1. General Information and Mandatory Notices
Protecting personal data is very important to us. We process personal data of data subjects (e.g. names, contact details, usage data) exclusively in accordance with the applicable European and national data protection laws (in particular the GDPR).
This privacy policy provides an overview of the type, scope, purpose, and legal basis of the processing of personal data, as well as the rights of the data subjects.
2. Controller
Hotel am Markt & Brauhaus Stadtkrug
Owner: Tina Zeck
Markt 3 / 4
17373 Ueckermünde
Email: tinazeck@hotel-ueckermuende.de
The controller within the meaning of the GDPR is the entity named above, which decides on the purposes and means of processing personal data.
3. Data Protection Officer
Rico Albrecht
Email: datenschutzbeauftragter@hotel-ueckermuende.de
4. Legal Basis for Data Processing
We process personal data based on one or more of the following legal grounds:
Consent: Art. 6(1)(a) GDPR
Performance of a contract / pre-contractual measures: Art. 6(1)(b) GDPR
Legal obligation: Art. 6(1)(c) GDPR
Legitimate interests (e.g. operation, security, marketing): Art. 6(1)(f) GDPR
5. Your Rights as a Data Subject
You have the right to obtain information about the personal data we hold about you at any time, and — under the applicable legal provisions — to request correction, blocking, deletion, or restriction of processing. You may object to the processing of your data for reasons relating to your particular situation.
You may revoke your consent at any time with future effect (e.g. cookie consent, newsletter subscription). The revocation does not affect the lawfulness of processing carried out before the revocation. To exercise your rights, simply send an informal email to datenschutzbeauftragter@hotel-ueckermuende.de.
You also have the right to lodge a complaint with a supervisory authority. The competent authority is the State Data Protection Officer for Mecklenburg-Western Pomerania. A list of supervisory authorities is available here:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
6. SSL / TLS Encryption
For the security of your data, we use SSL/TLS encryption. You can recognize an encrypted connection by “https://” in your browser’s address bar and the lock symbol.
7. Server Log Files / Hosting
Each time the website is accessed, our hosting provider automatically collects and stores access data (server log files), such as IP address, date, time, accessed page, and browser type. These data are used for security and website operation purposes. They are not combined with other data sources.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest).
8. Contact Form, Email, Telephone
If you contact us via contact form, email, or telephone, the data you provide will be stored for the purpose of processing your request.
Legal basis: Art. 6(1)(b) GDPR (contract initiation) or Art. 6(1)(f) GDPR (other inquiries).
Data will be deleted when the purpose no longer applies, usually after six months, unless statutory retention obligations apply.
9. Cookies & Consent Management (CookieFirst)
Our website uses cookies and similar technologies. Before setting non-essential cookies, we obtain your consent.
We use CookieFirst (Digital Data Solutions B.V., Plantage Middenlaan 42a, 1018 DH Amsterdam, Netherlands) as our consent management tool. CookieFirst stores and manages your cookie preferences.
Legal basis: Art. 6(1)(c) GDPR and, where consent is given, Art. 6(1)(a) GDPR.
10. Google Services (Consolidated)
We use various Google services (Google Ireland Limited and Google LLC):
a) Google Analytics
Used for web analysis and improvement of our offerings. Google uses cookies and may process IP addresses. We use IP anonymization.
Legal basis: Art. 6(1)(a) GDPR (consent).
b) Google reCAPTCHA
Protects our forms from spam and misuse. Technical and behavioral data are transmitted to Google.
Legal basis: Art. 6(1)(f) GDPR (protection from misuse) or Art. 6(1)(a) GDPR (consent).
c) WithGoogle Content / Google Maps / Google Fonts / Google Tag Manager / Google Scripts
Our website may use content and features from Google services. IP addresses and technical information may be transmitted to Google servers.
Legal basis: Art. 6(1)(a) GDPR (consent) or Art. 6(1)(f) GDPR (legitimate interest).
Further information: https://policies.google.com/privacy
11. Vimeo (Embedded Videos)
We embed videos from Vimeo Inc. on our website. When such pages are loaded, data (e.g. IP address, referrer) are transmitted to Vimeo.
Legal basis: Art. 6(1)(a) GDPR (consent).
More information: https://vimeo.com/privacy
12. Canva
We occasionally use graphics or links from Canva Pty Ltd. When following such links or loading embedded Canva content, Canva’s privacy policy applies.
Legal basis: Art. 6(1)(f) GDPR or Art. 6(1)(a) GDPR.
13. BootstrapCDN / jsDelivr (CDN)
To deliver scripts quickly, we use CDN services such as jsDelivr or BootstrapCDN. Technical data (e.g. IP address, file requests) are transmitted to the CDN provider.
Legal basis: Art. 6(1)(f) GDPR.
More info: https://www.jsdelivr.com/terms/privacy-policy-jsdelivr-net
14. Font Awesome
For icons, we use Font Awesome (Fonticons, Inc.). Loading these web fonts transmits technical data to the CDN servers.
Legal basis: Art. 6(1)(f) GDPR.
15. Google Tag Manager
We use Google Tag Manager to manage website tags. It doesn’t store personal data but may trigger other tags that collect data.
Legal basis: Art. 6(1)(f) GDPR.
16. Online Booking, Voucher Shop & Packages (DIRS21)
We use DIRS21 (TourOnline AG, Borsigstraße 26, 73249 Wernau) for online bookings, vouchers, and packages. Personal data (name, contact info, travel details, payment info) are processed for booking purposes.
Legal basis: Art. 6(1)(b) GDPR.
More info: https://www.dirs21.de/datenschutz/
17. Newsletter (rapidmail)
We use rapidmail GmbH to send newsletters. Registration is via double opt-in.
Legal basis: Art. 6(1)(a) GDPR.
You can unsubscribe anytime via the link in the email or by contacting datenschutzbeauftragter@hotel-ueckermuende.de.
More info: https://www.rapidmail.de/datenschutz
18. Betterspace Guest Directory
Our website includes an external link to our digital guest directory hosted by Betterspace.
When visiting this page, the privacy policy of Betterspace applies:
https://betterspace360.com/de/datenschutz/
19. Social Media: Facebook & Instagram
We maintain profiles on Facebook and Instagram (Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland). When you interact with us there, Meta processes personal data.
More info:
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in communication and marketing).
20. WhatsApp Channel
We use a WhatsApp Channel to share news and offers. Provider: WhatsApp Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.
When you follow our channel or send us messages, WhatsApp processes personal data.
More info: https://www.whatsapp.com/legal/privacy-policy-eea
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in communication).
You can leave the channel at any time.
21. Job Applications
When you send us an application, we process your personal data for recruitment purposes.
Legal basis: Art. 6(1)(b) GDPR and §26 BDSG.
22. Contests and Promotions
If you take part in contests, we process your data (e.g. name, email, phone, submitted photos) for conducting the contest and notifying winners.
Legal basis: Art. 6(1)(b) GDPR or Art. 6(1)(a) GDPR (consent).
23. Video Surveillance
We use video surveillance in our premises to protect guests, property, and prevent crimes.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest).
Further details (purpose, retention period) are displayed on-site.
24. Data Retention and Deletion
Personal data are stored only as long as necessary or as required by law. Afterwards, they are deleted.
25. Data Transfers to Third Countries
If service providers process data in third countries (e.g. USA, Australia), this is done only with appropriate safeguards (e.g. Standard Contractual Clauses, Data Privacy Framework).
We reserve the right to update this Privacy Policy to reflect technical or legal changes. The current version is dated November 2025.
