Privacy Policy
Welcome to our website. So that you feel safe and comfortable when visiting our website, we take the protection of your personal data and their confidential treatment very seriously. Therefore we act in accordance with the applicable legal provisions for the protection of personal data and data security.
With this information on data protection, we would like to inform you about when we store which data and how we use it - of course in compliance with the applicable case law. Data protection in the Hotel Pension Kastanienhof Hauptmann oHG (Hotel Kastanienhof) is based in particular on the European General Data Protection Regulation (GDPR)
Overview:
Responsible
Data Protection Officer
Legal bases of data processing
Provision of the website
Contact/email contact
Online booking via the website
Online booking via other websites
business customers
cookies
web analytics
Use of Facebook
Integration of third-party services and content
Purposes of processing personal data
Voluntary information
Recipients / disclosure of data
Data processing outside the European Union
Protection of minors
rights of the data subject
deletion of data
security
Right to lodge a complaint with a supervisory authority
Changes to this privacy notice
Responsible
The responsible body for this website is:
Hotel Pension Kastanienhof Hauptmann oHG, Kastanienallee 65, D-10119 Berlin-Mitte, Germany, Tel: +49 (0)30 44 30 50, Mail: info@kastanienhof.berlin
Data Protection Officer
The data protection officer of the person responsible is:
Mrs. Berit Schubert, DataSolution LUD GmbH, Isarstr. 13, D-14974 Ludwigsfelde, Germany, phone: +49 (0) 3378 205729, email: mail@hoteldatenschutz.de
Legal bases of data processing
In order to be able to offer you our website and the associated services, we process personal data on the basis of the following legal bases:
– Consent (Art. 6 Para. 1 lit. a) GDPR)
– to fulfill contracts (Art. 6 Para. 1 lit. b) GDPR
– on the basis of a weighing of interests (Art. 6 Para. 1 lit. f) GDPR)
– to fulfill a legal obligation (Art. 6 Para. 1 lit. c) GDPR)
In connection with the respective processing, we will refer to the corresponding terms so that you can classify on which basis we process personal data.
If personal data is processed on the basis of your consent, you have the right to revoke your consent at any time with effect for the future.
If we process data on the basis of a balance of interests, you as the data subject have the right to object to the processing of personal data, taking into account the provisions of Art. 21 GDPR.
Provision of the website
When you visit our website, personal data is processed in order to be able to display the content of the website on your device.
In order for the pages to be displayed in your browser, the IP address of the end device you are using must be processed. There is also further information about the browser of your end device.
We are obliged under data protection law to also guarantee the confidentiality and integrity of the personal data processed with our IT systems.
For this purpose and for this interest, the following data is logged on the basis of a balance of interests:
– IP address of the calling computer (for a maximum of 7 days)
– Operating system of the calling computer
– Browser version of the calling computer
– name of the retrieved file
– Date and time of retrieval
– amount of data transferred
– Referring URL
The IP address will be deleted from all systems used in connection with the operation of this website after 7 days at the latest. We can then no longer establish a personal reference from the remaining data.
The data is also used to identify and correct errors on the website.
Contact/email contact
A contact option is available on our website, which can be used for electronic contact. If a user takes advantage of this option, they can use the email address provided to get in touch with the respective contact person. In this case, the user's personal data transmitted with the e-mail will be stored in the e-mail system.
In this context, the data will not be passed on to third parties. The data is used exclusively for processing the conversation. Fields of the contact form: subject, first name*, last name*, company, street, postcode, city, country, telephone number*, fax, e-mail*, message
*Required fields
We need this information to process your request and to address you correctly
Online booking via the website
At the time of inquiry/booking as well as during the stay in the hotel, inventory data that is required for the mutual, proper fulfillment of the contract. These include: salutation, first and last name, address, street and city, date of birth, telephone numbers and/or E-mail addresses, payment data (credit card), data on the services.
If you make an online booking from our website, this is done through the online reservation system of HotelNetSolutions GmbH, Genthiner Str. 8, 10785 Berlin, Germany. All booking data you enter will be transmitted in encrypted form. HotelNetSolutions GmbH has committed itself to handling your transmitted data in accordance with data protection regulations. It takes all organizational and technical measures to protect your data.
Online booking via other websites
The Hotel Kastanienhof gives interested parties the opportunity to book rooms and arrangements for the hotel via hotel reservation portals (third-party providers). If a user takes advantage of this option, the data entered in the input mask will be transmitted to us to the extent
and stored as permitted by the respective hotel reservation portal in accordance with its own data protection regulations. Data can be: first name, surname, e-mail address, telephone, address, number of fellow travelers, estimated time of arrival, wishes, payment details (credit card).
The data provided is transferred to our hotel software via a so-called channel manager. All received booking data are transmitted in encrypted form. HotelNetSolutions GmbH, Genthiner Str. 8, D-10785 Berlin, Germany, as the provider of the channel manager, has committed itself to handling the transmitted personal data in accordance with data protection regulations. It takes all organizational and technical measures to protect your data.
In this context, the data will not be passed on to third parties. The data will only be used to process the booking and, if necessary, for communication.
business customers
For the support, advice and advertising of corporate customers, we collect and use the contact person, phone number and postal address in addition to the business partner or potential business partner. We receive the information from different sources, either through an inquiry (e-mail or telephone), but also through events, trade fairs, business cards that our sales staff receive, etc.
We use this contact data exclusively for our own purposes and to design our own sales activities as required.
cookies
Cookies are small files that make it possible to store specific, device-related information on the user's access device (PC, smartphone, etc.). On the one hand, they serve the user-friendliness of websites and thus the users (e.g. storage of login data). On the other hand, they serve to collect statistical data on website use and to be able to analyze them in order to improve the offer. Users can influence the use of cookies. Most browsers have an option to restrict or completely prevent the storage of cookies. However, it is pointed out that the use and in particular the ease of use are restricted without cookies.
You can opt out of many online advertising cookies from companies via the US site http://www.aboutads.info/choices/ or the EU site
http://www.youronlinechoices.com/uk/your-ad-choices/.
What types of cookies are there?
1. Strictly Necessary Cookies - These types of cookies are always enabled as they are required for the basic functionality of the website. This includes cookies that can be used to store where you move on the site.
2. Functionality and performance - These analytical cookies allow us to improve the functionality of the site by anonymously tracking user behavior. These cookies can also increase the speed with which inquiries are processed, for example. This also includes communication with Facebook, Twitter or other social networks.
We use cookies to offer you the information and services you want with the best possible quality and to be able to better transmit information and announcements regarding our website.
web analytics
The web analysis tool "Google Analytics" is used on this website, a service offered by Google Ireland Limited. The purpose of the use is the "needs-based design" of this website, which is carried out on the basis of a weighing of interests. The web analysis also enables us to identify and correct errors on the website, e.g. due to faulty links.
The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. Since we have activated the so-called IP anonymization on this website and have concluded a corresponding order processing contract with Google, your IP address will be previously recorded by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area shortened. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. Google in the USA is certified according to the so-called "Privacy Shield" (list entry). An appropriate level of data protection is guaranteed by Google.
You can prevent the data generated by the cookie and related to your use of the website (including your IP address) being sent to Google and the processing of this data by Google by clicking on the following link (http:// tools.google.com/dlpage/gao-ptout?hl=de) and install the available browser plugin.
You can find more information about the terms of use of Google Analytics and data protection notices at: https://policies.google.com/privacy
Use of Facebook
So-called social plugins (“plugins”) from the social network Facebook are used on our website. This service is offered by the company Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook")
When you visit our website, your browser establishes a direct connection to the Facebook servers. The content of the plugins is transmitted directly to your browser by the respective provider and integrated into the page. By activating the plugins, the providers receive the information that your browser has accessed the corresponding page of our website,
even if you do not have a profile or are not currently logged in. This information (including your IP address) is transmitted directly from your browser to a server of the respective provider in the USA and stored there.
If you are logged in to one of the services, the providers can directly assign the visit to our website to your profile on Facebook. If you interact with the plugins, for example by pressing the "f" button, the corresponding information is also transmitted directly to the provider's server and stored there.
The purpose and scope of the data collection and the further processing and use of the data by the provider as well as your rights in this regard and setting options for protecting your privacy can be found in the provider's data protection information.
Facebook privacy policy: http://www.facebook.com/policy.php
Integration of third-party services and content
We use content or service offers from third-party providers within our online offer on the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 Para. 1 lit. f. DSGVO) in order to improve their content and Integrate services such as videos or fonts (hereinafter uniformly referred to as “content”). This always presupposes that the third-party providers of this content perceive the IP address of the user, since without the IP address they could not send the content to their browser. The IP address is therefore required for the display of this content. We endeavor to only use content whose respective providers only use the IP address to deliver the content. Third-party providers can also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information can also be stored in cookies on the user's device and contain, among other things, technical information about the browser and operating system, referring websites, visiting times and other information on the use of our online offer, as well as such information from others sources can be connected.
The following presentation offers an overview of third-party providers and their content, along with links to their data protection declarations, which contain further information on the processing of data and, in some cases already mentioned here, possibilities to object (so-called opt-out): • External fonts from Google, LLC. , https://www.google.com/fonts (“Google Fonts”). The Google Fonts are integrated by calling up a server at Google (usually in the USA). Data protection declaration: https://policies.google.com/privacy, opt-out: https://adssettings.google.com/authenticated.
• Maps provided by the "Google Maps" service provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection declaration: https://www.google.com/policies/privacy/, opt-out: https://www.google.com/set-tings/ads/.
Purposes of processing personal data
We process the aforementioned data for the operation of our website and for the fulfillment of contractual obligations towards our customers or the protection of our legitimate interests.
In the case of inquiries from you outside of an active customer relationship, we process the data for sales and advertising purposes. You can object to the use of your personal data for advertising purposes at any time.
Voluntary information
If you voluntarily provide us with data, e.g. in forms, and this is not required for the fulfillment of our contractual obligations, we process this data on the legitimate assumption that the processing and use of this data is in your interest.
Recipients / disclosure of data
Data that you provide to us will not be passed on to third parties. In particular, your data will not be passed on to third parties for their advertising purposes.
However, we may use service providers to operate this website or for other products or services from us. Here it can happen that a service provider gains knowledge of personal data. We select our service providers carefully - especially with regard to data protection and data security - and take all the measures required under data protection law for permissible data processing.
Data processing outside the European Union
As far as personal data is processed outside the European Union, you can see this from the previous statements.
Protection of minors
This service is mainly aimed at adults. We do not currently market special areas for children. Accordingly, we do not knowingly collect age determination information, nor do we knowingly collect personally identifiable information from children under the age of 16. However, we advise all visitors to our website under the age of 16 not to disclose or provide any personal data via our service. In the event that we discover that a child under the age of 16 has provided us with personal information, we will delete the child's personal information from our files, to the extent technically possible.
rights of the data subject
You have the right to information about the personal data concerning you. You can contact us at any time for information.
In the case of a request for information that is not made in writing, we ask for your understanding that we may require evidence from you that proves that you are the person you claim to be. You also have the right to correction or deletion or to Restriction of processing, insofar as you are legally entitled to this.
Finally, you have the right to object to the processing within the framework of the legal requirements.
A right to data transferability also exists within the framework of data protection regulations.
If you have any questions about your rights and how to exercise your rights, please contact the responsible office or our data protection officer.
deletion of data
We generally delete personal data when there is no need for further storage. A requirement can exist in particular if the data is still required in order to fulfill contractual services, to be able to check and grant or ward off warranty and, if applicable, guarantee claims. In the case of statutory storage obligations, deletion can only be considered after the respective storage obligation has expired.
security
We use technical and organizational security measures in accordance with Art. 32 GDPR to protect your data managed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are continuously improved in line with technological developments. Access to it is only possible for a few authorized persons and persons who are responsible for the technical, administrative or editorial support of data and who are responsible for special data protection.
Right to lodge a complaint with a supervisory authority.
You have the right to complain to a data protection supervisory authority about the processing of personal data by us.
Changes to this privacy notice
We revise this data protection notice when changes are made to this website or for other reasons that make this necessary. You can always find the current version on this website.
Booth | 09'2020
