Privacy policy

Since 25 May 2018, the uniform requirements of the EU General Data Protection Regulation ( GDPR) have been in force throughout Europe in the area of data protection. In the following privacy policy, we inform you about the processing of personal data carried out by Stern und Kreisschiffahrt GmbH (“Stern und Kreis” and/or “we”) in accordance with the GDPR and the Federal Data Protection Act (BDSG 2018) when using our websites under www.sternundkreis.de .

We take the protection of your data very seriously, especially the protection of your personal data. This is all data that can be used to identify you personally.

The data processing on our websites is carried out by Stern und Kreis. As a rule, it is possible to use our websites without providing any personal data. Insofar as personal data is collected, this is always done on a voluntary basis. Your data will not be passed on to third parties without your explicit consent.

1. Responsible for data processing on this website

Stern und Kreisschiffahrt GmbH
Puschkinallee 15
12435 Berlin
E-mail: info@sternundkreis.de

Data protection supervisor:
Detlef Hegemann Verwaltungs- und Beteiligungs GmbH
Mr. Andreas Reuter
Arberger Hafendamm 16
28309 Bremen
E-mail: andreas.reuter@hegemann.de
Phone: +49 421 41 07 0
Fax: +49 421 41 07 198

2. Collection and storage of personal data as well as the nature and purpose of their processing

When you visit our website www.sternundkreis.de , information is automatically sent to the server of our website by the browser used on your device. This information is temporarily stored in a so-called log file:

The aforementioned data is processed by us for the purpose of ensuring a smooth connection and comfortable use of our websites, an evaluation of system security and stability as well as for other administrative purposes.

The legal basis for data processing is Art. 6 para. 1 p. 1 lit. f GDPR. Our legitimate interest arises from the aforementioned purposes of data collection. Under no circumstances will we use the data collected for the purpose of drawing conclusions about your person.

In principle, it is not necessary to provide personal data for the use of our online offers/online shops. It will not be passed on to third parties for commercial or non-commercial purposes. Personal data, on the other hand, will only be collected if you voluntarily provide it to us. This can be done, for example, in the context of a reservation or ordering goods.

3. Use and disclosure of personal data

Your personal data will not be transferred to third parties for purposes other than those listed below. We will only share your personal information with third parties if:

If you commission us to provide a service or send you goods, your personal data will only be used to the extent necessary for the provision of the service or the performance of the contract without your separate consent. This includes, in particular, the disclosure of your data to our catering service provider Optimahl Catering GmbH as well as credit card companies or other services used to provide the service or contract processing.

Once the contract has been fully processed, your data will be blocked for further use and deleted after the expiry of the retention periods under tax and commercial law, unless you have expressly consented to further use.

Unless there are necessary reasons in connection with a business transaction, the user of the website can revoke his consent to the use of the personal data provided at any time with effect for the future.

The deletion of the stored personal data takes place if the user of the website and/or the customer revokes their consent to their storage, if their knowledge is no longer necessary to fulfil the purpose pursued by the storage or if their storage is inadmissible for other legal reasons. Data for billing and accounting purposes will not be affected by a deletion request.

4. Contact form

To get in touch with us, we offer you a contact form on our website. It is necessary to provide your e-mail address in order to be able to answer your request. Further information can be provided voluntarily.

The associated processing of the data entered by you in the contact form takes place on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. All you need to do is send an informal message by e-mail to the responsible office on our website. The lawfulness of the data processing operations carried out until the revocation remains unaffected by the revocation.

The data you enter in the contact form will remain until you request us to delete it, revoke your consent to storage or the purpose for which the data is stored no longer applies (for example, after your request has been processed). Mandatory statutory provisions – in particular retention periods – remain unaffected.

To protect the transmission of your data entered in the contact form, our websites use SSL encryption. (See point 12. Data security)

5. Use of cookies

This website uses cookies.

Stern und Kreisschiffahrt GmbH uses cookies to personalize content and advertisements, to be able to offer functions for social media and to analyze traffic to our website. We also share information about your use of our website with our social media, advertising and analytics partners. Our partners may combine this information with other information that you have provided to them or that they have collected as part of your use of the Services. Users of Microsoft browsers (Edge + IE11) are currently unable to use all functions in the shop for technical reasons when deactivating non-essential cookies, please switch to other browsers. Cookies are small text files used by websites to make the user experience more efficient.

By law, we may store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies, we need your permission.

This site uses different types of cookies. Some cookies are placed by third parties that appear on our sites.

You can change or withdraw your consent at any time from the cookie statement on our website.

Changing Cookie Settings

Find out more about who we are, how to contact us and how we process personal data in our Privacy Policy.

We use cookies on various pages to make the visit to our websites attractive and to enable the use of certain functions as well as to record the use of our websites statistically.

Cookies are small text files that are automatically created by your browser and stored on your device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your device and do not contain viruses, Trojans or other malware. The cookie stores information that arises in connection with the specific device used. However, this does not mean that this gives us direct knowledge of your identity.

Most of the cookies we use are deleted at the end of the browser session (so-called session cookies). Other cookies remain on your computer and enable us to recognise your computer on the next visit (so-called persistent or cross-session cookies). In particular, these cookies are used to make our offer more user-friendly, effective and secure.

Of course, you can set up your browser so that it does not store our cookies on your hard drive. The help function in the menu bar of most web browsers will tell you how to prevent your browser from accepting new cookies, how to have your browser notify you when you receive a new cookie, or how to delete all cookies you have already received and block them from all others.

6. Evaluation of the website/web analysis

AWStats

Evaluations of our website are carried out via the freeware module AWStats, among others. AWStats uses so-called cookies, i.e. text files that are stored on your computer and enable an analysis of the use of the website by the user of the website and/or customers. For more information about AWStats, please visit: http://awstats.sourceforge.net/.

For this purpose, the information generated by the cookie about the use of this website as well as the IP address of the user of the website and/or customer are stored on the server of the company IT-Direkt Business Technologies GmbH, Gustav-Meyer-Allee 25, 13355 Berlin, which has been commissioned by the operator of the website for this purpose. The aforementioned data will only be used for statistical purposes. In this way, no movement profiles are created for the individual user of this website. IT Direkt Business Technologies GmbH will use this information to evaluate the use of the website, to compile reports on website activity for website operators, to provide other services related to website activity and internet usage.

Under no circumstances will the aforementioned IT company associate your IP address with any other data stored on its servers. Users of the website can prevent the installation of cookies by selecting the appropriate settings in their browser software. Please note, however, that in this case it may not be possible to use all functions of this website to their full extent. By using our websites, the customer or user agrees to the processing of the data collected about him by the operator of this website or by the aforementioned IT company commissioned with the evaluation in the manner and for the purpose described above.

DOUBLECLICK

Our website uses the services of DoubleClick, a web analytics service provided by Google Ireland Limited (Gordon House, Mountain View, Barrow St Dublin 4 Ireland) to present you with advertisements that are relevant to you. As a result, anonymised data is collected from you in order to be able to provide information on the basis of Art. 6 para. 1 lit. f GDPR to optimize our site offering.

If you do not want DoubleClick to continue to collect anonymized information from you, please click Deactivate. You can then deactivate personalized advertising in Google’s settings, so that previously stored information is deleted and further information collection is prevented.

THE ADEX

We use the DMP tag of the company The Adex GmbH on behalf of QWERTZ Media GmbH for the determination, analysis and evaluation of usage and movement data on our website. The provider is The ADEX GmbH (Rotherstrasse 22, 10245 Berlin, Germany). This provider processes data only as a processor in accordance with the instructions of QWERTZ Media GmbH and not for its own purposes. For more information, please refer to the provider’s privacy policy.

At the same time, you can object to the collection or evaluation of your data by downloading and saving the opt-out cookie available there. Please note that data collection is only prevented on the respective client. If you use several different devices, you will have to repeat this opt-out.

GOOGLE ANALYTICS

Our website uses Google Analytics, a web analytics service provided by Google Inc., (1600 Amphitheatre Parkway Mountain View, CA 94043, USA; “Google”). Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and enable an analysis of your use of this website. The information generated by cookies about your use of this website is usually transmitted to a Google server in the USA and stored there. Google Analytics cookies are stored on the basis of Art. 6 para. 1 lit. f GDPR. A legitimate interest in analysing the behaviour of users is based on this in order to optimise both the site offer and potential advertising.

Of course, the function of IP anonymization is activated. As a result, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before it is transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. Google will use this information to evaluate your use of this website, to compile reports on the activities on this website and to provide other services related to the use of this website and internet usage to site operators.

This website specifically uses the Demographics feature of Google Analytics. This makes it possible to generate reports that contain information about the age, gender, and interests of site visitors. This data comes from interest-based advertising from Google, as well as third-party visitor data. This data cannot be assigned to a specific person. You can disable this feature at any time via the ad settings in your Google Account or generally prohibit the collection of your data by Google Analytics as described below. The data you send and link to cookies, user IDs (e.g. user ID) or advertising IDs will be automatically deleted after 14 months. The deletion of data that has reached its retention period takes place automatically once a month. For more information on Google’s terms of use and data protection, please visit Google Analytics and Google Privacy Policy & Terms of Use.

You can prevent the storage of cookies by changing the settings in your browser software. -However, we would like to point out that it may not be possible to use all functions of this website to their full extent. You can also prevent the collection of data generated by cookies and related to your use of this website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser add-on for Google Chrome. Such opt-out cookies prevent the future collection of your data when you visit websites. To prevent collection across different devices, you must opt-out on all systems you use.

As the site operator, we have concluded a contract with Google for commissioned data processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

7. Google Maps and Google Fonts

In order to improve our online offering, we use the integration of Google Maps from Google Inc., (1600 Amphitheatre Parkway Mountain View, CA 94043, USA; “Google”). This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. To do this, the browser you are using must connect to Google’s servers. As a result, Google learns about your IP address and that you have accessed our websites. For more information about Google’s privacy policy, please visit:

Additional Terms of Service for Google Maps/Google Earth

Google’s Privacy Policy

Google is a registered trademark of Google Inc.; 1600 Amphitheatre; Mountain View, California, 94043; United States.

8. Order processing

If you enter into a contract with us in the form of a ticket order in our online shop, we process personal data for the purpose of concluding, executing or terminating the contract with you. These may include:

The legal basis for this is Art.6 Abs. 1 lit. a and b GDPR, i.e. You provide us with the data on the basis of the respective contractual relationship (execution of a purchase contract) between you and us. We are also obliged to process your e-mail address in the event of a purchase via our websites due to legal requirements in the German Civil Code (BGB) to send an electronic order confirmation (Art. 6 para. 1 lit. c GDPR).


Insofar as we do not use your contact details for advertising purposes, we store the data collected for the execution of the contract until the expiry of the statutory or possible contractual warranty and guarantee rights. After expiry of this period, we will retain the information of the contractual relationship required by commercial and tax law for the periods specified by law. For this period (usually ten years from the conclusion of the contract), the data will be processed again solely in the event of an audit by the tax authorities, for economic and tax audit purposes and for the clarification of possible criminal offences.

We process your payment information for the purpose of payment processing, e.g. when you purchase a product and/or services through www.sternundkreis.de. Depending on the payment method, we may pass on your payment information to third parties (e.g. in the case of credit card payment to your credit card provider).

The legal basis for this data processing is Art. 6 para. 1 lit. a), Art. 6 para. 1 lit. b), GDPR as well as Article 6 (1) lit. f) GDPR.

Our contracted payment service providers are listed below.

a) Direct debit with InterCard

If the customer chooses the payment method “direct debit with InterCard”, the merchant transmits the following data (payment and purchase data) to its service provider, InterCard AG, Mehlbeerenstraße 4, 82024 Taufkirchen (InterCard), for the purpose of risk management:

The payment and purchase data are stored and used by InterCard for the purpose of processing the payment, preventing misuse, limiting the risk of payment defaults (risk management), as well as other procedures in accordance with Section 25 of the German Banking Act (KWG) aimed at preventing money laundering, terrorist financing or other criminal acts that may endanger InterCard’s assets. To this end, maximum amounts are set for payments within certain periods of time (limit system). Different maximum amounts can be set for different accounts. In addition, the payment data is compared against a lock file maintained by InterCard. This blocking file records if a card-based ELV direct debit (payment with EC card and signature at a retailer) has not been redeemed or revoked. Based on the checks described above, InterCard makes recommendations to companies (which are affiliated) as to whether a direct debit can be accepted. InterCard may be used for this purpose.

The data transmitted to InterCard will only be used for the above-mentioned purposes. It will not be used or passed on for sales or marketing purposes. InterCard is responsible for the information provided by the merchant within the meaning of the Federal Data Protection Act. For more information, please visit: www.intercard.de/datenschutz

b) Instant bank transfer / SOFORT payment via Klarna

If the customer chooses the payment method SOFORT transfer, Sofort GmbH will contact the end customer directly via the payment mask and thus have a direct relationship with him. Sofort GmbH itself is therefore responsible for the collection and processing of personal data in this process, as they do not process any data on behalf of Stern und Kreisschiffahrt GmbH during their services.

Klarna Bank AB (publ) , Sveavägen 46, 111 34 Stockholm, Sweden (Phone: 0046 8-120 120 00 – Fax: 0046 8-120 120 99), contact: info@klarna.de
Online retailers who use Klarna payment methods can also contact Klarna GmbH in Germany: Klarna GmbH, Theresienhöhe 12, 80339 Munich, Reception: 0049 221 669 501 00

More information: https://www.sofort.com/payment/wizard/getCmsContent/data_protection/DE/0/de

c) Credit cards via IPayment from 1&1 Internet SE

If the customer chooses the payment method Visa Card, MasterCard or Amex, the processing is carried out via Ipayment from 1&1.
1&1 Internet SE and 1&1 Telecommunication SE are companies of the United Internet Group.
1&1 Internet SE, Elgendorfer Str. 57, 56410 Montabaur.
More information: https://hosting.1und1.de/terms-gtc/terms-privacy/

9. External links

This website contains links to the social networks Facebook, Instagram and Twitter. These links do not establish a direct connection between the respective servers of Facebook, Instagram and Twitter with the browser of the user of the website and/or the customer.

If you do not want the above-mentioned social networks to associate the data collected via our website with your respective account, you must log out of these social networks before visiting our website. The websites of Facebook, Instagram and Twitter are subject to the liability of the respective companies.

This website also contains links to other websites and offers. We have no influence whatsoever on the current and future design or content of the linked pages. The setting of external links does not mean that we adopt the content behind the reference or link as our own. A constant check of external links is not reasonable for us without concrete indications of legal violations. However, if we become aware of any legal violations, we will delete such external links immediately.

10. Rights of data subjects

In accordance with Art. 15 GDPR, you have the right to request information about your personal data processed by us. In particular, you can obtain information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, where appropriate, meaningful information on its details.

It follows from Art. 16 GDPR that we may immediately request the correction of incorrect personal data or the completion of your personal data stored by us.

Art. 17 GDPR gives you the right to request the deletion of your personal data stored by us, unless the processing is necessary for exercising the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims.

In accordance with Art. 18 GDPR, you have the right to request the restriction of the processing of your personal data if the accuracy of the data is disputed by you, the processing is unlawful, but you oppose its deletion and we no longer need the data, but you need it to assert, exercise or defend legal claims or you have objected to the processing in accordance with Art. 21 GDPR.

In accordance with Art. 20 GDPR, you can request that your personal data that you have provided to us be issued in a structured, commonly used and machine-readable format or transmitted to another controller.

In accordance with Art. 7 para. 3 GDPR, you can revoke your consent to us at any time. As a result, we will no longer continue the data processing based on this consent in the future.

In the event of violations of applicable data protection law, you have the right to lodge a complaint with the competent supervisory authority in accordance with Art. 77 GDPR. This is the State Data Protection Officer of the Federal State of Berlin. Contact details can be found at: www.bfdi.bund.de

11. Right to object

Insofar as your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, insofar as there are reasons for doing so that arise from your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation.

If you would like to exercise your right of revocation or objection, it is sufficient to send an e-mail to datenschutz@sternundkreis.de.

The lawfulness of the data processing carried out until the revocation remains unaffected by the revocation.

12. Data security

When visiting our website, we use the widely used SSL (Secure Socket Layer) procedure in conjunction with the highest level of encryption supported by your browser. As a rule, this is a 256-bit encryption. You can tell whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or total loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

13. Newsletter

Description and scope of data processing

There are two ways to receive our newsletter. On the one hand, it is possible to subscribe to a free newsletter on our website. When you register for the newsletter, the data from the input mask is transmitted to us.

The following data will be collected during registration:

For the processing of the data, your consent will be obtained as part of the registration process and reference will be made to this privacy policy.

If, on the other hand, you purchase tickets for our journeys in our online shop and enter your e-mail address, this may subsequently be used by us to send a newsletter. In such a case, only direct advertising for our own services will be sent via the newsletter.

Legal basis for data processing

The legal basis for the processing of the data after your registration to receive our newsletter is, if you have given your consent, Art. 6 para. 1 lit. a GDPR or as a result of the sale of goods or services § 7 para. 3 UWG.

Purpose of data processing

The collection of your e-mail address is used to deliver our newsletter. Other personal data in the context of the registration process are used to prevent misuse of the services or the e-mail address used and to improve the experience of the content of our newsletter through personalized salutations.

Disclosure of personal data to third parties

We use the services of the German email service provider CleverReach GmbH & Co. KG (Mühlenstr. 43, 26180 Rastede) to send our newsletter. For this purpose, we send your aforementioned personal data via SSL encryption to CleverReach, which has been certified according to CSA standards. For more information, see https://certified-senders.org/de/. In order to meet the strict requirements of the German data protection authorities when using the services of CleverReach, we have also concluded a contract for commissioned data processing with CleverReach. Further information on the data protection of CleverReach GmbH & Co. KG can be found under the data protection regulations of the service provider.

Duration of storage

Your data will be deleted within 1 week after the end of receiving the newsletter, provided that the deletion does not conflict with any statutory retention obligations.

Possibility of objection and removal

You can object to receiving our newsletter at any time. For this purpose, you will find a corresponding link in each newsletter for your unsubscription. At the same time, you can object to receiving our newsletter by sending an e-mail to info@sternundkreis.de .

14. Up-to-dateness and changes to this data protection policy

This privacy policy is currently valid and has the status of May 2018.

Due to the further development of our website and offers on it or due to changes in legal or regulatory requirements, it may become necessary to change this privacy policy. You can access and print out the current privacy policy here at any time.