Privacy policy

Hotel Oderberger Berlin

Continue here

Privacy Policy for Villa Bleichröder

To provide you with the services of Villa Bleichröder, we naturally need some information about you. We take the protection of personal data very seriously and process such data in accordance with applicable data protection regulations, particularly the EU General Data Protection Regulation (GDPR). This privacy policy aims to inform you about the nature, scope, and purpose of the personal data we process and your rights as a data subject.

Controller and General Information
Your data is processed by Hotel Bleichröder GmbH, c/o GLS Sprachenzentrum, Kastanienallee 82, 10435 Berlin, Email: info@villa-bleichroeder.de, in accordance with the General Data Protection Regulation (GDPR). In this document, “Villa Bleichröder” refers to the website www.villa-bleichroeder.de, including all its available subpages, content, and features (e.g., booking functionality). Our services are intended for the general public.

Collection and Processing of Personal Data
Generally, you can use online services that do not require payment or registration without providing personal data. However, in certain cases, we process the personal data listed in Section 3. This is done only to the extent necessary to

provide a functional website as well as our content and services. Additionally, we process personal data in connection with your use of Villa Bleichröder when you voluntarily provide it, for example, in the context of an inquiry or when booking a hotel room, or when another legal basis applies (see Section 4). If you do not wish to provide this information, unfortunately, you may not be able to fully use our services.

Categories of Processed Data
When you use Villa Bleichröder, our system automatically collects information from the computer system of the accessing device. The following data may be collected:

– Information about the browser type and version used
– The user’s operating system
– Date and time of access
– Web analytics data / pseudonymous usage profiles (Cookie ID, Ad ID, etc.)
– Websites from which the user arrives at our website
– Websites accessed by the user through our website

Additionally, we process the following personal data if a contractual relationship exists between you and us, or if you have otherwise transmitted the data to us:

– Personal identification data (name, address, date of birth)
– Communication data (telephone number, email address)
– Contractual data (contractual relationship, product or contract interest, order history)

Legal Basis and Purposes of Processing

We process your data solely on the basis of one or more possible legal grounds.

According to the GDPR, personal data may be processed based on a contract or to carry out pre-contractual measures, with consent, due to a legitimate interest, under a legal obligation, or to protect vital or public interests.

When you book accommodations or use other paid services, we use your contract data, including contact details, to execute and fulfill the contract. This is the case, for example, with processing operations necessary for the delivery of goods or the provision of services or for enforcing legal claims (Art. 6(1)(b) GDPR). The same applies to processing operations required for pre-contractual measures, such as inquiries about our products or services. For paid services, we process certain data because we are legally obligated to do so, such as to fulfill tax obligations (Art. 6(1)(c) GDPR).

We also use the email address collected during registration or in the course of contract execution to inform you via email about our own similar goods or services, as well as about existing bookings or general information regarding Hotel Oderberger. In this case, the processing of the email address is based on our legitimate interest in promoting our goods and services (Art. 6(1)(f) GDPR).

Furthermore, we use your email address to send you our newsletter if you have given us your prior explicit consent to receive a newsletter or advertising. In this case, we process your email address to send you the newsletter as requested (Art. 6(1)(a) GDPR). You can object to the use of your email address for such purposes at any time in writing or in text form to info@villa-bleichroeder.de or Kastanienallee 82, 10435 Berlin, with effect for the future, without incurring any costs other than the transmission costs according to the base rates.

On the internet, every device requires a unique address to transmit data, known as the IP address. The temporary storage of the IP address is technically necessary to deliver the website to the user’s computer. We shorten IP addresses before any processing and only continue to process them in an anonymized form. The unshortened IP addresses are neither stored nor further processed. Our servers also store your IP address for 14 days for security purposes.

For processing operations that are not covered by any or multiple of the aforementioned legal grounds, processing is carried out if it is necessary to protect a legitimate interest and if, following a comprehensive balancing of interests, your interests, fundamental rights, and freedoms do not override (Art. 6(1)(f) GDPR). A legitimate interest is assumed if the data subject is a customer of the controller. When the processing of personal data is based on this, our legitimate interest is, in particular, the operation of our business for the benefit of all our employees and shareholders.

Our legitimate interest in offering you products tailored to your needs, informing you about new products, and continuously improving our services, thereby increasing our revenue, is the legal basis for processing data for usage-based online advertising and web analytics. For specific web analytics services, see Section 9.

Another legitimate interest is the functionality of business operations (e.g., address management/invoicing).

You can object to processing based on legitimate interests at any time (see Section 14).

In the event that data is processed for a purpose other than the one stated at the time of data collection, a compatibility check is conducted according to Art. 6(4) GDPR. Further processing is only permissible if the original purpose is compatible with the new purpose or is allowed based on a separate legal ground. Recognized compatible purposes include asserting, exercising, or defending civil claims, provided there is no overriding interest of the data subject. In this case, we will inform you of the change in purpose. If the new purpose is not compatible with the purpose specified at the time of collection, a new collection based on a new legal ground will occur. We will also inform you of the change in purpose in this case.

Location of Processing
We do not transfer your personal data to countries outside the European Economic Area, except in cases where it is permitted under the GDPR.

Sharing Your Data with Third Parties
We only transmit your personal data to third parties when necessary to fulfill our contractual obligations to you, and when it is evident that this is done with or alongside another provider. Additionally, we may share your data if we are legally authorized or obliged to do so, or if you have provided your consent.

To provide our services, selected personal data may be shared within our company with specific departments or with external service providers. This includes departments such as reservations, accounting, and marketing. If you choose to book accommodation, we forward your data to the relevant department responsible for hotel and apartment stays.

External service providers or affiliated companies that we commission to process data on our behalf are contractually obligated as data processors according to the strict requirements of the GDPR and are not permitted to use your data for any other purpose. The data processors we employ provide services such as reservation services, registration services, hosting, newsletter distribution, review services, maintenance and support, and web analytics.

The transmission of data to data processors is based on Article 28(1) GDPR, alternatively on our legitimate interest in the economic and technical advantages associated with the use of specialized data processors (Art. 6(1)(f) GDPR).

If we are legally required to do so or if data protection law permits, we transfer personal data to authorities such as the police or public prosecutors (Art. 6(1)(c) GDPR). The sharing of this data is based on our legitimate interest in combating abuse, pursuing criminal offenses, securing, asserting, and enforcing claims, while ensuring that your rights and interests in protecting your personal data do not override these interests (Art. 6(1)(f) GDPR).

In certain cases, we also use external service providers and their assistants or affiliated companies that offer cloud-based software and data processing solutions for the hotel and are commissioned by us to analyze and process data according to our instructions. These service providers are contractually obligated as data processors according to the strict requirements of the GDPR and are not permitted to use your data for any other purpose. The data processors we employ provide services such as registration services, hosting, newsletter distribution, review services, maintenance and support, and web analytics.

Cookies and Similar Technologies
We use cookies. Cookies are small files that your browser stores on your device in a designated directory. They can, for instance, determine whether you have visited a website before. If you agree, login data for an online service can be stored in cookies, so you do not have to enter this data each time you visit the site. Many cookies contain a unique identifier known as a cookie ID. A cookie ID is a unique identifier of the cookie, consisting of a string of characters through which websites and servers can recognize the specific browser where the cookie was stored. This allows visited websites and servers to distinguish the individual browser of the data subject from other internet browsers that contain different cookies. A specific internet browser can be recognized and identified through its unique cookie ID.

We use two types of cookies. First, technically necessary cookies, without which the functionality of our website would be limited, and second, optional cookies to make our website more user-friendly. The data collected through technically necessary cookies is not used to create user profiles. The use of analysis cookies aims to improve the quality of our website and its content. Through analysis cookies, we learn how the website is used and can continuously optimize our offering. For more information about specific analysis services, see Section 9 of this privacy notice. Additionally, we use a tracking cookie when you arrive at our website via a partner’s link. This is done to fulfill our contractual relationships with the partner.

You can prevent the setting of cookies at any time through the appropriate settings in your internet browser, thus permanently objecting to the setting of cookies. Additionally, already set cookies can be deleted at any time via an internet browser or other software programs. This is possible in all common internet browsers. If you deactivate the setting of cookies in your internet browser, not all functions of our website may be fully usable.

Cookies cannot identify you as a person. In any case, the use of cookies is justified based on our legitimate interest in designing our services to meet your needs and statistically evaluating Hotel Oderberger (Art. 6(1)(f) GDPR).

Web Analytics Services
To continually improve our content, tailor it to the interests of our users, and display usage-based online advertising, we employ several analytics services that collect and analyze data on our website. These service providers process pseudonymized user data under our instructions based on a data processing agreement. The data is not stored together with other personal data of the users. You can disable each analytics service for the future at any time. Below, you can find details about the analytics services we use:

Google AdWords
We have integrated Google AdWords on this website. Google AdWords is an online advertising service that allows advertisers to place ads in Google’s search engine results and the Google advertising network. Google AdWords enables an advertiser to predefine specific keywords so that an ad appears in Google’s search engine results only when the user retrieves a keyword-relevant search result. In the Google advertising network, the ads are distributed to topic-relevant websites using an automated algorithm, considering the predefined keywords. The service provider for Google AdWords is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. The purpose of Google AdWords is to promote our website by displaying relevant advertisements on third-party websites and in Google’s search engine results, and to display third-party advertisements on our website. If a person reaches our website via a Google ad, a so-called conversion cookie is placed on the person’s IT system by Google. The purpose of cookies has already been explained above. A conversion cookie expires after thirty days and is not used to identify the person. If the cookie has not yet expired, it tracks whether specific subpages, such as the shopping cart in an online store system, have been accessed on our website. Through the conversion cookie, both we and Google can track whether a person who reached our website via an AdWords ad generated revenue, i.e., completed or canceled a purchase.

The data and information collected through the use of the conversion cookie are used by Google to create visit statistics for our website. We then use these visit statistics to determine the total number of users who were referred to us via AdWords ads, to assess the success or failure of each AdWords ad, and to optimize our AdWords ads for the future. Neither our company nor other Google AdWords advertisers receive information from Google that could identify the person.

Personal information, such as the websites visited by the person, is stored via the conversion cookie. Each time our websites are visited, personal data, including the IP address of the internet connection used by the person, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass this personal data collected through the technical process to third parties. The person concerned can prevent the setting of cookies by our website, as already described above, at any time by adjusting the settings of the internet browser used and thereby permanently objecting to the setting of cookies. Such a setting in the internet browser used would also prevent Google from setting a conversion cookie on the person’s IT system. Additionally, a cookie set by Google AdWords can be deleted at any time via the internet browser or other software programs.

The person concerned also has the option of objecting to interest-based advertising by Google. To do so, the person must access the link https://www.google.de/settings/ads from each of the internet browsers they use and adjust the desired settings there. Further information and the applicable Google privacy policy can be accessed at https://www.google.de/intl/de/policies/privacy/.

Google Analytics
We have integrated Google Analytics (with anonymization function). Google Analytics is a web analytics service. Web analytics is the collection, gathering, and analysis of data on the behavior of visitors to websites. A web analytics service collects data on, among other things, from which website a person has come to a website (the so-called referrer), which subpages were accessed, or how often and for what duration a subpage was viewed. Web analytics is primarily used to optimize a website and to conduct a cost-benefit analysis of internet advertising. The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. For web analytics through Google Analytics, we use the “_gat._anonymizeIp” extension. By means of this extension, the IP address of the internet connection of the person concerned is shortened and anonymized by Google when accessing our websites from a member state of the European Union or another contracting state of the Agreement on the European Economic Area. The purpose of the Google Analytics component is to analyze visitor flows on our website. Google uses the collected data and information to evaluate the use of our website, to compile online reports on activities on our website, and to provide further services related to the use of our website. Google Analytics sets a cookie on the IT system of the person concerned. The purpose of cookies has already been explained above. By setting the cookie, Google is enabled to analyze the use of our website. Each time one of the individual pages of this website, which is operated by us and on which a Google Analytics component has been integrated, is accessed, the internet browser on the IT system of the person concerned is automatically prompted by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical process, Google gains knowledge of personal data, such as the IP address of the person concerned, which, among other things, helps Google understand the origin of visitors and clicks, and subsequently enables commission settlements. The cookie stores personal information, such as the access time, the location from which the access originated, and the frequency of visits to our website by the person concerned. Each time our websites are visited, this personal data, including the IP address of the internet connection used by the person concerned, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass this personal data collected through the technical process to third parties. The person concerned can prevent the setting of cookies by our website, as already described above, at any time by adjusting the settings of the internet browser used and thereby permanently objecting to the setting of cookies. Such a setting in the internet browser used would also prevent Google from setting a cookie on the IT system of the person concerned. Additionally, a cookie set by Google Analytics can be deleted at any time via the internet browser or other software programs. Furthermore, the person concerned has the option to object to and prevent the collection of data generated by Google Analytics related to the use of this website and the processing of this data by Google. To do so, the person concerned must download and install a browser add-on from the link http://tools.google.com/dlpage/gaoptout?hl=de. This browser add-on informs Google Analytics via JavaScript that no data and information about visits to websites may be transmitted to Google Analytics. The installation of the browser add-on is considered by Google as an objection. If the IT system of the person concerned is later deleted, formatted, or reinstalled, the person concerned must reinstall the browser add-on to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by the person concerned or another person attributable to their sphere of influence, it is possible to reinstall or reactivate the browser add-on. Further information and Google’s applicable privacy policy can be accessed at https://www.google.de/intl/de/policies/privacy/ and at http://www.google.com/analytics/terms/de.html. Google Analytics is further explained at this link: https://www.google.com/intl/de_de/analytics/.

Social Networks

You can also find us on social networks operated by other companies, such as Facebook or Instagram. Additionally, we have integrated certain features of these networks into our online services. However, you can only use both if you are registered and logged in to the respective social network. Please note that the terms of use and privacy policies of the respective social network apply to your use of that network, over which we have no control. However, we are happy to explain how such networks process your personal data in this context:

Facebook

We have integrated components of the company Facebook on this website. Facebook is a social network used for sharing opinions, experiences, and media. The operator of Facebook is Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If a person lives outside the USA or Canada, the entity responsible for processing personal data is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Each time a page of our website that contains a Facebook component (Facebook plugin) is accessed, the internet browser on the user’s IT system is automatically prompted by the respective Facebook component to download a display of the corresponding Facebook component from Facebook. A complete overview of all Facebook plugins can be found at https://developers.facebook.com/docs/plugins/?locale=de_DE. Through this technical process, Facebook becomes aware of which specific subpage of our website is being visited by the user. If the user is simultaneously logged into Facebook, Facebook recognizes which specific subpage of our website the user is visiting each time our website is accessed and for the entire duration of the visit. This information is collected by the Facebook component and assigned to the user’s Facebook account. If the user clicks one of the Facebook buttons integrated into our website, such as the “Like” button, or leaves a comment, Facebook assigns this information to the user’s personal Facebook account and stores this personal data. Facebook receives information via the Facebook component that the user has visited our website whenever the user is logged into Facebook while accessing our website; this happens regardless of whether the Facebook component is clicked or not. If the user does not wish to allow this transmission of information to Facebook, they can prevent it by logging out of their Facebook account before visiting our website. The data policy published by Facebook, available at https://de-de.facebook.com/about/privacy/, provides information about the collection, processing, and use of personal data by Facebook. It also explains the privacy settings Facebook offers to protect the user’s privacy. In addition, various applications are available that allow users to suppress data transmission to Facebook. Such applications can be used by the user to prevent data transmission to Facebook.

On smartphones and tablets, the aforementioned services are often not implemented through plugins but through an internal “share” function of the device. Depending on its settings, information may also be shared with other social media service providers. Please refer to your device information for more details.

Instagram

We use components of the Instagram service. Instagram is an audiovisual platform that allows users to share photos and videos and distribute such content in other social networks. The operator of Instagram is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA. Each time a page of our website that contains an Instagram component (Insta-button) is accessed, Instagram becomes aware of which specific subpage of our website is being visited. If you are simultaneously logged into Instagram, Instagram recognizes which specific subpage of our website you are visiting each time you access our website and for the entire duration of the visit. This information is collected by the Instagram component and assigned to your Instagram account. If you click one of the Instagram buttons integrated into our website, the data and information transmitted will be assigned to your personal Instagram account and stored and processed by Instagram. Instagram receives information via the Instagram component that you have visited our website whenever you are logged into Instagram while accessing our website; this happens regardless of whether you click the Instagram component or not. If you do not wish to allow this transmission of information to Instagram, you can prevent it by logging out of your Instagram account before visiting our website. Further information and Instagram’s applicable privacy policy can be accessed at https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/.

On smartphones and tablets, the aforementioned services are often not implemented through plugins but through an internal “share” function of the device. Depending on its settings, information may also be shared with other social media service providers. Please refer to your device information for more details.

 

Payment Service Providers

If you choose to use a paid service or purchase something through our website/app, we offer various payment methods. Should you decide to use one of these payment service providers, you will be leaving our site. All data will then be collected and processed by the respective payment service provider. We do not receive any personal data in this process, especially not bank or credit card details, only the information that the payment has been successfully completed. The following payment service providers are available to you:

PayPal

We have integrated the PayPal payment option on this website. PayPal is an online payment service provider operated by PayPal (Europe) S.à r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg. Payments are processed via PayPal accounts, which are virtual private or business accounts. Additionally, PayPal offers the option to process virtual payments via credit cards if a user does not maintain a PayPal account. PayPal enables online payments to third parties and also allows users to receive payments. If the user selects “PayPal” as the payment option during the checkout process in our online shop, personal data of the user is automatically transmitted to PayPal. By choosing this payment option, the user consents to the transmission of personal data required for payment processing. The personal data transmitted to PayPal typically includes first name, last name, address, email address, IP address, phone number, mobile number, or other data necessary for payment processing. The transmission of data is intended for payment processing and fraud prevention. We will transmit personal data to PayPal particularly if there is a legitimate interest in the transmission. The personal data exchanged between PayPal and us may be transmitted by PayPal to credit reporting agencies. This transmission is intended for identity and creditworthiness checks. PayPal may disclose personal data to affiliated companies and service providers or subcontractors if this is necessary to fulfill contractual obligations or if the data is to be processed on behalf of PayPal. The user has the option to revoke their consent to the handling of personal data at any time with PayPal. However, such revocation does not affect personal data that must be processed, used, or transmitted for (contractual) payment processing. The applicable data protection regulations of PayPal can be accessed at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Immediate transfer

We have integrated Sofortüberweisung components on this website. Sofortüberweisung is a payment service that enables cashless payments for products and services on the Internet. Sofortüberweisung provides a technical process through which the online merchant immediately receives payment confirmation. This allows the merchant to deliver goods, services, or downloads to the customer right after the order is placed. The operating company of Sofortüberweisung is SOFORT GmbH, Fußbergstraße 1, 82131 Gauting, Germany. If the user selects “Sofortüberweisung” as the payment option during the checkout process in our online shop, personal data of the user is automatically transmitted to Sofortüberweisung. By choosing this payment option, the user consents to the transmission of personal data required for payment processing. When processing a purchase via Sofortüberweisung, the buyer transmits their PIN and TAN to Sofort GmbH. Sofortüberweisung then performs a technical check of the account balance and retrieves further data to verify account coverage before executing a transfer to the online merchant. The financial transaction is then automatically communicated to the online merchant. The personal data exchanged with Sofortüberweisung typically includes first name, last name, address, email address, IP address, phone number, mobile number, or other data necessary for payment processing. The transmission of data is intended for payment processing and fraud prevention. We will transmit personal data to Sofortüberweisung if there is a legitimate interest in the transmission. The personal data exchanged between Sofortüberweisung and us may be transmitted by Sofortüberweisung to credit reporting agencies. This transmission is intended for identity and creditworthiness checks. Sofortüberweisung may disclose personal data to affiliated companies and service providers or subcontractors if this is necessary to fulfill contractual obligations or if the data is to be processed on behalf of Sofortüberweisung. The user has the option to revoke their consent to the handling of personal data at any time with Sofortüberweisung. However, such revocation does not affect personal data that must be processed, used, or transmitted for (contractual) payment processing. The applicable data protection regulations of Sofortüberweisung can be accessed at https://www.klarna.com/sofort/datenschutz/.

Other Services

Additional services we use include:

Google Maps

We use Google Maps to display maps. Integration requires that Google can perceive the IP address of the user. The IP address is necessary to send the content to the user’s browser. Please note that Google has its own privacy policies that are independent of ours. Please review Google’s privacy policy at www.google.de/intl/de/policies/privacy/ before using our website. Google Maps relies on JavaScript code, so you can prevent its execution altogether by disabling JavaScript in your browser settings or by installing a JavaScript blocker. Please note that our website may not display correctly if you disable JavaScript.

Newsletter2Go

We use the service Newsletter2Go, a technical service provider that manages the sending of newsletters for us. To ensure that newsletters are sent with consent, Newsletter2Go uses the so-called double opt-in procedure. This allows the potential recipient to be included in a distribution list. The user then receives a confirmation email allowing them to legally confirm the registration. Only after confirmation is the address actively included in the distribution list. Newsletter2Go exclusively uses this data for sending the requested information and offers.

The Newsletter2Go software is used for this purpose, and your data is transmitted to Newsletter2Go GmbH. Newsletter2Go is prohibited from selling your data or using it for purposes other than sending newsletters. Newsletter2Go is a German certified provider selected according to the requirements of the General Data Protection Regulation and the Federal Data Protection Act.

Further information can be found here: https://www.newsletter2go.de/informationen-newsletter-empfaenger/

You can revoke your consent to the storage of data, the email address, and its use for sending the newsletter at any time, for example, via the “Unsubscribe” link in the newsletter.

Mews

We use the online booking system Mews on our website. Your data will be transmitted to Mews. Mews is prohibited from selling your data or using it for purposes other than the booking process. Your data is transmitted over an encrypted SSL connection.

Dialog Shift Chat Bot

Our website uses the chat application of DialogShift GmbH, Rheinsberger Str. 76/77, 10115 Berlin. This application processes and stores data for the purpose of web analysis, operating the chat application, and responding to inquiries. To operate the chat function, chat texts are stored, and a cookie with a unique ID is set to recognize you as a customer. A cookie is a small text file stored locally in your device’s cache. This cookie enables our application to recognize the device and retrieve past chat logs. This cookie is stored for 90 days since the last use. You can disable the storage of cookies in your browser settings. However, without the use of cookies, the chat function may not be executed. Providing information such as name, email address, or phone number is voluntary and with the consent to temporarily use and store this data for the purpose of contacting you until the contact is completed. This personal data will be deleted after 90 days. The legal basis for data processing is Article 6 (1) lit. F GDPR based on our legitimate interest in effective customer service, statistical analysis of user behavior, and optimizing our offerings. DialogShift provides further information on data collection and use, as well as your rights and options to protect your privacy at https://www.dialogshift.com/datenschutz.

Data Retention

We store personal data only as long as we are legally permitted to do so, and the purpose of processing has not been fulfilled. The duration of storage of personal data is governed by the respective statutory retention period. After the period expires, the corresponding data is routinely deleted, provided it is no longer required for contract fulfillment or initiation.

Contact Details and Your Rights as a Data Subject

If you have any questions about data protection, please contact our data protection officer:

Mr. Dieter Klapproth

Email address: d.klapproth@ains-a.de

Access and Rectification

You can request information from us at any time, free of charge, on whether personal data concerning you is being processed by us and specifically what data is stored about you, as well as request a copy of the stored data. You can also have incorrect data corrected and completed.

Deletion, Restriction, and the Right to be Forgotten

You can request the deletion and restriction of your personal data. Please note that there are legal retention obligations for paid contracts, such as course bookings, and we may not be able to delete your data in every case. In such a case, your data will be marked with the aim of restricting its future processing.

Data Portability

If applicable, you also have the right to have the personal data concerning you provided in a structured, commonly used, and machine-readable format, and to have it transmitted to you or another controller, provided that the processing is based on consent or a contract and is carried out by automated means. However, this does not apply if the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller. Furthermore, you have the right to have the personal data transmitted directly from one controller to another, where technically feasible and provided that this does not adversely affect the rights and freedoms of others.

Revocation / Objection

You may revoke your given consents at any time with effect for the future at the contact address provided above. In particular, you may object in writing or in text form to the use of your email address for the purpose of newsletter distribution at any time by contacting newsletter@hotel-oderberger.de or Hotel Oderberger c/o GLS Sprachenzentrum, Kastanienallee 82, 10435 Berlin, with effect for the future, without incurring any costs other than the transmission costs according to basic rates. Furthermore, you have the right to object at any time to the processing of personal data concerning you, which is based on a legitimate or public interest, for reasons arising from your particular situation. This also applies to profiling based on these provisions. In the event of an objection, we will no longer process the personal data, unless we can demonstrate compelling legitimate reasons for the processing that override the interests, rights, and freedoms of the data subject, or the processing is necessary for the establishment, exercise, or defense of legal claims.

Right to Lodge a Complaint

You also have the right to lodge a complaint with the competent supervisory authority and to seek legal remedies. The supervisory authority where the complaint was submitted will inform the complainant about the status and outcome of the complaint, including the possibility of judicial remedies.

Existence of Automated Decision-Making

We do not engage in automated decision-making or profiling.