Privacy Policy

1. General notes and mandatory information

Privacy policy

The protection of your personal data is taken very seriously. Your personal data will be treated confidentially and in accordance with the statutory data protection regulations and this privacy policy. Your data will never be passed on to third parties.

When you use this web application, various personal data is collected. Personal data is data that can be used to identify you personally. This privacy policy explains what data is collected and what it is used for.

Please note that data transmission over the Internet (e.g. when communicating by email) may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible.

Note on the responsible party

The responsible party is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, email addresses, etc.).

The responsible party for data processing on this website is:

Nathalie Giancaspro
Email: info@natgian.com

Storage duration

Unless a more specific storage period has been specified in this privacy policy, your personal data will remain stored until the purpose for data processing no longer applies. If you assert a justified request for deletion or revoke your consent to data processing, your data will be deleted.

Information, correction and deletion

You have the right to free information about your stored personal data, its origin and recipients and the purpose of the data processing and, if necessary, a right to correction or deletion of this data at any time within the framework of the applicable legal provisions.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content that you send. You can recognize an encrypted connection by the fact that the address line of the browser changes from „http://“ to „https://“ and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit cannot be read by third parties.

2. Data processing

Data collection on this website

How is your data collected?

You must create a user account to use certain parts of this web application (upload hiking trails information and pictures, write reviews or bookmark trails). The following data is collected when you register a user account: username, password and email address.

Other data is collected automatically or with your consent by the IT systems when you visit the website. This is primarily technical data (e.g. internet browser, operating system or time of page view). This data is collected automatically as soon as you visit this website.

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. You can find the operator's contact details in the "Note on the responsible party" section of this privacy policy.

What is the data used for?

The data is used to activate and authenticate the user. Another part of the data is collected to ensure that the website is provided without errors.

What rights do you have regarding your data?

You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. If you have given your consent to data processing, you can revoke this consent at any time for the future. You also have the right to request the restriction of the processing of your personal data under certain circumstances. You also have the right to lodge a complaint with the competent supervisory authority.

3. Plugins and tools

Google Fonts

This website uses Google Fonts, which are provided by Google, for the uniform display of fonts. When you access a page, your browser loads the required fonts into your browser cache in order to display texts and fonts correctly.

For this purpose, the browser you are using must connect to Google's servers. This informs Google that this website has been accessed via your IP address. The use of Google Fonts is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the uniform presentation of the typeface on its website. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.

If your browser does not support Google Fonts, a standard font will be used by your computer.

You can find more information about Google Fonts at https://developers.google.com/fonts/faq and in Google's privacy policy: https://policies.google.com/privacy?hl=en.

The company is certified in accordance with the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active

Font Awesome

This site uses Font Awesome for uniform display of fonts and symbols. Provider is Fonticons, Inc, 6 Porter Road Apartment 3R, Cambridge, Massachusetts, USA.

When you call up a page, your browser loads the required fonts into its browser cache in order to display texts, fonts and symbols correctly. For this purpose, the browser you are using must connect to Font Awesome's servers. This enables Font Awesome to know that your IP address has been used to access this website. The use of Font Awesome is based on Art. 6 para. 1 lit. f DSGVO. I have a legitimate interest in the uniform presentation of the typeface on my website. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) as defined by the TTDSG. The consent can be revoked at any time.

If your browser does not support Font Awesome, a default font is used by your computer.

For more information about Font Awesome, please see Font Awesome's privacy policy at: fontawesome.com/privacy

Cloudinary

This website uses the cloud service Cloudinary.

Cloudinary also processes your data in the USA, among other places. Please note that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This may entail various risks for the legality and security of data processing.

Cloudinary uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 DSGVO) as the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there. Standard Contractual Clauses (SCCs) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Cloudinary undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=en

You can find more information on the standard contractual clauses at Cloudinary at https://cloudinary-res.cloudinary.com/image/upload/Cloudinary-Customer-Data-Processing-Addendum-DPA-November-2020.pdf.

You can find out more about the data processed through the use of Cloudinary in the Privacy Policy on https://cloudinary.com/privacy.

4. Final clauses

This privacy policy may be amended and supplemented at any time. Information about such amendments and additions will be provided in an appropriate form, in particular by publishing the current privacy policy on the website.

Last modified: 13.11.2023