«Legal Notice»

ISA International Sports Agency AG

Churerstrasse 35

CH-9470 Buchs SG

Switzerland

 

Phone:  +41 81 750 60 00

 

Disclaimer:

 

This website has been produced and is maintained with the greatest possible care. Nevertheless, we do not assume any liability, for any legal reason whatsoever, for the accuracy, topicality or completeness of the information provided. Under no circumstances shall the company or its corporate partners be held liable for any damage of any kind that is caused by the use or in conjunction with the use of information made available here, be it direct or indirect damage, consequential damage or special damage including any loss of profit or damage resulting from the loss of data. We reserve the right to amend or update the information, products or services offered on this website at any time without any separate, prior notice.

 

The information on this website is general and merely serves to present our products and services to interested Internet users. We do not assume any liability for any decisions taken by the user on the basis of the above-mentioned information. We point out that the content does not constitute any individual legal, business or any other specialised information or recommendation and is not suited in any way to replacing individual advice from an expert taking into account the concrete circumstances in each individual case.

 

This website may contain links to websites operated by third parties. We do not have any control over these websites or the information, products and services offered there and do not, therefore, assume any liability for any legal reason whatsoever for the content of third-party websites.

 

Any existing or future legal relationships shall be governed solely by Swiss law and the exclusive jurisdiction of Swiss courts.

 

The website of ISA International Sports Agency AG, including all its components like texts and images, is protected by copyright. Any use outside the limits of the Copyright Act (URG) shall only be admissible with prior written permission. No passing on of content to third parties against payment shall be permitted.

 

Data protection provisions

 

The following data protection information deals with all processing of personal data by

 

- ISA International Sports Agency, Churerstrasse 35, 9470 Buchs SG

 

(hereinafter referred to jointly as “ISA”).

 

The following data protection information incorporates not only data processing in connection with the website www.atrium-buchs.ch, www.atrium-golf.ch, www.atriumbuchs.ch, www.atriumgolf.ch, www.sportsagency.ch, www.sportsagency.com, www.sportsagency.li, www.isasponsoring.com  and www.isa-sponsoring.com, but also the processing of personal data at counters, in the restaurant and in the Golf Shop of Atrium in Buchs SG.

 

ISA is jointly responsible under data protection law for the data processing referred to below.

 

These data protection provisions are deemed to be an integral component of the General Terms and Conditions of Business of ISA and/or of the special terms and conditions of usage for the domains mentioned earlier.

 

We undertake to handle your personal data in a responsible manner. As a consequence, we believe it goes without saying that we comply with the statutory requirements of the Swiss Federal Act on Data Protection (DSG), the Ordinance to the Federal Act on Data Protection (VDSG), the Telecommunications Act (FMG) and other provisions of Swiss law concerning data protection. We also consider it a matter of course that we meet the statutory requirements of the EU General Data Protection Regulation (GDPR).

In the following, we inform you about how we handle your personal data.

 

Please note that the information contained below is reviewed and amended from time to time. We therefore recommend that you regularly refer to this data protection declaration.

 

 

Data collection throughout our domains

 

Scope and purpose of the collection processing and use of personal data

 

 

When visiting our website

 

When you visit our website, our webhost server saves every access temporarily in a log file.

 

The following data are saved by us:

− the IP address of the requesting computer,

− Date and time of access,

− Name and URL of the retrieved data,

− the website from which our domain was accessed,

− the operating system of your computer and the browser used by you,

− the country from which the access to our website is made and

− the name of your Internet access provider.

 

The collection and processing of these data is generally done in anonymised form without any personal link for facilitating the usage of the website (establishment of the connection), to guarantee the system security and stability in the long term and to optimise the Internet services and for internal statistical purposes. The information mentioned above will not be linked to or saved with personal data.

 

Only in the event of an attack against the network infrastructure of the website or in the event of suspicion of other unauthorised or improper use of the website will the IP address be analysed for clarification and for protection and if applicable used in criminal proceedings for identification and for action under civil and criminal law against the respective users.

 

Our legitimate interests in data processing pursuant to Art. 6 Par. 1 Letter f of the GDPR is to be found in the purposes described above.

 

 

Cookies

 

Among other things, cookies help to make your visit to our website easier, more pleasant and more worthwhile. Cookies are information files that your web browser automatically saves to the hard disk of your computer when you visit our website.

 

Cookies do not harm the hard disk of your computer, nor do they communicate personal data to us.

 

We use cookies, for instance, to recognise you as a registered user, without you having to log in again each time. In this case, use does not mean that we receive new personal data about you as an online visitor.

 

Most internet browsers accept cookies automatically. However, you can set your browser so that no cookies are stored on your computer or that you receive a warning message when a new cookie arrives. Further information on this can be found in the settings option of your browser.

 

However, the deactivation of cookies can result in you not being able to use all the functions of our portal.

 

 

Tracking tools

 

For the purpose of configuring our pages in line with requirements and optimising them on a continuous basis, we use Google (Universal) Analytics, a web analysis service of Google Inc. (www.google.com). In this context, pseudonymised user profiles are created and small text files that are stored on your computer (“cookies”) are used.

 

The information generated by the cookie about your use of this website such as

 

− Browser type/version

− Operating system used

− Referrer URL (the site previously visited)

− Host name of the accessing computer (IP address)

− Time of the server request

− Device

 

are transferred to servers of Google Inc., a company of the holding company Alphabet Inc, in the USA and stored there. In the process, the IP address is shortened through the activation of the IP anonymisation (“anonymizeIP”) on this website before transmission within the member states of the European Union or in other signatory states to the Agreement on the European Economic Area. The anonymised IP address communicated by your browser within the framework of Google Analytics will not be merged with Google’s other data. Only in exceptional cases will the full IP address be transferred to a server belonging to Google in the USA and shortened there. In these cases, we ensure through contractual guarantees that Google Inc. complies with a sufficient level of data protection.

 

The information is used to analyse the use of the website in order to be able to compile reports on the website activities and in order to provider further services associated with the use of the website and the internet for the purpose of market research and configuration of these internet pages in line with requirements. This information may also be transferred to third parties if this is stipulated by law or if third parties process these data under contract. According to Google Inc., the IP address will not be combined under any circumstances with other data relating to the user.

 

Users can prevent the recording of the data generated by the cookie and relating to the website usage by the respective user (incl. the IP address) to Google and the processing of these data by Google by the user downloading and installing the browser plug-in available under the following link:

 

https://tools.google.com/dlpage/gaoptout?hl=en

 

As an alternative to the browser plug-in, users can click on this link in order to prevent recording by Google Analytics on the website in future. In the process, an opt-out cookie is placed on the user’s end device. If the users delete cookies (cf. “cookie” above), the link must be clicked again.

We would like to point out that from the perspective of the European Union, the USA does not have a sufficient level of data protection, partly as a result of the topics referred to in this section. If we have explained in this data protection declaration that recipients of data (such as Google) have their registered office in the USA, we will ensure either through contractual provisions with these companies or by ensuring the certification of these companies under the EUUSA Privacy Shield that your data are protected at our partners with an appropriate level.

 

 

Links to our social media presence

 

On our website, we have integrated links to our social media profiles in the following social networks:

 

- Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA

- Pinterest Europe Ltd, Palmerston House, 2nd, Floor, Fenian Street, Dublin 2, Irland,

- Linkedin Corporation,1000 West Maude Avenue, Sunnyvale, CA 94085, USA,

- Instagram Inc., 1601 Willow Road, Menlo Park, California 94025, USA,

- Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA und

- Google+, ein von Google Inc. betriebener Dienst.

 

When you click on the respective symbols of the social networks, you will automatically be forwarded to our profile in the respective network. In order to use the functions of the respective network, you have to log in part to your user account with the respective network.

 

When you call up a link to one of our social media profiles, a direct connection is established between your browser and the server of the respective social network. The network thus receives the information that you have visited our website with your IP address and have called up the link. If you call up a link to a network whilst you are logged in to your account in the respective network, the content of our site can be linked to your profile in the network, which means that the network can assign your visit to our website directly to your user account. If you wish to prevent this, you should log out before you activate the corresponding links. An allocation is done at any rate if you log in to the respective network after activating the link.

 

 

Data collection outside of the website

 

ISA also procures data about you outside of the website. This can be the case, for instance, if you contact us independently of the website, by e-mail or telephone and we have to record data from you to deal with your enquiry (e.g. your e-mail address or telephone number) in order to contact you.

 

We also record personal data from you if you register on site at our company e.g. for an event or book accommodation. As a general rule, we fundamentally procure the same data as we request for bookings on our website.

 

Our legal basis for this data processing is the fulfilment of your contact requests and thus a legitimate interest pursuant to Art. 6 Par. 1 Letter f of the GDPR and/or the performance of a contract pursuant to Art. 6 Par. 1 Letter b of the GDPR.

 

In the case of third-party services (cf. Clause 8 of the General Terms and Conditions of Business), we are only intermediaries and only carry out the bookings on behalf of the service providers. We forward the data to the respective service providers for them to deal with the booking. These service providers are responsible for the further processing of the data under data protection law. Unless otherwise informed, the service providers will process the data for the handling of the booking. In the process, they can also use third parties who process the data on their behalf. When renting a business apartment, we are also required by law to officially register you and your fellow travelers.

 

In the case of third-party services, we are not responsible for the data processing of the service providers. However, we will save the booking data and all other data that we collect from you in connection with services in our central database and, providing that you agree, analyse them for marketing purposes (cf. further below).

 

Sensitive personal data: Depending on the services booked, it may be the case that sensitive personal data have to be collected or you have to provide us with such information on your own initiative. For instance, based on a request for a certain type of meal, it may be possible to deduce your religion. These data will be forwarded to service providers for the correct fulfilment of the contract. By providing us with such information, you explicitly authorise us to use this information pursuant to this provision and to forward it to service providers.

 

General provisions

 

Saving of your personal data in a central database of ISA.

 

The personal data mentioned in the previous sections are saved and processed by ISA in centralised form. For this purpose, ISA works with  a CRM system. The system is hosted on servers in Switzerland.

 

The data are analysed by us for advertising purposes, in particular in order to be able to offer you personalised services or product information. We also analyse the data in the central database in order to improve our products and services.

 

User profiles about you can result from these analyses. By using the website functionalities mentioned above, you consent to us being able to save your personal data in our central database and analysing it there for advertising purposes. You are thus agreeing that user profiles about you can result from this. You issue us with your consent to analyse your personal data for advertising purposes and the formation of user profiles. Pursuant to Art. 6 Par. 1 Letter a of the GDPR, this consent constitutes our legal basis for the processing. You can object to the analysis of your personal data for advertising purposes and the formation of user profiles at any time (cf. further below under “Contact”).

 

 

Forwarding of the data to third parties

 

We only forward your personal data if you have explicitly given us your consent to this, there is a statutory obligation to do so or if this is necessary to assert our rights, in particular to assert claims arising from the contractual relationship.

 

In addition, we forward your data to third parties if this is necessary in accordance with the use of the website and the performance of the contract (also outside of the website), specifically the processing of your bookings, the handling of event registrations, the handling of voucher purchases and the analysis of your user behavior.

 

Various third-party service providers are explicitly mentioned in this data protection declaration (e.g. in the sections “Newsletter”, “Tracking Tools”, “Re-Marketing”, “When booking mountain railway tickets” and “Social plug-ins”). Another service provider to whom personal data are forwarded and/or has or can have access to personal data of yours is our web host (METANET AG, Josefstrasse 218, 8005 Zürich, Switzerland). The website is hosted on servers in Switzerland.

 

Finally, in the event of payment by credit card on the website, we forward your credit card information to your credit card issuer and to the credit card acquirer. If you opt for payment by credit card, you will be asked in each case to enter all the mandatory information. With regard to the processing of your credit card information by these third parties, we ask you to also read the General Terms and Conditions of Business and the data protection declaration of your credit card issuer.

 

 

Communication of personal data abroad

 

We are entitled to forward your data to third-party companies abroad if this is necessary in connection with the processing of your requests, the provision of services and marketing campaigns. These third-party companies are required to maintain the privacy of the users to the same extent as the provider itself. If the data protection level in a country is seen as inappropriate pursuant to the General Data Protection Regulation, we will ensure by means of a contract that your personal data are protected at all times according to the General Data Protection Regulation.

 

Various third-party service providers and the addresses of their registered offices are already mentioned in the previous section (“Forwarding of the data to third parties”). Individual third-party service providers named in this data protection declaration have their registered office in the USA (cf. “Tracking Tools”, “Re-Marketing” and “Social plug-ins”). Other statements about data transfers to the USA can be found under “Tracking Tools”.

 

 

Right to information, deletion and rectification

 

You can request information about your personal data saved at our company at any time and free of charge. Requests for information must be submitted in writing with proof of identity. You are also entitled to demand the deletion, or the rectification of your personal data stored at our company at any time.

 

You also have the right to request receipt of the data that you have handed over to us (right to data portability). On request, we will also transmit these data to a third party of your choice. You have the right to receive the data in a conventional file format.

You can do this by filing a corresponding application by e-mail to (team@atriumbuchs.ch).

 

Further contact options can be found under “Contact”. We would like to point out to you that we reserve the right to demand proof of identity and that in the event of your data being deleted using our services this may not be possible or may no longer be possible to provide the full data.

 

You may revoke consent to certain data processing at any time with future effect.

Please note that in accordance with the law certain data have to be retained over a certain period of time. Such data therefore must be stored at our company until the expiry of these periods. We block access to these data in our system and only use them to meet statutory requirements (cf. in this regard in detail “Retention of data” below).

 

 

Data security

 

We use appropriate technical and organisational security measures that we deem suitable to protect your data saved by us against manipulation, partial or complete loss, or the unauthorised access by third parties. Our security measures are constantly being adjusted in accordance with technological development.

 

When you register with us as a customer, access to your customer account is only possible by entering your personal password each time. You should always treat your payment information as confidential and close the browser window when you have ended your communication with us, especially if you share usage of the computer with others.

 

We also take our own, company-internal data protection very seriously. Our employees and the service companies commissioned by us are required to not to disclosure data and to comply with provisions under data protection law. In addition, they are only granted access to the personal data to the extent that this is necessary.

 

 

Retention of data

 

We only save personal data for as long as necessary

 

− to use the said tracking services within the framework of our legitimate interests;

− to implement services to the afore mentioned extent you have requested or for which you have given your consent.

 

Contractual data will be retained longer by us as this is stipulated by statutory retention obligations. Retention obligations that require us to retain data result from accounting regulations and thus under fiscal law. In accordance with these provisions, business communication, concluded contracts and booking receipts are to be retained for up to 10 years. If we no longer require these data to carry out services for you, the data will be blocked. This means that the data may then only be used for accounting and tax purposes.

 

Contact

 

If you have questions on data protection, require information or wish to have your data deleted, please contact us by sending an e-mail to (team@atriumbuchs.ch).

 

Complaint to a data protection authority

 

You have the right to file a complaint to a data protection supervisory authority at any time.