Privacy policy and consent to data useWe are pleased that you visit our homepage and thank you for your interest in our company. Dealing with our customers and prospects is a matter of trust. The trust placed in us has a very high priority for us and thus the importance and obligation to handle your data carefully and to protect it from misuse.
In order to make you feel safe and secure when visiting our website, we take the protection of your personal data and its confidential treatment very seriously. Therefore, we act in accordance with applicable personal data protection and data security legislation. With these instructions on data protection, we would therefore like to inform you when we store which data and how we use it - of course, in compliance with the applicable case law.
The Burghotel GmbH is based in particular on the EU data protection basic regulation. In the following, we explain what information we collect during your visit to our website and how it is used.
I. Name and address of the person responsible
The person responsible within the meaning of the DSGVO and other national data protection laws of the member states as well as other data protection regulations is the:
Burghotel GmbH, Steintorstraße 7, 49740 Haseluenne
Fax: 49 (0) 5961 94 33 40
II. Name and address of the data protection officer
The data protection officer is:
Burghotel GmbH, Steintorstraße 7, 49740 Haseluenne
Fax: 49 (0) 5961 9433 40
III. General information about data processing
1. Scope of processing of personal data
In principle, we collect and use personal data of our users only to the extent necessary for the provision of a functional website and our content and services. The collection and use of personal data of our users takes place regularly only with the consent of the user. An exception applies to cases in which prior consent can not be obtained for reasons of fact and the processing of the data is permitted by law.
2. Legal basis for the processing of personal data
Insofar as we obtain the consent of the data subject for processing of personal data, Art. 6 (1) GDPR serves as the legal basis. In the processing of personal data required for the performance of a contract of which the data subject is a party, Art. 6 (1b) GDPR serves as the legal basis. This also applies to processing operations required to carry out pre-contractual actions. Insofar as the processing of personal data is required to fulfill a legal obligation that our company is subject to (eg national reporting laws), Art. 6 para. 1c GDPR serves as the legal basis. If the processing is necessary to safeguard the legitimate interests of our company or a third party, and the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, then this serves
Art. 6 para. 1f DSGVO as legal basis for processing.
3. Data deletion and storage duration
The personal data of the data subject will be deleted or blocked as soon as the purpose of the storage is deleted. In addition, such storage may be provided for by the European or national legislator in EU regulations, laws or other regulations to which the controller is subject. Blocking or deletion of the data also takes place when a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for conclusion of a contract or fulfillment of the contract.
IV. Provision of the website and creation of logfiles
1. Description and scope of data processing
Each time our website is accessed, our system automatically collects data and information from the computer system of the calling computer. The following data is collected here:
(1) Information about the browser type and version used
(2) The operating system of the user
(3) The IP address of the user
(4) Date and time of access
(5) Websites from which the system of the user reaches our website
(6) Web sites accessed by the user's system through our website
The data is also stored in the log files of our system. A storage of this data together with other personal data of the user does not take place. Personal user profiles can not be formed. The stored data will only be evaluated for statistical purposes.
2. Legal basis for data processing
The legal basis for the temporary storage of data and logfiles is Art. 6 para. 1f DSGVO.
3. Purpose of the data processing
The temporary storage of the IP address by the system is necessary to allow delivery of the website to the computer of the user. To do this, the user's IP address must be kept for the duration of the session.
Storage in log files is done to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.
For these purposes, our legitimate interest lies in the data processing according to Art. 6 para. 1f DSGVO.
4. Duration of storage
The data will be deleted as soon as it is no longer necessary for the purpose of its collection. In the case of collecting the data for providing the website, this is the case when the respective session is completed.
In the case of storing the data in log files, this is the case after no more than seven days. An additional storage is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.
5. Opposition and removal possibility
The collection of data for the provision of the website and the storage of the data in log files is essential for the operation of the website. There is consequently no contradiction on the part of the user.
V. Contact / E-mail contact
1. Description and scope of data processing
On our website is a contact option available, which can be used for electronic contact. If a user makes use of this option, they can contact the relevant contact person via the provided e-mail address. In this case, the user's personal data transmitted by e-mail will be stored in the e-mail system.
In this context, there is no disclosure of the data to third parties. The data is used exclusively for processing the conversation.
2. Legal basis for data processing
Legal basis for the processing of the data is in the presence of the consent of the user Art. 6 para. 1a DSGVO.
The legal basis for processing the data is, moreover, Article 6 (1f) GDPR. If the establishment of contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 (1b) GDPR.
3. Purpose of the data processing
When processing personal data when contacting by e-mail, the required legitimate interest in the processing of the data exists.
4. Duration of storage
The data will be deleted as soon as it is no longer necessary for the purpose of its collection. For the personal data sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the relevant facts have been finally clarified.
If the contact is a pre-contractual relationship (offer or reservation request), the transmitted data are also stored in our hotel software and used for contract execution. If there is no contractual relationship, we delete the data after one year at the end of the year.
5. Opposition and removal possibility
The user has the possibility at any time to object to the processing of his personal data. For this please use the e-mail:
info@burghotel-haseluenne.de,
We point out that in the case of a contradiction, the conversation can not continue or we can not create offers etc.
All personal data stored in the course of contacting will be deleted in this case.
VI. Online booking via the website
1. Description and scope of data processing
On our website there is the possibility to book rooms and arrangements. If a user realizes this option, the data entered in the input mask will be transmitted to us and saved. These data are: first name, name, e-mail address, telephone, address, number of co-travelers, estimated time of arrival, requests, payment data (credit card), date, time.
If you make an online booking from our websites, this is done through the online reservation system of HotelNetSolutions GmbH, Genthiner Str. 8, D-10785 Berlin. All booking data entered by you will be encrypted. HotelNetSolutions GmbH has committed to privacy-compliant handling of your transmitted data. It takes all organizational and technical measures to protect your data.
In this context, no further transfer of the data to third parties takes place. The data is used exclusively for processing the booking and for communication.
2. Legal basis for data processing
The legal basis for processing the data is the conclusion of an accommodation contract with the user in accordance with Art. 6 (1b) GDPR.
3. Purpose of the data processing
The processing of personal data from the input mask serves us solely to process the booking request and to process payment transactions.
4. Duration of storage
The data will be deleted as soon as it is no longer necessary for the purpose of its collection. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual retention requirements are met.
5. Opposition and removal possibility
The user has the possibility at any time to object to the processing of his personal data. For this please use the e-mail:
info@burghotel-haseluenne.de,
We point out that in the case of an objection, the booking can not be completed or the conversation can not be continued.
VII. Online booking through other websites
1. Description and scope of data processing
The Burghotel GmbH gives interested parties the opportunity to book rooms and arrangements for each hotel through hotel reservation portals (third party providers). If a user makes use of this option, the data entered in the input mask will be transmitted to us and stored to the extent permitted by the respective hotel reservation portal in accordance with its own privacy policy. Data may be: first name, name, e-mail address, telephone, address, number of passengers, estimated time of arrival, requests, payment details (credit card).
The data provided will be transferred to our hotel software via a so-called Channel Manager. All received booking data is encrypted. HotelNetSolutions GmbH, Genthiner Str. 8, D-10785 Berlin, Germany, as the provider of the Channel Manager, has committed itself to the privacy-related handling of the transmitted personal data. It takes all organizational and technical measures to protect your data.
In this context, no further transfer of the data to third parties takes place. The data will be used exclusively for the processing of the booking and, if necessary, for communication.
2. Legal basis for data processing
The legal basis for processing the data is the conclusion of an accommodation contract with the user in accordance with Art. 6 (1b) GDPR.
3. Purpose of the data processing
The processing of personal data from the input mask serves us solely to process the booking request and to process payment transactions.
4. Duration of storage
The data will be deleted as soon as it is no longer necessary for the purpose of its collection. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual retention requirements are met.
Burghotel GmbH has no influence on the storage periods at the respective hotel reservation portal.
5. Opposition and removal possibility
The user has the possibility at any time to object to the processing of his personal data. For this please use the e-mail: info@burghotel-haseluenne.de.
We point out that in the case of an objection, the booking can not be completed or the conversation can not be continued.
VIII. Advice, advertising and market research
1. Description and scope of data processing
For the support, advice and advertising of corporate customers, we collect and use the contact person, telephone number and postal address in addition to the business partner or potential business partner. The information is obtained from various sources, either through a request (e-mail or by telephone), but also through events, fairs, business cards received by our sales staff, etc.
In this context, there is no disclosure of the data to third parties. The data is used exclusively for the purposes mentioned.
2. Legal basis for data processing
The legal basis for processing the data is, moreover, Article 6 (1f) GDPR. If the establishment of contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 (1b) GDPR.
3. Purpose of the data processing
We use this contact information exclusively for our own purposes and for the needs-based design of our own sales activities.
4. Duration of storage
Basically, no cancellation period is provided. However, should our sales department have had no contact with the company within three years, the sales department decides whether the contact person of the company contact is to be deleted.
If the contact is a pre-contractual relationship (offer or reservation request), the transmitted data are also stored in our hotel software and used for contract execution. If there is no contractual relationship, we delete the data after one year at the end of the year.
5. Opposition and removal possibility
The company contact has the possibility at any time to object to the processing of his personal data. For this please use the e-mail:
info@burghotel-haseluenne.de,
All personal data of the contact person saved to the business partner will be deleted in this case.
IX. Use of cookies
1. Description and scope of data processing
Cookies are small files that allow us to store on your PC specific information related to you, the user, while you visit one of our websites. Cookies help us to determine the frequency of use and the number of users of our websites, as well as to make our offers as comfortable and efficient as possible for you.
We use so-called "session cookies", which are cached exclusively for the duration of your use of our website. The session cookies are stored on your data carrier to ensure certain settings and functionalities on our websites via your browser. The cookies we use will be deleted after the end of the browser session, ie after closing your browser.
In addition, we use cookies on our website that allow an analysis of users' browsing behavior. In this way, the following data can be transmitted: Entered search terms, frequency of page views, use of website functions. The data of the users collected in this way are anonymised by technical precautions. Therefore, an assignment of the data to the calling user is no longer possible. The data will not be stored together with other personal data of the users. When accessing our website, the user is informed about the use of cookies for analysis purposes and his consent to the processing of the personal data used in this context is obtained. In this context, there is also a reference to this privacy policy.
2. Legal basis for data processing
The legal basis for the processing of personal data using technically necessary cookies is Article 6 (1f) GDPR.
The legal basis for the processing of personal data using cookies for analysis purposes is, if the user has given his consent, Art. 6 (1a) GDPR.
3. Purpose of the data processing
The purpose of using technically necessary cookies is to facilitate the use of websites for users. Some features of our website can not be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page break. The user data collected through technically necessary cookies will not be used to create user profiles.
The use of the analysis cookies is for the purpose of improving the quality of our website and its contents. Through the analysis cookies we learn how the website is used and so we can constantly optimize our offer.
For these purposes, our legitimate interest in the processing of personal data in accordance with Art. 6 para. 1f DSGVO.
4. Duration of storage, objection and disposal options
Cookies are stored on the computer of the user and transmitted by this on our side. Therefore, as a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Already saved cookies can be deleted at any time. This can also be done automatically. If cookies are disabled for our website, it may not be possible to use all the functions of the website to the full.
A use of our offers is also possible without cookies and scripts. You can disable the storage of cookies and scripts in your browser, restrict them to certain websites, or set your browser to notify you when a cookie is sent. You can also delete cookies from your PC's hard drive at any time.
To block scripts, you can install browser add-ons. NoScript for Firefox and ScriptSafe for Google Chrome are, for example, such browser extensions. These not only block any kind of JavaScript, they also block selected trackers, Java, Flash and other plugins on web pages.
If you are concerned about third-party cookies, you can only reject them and still receive the cookies that make our website work properly.
This way you can reject cookies in any of the main browsers:
Please note, however, that in these cases you will have to expect a limited presentation of the page and a limited user interface.
5. Additional information
In addition to the above information about the use of cookies, we point out the following:
Use of Google Analytics, Google Convers Tracking and Google Remarketing
Our website uses Google Analytics, Google Conversions Tracking and Google Remarketing. These are services provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, United States ("Google").
This offer uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called "cookies", text files that are stored on users' computers and that allow an analysis of the use of the website by them. The information generated by the cookie about the use of this website by the users are usually transmitted to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, Google's IP address will be shortened beforehand within member states of the European Union or other parties to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. IP anonymization is active on this website. On behalf of the operator of this website, Google will use this information to evaluate users' use of the website, to compile reports on website activity, and to provide other services related to website activity and internet usage to the website operator. The IP address provided by Google Analytics as part of Google Analytics will not be merged with other Google information. Users can prevent the storage of cookies by setting their browser software accordingly; However, this offer notifies users that you may not be able to use all features of this website in their entirety. In addition, users may prevent the collection by Google of the data generated by the cookie and related to its use of the website (including your IP address) and the processing of this data by Google using the browser plug-in available at the following link download and install:
http://tools.google.com/dlpage/gaoptout?hl=de, As an alternative to the browser add-on or within browsers on mobile devices, please click this link to prevent the collection by Google Analytics within this website in the future. An opt-out cookie is stored on your device. If you delete your cookies, you must click this link again. For the rest, the above explanations in Section XI No. 1 to 4 apply accordingly.
Disabling Google Advertising
If you are a Google Plus member and you do not want Google to collect information about you from our website and link it to your member data stored on Google, you must log out of Google Plus before visiting our website.
X. Protection of minors
XI. Rights of the person concerned
If personal data is processed by you, you are the person concerned within the meaning of DSGVO and you have the following rights towards the responsible person:
You have a right to information about the personal data stored about you, about the purpose of the processing, about possible transfers to other places and about the duration of the storage.
If data is inaccurate or no longer necessary for the purposes for which it was collected, you may request that the processing be corrected, deleted or restricted. As far as provided in the processing procedures, you can also view your data yourself and correct it if necessary.
Should your particular personal situation give rise to reasons against the processing of your personal data, you may object to processing of your personal data as far as the processing is based on a legitimate interest. The controller will no longer process the personal data concerning you unless he can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is intended to assert, exercise or defend legal claims. If the personal data relating to you are processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct mail. If you object to processing for direct marketing or profiling purposes, your personal data will no longer be processed for these purposes.
You have the right to revoke your data protection consent declaration at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.
If you have questions about your rights and your rights, please contact:
Burghotel GmbH
Steintorstraße 7
D 49740 Haselünne
Data Protection Officer
Mr. Bernhard Purk
Fax: 49 (0) 5961 94 33 40
XII. Right to complain to a supervisory authority
As the data subject, you have the right to complain to a data protection supervisory authority, in particular in the Member State of its place of residence or the place of the alleged infringement, without prejudice to any other administrative or judicial remedy, if you consider that the processing of the personal data concerning you is against violates the privacy policy.
The regulator that files the complaint will notify you of the status and outcome of your complaint, including the possibility of a judicial remedy.
More information can be found on the website Federal Data Protection Authority, please follow this link:
XIII. security
The Burghotel GmbH uses technical and organizational security measures in accordance with Art. 32 DSGVO in order to protect your data managed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are continuously improved in line with technological developments. Access to it is only possible for a small number of authorized persons and persons subject to special data protection who are involved in the technical, administrative or editorial support of data.
XIV. User consent
By using our websites and the offers contained therein, you agree that the personal data you have voluntarily submitted will be stored by us and processed and used in accordance with this privacy policy.
We reserve the right to change, update or supplement this Privacy Policy at any time. Any revised privacy policy will only apply to personal data that has been collected or changed since the revised Directive entered into force.