Select your language

Privacy policy

Responsible party pursuant to data protection laws, in particular the EU General Data Protection Regulation (GDPR), is Stadthotel Kachelofen UG (haftungsbeschränkt), Marktplatz 13 86381 Krumbach, Deutschland, managing director Herbert Haas, telephone: +49 8282 61578, email: This email address is being protected from spambots. You need JavaScript enabled to view it.

 

Your rights as the data subject

You can exercise the following rights at any time using the contact details of our data protection officer:

  • Information on your data stored by us and the processing thereof (Art. 15 GDPR),
  • Rectification of inaccurate personal data (Art. 16 GDPR),
  • Deletion of your data stored by us (Art. 17 GDPR),
  • Restriction of the data processing, provided that we may not delete your data due to legal obligations (Art. 18 GDPR),
  • Objection to the processing of your data with us (Art. 21 GDPR) and
  • Data portability, provide that you have consented to the data processing or have entered into a contract with us (Art. 20 GDPR).

If you have given us consent, you may withdraw it at any time, which will remain in effect in the future.

You can contact a supervisory authority with a complaint at any time, e.g. the supervisory authority of the state of your residence or the authority that oversees us as the responsible party.

You’ll find a list of supervisory authorities (for the non-public area) with their respective addresses at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

 

Collecting general information during a visit to our website

Type and purpose of the processing

When you access our website – i.e. if you do not register or submit information – information of a general nature will be collected automatically. This information (server log files) contains the type of web browser, the operating system used, the domain name of your Internet service provider, your IP address and the like.

It is processed in particular for the following purposes:

  • Ensuring an unproblematic website connection
  • Ensuring seamless use of our website
  • Analysis of system security and stability as well as
  • For additional administrative purposes.

We will not use your data to draw conclusions about your person. This type of information will be statistically analysed by us if necessary to optimise our website and its underlying technology.

Legal basis

The processing occurs according to Art. 6 Para. 1 (f) GDPR, based on our legitimate interest in improving the stability and functionality of our website.

Recipients

Recipients of the data may be technical service providers, who work on the operation and maintenance of our website as the processor.

Retention period

The data will be deleted as soon as they are no longer required for the reason they were collected. This is generally the case, after the respective session has ended, for data that are used to make the website available.

Mandatory or required provision

The provision of the aforementioned personal data is neither legally nor contractually mandatory. Without the IP address however, the service and functionality of our website are not guaranteed. Furthermore, individual services can be unavailable or limited. For this reason, an objection is excluded.

 

Cookies

Type and purpose of the processing

Like many other websites, we use so-called ‘cookies’. Cookies are small text files that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our website.

With cookies, we receive certain information such as IP address, type of browser and operating system used.

Cookies cannot be used to start programs or to transmit viruses to a computer. Based on the information contained in cookies, we can facilitate your navigation of our site and properly display our webpages for you.

The data collected by us will not be shared with third parties under any circumstances nor will a link to personal data be created without your consent.

Of course, you can view our website without cookies. Internet browser are regularly configured to accept cookies. In general, you can disable the use of cookies via your browser settings at any time. Please use your Internet browser’s help function to learn how to change these settings, and keep in mind that individual features of our website may not work if you have disabled the use of cookies.

Retention period and cookies used

If you allow us to use cookies, via your browser settings or consent, the following cookies may be utilised on our web pages:

According to a recent test with https://www.cookiemetrix.com, we only use technical necessary cookies.

In the following sections, we provide you with information concerning how these cookies can (also) pertain to personal data.

In your browser settings, you can delete individual cookies or the entire set of cookies. You will also find information and instructions on how to delete these cookies or prevent them from being saved in advance. The following links provide the information you’ll need for the respective browser providers:

 

Registration on our website

Type and purpose of the processing

With the registration to use our personalised services, some personal data such as name, address, contact and communication information (e.g. phone number and e-mail address) are collected. If you are registered with us, you can access content and services that we only offer to registered users. Registered users also have the ability to change or delete the data entered during registration at any time. At any time, we will also provide you with information on the personal data about you that we have saved.

Legal basis

The data entered during registration are processed on the basis of the user’s consent (Art. 6 Para. 1 (a) GDPR).

If the registration fulfils the obligations of a contract, whose contractual party is the data subject, or serves to implement pre-contractual measures, the additional legal basis for the data processing is Art. 6 Para. 1 (b) GDPR.

Recipients

Recipients of the data may be technical service providers, who work on the operation and maintenance of our website as the processor.

Retention period

Data are only processed in this context provided that the corresponding consent has been given. The data will be deleted thereafter, provided that no statutory retention obligations prohibit the deletion. To contact us in this regard, please use the contact information provided at the end of this privacy policy.

Mandatory or required provision

The provision of your personal data is voluntary, based solely on your consent. Without the provision of your personal data, we cannot give you access to our content and services.

 

Newsletter

Type and purpose of the processing

Your data will be used exclusively to send you the newsletter you subscribed for via e-mail. We request your name so that we can address you personally in the newsletter and identify you as needed should you want to exercise your rights as a data subject.

To receive the newsletter, providing your e-mail address is sufficient. When you subscribe to our newsletter, the data you provide will be used exclusively for this purpose. Subscribers can also be notified by e-mail about circumstances that are relevant to the service or registration (such as changes to the newsletter offer or technical matters).

We need a valid e-mail address to complete your registration. In order to verify that a registration is actually made by the owner of an e-mail address, we utilise the ‘double opt-in’ procedure. To this end, we log the newsletter subscription request, when a confirmation e-mail is sent and the receipt of the requested reply. Additional data is not collected. The data will be used exclusively for sending the newsletter and will not be shared with third parties.

Legal basis

Based on your express consent (Article 6 (1) a DSGVO), we will send you our newsletter on a regular basis or comparable information via e-mail to your specified e-mail address.

The consent to save and use your personal data for the newsletter may be withdrawn at any time and remain in effect in the future. Every newsletter contains a corresponding link, and you can also unsubscribe on this website at any time or inform us of your cancellation via the contact option indicated at the end of this privacy policy.

Recipients

Recipients of the data may be processors.

Retention period

Data are only processed in this context provided that the corresponding consent has been given. The data will be deleted thereafter.

Mandatory or required provision

The provision of your personal data is voluntary, based solely on your consent. Unfortunately, we cannot send you our newsletter without your consent.

 

Contact and reservation forms

Type and purpose of the processing

The data you enter are used for individual communication with you. A valid e-mail address and your name are required for this communication, which serves to organize your inquiry and the respective subsequent reply. Providing additional information is optional.

Legal basis

The processing of the data entered in the contact form occurs on the basis of a legitimate interest (Art. 6 Para. 1 (f) GDPR).

By providing the contact form, our aim is to facilitate an uncomplicated means for you to contact us. The information you enter will be used to process the inquiry and saved for possible follow-up questions.

If you contact us to request an offer, the processing of the information provided in the contact form will occur in order to implement pre-contractual measures (Art. 6 Para. 1 (b) GDPR).

Recipients

Recipients of the data may be processors.

Retention period

The data will be deleted no later than 6 months after processing the inquiry.

Provided that we enter into a contract together, we will use the statutory retention periods in the German Commercial Code (Handelsgesetzbuch) and delete your data according to the respective stipulated deadlines.

Mandatory or required provision

The provision of your personal data is voluntary. However, we can only process your inquiry if you provide us with your name, e-mail address and the reason for your inquiry.

 

Using script libraries (Google Webfonts)

Type and purpose of the processing

In order to present our content correctly and graphically appealing across all browsers, we use ‘Google Webfonts’ from Google LLC (1600 Amphitheater Parkway, Mountain View, CA 94043, USA, hereinafter ‘Google’) to display fonts on this website.

You’ll find the data protection guidelines of the library operator Google here: https://www.google.com/policies/privacy/

Legal basis

Your consent is the legal basis for the integration of Google Webfonts and the associated data transfer to Google (Art. 6 Para. 1 (a) GDPR).

Recipients

The use of script libraries or font libraries automatically triggers a connection to the operator of the library. It is theoretically possible – but currently also unclear whether and to what end – that the operator, in this case Google, will collect data.

Retention period

We do not collect any personal data via the integration of Google Webfonts.

You’ll find additional information on Google Webfonts at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/.

Third country transfers

Google processes your data in the United States of America and is subject to the EU-U.S. Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.

Mandatory or required provision

The provision of your personal data is neither legally nor contractually required. However, the correct presentation of standard-fonts content is not possible without this provision.

Revocation of consent

The programming language JavaScript is regularly used to display content. Thus, you can opt out of the data processing by disabling JavaScript execution in your browser or by installing a JavaScript blocker. Please note that this may result in functional limitations on the website.

 

Using Google Maps

Type and purpose of the processing

We use Google Maps on this website. Google Maps is operated by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (hereinafter ‘Google’). This allows us to show you interactive maps directly on the website, allowing you to conveniently use the map feature.

You’ll find additional information about Google’s data processing on the Google privacy policy page, where you can also change your personal privacy settings in the data protection center.

Click here for detailed instructions on how to manage your own data related to Google products.

Legal basis

Your consent is the legal basis for the integration of Google Maps and the associated data transfer to Google (Art. 6 Para. 1 (a) GDPR).

Recipients

By visiting the website, Google receives information that you have accessed the corresponding subpage of our website. This occurs regardless of whether Google provides a user account that you are logged into or if there is no user account. When you’re logged into Google, your data will be directly assigned to your account.

If you do not want this assignment in your Google profile, you must log out of Google before activating the button. Google stores your data as usage profiles and uses them for advertising, market research and/or tailor-made design of its website. Such an analysis occurs in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the formation of these user profiles, but you must submit this objection to Google.

Retention period:

We do not collect any personal data via the integration of Google Maps.

Third country transfers

Google processes your data in the United States of America and is subject to the EU-U.S. Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.

Revocation of consent

If you do not want Google to collect, process or use information about you via our website, you can disable JavaScript in your browser settings. In this case, you cannot or only partially use our website.

Mandatory or required provision

The provision of your personal data is voluntary, based solely on your consent. If you prevent access, this can lead to functional limitations on the website.

 

Embedded YouTube videos

Type and purpose of the processing

We embed YouTube videos on several of our websites. The operator of the respective plugins is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA (hereinafter ‘YouTube’). YouTube, LLC is a subsidiary of Google LLC, 1600 Amphitheater Pkwy, Mountain View, CA 94043, USA (hereinafter ‘Google’). When you visit a page with the YouTube plug-in, a connection to YouTube’s servers will be created, which tells YouTube which pages you visit. When you are logged into your YouTube account, YouTube can associate your browsing behaviour with you personally. You can prevent this by logging out of your YouTube account beforehand.

If a YouTube video is started, the provider uses cookies that collect information about user behaviour.

You will find additional information on the purpose and scope of the data collection and its processing by YouTube in the provider’s privacy policy, as well as additional information on your rights and setting options for protecting your privacy (https://policies.google.com/privacy). Google processes your data in the United States of America and is subject to the EU-U.S. Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.

Legal basis

Your consent is the legal basis for the integration of YouTube and the associated data transfer to Google (Art. 6 Para. 1 (a GDPR).

Recipients

Visiting YouTube automatically triggers a connection to Google. .

Retention period and revocation of consent

Everyone who has disabled the storage of cookies for the Google ad programme will not have to expect any cookies when watching YouTube videos. However, YouTube also stores non-personal usage information in other cookies. If you would like to prevent this, you must block the storage of cookies in the browser.

You’ll find additional information on data protection at ‘YouTube’ in the provider’s privacy policy at: https://policies.google.com/privacy.

Third country transfers

Google processes your data in the United States of America and is subject to the EU-U.S. Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.

Mandatory or required provision

The provision of your personal data is voluntary, based solely on your consent. If you prevent access, this can lead to functional limitations on the website.

 

SSL encryption

To protect the security of your data during transmission, we use state-of-the-art encryption methods (such as SSL) via HTTPS.

 


 

Revision of our privacy policy

We reserve the right to amend this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy, e.g. when introducing new services. Your next visit will be subject to the new privacy policy.

Questions for the data protection officer

If you have any questions pertaining to data protection, please send us an e-mail or contact the person responsible for data protection in our organization: Stadthotel Kachelofen UG (haftungsbeschränkt), Marktplatz 13 86381 Krumbach, Deutschland, managing director Herbert Haas, telephone: +49 8282 61578, email: This email address is being protected from spambots. You need JavaScript enabled to view it.

The privacy policy was created via the activeMind AG privacy policy generator (Version: #2018-09-24).

 


 

Notes on linking to external sources and social media:

There are links to external sources and social media on our website. You can recognize the link by the logo image of the external provider or by the provider's text module in the text link. For reasons of data protection and the greatest possible protection of your privacy, we have deliberately not used plugins. When you click this link, you leave our website and connect to the servers of the external provider. If you are logged into your account with the provider in question at this point in time, the provider may be able to see which page you were on. We do not know which data can be collected. However, you can avoid any assignments by first logging out of your account with the provider concerned. Details on data protection and the handling of user data can be found in the data protection declarations of the respective providers. We use the links to make our online offer more appealing. In terms of (Art. 6 Para. 1 (a) GDPR), this is a legitimate interest.

 

Facebook

Our website contains links to Facebook Inc. (headquarters) 1 Hacker Way, Menlo Park, California 94025 USA or "Facebook Ireland" 4 GRAND CANAL SQUARE, GRAND CANAL HARBOR D2 Dublin, IRELAND, hereinafter referred to as Facebook. For data protection reasons, we have deliberately avoided using plugins. We use the link to Facebook to make our online offer more appealing. In terms of (Art. 6 Para. 1 (a) GDPR) this is a legitimate interest. You can recognize this link by the Facebook logo or the word "Facebook" in the text link. When you click this link, you leave our website and connect to the Facebook servers. If you are logged into your Facebook account at this point, Facebook may be able to understand which page you were on. We do not know what data Facebook collects or can collect. You can avoid any assignments by logging out of your Facebook account beforehand. You can find details on data protection and the handling of Facebook user data in Facebook's data protection declaration: https://www.facebook.com/policy.php.

 

Instagram

There are links to Instagram on our website. The provider is Facebook Inc. (headquarters) 1 Hacker Way, Menlo Park, California 94025 USA or "Facebook Ireland" 4 GRAND CANAL SQUARE, GRAND CANAL HARBOR D2 Dublin, IRELAND, hereinafter referred to as Instagram. For data protection reasons, we have deliberately avoided using plugins. We use the link to Instagram to make our online offer more appealing. According to A(Art. 6 Para. 1 (a) GDPR), this is a legitimate interest. You can recognize this link by the Instagram logo or the word "Instagram" in the text link. When you click this link, you leave our website and connect to the Instagram servers. If you are logged into your Instagram account at this time, Instagram may be able to understand which page you were on. We do not know what data Instagram collects or can collect. You can avoid any assignments by logging out of your Instagram account beforehand. You can find details on data protection and the handling of Instagram user data in Instagram's data protection declaration: https://help.instagram.com/519522125107875.

 

Google

There are links to Google pages and Google my business on our website. The provider is Google Inc 1601 S. California Ave, Palo Alto, CA 94304, USA .., hereinafter referred to as Google. For data protection reasons, we have deliberately avoided using plugins. We use the link to Google to make our online offer more appealing. In terms of (Art. 6 Para. 1 (a) GDPR), this is a legitimate interest. You can recognize this link by the Google logo or the text module "Google" in the text link. When you click this link, you leave our website and connect to the Google servers. If you are logged into your Instagram account at this point, Google may be able to understand which page you were on. We do not know what data Google collects or can collect. You can avoid any assignments by logging out of your Google account beforehand. You can find details on data protection and handling of user data by Google in Google's data protection declaration: https://policies.google.com/privacy?hl=en.

 


 

Hotel room booking online

 

Description and scope of data processing:

There is an online booking form on our website that can be used for electronic room bookings. If a user makes use of this option, the data entered in the input mask will be transmitted to us and saved. These data are: arrival, departure, room type, number of people, adults, children, booking code, salutation, name of the guest (first name, last name), name of the customer (first name, last name, address, zip code, city / town, country, e-mail , Telephone, fax, credit card number, credit card valid until, special requests, message to the hotel), or detailed selection of option fields in the form. If necessary, these fields are provided by our interface service provider caesar-data (caesar data & software GmbH, Hindelanger Str. 35 87527 Sonthofen, branch: Eisenhüttenstr. 4 40882 Ratingen, Germany. Telephone number: +49 (0) 2102/88 969 88 Fax number: +49 (0) 2102/88 969 89, web: www.caesar-data.de, email: This email address is being protected from spambots. You need JavaScript enabled to view it.). At the time the message is sent, the necessary data for the booking are transmitted and stored: These are in particular your name, your address, your telephone number, your e-mail address as well as the date of your stay and the type of room you have booked. For the processing of the data, your consent to the terms and conditions is obtained during the sending process and reference is made to the data protection declaration. When you make a booking, your booking details will only be passed on to the booked hotel in order to make your reservation possible. In addition, your data will not be passed on to third parties. Under no circumstances will your data be sold or lent. Due to legal regulations and corresponding judicial or official orders, we are obliged in exceptional cases to surrender data to the ordering authorities or courts. This then only happens within the framework of our legal obligations.

 

Information on data security:

Every data transmission in the course of an order process is carried out using the Secure Socket Layer (SSL) encryption process with up to 256 bits. SSL is a proven and globally used encryption system with the help of which your browser automatically encrypts your data before it is sent. These can only be decrypted again by our server. You are therefore protected from any external access. Additional security measures for credit card details: If you provide your credit card details to secure your booking, these details will not be forwarded directly to the hotel. Instead, the hotel initially only receives a code consisting of random numbers. This enables the hotel to access your data once, also using the SSL procedure. It is generally not possible to call up the credit card details again, not even if the correct code is entered.

 

Purpose of data processing: booking a hotel room, your stay in the hotel.

Opposition and removal option: You can receive information about the data we have stored about you at any time. You have the right to correct, delete and block incorrect data. However, the deletion of data may conflict with contractual and / or legal requirements, in particular those for carrying out the booking. If you have any questions about our data protection principles, please contact Mr. Fabio Corbelli, caesar data & software ltd., Agnes-Miegel-Str. 8, D-40882 Ratingen, email: This email address is being protected from spambots. You need JavaScript enabled to view it., website: www.caesar-data.com.