privacy statement

privacy statement

We are pleased that you are visiting our homepage and thank you for your interest in our company. Dealing with our customers and interested parties is a matter of trust. The trust placed in us has a very high value for us and therefore the importance and obligation to handle your data carefully and to protect it from misuse.
So that you feel safe and comfortable when visiting our website, we take the protection of your personal data and their confidential treatment very seriously. Therefore, we act in accordance with applicable laws on the protection of personal data and data security.
With this information on data protection, we would therefore like to inform you when we store which data and how we use it – naturally in compliance with the applicable German case law. Our data protection takes the European data protection level into account and is based in particular on the current Federal Data Protection Act (BDSG). When using the Internet, we orient ourselves to the Telemedia Act (TMG) of the Federal Republic of Germany to protect your personal data.

Collection and processing of personal data
In principle, you can visit our websites without telling us who you are. Our web servers automatically store information of a general nature. This includes the type of web browser, the operating system used, the domain name of your Internet service provider, the website from which you are visiting us, the websites you visit on our site and the date and duration of your visit. This is only information which does not allow any conclusions to be drawn about your person. We evaluate these data only for statistical purposes and only in anonymous form.

Use and passing on of the collected data
We use the personal data provided by you exclusively for the purposes communicated or agreed upon, i.e. as a rule to process the contract concluded with you or to respond to your enquiry.
If you make use of services, as a rule only those data are collected which we require to provide the services. As far as we ask you for further data, it is voluntary information. The processing of personal data takes place exclusively for the fulfilment of the requested service and for the protection of our own justified business interests.
Are personal data passed on to third parties?
Your data will only be processed and used for the purposes of consulting, advertising and market research with your express consent. Your data will not be sold, rented or otherwise made available to third parties. Personal data will only be transferred to state institutions and authorities within the framework of mandatory national legal provisions.

Use of cookies
So-called cookies are used in some areas of our pages. A cookie is a small text file that a website stores on your hard drive. Cookies do not damage your computer and do not contain viruses. The cookies on our website do not collect any personal data. We use the information contained in cookies to make it easier for you to use our pages and to adapt them to your needs.
Of course, you can also view our website without cookies. If you do not want cookies to be stored on your computer, you can deactivate the corresponding option in the system settings of your browser. You can delete stored cookies at any time in the system settings of your browser. If you do not accept cookies, however, this may lead to functional limitations of our offers.
Use of Google Maps
This website uses Google Maps to display maps and to create directions. Google Maps is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. By using this website, you consent to the collection, processing and use of the data automatically collected and submitted by you by Google, one of its agents, or third parties. The Google Maps Terms of Use can be found in the Google Maps Terms of Use.

Safety and security
We use technical and organizational security measures in accordance with § 9 BDSG to protect your data administered by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are continuously improved in line with technological developments. We store data protection-relevant information exclusively on secured systems in Germany. Access to it is only possible for a few authorised persons and persons who are obliged to special data protection and who are concerned with the technical, administrative or editorial support of data.

Protection of minors
Children and young people with limited legal capacity may not transmit any personal data to our websites without the consent of their parents or guardian. Under no circumstances will we knowingly collect personal data obtained from children or young people with limited legal capacity or use it in any way or disclose it to third parties without authorisation.

Declaration of consent of the user
By using our web pages and the offers contained therein, you agree that the personal data voluntarily transmitted by you will be stored by us and processed and used in compliance with this data protection declaration.

Information, deletion, blocking
You have the right at any time to free information about your stored personal data, their origin and recipient and the purpose of data processing as well as a right to correction, blocking or deletion of this data. You can contact us at any time at the address given in the imprint for this and other questions on the subject of personal data.

Public procedure directory
The Federal Data Protection Act (BDSG) stipulates in § 4g that the data protection officer must make the following information available to everyone in a suitable manner in accordance with § 4e.
Name of the responsible body: Hotel Gaststätte Max Heilemann
Owner: Max Heilemann
Responsible head of data processing : Daniel Heilemann
Address of the responsible body: Hüttenweg 1 – 49835 Wietmarschen

Purpose of data collection, processing and use
– Operation of hotels and related businesses, as well as all related businesses
– At our hotel location, video surveillance is used exclusively to collect evidence of vandalism, burglary, robbery or other criminal acts. The presence and use of video cameras is indicated by appropriate warnings.
– Execution of the storage and data processing of personal data for own purposes as well as on behalf and on behalf of individual companies in accordance with existing service agreements within the group of companies.
– The collection, processing and use of data is carried out for the purposes listed above.

Description of the data subjects and the related data/data categories
Essentially, personal data are collected, processed and used for the following groups of persons:
– Guest data (especially address data, reservation data, guest requests, billing data)
– Customer data (especially address data, contract data, billing and performance data)
– Data of interested parties (especially accommodation interest, room and room rental interest, address data)
– Employee data, applicant data, pension fund data (best personnel and salary data)
– Agent / broker / agency data (especially address, billing and performance data)
– Business partners, external service providers (especially address, billing and performance data)
– Supplier data (especially address, billing, service and functional data)
– Non-assignable group of persons: Video recordings insofar as these are necessary for the fulfilment of the purposes mentioned under point 5.

Categories of recipients to whom data may be communicated
Hotels, guesthouses and other accommodation facilities may collect personal data of their guests and store it in automated procedures, as far as this is necessary within the scope of the accommodation contract. As a rule, this also includes billing data for food and beverages, telephone calls made from the room and/or other hotel-specific services. Hotels and accommodation establishments are obliged by registration law to request information on the place of residence, date of birth and nationality of their guests and their family members.
Data may also be communicated to subsequent recipients:
– Public authorities which receive data on the basis of statutory regulations (e.g. social insurance institutions)
– Internal departments that are involved in the execution and fulfillment of the respective business processes (e.g. personnel administration/control, accounting, marketing, sales, IT organization and the central reservation service (Customer Service Center)).
– External contractors (service providers) according to § 11 BDSG
– Other external bodies (e.g. credit institutions, broker agencies within the scope of intermediary activity, as well as partner companies within the scope of the order activity issued by the customer)

Standard periods for the deletion of data
The legislator has enacted a variety of storage obligations and periods. After these periods have expired, the corresponding data and data records are routinely deleted if they are no longer required for contract fulfilment (guest, rental and service contracts). Thus, the commercial or financial data of a completed fiscal year are deleted after a further ten years in accordance with legal regulations, unless longer retention periods are prescribed or necessary for legitimate reasons. In the area of personnel administration and personnel control, shorter deletion periods are used in special areas. This applies in particular to rejected applications or warnings. Insofar as data is not affected by this, it will be deleted unsolicited if the purposes mentioned under point 5 no longer apply.

Registration forms are stored in accordance with the valid registration law in accordance with the legally prescribed minimum duration and are then destroyed in accordance with data protection regulations under special precautionary measures.

Planned data transfer to third countries
Data transfers to third countries only occur within the framework of contract fulfilment, necessary communication and other exceptions expressly provided for in the Federal Data Protection Act (BDSG).
A data transfer to other third countries, especially those whose data protection level is assessed as low or to countries outside the EU is currently not taking place; such a transfer is also not planned.

Ensuring security in data processing
We use technical and organisational security measures in accordance with § 9 BDSG to protect the data administered by them against accidental or intentional manipulation, loss, destruction or against access by unauthorised persons. The security measures used are continuously improved in line with technological developments. This means that we store your data protection-relevant information exclusively on secure systems in Germany. Access to this data is only possible for a few authorised persons who are obliged to special data protection and who are involved in technical, administrative or editorial support.

Name and address of the person responsible for data protection
Daniel Heilemann
Hüttenweg 1
49835 Wietmarschen
Status of the Public Register of Procedures: 02 May 2018
Responsible for the content of the Public Register of Procedures:
Daniel Heilemann

Translated with