Privacy Policy from Hotel Alt Lohbrügger Hof e.K.

This privacy policy is translated for you as a service from the German original. The clauses of the original text in German are binding

We are pleased that you visit our homepage and thank you for your interest in our company. Dealing with our customers and interested parties is a matter of trust. The trust placed in us has a very high value and therefore the importance and obligation to handle your data carefully and to protect it from misuse.

To ensure that you feel safe and comfortable when visiting our website, we take the protection of your personal data and its confidential treatment very seriously. Therefore, we act in accordance with the applicable legislation on the protection of personal data and data security.

With these notes on data protection, we would therefore like to inform you about when we store which data and how we use it – naturally in compliance with the applicable German legislation. The data protection at the Hotel Alt Lohbrügger Hof e.K. takes into account the European data protection level and is specifically based on the current Data Protection Regulation (DSGVO). When using the Internet, we are guided by the Telemedia Act (TMG) of the Federal Republic of Germany to protect your personal data.

Collection and processing of personal data

In principle, you can visit our websites without telling us who you are. Our web servers automatically store information of a general nature. This includes the type of web browser, the operating system used, the domain name of your Internet service provider, the website from which you visit us, the web pages you visit on our site and the date and duration of your visit. This is exclusively information that does not allow any conclusions to be drawn about your person. We evaluate this data only for statistical purposes and only in anonymous form.

Data protection with Google Analytics and Google Remarketing

This website uses Google Analytics and Google Remarketing. These are services of Google Inc. (“Google”). Google uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of this website (including your IP address) will be transmitted to and stored by Google on servers in the United States. The IP address is then shortened by Google by the last three digits, a clear assignment of the IP address is therefore no longer possible. Google observes the data protection provisions of the “US Safe Harbor” agreement and is registered with the “Safe Harbor” program of the US Department of Commerce.

Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf.

Third-party providers, including Google, place ads on websites on the Internet. Third-party vendors, including Google, use stored cookies to serve ads based on a user’s previous visits to this website.

Google will not associate your IP address with any other data held by Google. You can object to the collection and storage of data at any time with effect for the future. You can disable the use of cookies by Google by visiting the Google advertising disable page.

Alternatively, users can deactivate the use of cookies by third-party providers by visiting the deactivation page of the network advertising initiative. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/­gaoptout?hl=en.

However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above. You can object to the collection and storage of data at any time with effect for the future. You can find more information about Google’s terms and conditions here.

Use and disclosure of the collected data

We use the personal data provided by you exclusively for the purposes communicated or agreed upon, i.e. as a rule for processing the contract concluded with you or for answering your inquiry.

If you make use of services, we generally only collect the data that we need to provide the services. As far as we ask you for further data, it is voluntary information. Personal data is processed exclusively to fulfill the requested service and to protect our own legitimate business interests.

Will personal data be passed on to third parties?

Your data will only be processed and used for the purposes of consulting, advertising and market research with your express consent. Your data will not be sold, rented or otherwise made available to third parties. Transfers of personal data to state institutions and authorities will only take place within the framework of mandatory national legal provisions.

Use of cookies

In some areas of our pages, so-called cookies are used. A cookie is a small text file that is stored on your hard drive by a website. Cookies do not cause any damage to your computer and do not contain viruses. The cookies on our website do not collect any personal data. We use the information contained in cookies to make it easier for you to use our pages and to tailor them to your needs.

Of course, you can also view our website without cookies. If you do not want cookies to be stored on your computer, you can deactivate the corresponding option in the system settings of your browser. You can delete stored cookies in the system settings of your browser at any time. If you do not accept cookies, however, this may lead to functional restrictions of our offers.

Use of Google Maps

This website uses Google Maps to display maps and to create directions. Google Maps is operated by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. By using this website, you consent to the collection, processing and use of automatically collected data and data provided by you by Google, one of its agents, or third parties. The terms of use for Google Maps can be found under the terms of use for Google Maps.
Use of CBooking (Hotelnetsolutions)

Use of script libraries (Google Webfonts)

In order to display our content correctly and graphically appealing across browsers, we use script libraries and font libraries such as Google Webfonts (https://www.google.com/webfonts/) on this website. Google Web Fonts are transferred to your browser’s cache to avoid multiple loading. If the browser does not support Google Web Fonts or prevents access, content is displayed in a standard font.

Calling up script libraries or font libraries automatically triggers a connection to the operator of the library. It is theoretically possible – although it is currently also unclear whether and, if so, for what purposes – that operators of corresponding libraries collect data.

The privacy policy of the library operator Google can be found here: https://www.google.com/policies/­privacy/

Use of CBooking (Hotelnetsolutions)

Our website uses Cbooking as a reservation and inquiry tool of Hotelnetsolutions GmbH in order to be able to efficiently implement your inquiries/bookings. Cbooking is operated by Hotelnetsolutions GmbH, Genthiner Str. 8, 10785 Berlin, Germany. By using this website, you consent to the collection, processing and use of automatically collected data and data provided by you by Hotelnetsolutions GmbH, one of its agents, or third party service providers. Hotelnetsolutions GmbH ensures that the processing and use of your data for the purpose of consulting, advertising and market research will only take place with your express consent. Your data will not be sold, rented or otherwise made available to third parties. You can object to the use of your data at any time.

Security

The Hotel Alt Lohbrügger Hof e.K. uses technical and organizational security measures in accordance with § 32 DSGVO to protect your data managed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. Our security measures are continuously improved in line with technological developments. Hotel Alt Lohbrügger Hof e.K. stores data relevant to data protection exclusively on secure systems in Germany. Access to this data is only possible for a few authorized persons and persons who are obligated to special data protection and who are involved in the technical, administrative or editorial care of data.

Protection of minors

Children and adolescents with limited legal capacity may not transmit any personal data to our websites without the consent of their parents or guardians. Hotel Alt Lohbrügger Hof e.K. will not knowingly collect personal data from children or young people of limited legal capacity, nor will it use such data in any way or disclose it to third parties without authorization.

Declaration of consent of the user

By using our web pages and the offers contained therein, you consent to the storage by us of any personal data voluntarily submitted by you and to its processing and use in accordance with this privacy policy.

Your rights to information, correction, blocking, deletion and objection

You have the right to obtain information about your personal data stored by us at any time. Likewise, you have the right to have your personal data corrected, blocked or, apart from the mandatory data storage for business processing, deleted. Please contact our data protection officer for this purpose. You will find the contact details at the bottom of this page.

In order that a blocking of data can be taken into account at any time, this data must be kept in a blocking file for control purposes. You can also request the deletion of data if there is no legal obligation to archive it. If such an obligation exists, we will block your data upon request.

You can make changes or revoke consent by notifying us accordingly with effect for the future.

Changes to our privacy policy

We reserve the right to occasionally adapt this data protection declaration so that it always complies with the current legal requirements or in order to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new data protection declaration will then apply to your next visit.

Public Directory of Procedures of Hotel Alt Lohbrügger Hof e.K.

The basic data protection regulation stipulates that the following information must be made available to everyone in an appropriate manner by the data protection officer.

Name of the responsible body:

Hotel Alt Lohbrügger Hof e.K.
Owner
Jan-Hendrik Ohl

Address of the responsible office
Data protection department
Leuschnerstraße 76, D-21031 Hamburg, Germany
Phone: +49 40 739 600-0
Fax: +49 40 739 600-999
E-mail: datenschutz@altlohbrueggerhof.de
Internet: www.altlohbrueggerhof.de

Purpose of data collection, processing and use

Operation of hotels and related businesses, as well as all related businesses
Operation of a customer service for the purpose of taking and making reservations
Operation of passenger transportation services, or the operation of a rental car company.
Secondary purposes are accompanying or supporting functions in personnel, intermediary, supplier and service provider management
Video surveillance is conducted at hotel locations solely for the purpose of collecting evidence in the event of vandalism, burglary, robbery or other crimes. The presence and use of video cameras is indicated by appropriate warning notices. Digitalized recordings of booking conversations for documentation, evidence and training purposes, will only be made with the express permission of the interlocutor.
The storage and processing of personal data for our own purposes, as well as on behalf of individual companies in accordance with existing service agreements within the company group.
The collection, processing and use of data is carried out for the purposes listed above.

Description of data subjects and related data/data categories

Essentially, personal data is collected, processed and used for the following groups of persons:
Guest data (esp. address data, reservation data, guest requests, billing data)
Customer data (especially address data, contract data, billing and service data)
Interested party data (esp. interest in accommodation, interest in room and hall rental, address data)
Employee data, applicant data, data of pension providers (best. personnel and salary data)
Agent/broker/agency data (esp. address, billing and service data)
Business partners, external service providers (esp. address, billing and performance data)
Data on suppliers (esp. address, billing, performance and functional data)
Non-assignable group of persons: Video recordings insofar as these are necessary for the fulfillment of the purposes mentioned under point 5.

Categories of recipients to whom data may be disclosed

Hotels, guesthouses and other lodging establishments may collect personal data of their guests and store it in automated procedures, insofar as this is necessary within the framework of the lodging contract. This usually includes billing data on food and beverages, telephone calls made from the room and/or other hotel-specific services. Hotels and lodging establishments are required by registration laws to request information about the place of residence, date of birth and nationality of their guests and their family members.

Furthermore, data can be communicated to the following recipients:

Public bodies that receive data on the basis of statutory regulations (e.g. social insurance institutions).
Internal offices involved in the execution and fulfillment of the respective business processes (e.g. personnel administration/control, accounting, marketing, sales, IT organization and the central reservation service (Customer Service Center)
External contractors (service companies) in accordance with Section 11 BDSG
Other external bodies (e.g. credit institutions, brokerage agencies within the framework of intermediary activities, companies belonging to a group of companies, insofar as the persons concerned have declared their written consent or a transfer is permissible for predominant legitimate interest), as well as partner companies within the framework of the commissioned activity issued by the customer.

Standard periods for the deletion of data

The legislator has enacted a variety of retention obligations and periods. After these periods have expired, the corresponding data and data records are routinely deleted if they are no longer required for the fulfillment of the contract (guest, rental and service contracts). For example, commercial or financial data from a completed fiscal year is deleted in accordance with legal requirements after a further ten years, unless longer retention periods are prescribed or required for legitimate reasons. In the area of personnel administration and personnel management, shorter deletion periods are used in specific areas. This applies in particular to rejected applications or warnings. If data is not affected by this, it is deleted without being requested if the purposes mentioned under point 5 cease to apply.

Registration forms are stored in the individual hotel and accommodation establishments in accordance with the valid registration law for the minimum period prescribed by law and then destroyed under special precautionary measures in accordance with data protection regulations.

Planned data transfer to third countries

Data transfers to third countries arise only in the context of contract performance, necessary communication, as well as other exceptions expressly provided for in the General Data Protection Regulation (GDPR).

A data transfer to other third countries, especially those whose data protection level is considered low or to countries outside the EU does not currently take place; such a transfer is also not planned.

Ensuring security in data processing

The Hotel Alt Lohbrügger Hof e.K. uses technical and organizational security measures in accordance with the DSGVO to protect the data it manages against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. The security measures used are continuously improved in line with technological developments. This means that Hotel Alt Lohbrügger Hof e.K. stores its data protection-relevant information exclusively on secured systems in Germany. Access to this data is only possible for a few authorized persons who are responsible for technical, administrative or editorial support and who are obliged to provide special data protection.

Name and address of the data protection officer

Hotel Alt Lohbrügger Hof e.K.
Data Protection Officer
Leuschnerstraße 76
D-21031 Hamburg
Phone: +49 40 7396000
E-mail: datenschutz@altlohbrueggerhof.de

Status of the Public Directory of Procedures: May 9, 2018.

Person responsible for the content of the Public Directory of Procedures:
The Data Protection Officer of Hotel Alt Lohbrügger Hof e.K.