Datenschutzerklärung

Stand: 30. April 2026

Preamble

Welcome to Campcruisers GmbH and the Campsite OS website! We are delighted about your interest in our cloud-based Property Management System (PMS) and our ERP solution for campsites. The protection of your personal data is not only a legal obligation for us but a central quality feature of our software and an expression of our respect for you.

In this privacy policy, we would like to explain to you transparently, understandably, and on an equal footing which personal data we collect from you, how we use it, and what rights you have.

1. Controller for Data Processing

Campcruisers GmbH
Berliner Str. 21B
14612 Falkensee
Germany

Register Court: Amtsgericht Potsdam, HRB 40180 P
VAT ID No.: DE368000447

Authorized Representatives: Daniel Bosch (CEO), Philipp André Marschall (Prokurist)

Contact: info@campsite-os.com | +49 3322 50703301 | campsite-os.de

Data Protection Officer: Not appointed (no legal obligation).

2. Overview of Processing Activities

We process: Master data (names, addresses), contact data (email, telephone), content data (text inputs), usage data (visited pages, access times), and meta/communication data (IP addresses, device information).

3. General Information on Data Processing

3.1 Scope

We collect data only to the extent necessary.

3.2 Legal Bases (Art. 6 Para. 1 GDPR)

a) Consent | b) Contract fulfillment | c) Legal obligation | f) Legitimate interests

3.3 Storage Duration

Deletion after the purpose ceases. Exception: statutory retention periods (e.g., 10 years for tax purposes). Upon contract termination: 30-day retention (Retain 30), then deletion.

4. Your Rights as a Data Subject

Access (Art. 15) | Rectification (Art. 16) | Erasure (Art. 17) | Restriction (Art. 18) | Data portability (Art. 20) | Withdrawal (Art. 7 Para. 3) | Objection (Art. 21)

5. Competent Supervisory Authority

The State Commissioner for Data Protection and the Right to Access Files Brandenburg
Stahnsdorfer Damm 77, 14532 Kleinmachnow
https://www.lda.brandenburg.de

6. Data Security

SSL/TLS encryption. Servers in the Netherlands (IP: 34.91.84.25). Details in Annex 1 of the DPA.

7. Provision of the Website and Log Files

Data collected: Browser type, operating system, IP address, date/time, referrer. Legal basis: Art. 6 Para. 1 lit. f GDPR. Storage duration: 7-30 days.

8. Cookies and Consent Management

8.1 General

We use cookies to improve user experience.

8.2 Technically Necessary Cookies

Legal basis: § 25 Para. 2 No. 2 DDG in conjunction with Art. 6 Para. 1 lit. f GDPR.

8.3 Consent-Required Cookies

Only with your explicit consent (§ 25 Para. 1 DDG, Art. 6 Para. 1 lit. a GDPR).

8.4 Consent Management (Biscotti CMP)

Storage of your cookie decisions. Legal basis: Art. 6 Para. 1 lit. c GDPR.

8.5 Management

Modifiable at any time via cookie settings at the bottom of the page.

9. Services and Tools Used

Biscotti CMP

Provider: Biscotti (Germany). Purpose: Cookie consent management. Data: IP, session, consent status. Legal basis: Art. 6 Para. 1 lit. c GDPR.

Resend

Provider: Resend, Inc. (USA). Purpose: Transactional email dispatch. Data: Email, name, content. Legal basis: Art. 6 Para. 1 lit. b GDPR. Third-country transfer: EU-US Data Privacy Framework + EU Standard Contractual Clauses.

Google Analytics

Provider: Google Ireland Limited. Purpose: Analysis of website usage. Data: IP address (anonymized), usage data, device information. Measurement ID: G-5J29SQWFWG. Legal basis: Art. 6 Para. 1 lit. a GDPR (consent). Storage duration: _ga (2 years), _gid (24 hours). Withdrawal at any time via cookie settings.

Google Ads

Provider: Google Ireland Limited. Purpose: Advertising and performance measurement. Data: IP, usage data, cookie IDs. Legal basis: Art. 6 Para. 1 lit. a GDPR (consent). Opt-out via cookie settings.

10. Contact Form and Email Contact

Storage of your details for processing. Legal basis: Art. 6 Para. 1 lit. f or lit. b GDPR. Deletion after resolution of the matter.

11. Newsletter

Double opt-in procedure. Logging of registration (IP, timestamp). Legal basis: Art. 6 Para. 1 lit. a GDPR. Unsubscription at any time via link in the newsletter.

12. Subscription and Payment Processing

Processing of contract and payment data (Art. 6 Para. 1 lit. b GDPR). Payment service provider: Stripe Payments Europe, Ltd. (Ireland). PCI-DSS certified. No storage of full credit card data on our servers.

13. Applications

Confidential handling. Legal basis: § 26 Para. 1 BDSG. Deletion after 6 months (without talent pool consent).

14. Social Media Presence

Active on Facebook, Instagram, LinkedIn, YouTube. Privacy policies of the respective platform operators apply. Joint responsibility for Facebook Insights (Art. 26 GDPR).

15. Data Transfer to Third Countries

Secured by adequacy decisions (EU-US Data Privacy Framework) or EU Standard Contractual Clauses.

16. Automated Decision-Making

We completely refrain from automated decision-making or profiling (Art. 22 GDPR).

17. Currency and Changes

Status: 30 April 2026. Latest version always available on our website.