We use cookies to make our website as user-friendly as possible. These are cookies that are absolutely necessary for navigating the website and for using its functions. If you continue you agree with using those services. (Data protection)
Privacy Policy
Our data protection officer
Sven Lenz
Deutsche Datenschutzkanzlei
Bahnhofstr. 50
D-87437 Kempten
A. General
For better comprehensibility, a gender-specific differentiation is waived in our privacy policy. In terms of equal treatment, corresponding terms apply to both sexes.
What the terms used such. For example, "personal data" or "processing" means that Article 4 of the EU General Data Protection Regulation (GDPR) can be found.
The personal data of the users processed in the context of this online offer includes stock data (eg name and addresses of customers), contract data (eg services used, names of clerks, payment information), usage data (eg visited websites of our online offer , Interest in our products) and content data (eg entries in the contact form).
"User" here includes all categories of persons affected by the data processing. These include, for example, our business partners, customers, interested parties and other visitors to our online offer.
B. Specific
Data protection
We ensure that we only collect, process, store and use your accumulated data in connection with the processing of your inquiries, as well as for internal purposes as well as to provide you with services or to provide content.
Grundlagen für Datenverarbeitung
We process personal data of users only in compliance with the relevant data protection regulations. This means that the data of the users are processed only when a legal permission exists, that is,
- to provide our contractual services (eg processing of orders) as well as online services, or these are required by law,
- Your consent is present as well
- based on our legitimate interests (ie interest in the analysis, optimization and economic operation and security of our online offer within the meaning of Art. 6 (1) lit. DSGVO), in particular in the range measurement, creation of profiles for advertising and marketing purposes and collection of Access data and use of third-party services).
We would like to show you where the above legal bases are regulated in the GDPR:
- Einwilligung (Art. 6 Abs. 1 lit. a. und Art 7 GDPR)
- Processing to fulfill our legal obligations (Article 6 (1) (c) GDPR)
- Processing to safeguard our legitimate interests (Article 6 (1) (f) GDPR)
Data transmission to third parties
A transfer of data to third parties is only within the scope of legal requirements. We only pass on the users' data to third parties if this is the case, for example. Required for contractual purposes or based on legitimate interests in the economic and effective operation of our business.
If we use subcontractors to provide our services, we will take appropriate legal precautions and appropriate technical and organizational measures to protect personal data in accordance with applicable law.
We would like to point out that due to the use of Google Analytics when using our online offer a data transmission takes place.
Data transmission to a third country or an international organization
Third countries are countries in which the GDPR is not directly applicable law. This basically includes all countries outside the EU or the European Economic Area.
There is a transfer of data to a third country or an international organization. It shall be taken into account that appropriate appropriate / adequate guarantees are in place and that you have enforceable rights and effective remedies.
A copy of the appropriate warranties can be obtained from the following links:
- Privacy shield: www.privacyshield.gov/list
- Standard contract clauses: http://eur-lex.europa.eu/LexUriServ/LexUriServ.do?uri=OJ:L:2010:039:0005:0018:DE:PDF
Storage period of your personal data
We adhere to the principles of data economy and data avoidance. This means that we store your data provided to us only for such a long time in order to fulfill the aforementioned purposes or as the various periods of storage provided by the legislator determine. If the respective purpose or the expiration of the respective deadlines, your data routinely and according to the legal regulations are blocked or deleted.
For this we have created an internal company concept to ensure this procedure.
- Processing for the fulfillment of our services and implementation of contractual measures (Article 6 (1) (b) GDPR)
- Processing to safeguard our legitimate interests (Article 6 (1) (f) GDPR)
We use software (PMS system) for the care of customer data as well as an online booking system (by HNS) based on our legitimate interests (efficient and fast processing of guest inquiries).
To this end, we have concluded a contract processing contract with the providers in which they commit themselves to processing the user data only in accordance with our instructions and compliance with the EU data protection standard.
We would like to point out that e-mails can be read or changed unauthorized and unnoticed on the transmission path. Furthermore, we would like to point out that we use a software for filtering unwanted e-mails (spam filters). The spam filter can reject e-mails if they have been identified as spam by certain features.
Which rights do you have?
a) Right to information
You have the right to obtain free information about your stored data. Upon request, we will inform you in writing, in accordance with the applicable law, which personal data we have stored about you. This also includes the origin and recipients of your data as well as the purpose of the data processing.
b) Right to rectification
You have the right to have your data stored by us corrected in the event of incorrectness. Here you can restrict the processing, e.g., if the accuracy of your personal data is denied.
c) Right of blocking
Furthermore, you can have your data blocked. In order to be able to take into account the blocking of your data at any time, these data must be kept in a lock file for control purposes.
d) Right of blocking
Furthermore, you can have your data blocked. In order to be able to take into account the blocking of your data at any time, these data must be kept in a lock file for control purposes.
e) Right to data transferability
You are entitled to demand the provision of the personal data transmitted to us in a format that allows the transfer to another location.
f) Right of appeal to a supervisory authority
You have the option to file a complaint with one of the privacy regulators.
Bavarian State Office for Data Protection Supervision (BayLDA)
Promenade 27, D-91522 Ansbach
Telefon: +49 981 53-1300
Telefax: +49 981 53-981300
You can open the complaint form of the Bavarian State Office for Data Protection Supervision via the following link: www.lda.bayern.de/de/beschwerde
g) Right to object
At any time you have the opportunity to revoke the use of your data for internal purposes with effect for the future. For this purpose it is sufficient to send a corresponding e-mail to datenschutz@das-seidl.de zu senden. Ein solcher Widerruf berührt allerdings nicht die Rechtmäßigkeit der bis dahin erfolgten Verarbeitungsvorgänge durch uns. Unberührt hiervon bleibt die Datenverarbeitung bzgl. aller sonstigen Rechtsgrundlagen, wie bspw. die Vertragsanbahnung (siehe oben).
Protection of your personal data
We provide state-of-the-art contractual, organizational and technical safeguards to ensure compliance with data protection laws and to protect data processed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons.
One of the security measures is the encrypted transfer of data between your browser and our server. For this purpose, a 128-bit SSL (AES 128) encryption technique is used. This includes your IP address.
Your personal data will be protected under the following points (excerpt):
a) Preservation of the confidentiality of your personal data To protect the confidentiality of your personal data stored by us, we have taken various measures for access, access and access control.
b) Safeguarding the integrity of your personal data In order to preserve the integrity of your personal data stored with us, we have taken various measures for the disclosure and input control.
c) Safeguarding the availability of your personal data In order to maintain the availability of your personal data stored by us, we have taken various measures for order and availability control.
The security measures in use will be continuously improved in line with technological developments. Despite these precautions, due to the unsafe nature of the Internet, we can not guarantee the security of your data transfer to our online offering. Because of this, any transfer of data from you to our online offering is at your own risk.
Protection of minors
Personal information may only be provided to persons under the age of 16 if we have the express consent of the legal guardian. These data are processed according to this privacy policy.
Cookies
We use cookies. Cookies are small text files that are stored locally in the cache of your Internet browser. Cookies enable recognition of the Internet browser. The files are used to help the browser to navigate through the online offer and to be able to fully use all functions.
Our online offer uses: Browser Cookies
Control of cookies by the user
Browser cookies: You can set all browsers to accept cookies only on request. Also, by setting only cookies can be accepted whose pages are currently being visited. All browsers provide functionality that allows selective deletion of cookies. Acceptance of cookies can also generally be turned off, but then be given if any restrictions on the user-friendliness of this online offer can be accepted.
Facebook plugins with 2-click solution
Our website uses so-called social plugins ("plugins") of the social network Facebook operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA ("Facebook").
In order to increase the protection of your data when visiting our website, the plugins are initially disabled via the so-called "2-click" solution integrated into the page. Deactivated plugins can be recognized by the fact that they are grayed out. This integration ensures that when you visit a page of our website that contains such plugins, no connection with the servers of Facebook is made. Only if you activate the plugins and thus according to Art. 6 (1) (a) GDPR give your consent to the data transmission, your browser establishes a direct connection to the servers of Facebook. The content of the respective plugin is transmitted directly to your browser and integrated into the page. The plugin then transmits data (including your IP address) to Facebook. We have no control over the amount of data Facebook collects using the plugins. In any case, to the best of our knowledge, Facebook receives information about which of our websites you have currently accessed and previously visited. By integrating the plugins, Facebook also receives the information that your browser has accessed the corresponding page of our website if you do not have a profile on Facebook or are currently not logged in. The information collected (including your IP address) will be transmitted from your browser directly to a Facebook server in the United States and stored there. If you interact with the plugins, the corresponding information is also transmitted directly to a Facebook server and stored there. The information will also be posted on Facebook and displayed there to your contacts.
The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as your related rights and settings options for the protection of your privacy, please refer to the privacy policy of Facebook: http://www.facebook.com/policy.php
Google+ plugins with 2-click solution
Our website uses social plugins ("plugins") from the Google+ social network operated by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google").
In order to increase the protection of your data when visiting our website, the plugins are initially disabled via the so-called "2-click" solution integrated into the page. Deactivated plugins can be recognized by the fact that they are grayed out. This integration ensures that when you visit a page of our website that contains such plugins, it is not yet connected to the servers of Google+. Only if you activate the plugins and thus according to Art. 6 (1) (a) GDPR give your consent to the data transmission, your browser establishes a direct connection to the servers of Google+. The content of the respective plugin is transmitted directly to your browser and integrated into the page. The plugin then submits data (including your IP address) to Google+. We do not control the amount of data Google+ collects using the plugins. However, to the best of our knowledge, Google+ receives information about which of our websites you have visited and currently has. By integrating the plugins, Google+ will also receive the information that your browser has accessed the corresponding page of our website if you do not have a profile on Google+ or are currently not logged in. The information collected (including your IP address) will be transmitted from your browser directly to a Google+ server in the United States and stored there. When you interact with the plugins, the information is also sent directly to a Google+ server and stored there. The information will also be published on Google+ and displayed there to your contacts.
You can revoke your consent at any time by deactivating the activated plugin by clicking again. However, the revocation does not affect the data that has already been transferred to Google+. US-based Google LLC is certified under the US Privacy Shield, which ensures compliance with the level of data protection in the EU.
For information on the purpose and scope of the data collection and the further processing and use of the data by Google as well as your rights and setting options for the protection of your privacy, please refer to the privacy policy of Google: https://www.google.com/intl/de/policies/privacy
Twitter plug-ins with 2-click solution
Our website uses so-called social plugins ("plugins") from the Twitter microblogging service operated by Twitter Inc., 1355 Market St, Suite 900, San Francisco, CA 94103, USA ("Twitter").
In order to increase the protection of your data when visiting our website, the plugins are initially disabled via the so-called "2-click" solution integrated into the page. Deactivated plugins can be recognized by the fact that they are grayed out. This integration ensures that when you visit a page of our website that contains such plugins, no connection is established with the servers of Twitter. Only if you activate the plugins and thus according to Art. 6 (1) (a) DSGVO give your consent to the data transmission, your browser establishes a direct connection to the servers of Twitter. The content of the respective plugin is transmitted directly to your browser and integrated into the page. The plugin then transmits data (including your IP address) to Twitter. We have no control over the amount of data Twitter collects using the plugins. In any case, according to our knowledge, Twitter receives information about which of our websites you have currently accessed and previously visited. By integrating the plugins, Twitter also receives the information that your browser has accessed the corresponding page of our website if you do not have a profile on Twitter or are currently not logged in. The collected information (including your IP address) will be transmitted from your browser directly to a server from Twitter to the USA and stored there. If you interact with the plugins, the corresponding information is also transmitted directly to a server of Twitter and stored there. The information will also be posted on Twitter and displayed there to your contacts.
You can revoke your consent at any time by deactivating the activated plugin by clicking again. However, the revocation has no influence on the data that has already been transmitted to Twitter. Based in the US, Twitter Inc. is certified to the US Privacy Shield, which ensures compliance with the level of data protection in the EU.
The purpose and scope of the data collection and the further processing and use of the data by Twitter as well as your related rights and settings options for the protection of your privacy, please refer to the privacy policy of Twitter: https://twitter.com/privacy
Trademark
Every company or trademark mentioned here is the property of the respective company. The naming of brands and names is for purely informative purposes.
C. Russia-specific provisions
For users based in the Russian Federation:
The above services of our online offer are not intended for citizens of the Russian Federation who are resident in Russia.
If you are a Russian-based Russian citizen, you are hereby expressly informed that any personal information you provide to us through this online offering is your sole responsibility and risk. You further agree that you will not hold us responsible for any failure to comply with the laws of the Russian Federation.
This Privacy Policy (Version: DSGVO 1.0 dated 18.05.2018) was created by:
Deutsche Datenschutzkanzlei Datenschutz-Office München - www.deutsche-datenschutzkanzlei.de