access (IP address, date, time, requested page, browser information)data about the use of the website and the logging of clicks on individual elements. Purpose of processing: Anonymization and creation of statistics, analysis of user behavior and content optimization. The legal basis for processing: Your consent according to Art. 6 (1) a GDPR. Data is transmitted: to the data controller Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The legal basis for the data transfer to Google Ireland Limited is Your consent according to Art. 6 (1) a GDPR. This may also mean a transfer of personal data to a country outside the European Union. The data is transferred to the USA on the basis of Art. 45 GDPR in conjunction with the European Commission's adequacy decision C(2023) 4745, since the data recipient has committed to comply with the data processing principles of the Data Privacy Framework (DPF). The privacy policy of Google Ireland Limited: https://business.safety.google/privacy/.

Remarketing

Bing Ads (Microsoft UET)

Personal data is processed when you visit this website. Processed data categories: data about the use of the website and the logging of clicks on individual elements. Purpose of processing: analysis of user behavior, Analysis of the effect of online marketing measures and Selection of online advertising on other platforms, which are automatically selected using real-time bidding based on user behavior. The legal basis for processing: Your consent according to Art. 6 (1) a GDPR. Data is transmitted: to the data controller Microsoft Ireland Operations Limited, One Microsoft Place South County Business Park, Leopardstown Dublin, 18 D18 P521, Ireland. The legal basis for the data transfer to Microsoft Ireland Operations Limited is Your consent according to Art. 6 (1) a GDPR. This may also mean a transfer of personal data to a country outside the European Union. The data is transferred to the USA on the basis of Art. 45 GDPR in conjunction with the European Commission's adequacy decision C(2023) 4745, since the data recipient has committed to comply with the data processing principles of the Data Privacy Framework (DPF).

Meta Pixel

Personal data is processed when you visit this website. Processed data categories: data about the use of the website and the logging of clicks on individual elements. Purpose of processing: analysis of user behavior, Analysis of the effect of online marketing measures and Selection of online advertising on other platforms, which are automatically selected using real-time bidding based on user behavior. The legal basis for processing: Your consent according to Art. 6 (1) a GDPR. Data is transmitted: to the data controller Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The legal basis for the data transfer to Meta Platforms Ireland Ltd. is Your consent according to Art. 6 (1) a GDPR. This may also mean a transfer of personal data to a country outside the European Union. The data is transferred to the USA on the basis of Art. 45 GDPR in conjunction with the European Commission's adequacy decision C(2023) 4745, since the data recipient has committed to comply with the data processing principles of the Data Privacy Framework (DPF).

Google GTag

Personal data is processed when you visit this website. Processed data categories: data about the use of the website and the logging of clicks on individual elements. Purpose of processing: analysis of user behavior, Analysis of the effect of online marketing measures and Selection of online advertising on other platforms, which are automatically selected using real-time bidding based on user behavior. The legal basis for processing: Your consent according to Art. 6 (1) a GDPR. Data is transmitted: to the data controller Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The legal basis for the data transfer to Google Ireland Limited is Your consent according to Art. 6 (1) a GDPR. This may also mean a transfer of personal data to a country outside the European Union. The data is transferred to the USA on the basis of Art. 45 GDPR in conjunction with the European Commission's adequacy decision C(2023) 4745, since the data recipient has committed to comply with the data processing principles of the Data Privacy Framework (DPF). The privacy policy of Google Ireland Limited: https://business.safety.google/privacy/.

Google AdSense

Personal data is processed when you visit this website. Processed data categories: data about the use of the website and the logging of clicks on individual elements. Purpose of processing: analysis of user behavior, Analysis of the effect of online marketing measures and Selection of online advertising on other platforms, which are automatically selected using real-time bidding based on user behavior. The legal basis for processing: Your consent according to Art. 6 (1) a GDPR. Data is transmitted: to the data controller Google Ireland Limited, Google Building Gordon House Barrow St, Dublin, Dublin 4, Ireland. The legal basis for the data transfer to Google Ireland Limited is Your consent according to Art. 6 (1) a GDPR. This may also mean a transfer of personal data to a country outside the European Union. The data is transferred to the USA on the basis of Art. 45 GDPR in conjunction with the European Commission's adequacy decision C(2023) 4745, since the data recipient has committed to comply with the data processing principles of the Data Privacy Framework (DPF).

Embeddings

Google Maps

When accessing some sub-services of our website, additional personal services are processed. Processed data categories: technical connection data of the server access (IP address, date, time, requested page, browser information)data for creating usage statistics. Purpose of processing: Delivery of content provided by third parties and display interactive maps. The legal basis for processing: a legitimate interest that overrides the rights and freedoms of the data subject (Art. 6 (1) f GDPR). Legitimate interests: Interest in a user-friendly presentation. Data is transmitted: to the data processor Google Cloud EMEA Limited, 70 Sir John Rogerson's Quay, Dublin 2, EIR-D02 R 296 Dublin, Ireland (https://cloud.google.com). This may also mean a transfer of personal data to a country outside the European Union. The data is transferred to the USA on the basis of Art. 45 GDPR in conjunction with the European Commission's adequacy decision C(2023) 4745, since the data recipient has committed to comply with the data processing principles of the Data Privacy Framework (DPF).

YouTube

When accessing some sub-services of our website, additional personal services are processed. Processed data categories: technical connection data of the server access (IP address, date, time, requested page, browser information)data for creating usage statistics. Purpose of processing: Delivery of content provided by third parties, Selection of online advertising on other platforms, which are automatically selected using real-time bidding based on user behavior and transmission and display of video content. The legal basis for processing: Your consent according to Art. 6 (1) a GDPR. Data is transmitted: as joint controllers for Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. This may also mean a transfer of personal data to a country outside the European Union. The data is transferred to the USA on the basis of Art. 45 GDPR in conjunction with the European Commission's adequacy decision C(2023) 4745, since the data recipient has committed to comply with the data processing principles of the Data Privacy Framework (DPF).

Newsletter

Cleverreach

When you register for our newsletter, we process personal data. Processed data categories: data for creating usage statisticsdata about the use of the website and the logging of clicks on individual elementscontact information like Name and e-mail address. Purpose of processing: analysis of user behavior, Sending information and content optimization. The legal basis for processing: The legal basis of processing is your consent according to Art. 6 Abs. 1 lit. a GDPR.. Data is transmitted: to the data processor CleverReach GmbH & Co. KG,, Schafjückenweg 2, 26180 Rastede, Germany.

Right to object

You have the right to object to processing if your personal data are processed based on legitimate interests. We will then cease the processing carried out on this basis, unless there are compelling and legitimate reasons for us to do so. You have the right to object to the processing of your personal data for the purpose of direct marketing. In this case, we will cease the processing of your personal data for the purpose of direct mail. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

Right to withdraw

You have the right to withdraw your consent at any time by changing the settings at Privacy settings. If you have given your consent to receipt of advertising by email, you may withdraw your consent by clicking the unsubscribe link. In this case, we will cease the processing operations, unless there is any other legal basis. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

Other rights

You have the right to access to, rectification, erasure and restriction of processing of personal data. You have also the right to data portability if the processing of your personal data is based on your consent or on a contract concluded with you. You have also the right to lodge a complaint with the supervisory authority. If you need more information on the supervisory authorities in the European Union, click here.

Data protection notice 

This privacy policy informs you about how your personal data is processed. The policy is based on the applicable provisions of the Swiss Data Protection Act (DSG) and is governed by Swiss law. 
 

Scope 

This privacy policy applies to you if you: 

  • are one of our customers or have a contractual relationship with us; 

  • are an accompanying passenger of one of our customers;  

  • express an interest in our products or services and, in doing so, provide us with your personal data (e.g. at an agency, on our websites and apps, or at events) so that we can contact you. 

If you provide us with personal data relating to others, please ensure that these individuals are informed that you have done so and ask them to read this privacy policy. We will ensure that we do the same whenever possible (e.g. if we hold the contact details of the person concerned). 
 

Purpose of processing 

We primarily use your personal data to execute a contract to which you are a party or to take precontractual measures at your request. However, we may also process your personal data to fulfil our legitimate interests or those of third parties. 

In particular, your personal data will be processed if doing so is necessary to conclude or fulfil a contract so that we can: 

  • conclude a (travel) contract with you. We may process personal data to register you as a new customer, conclude a contract and fulfil it with you; 

  • provide you with products and services that you have purchased under the respective contract; 

  • carry out billing, invoicing and collection procedures; 

  • provide you with services related to the preparation and execution of a trip; 

  • for insurance purposes; 

  • offer consulting services; 

  • be able to provide assistance should any problems arise during your trip; 

  • provide you with access to our digital platforms. When you use our digital platforms, we may process personal data for a number of reasons (e.g. to manage your personal information or to access travel information); 

  • grant you access to our premises and facilities. We may process personal data when you visit our premises in order to carry out appropriate access and security checks; 

  • communicate with you. We may process personal data when you contact us, when you request information about our company or our services, or when the contract needs to be updated; 

  • respond to your enquiries and provide you with support; 

  • manage the termination of the contract. 

When we base a processing activity on a legitimate interest, we weigh that interest against your interests or fundamental rights and freedoms to ensure that they are proportionate. As part of our business operations as a travel provider, we also use your personal data to: 

  • further develop our products and services;  

  • improve cybersecurity, manage our platforms and websites, and ensure the continuity of our business operations; 

  • implement IT solutions; 

  • perform maintenance of IT systems during ongoing operations; 

  • improve the automation and efficiency of our operational processes and customer services (e.g. automatically filling in complaints, tracking your enquiries and improving your satisfaction based on personal data collected during our interactions with you, e.g. telephone recordings, emails or chats); 

  • enable the assertion of legal claims and defence in connection with legal disputes and official proceedings; 

  • organise competitions, promotions and conduct surveys related to customer opinions and satisfaction. 
     

Personal data processed 

In particular, we process the following personal data: 

  • Master data (name, address, date of birth, nationality) 

  • Contact details (telephone number, e-mail address) 

  • Booking data (travel destination, travel dates, accommodation preferences) 

  • Payment information (bank and credit card details) 

  • Health data (information about special health-related needs, e.g. allergies – if relevant to the trip, or illnesses and accidents occurring during a trip) 

  • Information about your habits and preferences in relation how you use our products and services (e.g. meal preferences) 

  • Marketing data (travel catalogue and newsletter orders) 

  • Data from our interactions with you, e.g. your comments, suggestions, needs collected during our personal exchanges with you at our locations and during telephone communications (call notes or call recordings), communications via email, chat, chatbot, exchanges on our social media and any complaints you may have made. Your connection and tracking data (e.g. collected via cookies for nonadvertising or analytical purposes on our websites), online services, other applications
     

Data origin 

We usually collect personal data directly from you. However, we may also collect it from other sources. 

Sometimes we collect data from public sources: 

  • Publications/databases provided by official authorities or third parties (e.g. the Swiss Official Gazette of Commerce or the Commercial Register); 

  • Websites/social media pages of legal entities or corporate customers that contain information you have disclosed (e.g. your own website or social media page); 

  • Public information, e.g. information from the media. 

We also collect personal data from third parties: 

  • from our customers (e.g. as accompanying passengers); 

  • from our business partners (e.g. tour operators, service providers abroad); 

  • from third parties such as credit reference agencies and fraud prevention agencies; 

  • from address research service providers who themselves are responsible for collecting the relevant information in a lawful manner. 
     

Disclosure of data 

In order to fulfil some of the purposes described in this privacy policy, in particular the execution of a trip; we may disclose your personal data to others. These may include the following: 

  • Our service providers in the destination country (e.g. agencies, tour guides, hotel reservations, transfer and excursion services), transport service providers (airlines, trains, car rental companies, etc.) and accommodation operators (hotels, hostels, etc.); 

  • Processors who provide services on our behalf (e.g. IT services, logistics, printing services, telecommunications, debt collection, consulting and sales, and marketing); 

  • Certain regulated professional groups such as solicitors, notaries or auditors, if this is necessary under certain circumstances (legal disputes, auditing, etc.), as well as our insurers; 

  • Advertising, market and opinion research partners; 

  • Partners that assist us in investigating criminal offences (e.g. fraud) and asserting, exercising or defending legal claims; 

  • Authorities and official bodies (e.g. tax authorities, embassies in the destination country) in the event of a legal or official obligation (e.g. retention obligations, visa applications, obtaining entry requirements). 
     

International transfer 

International transfers from Switzerland and the European Economic Area (EEA) to a non-EEA country (third country) may require the cross-border transfer of your personal data. In particular, you can expect your data to be transferred to the countries you are travelling to. However, it may also be transferred to countries in Europe, the USA and worldwide where the service providers and contractors we use are located. If the Swiss Federal Data Protection and Information Commissioner (FDPIC) or the European Commission has recognised that a third country offers an adequate level of data protection, your personal data may be transferred on this basis. 

For transfers to a third country in which the FDPIC and the European Commission does not recognise there to be an adequate level of protection, we either rely on an exemption applicable to the specific situation (e.g. if the transfer is necessary to fulfil our contract with you) or apply one of the following appropriate safeguards to ensure your personal data is protected: 

  • Standard contractual clauses approved by the FDPIC and the European Commission; 

  • Binding internal data protection regulations. 

 

To obtain a copy of these safeguards or to receive information on where they are available, you may submit a written request. 
 

Storage 

We will store your personal data for as long as is necessary to fulfil our contractual obligations and comply with applicable laws and regulations, or for any other period necessary to protect our legitimate business interests, such as proper accounting and responding to legal claims or official enquiries. 
 

Data security 

We use appropriate technical and organisational security measures to protect your personal data stored with us against manipulation, partial or complete loss and unauthorised access by third parties (e.g. encryption of data transmission, access controls, etc.). Our security measures are continuously improved in line with technological advancements. 

We take appropriate precautions to protect your data. The transmission of information via the Internet and other electronic means always involves certain security risks, and we cannot guarantee the security of information transmitted in this way.
 

Your rights 

You have rights that enable you to control how we process your personal data. Below is an explanation of your rights in relation to your personal data.  

If you wish to exercise any of the rights listed below, please submit a request by e-mail to eurotrek@eurotrek.ch, by sending a letter through the post to the following address:  Eurotrek AG, Lerzenstr. 21, 8953 Dietikon, Switzerland, or by using our contact form.  

If you have any questions about the use of your personal data as described in this privacy policy, please e-mail us at: eurotrek@eurotrek.ch 

 

You may request information about your personal data 

If you wish to obtain information about your personal data, we will provide you with a copy of the personal data you have requested and information about how it is processed. 

Your right to information may be restricted in cases where this is provided for by law.  

You may request that your personal data be corrected 

If you believe that your personal data is incorrect or incomplete, you may request that this personal data be amended or updated accordingly. In some cases, you may be required to provide supporting documentation. 

You may request that your personal data be deleted 

If you wish, you may request that your personal data be deleted, to the extent permitted by law. 

You may object to your personal data being processed on the basis of legitimate interests 

If you do not agree to your personal data being processed on the basis of legitimate interest, you may object on grounds relating to your individual situation. In such cases, please provide us with detailed information about the processing in question and the reasons for your objection. We will then cease processing your personal data unless there are compelling legitimate grounds for doing so or processing it is necessary for the establishment, exercise or defence of legal claims. 

You may object to your personal data being processed for direct marketing purposes 

You may object to your personal data being processed for direct marketing purposes at any time. This also applies to profiling insofar as it is related to this type of direct marketing. 

You may request that the processing of your personal data be restricted 

If you dispute the accuracy of the personal data we use or object to its processing, we will review or revise your request. You may request that we restrict the processing of your personal data while we review your request. 

You have rights against automated individual decision-making 

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or, similarly, affects you significantly. However, we may automate such a decision if it is necessary for the conclusion or execution of a contract with us, is permitted by law, or if you have given your consent. 

In any case, you have the right to challenge the decision, state your point of view and request the intervention of a competent person to review the decision. 

You may withdraw your consent 

In cases where processing is performed based on your consent, you may withdraw this consent at any time. 

You may request that some of your personal data be transferred 

You may request to receive a copy of the personal data you have provided to us in a structured, commonly used and machine-readable format. If it is technically feasible to do so, you may request that we transfer this copy to a third party. 

Complaining to the Swiss Federal Data Protection and Information Commissioner  

In addition to the rights mentioned above, you may lodge a complaint with the competent supervisory authority. In Switzerland, this is the Federal Data Protection and Information Commissioner (FDPIC), Feldeggweg 1, 3003 Bern, Switzerland. 
 

Updates 

In a world where technology is constantly evolving, we review this privacy policy regularly and update it as necessary. 

The version currently published on our website is the one that applies. We recommend that you view the latest version of this document online. We will inform you of any changes via our website or our usual communication channels.

You now receive special conditions when you book a trip.