We are pleased that you are visiting our homepage and thank you for your interest in our company. Dealing with our customers and interested parties is a matter of trust. We attach great importance to the trust you place in us and are therefore committed to handling your data with care and protecting it from misuse.
To ensure that you feel safe and comfortable when visiting our website, we take the protection of your personal data and its confidential treatment very seriously. Therefore, we act in accordance with the applicable legislation on the protection of personal data and data security.
With these notes on data protection, we would therefore like to inform you about when we store which data and how we use it - naturally in compliance with the applicable German legislation. The data protection at the Hotel Halm Konstanz takes into account the European data protection level and is specifically based on the current Federal Data Protection Act (BDSG). When using the Internet, we are guided by the Telemedia Act (TMG) of the Federal Republic of Germany to protect your personal data.
Collection and processing of personal data
In principle, you can visit our websites without telling us who you are. Our web servers automatically store information of a general nature. This includes the type of web browser, the operating system used, the domain name of your Internet service provider, the website from which you visit us, the web pages you visit on our site and the date and duration of your visit. This is exclusively information that does not allow any conclusions to be drawn about your person. We evaluate this data only for statistical purposes and only in anonymous form.
This website uses Google Analytics and Google Remarketing. These are services provided by Google Inc. ("Google"). Google uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookies about your use of this website (including your IP address) will be transmitted to and stored by Google on servers in the United States. The IP address is then shortened by Google by the last three digits, a clear assignment of the IP address is therefore no longer possible. Google complies with the data protection provisions of the "US Safe Harbor" agreement and is registered with the "Safe Harbor" program of the US Department of Commerce.
Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. Third-party providers, including Google, place ads on websites on the Internet. Third-party vendors, including Google, use stored cookies to serve ads based on a user's previous visits to this website. Google will not associate your IP address with any other data held by Google.
However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above. You may object to the collection and storage of data at any time with effect for the future. Further information on Google's terms and conditions can be found here. You can object to the storage of cookies: In your browser, you can set that a storage of cookies is only accepted if you agree to this. As a rule, you will be shown in the menu bar of your web browser via the help function how to reject new cookies and how to deactivate those already received. Flash cookies, which are used by browser add-ons, can be turned off or deleted by changing the settings of the browser add-on or via the manufacturer's website of the browser add-on. We recommend that for shared computers that are set to accept cookies and Flash cookies, you always log out completely when finished.
We would like to point out that you use this Facebook page and its functions on your own responsibility. This applies in particular to the use of the interactive
functions (e.g. commenting, sharing, rating).
When you visit our Facebook page, Facebook collects, among other things, your IP address and other information that is present on your PC in the form of cookies. This
information is used to provide us, as the operator of the Facebook pages, with statistical information about the use of the Facebook page. Facebook provides more detailed information on this at the following link: http://de-de.facebook.com/help/pages/insights.
The data collected about you in this context is processed by Facebook Ltd. and may be transferred to countries outside the European Union.
transferred. Facebook describes in general terms what information it receives and how it is used in its data usage guidelines. There you will also find information on how to contact Facebook and on the settings options for advertisements. The data usage guidelines are available at the following link: http://de-de.facebook.com/about/privacy.
Facebook's complete data policies can be found here: https://de-de.facebook.com/full_data_use_policy
In what way Facebook uses data from visits to Facebook pages for its own purposes, to what extent activities on the Facebook page are assigned to individual users, how long Facebook stores this data and whether data from a visit to the Facebook page is passed on to third parties, is not conclusively and clearly stated by Facebook and is not known to us. When you access a Facebook page, the IP address assigned to your terminal device is transmitted to Facebook. According to Facebook, this IP address is anonymized (for "German" IP addresses) and deleted after 90 days. Facebook also stores information about the end devices of its users (e.g. as part of the "login notification" function); if necessary, this enables Facebook to assign IP addresses to individual users. If you are currently logged in to Facebook as a user, a cookie with your Facebook ID is located on your end device. This enables Facebook to track that you have visited this page and how you have used it. This also applies to all other Facebook pages. Via Facebook buttons embedded in websites, it is possible for Facebook to record your visits to these website pages and assign them to your Facebook profile. Based on this data, content or advertising can be offered tailored to you. If you want to avoid this, you should log out of Facebook or deactivate the "stay logged in" function, delete the cookies present on your device and exit and restart your browser. In this way, Facebook information through which you can be directly identified will be deleted. This will allow you to use our Facebook page without revealing your Facebook identifier. When you access interactive features of the page (Like,
Comment, Share, News, etc.), a Facebook login screen will appear. After any login, you will again be recognizable to Facebook as a specific user. For information on how to manage or delete information about you, please visit the following Facebook support pages: https://de-de.facebook.com/about/privacy#
Furthermore, Facebook provides fan page operators with a tool that can be used to retrieve statistical information about the usage of their pages. You can find more information about this HERE.
You can find further information on the safe use of social networks at https://www.bsi-fuer-buerger.de/BSIFB/DE/DigitaleGesellschaft/SozialeNetze/sozialeNetze_node.html.
Use and disclosure of collected data
We use the personal data provided by you exclusively for the purposes communicated or agreed, i.e. generally for processing the contract concluded with you or for answering your inquiry. If you make use of services, we generally only collect the data that we need to provide the services. If we ask you for further data, this is voluntary information. Personal data is processed exclusively to fulfill the requested service and to protect our own legitimate business interests.
Is personal data passed on to third parties?
Your data will only be processed and used for the purposes of consulting, advertising and market research with your express consent. Your data will not be sold, rented or otherwise made available to third parties. Personal data will only be transferred to state institutions and authorities within the framework of mandatory national legal provisions.
In some areas of our pages, so-called cookies are used. A cookie is a small text file that is stored on your hard drive by a website. Cookies do not cause any damage to your computer and do not contain viruses. The cookies on our website do not collect any personal data. We use the information contained in cookies to make it easier for you to use our pages and to tailor them to your needs. Of course, you can also view our website without cookies. If you do not want cookies to be stored on your computer, you can deactivate the corresponding option in the system settings of your browser. You can delete stored cookies in the system settings of your browser at any time. If you do not accept cookies, however, this may lead to functional restrictions of our offers.
Use of Google Maps
Additional information for table reservation
Server log files
The table reservation automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
browser type and browser version
Operating system used
Host name of the accessing computer
Time of the server request
This data is not merged with other data sources. The collection of this data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website - for this purpose, the server log files must be collected.
Data protection when using partner portals
Our website may use technology from our partner companies Expedia Inc. and meetago GmbH to efficiently process your requests/bookings.
By using this website, you consent to the collection, processing and use of automatically collected data and data entered by you by our partner companies, one of its representatives, or third-party providers. Our partner companies ensure that the processing and use of your data for the purpose of consulting, advertising and market research will only take place with your express consent. Your data will not be sold, rented or otherwise made available to third parties. You can object to the use of your data at any time to our partner companies.
Details on the meeting portal tagungshotel.com can be found in the imprint of meetago GmbH.
Hotel Halm Konstanz uses technical and organizational security measures in accordance with § 9 BDSG to protect the data we have under our control against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. Our security measures are continuously improved in line with technological developments. Hotel Halm Konstanz stores data relevant to data protection exclusively on secure systems in Germany. Access to this data is only possible for a few authorized persons and persons who are obligated to special data protection and who are involved in the technical, administrative or editorial care of data.
Protection of minors
Children and adolescents with limited legal capacity are generally not allowed to transmit personal data to our websites without the consent of their parents or guardians. Hotel Halm Konstanz will never knowingly collect personal data from children or young people with limited legal capacity or use it in any way or disclose it to third parties without permission.
Declaration of consent of the user
Purpose of data collection, processing and use
Operation of hotels and related businesses, as well as all related businesses
Operation of a customer service center for the purpose of taking and making reservations
Operation of passenger transportation services, respectively the operation of a car rental company.
Secondary purposes are accompanying or supporting functions in personnel, intermediary, supplier and service provider management
Video surveillance is conducted at hotel locations solely for the purpose of collecting evidence in the event of vandalism, burglary, robbery or other crimes. The presence and use of video cameras is indicated by appropriate warning notices. Digitalized recordings of booking conversations for documentation, evidence and training purposes, will only be made with the express permission of the interlocutor.
The storage and processing of personal data for our own purposes, as well as on behalf of individual companies in accordance with existing service agreements within the company group.
The collection, processing and use of data is carried out for the purposes listed above.
Description of the data subjects and the related data/data categories
Essentially, personal data is collected, processed and used for the following groups of persons:
- Guest data (esp. address data, reservation data, guest requests, billing data, contact data)
- Customer data (esp. address data, contract data, billing and service data, contact data)
- Interested party data (esp. interest in accommodation, interest in room and hall rental, address data, contact data)
- Employee data, applicant data, data of pension providers (esp. personnel and salary data)
- Agent/broker/agency data (esp. address, billing and performance data)
- Business partners, external service providers (esp. address, billing and performance data)
- Data on suppliers (esp. address, billing, performance and functional data)
- Non-assignable group of persons: Video recordings insofar as these are necessary for the fulfillment of the purposes mentioned under point 5.
Categories of recipients to whom data may be disclosed
Hotels, guesthouses and other lodging establishments may collect personal data of their guests and store it in automated procedures, insofar as this is necessary within the framework of the lodging contract. This usually includes billing data on food and beverages, telephone calls made from the room and/or other hotel-specific services. Hotels and lodging establishments are required by registration laws to request information about the place of residence, date of birth and nationality of their guests and their family members.
Furthermore, data can be communicated to the following recipients:
Public bodies that receive data on the basis of statutory regulations (e.g. social insurance institutions).
Internal offices involved in the execution and fulfillment of the respective business processes (e.g. personnel administration/control, accounting, marketing, sales, IT organization and the central reservation service (Customer Service Center)
External contractors (service companies) in accordance with Section 11 BDSG
Other external bodies (e.g. credit institutions, brokerage agencies within the scope of intermediary activities, companies belonging to a group of companies, insofar as the persons concerned have declared their written consent or a transfer is permissible for predominant legitimate interest), as well as partner companies within the scope of the commissioned activity issued by the customer
Standard periods for the deletion of data
The legislator has enacted a wide range of retention obligations and periods. After these periods have expired, the corresponding data and data records are routinely deleted if they are no longer required for the fulfillment of contracts (guest, rental and service contracts). For example, commercial or financial data from a completed fiscal year is deleted in accordance with legal requirements after a further ten years, unless longer retention periods are prescribed or required for legitimate reasons. In the area of personnel administration and personnel management, shorter deletion periods are used in specific areas. This applies in particular to rejected applications or warnings. If data is not affected by this, it is deleted without being requested if the purposes mentioned under point 5 cease to apply.
Registration forms are kept in accordance with the valid registration law in the individual hotel and accommodation businesses in accordance with the minimum period prescribed by law and are then destroyed under special precautionary measures in accordance with data protection.
Planned data transfer to third countries
Data transfers to third countries only occur in the context of contract fulfillment, necessary communication, and other exceptions expressly provided for in the German Federal Data Protection Act (BDSG).
Data transfer to other third countries, especially those whose level of data protection is considered low or to countries outside the EU, does not currently take place; such a transfer is also not planned.
Ensuring the security of data processing
Hotel Halm Konstanz uses technical and organizational security measures in accordance with Section 9 of the German Federal Data Protection Act (BDSG) to protect the data it manages against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. The security measures used are continuously improved in line with technological developments. This means that Hotel Halm Konstanz stores your data relevant to data protection exclusively on secure systems in Germany. Access to this data is only possible for a few authorized persons who are responsible for technical, administrative or editorial support and who are obliged to provide special data protection.
Name of the responsible entity:
Parkhotel Halm Constance
Responsible for data processing
Director Parkhotel Halm Konstanz GmbH
Address of the responsible party
Parkhotel Halm Constance GmbH
Phone : +49 7531 121-0
Fax : +49 7531 21803
E-Mail : email@example.com
Internet : http://www.hotel-halm.de
Name and address of the data protection officer
Parkhotel Halm Constance GmbH
Phone : +49 7531 121-0
E-Mail : firstname.lastname@example.org
Information on data protection according to EU-DSGVO
Our company regularly checks your creditworthiness when concluding contracts and, in certain cases where there is a legitimate interest, also for existing customers. For this purpose, we cooperate with Creditreform Boniversum GmbH, Hellersbergstraße 11, 41460 Neuss, from which we receive the data required for this purpose. On behalf of Creditreform Boniversum we inform you in advance about the following information according to Art. 14 EU-DSGVO:
Creditreform Boniversum GmbH is a consumer credit agency. It operates a database in which creditworthiness information about private individuals is stored. On this basis, Creditreform Boniversum issues credit reports to its customers. Clients include, for example, credit institutions, leasing companies, insurance companies, telecommunications companies, receivables management companies, mail order, wholesale and retail companies, and other companies that supply goods or services. Within the framework of the legal provisions, part of the data available in the information database is also used to supply other company databases, including for use for address trading purposes.
In the Creditreform Boniversum database, information is stored in particular on the name, address, date of birth, e-mail address (if applicable), payment history and shareholdings of individuals. The purpose of processing the stored data is to provide information about the creditworthiness of the requested person. The legal basis for the processing is Art. 6 para. 1f EU-DSGVO. Accordingly, information about this data may only be provided if a customer credibly demonstrates a legitimate interest in knowing this information. If data is transferred to countries outside the EU, this is done on the basis of the so-called "standard contractual clauses", which you can find under the following link:
or have them sent to you from there.
The data is stored for as long as its knowledge is necessary for the fulfillment of the purpose of the storage. As a rule, knowledge is necessary for an initial storage period of three years. After expiration, it is checked whether storage is still necessary, otherwise the data is deleted to the exact day. If a case is settled, the data is deleted on a daily basis three years after settlement. Pursuant to Section 882e of the German Code of Civil Procedure (ZPO), entries in the debtors' register are deleted on a daily basis after three years have elapsed since the date of the entry order. Legitimate interests within the meaning of Art. 6 (1f) EU-DSGVO may be: credit decision, business initiation, investment relationships, claim, credit assessment, insurance contract, enforcement information.
You have a right to information from Creditreform Boniversum GmbH about the data stored there about you. If the data stored about you is incorrect, you have the right to have it corrected or deleted. If it cannot be determined immediately whether the data is incorrect or correct, you have a right to block the respective data until clarification. If your data is incomplete, you may request that it be completed. If you have given your consent to the processing of the data stored by Creditreform Boniversum, you have the right to revoke this consent at any time. Through the Page 2 of 2 | Status April 2018 | © 2018 Boniversum
revocation will not affect the lawfulness of the processing of your data carried out on the basis of your consent up to any revocation. If you have any objections, requests or complaints regarding data protection, you can contact Creditreform Boniversum's data protection officer at any time. He or she will help you quickly and confidentially with all data protection issues. You can also complain about the processing of data by Boniversum to the state data protection officer responsible for your state. The data that Creditreform Boniversum has stored about you comes from publicly available sources, from debt collection companies and from their customers. In order to describe your creditworthiness, Creditreform Boniversum calculates a score value for your data. The score value includes data on age and gender, address data and, in some cases, payment experience data. These data are included in the score calculation with different weighting. Creditreform Boniversum clients use the score values as an aid in making their own credit decisions.
Right of objection:
The processing of data stored by Creditreform Boniversum GmbH is carried out for compelling reasons worthy of protection of creditors and credit protection, which regularly outweigh your interests, rights and freedoms, or serves the assertion, exercise or defense of legal claims. You can only object to the processing of your data for reasons that arise from a special situation you have and that must be proven. If such special reasons can be proven, the data will no longer be processed. If you object to the processing of your data for advertising and marketing purposes, the data will no longer be processed for these purposes. The responsible party within the meaning of Art. 4 No. 7 EU-DSGVO is Creditreform Boniversum GmbH, Hellersbergstr. 11, 41460 Neuss, Germany. Your contact person in our company is the Consumer Service, Tel.: 02131 36845560, Fax: 02131 36845570, E-Mail: email@example.com.
You can reach the responsible data protection officer under the following contact details: Creditreform Boniversum GmbH, Data Protection Officer, Hellersbergstr. 11, 41460 Neuss, e-mail: firstname.lastname@example.org.
© Hotel Halm Konstanz, Constance