We are delighted by your interest in our company. At 80 Oak GmbH, data protection is of the highest priority. Generally, the use of our website is possible without providing any personal data. However, if an individual wishes to use specific services via our website, processing of personal data may become necessary. In such cases, and where no legal basis exists for the processing, we will obtain the individual's consent.

The processing of personal data—such as names, addresses, email addresses, or phone numbers—is always carried out in accordance with the General Data Protection Regulation (GDPR) and applicable country-specific data protection regulations. This Privacy Policy aims to inform the public about the nature, scope, and purpose of the personal data we collect, use, and process. Additionally, this notice informs individuals of their rights.

As the data controller, 80 Oak GmbH has implemented numerous technical and organizational measures to ensure the most complete protection possible for personal data processed through this website. However, Internet-based data transmissions can have security gaps, making absolute protection impossible. Therefore, data subjects are free to transfer personal data to us through alternative means, such as by phone.

Definitions

This Privacy Policy is based on the terminology used in the GDPR. To ensure clarity, the following key terms are defined:

(a) Personal Data: Any information relating to an identified or identifiable natural person ("data subject").

(b) Data Subject: Any identified or identifiable natural person whose personal data is processed.

(c) Processing: Any operation performed on personal data, whether automated or not, including collection, storage, alteration, retrieval, use, disclosure, erasure, or destruction.

(d) Restriction of Processing: The marking of stored personal data with the aim of limiting its future processing.

(e) Profiling: Any automated processing of personal data to evaluate personal aspects such as performance, preferences, or behavior.

(f) Pseudonymization: Processing of personal data so it can no longer be attributed to a specific data subject without additional information.

(g) Controller: The natural or legal person who determines the purposes and means of processing personal data.

(h) Processor: A natural or legal person who processes personal data on behalf of the controller.

(i) Recipient: A natural or legal person to whom personal data is disclosed.

(j) Third Party: Any person other than the data subject, controller, processor, or authorized individuals under their authority.

(k) Consent: A clear, informed, and voluntary indication by the data subject that they agree to the processing of their personal data.

Controller’s Contact Information

Controller in the sense of the GDPR:

80 Oak GmbH
Industriestraße 28
91580 Petersaurach, Germany
Tel.: +49 160 94771008
Email: hi@backpackersjourney.de
Website: www.backpackersjourney.de

Cookies

Our website uses cookies. These are text files stored on a device via a web browser. Cookies help improve the user experience and make our website services more user-friendly and efficient. They allow the recognition of users across sessions and support functionalities such as maintaining login states or remembering items in a shopping cart.

Users may prevent cookie storage by adjusting browser settings. Existing cookies can also be deleted via browser settings. Disabling cookies may limit the full functionality of our website.

Collection of General Data and Information

Each access to our website results in the collection of general data, such as:

Browser types and versions

Operating system used

Referring website

Visited subpages

Date and time of access

IP address

Internet service provider

Other similar data for IT security purposes

These data are anonymous and used to:

Deliver website content correctly

Optimize content and advertisements

Ensure long-term system functionality

Provide information to authorities in case of cyberattacks

Registration on Our Website

Users may register by providing personal data, which is evident from the registration form. This data is stored internally and may be passed to processors (e.g., shipping providers) for internal use. IP address, date, and time of registration are also logged to prevent misuse.

Registered users may access, modify, or delete their data at any time. We also provide information on stored data upon request.

Newsletter Subscription

Users may subscribe to our newsletter by providing personal data, including a valid email address. A confirmation email (double opt-in) ensures the request is genuine.

The IP address and timestamp of registration are stored for legal protection. Personal data is used exclusively for sending newsletters and not shared with third parties. Subscriptions can be canceled anytime via a link in the email or by contacting us directly.

Newsletter Tracking

Our newsletters contain tracking pixels to analyze the effectiveness of campaigns. These pixels track email opens and link clicks. The data is used to optimize future newsletters and is not shared with third parties. Consent can be withdrawn at any time, and data will be deleted upon unsubscription.

Contact via Website

If you contact us via email or contact form, the personal data you provide is stored for processing or responding to your request. This data will not be shared with third parties.

Blog Comment Function

Users may post comments on our blog. When doing so, their comment, IP address, timestamp, and chosen username are stored and published. IP addresses are logged for security and legal purposes. This data is not shared unless legally required.

Comment Subscription

Users may subscribe to follow-up comments. A confirmation email is sent (double opt-in). This subscription can be canceled at any time.

Routine Erasure and Blocking of Personal Data

We store personal data only as long as necessary or legally required. Once the purpose or legal basis expires, data is routinely deleted or blocked.

Data Subject Rights

You have the following rights under GDPR:

Right to confirmation

Right to access

Right to rectification

Right to erasure ("right to be forgotten")

Right to restriction of processing

Right to data portability

Right to object

Right to not be subject to automated decision-making, including profiling

Right to withdraw consent

To exercise these rights, contact our staff at any time.

Privacy in Recruitment Processes

We process applicant data for hiring purposes. Applications can be submitted via email or online forms. If hired, data is retained for employment; if not, data is deleted after 2 months unless required otherwise for legal defense.

Legal Basis for Processing

We rely on the following legal bases:

Consent (Art. 6(1)(a) GDPR)

Contract performance or pre-contractual measures (Art. 6(1)(b) GDPR)

Legal obligations (Art. 6(1)(c) GDPR)

Protection of vital interests (Art. 6(1)(d) GDPR)

Legitimate interests (Art. 6(1)(f) GDPR), such as business operation and stakeholder well-being

Retention Period

The retention period depends on legal requirements or the necessity for contract performance. Data is deleted once no longer required.

Requirement to Provide Data

Providing personal data may be legally or contractually required. Without such data, a contract may not be formed. Our team will advise you in specific cases.

Automated Decision-Making

As a responsible company, we do not use automated decision-making or profiling.