KM Travel Europe is owned and controlled by KM Sports GmbH which has its registered offices at Berliner Str.5, Eschborn, Germany . This Privacy Notice is issued to you, Data Subject, on behalf of the KM Group (jointly, “we” and “us”), which control and process your personal data in the way described below.
1. Legal basis and purpose:
As per Article 6(1)(f) GDPR, we hereby inform you that we use your personal data for the purpose of providing you following services:
– To respond to your online enquiry
– To make any other reservations and bookings that you’ve requested
Your personal data may be converted into statistical or aggregated data which cannot be used to identify you and then used to produce statistical research and reports. This aggregated data may be shared and used in the ways described above.
2. Retention periods
We keep your personal data as long as there is a statutory or legal requirement to do so or in order to provide the aforementioned services to you. For accounting or auditing purposes we may retain your personal data for a period of time after our direct business dealings have ended.
3. Data storage and transfer
We store your personal data on systems located within the European Economic Area (EEA), which comprises the Member States of the EU, Norway, Iceland and Lichtenstein, as well as outside the EEA.
Furthermore, we may share your personal data with companies within the KM group of companies as well as with other companies who may be located within or outside the EEA. Where a company is located outside the EEA, we have implemented Standard Contract Clauses to oblige the company to use your personal data fairly and legally.
4. Prior consent
Where we require access to your Personal Data that GDPR considers Sensitive, we will seek separate explicit consent from you prior to obtaining that data.
5. Your rights
If you require assistance or further information about how your personal data is used by us then contact our Data Protection Office via email: firstname.lastname@example.org
If you are not completely satisfied with how personal data request was handled then you may contact your local Data Protection Supervisory Authority.