You are using an outdated webbrowser.
Please update your browser software.
Sie benützen einen veralteten Webbrowser.
Bitte aktualisieren Sie Ihre Browsersoftware.
Logo - World Heritage Beech Forests
Foto: Weltnaturerbe Buchenwälder Hainich
Unesco - We are Europe's Wilderness - Ancient and Primeval Forests of the Carpathians and Other Regions of Europe
Foto: Weltnaturerbe Buchenwälder Hainich
Unesco - We are Europe's Wilderness - Ancient and Primeval Forests of the Carpathians and Other Regions of Europe

Privacy Policy

Personal data (hereinafter referred to as "data") will only be processed by us to the extent necessary and for the purpose of providing a functional and user-friendly website, including its contents, and the services offered there.

Pursuant to Article 4 (1) of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to only as "GDPR"), "processing" refers to any operation or set of operations performed upon personal data with or without the assistance of automated processes, such as collection, recording, organisation, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction.

The following privacy policy is intended to inform you in particular about the type, scope, purpose, duration, and legal basis for the processing of personal data, insofar as we decide either alone or jointly with others on the purposes and means of processing. We also inform you below about the third-party components we use to optimise our website and to improve the user experience, which may result in said third parties also processing data they collect and control.

Our privacy policy is structured as follows:

I. Information about us as controller or controller responsible for processing
II. Rights of users and data subjects
III. Information on data processing

Information about us as controller

The party responsible for this website (the "controller") for purposes of data protection law is:

Manfred Grossmann

Hainich National Park
Bei der Marktkirche 9
D-99947 Bad Langensalza

manfred.grossmann(at)nnl.thueringen.de

Rights of users and data subjects

With regard to the data processing described in more detail below, users and data subjects have the right

  • to confirmation as to whether data concerning them is being processed, to information about the data being processed, to further information about the nature of data processing, and to copies of the data (cf. also Art. 15 GDPR);
  • to correct or complete incorrect or incomplete data (cf. also Art. 16 GDPR);
  • to the immediate deletion of the data concerning them (cf. also Art. 17 GDPR), or, alternatively, if further processing is necessary as stipulated in Art. 17 (3) GDPR, to restrict said processing pursuant to Art. 18 GDPR;
  • to receive the data concerning them and provided by them and to have said data transmitted to other providers/controllers (cf. also Art. 20 GDPR);
  • to file complaints with the supervisory authority if they believe that data concerning them is being processed by the controller in breach of data protection provisions (see also Art. 77 GDPR)

In addition, the controller is obliged to inform all recipients to whom data has been disclosed by the provider of any correction, deletion, or restriction of processing pursuant to Articles 16, 17 (1), and 18 GDPR. However, this obligation does not apply if such notification is impossible or involves a disproportionate effort. Nevertheless, users have a right to information about these recipients.

Likewise, under Art. 21 GDPR, users and data subjects have the right to object to the future processing of data concerning them, provided that said data is processed by the controller in accordance with Art. 6 (1)(f) GDPR. In particular, an objection to data processing for the purpose of direct marketing is permissible.

Information on data processing

Your data processed when using our website will be deleted or blocked as soon as the purpose for its storage ceases to apply, provided the deletion of the data is not in breach of any statutory retention requirements or unless otherwise stipulated below.

Server data

For technical reasons, the following data sent by your internet browser to us or to our server provider will be collected, especially to ensure a secure and stable website: These server log files record the type and version of your internet browser, the operating system, the website from which you accessed our website (referrer URL), the webpage(s) you visited on our site, the date and time of your visit, as well as the IP address from which you visited our site.

The data thus collected will be temporarily stored, but not in association with any other of your data.

The legal basis for this storage is Art. 6 (1)(f) GDPR. Our legitimate interest is the improvement, stability, functionality, and security of our website.

The data will be deleted within no more than seven days, unless further retention is required for evidentiary purposes. In which case, all or part of the data will be excluded from deletion until the investigation of the relevant incident is finally resolved.

Cookies

a) Session cookies

We use cookies on our website. Cookies are small text files or other storage technologies that are placed and stored on your device by your internet browser. Through these cookies, certain information about you, such as your browser, location data, or your IP address, is processed within a certain scope.

This processing makes our website more user-friendly, more efficient, and more secure, allowing us, for example, to display our website in different languages or to offer a shopping cart function.

The legal basis for this processing is Art. 6 (1) (b) GDPR, insofar as these cookies are used to collect data to initiate or process contractual relationships.

If the processing does not serve the purpose to initiate or execute a contract, our legitimate interest is the improvement of the functionality of our website. The legal basis is then Art. 6 (1)(f) GDPR.

When you close your internet browser, these session cookies are deleted.

b) Third-party cookies

If necessary, our website may also use cookies from companies with whom we cooperate for the purpose of advertising, analysis, or improvement of the features of our website.

Please refer to the following information for details, in particular for the legal basis and purpose of the processing of such third-party cookies.

c) Disabling cookies

You can prevent or restrict the use of cookies by changing the settings of your internet browser. You can also use the browser to delete cookies that have already been stored. However, the steps and measures required for this vary, depending on the internet browser you use. If you have any questions, please use the help function or consult the documentation for your internet browser or contact its manufacturer for support. Browser settings cannot prevent so-called flash cookies from being set. Instead, you will need to change the setting of your Flash player. The steps and measures required for this also depend on the Flash player you are using. If you have any questions, please use the help function or consult the documentation for your Flash player or contact its manufacturer for support.

If you prevent or restrict the installation of cookies, not all of the functions on our website may be fully usable.

Edit your cookie settings

Contact

If you contact us via email or the contact form, the data you provide will be used for the purpose of processing your request. This data is required in order to process and answer your inquiry; without it we may not be able to respond to all or even any of your requests.

The legal basis for this processing is Art. 6 (1)(b) GDPR.

Your data will be deleted once we have fully answered your inquiry and there is no further legal obligation to store retain your data, e.g. in the case of subsequent contractual processing.

SSL encryption

To safeguard your data during transmission, we use state-of-the-art encryption methods (e.g. SSL) via HTTPS.

Video portals

YouTube

We use YouTube on our website. This is a video portal operated by YouTube LLC, 901 Cherry Ave, 94066 San Bruno, CA, USA, hereinafter referred to as "YouTube".

YouTube is a subsidiary of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google".

We use YouTube in its advanced privacy mode to show you videos. The legal basis is Art. 6 (1)(f) GDPR. Our legitimate interest is the improvement of the quality of our website. According to YouTube, the advanced privacy mode means that the data specified below will only be transmitted to the YouTube server if you actually start a video.

Without this mode, a connection to the YouTube server in the USA will be established as soon as you access any of our webpages on which a YouTube video is embedded.

This connection is required in order to be able to display the respective video on our website within your internet browser. YouTube will at least record and process your IP address, the date and time, as well as the website you visited. In addition, a connection to Google’s advertising network "DoubleClick" is established.

If you are logged into your YouTube account when you access our site, YouTube will assign the connection information to your YouTube account. To prevent this, you must either log out of your YouTube account before visiting our website or adjust the settings in your YouTube account accordingly.

For the purpose of functionality and the analysis of user behaviour, YouTube permanently stores cookies on your device via your internet browser. If you do not agree to this processing, you have the option to prevent the storage of cookies by adjusting the appropriate settings in your internet browser. Further details can be found in the section “Cookies” above.

Further information on the collection and use of data and on your corresponding rights and protection options are available from Google in their privacy policy at:

https://policies.google.com/privacy

Vimeo

We use Vimeo to display videos on our website. This is a service provided by Vimeo, LL C, 555 West 18th Street, New York, New York 10011, USA, hereinafter referred to as "Vimeo".

Some of the user data is processed on Vimeo servers in the USA.

The legal basis is Art. 6 (1)(f) GDPR. Our legitimate interest is the improvement of the quality of our website.

When you access a page on our website that has Vimeo embedded in it, a connection to Vimeo's servers in the USA is established. For technical reasons, it is necessary for Vimeo to process your IP address. In addition, the date and time of your visit to our website will also be recorded.

If you are logged into Vimeo while visiting one of our webpages containing a Vimeo video, Vimeo may associate the information about your interaction with our site with your Vimeo account. If you wish to prevent this, you must either log out of your Vimeo account before visiting our website or adjust the settings in your Vimeo account accordingly.

For the purpose of functionality and usage analysis, Vimeo uses Google Analytics. Google Analytics stores cookies on your device via your internet browser and transmits information about the use of those websites, in which a Vimeo video is embedded, to Google. It is possible that Google will process this information in the USA.

If you do not agree to this processing, you have the option to prevent the storage of cookies by adjusting the appropriate settings in your internet browser. Further details can be found in the section “Cookies” above.

The legal basis is Art. 6 (1)(f) GDPR. Our legitimate interest is the improvement of the quality of our website and Vimeo’s legitimate interest is to statistically analyse user behaviour for optimisation and marketing purposes.

Vimeo offers further information on data collection and processing and on your rights and options to protect your privacy here:

http://vimeo.com/privacy

Linking social media via graphic or text link

We also promote the following social media sites on our website.

Users are only redirected to the service of the respective social network by clicking on the corresponding link.

Once the user has been redirected, information about the user is collected by the respective network. It cannot be ruled out that such data will be processed in the USA.

Initially, this includes data such as your IP address, date, time, and visited page. If you are logged into your user account on that network, however, the network operator might associate the information collected about your visit to our site with your personal account.

The following social networks are integrated into our site via links:

twitter

Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA

Privacy Policy: https://twitter.com/privacy

Changes to our Privacy Policy

We reserve the right to adjust this privacy policy to ensure that it always complies with the current legal requirements or to accommodate for changes to our services in the privacy policy, e.g. when new services are introduced. The new privacy policy will then apply to your next visit.