Wimdu Terms and Privacy

条款细则

一般條款和條件(GTC)使用網上平台wimdu.com

最近更新版本

  1. 范围,条款规章修订
    1. 以下条款规章(GTC)适用于短租服务平台www.wimdu.com(平台)。此服务由Wimdu股份有限公司("Wimdu"或"我们")提供。
    2. 本条款规章中的“用户”(又称使用者)为已注册,且通过Wimdu核可的自然人或法人。
    3. Wimdu仅根据条款规章提供短租平台(短租资料库)服务。
    4. 注册或使用我们的服务,表示您接受我们订定的条款规章。
    5. 基于经济或法律需求,Wimdu保留条款规章修改权利。修正后之条款规章将在用户同意后生效。Wimdu仅须以电邮发送修正之条款规章至用户指定电邮地址。用户收到条款规章一周内没有异议,新的条款规章即生效。
    6. 即使Wimdu未提出个别声明,抵触使用者契约无效(详见第2.5项)。
  2. Wimdu表现、物业主表现
    1. 此互联网平台是一在线房屋短​​租市场。使用者可以提供公寓、客房或是其他住宿空间(之后简称为“住宿空间”)作为短期出租使用。
    2. Wimdu于www.wimdu.com网站提供在线短租平台。用户可以利用此平台缔结短租租赁契约。Wimdu本身不提供短租房源,
      仅为用户契约缔结之中介。
    3. 租赁契约缔结对象为房源之屋主(物业主)即住客(承租者)。Wimdu不参与用户双方租赁契约缔结。Wimdu有权代替屋主缔结租赁契约,但屋主及住客须对满足契约内容全权负责。如遇违约争议时,缔约用户须自行协调解决方案。Wimdu将储存租赁契约并转发给用户双方。
    4. Wimdu无法一一认证互联网使用者提供的房源及其服务内容的合法性、准确性以及完整性。另外,屋主所提供的房源和服务内容皆不代表Wimdu的立场。Wimdu对于第三方提供内容和服务不具法律责任。
    5. 用户可依据房源需求,自订住宿规定细节,但不与Wimdu条款规章冲突。
    6. 屋主须负责遵守公共法相关规定,包含所居地之租赁相关条款。
  3. 注册、使用者遵行条款、合约条款说明
    1. 使用Wimdu短租平台前,用户必须先注册。注册服务完全免费,用户注册时须确认接受Wimdu条款规章。使用者收到Wimdu用户认证的电邮时,用户契约即成立,不须再次出声明。
    2. 注册仅限于有法律行为能力的自然人、法人和合作伙伴登记。法人或是合作伙伴注册,须有具名自然人为授权代表。用户只能以个人名义申请使用者帐户(不能以情侣或是家庭名义申请)。
    3. 注册时,用户有义务提供正确,即时且完整的资料。
      此外,用户须完整填入注册表单所需资料,特别是姓名、现居地址(我们不接受邮政信箱地址)、有效电邮地址、
      或是公司名称和授权代表。用户提供的所有资讯必须正确且即时。严禁注册人头帐户。注册时,用户需要输入使用者名称及密码。使用者名称不可为电邮信箱地址或是网站名称,
      更不可侵犯他人商标或是权力,且不可违背善良风俗。
      注册后,用户会接收到一组密码和指定用户名称。
    4. 使用者可以在注册时登录的电邮信箱收到合约条款说明。
  4. 用户义务,使用者帐户,系统完整性
    1. 用户须对自行刊登在平台上的资讯全权负责。使用者与Wimdu用户契约中,规定“使用者不可刊登applies;内容,或有不法意图或行为。
    2. 用户须全权负责在线房源叙述的正确及完整性。为确保基本房源资料齐全,用户必须填妥Wimdu在线系统的必填栏位。此外,屋主(物业主)可自行决定是否增加额外条款(例如:押金,清洁费,取消条款等)。

      屋主可在取消条款中选取不同取消方案。用户必须保持个人帐户中资料即时且正确(随时更新在线个人或房源资料)。使用者帐户不可转移。
    3. 使用者帐户仅限个人使用,用户须保护个人密码,并谨慎使用个人帐户。
    4. 使用Wimdu短租平台服务时,用户须全权负责其使用者帐户之操作后果。若帐户遭盗用则该用户无须负责。
    5. 一旦发现有第三者以不当手段入侵其使用者帐户,用户应立即通知Wimdu。我们的团队会立刻封锁此帐户,直到厘清案情为止。
    6. 每位用户须自行确认交易另一方身分。Wimdu不负责用户在线输入联络资料之正确性。
    7. 用户在接受Wimdu服务时,须确保其使用电脑系统及软体不会妨碍Wimdu主机运作(安全系,整体性,可用性)。用户不可阻挡或改写Wimdu在线服务内容。根据第12项规定,Wimdu有权采取相关措施(例如:封锁用户权限)以维护服务系统及其他用户权益。
    8. 用户不可利用在网站取得的用户联络资料(地址,电邮地址,联络细节)作为租赁契约外之用途。未经对方同意许可,不得将此资讯转交/贩售给第三方作为广告或其他用途。
    9. 用户不得大量散布同一信息,严禁散发垃圾邮件及骚扰其他使用者。
    10. 用户必须自行在Wimdu系统之外,保存已传输到Wimdu在线系统上的资料(或相关页面资讯),以供个人使用及备不时之需(例如:预订证据或会计资料等)。
    11. 用户违反条款规章时,Wimdu得行使虚拟管理者权。Wimdu可以禁止该用户使用本平台服务,删除用户登载内容,或采取其他适当因应措施(详见第12项规定)。Wimdu将保留法律追诉权。
  5. 内容管理及权限
    1. 在服务平台功能限制内,屋主可利用不同媒体发布短租房源。用户须注意相关法律规定,确保发布内容合法,以确保自身、其他用户及Wimdu权益。请参考相关法令说明,例如:著作权法、商标法和条款规章细节。
    2. Wimdu仅提供短租平台及资料库服务,让用户自由上载多媒体资料。若用户违反著作权法,擅用他人文字或相片,或是不遵守规章条款,在原著作人通知Wimdu前,用户将免除Wimdu所有第三方责任,免责赔偿包含合理之法律诉讼费用。
    3. 用户须确保上载资料不违反相关法律规定、善良风俗或他人权益(命名权,人格权,著作权及资料保护权等)。特别是用户不可违反德国社会保障法(Strafgesetzbuch, SGB) 或青少年及儿童媒体分级制度(Jugendmedienschutz -Staatsvertrag , JMStV)。用户亦不可散播色情,暴力或是种族歧视内容(含以电邮或其他电子形式发送此类资讯)。
    4. 用户上载在线内容时,即表示同意授予Wimdu不受时间地点限制之非专属权及转让权(包含再次授权),以提升Wimdu服务品质之用。特别是将完整或是部份内容以数位方式储存,复制或传播置换各大媒体(含数位或是平面媒体),以供其他用户随时随地依个人需求取用,及将内容依Wimdu意愿修改配合网站版面缩减,以方便在电脑,手提电话或各式智慧型工具上使用。
    5. Wimdu平台之内容皆受著作权法保护。本网站用户多为使用互联网的自然人。禁止使用网路蜘蛛,屏幕抓取,类似程式大量撷取本站资料,以供他人之服务。
    6. 用户违反条款规章时,Wimdu有权拒绝发布、立即删除或封锁其登载内容及相关联结。在此情况下,用户不得重新使用Wimdu平台上载多媒体资讯,亦不得恢复其使用者帐户。
  6. 网站可用性及修缮维护
    1. 用户不得要求永久使用服务平台。Wimdu致力确保其系统使用通畅,以提供优质的客户服务,但不保证平台功能之稳定性及持续性。
    2. Wimdu有权采取相关措施(例如:封锁用户权限)以维护服务系统安全系,整体性,可用性。采取相关措施时,Wimdu会将用户合法全义纳入考量,并事先通知用户。
  7. 第三方网站责任
    1. 服务平台上包含其他合作伙伴之管理页面,Wimdu仅提供登载管道,不为其发布内容负责。其他网站连结设置仅供导航方便,Wimdu对于合作伙伴网站中内容不须负责。合作伙伴发布内容不代表Wimdu立场。
    2. Wimdu连结网站之业主须全权负责其网页提供的商品及服务。
  8. 预订程序、付款、发票
    1. 屋主在Wimdu发布房源时,表示发送房源住宿邀请。其他用户可以发送预订需求,企图缔结租赁契约。屋主于预订后24小时内,依Wimdu平台规定接受旅客预订,此租赁契约便成立,且具法律约束性。屋未依规定接受预订,契约则不成立,双方皆没有法律责任。
    2. 屋主可任选取消条款中不同方案。取消退费相关事宜,Wimdu将依第8.4.3项所述操作。
    3. 屋主须确保以下事项:


      1. 短租说明文字及相片不得侵犯他人权利,内容详实,且仅与短租房源有关。


      2. 清楚呈现成功预订房源。



      3. 上载资料不含他人个资。



      4. 遵守相关法律规章(当地租赁法令及税务规定)。用户须全权负责其上载短租内容,Wimdu有权向用户索取相关证明以确认房源资料详实。
    4. 用户须根据以下条文付款:


    5. 租赁契约中须缴交费用将列于预订页面。住宿总价含租金和Wimdu手续费(随房源价格异动)。旅客预订房源后,Wimdu将说明住宿总价及其详细内容。



    6. Wimdu有权随时调整手续费用(不含已成交租赁契约)。旅客预订房源后,Wimdu会迅速以电邮通知屋主手续费金额。



    7. 旅客必须支付预订页面显示全额(部份房源接受分期付款),并须依照指定方式付款。Wimdu代替屋主收款,旅客支付款项将存入一无利息之中介帐户。若收款不成功,旅客须支付所产生相关费用。缴费发生问题若非旅客错误,则旅客免责。



    8. 旅客允許Wimdu在入住後24小時,將租金轉匯屋主。如屋主提供房源不符合租賃合約內容,旅客可撤銷Wimdu匯款權利。旅客必須在入住後立即依規定反應此狀況,Wimdu方可採取適當行動。



    9. 屋主应依规定缴交手续费用。此费用将从Wimdu转汇住宿总额中扣除,因此屋主不必再次转汇给Wimdu手续费。



    10. 唯有在合法情况下,屋主得从应收款项中抵销手续费。
      应收款项不可转汇他人。
  9. 住客如有需求,屋主必须提供住宿发票。屋主如有需求,Wimdu亦可提供手续费发票(如未说明,发票金额不含销售或其他税金)。
  10. 除非物业主告知Wimdu,否则Wimdu将物业主一概视为商业营利团体,并已知晓相关法令及税务规定。Wimdu有权向物业主索取商业营利事业相关文件。
  11. 基于住客使用量(电力,水,瓦斯,暖气),屋主有权收取额外住宿费用。屋主必须在缔约前告知住客此项收费机制。此费用与安全押金皆不列入Wimdu手续费计算。
  12. 旅客可利用Wimdu住宿优惠券在期限内预订房源。旅客不须支付任何费用。
  13. 用户不得规避预订及付款程序,特别是短租手续费用索取。
  • 安全押金
    1. 屋主有权收取房源安全押金。若屋主要求住客于入住时缴交押金,则必须连带说明押金总金额及缴交方式。旅客预订前,押金相关条件必须清楚标明于Wimdu短租页面(三个月前汇款,或是抵达当地付款)。
    2. 若屋主没有在预订页面上提到安全押金,却在事后告知住客要收取此费用,在住客不同意缴交押金情况下,屋主须负违反租赁契约之全责。Wimdu有权取消此预订交易,并向屋主索偿取消费用。
    3. Wimdu不负责屋主收取的安全押金管理及赔偿。
  • 浏览系统
    1. 用户可在短租住宿/接待后相互留言,评价屋主及住客印象和表现。评价系统功能旨在提供诚实可信的短租住宿指标。用户不得在交易完成前留言评价。
    2. 用户必须给予诚实及合法的评价。表达个人观点时须注意他人权利,特别是人格权。评价应该公正,且不可包含人身攻击或侮蔑他人语言。
    3. 禁止任何有违评价系统宗旨之用户行为。特别是用户利用此系统进行自我评价、促使租赁交易外第三方介入评价系统,或从事与本网站租赁交易无关之行为。
    4. Wimdu不随意干涉评价系统中用户留言。除非有特定或法律相关之必要性,Wimdu不更改或是删除任何评价留言。评价发布后即不可更动,且将永久留存在该屋主/旅客的个人页面,所有用户皆可浏览此留言。Wimdu有权标注特定评价留言,以澄清或阐明留言内容。另外,若屋主取消预订,Wimdu将自动发表负面评价(一颗星)在该房源页面。
    5. 若用户滥用评价系统功能。Wimdu拥有删除留言,并采取因应措施之例外权。以下情形适用:
      1. 由法院判决强制执行之情况下,Wimdu必须删除用户留言;

      2. 用户留言内容内含低俗、淫秽、种族歧视、儿童不宜或攻击性言论,;

      3. 留言内容内含其他用户之个人资讯,例如姓名、地址、电话或是电邮地址;

      4. 留言内容指涉Wimdu或相关执法单位正在进行搜索调查;
      5. 留言内容含网站连结或是HTML字串;

      6. 用户不慎在错误的页面留下负面留言,稍后将同一留言重新发布在正确的用户页面;

      7. 用户在转帐程序未完成时留言,或是用户身分未经授权(例如:用户尚未成年);

      8. Wimdu在其注册90天内即封锁的用户所发表留言。使用者帐户遭封锁之用户,例如:未缴纳应缴费用等,其帐户及留言可在问题解决后重新恢复。
    6. 在双方同意的情况下,在线评价留言可以被撤销。此评价将被移除,不会出现在使用者个人页面。
  • 期限,契约终止
    1. 用户契约无签订期限。
    2. 用户可随时通知Wimdu终结用户契约。契约终结通知须有书面证明(例如:信件、传真或是电子邮件)。用户契约终结不影响用户目前进行或已确认之短租交易,亦不影响用户应付之服务费用或是手续费。
    3. Wimdu可以在两周内终结用户契约。
    4. Wimdu有权以正当(合乎正义及公益)理由终止契约,并不抵触用户个人终止契约权力。
      Wimdu采纳之正当理由如下:
      1. Wimdu寄发缴费提醒通知至用户指定电邮地址,期限内用户不尽全部或部份缴款义务。

      2. 使用者违反用户契约,且经提醒后不在期限内采取补救措施。在用户严重违约,并影响Wimdu运作情况下,Wimdu可不寄发通知直接解约。严重违约意指使用者多次违背第5及第6项规定(用户契约)。此外,屡劝不听可能加重违反规定事实。
      3. 用户违反条款规章第1.3和第9.8项规定。

      4. 法律相关单位表示Wimdu不得以此形式经营,且网站必须终止服务。Wimdu结束营业。
      5. 用户破产影响房源状态。
  • 用户违约或违法行为之因应措施
    1. 如果足够证据显示用户违反法律规定、条款规章、侵犯他人权益,或是为保障其他用户权益,免受诈骗及骚扰,Wimdu有权取消用户使用资格,并采取以下因应措施:

      1. 警告用户。


      2. 取消用户发布房源或是其他登载内容。

      3. 暂时或永久封锁用户。

      4. 暂缓或取消现有租赁交易。
    2. Wimdu采取相关措施时,必将用户之合法权益考虑在内。
    3. 房源删除不影响用户已确认之短租交易,亦不影响用户应付之服务费用或是手续费。若Wimdu在屋主接受预订前删除房源,此交易则不成立。
    4. 下列情况发生时,Wimdu有权永久封锁用户使用权限。合理情况下,用户会收到Wimdu通知,并有机会释疑及求助。若用户已遭警告多次,且违规行为严重影响Wimdu及其他使用者,Wimdu将立即将用户停权,并通知用户进一步说明。停权条件如下:

      1. 根据第10项评价系统规定,若用户的负面评价过多,Wimdu必须停止用户使用权,以保护其他使用者。

      2. 如果用户个人帐户中含有不实资料,特别是错误或是无效的电邮地址。

      3. 用户之使用者帐户转移给他人。

      4. 用户之房源或内装遭到严重破坏或是偷窃等。

      5. 用户威胁到其他使用者之权益,并提高Wimdu使用风险。
    5. 用户一旦遭Wimdu永久封锁,即无法重建被封锁帐户资料,或回复帐户中评价留言。用户不可利用其他帐户登录,亦不可重新注册。
  • Wimdu责任范围
    1. Wimdu仅在其职员与工作人员蓄意或是因重大过失(诈欺或知情不报)造成损害(危及人身安全及健康)时,担负赔偿责任。
    2. Wimdu仅在未尽契约所述权责,使其运作危及用户或合作伙伴时,负担赔偿责任。唯有在此違約情形下,Wimdu須賠償用戶或是合作夥伴損失。此项规并不抵触德国产品责任法。
    3. Wimdu不参与其互联网平台用户(屋主及住客)的租赁契约签署。Wimdu不负担履行任何屋主与住客租赁契约中的责任与义务。
  • 补充条文
    1. Wimdu有权转让条款规章中整体或部份权利义务予第三方。
    2. 此契约受制于德意志联邦共和国之法令,但享有联合国国际货物销售合同公约和德国国际私法赋予之权利。
    3. 如用户受制于德国民法(BGB)第13项,其仍受消费者强制保护条令保障。
    4. 部份或整体个人住宿规定不适用时,Wimdu条款规章依然有效。个人住宿规定失效时,应以适当法律条款代替。
    5. 租赁契约缔结相关内容须透过文字或电邮形式发送给Wimdu。用户必须使用与在线个人资料吻合之居住地址及电邮地址。
    6. Wimdu委托其子公司Wimdu马尔他有限公司 (登记地址: 38, Level 2, Emanuel Schembri Street, Birkirkara BKR 1810, Malta)处理信用卡相关业务。
  • *To read more about our subsidiary liability insurance, click here

    取消订房条款

    1. 屋主如何制定取消条款?

    • 取消条款由屋主从灵活、适中、严格三种方案中自行选择。取消条款旨在保障双方权益,避免不必要的交易纷争。

    2. 如何取消预定?

    • 为确保交易取消过程顺利安全,所有手续将透过Wimdu处理。
    • 若您希望取消预定,请与我们的客服团队联系。
    • 旅客取消预订须透过电子邮件或其他文字信息传送到Wimdu,取消预订之内文须包含预定编码,且须从用户在Wimdu系统中所注册的电邮信箱发送。
    • 屋主必须透过房源页面上操控面板指定程序来取消预订。屋主应在"我的帐户"中的"我的房源"中取消交易,取消信息会自动发送到Wimdu客服团队。
    • 用户收到Wimdu确认信函后,预订交易取消才算成立。
    • 我们的客服团队会立即处理您提出的取消通知,并知会您的屋主/住客。Wimdu将为您取消交易,您不需有任何动作。

    3.旅客取消交易时,退费以及支付给屋主的取消费用如何计算?

    3.1. 一般规定

    • 旅客所收到的退费金额依照旅客取消预定的时间,与屋主选择的取消条款方案而异。
    • 退费总额为原租金总额减去取消费用(依房源租金而异)。每笔房源之取消费用金额,已在旅客预订时显示于预订页面。短租预订取消相关程序依第8.4项规定施行。
    • 不管屋主设定的取消方案为何,承租者须确保屋主不须承担其取消预订之损失,或须以取消费用补偿屋主损失。

    3.2. 个别取消规定

    取消政策: 免费取消

    若旅客在入住前两天之前取消预定(当地时间中午12点以前) 将可以获得全额退费(包含Wimdu手续费)。若旅客在入住前两天知内取消预订,则可以收到退费5%,且不包含Wimdu手续费。

    请注意,“免费退订”政策将从2015年7月13日开始取消。如果预订是在2015年7月13日之前确认或申请的,且房屋提供者在预订时选择的是“免费退订”,那么“免费退订”政策及其条款对这些预定仍然有效。

    取消政策: 灵活

    于入住日前至少2天前取消预订(当地时间中午12点为限),您将获得已付租金全额退款(不含Wimdu取消费用)。 若在入住日前2日以内取消, 您将获得已付租金5%退款(不含Wimdu取消费用)。

    取消政策: 适中

    于入住日前至少4天前取消预订(当地时间中午12点为限),您将获得已付租金全额退款(不含Wimdu取消费用)。 若在入住日前4日以内取消, 您将获得已付租金的5%退款(不含Wimdu取消费用)。

    取消政策: 严格

    于入住日前至少7天前取消预订(当地时间中午12点为限),您将获得已付租金的半数退款(不含Wimdu取消费用)。 若在入住日前7日以内取消, 您将获得已付租金的5%退款(不含Wimdu取消费用)。

    4. 旅客入住后是否可以取消交易?

    • 如果您入住后,对于短租房源有强烈不满或不适, 请于入住后24小时內与我们的 客服联系。若抵达房源后发现住屋状态与合约叙述有出入,我们会将您投诉内容转达给屋主。待我们的团队厘清责任归属,我们将根据退费条款抵扣屋主租金,并将剩余款项退还给您。
    • 请注意,退费条款仅限入住后24小时之正当投诉有效。
    • Wimdu保留向物业主收取最低手续费之权利。

    5. 如果是屋主取消交易怎么办?

    • Wimdu十分重视屋主取消预订交易给旅客带来的负面短租经验。
    • 若屋主取消预订交易,旅客将可获得全额退费,且旅客不需支付取消费用。
    • Wimdu将协助旅客另觅居所。
    • 屋主取消预订交易须支付租金总额之15%为取消罚款。若屋主在旅客入住前8天取消预订交易,取消罚款将提高到租金总额之50% 。 若屋主在“即时预订”系统接受预订后24小时内取消交易,取消罚款为租金总额之5%
    • 取消罚款将从屋主下次短租交易收入中扣除。
    • 一旦预订交易取消后,屋主将不会收到该笔房源预订任何费用。
    • 屋主若取消预订交易,该笔房源的搜索结果排行将向下调整,并可能导致旅客预订率下降。
    • 系统将在屋主所取消预订之房源上,自动留下负面评价(一颗星)。

    6. 特别取消条款

    丧亲

    家族中近亲(父母,配偶,兄弟姊妹,子女)在入住前7天至24小时中去世,而须取消交易,旅客可获得全额退费,且不须支付屋主及Wimdu任何取消费用。旅客在入住前24小时丧亲,并取消交易,可获得全部短租费用之75%部分退费,屋主则获25%为补偿费用,双方皆不须支付Wimdu任何取消费用。此项退款须出示近亲之死亡证明。

    天灾

    如遇天然灾害(雪崩,暴风雪,龙卷风,飓风,地震,战争,洪水,山崩,雷击)恐怖攻击或核子危机等不可抗力导致屋主无法依约提供住宿,且屋主证实无法提供其他类似住宿,旅客可获得全部短租费用之75%部分退费,屋主则获25%为补偿费用,且双方皆不须支付任何取消费用。相同条款适用于大众运输或其他交通工具因天灾损害无法运行,以至于旅客无法正常抵达屋主所提供房源(旅客必须自行提供相关证明)。

    隐私权

    Privacy Policy of Wimdu GmbH (“Wimdu”)

    1. Name and address of the controller

    The controller pursuant to the General Data Protection Regulation and other national data protection laws of Member States as well as other legal data protection regulations is:

    Wimdu GmbH

    Voltastr. 5

    13355 Berlin

    Germany

    Email: contact@wimdu.com

    Website: www.wimdu.com

    Contact Data Protection Officer

    Data Protection Officer at Wimdu GmbH

    Email: datenschutz@wimdu.com

    2. General provisions for data processing

    1. Scope of personal data processing

    Protecting your privacy is very important to us. As far as we collect, process or use personal information about you as part of the services we provide, we do so in accordance with the relevant German and European data protection laws.

    In principle, we collect and use the personal data of our users only to the extent necessary to provide a functional website, our content and services. The collection and use of the personal data of our users take place regularly only with the user’s consent. An exception applies to cases in which prior consent cannot be obtained for reasons of fact and the processing of the data is permitted by law.

    2. Legal basis for personal data processing

    Insofar as we obtain the consent of the data subject for processing personal data, point (a) of Art. 6(1) EU General Data Protection Regulation (GDPR) serves as the legal basis.

    For the processing of personal data necessary for the conclusion and the performance of a contract to which the data subject is a party, point (b) of Article 6(1) GDPR serves as the legal basis. This also applies to processing operations required in order to take steps prior to entering into a contract.

    Insofar as the processing of personal data is necessary for compliance with a legal obligation to which our company is subject, point (c) of Article 6(1) GDPR serves as the legal basis.

    If the processing of personal data is necessary in order to protect the vital interests of the data subject or of another natural person, point (d) of Article 6(1) GDPR serves as the legal basis.

    If the processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, and if the interests or fundamental rights and freedoms of the data subject do not override the first-mentioned interests, point (f) of Article 6(1) GDPR serves as the legal basis for processing.

    3. Data erasure and storage period

    The personal data of the data subject shall be erased or blocked as soon as the purpose of the storage ceases to apply. In addition, data storage may take place if provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. Blocking or erasure of data also takes place when a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of data for the conclusion or performance of a contract.

    4. Transfer of personal data to third parties

    We may disclose your personal data to third parties where necessary and in compliance with local laws and regulations, in particular to the following categories of persons:

    • Affiliated companies
    • External service providers performing services on our behalf
    • Providers of outsourced IT services with whom we cooperate

    Data are passed on to complete your booking, enable payments for bookings, send marketing material or for analytical support services.

    3. Provision of the website and log file creation

    1. Description and scope of data processing

    Each time our website is visited, our system automatically collects data and information from the computer system of the requesting computer.

    The following data are collected in this context:

    1. Information about the browser type and browser version used
    2. The operating system of the user
    3. The internet service provider of the user
    4. The IP address of the user
    5. The time and date of the visit
    6. Websites from which the system of the user accesses our website
    7. Websites which are accessed by the system of the user through our website

    The data are also stored in the log files of our system. These data are not stored together with other personal data of the user.

    If you are using a mobile device, we also collect device-specific settings and location data. This data will be stored whether or not you are registered with Wimdu or have logged into your Wimdu user account.

    2. Legal basis for data processing

    Point (f) of Article 6(1) GDPR is the legal basis for the temporary storage of data and log files.

    3. Purpose of data processing

    When you access our platform, for example, to search for accommodation, post listings, make bookings, accept booking requests, pay for accommodation, post comments or reviews, or communicate with other users or Wimdu, we may store information such as your IP address, the time and date of your visit, how you are using our platform, your browser type and information about your computer’s operating system as well as the pages you have visited and your original website.

    The system needs to temporarily store the IP address to be able to deliver the website to the user’s computer. Therefore, the user’s IP address must be stored for the duration of the session.

    Data are stored in log files to ensure the functionality of the website. In addition, the data are used to optimise our website and to ensure the security of our information technology systems. In this context, the data are not evaluated for marketing purposes.

    For these purposes, we have a legitimate interest in processing the data pursuant to point (f) of Article 6(1) GDPR.

    4. Period of storage

    The data shall be erased as soon as they are no longer required to achieve the purpose of their collection. For data collected to provide the website, this is the case once the respective session is finished.

    For data stored in log files, this is the case after 60 days at the latest. The data may be stored beyond this period. In this case, user IP addresses will be erased or modified to render impossible later assignment of the requesting client.

    5. Possibility of objection and erasure

    The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. Consequently, the user has no possibility to object.

    4. Registration

    1. Description and scope of data processing

    On our website, we offer users the possibility to register by providing their personal data and to create a user account. The data entered into the input mask will be transferred to us and stored by us. During the registration process, we collect the following personal data:

    • Name
    • Postal address (including invoice address), if required
    • Phone number, if required
    • Email address
    • Profile picture, if required
    • Information regarding social network accounts
    • Location and travel information and preferences such as your favourite holiday destination, dates and number of people/children travelling with you
    • Communication via our messaging system, if required
    • Driving licence, official ID card or passport, if required
    • Bank details (payments to the host), if required
    • IP address and derived localisation data (country/city of origin)
    • Date and time of your visit to our website
    2. Legal basis for data processing

    Points (a) of Article 6(1) and (b) Article 6(1) GDPR are the legal basis for the processing of data.

    3. Purpose of data processing

    User registration is required to make certain content and services available on our website.

    In addition, you can create a personal user account on our website. This allows you to save your personal settings, to post a listing or make a booking.

    Wimdu requires your email address, a freely chosen password, a form of address, first name and surname, address, date of birth and payment details to set up an account. The given email address serves as access identification for your user account. After successful registration, you will automatically receive a confirmation email. You can update your personal data in the settings of your user account at any time.

    4. Period of storage

    The data shall be erased as soon as they are no longer required to achieve the purpose of their collection.

    This is the case for data collected during the registration process if the registration on our website is cancelled or modified.

    In addition, this is the case if the data are no longer required for the performance of the mediation contract.

    5. Possibility of objection and erasure

    As a user you have the possibility to cancel your registration at any time. You may have all stored data concerning yourself modified at any time.

    For the cancellation of your user account, please send your request to our Customer Support Team. You may contact Wimdu via our contact form or via email to datenschutz@wimdu.com. An employee of our support team will then cancel your account.

    If the data are required for the performance of a contract or in order to take steps prior to entering into a contract, premature erasure is only possible if the erasure does not conflict with contractual or statutory obligations.

    5. Use of cookies

    1. Description and scope of data processing

    Wimdu uses cookies on the website. Cookies are small text files that are stored in the cache of your browser to enable later recognition.

    We use ‘persistent’ cookies. They remain on the user's computer to simplify personalisation and registration services the next time our site is visited. Cookies can, for example, store what the user has selected. The user can manually remove the cookies at any time.

    We also use ‘session’ cookies. These do not remain on the user’s computer. Once the user leaves the site, these temporary cookies are deleted.

    We use cookies to make our site easier to use. By collecting the information, we can analyse the usage patterns and structures of the site. In this way we can continuously improve our services, for example, the content, personalisation and simplicity of the site.

    The following data are stored and transmitted through cookies:

    • Language settings
    • Currency settings
    • Login information
    2. Legal basis for data processing

    Point (f) of Article 6(1) GDPR is the legal basis for the processing of personal data using technically required cookies.

    3. Purpose of data processing

    Technically required cookies are used for the purpose of making the site easier to use. Without the use of cookies, some features on our website cannot be offered. For these, the browser needs to be recognised also after switching to another site.

    We require cookies for the following applications:

    • Storing language and currency settings
    • Remembering search terms

    User data collected through technically required cookies are not used to create user profiles.

    The purpose of using analysis cookies is to help improve the quality and content of our website. Analysis cookies show us how the website is used and help us to continuously optimise our offers.

    4. Period of Storage, possibility of objection and erasure

    Cookies are stored on the user’s computer and transmitted from there to our site. As a user, you thus have full control over the use of cookies. By changing the settings in your browser, you can deactivate or restrict the transmission of cookies. Cookies already stored can be erased at any time. This can also be done automatically. Deactivating cookies for our website may result in not being able to make full use of all the features on our website anymore. Moreover, this can lead to restrictions in the usability of our website. To opt out of third-party providers’ interest-based advertising, simply check the box that corresponds to the respective company on www.youronlinechoices.com.

    6. Web analytics and tracking

    By means of so-called ‘tracking tools’ used on the website, data are collected and stored for marketing and optimisation purposes. The user can object to future data collection and storage at any time.

    1. Scope of personal data processing

    On our website we use the following web analytics and tracking tools:

    • Google Analytics
    • Google Adwords
    • Webtrekk
    • New Relic
    • Hotjar
    2. Legal basis for personal data processing

    Point (f) of Article 6(1) GDPR is the legal basis for the processing of personal user data.

    3. Purpose of data processing

    The processing of personal user data allows us to analyse the browsing behaviour of our users. The evaluation of collected data enables us to gather information on the use of each individual component of our website. This helps us to continuously improve our website and make it easier to use. For this purpose, we have a legitimate interest in processing the data pursuant to point (f) of Article 6(1) GDPR. By anonymising the IP address, the users’ interest of personal data protection is sufficiently complied with. In detail, we use the web analytics and tracking tools as follows:

    Google Analytics

    Our website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses cookies. The information generated by the cookie concerning your use of the website is usually transmitted to and stored by Google on servers in the United States. In case of activation of the IP anonymization on this website, Google will truncate your IP address for member states of the European Union as well as for other parties of the Agreement on the European Economic Area.

    Only in exceptional cases is the full IP address sent to and shortened by a Google server in the United States. On behalf of Wimdu, Google will use this information to evaluate your use of our website, for compiling reports on website activity and providing other services relating to website activity and internet usage to Wimdu. The IP address, transmitted by your browser through Google Analytics, will not be merged with any other data stored by Google.

    You can prevent Google’s collection of data generated by cookies relating to your use of the website (including your IP address) and the processing of these data by Google by downloading and installing the browser plug-in available under https://tools.google.com/dlpage/gaoptout?hl=en-GB..

    Google AdWords

    We also use the online advertising programme Google AdWords and conversion tracking, which is part of Google AdWords. Google Conversion Tracking is an analytics service provided by Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). When you click on an advert displayed by Google, a cookie for conversion tracking is stored on your computer. These cookies expire after 30 days, do not contain any personal data and are therefore not used for personal identification.

    If you visit certain pages of our website and the cookie has not yet expired, we and Google will be able to see that you clicked on the advert and were brought to this page. Every Google AdWords customer receives a different cookie. This ensures that cookies cannot be tracked on the websites of AdWords customers.

    The information collected by means of the conversion cookie is used to compile conversion statistics for AdWords customers who have opted for conversion tracking. These statistics show the customer the total number of users who have clicked on their advert, and which of those customers were redirected to a page equipped with a conversion tracking tag. However, they do not contain any information that can be used to personally identify users.

    Webtrekk

    For the statistical evaluation of our websites, we use technology from Webtrekk GmbH, Boxhagener Str. 76-78, 10245 Berlin (www.webtrekk.de). We use Webtrekk services to collect data on the use of our website. This data is used to permanently improve and optimise our offers thus making them more interesting for you.

    When using our website, information transmitted by your browser is collected and analysed. This is accomplished by cookie technology and the so-called pixels which are included on each web page. The following data is collected in this context: request (file name of the requested file), browser type/version, browser language, operating system used, internal resolution of the browser window, screen resolution, JavaScript enabling, Java on/off, cookies on/off, colour depth, referrer URL, IP address (collected anonymously and deleted immediately after use), time of access, clicks, anonymised form content (for example, if a phone number has been specified or not).

    A direct personal reference is excluded at all times. The data thus collected is used to generate anonymous usage profiles, which form the basis for web statistics. The data collected using Webtrekk technology is not used to identify website visitors personally, without their specific consent, and is not merged with the personal data of the bearer of the pseudonym.

    New Relic

    We use the plugin New Relic, which enables us to statistically analyse the speed of the web page. This service is operated by New Relic, Inc., 188 Spear Street, Suite 1200 San Francisco, CA 94105, USA (“New Relic”).

    When a user visits a web page which contains such a plugin, their browser builds a direct connection to the servers of New Relic. Therefore, the provider has no influence on the scope of data collected by New Relic and informs the user according to its current information.

    By integrating the plugin, New Relic receives the information that a user has accessed the corresponding page of the offer. If the user is logged in at New Relic, New Relic may assign their visit to their account at New Relic. If a user is not a member of New Relic, there is still the possibility that New Relic will detect and save their IP address.

    The purpose and scope of data collection and the further processing and use of data by New Relic, as well as the corresponding rights and settings to protect the privacy of users, can be found in New Relic’s privacy policy under: https://newrelic.com/privacy.

    Hotjar

    We use the software Hotjar to improve user experience on our web pages. Hotjar helps us to measure and evaluate the user’s behaviour (mouse movements, clicks, scroll height, etc.) on our web pages. For this purpose, Hotjar uses cookies on the user’s devices and it can store user data such as browser information, operating system, time spent on the website, etc.

    4. Period of storage

    The data shall be erased as soon as they are no longer required for our tracking purposes.

    5. Possibility of objection and erasure

    Cookies are stored on the user’s computer and transmitted from there to our site. As a user you thus have full control over the use of cookies. By changing the settings in your browser you can deactivate or restrict cookie transmission. Cookies already stored can be erased at any time. This can also be done automatically. Deactivating cookies for our website may result in not being able to make full use of all the features on our website anymore.

    Google Analytics:

    You can prevent Google’s collection of data generated by cookies relating to your use of the website (including your IP address) and the processing of these data by Google by downloading and installing the browser plug-in available under https://tools.google.com/dlpage/gaoptout?hl=en-GB. Furthermore, you have the possibility to deactivate Google’s collection of website usage data. To do so, please click the following link. By providing confirmation via this link, an opt-out cookie is set on your data carrier. Please note that, when deleting all cookies on your computer, this opt-out cookie is also deleted. If you want to continue to object anonymised data collection by Google, you must set the opt-out cookie again. The opt-out cookie is set per browser and computer. If you visit our web pages from different devices or using different browsers, you must enable the opt-out cookie on each of the different browsers or computers.

    Google Adwords:

    If you do not want to participate in tracking, you can object to this usage by preventing the installation of cookies by selecting the appropriate setting in your browser software (deactivation option). By doing so, you will not be included in the conversion tracking statistics. For additional information and Google’s privacy policy, please visit http://www.google.com/policies/technologies/ads/, http://www.google.com/policies/privacy/.

    Webtrekk:

    The collection and storage of data by Webtrekk can be objected to at any time with future effect. To do so, please click the following link. By providing confirmation via this link, a so-called opt-out cookie is set on your data carrier. The validity period of this cookie is 5 years. Please note that, when deleting all cookies on your computer, this opt-out-cookie is also deleted. If you want to continue to object anonymised data collection by Webtrekk, you must set the opt-out cookie again. The opt-out cookie is set per browser and computer. If you visit our web pages from different devices or using different browsers, you must enable the opt-out cookie on each of the different browsers or computers.

    New Relic:

    If a user is a member of New Relic and does not want New Relic to collect data about them through this offer and associate them with their membership data saved at New Relic, the user must log out of New Relic before visiting the website.

    Hotjar:

    For more information about data processing by Hotjar, please click here: https://www.hotjar.com/privacy.

    7. Re-targeting

    1. Scope of personal data processing

    Our website uses so called re-targeting technology. We use the following technologies:

    • Goolge Analytics
    • Criteo GmbH
    • Web beacons/pixels
    2. Legal basis for personal data processing

    Point (f) of Article 6(1) GDPR is the legal basis for the processing of personal user data.

    3. Purpose of data processing

    We use these technologies to make our internet offers more appealing to you. This technology allows us to address internet users who are already interested in our offers via advertising on the websites of our partners. For this purpose, we have a legitimate interest in processing the data pursuant to point (f) of Article 6(1) GDPR. The anonymisation of the IP address sufficiently takes into account the interest of users in their protection of personal data. In detail, we use the technologies as follows:

    Criteo GmbH

    We use tracking technology from Criteo GmbH on our website. This technology allows us to address internet users who have visited our website via targeted product recommendations in the form of advertising banners on the websites of our partners. Such advertising banners are displayed on our partners’ sites based on cookies and an analysis of your previous user behaviour. This analysis is conducted anonymously; no usage profiles are merged with your real name.

    Web beacons/pixels

    We may also use pixels. A pixel is a tiny graphic that is only one pixel in size and is sent to your computer either via a web page request or in an HTML email format. These pixels are used either directly or by third parties as a part of online advertising on our website or third-party websites. This enables us to learn whether a customer viewing the advertisement actually makes a booking. In addition, this makes it possible to track conversion through partner websites and to analyse the traffic patterns of users on the website in order to optimise our offers for you.

    4. Period of storage

    The data shall be erased as soon as they are no longer required for our tracking purposes.

    5. Possibility of objection and erasure

    By changing the settings in your internet browser you can deactivate or restrict cookie transmission. This can also be done automatically. Deactivating cookies for our website may result in not being able to make full use of all the features on our website anymore.

    Criteo GmbH

    You may object to the collection of data by Criteo GmbH at any time under the following link: https://criteo.com/privacy.

    8. Social plugins (Facebook Connect, Google Sign-In)

    1. Scope of personal data processing

    Facebook Connect is a service provided by Facebook, Inc. The use of Facebook Connect is subject to the privacy policy and terms of use of Facebook.

    Google Sign-In is a service provided by Google LLC. The use of Google Sign-In is subject to the privacy policy and terms of use of Google.

    When using Facebook Connect, data available to the public and data from your Facebook profile published on Facebook are transmitted to our website. When using Google Sign-In, data available to the public and data from your Google profile are transmitted to our website. Conversely, data from our website or the Wimdu app can also be transmitted to your Facebook or Google profile.

    2. Legal basis for the processing of personal data

    Point (a) of Article 6(1) GDPR is the legal basis for the processing of personal user data.

    3. Purpose of data processing

    Your transmitted data is stored and processed by Wimdu for the purpose of registration on our platform. By registering on our platform via Facebook Connect or Google Sign-In, you agree to the transfer of data from your Facebook or Google profile to Wimdu, and the transfer of data from Wimdu to Facebook or Google.

    4. Period of storage

    The data shall be erased as soon as they are no longer required for our tracking purposes. The data are thus stored for as long as the user needs the data for registration / login.

    5. Possibility of objection and erasure

    The user can terminate the user account at any time.

    9. Contact form

    1. Description and scope of data processing

    You can contact Wimdu directly using the contact form provided in the imprint. If a user makes use of this option, the data entered into the input mask will be transferred to us and stored by us. This relates to the following data:

    • Email address
    • Phone number, if required
    • Offer number, if required
    • Entered text/request
    • Added attachments

    At the time the message is sent, the following data are also stored:

    • IP address of the user
    • Date and time of registration

    For the processing of data, your consent will be obtained during the sending process and reference is made to this privacy policy.

    Alternatively, you can also contact us under the following email address: contact@wimdu.com. In this case, the personal user data transferred through the email are stored.

    In this context, no data is disclosed to third parties. The data will be used strictly for the purpose of processing the conversation.

    2. Legal basis for data processing

    Point (a) of Article 6(1) GDPR is the legal basis for the processing of data, provided that the user has given consent.

    Point (f) of Article 6(1) GDPR is the legal basis for the processing of data transferred when sending an email. If the email contact is aimed at concluding a contract, point (b) of Article 6(1) GDPR is an additional legal basis for the processing.

    3. Purpose of data processing

    Wimdu collects, processes and uses information provided by you via the contact form only for the purpose of processing your request. If contact was established via email, a legitimate interest to process data is given for this purpose.

    Other personal data processed during the sending process are used to prevent misuse of the contact form and to ensure the security of our information technology systems.

    4. Period of storage

    The data shall be erased as soon as they are no longer required to achieve the purpose of their collection. For personal data from the input mask of the contact form and for personal data transferred via email this is the case as soon as the respective conversation with the user is finished. The conversation is finished when it can be inferred from the circumstances that the issue concerned was resolved.

    The personal data additionally collected during the sending process shall be erased after a period of 60 days at the latest.

    5. Possibility of objection and erasure

    The user can at any time revoke their consent to the processing of personal data. If a user contacts us via email, they can at any time object to the storage of their personal data. In this case, the conversation cannot be continued.

    The user may revoke their consent to the processing of personal data and object to the storage of personal data at any time with effect for the future free of charge under datenschutz@wimdu.com or by written notice to Wimdu GmbH, attn. Data Protection Officer, Voltastraße 5, 13355 Berlin.

    All personal data stored in connection with contacting shall be erased in this case.

    10. Newsletter

    1. Description and scope of data processing

    It is possible to subscribe to a free newsletter on our website. When registering for the newsletter, the data from the input mask is transferred to us.

    In connection with the processing of data for sending newsletters, no data is disclosed to third parties. The data will be used strictly for the purpose of sending the newsletter.

    2. Legal basis for data processing

    Point (a) of Article 6(1) GDPR is the legal basis for the processing of data after the user has registered for the newsletter, provided that the user has given consent.

    3. Purpose of data processing

    Wimdu uses the email address used to create your user account to send you information about general promotions and offers from Wimdu via email, provided that you have agreed to receive the newsletter. Wimdu may personalise the newsletter content in a way that it contains information Wimdu considers to be of particular interest to you. For such a personalisation of information, Wimdu considers your booking history, i.e. past bookings and offers previously viewed on the website.

    4. Period of storage

    The data shall be erased as soon as they are no longer required to achieve the purpose of their collection. The user’s email address will be stored for as long as the subscription to the newsletter is active.

    5. Possibility of objection and erasure

    You can manage your settings for the Wimdu newsletter within your user account. You can also opt-out of receiving the newsletter in your user account or by using the contact form. Additionally, a link to unsubscribe is included in every newsletter.

    11. Rights of the data subject

    If personal data relating to you are processed, you are referred to as data subject as laid down in the GDPR and you shall be entitled to the following rights against the controller:

      1. Right of access

      You have the right to free information about your saved personal data.

      You have the right to obtain from the controller confirmation as to whether or not personal data concerning you are being processed by us.

      If that is the case, you can request access to the following information from the controller:

      1. the purposes for which the personal data are processed;
      2. the categories of personal data concerned;
      3. the recipients or categories of recipients to whom personal data concerning you have been or will be disclosed;
      4. the envisaged period for which personal data concerning you will be stored, or, if no concrete data are available, the criteria used to determine that period;
      5. the existence of the right to request from the controller rectification or erasure of personal data concerning you, a right to the restriction of processing of personal data by the controller or a right to object to such processing;
      6. the right to lodge a complaint with a supervisory authority;
      7. any available information regarding the source of the data, where the personal data are not collected from the data subject;
      8. the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.

      You have the right to request information as to whether personal data concerning you are transferred to a third country or to an international organisation. In this context, you have the right to be informed of the appropriate safeguards pursuant to Article 46 GDPR relating to the transfer.

      2. Right to rectification

      We take reasonable steps to ensure that saved personal data are accurate. It is your responsibility to ensure that the information transferred to us is accurate, complete and free from errors, and to inform us in due time of any changes to the information provided.

      You have the right to obtain from the controller the rectification and/or completion of inaccurate or incomplete personal data concerning you. Rectification shall be effected by the controller without undue delay.

      3. Right to restriction of processing

      You have the right to obtain restriction of processing personal data concerning you under the following conditions:

      1. if you contest the accuracy of personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;
      2. if the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
      3. If the controller no longer needs the personal data for the purposes of the processing, but you require them for the establishment, exercise or defence of legal claims, or
      4. if you objected to processing pursuant to Article 21(1) GDPR pending the verification whether the legitimate grounds of the controller override yours.

      Where the processing of personal data concerning you have been restricted, such personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

      If the processing was restricted pursuant to the above mentioned conditions, you shall be informed by the controller before the restriction of processing is lifted.

      4. Right to erasure

      Under certain conditions you can request the erasure of personal data saved by us. This does not include data which need to be stored by Wimdu for reasons of public interest.

      a) Obligation to erase

      You have the right to obtain from the controller the erasure of personal data concerning you without undue delay and the controller shall have the obligation to erase such data without undue delay where one of the following grounds applies:

      1. The personal data concerning you are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
      2. You withdraw consent on which the processing was based according to point (a) of Article 6(1) or point (a) of Article 9(2) GDPR, and there is no other legal ground for the processing.
      3. You object to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21(2) GDPR.
      4. The personal data concerning you have been unlawfully processed.
      5. It is necessary to erase the personal data concerning you for compliance with a legal obligation in Union or Member State law to which the controller is subject.
      6. The personal data concerning you have been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.
      b) Information to third parties

      Where the controller has made the personal data concerning you public and is obliged pursuant to Article 17(1) GDPR to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that you, as the data subject, have requested the erasure by such controllers of any links to, or copy or replication of, those personal data.

      c) Exceptions

      The right to erasure shall not apply to the extent that processing is necessary:

      1. for exercising the right of freedom of expression and information;
      2. for compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
      3. for reasons of public interest in the area of public health in accordance with points (h) and (i) of Article 9(2) as well as Article 9(3) GDPR;
      4. for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89(1) GDPR in so far as the right referred to in paragraph 1 is likely to render impossible or seriously impair the achievement of the objectives of that processing, or
      5. for the establishment, exercise or defence of legal claims.
      5. Right to information

      If you exercised the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to communicate any rectification or erasure of personal data or restriction of processing to each recipient to whom the personal data concerning you have been disclosed, unless this proves impossible or involves disproportionate effort.

      You have the right to be informed by the controller about those recipients.

      6. Right to data portability

      You have the right to receive the personal data concerning you, which you have provided to a controller, in a structured, commonly used and machine-readable format. Furthermore, you have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where:

      1. the processing is based on consent pursuant to point (a) of Article 6(1) GDPR or point (a) of Article 9(2) GDPR or on a contract pursuant to point (b) of Article 6(1) GDPR; and
      2. the processing is carried out by automated means.

      In exercising this right, you also have the right to have the personal data concerning you transmitted directly from one controller to another, where technically feasible. This shall not adversely affect the rights and freedoms of others.

      The right to data portability shall not apply to processing personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

      7. Right to object

      You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions.

      The controller shall no longer process the personal data concerning you unless the controller demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.

      Where personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.

      Where you object to processing for direct marketing purposes, the personal data concerning you shall no longer be processed for such purposes.

      In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object by automated means using technical specifications.

      8. Revocation of consent

      You may revoke your consent to the collection, processing and use of data at any time with effect for the future free of charge under datenschutz@wimdu.com or via written notice to Wimdu GmbH, attn. Data Protection Officer, Voltastraße 5, 13355 Berlin. The lawfulness of processing based on consent before its withdrawal shall not be affected by the withdrawal of consent.

      9. Automated individual decision-making, including profiling

      You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This shall not apply if the decision:

      1. is necessary for entering into, or the performance of, a contract between yourself and a data controller;
      2. is authorised by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests, or
      3. is based on your explicit consent.

      However, such decisions shall not be based on special categories of personal data referred to in Article 9(1) GDPR, unless point (a) or (g) of Article 9(2) GDPR applies and suitable measures to safeguard your rights and freedoms and legitimate interests are in place.

      In the cases referred to in points (1) and (3), the data controller shall implement suitable measures to safeguard your rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, to express your point of view and to contest the decision.

      10. Right to lodge a complaint with a supervisory authority

      Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to yourself infringes the GDPR.

      The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Article 78 GDPR.

    For further questions on our privacy policy and the processing of personal data, please contact us under datenschutz@wimdu.com. You may also reach us using the contact details provided in the imprint.