Privacy policy and information pursuant to Art. 13 and 14 GDPR
Responsible for data protection:
Attila Mandi
Mandi GmbH
Grabenstraße 9
74405 Gaildorf
Data processing purposes:
Contact form
If you contact us using the form on the website or by e-mail, the data you provide will be stored by us for six months for the purpose of processing the inquiry and in the event of follow-up questions. We will not pass on this data without your consent. If you fill out the contact form, HEROLD Business Data GmbH processes the data as a processor on the basis of the General Terms and Conditions (in particular the regulations on commissioned data processing contained therein). HEROLD Business Data GmbH uses a sub-processor (SurveyMonkey Europe UC, 2 Shelbourne Buildings, 2nd Floor, Shelbourne Road, Ballsbridge, Dublin 4, Ireland), which receives access to the data contained in the contact form and stores the data in the USA. Any provision of data to the sub-processor is based on an adequacy decision of the European Commission (self-certification Privacy Shield).
Analysis purposes
In addition, data is collected and used for analysis purposes. This data processing is not personal (see information on cookies below).
Registration
When registering, the user's e-mail address and a password are stored. If a purchase is subsequently made, the e-mail address is linked to the data collected during the purchase process. The data you provide is required to set up the user account. The data processing takes place for the duration of the existence of the user account. When the user account is deleted
deletion of the e-mail address and password as well as the link to the purchase transaction data.
IT security
When you visit this website, log files are also stored which contain the IP address and other data relating to access to the website (e.g. date, time, user agent, referrer). Data processing takes place for a limited period (maximum 30 days) and only to protect against DDOS attacks or other interventions in the functionality of the website and any underlying database systems.
Information on cookies
This website uses so-called cookies. These are small text files that are stored on your end device with the help of the browser. They do not cause any damage.
Session cookies are used on this website. These are generated when you access the website and are automatically deleted again. They are used to recognize you when you visit the same website again within a short period of time in order to remember any settings you have already made. No personal data is stored or processed in the process.
The purpose of cookies is to make the website user-friendly. Some cookies remain stored on your end device until you delete them. They therefore enable the website operator to recognize your browser the next time you visit. If you do not want this, you can set up your browser so that it informs you about the setting of cookies and you only allow this in individual cases. If cookies are deactivated, however, the functionality of the website may be restricted.
Google web analysis service (Google Analytics)
This website uses functions of the web analysis service Google Analytics. The provider is Google Inc, 1600 Amphitheatre Parkway Mountain View, CA
94043, USA. We use the function “Activation of IP anonymization” on this website. This means that your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before processing/storage. Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports on website activity and measuring the performance of online advertising campaigns for analysis and optimization purposes.
The processed data includes, in particular, online identifiers (including cookie identifiers), internet protocol addresses, device identifiers, location data, identifiers assigned by the customer and user data (in particular time and duration of access, selection of certain offers, etc.). You can find more information on how Google Analytics handles user data in Google's privacy policy, available at https://policies.google.com/privacy?hl=de.
You can prevent Google from collecting the data generated by the cookie and relating to your use of the website and from processing this data by Google by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=de
Instructions on how you can also prevent Google from saving data can be found at the following link: https://developers.google.com/analytics/devguides/...
When using Google Analytics, the relationship with the web analytics provider is based on commissioned data processing. The transfer of data to the processor is based on an adequacy decision by the European Commission (self-certification Privacy Shield). The data is deleted regularly (currently every 26 months).
Use of Google AdWords conversion tracking
This website uses the online advertising program “Google AdWords” and, as part of Google AdWords, conversion tracking. Google Conversion Tracking is an analysis service of Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). When you click on an advertisement placed by Google, a cookie for conversion tracking is stored on your computer. These cookies lose their validity after a maximum of 90 days. If you visit certain pages of our website and the cookie has not yet expired, Google and the website operator can recognize that you clicked on the ad and were redirected to this page. The information collected using the conversion cookie is used to create conversion statistics. This tells the website operator the total number of users who clicked on an ad and were redirected to a page with a conversion tracking tag
and/or have performed various actions on the page.
However, the website operator does not receive any information with which users can be personally identified. If you do not wish to participate in tracking, you can object to this use by preventing the installation of cookies by setting your browser software accordingly (deactivation option). You will then not be included in the conversion tracking statistics. Further information and Google's privacy policy can be found at: http://www.google.com/policies/technologies/ads/ and http://www.google.de/policies/privacy/
When using Google Adwords conversion tracking, the relationship with the web analysis provider is based on order data processing. The transfer of data to the processor is based on an adequacy decision by the European Commission (Privacy Shield self-certification). Google is also obliged to delete the data regularly (currently every 39 months).
Social media
If Facebook social plugins are used on this website, they are operated by Facebook Inc. (1 Hacker Way, Menlo Park, California 94025, USA). The integration can be recognized by the Facebook logo or the terms “Like”, “Like”, “Share” in the colors of Facebook (blue and white). Information about all Facebook plugins can be found in the following link:
https://developers.facebook.com/docs/plugins/
The plugins are only activated when you click on the corresponding buttons. If these are displayed grayed out, the plugins are inactive. You have the option to activate the plugins with each visit.
The plugins establish a direct connection between your browser and the Facebook servers. This only happens after the plugin has been activated. The website operator has no influence whatsoever on the nature and extent of the data that the plugin transmits to the Facebook Inc. servers. You can find information about this here: https://www.facebook.com/help/186325668085084
The plugin informs Facebook Inc. that you as a user have visited this website. There is a possibility that your IP address will be saved. If you are logged into your Facebook account while visiting this website, the information mentioned will be linked to it.
Legal basis for data processing:
Data on the website is processed exclusively on the basis of legal provisions (GDPR, TKG 2003).
The data processing (web shop, product reviews, booking tool and user account) is carried out on the basis of Art. 6 Para. 1 lit. b) (contract fulfillment purposes) GDPR.
If analysis tools are used, the data is used on the basis of Art. 6 Para. 1 lit f) (legitimate interest) GDPR. The legitimate interest in using data is to improve the website and measure the success of online advertising.
The use of IT data security measures is also based on Art. 6 Para. 1 lit f) (legitimate interest) GDPR. The legitimate interest in using data is to secure your own IT systems.
The use of social media plugins only takes place with your consent. The legal basis is therefore Article 6 Paragraph 1 Letter a) GDPR. Consent must be given again each time the website is accessed.
Your rights
You generally have the right to information, correction, deletion, restriction of processing, data portability, revocation and objection. If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been violated in any way, you can complain to the supervisory authority. In Austria, this is the
Data Protection Authority.
Data processor
DEHOGA German Hotel Classification GmbH, Am Weidendamm 1A, 10117 Berlin
DATA PROTECTION WIDGET USE
This page integrates a widget from HOTELCLASS to display the current star category of a hotel. The provider is DEHOGA Deutsche Hotelklassifizierung GmbH, Am Weidendamm 1A, 10117 Berlin, Germany (https://hotelclass.info/imprint.php). This allows guests to see at a glance that a hotel has been classified and complies with the official guidelines of the German Hotel Classification. The protection of personal data is an important concern for us. The HOTELCLASS widget of DEHOGA Deutsche Hotelklassifizierung GmbH is used in accordance with the applicable legal provisions on the protection of personal data and data security. This data protection information provides you with information on how DEHOGA Deutsche Hotelklassifizierung GmbH handles information that is collected during the use of the HOTELCLASS widget.
Collection and processing of personal data
The use of the HOTELCLASS widget of DEHOGA Deutsche Hotelklassifizierung GmbH is possible without providing personal data. Personal data is all information about your identity such as your name, your e-mail address or your postal address. Such data is neither collected nor stored when using HOTELCLASS widgets.
Server log files
The provider of our website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. The data in the log files include
Referrer URL (the website you came from)
browser type
Browser version and language Operating system used and its interface IP address (anonymized)
Time of the server request
http status code
Access status of the transferred data volume
Storage period is 7 days
This data is not merged with other data sources.
The legal basis for data processing is Art. 6 para. 1 lit. f GDPR, which permits the processing of data for the optimal presentation and security of the website based on our legitimate interest, without your interests in the exclusion of data collection prevailing.
Storage location of the data
This information is usually sent to a server of
MINDSTREAM - Christian Klar,
Maria-Theresien-Straße 21,
6020 Innsbruck
at the Data Center Park Falkenstein location and stored there.
Data security
DEHOGA Deutsche Hotelklassifizierung GmbH takes precautions to protect your personal data from loss, destruction, falsification, manipulation and unauthorized access. The statutory data protection regulations of the Federal Republic of Germany are of course observed.
Right to information
If you have any questions regarding the processing of your personal data, please contact info@hotelstars.eu or
DEHOGA Deutsche Hotelklassifizierung GmbH
Am Weidendamm 1A
10117 Berlin
Managing director authorized to represent: Markus Luthe
