Data Privacy Statement
(Published: 12 June 2024)
Index of contents:
- Definitions
- Name and contact details of the Data Controller
- Contact details for the Data Protection Officer
- Processing of personal data
- Cookies
- Use of Facebook Pixel
- Use of Instagram
- Integration of Google Maps
- Your rights
- Disclosure of personal data to third parties
- Data protection in job applications and the application procedures
- Video surveillance
- Redirect links
- Validity and amendment of this Data Privacy Statement
We are delighted that you have visited the Offenburger Badbetrieb GmbH website and assure you that the protection of your data is important to us. In this statement we inform you about the type, scope and purpose of the collection and use of personal data and explain the rights available to you.
Of course, we comply with the legal provisions of the EU General Data Protection Regulation (GDPR), the German federal data protection act (BDSG), the German broadcast media act (TMG), and other provisions on data protection.
As Data Controller for the processing, Offenburger Badbetrieb GmbH has taken technical and organisational measures in order to ensure that the protection of personal data processed through our website is as complete as possible. Nevertheless, it is possible in principle that security vulnerabilities may occur during the transfer of data on the Internet and therefore absolute protection cannot be guaranteed.
1. Definitions
The data privacy statement of Offenburger Badbetrieb GmbH relies on the terms used in the GDPR. In order to ensure that it is understandable both for the general public and for our customers, we will start by explaining the terms that will be used.
1.1. Personal data
Personal data is all the information which refers to an identified or identifiable natural person (hereinafter: data subject). An identifiable person is a natural person who can be directly or indirectly identified, in particular by being assigned to an identifier, such as a name, an identification number, location data, an online identifier or to one or more characteristics, or by the publication of physical, physiological, genetic, commercial, cultural or social identity details. Personal data within this meaning are e.g. your name, your date of birth, your e-mail address and your IP address.
1.2. Data subject
A data subject is any identified or identifiable person whose personal data is processed by the controller responsible for processing.
1.3. Processing
Processing is any process carried out with or without the aid of automated procedures or any series of such procedures in connection with personal data, such as the collection, recording, organisation, collating, storing, modifying or changing, retrieval, consultation, use, disclosure by transfer, dissemination or any other form of provision, alignment or linking, restriction, erasure or destruction of the data.
1.4. Restriction of processing
Restriction of processing is the marking of stored personal data with the purpose of restricting its future processing.
1.5. Pseudonymisation
Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without collating additional information, provided that this additional information is stored separately and is subject to technical and organisational measures which ensure that the personal data cannot be attributed to any identified or identifiable natural person.
1.6. Data Controller or controller responsible for processing
The Data Controller or controller responsible for processing is the natural person or legal entity, government agency, institution or other authority, which alone or together with others, decides on the purposes and means of the processing of personal data. If the purposes and means of this processing are prescribed by the law of the European Union or of the Member States, the Data Controller and the specific criteria of their designation can be provided in accordance with the law of the European Union or of the Member States.
1.7. Commissioned data processor
The commissioned data processor is any natural person or legal entity, government agency, institution or other authority, which processes personal data on behalf of the Data Controller.
1.8. Recipient
A recipient is a natural person or legal entity, government agency, institution or other authority, to which personal data is disclosed, irrespective of whether this person or body is or is not a third party. However, government agencies, which may receive data under a specific investigation mandate in accordance with the law of the European Union or of the Member States, are not deemed to be recipients.
1.9. Third party
A third party is any natural person or legal entity, government agency, institution or other authority authorised to process personal data, apart from the data subject, the Data Controller, the commissioned data processor and those persons authorised to process personal data under the direct responsibility and supervision of the Data Controller or the commissioned data processor.
1.10. Informed consent
Informed consent is any unambiguous, informed expression of intention issued voluntarily by the data subject for the specific case in the form of a declaration or any other irrefutable confirmatory act, by which the data subject makes it clear that they are in agreement with the processing of the personal data at issue.
2. Name and contact details of the Data Controller
The Data Controller within the meaning of the GDPR and the German BDSG is
Offenburger Badbetriebs GmbH
Represented by the Managing Director
Mr Tim-Niklas Hockenjos
Stegermattstraße 11
77652 Offenburg, Germany
Phone: +49 (0)781 / 9276 -600
Fax: +49 (0)781 / 9276 -650
Website: www.freizeitbad-stegermatt.de
E-mail: info@freizeitbad-stegermatt.de
3. Contact details for the Data Protection Officer
The Controller's Data Protection Officer can be contacted as follows:
Haake & Partner – Datentechnik – GmbH
Fabian Fleischer
Robert-Bosch-Str. 12
77656 Offenburg, Germany
Phone: +49 (0)781 60572-0
Fax: +49 (0)781 60572-11
E-mail: fabian.fleischer@haake.com
Every data subject is entitled at any time to contact our Data Protection Officer directly with questions or suggestions regarding data protection.
4. Processing of personal data
We process general or personal data in the following cases:
- when you view our website (4.1.)
- when you book courses online through our online shop (4.2.)
- when you book wellness offers from our online shop (4.3.)
- when you order vouchers online from our online shop (4.4.)
- when you buy single tickets from our online shop (4.5.)
- when you contact us for group registrations through our contact form or by e-mail (4.6)
- when you participate in a competition (4.7.)
Any further collection, storage, processing or use of your personal data, as itemised below, is carried out only insofar as this is required by a legal provision or insofar as we have your informed consent for this.
4.1. Your data when you visit our website
Our website automatically (that is, not only on registration) stores general data and information, which are not used with reference to a person. These are:
- Browser type and/or version
- Operating system used and its interface
- Internet protocol address of the accessing computer (IP address)
- Date and time of access to our website
- Time zone difference from Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Pages previously visited (referrer URL)
- Access status / http status code
- Volume of data transferred
In the use of this information and general data no inferences as to the data subject are drawn. Personal data is not collected and personal profiles are not created. Data is collected and stored in an anonymised and pseudonymised form. The general data and information are used in order to safeguard our legitimate interests pursuant to Article 6 (1) (f) GDPR in order to
deliver the contents of our website accurately,
optimise the contents of our website,
ensure the correct operation of our information technology systems and our website technology and
provide the information for a criminal prosecution to the criminal prosecution authorities in the case of a cyber attack.
These anonymously collected data and information are analysed by us, on the one hand statistically and also with the purpose of increasing data protection and data security, in order to achieve an optimum level of protection for the personal data processed by us. The anonymous data is stored separately from the personal data provided by a data subject.
For the operation of our website, we use a commissioned data processor.
4.2. Your data when you register online for courses on:
https://kursanmeldung.freizeitbad-stegermatt.de
It is not possible to register online for courses on https://shop.freizeitbad-stegermatt.de. Information on registering online for courses is available on https://freizeitbad-stegermatt.de/de/kurse/. From there you are redirected through a hyperlink to a sub-page of the Volkshochschule Offenburg website (https://www.vhs-offenburg.de), where you can register for courses.
We refer you to the data protection information from the Volkshochschule Offenburg (https://www.vhs-offenburg.de/datenschutz). Please read carefully through these notices.
4.3. Your data when you request a quotation on spa services on:
https://shop.freizeitbad-stegermatt/wellness
You can make a request for quotations on spa services on https://www.shop.freizeitbad-stegermatt/wellness. The access provider of these spa services and, insofar
as in this respect this deviates from the information in (2), the Data Controller (W) within the meaning of the GDPR and the German BDSG is
Heilpraxis Vogtmann
Ms Christine Vogtmann
Stegermattstraße 11
77652 Offenburg, Germany
Phone: +49 (0)781 9276-610
E-mail: info@heilpraxis-vogtmann.de
We operate as a commissioned data processor on behalf of the Data Controller (W) in dealing with booking enquiries. For this purpose we require the necessary personal data (first name and surname, e-mail address, telephone number and the address of the contact person with street, house number, postal code, city and country). This data is processed and transferred to the Data Controller (W) solely to process your request, to contact you and for the associated technical administration.
Personal data is sent securely to us by means of 2048 Bit SSL encryption.
We use a commissioned data processor to receive and redirect your e-mail enquiries.
Once your enquiry has been conclusively answered, your data is erased, unless erasure conflicts with statutory retention periods.
We collect and store personal data pursuant to Article 6 (1) (b) GDPR only if this is necessary for the fulfilment of the contract or to implement provisions precedent to the contract. It may also be necessary to disclose the personal data to one or more commissioned data processors, in particular shipping firms.
4.4. Your data when you order vouchers online from our online shop on:
https://shop.freizeitbad-stegermatt.de
If you buy from our online shop, we need the personal data necessary for processing the contract (first name and surname, e-mail address, street, house number, post code, city, country, payment details), as well, where applicable, as the data needed on a voucher recipient other than yourself.
Where applicable, we use a commissioned data processor for the operation of the online shop.
It is possible, but not necessary, to register in advance. If the order is accepted without registration (known as a guest order) your telephone number may also be collected and processed with your informed consent when the data is transferred.
We collect and store the personal data pursuant to Article 6 (1) (b) GDPR only if this is necessary for the fulfilment of the contract or to implement provisions precedent to the contract. It may also be necessary to disclose the personal data to one or more commissioned data processors, in particular shipping firms. Registered persons have the option to have the personal data submitted during registration totally erased from the customer account.
Moreover, your data is erased once the contract has been completely processed and on the expiry of the statutory retention periods, unless you have previously agreed to further use of the data by us. In addition, your data may be retained if legal disputes arise and we use them as evidence as part of the statutory limitation periods (3 - 30 years).
4.5. Your data when you buy single tickets online from our online shop on:
https://shop.freizeitbad-stegermatt.de
If you buy entrance tickets from our online shop in the form of single tickets, we need the personal data necessary for processing the contract (first name and surname, e-mail address, street, house number, post code, city, country, payment details), as well, where applicable, as the data needed on a ticket user or recipient of a ticket other than yourself (where the address is different) and the entrance window for single tickets only.
Where applicable, we use a commissioned data processor for the operation of the online shop.
It is possible, but not necessary, to register in advance. We collect and store the personal data pursuant to Article 6 (1) (b) GDPR only if this is necessary for the fulfilment of the contract or to implement provisions precedent to the contract. It may also be necessary to disclose the personal data to one or more commissioned data processors, e.g. shipping firms. If the order is accepted without registration (known as a guest order) your telephone number may also be collected and processed with your informed consent when the data is transferred.
Registered persons have the option to have the personal data submitted during registration totally erased from the customer account. Moreover, your data is erased once the contract has been completely processed and on the expiry of the statutory retention periods, unless you have previously agreed to further use of the data by us. In addition, your data may be retained if legal disputes arise and we use them as evidence as part of the statutory limitation periods (3 - 30 years).
4.6. Your data when you contact us for group registrations through our contact form or by e-mail
If you wish to pre-book a relatively large number of single tickets (e.g. for a school class, an association, etc.), you can do so through our contact form or by e-mail. For the subsequent processing of the contract, we need the name and address details for the association or institution (e.g. school, class, club, etc.), the necessary personal data on your authorised representative (first name and surname, e-mail address, street, house number, post code, city, country) and information on the number of persons to be registered and the entrance window required.
It is possible, but not necessary, to register in advance. We collect and store the personal data pursuant to Article 6 (1) (b) GDPR only if this is necessary for the fulfilment of the contract or to implement provisions precedent to the contract. It may also be necessary to disclose the personal data to one or more commissioned data processors, e.g. shipping firms.
Registered persons have the option to have the personal data submitted during registration totally erased from the customer account. Moreover, your data is erased once the contract has been completely processed and on the expiry of the statutory retention periods, unless you have previously agreed to further use of the data by us. In addition, your data may be retained if legal disputes arise and we use them as evidence as part of the statutory limitation periods (3 - 30 years).
Personal data is sent securely to us by means of 2048 Bit SSL encryption.
We use a commissioned data processor to receive and redirect your e-mail enquiries.
4.7. Your data when you participate in a competition
From time to time Offenburger Badbetrieb GmbH organises competitions in which customers and potential customers can participate. For participation in a competition we process the data and information submitted by you on the respective registration form. This includes the data needed for participation such as
- first name and surname,
- e-mail address and
- Instagram ID (for participation through the Instagram button),
as well as the data and information voluntarily provided by you as part of your participation, where applicable.
Your personal data is processed for the purpose of operating the competition, in particular for determining and notifying the winners. For the purpose of despatching and delivering prizes we may subsequently collect and process further data, e.g. your postal address. Data is processed more extensively (e.g. for the purpose of publication in printed and digital media) solely on receiving supplementary informed consent from the data subject.
The legal base for the processing is the fulfilment of the contractual obligation existing through participation in the competition pursuant to Article 6 (1) (b) GDPR and, with regard to more extensive data, the informed consent issued by you pursuant to Article 6 (1) (a).
Please be aware that if you lodge an objection to the future processing of your personal data in connection with the competition, any further participation in the competition is excluded.
On the termination or expiry of the competition and the dispatch of the prizes, the processed data is erased.
If, on registering, a participant has agreed to the delivery of information on products and/or services from Offenburger Badbetrieb GmbH, the data and information encompassed by this informed consent are further processed in accordance with the statutory provisions.
5. Cookies
Our website uses cookies. These are small text files which are automatically generated by your browser and which are stored on your accessing device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not damage your device and contain no viruses, Trojan horses or other malicious software. Information, which is always related to the specific device used, is stored by the cookie. However, this does not mean that we obtain direct knowledge of your identity. On one hand, the use of cookies enables us to improve the design of our website to make it more attractive for you. Therefore, we use what are known as session cookies. When you leave the website, these are automatically erased.
In addition, when you use our shop, we use temporary cookies to optimise user-friendliness. These are stored for a specific period of time on your device. If you visit our site again, the system automatically recognises that you have already visited us and which entries and preferences you have activated, so that you do not have to enter these again. The data processed by cookies is necessary for the stated purposes to protect our legitimate interests and those of third parties in accordance with Article 6 (1) (f) GDPR.
Most browsers accept cookies automatically. However, you can configure your browser settings, so that cookies are not stored on your computer or so that a notice always appears before a new cookie is installed. If you deactivate cookies completely, however, that may result in you being unable to use all the functions on our website.
6. Use of Facebook Pixel
On our website we use what is known as the Facebook Pixel from the Facebook social network, which is operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter: Meta or Facebook). The Facebook Pixel is an analysis and tracking tool used to measure the efficacy and optimisation of advertising campaigns. The legal base for the use of the Facebook Pixel is Article 6 (1) (a) GDPR (informed consent). You may withdraw your informed consent for data processing by Facebook Pixel for our website at any time by updating your preferences in our cookie settings.
When you visit our website a cookie is stored on your device by means of the Facebook Pixel on our website. The Facebook Pixel establishes a direct connection to the Meta servers. The information generated by the cookie on your use of the website, including your IP address, is transferred to Meta (also located in the USA).
We have no influence on the scope and further use of the data, which are collected by Meta through the use of the Facebook Pixel. The only information we receive from Meta is statistical analyses, by means of which we are able to discover which advertising measures are particularly effective.
The data collected are anonymous for us and no inference as to the user is possible from them. If you are registered on the Facebook social network, Meta is able to correlate the information collected with your account. Even when you do not have a Facebook account or if you are not logged onto your Facebook account when you visit our website, it is possible that Meta may process and store your IP address and other identification data.
Furthermore, by means of the information collected by the Facebook Pixel Meta generates suitable target groups for our advertising campaigns (re-marketing). Thus, after a visit to our website our advertisements are displayed to you during your further use of the Internet. The data are collected, processed and used by Meta within the context of Meta's currently valid data policy. This, together with the rights of data subjects against Meta, is available on https://www.facebook.com/policy.php/.
7. Use of Instagram
We are also delighted to welcome you to the Offenburger Badbetrieb GmbH Instagram page. Instagram is an online service for sharing photos and videos. For the data requested from you on Instagram Offenburger Badbetrieb GmbH uses the technical platform and services of Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter: Meta or Instagram).
We have no influence over the settings under data protection law on this third-party platform. In accordance with the current law the operator of the Instagram site, as well as Meta, is responsible for the data processing. Therefore we inform you about data processing in connection with Instagram, insofar as we have knowledge of this data processing.
We expressly advise you that you use this Offenburger Badbetrieb GmbH Instagram page and its functions on your own responsibility. This applies in particular to the use of interactive functions, such as commenting, sharing, rating.
We operate this Instagram page in order to bring our services and products to your notice. Our Instagram page, including the processing of the users' personal data, is operated on the basis of our legitimate interest in a contemporary, auxiliary information and interaction facility for and with our users and visitors pursuant to Article 6 (1) (f) GDPR.
When you visit our Instagram page Meta collects and processes personal data. This also applies, if you are not registered with any Meta service (Instagram, Facebook, etc.). In its data protection policy Meta describes which data it collects and how these data are used and shared. There you will also find information on how to contact Meta, as well as information on how you can manage or erase existing data pertaining to you. The data policy is available on https://privacycenter.instagram.com/policy or on https://mbasic.facebook.com/privacy/policy/printable/.
We expressly advise you that Meta also uses cookies, which allow Meta to follow your user behaviour on other websites and apps of the corporation, as well as on specific websites and apps, which integrate Meta technologies. When you access an Instagram page the IP address allocated to your device is communicated to Meta. Meta stores information on its users' devices; where applicable, Meta may correlate the IP addresses of individual users. If you as a user have an Instagram account and are currently registered on the Instagram network, a cookie with your Instagram identifier is located on your device. This allows Meta to detect that you have visited our Instagram page and how you have used it. This also applies to all other Instagram pages and has cross-device application. According to information supplied by it, Meta uses cookies, inter alia, in order to personalise the contents, to customise the advertising and to assess and also to increase security for the users. The policy on the use of cookies is available on https://help.instagram.com/1896641480634370/?helpref=uf_share.
It is possible to adjust the settings and to object to the use of data for advertising purposes within the Instagram profile settings or on the EU site: http://www.youronlinechoices.com/. Meta Platforms, Inc., the US parent company, is certified under the EU-U.S. Privacy Shield Framework and for this reason undertakes to comply with European data protection law. Further information on this is available here: https://www.dataprivacyframework.gov/list.
We advise that we have no power of decision with respect to the processing of site insights and all other information arising from Article 13 GDPR, including the legal base, identity of the (joint) controller and the storage period for cookies on user devices. As the operator of the Instagram page we are unable to exclude transmission and further processing of your personal data by Meta in third countries, such as the USA, together with any possible risks associated therewith for the user.
Various categories of statistical data can be accessed through what are known as "insights" on the Instagram pages. These statistics are generated and provided by means of Meta's standard criteria and filter functions. This information is used in order to provide us, as the operator of the Instagram page, with statistical information (site insights) on the utilisation of the Instagram page. We have no influence on the generation and display of the statistics. We are unable to shut down this function or to prevent the generation and processing. Site insights may be based on personal data, which have been collected in connection with a visit to our Instagram page.
Meta provides us as the site operator with data (anonymised and collated in groups) for purposes of analysis. The availability and processing of the data varies by virtue of the constant modification of Instagram. More detailed information on statistics and insights generated by Meta is available on https://www.facebook.com/help/instagram/788388387972460/?helpref=uf_share.
We use the statistical data provided to us pursuant to Article 6 (1) (f) GDPR for the protection of our legitimate interests, in order to make our articles on our Instagram page more attractive for users. We do not disclose the statistical data provided to us to third parties.
Within the context of the site insights supplement Meta has undertaken to take over the primary responsibility pursuant to the GDPR for the processing of site insights and to fulfil all the duties arising from the GDPR with respect to the processing of site insights and to make available to you the substance of this site insights supplement. The site insights supplement is available on https://www.facebook.com/legal/terms/page_controller_addendum. Meta reserves the right to update these from time to time.
Since Meta alone has complete access to the user data, we recommend that you contact Meta directly, if you, as a user, wish to make requests for information or to put other questions (e.g. right to erasure). Of course, you may contact us, if you require assistance, have other questions or wish to assert rights.
By virtue of the mandatory site insights supplement side letter specified by Meta we are obliged, if asked by a data subject or supervisory authority within the meaning of the GDPR, to communicate all relevant information on the enquiry without delay (not later than within seven calendar days) to Meta. Meta shall respond to enquiries in accordance with the duties imposed on it pursuant to the site insights supplement.
8. Use of Google Maps
Map materials from Google Maps, a service of Google Ireland Limited registered and operated under Irish law (register number: 368047), Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: Google) are integrated into several pages of our Internet presence. In this way we are able to display interactive maps for you directly on the website and facilitate your convenient use of the map function.
Usually, when you use Google Maps, information on your use of our website, including your IP address, is transferred to a Google server and stored there. The IP address is required in order that the contents can be sent to the user's browser. We draw your attention to the fact that Google has its own data protection provisions, which are independent of ours. Please consult the conditions of use for Google Maps on: https://www.google.com/intl/de_de/help/terms_maps.html and on Google’s data protection provisions on: https://www.google.de/intl/de/policies/privacy/.
9. Your rights
9.1. Right to confirmation
You have the right to obtain confirmation of personal data concerning you which are being processed. If you wish to exercise this right to obtain confirmation, you may contact our Data Protection Officer or the Controller at any time.
9.2. Right to access
Every data subject has the right to receive information from us free of charge about the personal data referring to their identity stored by us and to receive a copy of this information. Furthermore, the data subject has the right to the following information:
- the purpose of processing,
- the categories of personal data processed,
- the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations,
- where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period,
- the existence of the right to request from the Controller correction or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing,
- the existence of a right to withdraw the informed consent, without affecting the legality of the processing carried out by virtue of the informed consent prior to the withdrawal of consent,
- the right to lodge a complaint with a supervisory authority,
- if the personal data are not collected from the data subject, all the information available on the source of the data,
- the existence of automated decision-making, including profiling, referred to in Article 22 (1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
Furthermore, the data subject has a right to information on whether personal data have been transferred to a third country or an international organisation. If this is the case, the data subject has the further right to receive information on appropriate guarantees in connection with the transfer. If you wish to exercise the right to information, you may contact our Data Protection Officer or the Controller.
9.3. Right to correction
Every data subject has the right to request the immediate correction of incorrect personal data pertaining to them. Taking into account the purposes of the processing, the data subject shall also have the right, subject to the purposes of the processing, to have incomplete personal data completed, including by means of an independent statement. If you wish to exercise this right to correction, you may at any time contact our Data Protection Officer or the Controller.
9.4. Right to erasure (right to be forgotten)
Every data subject has the right to request us to erase the personal data concerning them without undue delay, provided that one of the grounds provided in the regulation applies and insofar as the processing is not necessary:
- the personal data have been collected or otherwise processed for such purposes, for which they are not required.
- the data subject withdraws their informed consent, on which the processing pursuant to Article 6 (1) (a) GDPR relies, and there is no other legal base for the processing.
- the data subject objects to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2) GDPR;
- the personal data have been unlawfully processed;
- the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the Controller is subject;
- the personal data have been collected in relation to services offered by an information society pursuant to Article 8 (1) GDPR.
If you wish to have the personal data stored by us erased and one of the aforementioned grounds applies to you, you may at any time contact our Data Protection Officer or the Controller.
9.5. Right to restriction of processing
Every data subject has the right to request us to restrict the processing of the data, if one of the legal conditions is present:
- the accuracy of the personal data is contested by the data subject, for a period enabling the Controller to verify the accuracy of the personal data.
- the processing is unlawful and the data subject refuses erasure of the personal data and instead requests that the use of the personal data be restricted.
- the Controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims.
- the data subject has lodged an objection to the processing pursuant to Article 21(1) GDPR and is it not yet determined whether the legitimate grounds of the Controller override those of the data subject.
If you wish to have the processing of your personal data stored by us restricted and one of the aforementioned grounds applies to you, you may at any time contact our Data Protection Officer or the Controller.
9.6. Right to data portability
Every data subject has the right to receive the personal data pertaining to them, which they have provided to us, in a structured, current and machine-readable format. They also have the right to transfer these data to another controller without hindrance from us, provided that the processing relies on informed consent pursuant to Article 6 (1) (a) GDPR or Article 9 (2) (a) GDPR or on a contract under Article 6 (1) (b) GDPR and the processing is performed by means of automated procedures.
If you wish to exercise your right of data portability, you may at any time contact our Data Protection Officer or the Controller.
9.7. Right to object
If your personal data are processed on the basis of legitimate interest pursuant to Article 6 (1) (e) or (f) GDPR, you have the right, pursuant to Article 21 GDPR to lodge an objection to the processing of your personal data, insofar as there exist grounds, which arise from your particular situation or the objection is based on direct advertising. In the latter case you have a general right to object, which is implemented by us without disclosure of any special situation.
If your personal data are processed in connection with your participation in a competition of the Controller pursuant to Article 6 (1) (a) or (b) GDPR, you may object to this processing at any time. By reason of the associated consequences for your further participation in the competition, we advert to the remarks in paragraph 4.7.
If you wish to exercise your right to object, send a message for this purpose to info@freizeitbad-stegermatt.de or to one of the contact addresses specified in paragraphs 2 and 3.
9.8. Right to withdrawal of informed consent under data protection law
Every data subject has the right at any time to withdraw consent to the processing of personal data. If you wish to exercise your right to object you may at any time contact our Data Protection Officer or the Controller.
9.9. Right to lodge a complaint with a supervisory authority
Every data subject has the right, notwithstanding any other legal remedy or remedy under administrative law, to lodge a complaint with a supervisory authority, in particular in the Member State, in which you are resident or at the place of the suspected breach, if the data subject is of the opinion that the processing of the personal data pertaining to them breaches the regulations on f the GDPR.
10. Disclosure of personal data to third parties
Data are not disclosed to any third parties for purposes other than those listed in this Data Privacy Statement. We transmit your personal data to third parties only if:
- you have granted your express consent thereto in accordance with Article 6 (1) (a) GDPR,
- disclosure is necessary in accordance with Article 6 (1) (f) GDPR for the establishment, exercise or defence of legal claims and there is no ground for the assumption that you have an overriding protectable interest in your data not being transferred,
- in the case where there is a legal duty to disclose the data in accordance with Article 6 (1) (c) GDPR, and
- this is legally admissible and necessary for the processing of contractual relationships with you in accordance with Article 6 (1) (b) GDPR.
11. Data protection in job applications and the application procedures
The controller responsible for processing collects and processes personal data from applicants for the purpose of processing the application procedure for salaried employees, apprentices and placement students. These data may be processed electronically.
This is the case in particular, if an applicant submits application documentation to the Controller electronically, for example by e-mail. If we conclude an employment contract with the applicant, we store the data transferred for the purpose of processing the employment relationship in compliance with the statutory provisions.
It is not possible to make a direct application online on https://www.freizeitbad-stegermatt/stellenangebote.de. Information on online applications is available on the aforementioned website. From there you are directed through a hyperlink to the Stadt Offenburg careers portal (https://karriere.offenburg.de/stellenangebote/), where you can submit your application.
We refer you to the data protection information from the Stadt Offenburg (https://karriere.offenburg.de/datenschutz). Please read carefully through these notices.
12. Video surveillance at the Freizeitbad Stegermatt leisure pool
Video surveillance in accordance with Article 6 (1) (f) GDPR and § 4 FGDPA operates in the Freizeitbad Stegermatt Offenburg leisure pool. The video surveillance serves the following purposes:
- awareness of the house rules
- protection of property
- information on any crimes and safety-related incidents
- use of records as evidence
The recordings are stored for a period of 72 hours. In individual cases a recording may be disclosed to law enforcement agencies. The legal base is the protection of legitimate interests pursuant to Article 6 (1) (b) GDPR.
13. Redirect links
Our website may contain links to other access providers, which are not covered by this Data Privacy Statement.
If you leave our website via a hyperlink, it is recommended that you read carefully the data privacy statement of every website, which collects personal data.
14. Validity and amendment of this Data Privacy Statement
This data privacy statement, as amended, is valid as from 24 April 2024. It takes into account the EU General Data Protection Regulation (GDPR) applicable with effect from 25 May 2018.
We amend this data privacy statement from time to time. The further development of our website and offers or the amendment of legal or governmental provisions may make it necessary to amend this data privacy statement. You can access and print out the data privacy statement current at any given time on https://www.freizeitbad-stegermatt.de/info/datenschutzerklaerung/.
| ADULTS | Pool | pool & Sauna |
|---|---|---|
| Early bird swimmer | €4.00 | ... |
| 1.5-hour tariff | €5.50 | ... |
| 3-hour tariff | €7.50 | €20.50 |
| Day tariff | €9.50 | €25.50 |
| Reduced * | Pool | pool & Sauna |
|---|---|---|
| Early bird swimmer | €3.00 | ... |
| 1.5-hour tariff | €3.50 | ... |
| 3-hour tariff | €4.80 | €17.00 |
| Day tariff | €6.00 | €21.50 |
*
Children over 1 metre in height, pupils, students up to the age of 27 and severely disabled people (min. 50% degree of disability). OffenburgCard holders receive a discount on the standard pool ticket price. This discount does not apply for entry to the sauna or the purchase of an annual ticket.
**
The family tariff applies to all single parents or parents with up to three children (up to the age of 18), provided they live in the same household. Families with more than three children can use the family ticket upon presentation of the Landesfamilienpass or the children’s and parent’s ID cards. A visit to the sauna is not possible with the family ticket.
***
A discount on the family ticket is not possible.
| Family ticket ** | Pool | Pool & Sauna |
|---|---|---|
| Day tariff | €24,50 | ... |
| Annual ticket | → Including use of STRANDBAD Gifizsee | |
|---|---|---|
| Adults | €470,00 | ... |
| Reduced* | €280,00 | ... |
| Prepaid cards *** | Pool | Pool & Sauna |
|---|---|---|
| Bronze (10% discount on pool tariffs) | €100,00 | ... |
| Silver (13% discount on pool tariffs) | €150,00 | ... |
| Gold (17% discount on pool tariffs) | €200,00 | ... |
| Sauna (17% discount on pool tariffs as well as 12,5% discount on sauna tariffs incl. pool tariffs) | €275,00 |
Children under 1 metre in height generally bathe for free.
Birthday children of all ages get free admission to the pool and sauna. Just show your ID.
Prepaid cards are valid for 4 years after the date of issue (see the receipt for date of issue).
*
Children over 1 metre in height, pupils, students up to the age of 27, severely disabled people (min. 50% degree of disability).
**
The family tariff applies to all single parents or parents with up to three children (up to the age of 18), provided they live in the same household. Families with more than three children can use the family ticket upon presentation of the Landesfamilienpass or the children’s and parent’s ID cards. A visit to the sauna is not possible with the family ticket.
***
A discount on the family ticket is not possible.
Freizeitbad Stegermatt is conveniently located in the heart of Offenburg. Whether you travel by public transport, car, or bicycle – getting here is easy.
You can reach Offenburg directly via the A5; the pool is only about a 10-minute drive from the exit. The B33 or B3 go right through the city.
The train station is served by ICE and several regional trains as well as those from Strasbourg.
The train station is served by ICE and several regional trains as well as those from Strasbourg.
We look forward to your visit and wish you a safe journey!
