privacy police

The protection of personal data is important to us. Therefore, the processing of personal data is carried out in accordance with the applicable European and national legislation.

You can of course revoke your declaration of consent at any time with effect for the future. Please contact the responsible person according to § 1.

The following statement provides an overview of what type of data is collected, how this data is used and passed on, what security measures we take to protect your data and how you can obtain information about the information given to us.

Legal basis for processing personal data
Insofar as we obtain the consent of the person concerned for the processing of personal data, Article 6 (1) sentence 1 lit. a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
Article 6 (1) sentence (b) GDPR serves as the legal basis for the processing of personal data required to fulfill a contract to which the data subject is a party. This also applies to processing operations that are necessary to carry out pre-contractual measures.
Insofar as processing of personal data is necessary to fulfill a legal obligation to which we are subject, Article 6 (1) sentence 1 lit. c) GDPR serves as the legal basis.
If the processing is necessary to protect a legitimate interest of our company or a third party and if the interests, fundamental rights and fundamental freedoms of the data subject do not outweigh the first interest, Article 6 Paragraph 1 Clause 1 Letter f) GDPR serves as the legal basis for the processing .

Data Erasure and Storage Duration
The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage no longer applies. Storage can also take place if this has been provided for by European or national legislators in EU regulations, laws or other regulations to which we are subject. The data will also be blocked or deleted if a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

Naming of the responsible body
The responsible body for data processing on this website is:

Data Protection Officer
Rico Albrecht
datenschutzbeauftragter@hotel-ueckermuende.de

The responsible body decides alone or together with others on the purposes and means of processing personal data (e.g. names, contact details, etc.).

Revocation of your consent to data processing
Some data processing operations are only possible with your express consent. You can revoke your consent that you have already given at any time. An informal message by e-mail is sufficient for the revocation. The legality of the data processing that took place up until the revocation remains unaffected by the revocation.

Right to lodge a complaint with the competent supervisory authority
As a data subject, you have the right to lodge a complaint with the competent supervisory authority in the event of a breach of data protection law. The competent supervisory authority with regard to data protection issues is the state data protection officer of the federal state in which our company is based. The following link provides a list of data protection officers and their contact details: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to third parties. It is provided in a machine-readable format. If you request the direct transfer of the data to another person responsible, this will only be done to the extent that it is technically feasible.

Right to information, correction, blocking, deletion
You have the right to free information about your stored personal data, the origin of the data, its recipient and the purpose of the data processing and, if necessary, a right to correction, blocking or deletion of this data at any time within the framework of the applicable legal provisions. You can contact us at any time using the contact options listed in the legal notice if you have any further questions on the subject of personal data.

SSL or TLS encryption
For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses an SSL or. TLS encryption. This means that data that you transmit via this website cannot be read by third parties. You can recognize an encrypted connection by the "https://" address line of your browser and by the lock symbol in the browser line.

Server log files
The provider of the website automatically collects and stores information in server log files, which your browser automatically transmits to us. These are:

This data is not merged with other data sources. The basis for data processing is Article 6 Paragraph 1 Letter b GDPR, which permits the processing of data to fulfill a contract or pre-contractual measures.

Contact Form
If you contact us via our contact form, we collect the following personal data:

Additionally, we store your IP address and the time of submission for security reasons. The processing of your data is solely for the purpose of processing your inquiry and contacting you, in accordance with Article 6 (1) lit. b GDPR (contract fulfillment) or Article 6 (1) lit. f GDPR (legitimate interest). The data submitted via the contact form will be deleted once your inquiry has been processed and no legal retention obligations apply. In general, we delete the data no later than six months after the completion of the processing.

Your data will not be shared with third parties unless this is necessary to fulfill your request or we are legally required to do so. The transmission of your data is done via an encrypted SSL/TLS connection to protect it from unauthorized access.

Consent Management and Cookies
This website uses cookies to enhance user experience, analyze website usage, and personalize content and advertising. Before cookies are set, we ask for your explicit consent.

By consenting, you agree to the storage of cookies that are necessary for the operation of the website, as well as the use of cookies for analysis, content personalization, or advertising.

Cookies are stored on your device when you consent to their use. You can delete or block cookies at any time in your browser settings. Further details on this can be found in our Cookie Policy and Privacy Policy.

You can withdraw your consent at any time by adjusting the settings in our cookie banner or by modifying the relevant settings in your web browser. Please note that the withdrawal of consent only applies to future data processing and does not affect the lawfulness of processing that occurred before the withdrawal.

Google Analytics
Our website uses Google Analytics, a web analytics service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland. For users outside the European Economic Area (EEA), this service is provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses so-called "cookies." These are small text files that are stored on your device and allow analysis of your use of our website. The information generated by cookies about your use of our website is usually transmitted to a Google server in the USA and stored there.

The processing of your data is based on your consent pursuant to Art. 6 (1) (a) GDPR, which you can provide via our consent management tool. You can withdraw your consent at any time by adjusting the cookie settings on our website.

We have entered into a data processing agreement with Google and use the enhanced IP anonymization feature. Your IP address is truncated before being transmitted within the EU member states or other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

For more information about data usage by Google Analytics, please refer to Google's privacy policy and the terms of use for Google Analytics.

IP Anonymization
We use Google Analytics with the IP anonymization feature. This ensures that Google truncates your IP address within EU member states or other contracting states of the Agreement on the European Economic Area before transmission to the USA. In exceptional cases, Google may transmit the full IP address to a server in the USA and truncate it there. On our behalf, Google will use this information to evaluate your use of the website, create reports on website activity, and provide other services related to website and internet use. Google will not combine the IP address transmitted by Google Analytics with other data held by Google.

Browser Plugin
You can prevent the setting of cookies through your web browser. However, some features of our website may be restricted as a result. You can also prevent the collection of data regarding your website usage, including your IP address, and its subsequent processing by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

Opt-Out of Data Collection
You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set, which prevents the collection of your data on future visits to our website: Disable Google Analytics.

Use of Google Web Fonts
On this website, we use Google Web Fonts to optimize the display of fonts and ensure a consistent appearance of the website. When using Google Web Fonts, your IP address and requests for fonts and CSS files may be transmitted to Google Ireland Limited.

The processing is based on our legitimate interest according to Art. 6 (1) (f) GDPR, to improve the user experience on our website.

For more information on processing by Google Web Fonts, please refer to Google’s privacy policy.

You can withdraw your consent for the use of Google Web Fonts at any time via the cookie settings.

Google Maps
This website uses the map service Google Maps via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

To use the features of Google Maps, it is necessary to store your IP address. This information is usually transmitted to a server in the USA and stored there. The provider of this website has no control over this data transfer.

The use of Google Maps is in the interest of providing an attractive presentation of our online services and making it easy to find the locations we list on the website. This constitutes a legitimate interest according to Art. 6 (1) (f) GDPR. More information on how Google handles user data can be found in Google’s privacy policy: https://www.google.de/intl/de/policies/privacy/.

Cookiefirst
We use Cookiefirst, a cookie consent management tool, on our website. The service provider is the Dutch company Digital Data Solutions B.V., Plantage Middenlaan 42a, 1018DH, Amsterdam, Netherlands.

For more information on the data processed through the use of Cookiefirst, please refer to the privacy policy available at https://cookiefirst.com/legal/general-terms-conditions/.

BootstrapCDN?
In order to deliver all our individual web pages (subpages of our website) quickly and securely on all devices, we use the Content Delivery Network (CDN) BootstrapCDN, an open-source service provided by jsdelivr.com, a Polish software company, ProspectOne, Królewska 65A/1, 30-081, Kraków, Poland. A Content Delivery Network (CDN) is a network of regionally distributed servers connected to each other over the internet. Through this network, content, especially large files, can be delivered quickly even during high traffic peaks.

Why do we use BootstrapCDN?
Of course, we want to provide you with a comprehensive and well-functioning service on our website. This also includes a fast website. With the jsdelivr.com CDN, our website can load much faster for you. The use of jsdelivr.com CDN is especially helpful for users from abroad, as the page can be delivered from a server nearby.

What data is processed by BootstrapCDN?
BootstrapCDN works by delivering JavaScript libraries to your browser. When your browser downloads a file from BootstrapCDN, your IP address is transmitted during the connection to the BootstrapCDN server. Therefore, personal data may also be sent and stored. BootstrapCDN can collect and store user data such as IP address, browser type, browser version, which website is being loaded, and the time and date of the page visit. The privacy policy of BootstrapCDN or jsdelivr.com clearly states that the company does not use cookies or other tracking services.

How long and where is the data stored?
BootstrapCDN has servers distributed in various countries, and your data may be stored outside the European Economic Area. BootstrapCDN retains personal data processed on our behalf for as long as necessary to provide the services offered, as required to fulfill legal obligations, resolve disputes, and enforce agreements.

Right to Object
You always have the right to access, correct, and delete your personal data. If you have any questions, you can also contact the responsible party at BootstrapCDN at any time.

If you wish to prevent this data transfer, you can install a JavaScript blocker (see, for example, https://noscript.net/) or disable the execution of JavaScript code in your browser. However, please note that this may prevent the website from providing the usual services (such as fast loading speed).

Legal Basis
If you have consented to the use of BootstrapCDN, the legal basis for the corresponding data processing is that consent. According to Art. 6(1)(a) GDPR (Consent), this consent forms the legal basis for processing personal data, as may occur when collecting data through BootstrapCDN.

Additionally, we have a legitimate interest in using BootstrapCDN to optimize and secure our online service. The corresponding legal basis for this is Art. 6(1)(f) GDPR (Legitimate Interests). However, we only use BootstrapCDN to the extent that you have provided your consent.

We would like to point out that, according to the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. The data processing is essentially carried out by BootstrapCDN. This may result in data not being anonymized during processing and storage. Furthermore, U.S. government authorities may have access to certain data. It may also occur that this data is linked to data from other services of BootstrapCDN where you have a user account.

Font Awesome?
We use Font Awesome from the American company Fonticons (307 S. Main St., Suite 202, Bentonville, AR 72712, USA) on our website. When you visit one of our web pages, the Font Awesome web font (specifically icons) is loaded via the Font Awesome Content Delivery Network (CDN). This ensures that the texts and icons are displayed appropriately on any device. This privacy policy section explains in more detail the data storage and data processing carried out by this service.

Icons play an increasingly important role on websites. Font Awesome is a web font specifically designed for web designers and developers. With Font Awesome, icons can be scaled and colored as desired using the CSS stylesheet language. This replaces older image-based icons. Font Awesome CDN is the easiest way to load icons or fonts onto your website. We only needed to embed a small line of code in our website for this.

Why do we use Font Awesome on our website?
Font Awesome helps us present content on our website in a better way. It makes it easier for you to navigate the site and grasp the content. With icons, we can sometimes replace entire words and save space. This is particularly useful when optimizing content for smartphones. These icons are embedded as HTML code, not as images. As a result, we can style the icons with CSS in any way we want. At the same time, Font Awesome improves our page load speed because the icons are just HTML elements, not image files. All of these benefits help us make the website more organized, fresh, and faster for you.

What data is stored by Font Awesome?
To load icons and symbols, the Font Awesome Content Delivery Network (CDN) is used. CDNs are networks of servers distributed worldwide, allowing for fast file delivery from nearby locations. Thus, as soon as you visit one of our pages, the corresponding icons from Font Awesome are provided.

For the web fonts to be loaded, your browser needs to establish a connection to Fonticons, Inc.'s servers. In doing so, your IP address is recognized. Font Awesome also collects data on which icon files are downloaded and when. Additionally, technical data such as your browser version, screen resolution, or the time the page was accessed is transmitted.

The reasons for collecting and storing this data include:

Optimizing content delivery networks
Identifying and fixing technical issues
Protecting CDNs from misuse and attacks
Charging Font Awesome Pro customers
Understanding the popularity of icons
Knowing what computer and software you use

If your browser does not allow web fonts, a default font from your PC will be used automatically. As of now, our understanding is that no cookies are set. We are in contact with Font Awesome’s data protection department and will inform you as soon as we learn more.

How long and where is the data stored?
Font Awesome stores data about the use of the Content Delivery Network on servers, including in the United States of America. However, CDN servers are located worldwide and store user data based on your location. In identifiable form, the data is generally stored for only a few weeks. Aggregated statistics on CDN usage may be stored for longer periods. However, personal data is not included.

How can I delete my data or prevent data storage?
As far as we know, Font Awesome does not store personal data through the Content Delivery Networks. If you do not want data to be stored regarding the icons you use, you unfortunately cannot visit our website. If your browser does not allow web fonts, no data will be transmitted or stored. In this case, the default font of your computer will be used instead.

Google Tag Manager
We use the Google Tag Manager, a service provided by Google. "Google" refers to a group of companies, including Google Ireland Ltd. (provider of this service), Gordon House, Barrow Street, Dublin 4, Ireland, as well as Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and other affiliated companies of Google LLC.

We have signed a data processing agreement with Google. The Google Tag Manager itself processes personal data only when technically necessary. Its main function is to facilitate the loading of other components that can collect data. However, the Google Tag Manager has no access to this data.

We would like to point out that U.S. authorities, such as intelligence agencies, may have access to personal data transmitted to Google under U.S. law (e.g., the Cloud Act).

Order processing
In order to fully comply with the legal data protection requirements, we have concluded an order processing contract with Google.

Our website uses the "demographic characteristics" function from Google Analytics. This allows reports to be created that contain statements about the age, gender and interests of site visitors. This data comes from interest-based advertising from Google and from visitor data from third-party providers. An assignment of the data to a specific person is not possible. You can deactivate this function at any time. This is possible via the ad settings in your Google account or by generally prohibiting the collection of your data by Google Analytics, as explained in the point "Objection to data collection".

Use of the Online Booking Tool DIRS21 by TourOnline AG
Our online presence uses the DIRS21 online booking tool (OBT) from TourOnline AG (TOAG) to enable online bookings for accommodation services and other travel services, as well as to process inquiries. TOAG is located at Borsigstrasse 26, 73249 Wernau, Germany, and can be reached at info@dirs21.

In the context of the OBT, TOAG processes data as the data controller. The additional data protection information and terms apply, and you can view them in TOAG's privacy policy for the DIRS21 online booking tool, which can be accessed at any time from within the online booking tool or at https://www.dirs21.de/datenschutz/.

If you wish to book a room/holiday apartment with us, it is necessary to provide your personal data for the completion of the contract. Mandatory information required for processing the booking will be clearly marked, and additional information is optional. The data is entered into a form and transmitted to us for storage.

Video surveillance
Information on the rights of those affected
The data subject has the right to request confirmation from the person responsible as to whether personal data relating to them are being processed; if this is the case, she has a right to information about this personal data and to the information listed in Art. 15 DSGVO.

The data subject has the right to request the person responsible to immediately correct incorrect personal data concerning them and, if necessary, to complete incomplete personal data (Article 16 GDPR).

The data subject has the right to demand that the person responsible delete personal data relating to them immediately if one of the reasons listed in Article 17 GDPR applies, e.g. B. if the data is no longer required for the purposes pursued (right to erasure).

The data subject has the right to demand that the person responsible restrict the processing if one of the conditions listed in Art. 18 GDPR is met, e.g. B. if the data subject has lodged an objection to the processing, for the duration of the examination by the person responsible.

The data subject has the right, for reasons arising from their particular situation, to object at any time to the processing of personal data relating to them. The person responsible then no longer processes the personal data unless he can demonstrate compelling legitimate grounds for the processing which outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims (Art 21 GDPR).

Without prejudice to any other administrative or judicial remedy, each data subject has the right to lodge a complaint with a supervisory authority if the data subject believes that the processing of personal data concerning them violates the GDPR (Art. 77 GDPR). The data subject can assert this right with a supervisory authority in the member state of their place of residence, their place of work or the place of the alleged infringement.

Job offers
We offer job advertisements on our website.
You can send us application documents via email. As part of this, we process the information that we receive from you as well
a) email address
b) Possibly further information, which is transmitted via the e-mail

Your data will initially only be processed to carry out the application process. If your application is successful, the data will be part of the personnel file and can be used to carry out and terminate the employment relationship. If we are currently unable to offer you employment, we will process your data in order to defend ourselves against any legal claims, in particular due to alleged discrimination in the application process. If you receive cost reimbursements, the corresponding accounting documents will be processed to fulfill the commercial and tax storage obligations. The legal basis for data processing is therefore Article 6 Paragraph 1 Letter b) GDPR, insofar as the data processing serves to decide on the establishment of an employment relationship and insofar as the data is then included in the employment relationship. If the storage serves to secure claims, the legal basis is Article 6 (1) (f) GDPR. The legitimate interest here is the receipt of documentary evidence for possible defence. We process information and documents that are not required for the aforementioned purposes on the basis of your implied consent in accordance with Article 6 Paragraph 1 Letter a) GDPR, which you have given us by sending it. Insofar as you receive cost reimbursements from us, the legal basis is Article 6 (1) (c) GDPR.

When subscribing to our company's newsletter, the data entered in the respective input mask will be transmitted to the data controller responsible for processing. The subscription to our newsletter takes place via a so-called double opt-in process. This means that after signing up, you will receive an email asking you to confirm your subscription. This confirmation is necessary to prevent unauthorized subscriptions using someone else's email address. During the subscription process, the user's IP address as well as the date and time of registration will be stored. This is done to prevent misuse of the services or the email address of the person concerned. The data will not be shared with third parties, unless there is a legal obligation to do so. The data will be used exclusively for sending the newsletter. The newsletter subscription can be canceled by the person concerned at any time. The consent to store personal data can also be revoked at any time. A corresponding link can be found in every newsletter. The legal basis for processing the data after the user subscribes to the newsletter is, where applicable, the user's consent according to Art. 6 para. 1 lit. a) GDPR. The legal basis for sending the newsletter as part of the sale of goods or services is § 7 para. 3 UWG.

Description and Purpose: We use rapidmail for sending newsletters. The provider is rapidmail GmbH, Wentzingerstraße 21, 79106 Freiburg, Germany. With rapidmail, the newsletter sending and analysis are organized. The data you entered for the purpose of receiving the newsletter is stored on the servers of rapidmail in Germany. If you do not want any analysis by rapidmail, you must unsubscribe from the newsletter. We provide a corresponding link in each newsletter message for this purpose. For analysis purposes, emails sent with rapidmail contain a so-called tracking pixel, which connects to rapidmail's servers when the email is opened. This allows us to determine whether a newsletter message has been opened. Furthermore, with the help of rapidmail, we can determine which links in the newsletter message are clicked. Optionally, links in the email can be set as tracking links, which count your clicks.

Legal Basis: The legal basis for data processing is Art. 6 para. 1 lit. a) GDPR.

Duration: The data stored by us for the purpose of the newsletter as part of your consent will be stored until you unsubscribe from the newsletter, and will be deleted from both our servers and rapidmail's servers after unsubscribing. Data stored for other purposes (e.g., email addresses for the member area) remain unaffected by this.

Right to Withdraw: You have the right to withdraw your consent to data processing with effect for the future at any time. The legality of data processing carried out before the withdrawal remains unaffected.

privacy police

GENERAL NOTICE AND MANDATORY INFORMATION