JB Logo NEU V10 Altgold Schwarz

Privacy Policy

Data Protection Regulations & Liability Limitations

1. Data Protection at a Glance


General Information

The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data is any data that can be used to personally identify you. Detailed information on data protection can be found in our privacy policy listed below this text.

Data Collection on Our Website

Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. You can find their contact details in the imprint of this website.
 

How do we collect your data?
Your data is collected in part by you providing it to us. This may include data you enter into a contact form, for example.

Other data is collected automatically when you visit the website through our IT systems. This primarily includes technical data (e.g. internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter our website.
 

What do we use your data for?
Some of the data is collected to ensure the website is provided without errors. Other data may be used to analyze your user behavior.
 

What rights do you have regarding your data?
You have the right to request information free of charge at any time about the origin, recipient, and purpose of your stored personal data. You also have the right to request the correction, blocking, or deletion of this data. You can contact us at any time at the address provided in the imprint for this and other questions regarding data protection. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

Analysis Tools and Third-Party Tools

Your surfing behavior can be statistically evaluated when you visit our website. This is done primarily with cookies and so-called analysis programs. The analysis of your surfing behavior is usually done anonymously; the surfing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. Detailed information can be found in the following privacy policy.

You can object to this analysis. We will inform you about the options for objection in this privacy policy.

2. General Information and Mandatory Information


Data Protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this privacy policy.
If you use this website, various personal data will be collected. Personal data is data that can be used to personally identify you. This privacy policy explains what data we collect and how we use it. It also explains how and for what purpose this is done.
We would like to point out that data transmission over the internet (e.g. when communicating via email) may have security gaps. A complete protection of the data against access by third parties is not possible.

Note on the Responsible Authority

The responsible authority for data processing on this website is:
Jakobsberg Hotel- & Golfresort GmbH
Im Tal der Loreley
D-56154 Boppard
Managing Director: André Müller
District Court of Koblenz
HRB 24297
VAT ID: DE 815 520 195
Telephone: +49 (0) 6742 / 8080
Email: info@jakobsberg.de
The responsible authority is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g. names, email addresses, etc.).

Revocation of Your Consent to Data Processing

Many data processing operations are only possible with your express consent. You can revoke your consent at any time. A simple notification by email to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to Lodge a Complaint with the Competent Supervisory Authority

In the event of data protection violations, the affected person has the right to lodge a complaint with the competent supervisory authority. The competent supervisory authority in data protection matters is the state data protection officer of the federal state in which our company is based. A list of data protection officers and their contact details can be found at the following link: www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right to Data Portability

You have the right to have data that we process automatically based on your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done to the extent that it is technically feasible.

SSL or TLS Encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.
When the SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Encrypted Payment Transactions on This Website

If, after the conclusion of a paid contract, you are required to provide us with your payment data (e.g. account number for direct debit authorization), this data is required for payment processing.
The payment transactions via the usual payment methods (Visa/MasterCard, direct debit) are carried out exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.
In the case of encrypted communication, your payment data that you transmit to us cannot be read by third parties.

Information, Blocking, Deletion

You have the right to free information about your stored personal data, its origin and recipients and the purpose of data processing at any time within the framework of the applicable legal provisions, as well as a right to correction, blocking, or deletion of this data. You can contact us at any time at the address provided in the imprint for this and other questions regarding personal data.

Objection to Advertising Emails

The use of contact data published in the context of the imprint obligation for the transmission of unsolicited advertising and information materials is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, for example through spam emails.

3. Data Protection Officer

Legally Required Data Protection Officer

We have appointed a data protection officer for our company.

Bietmann & Partner
Mr. Boris Maskow
John F.-Kennedy-Straße 15
55543 Bad Kreuznach

Telephone: 0 67 19/28 95 82 7
Email: boris.maskow@bietmann.eu

4. Data Collection on Our Website
 

Cookies

The internet pages use so-called cookies in part. Cookies do not harm your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and that your browser saves.
Most of the cookies we use are so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognize your browser on your next visit.
You can configure your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for certain cases or generally, and to activate the automatic deletion of cookies when closing the browser. If you disable cookies, the functionality of this website may be limited.
Cookies that are necessary for the execution of the electronic communication process or for the provision of certain functions desired by you (e.g. shopping cart function) are stored on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the storage of cookies for the technically error-free and optimized provision of its services. If other cookies (e.g. cookies for analyzing your surfing behavior) are stored, these are treated separately in this privacy policy.

Server Log Files

The provider of the pages collects and stores information automatically in so-called server log files, which your browser transmits to us automatically.
Since May 25, 2018, the following information applies to our host Mittwald: The access logs of the web servers log which page views occurred at what time. They include the following data: IP, directory protection user, date, time, accessed pages, logs, status code, data volume, referrer, user agent, accessed hostname. The IP addresses are stored in anonymized form. To do this, the last three digits are removed, i.e. from 127.0.0.1 it becomes 127.0.0.*. IPv6 addresses are also anonymized. The anonymized IP addresses are stored for 60 days. Information about the used directory protection user is anonymized after one day.  Error logs, which log faulty page accesses, are deleted after seven days. These include error messages, the accessing IP address, and depending on the error, the accessed website. Accesses via FTP are logged anonymously and stored for 60 days. The mail logs for sending emails from the web environment are anonymized after one day and then stored for 60 days. In the anonymization process, all data about the sender/recipient, etc. is removed. Only the data about the time of sending and the information on how the email was processed (queue ID or not sent) remain.
Mail logs for sending via our mail servers are deleted after four weeks. The longer retention period is necessary to ensure the functionality of the mail services and to combat spam. An individual determination of the storage duration is not possible.

Use of Webalizer and AWStats 

As a customer, you can access the tools Webalizer and AWStats, the purpose and functionality of which we describe below.
These products are web analysis services that collect, compile, and evaluate data about the behavior of visitors to websites. A web analysis service collects data, among other things, about which website a person came from (so-called referrer), which subpages of the website were accessed, or how often and for what duration a subpage was viewed.
A combination of this data with other data sources is not carried out.
The basis for data processing is Art. 6 para. 1 lit. f GDPR, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.

Contact Form

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass this data on without your consent.
The processing of the data entered in the contact form is thus carried out exclusively on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. A simple notification by email to us is sufficient. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage, or the purpose for data storage no longer applies (e.g. after the processing of your inquiry has been completed). Mandatory legal provisions – in particular retention periods – remain unaffected.

Processing of Data (Customer and Contract Data)

We collect, process, and use personal data only to the extent necessary for the establishment, content design, or modification of the legal relationship (inventory data). This is done on the basis of Art. 6 para. 1 lit. b GDPR, which permits the processing of data for the fulfillment of a contract or pre-contractual measures. We collect, process, and use personal data about the use of our internet pages (usage data) only to the extent necessary to enable the user to use the service or to bill.
The collected customer data will be deleted after the completion of the order or the end of the business relationship. Legal retention periods remain unaffected.

Data Transfer upon Conclusion of Contract for Online Shops, Dealers, and Goods Shipping

We only transfer personal data to third parties if this is necessary for the execution of the contract, for example, to the companies entrusted with the delivery of the goods or the credit institution entrusted with payment processing. Further transmission of the data does not take place or only if you have expressly consented to the transmission. A transfer of your data to third parties without your express consent, for advertising purposes, does not take place.
The basis for data processing is Art. 6 para. 1 lit. b GDPR, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.

Data Transfer upon Conclusion of Contract for Services and Digital Content

We only transfer personal data to third parties if this is necessary for the execution of the contract, for example, to the credit institution entrusted with payment processing.
Further transmission of the data does not take place or only if you have expressly consented to the transmission. A transfer of your data to third parties without your express consent, for advertising purposes, does not take place.
The basis for data processing is Art. 6 para. 1 lit. b GDPR, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.

Google Fonts Privacy Policy

We use Google Fonts from Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on our website.

You do not need to register or provide a password to use Google Fonts. Furthermore, no cookies are stored in your browser. The files (CSS, fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, the requests for CSS and fonts are completely separate from all other Google services. If you have a Google account, you need not worry that your Google account data will be transmitted to Google while using Google Fonts. Google collects the usage of CSS (Cascading Style Sheets) and the fonts used and stores this data securely. We will look into how the data storage works in detail.

What are Google Fonts?

Google Fonts (formerly Google Web Fonts) is an interactive directory with more than 800 fonts that Google LLC provides for free use.

Many of these fonts are published under the SIL Open Font License, while others are published under the Apache License. Both are free software licenses. Thus, we can use them freely without paying licensing fees.

Why do we use Google Fonts on our website?

With Google Fonts, we can use fonts on our website without having to upload them to our own server. Google Fonts is an important component in maintaining the quality of our website. All Google fonts are automatically optimized for the web, saving data volume and providing a significant advantage for use on mobile devices. When you visit our site, the low file size ensures fast loading times. Furthermore, Google Fonts are considered safe web fonts. Different rendering systems in various browsers, operating systems, and mobile devices can lead to errors. Such errors can sometimes distort texts or entire websites visually. Thanks to the fast Content Delivery Network (CDN), there are no cross-platform issues with Google Fonts. Google Fonts supports all common browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod).

We use Google Fonts to present our entire online service as beautifully and uniformly as possible. According to Art. 6 para. 1 f lit. F GDPR, this already constitutes a "legitimate interest" in the processing of personal data. In this case, "legitimate interest" refers to both legal and economic or ideal interests recognized by the legal system.

What data is stored by Google?

When you visit our website, the fonts are loaded from a Google server. Through this external call, data is transmitted to the Google servers. This allows Google to recognize that you or your IP address have visited our website. The Google Fonts API was developed to reduce the collection, storage, and use of end-user data to what is necessary for the efficient provision of fonts. API stands for "Application Programming Interface" and serves, among other things, as a data transmitter in the software area.

Google Fonts securely stores CSS and font requests at Google and is thus protected. Through the collected usage figures, Google can determine the popularity of the fonts. Google publishes the results on internal analysis pages, such as Google Analytics. In addition, Google also uses data from its own web crawler to determine which websites use Google Fonts. This data is published in the BigQuery database of Google Fonts. BigQuery is a web service from Google for companies that want to move and analyze large amounts of data.

However, it should be noted that each Google Font request also automatically transmits information such as IP address, language settings, browser screen resolution, browser version, and browser name to the Google servers. Whether this data is also stored is not clearly ascertainable or is not explicitly communicated by Google.

How long and where is the data stored?

Requests for CSS assets are stored by Google for one day on its servers, which are mainly located outside the EU. This allows us to use the fonts with a Google stylesheet. A stylesheet is a template that allows you to easily and quickly change the design or font of a website.

The font files are stored at Google for one year. Google aims to fundamentally improve the loading time of websites. If millions of websites refer to the same fonts, they are cached after the first visit and appear immediately on all other websites visited later. Sometimes Google updates font files to reduce file size, increase language coverage, and improve design.

How can I delete my data or prevent data storage?

The data that Google stores for one day or one year cannot simply be deleted. The data is automatically transmitted to Google when the page is accessed. To delete this data prematurely, you must contact Google Support at support.google.com. You can prevent data storage in this case only by not visiting our site.

Unlike other web fonts, Google allows us unrestricted access to all fonts. We can thus access an ocean of fonts without limits and get the best out of our website. More about Google Fonts and other questions can be found at developers.google.com/fonts/faq. While Google addresses data protection issues, really detailed information about data storage is not included. It is relatively difficult (almost impossible) to get precise information from Google about stored data.

What data is generally collected by Google and for what purposes this data is used can also be read at www.google.com/intl/de/policies/privacy/.

5. Social Media

Social Media Bookmarks - Share Content via Plugins
(Facebook, Google+1, Twitter & Co.)

The content on our pages can be shared in compliance with data protection regulations on social networks such as Facebook, Twitter, or Google+. Social bookmarks are internet bookmarks that allow users of such a service to collect links and news articles. These are embedded on our website merely as links to the respective services. After clicking on the embedded graphic, you will be redirected to the page of the respective provider, i.e. only then will user information be transmitted to the respective provider. There is no automatic transmission of user data to the operators of these platforms through this tool. If the user is logged into one of the social networks, an information window appears when using the social buttons from Facebook, Google+1, Twitter & Co., in which the user can confirm the text before sending. Our users can share the content of this page in compliance with data protection regulations on social networks without complete surfing profiles being created by the operators of the networks. For information on how your personal data is handled when using these websites, please refer to the respective data protection regulations of the providers. 

The links or functions of the social media buttons are created using Shariff.

With Shariff, website operators protect the privacy of their visitors from the excessive curiosity of social networks like Facebook, Google+, and Twitter. For visitors, it only takes a click to share a page with friends.

With Shariff, you can use social media without unnecessarily jeopardizing your privacy. The c't project Shariff replaces the usual share buttons of social networks and protects your surfing behavior from prying eyes. Nevertheless, a single click on the button is enough to share information with others. You do not have to do anything else – the webmaster has already taken care of everything.

The usual social media buttons transmit user data with every page view to Facebook & Co. and provide the social networks with precise information about your surfing behavior (user tracking). You do not need to be logged in or a member of the network. In contrast, a Shariff button only establishes direct contact between the social network and the visitor when the latter actively clicks on the share button.

This prevents Shariff from leaving a digital trail on every visited page and improves data protection. You can then like, +1, or tweet at your discretion – the social network does not receive any further information.

For more information on the technology of Shariff, please visit: //www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html

6. Analysis Tools and Advertising

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses so-called "cookies". These are text files that are stored on your computer and allow an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a server of Google in the USA and stored there.

The storage of Google Analytics cookies is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its web offerings and its advertising.


IP Anonymization

We have activated the IP anonymization feature on this website. This means that your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a server of Google in the USA and shortened there. Google will use this information on behalf of the operator of this website to evaluate your use of the website, compile reports on website activities, and provide other services related to website usage and internet usage to the website operator. The IP address transmitted by your browser within the framework of Google Analytics will not be merged with other data from Google.


Browser Plugin

You can prevent the storage of cookies by adjusting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent. You can also prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) to Google as well as the processing of this data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.


Objection to Data Collection

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set, which prevents the collection of your data during future visits to this website: Deactivate Google Analytics.

For more information on how user data is handled in Google Analytics, please refer to Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.


Order Data Processing

We have concluded a contract for order data processing with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.


Demographic Features in Google Analytics

This website uses the "demographic features" function of Google Analytics. This allows reports to be created that contain statements about the age, gender, and interests of the site visitors. This data comes from interest-based advertising from Google as well as from visitor data from third parties. This data cannot be assigned to a specific person. You can deactivate this feature at any time via the advertising settings in your Google account or generally prohibit the collection of your data by Google Analytics as described in the section "Objection to Data Collection".

Google Analytics Remarketing

Our websites use the functions of Google Analytics Remarketing in conjunction with the cross-device features of Google AdWords and Google DoubleClick. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

This function allows the advertising target groups created with Google Analytics Remarketing to be linked with the cross-device features of Google AdWords and Google DoubleClick. In this way, interest-based, personalized advertising messages that have been tailored to you based on your previous usage and surfing behavior on one device (e.g. mobile phone) can also be displayed on another of your devices (e.g. tablet or PC).

If you have given the corresponding consent, Google links your web and app browsing history with your Google account for this purpose. In this way, the same personalized advertising messages can be displayed on any device on which you log in with your Google account.

To support this function, Google Analytics collects google-authenticated IDs of users, which are temporarily linked with our Google Analytics data to define and create target groups for cross-device advertising.

You can permanently object to cross-device remarketing/targeting by disabling personalized advertising in your Google account; please follow this link: https://www.google.com/settings/ads/onweb/.
The summary of the data collected in your Google account is carried out solely on the basis of your consent, which you can give or revoke at Google (Art. 6 para. 1 lit. a GDPR). For data collection processes that are not merged in your Google account (e.g. because you do not have a Google account or have objected to the merging), the data collection is based on Art. 6 para. 1 lit. f GDPR. The legitimate interest arises from the fact that the website operator has an interest in the anonymized analysis of website visitors for advertising purposes.

Further information and the data protection regulations can be found in Google's privacy policy at: www.google.com/policies/technologies/ads/.

Google AdWords and Google Conversion Tracking

This website uses Google AdWords. AdWords is an online advertising program from Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States ("Google").

As part of Google AdWords, we use so-called conversion tracking. When you click on an ad placed by Google, a cookie for conversion tracking is set. Cookies are small text files that the internet browser places on the user's computer. These cookies expire after 30 days and do not serve to personally identify users. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognize that the user clicked on the ad and was redirected to this page.

Each Google AdWords customer receives a different cookie. Cookies cannot be tracked across the websites of AdWords customers. The information obtained through the conversion cookie is used to create conversion statistics for AdWords customers who have opted for conversion tracking. Customers learn the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that would allow the identification of users personally. If you do not wish to participate in tracking, you can object to this use by easily disabling the Google conversion tracking cookie through your internet browser under user settings. You will then not be included in the conversion tracking statistics.
The storage of "conversion cookies" is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its web offerings and its advertising.
For more information on Google AdWords and Google Conversion Tracking, please refer to Google's privacy policy: https://www.google.de/policies/privacy/.
You can configure your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for certain cases or generally, and to activate the automatic deletion of cookies when closing the browser. If you disable cookies, the functionality of this website may be limited.

7. Newsletter


Newsletter Data

If you would like to receive the newsletter offered on the website, we need an email address from you as well as information that allows us to verify that you are the owner of the provided email address and that you agree to receive the newsletter. Further data is not collected or only on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.

The processing of the data entered in the newsletter registration form is carried out exclusively on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke the consent given for the storage of the data, the email address, and its use for sending the newsletter at any time, for example, via the "unsubscribe" link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.

The data you provided for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted after the cancellation of the newsletter. Data that has been stored for other purposes (e.g. email addresses for the member area) remains unaffected.

CleverReach

This website uses CleverReach for sending newsletters. The provider is CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede. CleverReach is a service that allows the organization and analysis of newsletter dispatch. The data you enter for newsletter subscription (e.g. email address) is stored on the servers of CleverReach in Germany or Ireland.

The newsletters sent via CleverReach allow us to analyze the behavior of newsletter recipients. This includes analyzing how many recipients opened the newsletter message and how often which link in the newsletter was clicked. With the help of so-called conversion tracking, it can also be analyzed whether a predefined action (e.g. purchase of a product on our website) occurred after clicking the link in the newsletter. Further information on data analysis through CleverReach newsletters can be found at: https://www.cleverreach.com/de/funktionen/reporting-und-tracking/.
The data processing is carried out on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.

If you do not want analysis by CleverReach, you must unsubscribe from the newsletter. We provide a corresponding link in each newsletter message. Furthermore, you can also unsubscribe from the newsletter directly on the website.

The data you provided for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted after the cancellation of the newsletter from both our servers and the servers of CleverReach. Data that has been stored for other purposes (e.g. email addresses for the member area) remains unaffected.

For more details, please refer to the data protection regulations of CleverReach at: https://www.cleverreach.com/de/datenschutz/.


Conclusion of a Contract for Order Data Processing

We have concluded a contract for order data processing with CleverReach and fully implement the strict requirements of the German data protection authorities when using CleverReach.

 

8. Plugins and Tools


Google Web Fonts

This site uses so-called web fonts provided by Google for the uniform representation of fonts. When you access a page, your browser loads the required web fonts into its browser cache to display texts and fonts correctly.

To do this, the browser you are using must connect to Google's servers. This informs Google that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offerings. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

If your browser does not support web fonts, a standard font from your computer will be used.

For more information on Google Web Fonts, please visit developers.google.com/fonts/faq and in Google's privacy policy: www.google.com/policies/privacy/.

Google Maps

This site uses the Google Maps mapping service via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

To use the features of Google Maps, it is necessary to store your IP address. This information is usually transmitted to a server of Google in the USA and stored there. The provider of this site has no influence on this data transmission.

The use of Google Maps is in the interest of an appealing presentation of our online offerings and an easy findability of the places we have indicated on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

For more information on how user data is handled, please refer to Google's privacy policy: https://www.google.de/intl/de/policies/privacy/

Processing and Transfer of Personal Data in the Online Ordering System

If you make a reservation or request in our online reservation tool, it is necessary for the initiation of the contract and the conclusion of the contract that you provide personal data such as your name, address, and email address. The mandatory information required for reservation and contract processing is marked separately, further information is provided voluntarily. We process your data for booking processing, and we will particularly forward payment data to the payment service provider you have chosen or our house bank. In the context of your booking or booking request, the booking information will also be transmitted to external operators of internet booking engines (Our provider for online booking is: vioma GmbH, Industriestraße 27, D - 77656 Offenburg) for contract fulfillment or preparation. The legal basis for processing is Art. 6 para. 1 sentence 1 lit. b) GDPR. To prevent unauthorized access to your personal data by third parties, the ordering process on the website is encrypted using SSL technology. You can voluntarily create a customer account in which we store your data for future visits to the website. When creating a customer account, the data you provide will be processed. You can independently edit or delete all other data, including your customer account, after successful registration. We will delete the data incurred in this context after storage is no longer necessary or restrict processing if there are legal retention obligations. Due to mandatory commercial and tax regulations, we are obliged to retain your address, payment, and order data for a period of ten years. After two years following the termination of the contract, we will restrict processing and reduce processing to compliance with existing legal obligations.

iiQ Check

This site uses the iiQ-Check rating widget via an API. The provider is: ConsultiiQ GmbH, Spitalstraße 1, D-38640 Goslar When accessing a page, your browser loads the necessary scripts into its browser cache to display the rating widget correctly. To do this, the browser you are using must connect to the servers of ConsultiiQ GmbH. This informs ConsultiiQ GmbH that our website has been accessed via your IP address. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or their use by ConsultiiQ GmbH. The use of iiQ-Check is in the interest of informing our guests. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. For more information on iiQ-Check, please visit https://www.iiq-check.de/

Tourism Tools

The use of our website is generally possible without providing personal data. As far as personal data (for example, name, address, or email addresses) is collected on our pages, this is done, as far as possible, always on a voluntary basis. This data will not be passed on to third parties without your express consent. We would like to point out that data transmission over the internet (e.g. when communicating via email) may have security gaps. A complete protection of the data against access by third parties is not possible.

9. Payment Providers

PayPal

On our website, we offer payment via PayPal, among other options. The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal").

If you choose to pay via PayPal, the payment data you enter will be transmitted to PayPal.

The transmission of your data to PayPal is based on Art. 6 para. 1 lit. a GDPR (consent) and Art. 6 para. 1 lit. b GDPR (processing for the fulfillment of a contract). You have the option to revoke your consent to data processing at any time. A revocation does not affect the legality of data processing operations that have taken place in the past.