Rebhan’s Business and Wellness Hotel
Privacy Protection
Privacy policy
The protection of your privacy when processing your data is an important concern for us. Therefore, your personal data will only be collected and used in accordance with the provisions of the Federal Data Protection Act and other data protection regulations. We want you to feel secure when visiting our website.
Below we explain what information we collect at Rebhan’s Business and Wellness Hotel during your visit to our websites and how it is used.
It is generally possible to use our website without providing personal data. Insofar as personal data is collected when you visit our website, we process it exclusively in accordance with the General Data Protection Regulation (Regulation (EU) 2016/679; GDPR) and the Federal Data Protection Act of July 30, 2017 (BDSG-new), as well as the Telemedia Act (TMG). The processing of personal data takes place exclusively in accordance with this privacy policy.
This privacy policy applies to the use of the website at the address www.hotel-rebhan.de. For linked content from other providers, the data protection declaration on the linked website is authoritative.
We would like to point out that security gaps can occur during data transmission via the Internet, which cannot be prevented by the technical design of this website. Complete protection of personal data is not possible when using the Internet.
Responsible body
is responsible for the processing of personal data in the context of the use of this website:
Hans Rebhan Grundbesitz- und Beteiligungs GmbH & Co. KG
Ludwigsstädter Str. 95 + 97
96342 Stockheim – Neukenroth
Phone: +49 (0) 9265/955 – 6100
Fax: +49 (0) 9265/955 – 6600
E-mail: info@hotel-rebhan.de
Internet: www.hotel-rebhan.de
Managing directors authorized to represent the company: Christopher Rebhan
Register court: Coburg Local Court
Register number: HRB 3169, HRA 4350
VAT ID no.: in accordance with § 27 a of the German Value Added Tax Act: DE 814781582
Responsible for content in accordance with the German Telemedia Act (TMG): Hans Rebhan Grundbesitz- und Beteiligungs GmbH & Co. KG
Data Protection Officer
You can contact our data protection officer as follows
E-mail: datenschutz@hotel-rebhan.de
Personal data
Personal data is individual information about the personal or factual circumstances of an identified or identifiable natural person. This includes information such as your name, your address and your telephone number.
When using our website, personal data is transmitted to third parties.
Hosting
Our website is operated on servers of:
Hetzner Online GmbH
Industriestr. 25
91710 Gunzenhausen
Germany (Host)
Collection of personal data
When you access our website, our web servers automatically collect information of a general nature – in particular for the purpose of system security. This includes the type of web browser, the operating system used, the domain name of the Internet service provider, the connection data of the computer used (IP address), the website from which you visit us (referrer URL), the pages you visit on our website and the date and duration of your visit.
When you visit our website, data is automatically collected and stored in log files on our host’s server. This data may have a personal reference. The data collected includes
– Name of the website accessed
– Date and time of access
– Amount of data transferred
– Notification of successful access
– Type of internet browser
– Version of the internet browser
– The operating system running under the browser with patch level
– Previously visited page
– Requesting provider
– IP addresses in anonymized form
The hoster uses the data collected to operate the website and to ensure IT security. If there are concrete indications, the log data may be subsequently analyzed.
Data stored by the hoster will be deleted after 6 months.
Protection of minors
Persons who have not yet reached the age of 16 may not transmit any personal data to us without the consent of their legal guardians. Persons who have not yet reached the age of 16 may only provide us with personal information if they have the express consent of their legal guardians or if they have reached the age of 16 or are older. This data will be processed in accordance with this privacy policy.
Use of cookies
In addition to the aforementioned data, cookies are used on your computer when you use and visit our website.
Cookies are small text files that are stored by your browser on your end device to store certain information. Furthermore, these cookies are used to make the use of our website more pleasant and convenient for you or for analytical purposes.
Most of the cookies we use are so-called “session cookies”. They are used to make the services of our website technically available to you. After your visit, these cookies are automatically deleted by your browser.
Other cookies remain on your computer and enable us to recognize your end device on your next visit (so-called persistent or permanent cookies).
The next time you visit our website with the same end device, the information stored in cookies will be read either by our website (“first party cookie”) or by another website to which the cookie belongs (“third party cookie”).
These cookies are automatically deleted from your system after a preset period of time, which differs depending on the cookie.
Through the stored and returned information, the respective website recognizes that you have already accessed and visited it with the browser of your end device.
We use this information to optimize the design and display of the website according to your preferences. Only the cookie itself is identified on your end device.
Any further storage of personal data will only take place with your express consent or if this is absolutely necessary in order to be able to use the service offered and accessed by you accordingly.
This website uses the following types of cookies, the scope and function of which are explained below:
– Essential cookies
The use of essential cookies on our website is possible without your consent.
These necessary cookies ensure functions without which you cannot use our websites as intended. These cookies are used exclusively by us and serve, for example, to ensure that you, as a registered user, always remain logged in when accessing various subpages of our website and thus do not have to re-enter your login data each time you access a new page.
– Cookies for external media from third parties
Cookies for external media from third parties enable our website to save information already provided (such as registered name or language selection) and to offer you improved and more personalized functions based on this. These cookies only collect and store anonymized information so that they cannot track your movements on other websites.
You have the option of generally deactivating cookies in your browser at any time (see below). However, deactivating cookies may limit the functionality of this website.
– Marketing cookies
Marketing cookies are only set after your active consent.
These cookies originate from third parties (third-party cookies) and are used to collect information about the websites visited by the user in order to create targeted advertising for the user.
If you agree to the tools mentioned (cookies for external media from third parties, marketing cookies), you give your consent in accordance with Art. 6 para. 1 sentence 1 lit. a in conjunction with. Art. 49 para. 1 a) GDPR, you consent to your personal data being processed in the USA. In its ruling of July 16, 2020, the European Court of Justice declared the EU-US Privacy Shield invalid. As a result, the USA is to be classified as an unsafe third country, as the EU data protection standards are not adequately met. In particular, there is a risk that your data may be processed by US authorities for monitoring and surveillance purposes. As a data subject, you may then not be entitled to any legal remedies.”
Opt-out for marketing cookies
You can also manage cookies used for online advertising via the tools developed in many countries as part of self-regulatory programs, such as the US-based https://www.aboutads.info/choices/ or the EU-based https://www.youronlinechoices.com/uk/your-ad-choices.
You can revoke this consent to cookies at any time with effect for the future [borlabs-cookie type=”btn-cookie-preference” title=”here” element=”link” /].
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, e.g. third-party cookies (cookies that are set by a third party, i.e. not by the actual website on which you are currently located), exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. You can use your web browser to delete stored cookies at any time.
If cookies are deactivated, the functionality of this website may be restricted.
Administration Cookies:
You can use the following links to find out about this option for the most commonly used browsers:
Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies Firefox: http://support.mozilla.org/de/kb/cookies-informationen-websites-auf-ihrem-computer Chrome: http://support.google.com/chrome/bin/answer.py?hl=de&answer=95647 Safari: https://support.apple.com/de-de/guide/safari/sfri11471/mac Opera: http://help.opera.com/Linux/12.10/de/cookies.html
If you have not made or do not make any different settings, cookies that enable or ensure the necessary technical functions remain on your end device until you close the browser; other cookies may remain on your end device for longer (maximum 6 months).
To safeguard your privacy, you should regularly check the cookies on your end device and your browser history and delete them yourself.
SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties (end-to-end encryption). The protocols authenticate the communication partner and ensure the integrity of the transmitted data.
Contact options (form / e-mail)
You can contact us via the contact form on our website or by e-mail.
In this context, your details from the form, including the contact details you provide there, will be stored and processed by us for the purpose of processing the request and in the event of follow-up questions. This data (e.g. company, name (mandatory field), telephone number, e-mail address (mandatory field), IP address) will not be passed on to third parties without your consent.
The data is not merged with other data collected on this website.
The data may be stored as part of customer relations management (CRM) if you are already a customer of our company.
The contact form is sent encrypted using TLS technology. The encryption serves to prevent unauthorized access to your personal data by third parties.
This data is processed on the basis of Art. 6 para. 1 lit. b GDPR if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6 para. 1 lit. f GDPR).
We will retain the data you provide until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Mandatory statutory provisions – in particular retention periods – remain unaffected.
Applications
We accept digital applications, regardless of whether you are applying for a position advertised by us or whether it is an unsolicited application. The separate data protection information for applicants can be found under this link.
Borlabs (Cookie Consent Tool)
On our website we use the cookie consent technology of Borlabs – Benjamin A. Bornschein, Georg-Wilhelm-Str. 17, 21107 Hamburg (hereinafter referred to as Borlabs).
Borlabs Cookie is a plugin for WordPress and makes it possible to obtain your consent to the storage of certain cookies in your browser and to document this in compliance with data protection regulations.
When you enter our website, a technically necessary Borlabs cookie is stored in your browser, in which the consents you have given or the revocation of these consents are stored. This data is not passed on to the provider of Borlabs Cookie.
The data collected will be stored until you ask us to delete it or delete the Borlabs cookie yourself or until the purpose for storing the data no longer applies. Mandatory statutory retention periods remain unaffected. Details on data processing by Borlabs Cookie can be found at https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/
This data processing is carried out in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR on the basis of our legitimate interest in providing a cookie consent management service for website visitors.
Further information on Borlabs’ data protection can be found here: https://de.borlabs.io/datenschutz/.
Use of Matomo
Our website uses “Matomo” (formerly “Piwik”), a web analysis service provided by InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand.
Matomo is installed on the site operator’s server so that no data is transmitted to servers that are outside our control.
We use Matomo to analyze the use of our website and individual functions and offers in order to continuously improve the user experience. By statistically evaluating user behavior, we improve our offer and make it more interesting for visitors.
We have set up the service so that no cookies are set.
Our website uses Matomo with the setting “Anonymize Visitors’ IP addresses”. This means that IP addresses are further processed in abbreviated form, thus excluding the possibility of direct personal identification. The software is set so that the IP addresses are not stored in full, but 2 bytes of the IP address are masked (e.g. 192.168.xxx.xxx). In this way, it is no longer possible to assign the shortened IP address to the calling computer. The IP address transmitted by your browser via Matomo is not merged with other data collected by us.
The data of the processing described here will be deleted after a storage period of xx days.
Data processing is based on your consent in accordance with Section 25 (1) TDDDG, Art. 6 (1) (a) GDPR, provided that you have given your consent via our banner.
You can prevent the analysis by deleting existing cookies and deactivating the storage of cookies in the settings of your web browser. We would like to point out that in this case you may not be able to use all the functions of this website to their full extent.
Further information on data protection can be found in the privacy policy at: matomo.org/privacy-policy/.
You have the option of preventing the actions you take here from being analyzed and linked. This will protect your privacy, but will also prevent the owner from learning from your actions and improving usability for you and other users.
Your visit to this website is currently recorded by Matomo Web Analytics. You can revoke this consent at any time with effect for the future. [borlabs-cookie id=”matomo” type=”btn-switch-consent” /]
Google Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts.
When you call up a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. The font files are installed locally on our web server. If your browser does not support web fonts, a standard font will be used by your computer.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/.
Gstatic
A web service of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland (hereinafter: Gstatic) is loaded on our website.
This data is used to ensure the full functionality of our website.
In this context, your browser may transmit personal data to Gstatic.
The legal basis for the use of Gstatic is your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR, insofar as you give us your consent to this when you first access the site.
As there is no adequacy decision by the EU Commission for the transfer of personal data to the USA, we have concluded standard data protection clauses with Google within the meaning of Art. 46 para. 2 lit. c GDPR.
The data is deleted as soon as the purpose of its collection has been fulfilled. Further information on the handling of the transferred data can be found in Gstatic’s privacy policy: https://policies.google.com/privacy.
You can prevent the collection and processing of your data by Gstatic by deactivating the execution of script code in your browser or by installing a script blocker in your browser.
WPMU DEV
We use the WPMU DEV Dashboard plugin on our website as an analysis tool from “WPMU DEV”. The provider is Incsub, LLC, PO BOX 548 #88100, Birmingham, AL 35201, USA (hereinafter referred to as “Incsub”).
The dashboard plugin allows us to manage our website and any other plugins used.
By using it, your connection data is transmitted to Inscub when you access the website.
Incsub uses Matomo as an analysis tool as a subcontractor. The provider of Matomo is InnoCraft Ltd, 150 Willis St, 6011 Wellington, 6106769, New Zealand.
The use of Matomo enables us to collect statistical data about your interaction on our website as a user. This includes:
- Number of users of the website per day
- Duration of the visit
- The device from which our website was accessed
- From which domain you came to our site
- Visited (sub-)domains on our website
- Connection data
Matomo uses cookies for this purpose. The cookies do not contain any personal data and are only used to analyze the website.
The duration of the storage of gen. cookies is 30 minutes or one year.
Possible data transfers to Matomo are based on the existing adequacy decision of the EU Commission. This decision recognizes that New Zealand has an adequate level of data protection. The decision is available at https://eur-lex.europa.eu/legal-content/DE/TXT/PDF/?uri=CELEX:32013D0065&from=EN.
Data processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR. We have a legitimate interest in expanding the administrative options with regard to our website to include a functional package that is useful to us.
If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.
Font Awesome
This site uses Font Awesome, which is provided by Font, Inc. for the uniform display of fonts. When you call up a page, your browser loads the required fonts into your browser cache in order to display texts and fonts correctly.
For this purpose, the browser you are using must connect to Font Awesome’s servers. This gives Font Awesome knowledge that our website has been accessed via your IP address.
The legal basis for the processing of the data is your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR, insofar as you have given this consent.
If your browser does not support Font Awesome, a standard font will be used by your computer.
Further information about Font Awesome can be found at https://fontawesome.com/?from=io and in Font Awesome’s privacy policy: https://fontawesome.com/privacy
Use and disclosure of personal data
If you commission us to provide a service or send you goods, your personal data will only be used without your separate consent to the extent necessary for the provision of the service or the performance of the contract.
This includes in particular the transfer of your data to transport companies, credit companies or other service providers used to provide the service or process the contract.
We also pass on personal data on the basis of official and/or court orders. There is no disclosure of personal data beyond that specified in this privacy policy.
Cooperation with external service providers
We commission other companies and individuals to perform tasks for us. Examples include parcel delivery, sending letters or emails, advertising (including providing search results and links), processing payments (credit card, direct debit and purchase on account) and customer service. These service providers have access to personal information that is required to fulfill their tasks. However, they may not use this information for other purposes. In addition, they are obliged to handle the information in accordance with this data protection declaration and German data protection laws.
If these subcontractors are data processors in accordance with Art. 28 GDPR, we have concluded corresponding legally compliant contracts with them.
Commitment of employees and external service providers
It goes without saying that our employees and the service companies commissioned by us are obliged to maintain confidentiality and to comply with the provisions of the Federal Data Protection Act.
Purpose-related use of personal data
Any use of your personal data will only take place for the stated purposes and to the extent necessary to achieve these purposes.
Exceptions
We disclose customer accounts and personal data about customers if we are required to do so by law or if such disclosure is necessary to enforce our terms and conditions or other agreements or to protect our rights and the rights of our customers and third parties. This includes an exchange of data with companies that specialize in the prevention and minimization of abuse and credit card fraud. It is expressly clarified that in this context no data will be passed on to these companies for commercial use that is contrary to this data protection declaration.
Liability for linked content
Our websites contain links to other offers. We have no influence on how the providers of the linked websites handle the information shown on these pages. If the collection, processing or use of personal data is associated with the use of the websites of other providers, please refer to the data protection information of the respective providers. If you have any questions in this regard, please contact these third parties directly. We are not responsible for compliance with data protection regulations or the content of these websites.
Profiles in social networks
Our presence on social networks and video platforms, which we mention below, is used for active and up-to-date communication with our customers and interested parties. We use them to provide information about our services, products and interesting special offers relating to our company and our services. Further information about us as the provider of the social media channel can be found in our legal notice.
In the following, we provide you with the data protection information in accordance with Art. 13 of the General Data Protection Regulation (GDPR) for the social media sites we operate:
Facebook: https://de-de.facebook.com/rebhans
Instagram: https://www.instagram.com/rebhanshotel?igshid=1gfu3jix6tbxv
a) YouTube
The YouTube video platform is operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, or if you have your registered office or place of residence in the EU, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
The following information does not apply to any direct integration of YouTube videos on our website.
When you visit our channel on YouTube, your data may be automatically collected and stored for market research and advertising purposes. This data is used to create so-called user profiles using pseudonyms. These can be used, for example, to place advertisements inside and outside the video platform that presumably correspond to your interests. Cookies are usually placed on your device for this purpose. The function of cookies is explained in the data protection information there, so please refer to the relevant information there. Visitor behavior and user interests are stored in these cookies.
Furthermore, we receive a statistical evaluation from the data collected as to which groups of people are interested in our individual videos posted on YouTube. In particular, we are provided with the number of views and playing times of videos in this context. The data is provided for statistical analysis in such an anonymized form that it is not possible to draw conclusions about individual persons. The information provided includes, for example, the approximate geographical location, age group and other summarized characteristics.
The legal basis for the collection and processing of data is your consent within the meaning of Art. 6 para. 1 lit. a) GDPR, which you may have given to Google when accessing its website(s). You can withdraw your consent to data processing at any time with effect for the future; to do so, please contact Google directly. The withdrawal of consent does not affect the lawfulness of data processing carried out before the withdrawal.
For detailed information on the processing and use of data by Google on the YouTube website as well as a contact option and your rights in this regard and setting options for protecting your privacy, please refer to Google’s privacy policy, which you can find at the following link: https://policies.google.com/privacy?hl=de&gl=de
As there is no adequacy decision by the EU Commission for the transfer of personal data to the USA, we have concluded standard data protection clauses with Google within the meaning of Art. 46 para. 2 lit. c) GDPR.
b) Fan page on Facebook / Facebook presence
The social network Facebook is operated by Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA, or if you have your registered office or place of residence in the EU, Facebook Ireland Ltd, 4 Grand Canal Square, Dublin 2, Ireland (“Facebook”).
When you visit our online presence on social media, your data may be automatically collected and stored for market research and advertising purposes. This data is used to create so-called user profiles using pseudonyms. These can be used, for example, to place advertisements within and outside the platforms that presumably correspond to your interests. Cookies are usually placed on your device for this purpose.
The function of cookies is explained in our privacy policy, so please refer to the relevant information there. Visitor behavior and user interests are stored in these cookies. This serves to safeguard our legitimate interests in an optimized presentation of our services and offers and effective communication with customers and interested parties, which predominate in the context of a balancing of interests. The legal basis for the processing is therefore Art. 6 para. 1 lit. f) GDPR.
The legal basis for the collection and processing of data is your consent within the meaning of Art. 6 para. 1 lit. a) GDPR, which you may have given or give to Facebook when accessing the website there. You can revoke your consent to data processing at any time with effect for the future; to do so, please contact Facebook directly. The withdrawal of consent does not affect the lawfulness of the data processing carried out prior to the withdrawal.
For detailed information on the processing and use of data by the providers on their pages as well as a contact option and your rights in this regard and setting options to protect your privacy, in particular opt-out options, please refer to Facebook’s data protection information: https://www.facebook.com/about/privacy/.
You can find the opt-out option as follows: https://www.facebook.com/settings?tab=ads.
Data processing is carried out on the basis of an agreement between jointly responsible parties in accordance with Art. 26 GDPR, which you can view here: https://www.facebook.com/legal/terms/page_controller_addendum.
As there is no adequacy decision by the EU Commission for the transfer of personal data to the USA, we have concluded standard data protection clauses with Facebook within the meaning of Art. 46 para. 2 lit. c GDPR.
c) Instagram
The social network Instagram is operated by Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA, or if you have your registered office or place of residence in the EU, Facebook Ireland Ltd, 4 Grand Canal Square, Dublin 2, Ireland (“Facebook”).
When you visit our online presence on social media, your data may be automatically collected and stored for market research and advertising purposes. This data is used to create so-called user profiles using pseudonyms. These can be used, for example, to place advertisements within and outside the platforms that presumably correspond to your interests.
Cookies are generally used on your end device for this purpose. The function of cookies is explained in our privacy policy, so please refer to the relevant information there. The user’s browsing behavior and interests are stored in these cookies.
This serves to safeguard our legitimate interests in an optimized presentation of our services and offers as well as effective communication with customers and interested parties, which predominate in the context of a balancing of interests. The legal basis for processing is therefore Art. 6 para. 1 lit. f) GDPR.
The legal basis for the collection and processing of data is your consent within the meaning of Art. 6 para. 1 lit. a) GDPR, which you may have given or give to Facebook when accessing the website there.
You can withdraw your consent to data processing at any time with effect for the future; to do so, please contact Facebook directly. The withdrawal of consent does not affect the lawfulness of data processing carried out before the withdrawal.
For detailed information on the processing and use of data by the providers on their pages as well as a contact option and your rights in this regard and setting options to protect your privacy, in particular opt-out options, please refer to the Instagram service’s privacy policy: https://help.instagram.com/519522125107875.
You can find the opt-out option in the privacy settings of your Instagram account at: https://www.instagram.com/accounts/login/?next=/accounts/privacy_and_security/.
Furthermore, we have concluded standard data protection clauses with Facebook for the transfer of data to the USA within the meaning of Art. 46 para. 2 lit. c) GDPR.
Facebook Pixel / Facebook Custom Audience
This website uses the visitor action pixel from Meta to measure conversions. The provider of this service is Meta Platforms, Inc, 1 Hacker Way, Menlo Park, CA 94025, USA, or, if you have your registered office or place of residence in the EU, Facebook Ireland Ltd, 4 Grand Canal Square, Dublin 2, Ireland (“Facebook”). However, according to Meta, the data collected is also transferred to the USA and other third countries.
With the help of the Facebook pixel, it is meta possible to determine the visitors of our online offer as a target group for the display of ads (so-called “Facebook ads”). Accordingly, we use the Facebook pixel to display the Facebook ads placed by us only to those Facebook users who have also shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to Facebook (so-called “custom audiences”).
Furthermore, with the help of the Facebook pixel, we want to ensure that our Facebook ads correspond to the potential interest of users and are not annoying. This allows us to further evaluate the effectiveness of Facebook ads for statistical and market research purposes by tracking whether users were redirected to our website after clicking on a Facebook ad (so-called “conversion”).
When you purchase a product on our website, the Facebook pixel is triggered and your actions on our website are stored in one or more cookies. These cookies enable Facebook to match your user data (customer data such as IP address, user ID) with the data of your Facebook account. Facebook then deletes this data again.
The data collected is anonymous to us, so it does not allow us to draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Meta can use the data for its own advertising purposes in accordance with the Facebook Data Usage Policy(https://www.facebook.com/about/privacy/). The data can enable Meta and its partners to place advertisements on and off Facebook.
The following data is collected through the use of the service:
- Viewed advertisements
- Respected content
- Device information
- Geographical location
- HTTP header
- Interactions with advertising, services and products
- IP address
- Clicked elements
- Marketing information
- Visited pages
- Pixel ID
- Referrer URL
- Usage data
- User behavior
- Facebook cookie information
- Facebook user ID
- Usage/click behavior
- Browser information
- Device operating system
- Device ID
- User Agent
- Browser type
The legal basis for the use of Facebook Pixel is your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, insofar as you give us your consent to this when you first access the site. You can revoke this consent to cookies at any time with effect for the future here.
The information generated by Meta is usually transmitted to a Meta server and stored there; it may also be transmitted to the servers of Meta Inc. in the USA. The Facebook server is informed which of our web pages you have visited. Facebook assigns this information to your personal Facebook user account.
For data transfers to the USA, the provider has signed up to the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.
Further details can be found at: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.
If you do not want Facebook to assign the information collected directly to your Facebook user account, you can deactivate the remarketing function “Custom Audiences” at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you must be logged in to Facebook.
You can also deactivate cookies that are used for reach measurement and advertising purposes via the following websites:
- https://optout.networkadvertising.org/?c=1
- https://optout.aboutads.info/?c=2&lang=EN
- https://www.youronlinechoices.com/uk/your-ad-choices
We would like to point out that this setting will also be deleted if you delete your cookies.
Further information on the collection and use of data by Facebook, your rights in this regard and options for protecting your privacy can be found in Facebook’s privacy policy at https://www.facebook.com/about/privacy/.
Your rights and assertion of rights
You are entitled to the rights listed below. You can assert these rights against us. To assert your rights, please use the above data or contact us by email at: datenschutz@hotel-rebhan.de.
Right to information
You have a right to information about whether we process personal data about you, for what purposes we process the data, what categories of personal data about you we process, to whom the data may have been forwarded, how long the data may be stored and what rights you are entitled to.
Right to rectification of data
You have the right to have inaccurate personal data concerning you that is stored by us corrected. You also have the right to have an incomplete data record stored by us completed by us.
Deletion
You may request that we erase the personal data concerning you if (1) the data has been processed unlawfully, (2) the purpose for which the data was collected has been fulfilled, (3) you have withdrawn your consent to data processing and there is no other legal basis for the processing, (4) we are subject to a legal obligation to erase the data, (5) you are under 16 years of age or (6) you have objected to the processing and there are no overriding legitimate grounds for the processing on our part.
Right to restriction of processing
You can request that we restrict processing in the following cases. In these cases, we will block the data and not process it any further. (1) If you dispute the accuracy of the personal data for the duration of our review. (2) If you have requested erasure and we are unable or not permitted to erase the data. (3) If you need the data for the assertion of claims, but we would be obliged to erase it because the purpose of the processing has been fulfilled. (4) If you have objected to the processing and no final decision has yet been made.
Right to data portability
You have the right to request data that you have provided yourself within the scope of a contract or on the basis of consent and that is processed automatically from us in a common machine-readable format (data record).
Revocation of a given consent
If you have given us your consent to the processing of personal data, you can withdraw your consent at any time. Please send your revocation to the data given above or by e-mail to: datenschutz@hotel-rebhan.de.
Right of appeal to the data protection supervisory authority
You have the right to lodge a data protection complaint with the supervisory authorities. The supervisory authority responsible for us is the Bavarian State Office for Data Protection Supervision. The complaint can be lodged with any supervisory authority, regardless of jurisdiction.
Right of objection
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions.
The controller will no longer process the personal data concerning you unless the controller demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.
If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing.
If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.
Notwithstanding Directive 2002/58/EC, you have the option of exercising your right to object in connection with the use of information society services by means of automated procedures using technical specifications.
Changes to this privacy policy
We reserve the right to amend this privacy policy at any time in compliance with the applicable data protection regulations. We will publish the changes here.
The current status is September 2022.