1. Data protection at a glance
The following notes provide a simple overview of what happens to your personal information when you visit our website. Personal information is any information that personally identifies you. For detailed information on the subject of data protection, please refer to our data protection declaration listed below this text.
Data collection on our website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. Their contact data can be found in the imprint of this website.
How do we collect your data?
On the one hand, your data is collected by you communicating it to us. This may involve data that you enter in a contact form, for example.
Other data is automatically collected by our IT systems when you visit the website. These are mainly technical data (e.g. Internet browser, operating system or time of the page call). This data is collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure that the website is error-free. Other data can be used to analyse your user behaviour.
What rights do you have with regard to your data?
You have the right at any time and free of charge to obtain information about the origin, recipient and purpose of your stored personal data. You also have the right to request that this data be corrected, blocked or deleted. You can contact us at any time at the address given in the imprint for this as well as for further questions on the subject of data protection. In addition, you have the right to lodge a complaint with the responsible supervisory authority.
2. General information and mandatory information
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and according to the legal data protection regulations as well as this data protection explanation.
We would like to point out that data transmission over the Internet (e.g. communication by e-mail) can be subject to security gaps. A complete protection of the data against access by third parties is not possible.
Reference to the responsible office
The responsible body for data processing on this website is:
MD Hotelbetriebs GmbH
Phone: + 49 (0) 78 42 / 99 42 0
The responsible body is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke your consent at any time. For this purpose, an informal e-mail notification to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Information, blocking, deletion
Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, their origin and recipient and the purpose of data processing and, if applicable, a right to correction, blocking or deletion of this data. You can contact us at any time at the address given in the imprint for this and other questions on the subject of personal data.
Objection against advertising mails
We hereby object to the use of contact data published within the scope of the imprint obligation to send unsolicited advertising and information material. The operators of this website expressly reserve the right to take legal action against unsolicited mailing or e-mailing of spam and other similar advertising materials.
3. Data collection on our website
Some of the Internet pages use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your terminal until you delete them. These cookies enable us to recognize your browser during your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, accept cookies for certain cases or generally exclude them and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.
Cookies which are necessary for the electronic communication process or for the provision of certain functions requested by you (e.g. shopping basket function) are stored on the basis of Art. 6 para. 1 lit. f DSGVO. The website operator has a justified interest in the storage of cookies for the technically error-free and optimised provision of its services. Insofar as other cookies (e.g. cookies for analysing your surfing behaviour) are stored, these are dealt with separately in this data protection declaration.
Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and browser version
- used operating system
- Referrer URL
- Hostname of the accessing computer
- Time of the server request
- IP address
This data will not be merged with other data sources.
This data is collected on the basis of Art. 6 para. 1 lit. f DSGVO. The website operator has a justified interest in the technically error-free presentation and optimisation of his website – for this purpose, the server log files must be recorded.
If you send us enquiries via the contact form, your details from the enquiry form including the contact data you provided there will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. These data will not be passed on without your consent.
The processing of the data entered in the contact form is therefore carried out exclusively on the basis of your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time. For this purpose, an informal e-mail notification to us is sufficient. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
The data entered by you in the contact form will remain with us until you request deletion, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.
4. Plugins and Tools
While you are using the plugin, WPML will share data about the page via the installer. No data will be shared by the user himself.
Customer Alliance (hotel reviews)
Former guests can leave a rating at our hotel after check-out. For this purpose we would like to send you an e-mail asking you to submit a hotel rating. Each rating can be published anonymously on request. If you did not feel comfortable in our hotel, we would like to take the opportunity to contact you.
If you submit an online evaluation on our website, the data will be stored in the evaluation tool of CA Customer Alliance GmbH, Ullsteinstr. 118, Turm B, D-12109 Berlin, Germany. CA Customer Alliance GmbH has committed itself to handling your data in accordance with data protection regulations.
If a former guest makes use of this online evaluation option, data on the former guest will be stored in the evaluation mask. These data are: E-mail address as well as voluntary information such as first name, surname, language as well as the information for the evaluation.
In this connection no further passing on of the data to third parties takes place. The data are used exclusively for the publication of the evaluation and for the arbitration with bad evaluations.
Further information on the handling of user data can be found in the data protection declaration of CA Customer Alliance GmbH.
caesar data & software (online booking)
Our website uses a plugin from caesar-data.de for direct bookings. The site is operated by caesar data & software GmbH, Hindelanger Str. 35, 87527 Sonthofen – Germany.
The use of caesar-data is in the interest of a smooth direct booking of our rooms and the corresponding payment processing. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit. f DSGVO.
The personal data transmitted to caesar data GmbH is usually first name, surname, address, email address, IP address, telephone number, mobile phone number or other data required for payment processing. Personal data related to the respective order are also necessary for the processing of the purchase contract.
caesar data GmbH may pass on personal data to affiliated companies and service providers or subcontractors if this is necessary to fulfil contractual obligations or if the data is to be processed on behalf of the customer.
Further information on the handling of user data can be found in the data protection declaration of caesar data & software at: https://www.caesar-data.de/datenschutz/.
Voucher order (payment service PayPal)
On our website you can order a voucher online. Every user has the possibility on our website to place an order by providing personal data. Which personal data is transmitted to us depends on the respective input mask which is used for the order. The personal data entered by the customer are collected and processed exclusively for the purpose of providing the service and fulfilling legal obligations.
On our website we offer payment via PayPal. The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter referred to as “PayPal”).
If you choose to pay via PayPal, the payment details you enter will be sent to PayPal.
The transfer of your data to PayPal is based on Art. 6 Para. 1 lit. a DSGVO (consent) and Art. 6 Para. 1 lit. b DSGVO (processing to fulfil a contract). You have the possibility to revoke your consent to data processing at any time. A revocation has no effect on the effectiveness of past data processing operations.
Further information on the handling of user data can be found in PayPal’s data protection declaration at: https://www.paypal.com/de/webapps/mpp/ua/privacy-full.