Day(s)

:

Hour(s)

:

Minute(s)

:

Second(s)

Privacy Policy

 

1. Controller

The controller responsible for processing personal data on this website is:

Umrah Smart – a brand of Access2Value GmbH
Konkordiastraße 55
40219 Düsseldorf
Phone: +49 211 9948 0060
Email: info@umrah-smart.de

Represented by the Managing Director: Stephan Klar

No data protection officer has been appointed, as the legal prerequisites for this are not met.

2. Collection and Storage of Personal Data, and the Nature and Purpose of its Use

a) When Visiting the Website

When you access our website www.umrah-smart.de, information is automatically sent to our website’s server by the browser used on your device. This information is temporarily stored in so-called log files. The following may be collected:

IP address of the requesting computer

Date and time of access

Name and URL of the retrieved file

Website from which access is made (referrer URL)

Browser used and, if applicable, the operating system of your computer, as well as the name of your access provider

The aforementioned data is processed for the following purposes:

Ensuring a smooth connection setup for the website

Ensuring comfortable use of our website

Evaluation of system security and stability

for further administrative purposes

Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest)

Hosting Provider: IONOS

b) Bookings / Orders

Bookings or orders can be made via our website. The data you provide (e.g., name, contact details, booking information) will be processed to provide the requested travel service.

Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment)

c) Communication via Email and WhatsApp Business

If you contact us via email at info@umrah-smart.de or via WhatsApp Business, the personal data you transmit (e.g., name, phone number, email address, message) will be stored and processed to answer your inquiry.

Please note that WhatsApp Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland), as the provider of WhatsApp Business, also processes personal data (e.g., metadata, communication content, device information). Data processing may also take place in third countries (especially the USA). Further information can be found in WhatsApp’s privacy policy.

Legal basis:

Art. 6 para. 1 lit. b GDPR (contract fulfillment, e.g., for booking inquiries)

Art. 6 para. 1 lit. f GDPR (legitimate interest in efficient and customer-friendly communication)

d) Payment Processing

Currently, no payment processing takes place via our website.

e) Tracking and Analysis Tools

We use Google Analytics.

Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Purpose: Analysis of user behavior to optimize our website.
Legal basis: Art. 6 para. 1 lit. a GDPR (consent via cookie banner).

Cookies and tracking technologies are only activated after your consent. You can revoke this at any time in the cookie banner (IONOS Consent Tool).

f) External Services / Plugins

Google Maps
Google Maps is integrated into our website to facilitate your journey. Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Legal basis: Art. 6 para. 1 lit. a GDPR (consent).

Worldia (Booking System)
We use the Worldia platform for processing bookings. Personal data may be transferred to Worldia in this process.
Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment).

3. Disclosure of Data

Your personal data will only be disclosed to third parties if:

you have given your explicit consent (Art. 6 para. 1 lit. a GDPR),

the processing is necessary for the fulfillment of a contract (Art. 6 para. 1 lit. b GDPR),

a legal obligation exists (Art. 6 para. 1 lit. c GDPR),

this is necessary to protect legitimate interests (Art. 6 para. 1 lit. f GDPR).

Data is regularly disclosed to partner companies (e.g., tour operators, hotels, transport companies) as part of travel processing.

4. Data Retention Period

We store personal data only for as long as it is necessary for the stated purposes or as long as statutory retention periods exist.

5. Your Rights

You have the right:

to information about your stored data (Art. 15 GDPR)

to rectification of inaccurate data (Art. 16 GDPR)

to erasure of your data (Art. 17 GDPR)

to restriction of processing (Art. 18 GDPR)

to data portability (Art. 20 GDPR)

to object to processing (Art. 21 GDPR)

to withdraw given consents (Art. 7 para. 3 GDPR)

You can lodge complaints with the competent data protection supervisory authority:
State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia (LDI NRW).

6. Data Security

We employ appropriate technical and organizational security measures to protect your data against manipulation, loss, destruction, or unauthorized access by third parties.

7. Updates and Amendments to this Privacy Policy

This Privacy Policy is currently valid (as of: September 2025). We reserve the right to adapt it in the event of changes to our website or due to amended legal requirements.