Privacy Policy

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data with which you can be personally identified. For detailed information on data protection, please refer to our privacy policy set out below.

Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. You will find the operator's contact details in the "Information on the controller" section of this privacy policy.

How do we collect your data?
On the one hand, your data is collected because you provide it to us. This can be, for example, data that you enter into a contact form or the waitlist form. Other data is collected automatically when you visit the website through our IT systems. This is primarily technical data such as your internet browser, operating system or the time the page was accessed. This data is collected automatically as soon as you enter this website.

What do we use your data for?
Some of the data is collected to ensure the website is provided without error. Other data may be processed to handle your enquiries and bookings.

What rights do you have regarding your data?
You have the right at any time to obtain information free of charge about the origin, recipients and purpose of your stored personal data. You also have a right to request the correction or deletion of this data. If you have given your consent to data processing, you can withdraw this consent at any time with effect for the future. You also have the right, under certain circumstances, to request the restriction of the processing of your personal data. Furthermore, you have the right to lodge a complaint with the competent supervisory authority. You can contact us at any time on this and any other questions about data protection.

The provider is Vercel Inc., 340 S Lemon Ave #4133, Walnut, CA 91789, USA. When you visit our website, Vercel collects various log data including your IP address in order to make it technically possible to deliver the website and to ensure security and stability. For details, please refer to Vercel's privacy policy: https://vercel.com/legal/privacy-policy.

The use of Vercel is based on Article 6 (1) (f) GDPR. We have a legitimate interest in presenting our website as reliably and quickly as possible. Where personal data is transferred to the USA, the transfer is based on the European Commission's standard contractual clauses. We have concluded a data processing agreement (DPA) with the provider.

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy. When you use this website, various items of personal data are collected. This privacy policy explains what data we collect and what we use it for. We point out that data transmission over the internet, such as communication by email, can have security vulnerabilities. Complete protection of data against access by third parties is not possible.

The controller responsible for data processing on this website is:

FJORD HOMES AS
c/o Kraft Rådgivning og Økonomi AS
Stasjonsgata 34a
4580 Lyngdal
Norway

Phone: +49 (0)151 21274702
Email: hello@fjord-homes.com

The controller is the natural or legal person who alone or jointly with others decides on the purposes and means of the processing of personal data.

Unless a more specific storage period has been stated within this privacy policy, your personal data will remain with us until the purpose for which it was processed no longer applies. If you assert a justified request for deletion or withdraw your consent to data processing, your data will be deleted, provided we have no other legally permissible reasons for storing your personal data, such as retention periods under tax or commercial law. In the latter case, deletion takes place once these reasons no longer apply.

If you have consented to the data processing, we process your personal data on the basis of Article 6 (1) (a) GDPR. In the event of express consent to the transfer of personal data to third countries, data processing is also based on Article 49 (1) (a) GDPR. If you have consented to the storage of cookies or to access information on your terminal device, data processing additionally takes place on the basis of Section 25 (1) TDDDG (German Telecommunications-Digital-Services-Data-Protection Act). Consent can be withdrawn at any time. Where your data is required for the performance of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Article 6 (1) (b) GDPR. Furthermore, we process your data where this is necessary to comply with a legal obligation, on the basis of Article 6 (1) (c) GDPR. Data processing may also take place on the basis of our legitimate interest under Article 6 (1) (f) GDPR.

We use, among other things, tools from companies based in the USA. Where these tools are active, your personal data may be transferred to the USA and processed there. A transfer of data to the USA is permissible where the recipient has a certification under the EU-US Data Privacy Framework (DPF) or has put in place appropriate additional safeguards such as the European Commission's standard contractual clauses.

In the course of our business activities we cooperate with various external organisations. In some cases, it is also necessary to transmit personal data to these external organisations. We only pass personal data on to external organisations where this is necessary for the performance of a contract, where we are legally obliged to do so, where we have a legitimate interest under Article 6 (1) (f) GDPR in passing on the data, or where another legal basis permits the data transfer.

Many data processing operations are only possible with your express consent. You can withdraw consent you have already given at any time. The lawfulness of any data processing carried out prior to the withdrawal of consent remains unaffected.

If data processing is based on Article 6 (1) (e) or (f) GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data. You will find the respective legal basis on which processing is based in this privacy policy. If you lodge an objection, we will no longer process your personal data concerned unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims (objection under Article 21 (1) GDPR). If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purposes of such marketing. If you object, your personal data will subsequently no longer be used for direct marketing purposes (objection under Article 21 (2) GDPR).

In the event of breaches of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged breach. The right to lodge a complaint exists without prejudice to any other administrative or judicial remedy.

You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

Within the scope of the applicable statutory provisions, you have the right at any time to receive free information about your stored personal data, its origin and recipients and the purpose of the data processing and, where applicable, a right to rectification or erasure of this data. You can contact us at any time on this and any other questions on the subject of personal data.

You have the right to request the restriction of the processing of your personal data. You can contact us at any time to do so. The right to restriction of processing exists in the following cases: If you dispute the accuracy of your personal data stored with us, we usually need time to verify this. For the duration of the verification, you have the right to request the restriction of the processing of your personal data. If the processing of your personal data took place or is taking place unlawfully, you can request the restriction of data processing instead of erasure. If we no longer need your personal data, but you need it to exercise, defend or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of its erasure. If you have lodged an objection under Article 21 (1) GDPR, your interests and ours must be weighed against each other. As long as it has not yet been established whose interests prevail, you have the right to request the restriction of the processing of your personal data. If you have restricted the processing of your personal data, this data may, with the exception of its storage, only be processed with your consent or for the establishment, exercise or defence of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the European Union or a Member State.

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as enquiries you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser bar. When SSL or TLS encryption is enabled, the data you transmit to us cannot be read by third parties.

Our website uses so-called cookies in some places. Cookies are small data packets and do not cause any damage to your terminal device. They are either stored temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your terminal device. Session cookies are automatically deleted after your visit. Persistent cookies remain stored on your terminal device until you delete them yourself or until they are automatically deleted by your web browser. Cookies that are required for carrying out the electronic communication process or for providing certain functions you have requested (necessary cookies) are stored on the basis of Article 6 (1) (f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimised provision of its services. Where consent to the storage of cookies and comparable recognition technologies has been requested, processing takes place exclusively on the basis of this consent (Article 6 (1) (a) GDPR and Section 25 (1) TDDDG). Consent can be withdrawn at any time. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are: browser type and browser version, operating system used, referrer URL, host name of the accessing computer, time of the server request and IP address. This data is not merged with other data sources. The collection of this data is based on Article 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimisation of its website, for which the server log files must be collected.

If you send us enquiries via the contact form, your information from the enquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the enquiry and in case of follow-up questions. We do not pass on this data without your consent. The processing of this data is based on Article 6 (1) (b) GDPR, insofar as your enquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of enquiries addressed to us (Article 6 (1) (f) GDPR) or on your consent (Article 6 (1) (a) GDPR), where this has been requested. Consent can be withdrawn at any time. The data you enter into the contact form will remain with us until you request its deletion, withdraw your consent to its storage, or the purpose for storing the data no longer applies. Mandatory statutory provisions, in particular retention periods, remain unaffected. For the technical transmission of form messages, we use the service Formspree, see section "Form processing via Formspree".

If you contact us by email or phone, your enquiry including all personal data arising from it (name, enquiry) will be stored and processed by us for the purpose of handling your enquiry. We do not pass on this data without your consent. The processing of this data is based on Article 6 (1) (b) GDPR, insofar as your enquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of enquiries addressed to us (Article 6 (1) (f) GDPR) or on your consent (Article 6 (1) (a) GDPR). The data you send us will remain with us until you request its deletion, withdraw your consent to its storage, or the purpose for storing the data no longer applies. Mandatory statutory provisions, in particular statutory retention periods, remain unaffected.

For the technical processing and delivery of messages sent via our contact form and our waitlist form, we use the service Formspree. The provider is Formspree, Inc., 2810 N Church St, Wilmington, DE 19802, USA. When you submit one of our forms, the data you enter (for example name, email address and message text) is transmitted to Formspree, processed there and delivered to our email address. Processing is based on Article 6 (1) (b) GDPR insofar as the enquiry serves the initiation of a contract, and otherwise on our legitimate interest in the reliable handling of enquiries (Article 6 (1) (f) GDPR). The transfer of data to the USA is based on the European Commission's standard contractual clauses. We have concluded a data processing agreement with the provider. Further information can be found in Formspree's privacy policy: https://formspree.io/legal/privacy-policy.

On the page of our Odrelia property we offer the option to sign up, without obligation, to a prospect or waitlist. For this purpose we require the email address you provide and your name. We use this data solely to inform you as soon as the property concerned becomes bookable. Processing is based exclusively on your consent (Article 6 (1) (a) GDPR). You may withdraw the consent given at any time with effect for the future by sending us an informal message. The lawfulness of any data processing already carried out remains unaffected by the withdrawal. The data stored for the purpose of the waitlist is kept by us until you unsubscribe from the waitlist or the purpose no longer applies, for example because the property becomes permanently bookable, and is then deleted. The technical transmission takes place via the service Formspree, see section "Form processing via Formspree".

We use the service Smoobu (Smoobu GmbH, Wönnichstr. 68/70, 10317 Berlin, Germany) to manage our accommodations and bookings (channel manager), for guest communication, invoicing and online check-in. The Smoobu booking tool is embedded on our website.

On the individual property pages, the booking widget is only loaded after you actively click "Show availability", so that no third-party provider loads resources without your consent. On the overview page /verfuegbarkeit the widget loads directly because this page is explicitly accessed for booking.

Which data is processed?
Master data (for example name, address, email, phone), booking data (arrival and departure date, number of guests, property), communication content, payment and accounting data and, if required, identification data for the registration-relevant check-in.

Purpose and legal basis
Processing takes place for the performance of a contract or for the implementation of pre-contractual measures (Article 6 (1) (b) GDPR) as well as for the fulfilment of legal obligations, for example registration obligations (Article 6 (1) (c) GDPR). In part we rely on legitimate interests such as optimised processes, secure administration and spam prevention (Article 6 (1) (f) GDPR).

Data processing on behalf
We have concluded a data processing agreement with Smoobu in accordance with Article 28 GDPR. The data is processed on servers in the EU or in Germany. The embedded booking widget loads technical support resources from the Cloudflare CDN (cdnjs.cloudflare.com, Cloudflare Inc.) for display. Further information: https://www.smoobu.com/de/datenschutz/.

Data origin and disclosure
Data reaches Smoobu either directly through our booking route or is synchronised from booking platforms (for example Airbnb, Booking.com). These platforms are themselves controllers. Information on the data protection of the respective providers can be found here: Airbnb: https://www.airbnb.de/help/article/2855, Booking.com: https://www.booking.com/content/privacy.de.html.

Storage duration
We store personal data for as long as is necessary to process the booking, to fulfil statutory retention obligations (in particular tax and commercial law) or to assert and defend claims.

On our website we link to our profiles on Instagram, Facebook and LinkedIn. These are exclusively simple links, not embedded content or plugins of the networks named. A transfer of data to the operators of these networks therefore only takes place when you actively click on one of the links and access the respective platform. We have no influence on the data processing that takes place after access on the platforms. The privacy policies of the respective provider apply: Instagram and Facebook (Meta Platforms Ireland Limited): https://www.facebook.com/privacy/policy, LinkedIn (LinkedIn Ireland Unlimited Company): https://www.linkedin.com/legal/privacy-policy.