Cookies

Cookie Policy

Vienna Sightseeing Tours

As of February 2025

1. Introduction

This Cookie Policy informs you about how we use cookies and similar technologies to provide you with an optimal experience on our website. We distinguish between technically necessary cookies and those based on your consent (e.g., analytics, marketing, or social media cookies).

2. Website Operator and Data Controller

VIENNA SIGHTSEEING TOURS – Wiener Rundfahrten GmbH & Co. KG
Opernring 3-5, Top 508-529, 1010 Vienna, Austria
Phone: 0043 (0)1 712 46 83 - 0
Fax: 0043 (0)1 714 11 41
Web: www.viennasightseeing.at
Email: office(at)viennasightseeing.at

Further company details can be found in the imprint on our website.
No data protection officer has been appointed, as this is not legally required.

3. Purposes of Processing

To provide you with the best user experience, we use cookies for the following purposes:

  • Technically necessary functions:
    • Enabling website use (e.g., session cookies for shopping cart functions, language settings).
    • Identifying users in our system.
    • Providing security notifications and protecting against fraud, misuse, and harmful activities.
    • Technical storage occurs without explicit consent per § 165 (3) TKG 2021.
  • Analytics & Personalization:
    • Personalizing your user experience and evaluating user behavior.
    • Providing customer-specific service.
    • These cookies are processed only with your consent (Art. 6 (1) lit. a GDPR).

4. Data Collection and Processing on Our Website

4.1. Legal Basis

Cookies and similar technologies are used based on § 165 (3) TKG 2021.

  • For technically necessary cookies: Storage and processing occur to ensure error-free service provision without requiring your consent.
  • For all other purposes: Processing is based on your consent (Art. 6 (1) lit. a GDPR), which you can withdraw at any time.

Accessing our website may involve accessing information (e.g., IP address) or storing information (e.g., cookies) on your device. If this is essential for website operation, processing occurs without consent; otherwise, it requires consent. Processing your personal data follows GDPR and the Austrian Data Protection Act (DSG).

4.2. Server Log Files

When you visit our website, your browser automatically transmits technical data to our web server:

  • Date and time of request
  • Name of requested file
  • Page from which the request originated
  • Access status
  • Browser and operating system used
  • (Full) IP address of the requesting computer
  • Amount of data transferred

This data is processed to ensure a smooth connection setup and system security.
The legal basis for this is our legitimate interest (Art. 6 (1) lit. f GDPR).
The log file data is stored for a short time for security reasons and anonymized after seven days at the latest by shortening the IP address at domain level.
In anonymized form, this data can be evaluated for statistical purposes - it is not merged with other personal data.

4.3. Cookies

Our website uses cookies, which are small files stored on your device:

  • Session Cookies: Temporary and automatically deleted at the end of your visit.
  • Persistent Cookies: Remain until deleted by you or your browser.

Cookie Functions:

  • Technically necessary cookies: Enable essential functions (e.g., shopping cart, language settings).
  • Analytics & marketing cookies: Track user behavior, optimize the website, and serve personalized ads—processed only with your consent.

Technically necessary cookies are processed under legitimate interest (Art. 6 (1) lit. f GDPR).
Other cookies require your consent (Art. 6 (1) lit. a GDPR), which you can revoke anytime.

For a detailed overview of the cookies used on our website, including name, purpose, and storage duration, refer to our Cookie Overview.

To manage, update, or restrict cookies, follow your browser instructions (e.g., Google Chrome, Microsoft Edge, Safari, Firefox, Opera).

5. Consent Management via Usercentrics

We use the Usercentrics Consent Management Platform, provided by Usercentrics GmbH, Sendlinger Str. 7, 80331 Munich, Germany.
Usercentrics helps us collect, manage, and document your consent.

Processed Data:

  • Opt-in and opt-out data
  • Referrer URL
  • User agent
  • User settings
  • Consent ID, timestamp, and type of consent
  • Template version, banner language
  • IP address and geographic location

The functionality of the website is not guaranteed without this processing.
Usercentrics acts as a data processor for us.
More information can be found in Usercentrics’ Privacy Policy.
The processing takes place within the European Union and the data will be deleted after 3 years.
You can make changes to your consent preferences at any time via the Usercentrics interface.

6. Integration of Additional Tools and Services

6.1. TourCMS & Palisis

Vienna Sightseeing collaborates with Palisis AG (Switzerland), licensing TourCMS software for reservations. More details: Palisis Privacy Policy (Link) & TourCMS Privacy Policy (Link).

6.2. Trust My Travel & Adyen

For payment processing, we use Trust My Travel (UK) and Adyen (Netherlands).
Details: Trust My Travel Privacy Policy & Adyen Privacy Policy.

6.3. Cloudflare

Cloudflare protects our website from DDoS attacks and enhances security. More details: Cloudflare Privacy Policy (Link). Cloudflare is certified under the EU-U.S. Data Privacy Framework.

6.4. Google Tools

Google Tag Manager:

    Purpose: Central management of tags (small sections of code) to control other tools on our website.
    Legal basis: Your consent (Art. 6 para. 1 lit. a GDPR) or our legitimate interest (Art. 6 para. 1 lit. f GDPR).
    Data transfer: To Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

    Note: Data transfers to the USA are based on the European Commission's adequacy decision C(2023) 4745.

Google Gtag / Analytics / Ads / Remarketing:

    Google Analytics:
    Collects data such as pages viewed, clicks, location and technical information.
    IP anonymization is activated - the full IP address is only transmitted in exceptional cases.
    Data is automatically deleted after 14 months, aggregated data remains longer.
    Processing is based on your consent (Art. 6 para. 1 lit. a GDPR) - you can revoke this at any time.


    Google Ads and remarketing:
    Collect data such as cookie ID, device information and interaction data to enable personalized advertising.
    For further details and the legal basis (consent), please refer to the respective sections.

The following applies to all Google tools:
Data transfers to third countries are carried out in accordance with the applicable data protection regulations and the EU adequacy decision.

6.5. Social Media Features and Widgets

Our website contains social media features such as the Meta Pixel (formerly Facebook Pixel).

    Purpose: Enables the tracking of interactions to optimize advertisements on Facebook and Instagram.
    Data processing: Collects device information, IP address, click behavior and interaction data, among other things.
    Legal basis: Your consent (Art. 6 para. 1 lit. a GDPR).
    Data transfer: To Meta Platforms Ireland Ltd, 4 Grand Canal Square, Dublin 2, Ireland.

    Note: Alternatively, you can deactivate interest-based advertising via your Facebook settings.

7. Sharing Non-Personal Data

We aggregate and share non-personal data (e.g., visitor numbers, demographics) for statistical purposes only. No identifiable personal data is shared.

8. User Rights

You have the following rights:

  • Access, rectification, deletion, restriction of processing, and data portability.
  • Withdrawal of consent: Can be done at any time, affecting future data processing.
  • Right to object: Especially for direct marketing purposes.

To exercise your rights:

If you believe data processing violates privacy laws, contact the Austrian Data Protection Authority (https://dsb.gv.at/).

9. Final Provisions and Updates

This policy is reviewed regularly and updated according to legal and technical changes. Please check third-party provider links for updates.