Protecting your personal information is one of our top priorities. We want you to be aware of what data we gather and when, and how we use your personal information.
I. Collection and usage of data
The following policies inform you about the purpose, manner, and extent of our collection, use, and processing of personal data. Please note that security vulnerabilities exist in internet-based data transfer, thus making it impossible to completely ensure that the data cannot be accessed by third parties.
1. Name and contact details of the party responsible for processing (data controller) and the company Data Protection Officer:
This information on data protection applies to data processing by:
Responsible party (data controller): Alter Meierhof Vitalhotel GmbH & Co. KG (hereinafter: Alter Meierhof), Uferstraße 1, D-24960 Glücksburg, Germany, firstname.lastname@example.org, Tel. +49 4631 6199-0, Fax +49 4631 6199-99. The company data protection officer for Alten Meierhof can be contacted using the address and email address given above, attn: Mrs. Uta Krause-Junk.
2. Collection and storage of personal data and nature and purpose of its use
a) When visiting the website
When you access our website www.alter-meierhof.de, information is automatically sent to our website’s server by the browser used on your end device. This information is temporarily stored in a so-called log file. The following information is recorded without any action on your part and saved until it is automatically deleted:
We process the aforementioned information for the following purposes:
The legal basis for the processing of data is Art. 6(1)(a) GDPR. Our justified interest lies in the above-stated purposes of data collection. In no instance will we use the retrieved data to identify you as an individual.
b) When making bookings and placing orders through our website
We store your personal data when you communicate it to us. We only use this data, especially your name and address, in order to process your booking or order and to execute contracts. The data is recorded when you enter your details into the respective input screen of the booking or contact form. Storage and deletion takes place as specified by law.
Our website is not designed for children under the age of 16 and we do not knowingly gather any personal data from anyone in this age group. Children under 16 years of age should only use our website under the supervision of a parent or legal guardian.
c) When subscribing to our newsletter
You have the option to subscribe to our free newsletter. We use this newsletter to regularly update you on the latest news at www.alter-meierhof.de.
Provided you have given your explicit consent to do so pursuant to Art. 6 (1)(a) GDPR, we will use your email address to regularly send you our newsletter. The provision of an email address is sufficient in order to receive the newsletter.
We will check to ensure that you are actually the owner of the email address you enter or that the owner of the email address is authorized to receive the newsletter. We will do this by sending an email to the email address that you provided, asking you to confirm its receipt. After the email has been confirmed, you will be subscribed to the www.alter-meierhof.de newsletter. The data will be transmitted to MailChimp, a company of The Rocket Science Group, LLC. Upon subscribing to the newsletter, your IP address and the date and time of your subscription will be recorded. This is done solely for reasons of security, in order to prevent a third party from misusing your email address and subscribing to our newsletter without your knowledge.
You can unsubscribe at any time by clicking (for example) on the link at the bottom of each newsletter. Alternatively, you can also ask to be unsubscribed at any time by sending an email to email@example.com
3. Disclosure of data
In order to process your booking / order, your name and address need to be passed on to third parties. Your data also needs to be passed on when making credit card payments, for example. In this case, your credit card details are transmitted to the respective credit card company.
Your personal data will not be shared with third parties for any purposes other than those listed below.
The cookie is used to store information relating to the specific end device which is being used. However, this does not mean that we are able to identify you directly on the basis of this information.
In addition to this, we also use temporary cookies, which are stored on your end device for a specific, fixed period of time, to ensure our website is as user-friendly as possible. If you visit www.alter-meierhof.de again, it will automatically recognize if you have visited us before and what entries and settings were made (e.g. shopping cart) so that you do not need to enter these again.
The data processed using cookies is required in order to safeguard our legitimate interests as well as those of third parties according to Art. 6(1)(f) GDPR.
Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are saved to your end device or so that a warning always appears before a new cookie is created. You should note, however, that by fully deactivating cookies, you may not be able to use all of our website’s features.
III. Analytical tools
The tracking measures we employ are outlined below and are implemented on the basis of Art. 6(1)(f) GDPR. We use these tracking measures to ensure the needs-based design and ongoing optimization of our website. We also use tracking measures to gather statistics on the use of our website and to allow us to assess how we can optimize our services to suit you. These interests are considered legitimate within the meaning of the aforementioned provision.
The respective purpose of data processing and data categories depend on the tracking tool in question.
a) Google Analytics
To ensure the needs-based design and ongoing optimization of our website, we use Google Analytics, a web analysis service from Google Inc. (https://www.google.de/intl/en/about/) (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter “Google”). As part of this process, pseudonymized user profiles are created and cookies (see Section II) are used. The information generated by the cookie on your use of the website such as
is transmitted to a Google server in the USA and stored there. The information is used to assess usage of the website, compile reports on website activities and to provide other services related to the use of the website and of the Internet for the purposes of market research and the needs-based design of the website. This information may also be passed on to third parties if such is required by law or where such third parties process the information on Google’s behalf. Under no circumstances will your IP address be merged with other data from Google. The IP addresses are anonymized so that they cannot be linked to any individual (IP masking).
You can stop cookies from being installed by changing the relevant browser software setting; however, we would like to point out that this may limit use of some of our website’s features.
You can also stop Google from collecting the data created by the cookie and that relating to your usage of the website (incl. IP address), and stop Google from processing this data, by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout?hl=en).
b.) Google AdWords conversion tracking
In order to gather statistics on the usage of our website and evaluate how our website is optimised to meet your needs, we also use Google conversion tracking. This involves a cookie (see Section II) being saved on your computer by Google AdWords when you are directed to our website via a Google advertisement.
These cookies become invalid after 30 days and cannot be used to identify you personally. If the user visits certain pages of the AdWords customer’s website and the cookie is still active, Google and the customer can see that the user clicked on the advertisement and was directed to that page.
Each AdWords customer is given a different cookie. This means that cookies cannot be traced across the websites of AdWords customers. The information obtained with the help of conversion cookies enables conversion statistics to be compiled for AdWords customers who have decided to use conversion tracking. The AdWords customers can find out how many users have clicked on their advertisement and have been forwarded to a page with an allocated conversion tracking tag. However, they do not receive any information that can be used to personally identify users.
If you do not wish to participate in the tracking process, you can revoke your consent to creation of the required cookie by adjusting the browser setting that automatically allows cookies to be created, for example. You can also deactivate cookies used for conversion tracking by changing your browser settings to block cookies from the “www.googleadservices.com” domain. You can find Google’s conversion tracking privacy notice here: (https://services.google.com/sitestats/en.html).
IV. Social media plug-ins
On the basis of Art. 6(1)(f) GDPR, we use so-called social plugins from several providers on www.alter-meierhof.de with the respective standard embedding: Facebook, Instagram.
These allow us to improve our hotel’s visibility and share the latest news. The commercial purpose behind this is considered a legitimate interest within the meaning of the GDPR. Responsibility for ensuring compliance with data protection laws lies with the respective provider. We use these plugins with the so-called two-click method in order to ensure the best possible protection for our customers.
We have integrated the Facebook button into www.alter-meierhof.de to allow you to share pages you like with friends and/or show them that you have liked the pages. We use the “LIKE” or “SHARE” button for this purpose. This is a service provided by Facebook Inc., USA.
You can find additional information about the data collected by Facebook in this context by clicking on the following link: www.facebook.com/help/.
When you access a page on our website that contains one of these plugins, your browser establishes a direct connection with Facebook’s servers. The content of the plugin is transmitted directly to your browser from Facebook, which embeds it in the website.
By embedding the plugin, Facebook receives the information that your browser has accessed that particular page of our website, even if you do not have a Facebook account or are not currently logged into Facebook. This information (including your IP address) is transmitted directly to a Facebook server in the USA by your browser and stored there.
If you are logged into Facebook, Facebook can directly assign the visit to our website to your Facebook account. If you interact with the plugins, for example by clicking on the “LIKE” or “SHARE” button, the relevant information is likewise transmitted directly to a Facebook server and stored there. This information is also published on Facebook and can be seen by your Facebook friends.
Facebook can use this information for the purposes of marketing, market research, and designing Facebook pages to meet the needs of their users. For this purpose, Facebook creates profiles regarding usage, interests, and relationships, for example to evaluate your use of our website with regard to the advertisements displayed to you on Facebook, to inform other Facebook users about your activities on our web site, and to provide further services linked to the use of Facebook.
If you do not wish to allow Facebook to gather data about you through our website, you will have to log out of Facebook prior to visiting our website.
Social plugins (“plugins”) from Instagram are also used on our website, which are operated by Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA (“Instagram”).
The plugins can be identified by the inclusion of an Instagram logo, in the shape of an “Instagram camera” for example.
When you access a page of our website that contains one of these plugins, your browser establishes a direct connection with Instagram’s servers. The content of the plugin is transmitted directly to your browser from Instagram, which embeds it in the website. By embedding the plugin, Instagram receives the information that your browser has accessed that particular page of our website, even if you do not have an Instagram profile or are not currently logged into Instagram.
This information (including your IP address) is transmitted directly to an Instagram server in the USA by your browser and stored there. If you are logged into Instagram, Instagram can directly assign the visit to our website to your Instagram account. If you interact with the plugins, for example by clicking on the “Instagram” button, the relevant information is likewise transmitted directly to an Instagram server and stored there.
This information is also published on your Instagram account and can be seen by your contacts.
If you do not wish to allow Instagram to directly assign the data it gathers through our website to your Instagram account, you will have to log out of Instagram prior to visiting our website.
V. Rights of the affected person (data subject)
You have the right:
VI. Right to objection
Provided your personal data is processed on the basis of legitimate interests according to Art. 6(1)(f) GDPR, you have the right, according to Art. 21 GDPR, to file an objection to the processing of your personal data, provided there are reasons for such pertaining to your own special circumstances or the objection is made with respect to direct advertising. In the latter case, you have a general right to objection, which will be implemented by us without you needing to provide details regarding any special circumstances.
If you would like to exercise your right of revocation or objection, simply send an email to firstname.lastname@example.org.
VII. Data security
When you visit the website we use the expanded SSL (secure socket layer) protocol in conjunction with the highest encryption level currently supported by your browser. This is usually 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell that a specific page of our website is encrypted if you see a key or lock symbol in the bottom status bar of your browser.
Side from this, we take appropriate technical and organizational measures to protect your data against random or deliberate manipulation, partial or complete loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in accordance with technological development.