Data protection

Villa Bleichröder

Privacy policy Villa Bleichröder

In order to be able to offer you the services of Villa Bleichröder, we naturally also need some data about you. We take the protection of personal data very seriously and always process it in accordance with the applicable data protection regulations, in particular the EU General Data Protection Regulation. With this privacy policy, we would like to inform you about the type, scope and purpose of the personal data we process and your rights as a data subject.

Responsible person and general information

Your data will be processed by Hotel Bleichröder GmbH, c/o GLS Sprachenzentrum, Kastanienallee 82, 10435 Berlin, e-mail: info@villa-bleichroeder.de within the meaning of the General Data Protection Regulation (GDPR). In this document, “Villa Bleichröder” refers to the website www.villa-bleichroeder.de, including all subpages, content and functions (e.g. booking function) available there. Our services are intended for the general public.

Collection and processing of personal data

As a rule, you can use online services for which no payment or registration is required without providing personal data. In certain cases, however, we process the personal data listed in section 3. This only happens to the extent necessary to provide a functional website and our content and services. Furthermore, we process personal data in connection with the use of Villa Bleichröder if you provide it voluntarily, e.g. as part of an inquiry or when booking a hotel room, or because there is another legal basis for this (see section 4.). If you do not wish to do so, you will unfortunately not be able to make full use of our services.

Categories of processed data

As soon as you use Villa Bleichröder, our system automatically collects information from the computer system of the calling computer. The following data may be collected in the process:

Information about the browser type and version used
Operating system of the user
Date and time of access
Web analysis data / pseudonymous user profiles (cookie ID, ad ID etc.)
Websites from which the user accesses our website
Websites that the user accesses via our website

In addition, we process the following personal data if there is a contractual relationship between you and us or if you have transmitted the data to us in some other way:

Personal master data (name, address, date of birth)
Communication data (telephone number, e-mail address)
Contract master data (contractual relationship, product or contract interest, order history)

Legal basis and purposes of processing

We process your data exclusively on the basis of one or more of the possible legal bases.

According to the GDPR, personal data may be processed in particular on the basis of a contract or for the implementation of pre-contractual measures, if consent has been given, on the basis of a legitimate interest or a law and for the protection of vital or public interests.

When booking accommodation or when purchasing other paid services, we use your contract master data, including contact data, for the execution and fulfillment of the contract, as is the case, for example, with processing operations that are necessary for the delivery of goods or the provision of other services or consideration, as well as the enforcement of legal claims or receivables (Art. 6 para. 1 lit. b GDPR). The same applies to such processing operations that are necessary for the implementation of pre-contractual measures, for example in cases of inquiries about our products or services. In the case of paid services, we process certain data because we are subject to a legal obligation that requires the processing of personal data, such as for the fulfillment of tax obligations (Art. 6 para. 1 lit. c GDPR).

We also use your e-mail address collected in the course of registration or in the course of contract execution to inform you by e-mail about our own similar goods or services as well as about existing bookings or generally about the Hotel Oderberger. In this case, the e-mail address is processed on the basis of our legitimate interest in advertising our goods and services (Art. 6 para. 1 lit. f GDPR).

In addition, we use your e-mail address to send you our newsletter if you have given us your prior express consent to receive a newsletter or advertising. In this case, we process your e-mail address in order to be able to send you the newsletter as requested (Art. 6 para. 1 lit. b GDPR). You can object to the use of your e-mail address for such purposes at any time in writing or in text form to info@villa-bleichroeder.de or Kastanienallee 82, 10435 Berlin, with effect for the future, without incurring any costs other than the transmission costs according to the basic tariffs.

On the Internet, every device requires a unique address, the so-called IP address, to transmit data. The at least temporary storage of the IP address is technically necessary to enable the website to be delivered to the user’s computer. We shorten the IP addresses before any processing and only process them further in anonymized form. There is no storage or further processing of the unabridged IP addresses. Our servers also store your IP address for 14 days for our own security purposes.

In the case of processing operations that are not covered by one or more of the aforementioned legal bases, processing is carried out if it is necessary to safeguard a legitimate interest and does not outweigh your interests, fundamental rights and freedoms on the basis of a comprehensive weighing of interests (Art. 6 para. 1 lit. f GDPR). A legitimate interest can be assumed if the data subject is a customer of the controller. If the processing of personal data is based on this, our legitimate interest is in particular the performance of our business activities for the benefit of the well-being of all our employees and our shareholders.

Our legitimate interest in being able to offer you products that are tailored to your needs, to inform you about new products and to continuously improve our services and thereby also increase our sales is the legal basis for processing for usage-based online advertising and web analysis. For web analysis services in detail, see section 9.

Another legitimate interest is the functionality of company processes (e.g. address management / accounting).

You can object to processing on the basis of a legitimate interest at any time (see section 14.).

In the event that the data is processed for a purpose other than that stated when the data was collected, a compatibility check is carried out in accordance with Art. 6 (4) GDPR. Further processing is then only permitted if the original purpose is compatible with the new purpose or is permitted on the basis of a separate legal basis. Recognized compatible purposes include the assertion, exercise or defense of civil law claims, provided there is no overriding interest of the data subject. In this case, we will inform you of the change of purpose. If the new purpose is not compatible with the purpose stated at the time of collection, a new collection will be carried out on the basis of a new legal basis. We will also inform you of the change of purpose in this case.

Place of processing

We ourselves do not transfer your personal data to countries outside the European Economic Area, except in cases where this is permitted under the GDPR.

Disclosure of your data to third parties

We only transfer your personal data to third parties if the transfer is necessary in order to fulfill our contractual obligations to you and this is evidently done with or together with another provider, if we are otherwise legally entitled or obliged to pass it on, or if you have given us your consent to do so.

In order to provide our services, selected personal data may be shared with certain departments within our company or with external service providers. These include reservations, accounting and marketing. If you have decided to book accommodation, we will forward your data to the relevant department for hotel and apartment accommodation.

External service providers or affiliated companies that are commissioned by us to process data for us in accordance with instructions are contractually bound by us as processors in accordance with the strict requirements of the GDPR and may not use your data for any other purposes. The processors we use provide us with the following services in particular Reservation services, registration services, hosting, newsletter dispatch, evaluation services, maintenance and support and web analysis.

The transfer of data to processors takes place on the basis of Art. 28 para. 1 GDPR, alternatively on the basis of our legitimate interest in the economic and technical advantages associated with the use of specialized processors, Art. 6 para. 1 lit. f GDPR.

If we are legally obliged to do so or if this is permitted under data protection law, we transmit personal data to authorities, for example the police or public prosecutor’s office (Art.6 Abs. 1 lit. c GDPR). This data is passed on on the basis of our legitimate interest in combating misuse, prosecuting criminal offenses and securing, asserting and enforcing claims and that your rights and interests in the protection of your personal data do not outweigh this, Art. 6 para. 1 lit. a GDPR. 1 lit. f GDPR

In certain cases, we also use external service providers and their auxiliary persons or affiliated companies that offer cloud-based software and data processing solutions for the hotel and are commissioned by us to evaluate and process data for us in accordance with our instructions. Such service providers are contractually bound by us as processors in accordance with the strict requirements of the GDPR and may not use your data for any other purposes. The processors we use provide us with the following services in particular Registration services, hosting, newsletter dispatch, evaluation services, maintenance and support and web analysis.

Cookies and similar technologies

We use cookies. Cookies are small files that your browser stores on your device in a directory provided for this purpose. Among other things, they can be used to determine whether you have visited a website before. If you agree, login data for an online service can also be stored in cookies so that you do not have to enter this login data every time you visit the site. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier for the cookie. It consists of a string of characters that can be used to assign websites and servers to the specific Internet browser in which the cookie was stored. This enables the websites and servers visited to distinguish the individual browser of the data subject from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified via the unique cookie ID.

We use two types of cookies. On the one hand, technically necessary cookies, without which the functionality of our website would be limited, and optional cookies to make our website more user-friendly. The user data collected by technically necessary cookies is not used to create user profiles. Analysis cookies are used for the purpose of improving the quality of our website and its content. Through the analysis cookies, we learn how the website is used and can thus constantly optimize our offer. Further information on the individual analysis services can be found in section 9 of this privacy policy. We also use a so-called tracking cookie if you access our website via a link from a partner. This is done in order to fulfill our contractual relationship with the partner.

You can prevent the setting of cookies by us at any time by means of a corresponding setting of the Internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common Internet browsers. If you deactivate the setting of cookies in the Internet browser you are using, you may not be able to use all the functions of our website to their full extent.

Cookies cannot identify you as a person. In any case, the use of cookies is justified on the basis of our legitimate interest in a needs-based design and the statistical evaluation of Hotel Oderberger (Art. 6 para. 1 lit. f GDPR).

Web analysis services

In order to constantly improve our content and adapt it to the interests of our users and to display usage-based online advertising, we use some analysis services that collect data on our website and evaluate it for us. These service providers process pseudonymized user data for this purpose in accordance with our instructions on the basis of an order processing agreement. The data is not stored together with other personal user data. You can deactivate the individual analysis services at any time for the future. You can find out more about the analysis services we use below:

Google AdWords

We have integrated Google AdWords on this website. Google AdWords is an internet advertising service that allows advertisers to place ads both in Google’s search engine results and in the Google advertising network. Google AdWords allows an advertiser to specify certain keywords in advance, which are used to display an ad in Google’s search engine results only when the user uses the search engine to retrieve a keyword-relevant search result. In the Google advertising network, the ads are distributed to relevant websites using an automatic algorithm and taking into account the previously defined keywords. The operating company of the Google AdWords services is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. The purpose of Google AdWords is to advertise our website by displaying interest-relevant advertising on the websites of third-party companies and in the search engine results of the Google search engine and by displaying third-party advertising on our website. If a data subject reaches our website via a Google ad, a so-called conversion cookie is stored on the data subject’s IT system by Google. What cookies are has already been explained above. A conversion cookie loses its validity after thirty days and is not used to identify the data subject. If the cookie has not yet expired, the conversion cookie is used to track whether certain sub-pages, such as the shopping cart from an online store system, have been accessed on our website. The conversion cookie enables both us and Google to track whether a data subject who has reached our website via an AdWords ad has generated sales, i.e. completed or canceled a purchase.

The data and information collected through the use of the conversion cookie is used by Google to compile visit statistics for our website. These visit statistics are in turn used by us to determine the total number of users who were referred to us via AdWords ads, i.e. to determine the success or failure of the respective AdWords ad and to optimize our AdWords ads for the future. Neither our company nor other Google AdWords advertisers receive information from Google that could be used to identify the data subject.

The conversion cookie is used to store personal information, such as the websites visited by the data subject. Each time our websites are visited, personal data, including the IP address of the Internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may share this personal data collected through the technical process with third parties.
The data subject can prevent the setting of cookies by our website, as described above, at any time by means of a corresponding setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from placing a conversion cookie on the data subject’s IT system. In addition, a cookie already set by Google AdWords can be deleted at any time via the Internet browser or other software programs.

Furthermore, the data subject has the option of objecting to interest-based advertising by Google. To do this, the data subject must call up the link https://www.google.de/settings/ads from each of the Internet browsers they use and make the desired settings there. Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.de/intl/de/policies/privacy/.

GoogleAnalytics

We have integrated Google Analytics (with anonymization function). Google Analytics is a web analysis service. Web analysis is the collection, gathering and evaluation of data about the behavior of visitors to websites. Among other things, a web analysis service collects data on which website a data subject came to a website from (so-called referrers), which subpages of the website were accessed or how often and for how long a subpage was viewed. Web analysis is mainly used to optimize a website and for the cost-benefit analysis of Internet advertising. The operating company of the Google Analytics component is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. We use the addition “_gat._anonymizeIp” for web analysis via Google Analytics. This addition is used by Google to shorten and anonymize the IP address of the data subject’s Internet connection if our websites are accessed from a member state of the European Union or from another state party to the Agreement on the European Economic Area. The purpose of the Google Analytics component is to analyze the flow of visitors to our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us that show the activities on our websites, and to provide other services related to the use of our website. Google Analytics places a cookie on the data subject’s IT system. What cookies are has already been explained above. By setting the cookie, Google is enabled to analyze the use of our website. Each time one of the individual pages of this website is accessed, which is operated by us and on which a Google Analytics component has been integrated, the Internet browser on the information technology system of the data subject is automatically prompted by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. During the course of this technical procedure, Google gains knowledge of personal information, such as the IP address of the data subject, which serves Google, inter alia, to understand the origin of visitors and clicks, and subsequently create commission settlements. The cookie is used to store personal information, such as the access time, the location from which access was made and the frequency of visits to our website by the data subject. Each time our websites are visited, this personal data, including the IP address of the Internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may share this personal data collected through the technical process with third parties. The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such a setting of the Internet browser used would also prevent Google from placing a cookie on the data subject’s IT system. In addition, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programs. Furthermore, the data subject has the option of objecting to and preventing the collection of data generated by Google Analytics relating to the use of this website and the processing of this data by Google. To do this, the data subject must install a browser add-on under the link Download and install http://tools.google.com/dlpage/gaoptout?hl=de. This browser add-on informs Google Analytics via JavaScript that no data and information on website visits may be transmitted to Google Analytics. The installation of the browser add-on is considered an objection by Google. If the data subject’s IT system is deleted, formatted or reinstalled at a later date, the data subject must reinstall the browser add-on in order to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by the data subject or another person who is attributable to their sphere of control, it is possible to reinstall or reactivate the browser add-on. Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.de/intl/de/policies/privacy/ and under http://www.google.com/analytics/terms/de.html. Google Analytics is explained in more detail at this link https://www.google.com/intl/de_de/analytics/.

Social networks

You can also find us on the social networks of other companies, such as Facebook or Instagram. We have also integrated individual functions of these networks into our online services. However, you can only use both if you are registered and logged in to the respective social network. Please note that the terms of use and data protection conditions of the respective company apply to the use of the respective social network, over which we have no influence. However, we will be happy to explain to you how such networks process your personal data in this context:

Facebook

We have integrated components of the company Facebook on this website. Facebook is a social network and is used to share opinions, experiences and media. The operating company of Facebook is Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA. If a data subject lives outside the USA or Canada, the controller for the processing of personal data is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. With each call-up to one of the individual pages of this website, which is operated by us and on which a Facebook component (Facebook plug-in) was integrated, the Internet browser on the information technology system of the data subject is automatically prompted to download a display of the corresponding Facebook component from Facebook through the Facebook component. A complete overview of all Facebook plug-ins can be found at https://developers.facebook.com/docs/plugins/?locale=de_DE. As part of this technical process, Facebook receives information about which specific subpage of our website is visited by the person concerned. If the data subject is logged in to Facebook at the same time, Facebook recognizes which specific subpage of our website the data subject is visiting each time the data subject visits our website and for the entire duration of the respective stay on our website. This information is collected by the Facebook component and assigned by Facebook to the respective Facebook account of the data subject. If the data subject clicks on one of the Facebook buttons integrated on our website, for example the “Like” button, or if the data subject makes a comment, Facebook assigns this information to the personal Facebook user account of the data subject and stores this personal data. Facebook always receives information via the Facebook component that the data subject has visited our website if the data subject is logged in to Facebook at the same time as accessing our website; this takes place regardless of whether the data subject clicks on the Facebook component or not. If the data subject does not want this information to be transmitted to Facebook, they can prevent the transmission by logging out of their Facebook account before accessing our website. The data policy published by Facebook, which is available at https://de-de.facebook.com/about/privacy/, provides information about the collection, processing and use of personal data by Facebook. It also explains what settings options Facebook offers to protect the privacy of the data subject. Various applications are also available that make it possible to suppress data transmission to Facebook. Such applications can be used by the data subject to suppress data transmission to Facebook.

On smartphones and tablets, the aforementioned services are often not implemented by plug-ins, but by an internal “share” function on the device. Information can also be passed on to other social media service providers in accordance with their settings. Please refer to your device information for details.

Instagram

We use components of the Instagram service. Instagram is an audiovisual platform that allows users to share photos and videos and redistribute such content on other social networks. Instagram is operated by Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA. Each time one of the individual pages of this website is accessed on which an Instagram component (Insta button) has been integrated, Instagram receives information about which specific subpage of our website is visited by the person concerned. If you are logged in to Instagram at the same time, Instagram recognizes which specific subpage was visited each time you visit our website and for the entire duration of your stay on our website. This information is collected by the Instagram component and assigned to your Instagram account by Instagram. If you click on one of the Instagram buttons integrated on our website, the data and information transmitted with it will be assigned to your personal Instagram user account and stored and processed by Instagram. Instagram always receives information via the Instagram component that you have visited our website if you are logged in to Instagram at the same time as accessing our website; this takes place regardless of whether you click on the Instagram component or not. If you do not want this information to be transmitted to Instagram, you can prevent it from being transmitted by logging out of your Instagram account before accessing our website. Further information and the applicable data protection provisions of Instagram may be retrieved under https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/.

Payment service provider

In the event that you use a paid service or purchase something via our website / app, we offer various payment methods. If you decide to use one of these payment service providers, you will leave our site. All data will then be collected and processed by this payment service provider. We do not receive any personal data, in particular no bank or credit card details, but only the information that the payment has been successfully made. The following payment service providers are available to you:

PayPal

We have integrated the payment option PayPal on this website. PayPal is an online payment service provider of PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg. Payments are processed via so-called PayPal accounts, which are virtual private or business accounts. PayPal also offers the option of processing virtual payments via credit cards if a user does not have a PayPal accountPayPal makes it possible to initiate online payments to third parties or to receive payments. If the data subject selects “PayPal” as the payment option during the ordering process in our online store, the data of the data subject is automatically transmitted to PayPal. By selecting this payment option, the data subject consents to the transfer of personal data required for payment processing. The personal data transmitted to PayPal is usually first name, last name, address, email address, IP address, telephone number, cell phone number or other data required for payment processing. Personal data relating to the respective order is also required to process the service contract. The purpose of transmitting the data is to process payments and prevent fraud. We will transmit personal data to PayPal in particular if there is a legitimate interest in the transmission. The personal data exchanged between PayPal and the customer may be transmitted by PayPal to credit agencies. The purpose of this transfer is to check identity and creditworthiness. PayPal may pass on personal data to affiliated companies and service providers or subcontractors if this is necessary to fulfill contractual obligations or if the data is to be processed on our behalf. The data subject has the option of withdrawing consent to the handling of personal data from PayPal at any time. A revocation does not affect personal data that must be processed, used or transmitted for (contractual) payment processing.
The applicable data protection provisions of PayPal may be retrieved under https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Instant bank transfer

We have integrated Sofortüberweisung components on this website. Sofortüberweisung is a payment service that enables cashless payment for products and services on the Internet. Sofortüberweisung is a technical procedure through which the online merchant immediately receives a payment confirmation. This enables a merchant to deliver goods, services or downloads to the customer immediately after the order has been placed. The operating company of Sofortüberweisung is SOFORT GmbH, Fußbergstraße 1, 82131 Gauting, Germany. If the data subject selects “Sofortüberweisung” as the payment option during the ordering process in our online store, the data of the data subject is automatically transmitted to Sofortüberweisung. By selecting this payment option, the data subject consents to the transfer of personal data required for payment processing. In the case of purchase processing via Sofortüberweisung, the buyer transmits the PIN and TAN to Sofort GmbH. Sofortüberweisung then carries out a transfer to the online merchant after a technical check of the account balance and retrieval of further data to check the account coverage. The online merchant is then automatically notified that the financial transaction has been carried out. The personal data exchanged with Sofortüberweisung is first name, surname, address, email address, IP address, telephone number, cell phone number or other data required for payment processing. The purpose of transmitting the data is to process payments and prevent fraud. We will also transmit other personal data to Sofortüberweisung if there is a legitimate interest in the transmission. The personal data exchanged between Sofortüberweisung and us may be transmitted by Sofortüberweisung to credit agencies. The purpose of this transfer is to check identity and creditworthiness. Sofortüberweisung may pass on the personal data to affiliated companies and service providers or subcontractors if this is necessary to fulfill the contractual obligations or if the data is to be processed on behalf of the customer. The data subject has the option of revoking their consent to the handling of personal data at any time from Sofortüberweisung. A revocation does not affect personal data that must be processed, used or transmitted for (contractual) payment processing. The applicable data protection provisions of Sofortüberweisung may be retrieved under https://www.klarna.com/sofort/datenschutz/.

Other services

Other services that we use are

Google Maps

We use Google Maps to display maps. The integration requires that Google can detect the IP address of the user. The IP address is required to be able to send the content to the user’s browser. We would like to point out that Google has its own data protection guidelines that are independent of ours. Please read Google’s privacy policy at www.google.de/intl/de/policies/privacy/ before using our website. Google Maps is based on Java Script code, so you can prevent it from running altogether by deactivating Java Script in your browser settings or installing a Java Script blocker. Please note that our website may then not be displayed correctly.

Newsletter2go

We use the Newsletter2go service, a technical service provider that sends the newsletter for us. Newsletter2go uses the so-called double opt-in procedure to ensure that the newsletter is sent by mutual agreement. This involves the potential recipient being added to a mailing list. The user then receives a confirmation e-mail to confirm the registration in a legally secure manner. The address is only actively added to the mailing list if confirmation is given. Newsletter2go uses this data exclusively for sending the requested information and offers.

Newsletter2Go is used as the newsletter software. Your data will be transmitted to Newsletter2Go GmbH. Newsletter2Go is prohibited from selling your data and using it for purposes other than sending newsletters. Newsletter2Go is a German, certified provider that has been selected in accordance with the requirements of the General Data Protection Regulation and the Federal Data Protection Act.

You can find more information here: https://www.newsletter2go.de/informationen-newsletter-empfaenger/

You can revoke your consent to the storage of the data, the e-mail address and its use for sending the newsletter at any time, for example via the “Unsubscribe” link in the newsletter.

Mews

We use the Mews online booking system on our website. Your data will be transmitted to Mews. Mews is prohibited from selling your data and using it for purposes other than the booking process. Your data is transmitted via an encrypted SSL connection.

Dialog Shift Chat Bot

Our website uses the chat application of DialogShift GmbH, Rheinsberger Str. 76/77, 10115 Berlin. This application processes and stores data for the purpose of web analysis, operating the chat application and responding to inquiries. To operate the chat function, the chat texts are saved and a cookie with a unique ID is set – this is used to recognize you as a customer. A cookie is a small text file that is stored locally in the cache on your device. With the help of this cookie, our application recognizes the device and can call up past chat logs. This cookie is stored for 90 days since it was last used. You can deactivate the storage of cookies in your browser settings. However, the chat function cannot be executed without the use of cookies. The possible disclosure of e.g. name, e-mail address or a telephone number is voluntary and with the consent to temporarily use and store this data for the purpose of establishing contact until the end of the contact. This personal data will be deleted after 90 days. The legal basis for data processing is Art. 6 para. 1 lit. F GDPR based on our legitimate interest in effective customer support, for statistical analysis of user behaviour and for optimization purposes of our offers. DialogShift offers further information on the collection and use of data as well as your rights and options for protecting your privacy at https://www.dialogshift.com/datenschutz.

Storage duration

We only store personal data for as long as we are authorized to do so and the purpose of processing has not ceased to apply. The respective statutory retention period applies to the duration of the storage of personal data. After this period has expired, the corresponding data is routinely deleted, provided that it is no longer required for contract fulfillment or contract initiation.

Contact details and your rights as a data subject

If you have any questions about data protection, please contact our data protection officer:

Mr. Dieter Klapproth
Mail address: d.klapproth@ains-a.de

Information and correction

You can obtain information from us at any time and free of charge as to whether personal data relating to you is being processed by us and also specifically which data about you is being stored, as well as requesting a copy of the stored data. You can also have incorrect data corrected and completed.

Erasure, restriction and the right to be forgotten

You can request the deletion and restriction of your personal data. Please note that there are legal obligations to retain data, e.g. for paid contracts such as course bookings, and that we are therefore not always permitted to delete your data completely. In this case, your data will be marked with the aim of restricting its future processing.

Data portability

Where applicable, you also have the right to have the personal data concerning you transmitted to you or to another controller in a structured, commonly used and machine-readable format, provided that the processing is based on consent or on a contract and is carried out by automated means. However, this does not apply if the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller. You also have the right to have the personal data transmitted directly from one controller to another, where technically feasible and provided that this does not adversely affect the rights and freedoms of others.

Revocation / Objection

You can revoke your consent at any time with effect for the future at the above-mentioned contact address.
In particular, you can object to the use of your e-mail address for the purpose of sending newsletters at any time in writing or in text form to newsletter@hotel-oderberger.de or Hotel Oderberger c/o GLS Sprachenzentrum, Kastanienallee 82, 10435 Berlin with effect for the future, without incurring any costs other than the transmission costs according to the basic tariffs. You also have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on a legitimate interest or a public interest. This also applies to profiling based on these provisions. In the event of an objection, we will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defense of legal claims.

Right of appeal

You also have the right to lodge a complaint with the competent supervisory authority and to seek legal remedies. The supervisory authority to which the complaint has been submitted will inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy.

Existence of automated decision-making

We do not use automated decision-making or profiling.