Privacy Policy

2. Collection and storage of personal data and the type and purpose of their use

a) When visiting the website

When you visit our website www.hotel-am-wasserfall.de, the browser used on your device automatically sends information to our website server. This information is temporarily stored in a so-called log file. The following information is recorded without your intervention and stored until it is automatically deleted:

 • IP address of the requesting computer, • date and time of access, • name and URL of the retrieved file, • website from which access is made • browser used and, if applicable, the operating system of your computer and the • name of your provider.

The data mentioned are processed by us for the following purposes:

• Ensuring a smooth connection to the website, • Ensuring comfortable use of our website, • Evaluation of system security and stability, and • for other administrative purposes.

The legal basis for data processing is Art. 6 Para. 1 GDPR. Our legitimate interest follows from the data collection purposes listed above. Under no circumstances do we use the collected data for the purpose of drawing conclusions about your person.

In addition, we use cookies and analysis services when you visit our website. You can find more detailed explanations in Sections 4 and 5 of this data protection declaration.

b) Contact by email

If you have any questions, we offer you the opportunity to contact us via the email addresses provided on the website. It is necessary to provide a valid email address so that you can send us an email and we know who sent the request and so that we can answer it. Further information can be provided voluntarily.

The data processing for the purpose of contacting us takes place according to Art. 6 Para. 1 a GDPR on the basis of your voluntarily given

The personal data collected by us when you contact us by email will be automatically deleted after your request has been dealt with.

3. Sharing of data

Your personal data will not be transmitted to third parties for purposes other than those listed below.

We only pass on your personal data to third parties if:

You have given your express consent in accordance with Art. 6 Para. 1 a GDPR, the disclosure is required in accordance with Art. 6 Para interest in the

Not to have your data passed on in the event that there is a legal obligation for the transfer according to Art. 6 Para. 1 c GDPR, as well as this is legally permissible and according to Art. 6 Para. 1 b GDPR for the processing of contractual relationships with you .

4. Cookies

We use cookies on our site. These are small files that your browser creates automatically and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not damage your end device and do not contain viruses, Trojans or other malware. Information is stored in the cookie that arises in connection with the specific end device used. However, this does not mean that we are immediately aware of it

get your identity. On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. We use so called session cookies to recognize that you have already visited individual pages on our website. These are automatically deleted after leaving our site. In addition, we also use temporary cookies to optimize user friendliness, which are stored on your end device for a specific period of time. If you visit our site again to make use of our services, it will automatically be recognized that you have already been with us and what inputs and settings you have made so that you do not have to enter them again. On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer (see Section 5). These cookies enable us to automatically recognize when you visit our site again that you have already been with us. These cookies are automatically deleted after a defined period of time. The data processed by cookies are required for the purposes mentioned to protect our legitimate interests and those of third parties in accordance with Art. 6 Para. 1 f GDPR. Most browsers accept cookies automatically. However, you can configure your browser in such a way that no cookies are stored on your computer or that a message always appears before a new cookie is created. However, the complete deactivation of cookies may mean that you cannot use all the functions of our website.

5. Plugins

YouTube

Our website uses plugins from the Google-operated YouTube site. The site operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers will be established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account. Further information on the handling of user data can be found in YouTube's data protection declaration at: www.google.de/intl/de/policies/privacy 

Google maps

This site uses the Google Maps map service via an API. The provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. In order to use the functions of Google Maps, it is necessary to save your IP address. This information is usually transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer. Google Maps is used in the interest of an attractive presentation of our website and to make it easier to find the places we have indicated on the website. This represents a legitimate interest within the meaning of Art. 6 Para. 1 f GDPR. You can find more information on the handling of user data in Google's data protection declaration: www.google.de/intl/de/policies/privacy 

Google web fonts

This site uses so called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display text and fonts correctly. For this purpose, the browser you are using must connect to the Google servers. This gives Google knowledge that our website was accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offering. This represents a legitimate interest within the meaning of Art. 6 Para. 1 f GDPR. If your browser does not support web fonts, a standard font will be used by your computer. You can find more information about Google Web Fonts at developers.google.com/fonts/faq and in Google's privacy policy: www.google.de/intl/de/policies/privacy data relating to the user. The IP addresses are anonymized so that an assignment is not possible (IP masking).

Facebook

Plugins from the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA are integrated on our website. You can recognize the Facebook plugins by the Facebook logo or the “Like button” (“Like”) on our site. You can find an overview of the Facebook plugins here: developers.facebook.com/docs/plugins/ When you visit our site, the plugin establishes a direct connection between your browser and the Facebook server. Facebook receives the information that you have visited our site with your IP address. If you click the Facebook "Like" button while you are logged into your Facebook account, you can link the content of our pages to your Facebook profile. This allows Facebook to associate your visit to our site with your user account. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the data transmitted or how it is used by Facebook. You can find more information on this in Facebook's privacy policy at de-de.facebook.com/policy.php 

If you do not want Facebook to be able to associate your visit to our site with your Facebook user account, please log out of your Facebook user account.

6. Data subject rights

You have the right:

to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can obtain information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to correction, deletion, restriction of processing or objection, the existence of a Right to complain, the origin of your data, if not collected from us, and the existence of automated decision-making including profiling and, if necessary, meaningful information about their details; in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us; According to Art. 17 GDPR, to request the deletion of your personal data stored by us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims is required; according to Art. 18 GDPR the restriction of the processing of your to request personal data if you contest the accuracy of the data, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you need them to assert, exercise or defend legal claims or you have objected to them pursuant to Art. 21 GDPR have lodged an objection to the processing; in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request transmission to another person responsible; pursuant to Art. 7 Para. 3 GDPR, to revoke the consent you have given to us at any time. As a result, we are no longer allowed to continue the data processing based on this consent for the future and to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or work or our company headquarters.

7. Right to object

If your personal data is processed on the basis of legitimate interests in accordance with Art. 6 Para. 1 f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, provided that there are reasons for this that arise from your particular situation arise or the objection is directed against direct advertising. In the latter case, you have a general right to object, which we will implement without specifying a particular situation.

If you would like to make use of your right of revocation or objection, an email to

brooksnieder@hfb-consult.de

is sufficient.

8. Data security

When you visit our website, we use the widespread SSL (Secure Socket Layer) method in connection with the highest level of encryption supported by your browser. This is usually a 256bit encryption. If your browser does not support 256-bit encryption, we use 128bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the closed representation of the key or lock symbol in the status bar of your browser.

We also use suitable technical and organizational security measures TOM to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

9. Updating and changing this data protection declaration

Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration.

This data protection declaration is currently valid and has the status: March 2020.