top of page

Data Protection

Data protection declaration
 
Thank you for your interest in our company. The management of the Hotel Sierra de Alicante attaches special importance to data protection. The use of the Hotel Sierra de Alicante website is basically possible without giving any personal data. However, if a data subject wants to use special services of our enterprise via our website, processing of personal data may be necessary. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain consent from the data subject.

The processing of personal data, such as the name, address, email address or telephone number of an interested party, is always carried out in accordance with the Basic Data Protection Regulation and the specific data protection regulations of each applicable country. to the Sierra Hotel in Alicante. By means of this data protection declaration, our company would like to inform the public about the type, scope and purpose of the personal data collected, used and processed by us. In addition, interested parties will be informed of their rights through this data protection declaration.

The Hotel Sierra de Alicante, as data controller, has implemented numerous technical and organizational measures to guarantee the most complete protection of personal data processed through this website. However, data transmissions over the Internet may have security gaps, so absolute protection cannot be guaranteed. For this reason, each data subject is free to transmit personal data to us by alternative means, for example by telephone.

1 Definitions
The privacy policy of the Hotel Sierra de Alicante is based on the terms used by the European legislator of directives and regulations for the adoption of the basic data protection regulations (DS-GMO). Our data protection declaration should be easy to read and understand for both the public and our customers and business partners. To ensure this, we would like to explain in advance the terms used.

In this data protection declaration we use, among others, the following terms:

a) personal data
Personal data is all information relating to an identified or identifiable natural person (hereinafter "the data subject"). Identifiable is a natural person who can be identified directly or indirectly, in particular by assigning to an identifier such as a name, an identification number, location data, an online identifier or one or more special characteristics expressing physical identity, physiological, genetic, psychological, economic, cultural or social of that natural person.

b) the interested party
The interested party is any identified or identifiable natural person whose personal data is processed by the data controller.

c) transformation
Processing means any operation or series of operations carried out with or without the help of automated procedures in relation to personal data, such as collection, collection, organization, classification, storage, adaptation or modification, reading, retrieval, use, communication by transmission, dissemination or any other form of making available, comparison or linking, restriction, deletion or destruction.

d) Limitation of transformation
Restriction of processing is the marking of stored personal data in order to restrict their future processing.

e) profiling Profiling
is any form of automated processing of personal data consisting of the use of said personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects related to the performance of work. , the financial situation, health, personal preferences, interests, reliability, behavior, location or transfer of said natural person.

f) Pseudonymization
Pseudonymization is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organizational measures. that ensure that personal data is not assigned to an identified or identifiable natural person.

(g) controller or controller
The data controller or controller is the natural or legal person, public authority, institution or other body which, alone or jointly with others, decides on the purposes and means of the processing of personal data. Where the purpose and means of such processing are regulated by Union law or the law of the Member States, the controller or the specific criteria for its nomination may be established in accordance with Union law or the law of the Member States. Law of the Member States.

h) contractors
The controller is a natural or legal person, authority, institution or other body that processes personal data on behalf of the controller.

i) Recipient
The recipient is a natural or legal person, authority, institution or other body to which personal data is disclosed, regardless of whether it is a third party or not. However, authorities that may receive personal data under Union law or the law of the Member States in the framework of a specific investigation mandate will not be considered recipients.

j) third parties
A third party is a natural or legal person, authority, institution or other body other than the interested party, the data processor, the data processor and the persons authorized to process personal data under the direct responsibility of the data processor or of the person in charge of the treatment.

k)
Consent Consent means any informed and unequivocal manifestation of the voluntary will of the interested party, in the case in which it is in the form of a declaration or other clear affirmative act by which the interested party expresses his or her consent to the processing of personal data that concerns him or her. .

2) the name and address of the controller
The person responsible within the meaning of the Basic Data Protection Regulation, other data protection laws in force in the Member States of the European Union and other provisions of a data protection nature is:

Hotel Sierra de Alicante
Placa de l'Ajuntament 13
03111 Busot
Spain
Telephone: +34965699441
Email: info@hotelsierradealicante.com Website: www.hotel-sierra-de-alicante.com

3. cookies
The Hotel Sierra de Alicante website uses cookies. Cookies are text files that are stored on a computer system through an Internet browser.
Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a character string through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This allows visited Internet pages and servers to distinguish the individual browser of the person concerned from other Internet browsers that contain other cookies. A particular Internet browser can be recognized and identified by its unique cookie ID.

Through the use of cookies, Hotel Sierra de Alicante can offer users of this website more user-friendly services that would not be possible without cookies.

Using a cookie, the information and offers on our website can be optimized for the user. Cookies allow us, as already mentioned, to recognize the users of our website. The purpose of this recognition is to make it easier for users to use our website. For example, the user of a website that uses cookies does not have to re-enter their access data each time they visit the website, as this is assumed by the website and the cookie stored on the user's computer system. Another example is the cookie of a shopping cart in the online store. The online store remembers the items that a customer has placed in the virtual shopping basket through a cookie.

The data subject may prevent the setting of cookies on our website at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Furthermore, already set cookies can be deleted at any time via an Internet browser or other software programs. This is possible in all common Internet browsers. If the data subject deactivates the setting of cookies in the Internet browser used, not all functions of our Internet site may be entirely usable.

4. collection of general data and information
The Hotel Sierra de Alicante website collects a series of general data and information every time a person or an automated system visits the website. This general data and information is stored in the server log files. We may record (1) the types and versions of browsers used, (2) the operating system used by the access system, (3) the website from which an access system reaches our website (so-called referrer), ( 4) the subsites accessed through an access system on our website, (5) the date and time of access to the Website, (6) an Internet Protocol address (IP address), (7 ) the Internet service providers of the access system, and (8) other similar data and information used for security purposes in case of attacks on our information technology systems.

When using these general data and information, the Hotel Sierra de Alicante does not draw any conclusions about the interested party. Rather, this information is necessary to (1) correctly deliver the content of our website, (2) optimize the content of our website and the advertising thereof, (3) ensure the continued functionality of our information technology systems. information and technology on our website, and (4) provide law enforcement authorities with information necessary for criminal prosecution in the event of a cyber attack. Therefore, these data and information collected anonymously are evaluated by the Hotel Sierra de Alicante statistically and with the aim of increasing data protection and security in our company in order to guarantee an optimal level of protection. of the personal data processed by us. Anonymous data from the server log files are stored separately from all personal data provided by a data subject.

5. registration on our website
The interested party may register on the website of the data controller, providing personal data. The personal data transferred to the controller are determined by the respective input mask used for the registration. The personal data entered by the data subject are collected and stored exclusively for internal use of the controller and for the data subject's own purposes. The controller may arrange for the data to be transferred to one or more processors, such as a parcel service, which will also use the personal data exclusively for internal use attributable to the controller.
In addition, the IP address assigned by the Internet Service Provider (ISP) to the data subject, the date and time of registration are stored when the data subject registers on the website of the controller. This data is stored against the background that this is the only way to prevent misuse of our services and, if necessary, so that we can investigate committed crimes. In this sense, the storage of this data is necessary to protect the data controller. This data will not be passed on to third parties unless required by law or for the purposes of criminal prosecution.
The registration of the interested party in the voluntary provision of personal data serves the data controller to offer the interested party content or services that, by their nature, can only be offered to registered users. Registered persons are free to modify the personal data provided during registration at any time or to completely delete them from the data controller's database.
The data controller will inform each interested party at all times, upon request, of the personal data that concerns them. Furthermore, the data controller will correct or delete personal data at the request or notification of the interested party, provided that there is no legal obligation to keep it in good condition. All employees of the controller are available to the data subject as contact persons in this context.

6. contact through the website
The website of the Hotel Sierra de Alicante, due to legal regulations, contains information that allows us to contact our company electronically and communicate directly with us, which also includes a general address of the so-called email (email address). If a data subject contacts the controller via e-mail or a contact form, the personal data transmitted by the data subject are automatically stored. These personal data provided voluntarily by an interested party to the data controller will be kept for the purpose of being able to process them or contact the interested party. These personal data are not transmitted to third parties.

7 Routine erasure and blocking of personal data
The controller shall process and store the personal data of the data subject only for the time necessary to achieve the objective of data retention or to the extent provided for by the European regulator or another legislator in applicable legislation. which the person responsible for the treatment is subject to.

If the storage purpose no longer applies or if a storage period prescribed by the European Directive and the Giver Regulation or another competent legislator expires, the personal data are routinely blocked or deleted in accordance with legal provisions.

8. rights of the data subject

a) Right of confirmation
Every data subject has the right granted by the European legislator in directives and regulations to require the controller to confirm whether personal data concerning him or her are being processed. If a data subject wishes to exercise this right of confirmation, he or she may contact an employee of the controller at any time.

b) Right to information
Any person affected by the processing of personal data will have the right, recognized by the European legislator of directives and regulations, to obtain from the controller, at any time and free of charge, information about the personal data that concerns him or her. and a copy of said information. Furthermore, the European regulator has granted the interested party the following information:

o the purposes of the processing
o the categories of personal data being processed
o the recipients or categories of recipients to whom the personal data have been or continue to be communicated, in particular recipients in third countries or international organizations
or, if possible, the expected duration of the retention of the personal data or, if this is not possible, the criteria for determining such duration
or the existence of a right to rectification or deletion of the data. personal data concerning you, a restriction of processing by the data controller or a right to object to such processing
or the existence of a right of appeal to a supervisory authority
or if personal data are not collected from the data subject: All the available information on the origin of the data
or the existence of an automated decision-making process, including profiling in accordance with Article 22, paragraphs 1 and 4, of the DS-GMO and - at least in these cases - meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.
In addition, the data subject has the right to access information as to whether personal data have been transferred to a third country or to an international organization. If this is the case, the data subject also has the right to obtain information on appropriate safeguards relating to the transfer.
If a data subject wishes to exercise this right of access, he or she may contact an employee of the controller at any time.

c) Right to rectification
Any person who is subject to the processing of personal data will have the right granted by the European legislator of directives and regulations to request the immediate correction of inaccurate personal data concerning him or her. Furthermore, taking into account the purposes of the processing, the data subject has the right to request the completion of incomplete personal data, including by means of a supplementary declaration.

If a data subject wishes to exercise this right to rectification, he or she may contact an employee of the controller at any time.

d) Right of cancellation (right to be forgotten)
Any person affected by the processing of personal data will have the right, recognized by the European legislator of directives and regulations, to demand that the person responsible for the treatment request the immediate deletion of the personal data provided to him. concern, provided that one of the following reasons applies and to the extent that the processing is not necessary:
​​o The personal data have been collected or otherwise processed for purposes for which they are no longer necessary.
o The data subject withdraws consent on which the processing was based in accordance with Article 6(1)(a) of the DS-GMO or Article 9(2)(a) of the DS-GMO, and There is no other legal basis for the processing.
o The data subject objects to the processing pursuant to Article 21(1) of the OMG DS and there are no compelling legitimate grounds for the processing or the data subject objects to the processing pursuant to Article 21(2) of the OMG DS.
o The personal data have been processed illegally.
o The deletion of personal data is necessary to comply with a legal obligation under Union law or the law of the Member States to which the controller is subject.
o The personal data were collected in relation to information society services offered in accordance with article 8, section 1 DS-GMO.
In the event that any of the above reasons apply and the interested party wishes to have the personal data stored at the Hotel Sierra de Alicante deleted, he or she may contact an employee of the controller at any time. The Hotel Sierra de Alicante employee will ensure that the cancellation request is fulfilled immediately.
If personal data has been made public by the Hotel Sierra de Alicante and our company is responsible according to art. 17 par. 1 DS-GMO, Hotel Sierra de Alicante will take appropriate measures, including technical measures, taking into account available technology and implementation costs, to inform other data processors processing the published personal data, that the interested party has requested. the deletion of all links to such personal data or of copies or replicas of such personal data from those other data processors, where processing is not necessary. The staff at Hotel Sierra de Alicante will do what is necessary on a case-by-case basis.

e) Right to restriction of processing
Any person to whom the processing of personal data relates will have the right granted by the European legislator of directives and regulations to require the controller to restrict the processing if any of the following conditions are met. :
o The data subject contests the accuracy of the personal data for a period allowing the controller to verify the accuracy of the personal data.
o The processing is illegal, the interested party refuses to delete the personal data and instead requests the restriction of the use of the personal data.
o The controller no longer needs the personal data for the purposes of the processing, but the data subject needs them to assert, exercise or defend legal rights.
o The data subject has lodged an objection to the processing in accordance with Article 21(1) of the DS-GMO and it has not yet been determined whether the legitimate reasons of the data subject outweigh those of the data subject.
If any of the above conditions are met and the interested party wishes to request the restriction of personal data held by Hotel Sierra de Alicante, he or she may contact an employee of the controller at any time. The employee of the Hotel Sierra de Alicante will be in charge of restricting the treatment.

f) Right to data transferability
Each data subject shall have the right granted by the European legislator to receive the personal data concerning him or her provided by the data subject to a controller in a structured, current and machine-readable format. You will also have the right to transmit such data to another controller without any obstruction on the part of the controller to whom the personal data have been provided, provided that the processing is based on the consent referred to in Article 6(1), letter a), OMG DS, or in Article 9(2)(a) OMG DS, or in a contract in accordance with Article 6(1)(b) OMG DS, and that the processing is carried out using automated procedures, unless necessary for the performance of a task of public interest or in the exercise of public authority vested in the controller.
Furthermore, in exercising his or her right to data transferability pursuant to Article 20(1) DS-OMG, the data subject has the right to have personal data transferred directly by one controller to another controller. , provided that this is technically feasible and does not affect the rights and freedoms of other people.
The interested party may contact an employee of the Hotel Sierra de Alicante at any time to exercise their right to data transfer.

g) Right to object
Any person affected by the processing of personal data will have the right to object at any time to the processing of personal data concerning him or her pursuant to article 6, section 1, letters e) of), of the DS-OMG by reasons derived from your particular situation. This also applies to profiling based on these provisions.
The Hotel Sierra de Alicante will stop processing personal data in the event of opposition, unless we can prove the existence of compelling reasons for processing that exceed the interests, rights and freedoms of the interested party or that the processing serves to assert, exercise or defend legal rights.
In the event that the Hotel Sierra de Alicante processes personal data for direct marketing purposes, the interested party has the right to object at any time to the processing of personal data for advertising purposes. This also applies to profiling insofar as it is related to such direct advertising. If the interested party objects to the processing of the Hotel Sierra de Alicante for direct sales purposes, the Hotel Sierra de Alicante will no longer process the personal data for these purposes.
Furthermore, the interested party has the right to object to the processing of personal data concerning him that is carried out at the Hotel Sierra de Alicante for scientific or historical research purposes or for statistical purposes, in accordance with article 89, section 1, of the DS. -GMO, for reasons derived from your particular situation, unless such treatment is necessary to carry out a task of public interest.
To exercise the right of opposition, the interested party may directly contact any employee of the Hotel Sierra de Alicante or any other employee. The interested party may also freely exercise his or her right to object in relation to the use of information society services through automated procedures that use technical specifications, notwithstanding the provisions of Directive 2002/58/EC.

h) Automated decisions in individual cases, including profiling
Every person to whom personal data relates shall have the right, recognized by the European legislator of directives and regulations, not to be subject to a decision based exclusively on automated processing, including profiling, which has legal effects against you or that affects you significantly and in a similar way, provided that the decision 1) is not necessary for the conclusion or execution of a contract between the interested party and the data controller, or 2) is permissible under Union or Member State law to which the controller is subject and such legislation contains appropriate measures to safeguard the rights, freedoms and legitimate interests of the data subject, or 3) with the express consent of the interested party.

If the decision (1) is necessary for the celebration or execution of a contract between the interested party and the person responsible for the file or (2) is adopted with the express consent of the interested party, the Hotel Sierra de Alicante will adopt the appropriate measures to safeguard the rights. , freedoms and legitimate interests of the interested party, including at least the right to obtain the intervention of a person responsible for the file, to present his position and to challenge the decision.
If the data subject wishes to assert rights concerning automated decision-making, he or she may contact an employee of the controller at any time.

i) Right to revoke consent under data protection law
Any person affected by the processing of personal data has the right granted by the European legislator in directives and regulations to revoke consent to the processing of personal data at any time. .
If the data subject wishes to exercise his or her right to revoke consent, he or she may contact an employee of the controller at any time.

9 Use and use of Facebook privacy policy
The data controller has integrated Facebook components on this website. Facebook is a social network.
A social network is an Internet-based social meeting place, an online community that generally allows users to communicate with each other and interact in virtual space. A social network can serve as a platform for the exchange of opinions and experiences or allows the Internet community to provide personal or business-related information. Facebook allows social network users to create private profiles, upload photos and connect to the network through friend requests, among other things.

Facebook is operated by Facebook, Inc, 1 Hacker Way, Menlo Park, CA 94025, USA. The person responsible for processing personal data if the data subject resides outside the USA or Canada is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
With each call-up to one of the individual pages of this website, which is operated by the controller and into which a Facebook component (Facebook plug-in) was integrated, the Internet browser on the information technology system The person's information is automatically invited by the respective Facebook component to download a representation of the corresponding Facebook component from Facebook. An overview of all Facebook plug-ins can be found at https://developers.facebook.com/docs/plugins/?locale=en_DE. As part of this technical process, Facebook is informed of what specific sub-page of our website is visited by the data subject.

If the person concerned is logged in to Facebook at the same time, Facebook recognizes which specific sub-page of our website the person concerned visits with each visit to our website by the person concerned and for the entire duration of the respective stay. on our website. This information is collected by the Facebook component and assigned by Facebook to the respective Facebook account of the person concerned. If the person concerned clicks on one of the Facebook buttons integrated on our website, for example the "Like" button, or if the person concerned makes a comment, Facebook assigns this information to the personal user account of Facebook of the person concerned and stores this personal data.

Facebook receives information via the Facebook component that the person concerned has visited our website each time the person concerned is logged in to Facebook at the same time as calling up our website; This happens regardless of whether the person in question clicks on the Facebook component or not. If the data subject does not wish this information to be transmitted to Facebook, he or she may prevent such transmission by logging out of his or her Facebook account before a call-up to our website is made.
The data policy published by Facebook, which is available at https://de-de.facebook.com/about/privacy/, provides information on the collection, processing and use of personal data by Facebook. It also explains the configuration options that Facebook offers to protect the privacy of the affected person. In addition, there are several applications that allow you to suppress data transmission to Facebook. These applications can be used by the data subject to suppress the transmission of data to Facebook.

10. Privacy policy on the use of Google Analytics (with anonymity function)
The data controller has integrated the Google Analytics component (with anonymity function) on this website. Google Analytics is a web analysis service. Web analytics is the collection, compilation and evaluation of data on the behavior of visitors to Internet sites. A web analysis service collects, inter alia, data about the website from which a website was accessed by a data subject (the so-called referrer), which subpages of the website were accessed, or how often and for how long. time a subpage has been visited. A web analysis is mainly used to optimize a website and for the cost-benefit analysis of Internet advertising.

The Google Analytics component is managed by Google Inc, 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.
The data controller uses the suffix "_gat._anonymizeIp" for web analysis via Google Analytics. By means of this addition, Google shortens and anonymizes the IP address of the Internet connection of the person concerned when accessing our Internet pages from a Member State of the European Union or from another State party to the Agreement on the European Economic Area.

The purpose of the Google Analytics component is to analyze the flow of visitors to our website. Google uses the collected data and information to evaluate the use of our website, among other things, to compile online reports for us, which show the activities on our website, and to provide other services in connection with the use of our website. .

Google Analytics places a cookie on the information technology system of the data subject. What cookies are has already been explained above. By setting the cookie, Google can analyze the use of our website. With each call-up to one of the individual pages of this website, which is operated by the data controller and into which a Google Analytics component was integrated, the Internet browser on the information technology system The data subject is automatically invited by the respective Google Analytics component to transmit data to Google for online analysis purposes. As part of this technical process, Google obtains knowledge of personal data, such as the IP address of the person concerned, which serves Google, inter alia, to trace the origin of visitors and clicks and subsequently enable statements. of commissions.
Cookies are used to store personal information, such as the access time, the location from which the access was accessed, and the frequency of visits to our website by the data subject. Each time you visit our website, these personal data, including the IP address of the Internet connection used by the data subject, will be transmitted to Google in the United States of America. These personal data are stored by Google in the United States of America. Google may disclose personal data collected through the technical process to third parties.

The data subject may prevent the setting of cookies on our website at any time, as described above, by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser would also prevent Google from placing a cookie on the information technology system of the data subject. Furthermore, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programs.

In addition, the data subject may object and prevent a collection of data that are generated by Google Analytics in relation to the use of this website and the processing of this data by Google. To do this, the data subject must download and install a browser add-on under the link https://tools.google.com/dlpage/gaoptout. This browser add-on informs Google Analytics through JavaScript that no data or information about visits to websites. Installing the browser add-on is considered a contradiction by Google. If the person's information technology system is subsequently deleted, formatted or reinstalled, the person concerned must reinstall the browser add-on to disable Google Analytics. If the browser add-on is uninstalled or disabled by the data subject or another person under the control of the data subject, it is possible to reinstall or reactivate the browser add-on.

Further information and Google's current privacy policy can be found at https://www.google.de/intl/de/policies/privacy/ and http://www.google.com/analytics/terms/de.html Google Analytics will be explained in more detail at this link https://www.google.com/intl/de_en/analytics/.

11 Privacy policy for the use of Google
The data controller has integrated the Google+ button as a component on this website. Google+ is a social network. A social network is an Internet-based social meeting place, an online community that generally allows users to communicate with each other and interact in virtual space. A social network can serve as a platform for the exchange of opinions and experiences or allows the Internet community to provide personal or business-related information. Google+ allows users of the social network to create private profiles, upload photos and network through friend requests, among other things.

Google+ is operated by Google Inc, 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, United States.
With each call-up to one of the individual pages of this website, which is operated by the controller and on which a Google+ button has been integrated, the Internet browser on the information technology system of the data subject is automatically prompted by the Google+ button. Google+ corresponding to downloading from Google a representation of the corresponding Google+ button. As part of this technical procedure, Google is informed of what specific sub-page of our website is visited by the data subject. More detailed information about Google+ can be found at https://developers.google.com/+/.

If the person concerned is logged in to Google+ at the same time, each time the person concerned visits our website and for the entire duration of the respective stay on our website, Google recognizes which specific subpage of our website the person visited. in question. This information is collected by the Google+ button and assigned by Google to the respective Google+ account of the person concerned.

If the data subject clicks on one of the Google+ buttons integrated on our website and thus makes a Google+1 recommendation, Google assigns this information to the personal Google+ user account of the data subject and stores this personal data. . Google stores the Google+1 recommendation of the data subject and makes it available to the public in accordance with the conditions accepted by the data subject. A Google+1 recommendation made by the data subject on this website will subsequently be stored and processed together with other personal data, such as the name of the Google+1 account used by the data subject and the photo stored in this account on other services. of Google, such as search engine results of the Google search engine, the Google account of the data subject or in other places, such as on websites or in connection with advertisements. Furthermore, Google can link the visit to this website with other personal data stored by Google. Google also records this personal information in order to improve or optimize the different services provided by Google.

The Google+ button will always inform Google that the person concerned has visited our website if they are logged in to Google+ at the same time as accessing our website, regardless of whether they click on the Google+ button.

If the data subject does not wish to have his or her personal data transmitted to Google, he or she may prevent such transmission by logging out of his or her Google+ account before accessing our website.

You can find more information and the current privacy policy of Google at https://www.google.de/intl/de/policies/privacy/ You can find more information from Google about the Google+1 button at https://developers. google.com/+/web/buttons-policy.

12 Data protection regulations on the use and application of Twitter
The controller has integrated components of Twitter on this website. Twitter is a multilingual public microblogging service on which users can publish and distribute so-called tweets, that is, short messages limited to 280 characters. These short messages are available to everyone, including people who are not registered on Twitter. The tweets are also shown to the so-called followers of the respective user. Followers are other Twitter users who follow a user's tweets. In addition, Twitter allows you to address a wide audience through hashtags, links or retweets.
Twitter is operated by Twitter, Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.

Each time one of the individual pages of this website is called up, which is operated by the controller and on which a Twitter component (Twitter button) has been integrated, the Internet browser on the technology system of the person's information is automatically invited by the respective Twitter component to download a representation of the corresponding Twitter component from Twitter. More information about Twitter buttons can be found at https://about.twitter.com/de/resources/buttons. As part of this technical process, Twitter is informed which specific sub-page of our website is visited by the person concerned. . The objective of integrating the Twitter component is to allow our users to spread the content of this website, make this website known in the digital world and increase our number of visitors.

If the person concerned is logged in to Twitter at the same time, Twitter recognizes which specific subpage of our website the person concerned visits with each visit to our website by the person concerned and for the entire duration of the respective stay on our website. website. This information is collected by the Twitter component and assigned to the respective Twitter account of the data subject by Twitter. If the data subject presses one of the Twitter buttons integrated on our website, the transmitted data and information are assigned to the personal Twitter user account of the data subject and stored and processed by Twitter.

Twitter receives information via the Twitter component that the data subject has visited our website whenever the data subject is logged in on Twitter at the same time as calling up our website; This happens regardless of whether the person concerned clicks on the Twitter component or not. If the data subject does not wish this information to be transmitted to Twitter, he or she may prevent the transmission by logging out of his or her Twitter account before calling up our website.

Twitter's current data protection regulations are available at https://twitter.com/privacy?lang=en.

13 Use and use of YouTube Privacy Policy
The controller has integrated YouTube components on this website. YouTube is an Internet video portal that allows video editors to publish video clips and other users to view, rate and comment on them for free. YouTube allows the publication of all types of videos, so complete film and television programs, music videos, trailers or videos produced by the users themselves can be accessed through the Internet portal.
YouTube is operated by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc, 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, United States.

With each call-up to one of the individual pages of this website, which is operated by the data controller and on which a YouTube component (YouTube video) has been integrated, the Internet browser on the technology system of the information of the person concerned is automatically invited by the respective YouTube component to download a representation of the corresponding YouTube component from YouTube. More information about YouTube can be found at https://www.youtube.com/yt/about/de/ In the course of this technical procedure, YouTube and Google are informed of which specific sub-page of our website is visited by the interested person.

If the person concerned is logged in to YouTube at the same time, YouTube recognizes which specific subpage of our website the person concerned visits by calling up a subpage that contains a YouTube video. This information is collected by YouTube and Google and assigned to the respective YouTube account of the person concerned.

YouTube and Google receive information via the YouTube component that the person concerned has visited our website each time the person concerned is logged in to YouTube at the same time as accessing our website; This happens regardless of whether the person in question clicks on a YouTube video or not. If such a transmission of this information to YouTube and Google is not desirable for the data subject, this may prevent the transmission by logging out of their YouTube account before a call-up to our website.

The data protection regulations published by YouTube, which can be accessed at https://www.google.de/intl/de/policies/privacy/, provide information on the collection, processing and use of personal data. by YouTube and Google.

14. payment method: privacy policy for PayPal as a payment method
The controller has integrated PayPal components into this website. PayPal is an online payment service provider. Payments are processed through so-called PayPal accounts, which are virtual private or business accounts. Additionally, PayPal offers the option to process virtual payments using credit cards if the user does not have a PayPal account. A PayPal account is managed through an email address, so there is no classic account number. PayPal allows you to initiate payments on the Internet to third parties or receive payments. PayPal also acts as a trustee and provides buyer protection services.

PayPal's European operating company is PayPal (Europe) S.à.rl & Cie. SCA, 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.
If the data subject selects "PayPal" as a payment option in our online shop during the ordering process, the data of the data subject are automatically transmitted to PayPal. By selecting this payment option, the interested party consents to the transfer of personal data necessary for payment processing.

The personal data transmitted to PayPal is usually first name, last name, address, email address, IP address, telephone number, mobile phone number or other data necessary for payment processing. The personal data in connection with the respective order are also necessary for the processing of the purchase contract.

The purpose of data transmission is to process payments and prevent fraud. The controller shall provide PayPal with personal data, in particular if there is a legitimate interest in the transfer. PayPal may transfer personal data exchanged between PayPal and the controller to credit reference agencies. The purpose of this transmission is to verify identity and creditworthiness.

PayPal may transmit personal data to affiliated companies and service providers or subcontractors if this is necessary to fulfill contractual obligations or if the data is to be processed on PayPal's behalf.

The interested party has the option to revoke his or her consent to the processing of personal data with PayPal at any time. A revocation does not affect personal data that must be processed, used or transmitted for (contractual) payment processing.
PayPal's current privacy policy can be found at https://www.paypal.com/de/webapps/mpp/ua/privacy-full

15. legal basis of the treatment
Art. 6 I lit. a DS-GMO serves our company as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the interested party is a party, as is the case, for example, of processing operations necessary for the delivery of goods or the provision of other services or consideration, The processing is based on Article 6 I, letter b) of the DS-OMG. The same applies to processing processes necessary to carry out pre-contractual measures, for example in cases of inquiries about our products or services. If our company is subject to a legal obligation that requires the processing of personal data, for example to comply with tax obligations, the processing is based on Art. 6 I lit. c DS-GMO. In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or third parties. The treatment would then be based on Art. 6 I lit. d DS-GMO. Ultimately, processing operations could be based on Art. 6 I lit. f DS-GMO. Processing that is not covered by any of the aforementioned legal bases is based on this legal basis if the processing is necessary to safeguard a legitimate interest of our company or a third party, provided that fundamental interests, rights and freedoms do not prevail. Of the interested. These processing procedures are permitted to us in particular because they have been specifically mentioned by the European legislator. In this regard, he considered that the existence of a legitimate interest could be presumed if the person concerned is a client of the responsible person (second sentence of recital 47, DS-GMO).

16. legitimate interests in the processing pursued by the controller or a third party
If the processing of personal data is based on Article 6 I letter f DS-GMO, it is in our legitimate interest to carry out our activity for the well-being of all our employees and shareholders.

17 Duration of storage of personal data
The criterion for the duration of storage of personal data is the respective statutory retention period. After expiration of this period, the corresponding data will be routinely deleted, as long as it is no longer necessary for the fulfillment or initiation of the contract.

18. legal or contractual provisions for the provision of personal data; need to conclude the contract; obligation of the interested party to provide personal data; possible consequences of failure to provide them

We inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contracting party). In some cases, it may be necessary to conclude a contract if a data subject provides us with personal data which we must subsequently process. For example, the data subject is obliged to provide us with personal data if our company concludes a contract with him or her. Failure to provide personal data would mean that the contract with the interested party could not be concluded. Before the interested party provides his or her personal data, he or she must contact one of our employees. Our employee will inform the data subject on a case-by-case basis whether the provision of personal data is required by law or contract or required for the conclusion of the contract, whether there is an obligation to provide the personal data and what consequences would result from non-provision of the personal data.

19. For the provision of our reservation services we use selected external providers (Touronline AG/DIRS, Ibelsa GmbH) who in turn are subject to strict data protection regulations and during the reservation process collect communication data, address data , names, Payment transaction data. The provision of this data is required by contract and law and is required for a valid reservation to be completed.

20. We use Google Maps from Google Inc. to display city maps on our home page. By using our website, you consent to the collection, processing and use of data collected automatically by Google Inc, its representatives and third parties. The terms of use for Google Maps can be found in " Google Maps Terms of Use ."

21. existence of an automated decision-making system
As a responsible company, we do without automatic decision-making and profiling.
This data protection declaration was created by the data protection declaration generator of the DGD Deutsche Gesellschaft für Datenschutz GmbH, which acts as external data protection officer in Munich, in cooperation with Christian Solmecke, attorney for data protection law. Data Protection.

This Datenschutzerklärung wurde durch den Datenschutzerklärungs-Generator der DGD Deutsche Gesellschaft für Datenschutz GmbH, diese als External Datenschutzbeauftragter Hamburg tätig ist, in Kooperation mit dem Datenschutz Anwalt Christian Solmecke erstellt.

bottom of page