IMPORTANT NOTICE: This English translation of the German text is provided for your convenience. The legally-binding text is the German version.
The operators of these sites take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations as well as this data protection statement.
The use of our website is normally possible without giving personal data. If personal data (eg name, address or e-mail addresses) are collected on our pages, this is always done on a voluntary basis as far as possible. These data will not be passed on to third parties without your express consent.
We would like to point out that data transmission on the Internet (for example, when communicating via e-mail) can present security gaps. A complete protection of the data before access by third parties is not possible.
The Internet pages partly use so-called cookies. Cookies do not damage your computer and contain no viruses. Cookies serve to make our offer more user-friendly, effective and safer. Cookies are small text files which are stored on your computer and which your browser saves.
Most of the cookies we use are so called "session cookies". They are automatically deleted after your visit. Other cookies remain on your device until you delete them. These cookies allow us to recognize your browser on the next visit.
You can set your browser to inform you about setting cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for specific cases or in general, and to activate the automatic deletion of cookies when the browser is closed. The functionality of this website may be restricted when cookies are deactivated.
Server log files
The provider of the pages automatically collects and saves information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and browser version
- Operating system
- Referrer URL
- Hostname of the accessing computer
- Time of server request
These data can not be attributed to specific persons. This data is not merged with other data sources. We reserve the right to review these data at a later date, if concrete indications of unlawful use become known to us.
Data protection information according to Art. 13, 14 and 21 of the EU General Data Protection Regulation (EU GDPR)
With these data protection notices, we inform you, our customers, in accordance with the EU General Data Protection Regulation (EU GDPR) applicable from 25 May 2018 on the processing of your personal data by us as well as the rights to which you are entitled. These notes will be updated as necessary and published at www.oman.de. There you will also find further privacy notices for the visitors of our website.
1.Who is responsible for data processing and to whom can you contact?
Responsible for the data processing we are - Your tour operator ARABIA FELIX Synform GmbH, Treffauerstr. 18, 81373 Munich, email: firstname.lastname@example.org
2. What data and sources do we use?
We process data that we receive in the course of processing our business relationship with you. The data is obtained directly from you, e.g. as part of the travel or car rental booking or any other order.
Specifically, we process for the performance of our services:
- Master data for the execution and fulfillment of the travel service. (e.g., the name and address of the travel applicant, e-mail address, telephone number, names of people traveling with you and, if necessary, the date of birth of all travelers)
- If necessary Legitimization data for VISA applications (such as passport data) and, if applicable, driver's license
- data related to the processing of payments and, if necessary, as collateral for the provision of travel services (eg credit card information)
- correspondence (e.g., correspondence or e-mail traffic with you)
- Data of your previous bookings and stays so far booked or mediated by us (for example, previous trips, reviews, possibly interested in future trips of ARABIA FELIX Synform GmbH)
- health data for the prevention of accidents and for the protection of the traveler (eg degree of physical disability, severely handicapped ID, food intolerances, allergies, pregnancies)
3. On which legal basis is your data used (purpose of the data processing)?
The following information provides information on what and for what purpose we process your data.
3.1 For the fulfillment of contractual obligations (Article 6 (1) (b) EU GDPR)
We process your data to carry out our contracts with you, i. in particular for the execution and processing of booked travel services. The purposes of the data processing are in detail according to the actual travel services and the contract documents (for example, overnight, transfer, rental car, flights)
3.2 In the context of balance of interests (Article 6 (1) (f) EU GDPR)
To protect legitimate interests, your information may be used by us or by third parties for the following purposes:
- Support of our sales organization in travel consulting and support
- Further development of travel services and additional products
- Assert legal claims and defense in legal disputes
- Prevention and investigation of criminal offenses
- Ensuring IT security and availability of IT operations
Our interest in the respective processing results from the respective purposes and is otherwise of an economic nature (efficient performance of tasks, distribution, avoidance of legal risks). As far as the specific purpose allows, we process your data pseudonymized or anonymized.
3.3 On the basis of your consent (Article 6 (1) (a) EU GDPR)
If you have given us consent to the processing of your personal data, this respective consent is the legal basis for the processing mentioned therein. In addition, you may have the promotional address by e-mail, phone or messenger service approved. You can revoke your consent at any time with effect for the future. This also applies to declarations of consent that you have given us before the validity of the EU GDPR, ie before 25 May 2018. The revocation works only for future processing, not for already done. Please contact our contact address.
3.4 Due to legal requirements (Article 6 (1) (c) EU GDPR)
We are subject to various legal obligations and legal requirements (eg Civil Code (BGB), Commercial Code (HGB), GoB, Passenger Information Act, EU Package Travel Directive, Tax Laws of the Federal Republic of Germany). The purposes of the processing include identity and age checks, fraud prevention, the fulfillment of tax control and reporting obligations as well as the assessment and management of risks.
4. Who gets my data?
A transfer of your data takes place only in compliance with the EU GDPR and only as far as a legal basis allows. Within our sales organization, only those entities will receive the information they need to fulfill our contractual and regulatory obligations or to perform their respective duties (for example, sales, customer care, tour guides, tour operators, hotels, rental cars or transfer companies).
In addition, the following locations can receive your data:
- Commissioned processors (Art. 28 EU-GDPR), especially in the area of ??booking systems and IT services, logistics and printing services, who process your data according to our instructions
- public authorities and institutions (tax authorities, embassies of the destination country) in the presence of a legal or regulatory obligation (retention requirements, VISA procurement,
- Obtaining entry requirements) as well
- other entities for which you have given us your consent to the transfer of data.
5. How long will my personal information be stored?
If necessary, we process your personal data for the duration of our business relationship, which includes the initiation and execution of a contract for the execution of a travel service. In addition, we are subject to a variety of storage and documentation obligations, including but not limited to the Civil Code (BGB), the Commercial Code (HGB), the Tax Code (AO) and the EU Package Travel Directive. The deadlines for storage and documentation specified there are two to a maximum of ten years. Finally, the storage period is also judged by the statutory limitation periods, which, for example, according to §§ 195 ff. Of the Civil Code (BGB) usually three years. The storage of your personal data based on your consent takes place until further notice.
6. Will my data be transmitted to a third country?
We only transfer your data to countries outside the European Union if this is necessary or required by law to carry out travel services (long-distance travel) or if you have given us your consent.
7. Do I have specific rights in handling my data?
Under the respective legal requirements they have the right to information (Art. 15 EU-DSGVO, § 34 Federal Data Protection Act (BDSG) in its version valid from 25 May 2018), to rectification (Art. 16 EU-DSGVO), to cancellation (Art. 17 EU-DSGVO or § 35 BDSG), to limitation of processing (Art. 18 EU-DSGVO) and to data portability (Art. 20 EU-GDPR). You also have a right of appeal to a data protection supervisory authority (Art. 77 EU-DSGVO or § 19 BDSG).
8. Is there a duty for me to provide my data?
As part of our business relationship, you only need to provide the personal information that is required to establish, conduct and terminate a business relationship or that we are required to collect by law. Without this data, we will generally have to refuse to conclude the contract or to execute the order or to be unable to complete an existing contract and to terminate it if necessary.
9. Is there automated decision-making in individual cases?
In principle, we do not use automated decision-making pursuant to Art. 22 EU GDPR to establish and conduct the business relationship. If we use these procedures in individual cases, you will be informed separately, provided that this is prescribed by law.
10. Will my data be used in any way for profiling?
ARABIA FELIX Synform GmbH do not process your data in any way with the aim to evaluate your potential interest in certain products, offers and services. (so-called "profiling" according to Art. 4 Nr. 4 EU-DSGVO).
11. Which rights as a customer do I have?
You have the right at any time, for reasons arising out of your particular situation, to prevent the processing of personal data relating to you which, pursuant to Article 6 (1) lit. f EU-DSGVO (data processing based on a balance of interests) takes place, objecting. This also applies to profiling based on this provision within the meaning of Art. 4 No. 4 EU-GDPR, which can be for customer consultation and support. If you object, we will no longer process your personal data. In addition, according to Art. 15 EU-GDPR you have a permanent right of withdrawal to your consent to data processing for further purposes, should you have given us consent to this form. The objection can be made in each case form-free to the contact address known to you.
Each data subject has the right to complain to the supervisory authority if it considers that the processing of the data concerning them violates data protection provisions. The right to complain may in particular be made with the supervisory authority of your state or be asserted at the place of the material breach. An up-to-date list of regulators can be found at: