Data protection and security are very important to us. Here you can find out more about our security provisions.
General Data Protection
All data that we receive from you is processed in accordance with the provisions of the Swiss data protection law (DSG). If you provide us with your data, you consent to the processing of this data by Globetrotter Travel Service AG for marketing purposes, to maintain existing and future client relationships, and for purposes that are explicitly indicated at the time of data gathering or that are clearly associated with the provision of your data.
We also conform with EU legislation with regard to the GDPR in order to regulate the use data pertaining to users of our website.
Use of the Live Chat System SnapEngage
On this website, using technologies from SnapEngage LLC, 1919 14th St., Suite 505, Boulder, CO 80302, USA (www.snapengage.com), anonymised data is gathered and saved for the purpose of web analysis and to operate the live chat system, which is used to process live support queries. This anonymised data is used to create a user profile with a pseudonym. Cookies may be used for this purpose. Cookies are small text files that are saved locally in the cache of the internet browser of visitors to our website. Cookies allow the internet browser to be recognised again. If the information gathered is of a personal nature, processing takes place in accordance with art. 6 (1) lit. f GDPR, based on our legitimate interest in effective customer service and the statistical analysis of user behaviour for optimisation purposes.
Data gathered using SnapEngage will not be used without the explicit consent of the data subject to identify users of this website personally, and will not be merged with personal data pertaining to the bearer of the pseudonym. To prevent the saving of SnapEngage cookies, you can change the settings of your internet browser so that no more cookies will be deposited on your computer in the future, and that any previously installed cookies will be deleted. Disabling all cookies may, however, compromise certain functions on our website. You can object to the gathering and saving of data for the purpose of creating a pseudonymised user profile with immediate effect by sending us an informal objection to the e-mail address provided below for the attention of the data protection officer.
Google Web Fonts
This website uses so-called Web Fonts for the uniform representation of typeface, which are provided by Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). When requesting a page, your browser loads the necessary Web Fonts in your browser cache, so that text and typeface are correctly displayed. To do this, your browser must establish a connection to Google’s servers, but Google is not informed that a website was requested via your IP address. Google Web Fonts is used in the interest of providing uniform and attractive representation of our website. This constitutes a legitimate interest pursuant to art. 6 (1) lit. f GDPR. If your browser does not support Web Fonts, a standard font will be used by your computer.
Google LLC, whose registered headquarters are located in the USA, is certified under the “Privacy Shield” European data protection framework, which safeguards the uniformity of data protection standards within the EU. You can find more information regarding Google Web Fonts at https://developers.google.com/fonts/faq and https://www.google.com/policies/privacy/
This website uses Google Maps API, a map service provided by Google Inc. “Google”, which allows an interactive map to be displayed and journey routes to be created. Google Maps is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. By using this website, you declare that you agree to the gathering, processing and use of data that is automatically gathered by Google Inc., its representatives, and third parties.
You can find the user conditions for Google Maps here.
To analyse and optimise our website, we use the following technologies: Google Analytics from Google Inc., headquartered in Mountain View, California, USA (hereafter “Google”). Google is certified under the Swiss-U.S. Privacy Shield framework.
Google uses so-called cookies, which are saved on your computer. The tracking data gathered using cookies and regarding your use of this website is sent to Google servers in the USA and saved there. Your IP address is also transferred, and anonymised by Google before saving, so that it cannot be attributed to you. Google uses the _anonymizeIp() method for this purpose.
The following data regarding use of our website can be saved and analysed anonymously and exclusively for statistical purposes: the web pages visited and the order in which they were visited, the operating system and browser used, the date and time of the website request, the address of the website viewed previously (if you reach our website by following a link on the website previously visited), and information regarding the origin. Google can extend this list and, where appropriate, transfer information to third parties, if this is lawful or if the third party processes this data on behalf of Google.
Technologies for Advertising Purposes
This website uses the following technologies for advertising purposes: Google AdWords Conversion Tracking and Google Remarketing, from Google.
In the case of Google AdWords Conversion Tracking, a cookie is used for the purposes of performance determination, after you click on an AdWords advert. Within the context of Google Remarketing, the surfing behaviour of website visitors is gathered in an anonymised form using cookies, and used to adapt advertising to your interests. Under no circumstances is personal data that could be used to determine your identity gathered or saved using these technologies. We also use Google’s DoubleClick cookie (Pixel TAG), to allow for the remarketing of products like AdWords in the Google Display Network. In these cookies, information including the time of your visit is saved, as well as information allowing us to establish whether this is your first visit and information regarding websites that have referred you to this website.
Consenting and Objecting to the Gathering and Saving of Data
By using this website, you declare that you agree to the processing of your personal data in the manner and for the purposes described. You can object to the gathering and saving of data at any time with immediate effect. If you would like to deactivate Goole Analytics, you can find the browser add-on at http://tools.google.com/dlpage/gaoptout?hl=de. You can view and deactivate the use of Google cookies for personalised advertising at www.google.com/settings/ads/onweb.
You can find more information about use-based online advertising and online data protection at www.youronlinechoices.com/ch-de/.
Furthermore, you can prevent the installation of cookies altogether using the relevant settings in your browser. We would like to make you aware, however, that if you do this, certain functions of this website will no longer function properly.
Please note that the internet is a worldwide open network. If you transmit personal data over the internet, you do so at your own risk.
The personal data transmitted by you is protected using Secure Socket Layer (SSL), which provides 256-bit encryption. Despite our comprehensive technical and organisational security measures, it is possible for data to become lost or intercepted and/or manipulated by unauthorised persons. Globetrotter Travel Service AG has adopted suitable technical and organisational security measures to prevent this within Globetrotter Travel Service AG’s systems. Your computer, however, is located outside of the security environment that is controlled by Globetrotter Travel Service AG. As a user, you are obliged to inform yourself regarding necessary security measures and to adopt suitable measures accordingly. Globetrotter Travel Service AG shall accept no liability for damages that you may suffer due to the loss or manipulation of data.
Secure Socket Layer (=SSL)
Secure Socket Layer is a protocol that ensures secure data transfer online. The majority of browsers support this method. SSL uses the public key method, whereby data that is coded with a publicly available key can only be decoded using a completely private key. Most browsers show whether a connection is secured or unsecured using a key or padlock.
The Legal Basis of Processing
Art. 6 (I) lit. a GDPR serves our company as the legal basis for the processing operations that we carry out, for which we obtain your permission for a certain processing purpose. If the processing of personal data is carried out to fulfil a contract whose contracting parties include the data subject (as is the case with processing operations that are necessary to carry out the delivery of goods or the provision of another service or return service, for example), then the processing operation is based on art. 6 I lit. b GDPR. This is also the case for processing operations that are required to carry out contractual measures; for example, in the case of queries regarding our products or services. If our company is subject to a legal obligation that necessitates the processing of personal data (for example, to fulfil fiscal duties), then the processing operation is based on art. 6 (I) lit. c GDPR. In rare cases, the processing of personal data can be required in order to protect the vital interests of the data subject or a different natural person. This would be the case, for example, if a visitor to our company was to suffer an injury, necessitating the passing on of his/her name, age, health insurance details and any other vital information to a doctor, hospital or other third party. In such cases, the processing operation would be based on art. 6 (I) lit. d GDPR. In any case, processing operations may be based on art. 6 (I) lit. f GDPR. This forms the legal basis for processing operations that are not covered by any of the above-mentioned legal bases, if the processing operation is required to safeguard a legitimate interest of our company or of a third party, if the interests, basic rights and basic freedoms of the data subject do not prevail. Such processing operations are afforded to us in particular, because they were particularly highlighted by the European legislator. He expressed the view that a legitimate interest could be adopted if the data subject is a customer of the data controller (recital 47, sentence 2 GDPR).
Handling Contact Details
If you enter into contact with us, we save your data so that we can deal with you query, if this is necessary for the processing of your query, and keep it for no longer than the legally allowed period of retention. Data is not transferred to third parties, unless this is required in order to resolve your query.
Legitimate interests in processing, which are pursued by the data controller or by a third party
If the processing of personal data is based on art. 6 (I) lit. f GDPR, our legitimate interest is the undertaking of our business activity for the benefit of the wellbeing of all of our employees and shareholders.
The Duration for which Personal Data will be Saved
The criterion that is used to determine the duration for which personal data will be saved is the respective legal retention period. Once this period has expired, the data will be routinely deleted unless it is still required to fulfil or initiate a contract.
The Extent and Purpose of the Gathering, Processing and Use of Personal Data
a.) When visiting www.globetrotter.ch
When you visit our website, our servers will temporarily save every access in a log file. The following data is gathered without your assistance and saved by us until it is automatically deleted after a maximum period of twelve months:
the IP address of the computer sending the request
the name and the URL of the file requested
the website from which access takes place
the operating system of your computer and the browser you use
the country from which you gained access and the language settings of your browser
the name of your Internet access provider
The gathering and processing of this data takes place in order to allow use of our website (establishment of a connection), to permanently ensure the security and stability of the system, to enable the optimisation of our website, and for internal statistical purposes. Therein lies our legitimate interest in the processing of data pursuant to art. 6 (1) lit. f GDPR. Furthermore, your IP address will be analysed for statistical purposes when accessing the network infrastructure of www.globetrotter.ch.
b.) When subscribing to our newsletter
On our website, you have the option of subscribing to our newsletter. To do this, registration is required. Within the scope of registration, the following data must be provided:
Name and surname
The above-mentioned data is required for the data processing operation.
By registering, you grant us consent to process the data that you have provided in order to regularly send the newsletter to the you have address provided, as well as for the statistical analysis of user behaviour and the optimisation of the newsletter. Pursuant to art. 6 (1) lit. a GDPR, this consent constitutes our legal basis for the processing of your e-mail address. We are entitled to engage third parties in the technical processing of advertising measures, and are also entitled to pass on your data for this purpose (c.f. point 3 below).
At the end of every newsletter you will find a link that will allow you to unsubscribe from the newsletter at any time. If you decide to unsubscribe, you are free to inform us of your reason for unsubscribing. Once you have been unsubscribed, your personal data will be deleted. Any further processing operations will be carried out exclusively in an anonymised form to optimise our newsletter.
The Passing On of Data to Third Parties
We only pass your data on if you have given your express permission, if we are legally obliged to do so, or if this is required to exercise our rights – especially to enforce claims resulting from the relationship between you and Globetrotter Travel Service.
In addition, we pass your data on to third parties if this is required within the context of use of the website for the provision of the services you desire, or to analyse your user behaviour. If this is required for the purposes named in sentence 1, data can also be passed on to third parties located abroad. If the website contains links to the websites of third parties, Globetrotter Travel Service no longer has any influence over the gathering, processing, saving or use of personal data by third parties if you click on the link, and thus accepts to responsibility in this regard.
The Transfer of Personal Data Abroad
Social Media Plug-Ins
On this website, the social plug-ins indicated below are used. Plug-ins are, by default, disabled on our website, and thus send no data. By clicking on one of the social media buttons, you can activate the respective plug-in.
If these plug-ins are activated, your browser establishes a direct connection with the servers of the respective social network, as soon as you request our website. The content of the plug-in is communicated directly to your browser from the social network, and integrated into the website by your browser. Plug-ins can be deactivated again with a click.
You can find more information in the respective data protection declarations of Facebook, Twitter, LinkedIn, Xing, Pinterest and Google.
a.) Facebook social plug-ins
On this website, social plug-ins from Facebook are used to make our website more personal. To this end, we use the “LIKE” and “SHARE” buttons. These are provided by the American company Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA.
Through the integration of plug-ins, Facebook is informed that your bowser has requested the corresponding page of our website, even if you do not possess a Facebook account or are not logged in to Facebook. This information (including your IP address) is transmitted by your browser directly to Facebook’s servers in the USA, and saved there.
If you are logged in to Facebook, Facebook can directly match visits to our website with your Facebook account. If you interact with plug-ins – for example, the “LIKE” button or the “SHARE” button – the corresponding information is also sent directly to Facebook’s servers and saved there. The information is also published by Facebook and, depending on your personal privacy settings on the Facebook portal, made visible to other users.
Facebook can use this information for the purposes of advertising, market research, and user-orientated design of the Facebook website. To this end, Facebook creates user profiles, interest profiles and relationship profiles, to evaluate your use of our website in regards to the adverts displayed to you on Facebook, to inform other Facebook users about your activity on our website, and to provide services linked to the use of Facebook, for example.
If you do not want Facebook to attribute data gathered via our website to your Facebook account, you must ensure that you have logged out of Facebook before visiting our website.
To learn more about the purpose and extent of data gathering and the further processing and use of data by Facebook, as well as your rights in the matter and the settings available to protect your privacy, please view Facebook’s data protection notice.
b.) Twitter social plug-ins
On our website, plug-ins from the short messaging network Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA have been integrated. You can recognise the Twitter plug-in (tweet button) by the Twitter logo on our website. You can find an overview of the tweet button here.
If you have activated social plug-ins, a direct connection is established between your browser and the Twitter server. Twitter is informed that you have visited our website with your IP address. If you click on the “tweet button” while you are logged in to your Twitter account, you can post a link to content on our website onto your Twitter profile.
If you do not want Twitter to attribute your visit to our website to your profile, please log out of your Twitter account before visiting our website.
c.) Google Plus social plug-ins
Our website uses the “+1” interface from the social network Google Plus, which is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043,USA. The button can be recognised by the “+1” symbol on a white or coloured background.
If you request a page on our website that contains such an interface, your browser establishes a direct connection with Google’s servers if you have activated social plug-ins. The content of the “+1” interface is transferred by Google directly to your browser and integrated into the website by your browser. We therefore have no influence over the extent of the data that Google gathers via the interface. According to Google, without clicking on the interface, no personal data is gathered. Only in the case of members who are logged in will such data (including IP address) be gathered and processed.
To learn more about the purpose and extent of data gathering and the further processing and use of data by Google, as well as your rights in the matter and the settings available to protect your privacy, please view Google’s data protection notice.
If you are a Google Plus member and do not want Google to use our advertising to gather information about you and to combine this with your membership data that Google has already saved, you must log out of your Google Plus account before visiting our website.
d.) Pinterest social plug-ins
Our website uses the pinterest.com service. Pinterest.com is operated by Pinterest Inc., whose registered headquarters are located at 808 Brannan St, San Francisco, CA 94103, USA. Through the integrated “Pin it” button on our website, Pinterest is informed that you have requested the corresponding page of our website. If you are logged in to Pinterest, Pinterest can attribute this visit to our website to your Pinterest account, and thus combine the data. By clicking on the “Pin in” button, data that is transmitted is saved by Pinterest. To learn more about the purpose and extent of data gathering and the further processing and use of data by Pinterest, as well as your rights in the matter and the settings available to protect your privacy, please view Google’s data protection notice, available at http://pinterest.com/about/privacy/.
If you are a Pinterest member and do not want Pinterest to use our advertising to gather information about you and to combine this with your membership data that Pinterest has already saved, you must log out of your Pinterest account before visiting our website.
e.) YouTube videos
We have integrated YouTube videos into our website, which are saved at www.youtube.com and can be played directly on our website. These are all integrated in “privacy-enhanced mode”, which means that no data about you as a user is sent to YouTube if you do not play these videos. Only if you play the videos will the data indicated in the paragraph below be transferred. We have no influence over this data transfer.
f.) XING social plug-ins
On our website we use plug-ins from the social network XING.com. This is a service provided by XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany.
In the case of each request for our website, which features this component, this plug-in ensures that your browser downloads a correct representation of the component.
g.) LinkedIn social plug-ins
Our website uses the LinkedIn service. LinkedIn is operated by LinkedIn Corporation, whose registered headquarters are located at 2029 Stierlin Court, Mountain View, CA 94043, USA. If you use the plug-in button, this component ensures that your browser downloads a correct representation of the LinkedIn component.
LinkedIn therefore does not discover which concrete pages of our website are being visited. If you click on the LinkedIn “Recommend Button” while you are logged in to your LinkedIn account, you can post a direct link to the content of our pages to your LinkedIn profile. In so doing, LinkedIn is able to attribute your visit to our website to your LinkedIn user account.
We have no influence over the data that LinkedIn gathers or over the extent of the data gathered by LinkedIn through this process. We also do not learn the content of the data transferred to LinkedIn. To learn more about the data gathering carried out by LinkedIn, as well as your rights in the matter and the settings available to you, please view LinkedIn’s data protection notice. This is accessible at www.linkedin.com/legal/privacy-policy
Information regarding data transfers to the USA
For the sake of completeness, we would like to inform users whose abode or registered location is within Switzerland that in the USA, surveillance methods are used by US authorities that enable the general saving of all personal data belonging to all persons whose data is transferred from Switzerland to the USA. This takes place without discrimination, limitation or exception in pursuit of the following aims and without an objective criterion, which allows US authorities to access the data and to limit its use for highly specific and strictly limited purposes, which can justify both access to this data and its usage. Furthermore, please note that there no judicial redresses in the USA for Swiss data subjects, to allow you to gain access to the data in question or to obtain the correction or deletion of this data, and no effective legal protection against the access rights of US authorities. We would like to make data subjects aware of this legal and factual situation, so that they can make an informed decision as to whether to consent to the use of their data.
Retention of data
We only save personal data for as long as this is required in order: (i) to employ the tracking, advertising and analysis services indicated above within the context of our legitimate interest; (ii) to execute the services named above, for which you have expressed a desire or consent (e.g. our newsletter); or (iii) to comply with our legal obligations.
Contractual data is retained for a longer period, as this is stipulated by legal retention requirements. Retention requirements that oblige us to retain data arise out of financial accounting provisions and fiscal provisions. According to these provisions, business communication, completed contracts and accounting receipts must be retained for up to 10 years. If we no longer require this data to provide services for you, the data will be blocked. This means that the data may still be used for accounting and fiscal purposes.
The right to complain to a regulatory authority
Without prejudice to any other administrative or legal redress, you have the right to make a complaint to a regulatory authority, especially in the member state in which you reside, if you are of the opinion that the processing of personal data pertaining to you violates the GDPR.
The regulatory authority to whom you make a complaint will inform the complainant about the status and outcome of the complaint, including the possibility of a judicial redress in accordance with art. 78 GDPR.