General notice and mandatory­information

Designation of the responsible entity

The responsible party for data processing on this website is:

Levin Baumann
Essenweinstr. 34
76131 Karlsruhe
levin@herrlev.in

The responsible body decides alone or jointly with others on the purposes and means of the processing of personal data (e.g. names, contact details or similar).

What data is collected?

  • E-mail address
  • User name (pseudonym)
  • Display name
  • Profile picture
  • Social media handle of SSO providers
  • User ID of SSO providers
  • Authentication tokens from SSO providers
  • IP address
  • User agent (information about the client program used)
  • Location data (used to determine the next stop)
  • Travel data
    • Start/destination
    • Route
    • Departure/arrival time
    • Means of transport

Your rights

Revocation of your consent to data processing

Some data processing operations are only possible with your express consent. A revocation of your already given consent is possible at any time. An informal communication by e-mail is sufficient for the revocation. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to complain to the competent supervisory authority

As a data subject, you have the right to lodge a complaint with a supervisory authority in the event of a data protection violation. You can contact any data protection supervisory authority. The competent supervisory authority regarding data protection issues is the State Data Protection Commissioner of the Federal State of Baden-Württemberg.

Contact details of the State Data Protection Commissioner:

Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg
Postfach 10 29 32
70025 Stuttgart

oder:

Königstraße 10a
70173 Stuttgart

Telefon: 07 11/61 55 41-0
Telefax: 07 11/61 55 41-15

https://www.baden-wuerttemberg.datenschutz.de/kontakt-aufnehmen/

Right to data portability

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party. to third parties. The data will be provided in a machine-readable format. If you request that the data be transferred directly to another responsible party, this will only be done insofar as it is technically feasible.

Currently, it is possible to export the statuses you have created directly in a machine-readable format. For further requests, please contact us directly.

Right to information, correction, blocking, deletion

Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, the origin of the data, its recipients and the purpose of the data processing and, if applicable, a right to correction, blocking or deletion of this data.

Explicitly not deleted: Tweets and Toots that have been shared on external platforms.

If you decide not to delete the statuses when deleting your account, they will continue to exist anonymously and cannot be traced back to you. A subsequent deletion of the statuses is no longer possible after deletion of the account.

In this regard and also for further questions on the subject of personal data, you can contact us at any time via the contact options listed in the imprint.

SSL or TLS encryption

For security reasons and to protect the transmission of confidential content that you send to us as site operator, our website uses SSL or TLS encryption. TLS encryption. This means that data you transmit via this website cannot be read by third parties. You can recognize an encrypted connection by the "https://" address line of your browser and the lock symbol in the browser line.

Server log files

In server log files, the provider of the website automatically collects and stores information that your browser automatically transmits to us. These are:

  • Visited page on our domain
  • Date and time of the server request
  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • IP address

There is no merging of this data with other data sources. The legal basis for data processing is Art. 6 (1) lit. b DSGVO, which permits the processing of data for the fulfillment of a contract or pre-contractual measures; at the same time, there is a legitimate interest in processing here within the meaning of Art. 6 (1) lit. f DSGVO. As the operator of this website, we have a legitimate interest in keeping log files for the technically error-free and smooth provision of our services.

Registration on this website

To use certain functions, you can register on our website. The transmitted data is used exclusively for the purpose of using the respective offer or service. Mandatory information requested during registration must be provided in full. Otherwise, we will reject the registration.

In the event of important changes, for example for technical reasons, we will inform you by e-mail. The e-mail will be sent to the address given during registration.

The processing of the data entered during registration is based on your consent (Art. 6 para. 1 lit. a DSGVO). A revocation of your already given consent is possible at any time. An informal communication by e-mail is sufficient for the revocation. The legality of the data processing already data processing remains unaffected by the revocation.

We store the data collected during registration for the period that you are registered on our website. Your data will be deleted when the user account is deleted. Legal retention periods or rights remain unaffected; your data may therefore be processed for longer than specified or a request for deletion cannot be complied with if an exceptional circumstance of the DS-GVO applies, in particular one of the reasons listed in Art. 17 (3) DS-GVO.

Storage period of contributions and comments

Contributions and comments as well as related data, such as IP addresses, are stored. The content remains on our Website until it has been completely deleted or had to be deleted for legal reasons.

The storage of posts and comments is based on your consent (Art. 6 para. 1 lit. a DSGVO). A revocation of your already given consent is possible at any time. An informal notification by e-mail is sufficient for the revocation. Likewise, the deletion of the account constitutes a revocation. The legality of data processing operations that have already taken place remains unaffected by the revocation.

Your data may be processed for longer than specified or a request for deletion cannot be complied with if an exceptional circumstance of the GDPR applies, in particular one of the reasons listed in Art. 17 (3) GDPR.

Public visibility

Your posts and comments as well as parts of the collected data are usually publicly visible. However, you have the possibility to decide within the status and profile settings not to make certain data publicly visible. If other users follow such a private profile, the profile data is visible to these users. However, you decide yourself who can follow your private profile. This data processing takes place on the basis of your granted consent within the meaning of Art. 6 para. 1 lit. a DSGVO. Regarding the revocation and the storage period, we refer to the previous explanations.

Subscribing to posts and comments

As a user of our website, you can subscribe to posts and comments after registration. With a confirmation e-mail, we check whether you are the owner of the specified e-mail address. You can cancel the subscription function for contributions at any time via a link on the author's profile page. on the profile page of the author. Data entered to set up the subscription will be deleted in case of unsubscription. If this data has been transmitted to us for other purposes and elsewhere, it will still remain with us. The legal basis for the processing of this data is your consent within the meaning of Art. 6 (1) lit. a DSGVO.

Cookies

Our website uses cookies. These are small text files that your web browser stores on your terminal device. Cookies help us to make our offer more user-friendly, effective and secure.

Some cookies are "session cookies." Such cookies are deleted by themselves after the end of your browser session. In contrast, other cookies remain on your terminal device until you delete them yourself. Such cookies help us to recognize you when you return to our website.

With a modern web browser, you can monitor, restrict or prevent the setting of cookies. Many web browsers can be configured to automatically delete cookies when you close the program. Disabling cookies may result in limited functionality of our website.

The setting of cookies, which are necessary for the exercise of electronic communication processes or the provision of certain functions desired by you (e.g.shopping cart), is based on Art. 6 para. 1 lit. f DSGVO. As the operator of this website, we have a legitimate interest in the storage of cookies for the technically error-free and smooth provision of our services. Insofar as the setting of other cookies (e.g. for analysis functions) takes place, these will be treated separately in this data protection declaration.

Transmission of data to third parties

As it is the central function of Träwelling to provide data published on Träwelling on other social networks, all travel data (checkins) are automatically forwarded to the service provider selected by the user (Mastodon and/or Twitter) and published there. Träwelling may commission third parties with the collection, storage and use of personal data (commissioned processing). In this case, Träwelling remains the responsible party. These third parties are subject to the same data protection provisions as Träwelling. These transfers are made on the basis of your consent within the meaning of Art. 6 para. 1 lit. a DSGVO. Furthermore, Träwelling passes on personal data to authorities, other government agencies or private persons if there is an obligation to do so due to legal provisions, court decisions or official orders. There is a legal basis for this with Art. 6 para. 1 lit. c DSGVO.

Single sign-on

Single sign-on" or "signle sign-on logon"/"authentication" refers to processes that allow users to log on to our online service using an account with a provider or service provider for single sign-on procedures (e.g., a social network). The prerequisite for this is that the users are registered with the respective provider and are already logged in with the single sign-on provider and confirm the single sign-on registration via a button.

Authentication takes place directly with the respective single sign-on provider. In the course of such authentication, we receive a user ID with the information that the user is registered with the respective provider under this user ID and an ID that cannot be used by us for other purposes (so-called "user handle"). As well as, in the cases of Mastodon and Twitter, tokens that allow us to publish, read, manipulate and delete statuses in the respective social network. Whether additional data is transmitted to us depends on the single sign-on procedure used, on the data releases selected as part of the authentication process and also on which data users have released in the privacy or other settings of the user account with the single sign-on provider. Depending on the single sign-on provider and the user's choice, this can be different data, usually the e-mail address and the user name. The password entered with the provider as part of the single procedure is not visible to us, nor is it stored by us.

Users are asked to note that the data stored with us can be automatically matched with their user account with the single sign-on provider, but this is not always the case. If, for example, users' e-mail addresses change, they must change them manually in their user account with us.

We may use single sign-on, if agreed with users, as part of or prior to the performance of the contract, where users have been asked to do so, process it as part of consent, and otherwise use it based on the legitimate interests of us and the interests of users in an effective and secure login system.

If users decide they no longer wish to use the link at the single sign-on provider for the single sign-on procedure, they must remove this link within their user account at the single sign-on provider and in their settings on our site. If users wish to delete their data from us, they must cancel their registration with us.

  • Types of data processed: inventory data (e.g. names, addresses), contact data (e.g. email, phone numbers).
  • Data subjects: Users (e.g. website visitors, users of online services).
  • Purposes of processing: contractual performance and service, registration procedure.
  • Legal grounds: consent (Art. 6 para. 1 p. 1 lit. a DSGVO), contract performance and pre-contractual requests (Art. 6 para. 1 p. 1 lit. b. DSGVO), legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

Services used and service providers:

OpenStreetMap/Carto

This site uses the open source mapping tool "OpenStreetMap" (OSM) via an API. The provider is the OpenStreetMap Foundation. To use the functions of OpenStreetMap, it is necessary to store your IP address. This information is usually transferred to a server of OpenStreetMap and stored there. The provider of this site has no influence on this data transmission. The use of OpenStreetMap is in the interest of an appealing presentation of our online offers and an easy location of the places indicated by us on the website. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. More information on the handling of user data can be found in the privacy page of OpenStreetMap and here http://wiki.openstreetmap.org/wiki/Legal_FAQ.

To display map content, we use the map service Carto. Träwelling shares with the map service which map tiles to load. The map service can be reached at the following address: CARTO, Attention: Legal, 201 Moore Street, Brooklyn, NY 11206, United States of America, privacyshield@carto.com. For more information, please see the provider's privacy policy: https://carto.com/privacy/.

Source: Data protection configurator from mein-datenschutzbeauftragter.de