Privacy policy
according to article 13 DSGVO
Thank you for your interest in our website. The trust of all visitors and customers, the security of your data and the protection of your privacy are of central importance to us.
Your personal data will therefore be treated by us in accordance with the applicable legal data protection regulations and this data protection declaration. Personal data is information that can be used to discover your identity. Typical personal data includes your surname, first name, address, telephone number, IP address, cookies and e-mail address.
When you view and use our website or otherwise explicitly submit information to us, we process the data that is automatically transmitted to us with each request from your browser (see the section “Log data”). If you voluntarily provide us with personal data, the processing is solely for the purpose of the enquiry or the respective order. We would like to point out that data transmission on the Internet can never be completely protected against access by third parties.
In the following, we would like to explain to you in more detail in the individual sections which data we process when and for what purpose. It will be explained how our offered services work and how the protection of your personal data is guaranteed.
Name and address of the person(s) responsible:
The responsible person within the meaning of the EU General Data Protection Regulation and other data protection regulations is:
IBZ St. Marienthal Betriebs GmbH
St. Marienthal 10
02899 Ostritz
E-mail: info@ibz-marienthal.de
Legal basis for the processing of personal data
As a provider, we may only process personal data of website visitors if one of the conditions explained below exists as a legal basis:
If we obtain the consent of the data subject for processing processes of personal data, Art. 6 (1) lit. a DSGVO serves as the legal basis.
For the processing of personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.
If processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 (1) c DSGVO serves as the legal basis.
In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Art. 6 (1) (d) DSGVO serves as the legal basis.
If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 (1) lit. f DSGVO serves as the legal basis for the data processing.
Data deletion and storage period
The personal data of the data subject will be deleted as soon as the purpose of the storage ceases to apply.
Storage may take place beyond this if this has been provided for by European or national laws or other regulations to which the person responsible is subject.
Data will also be blocked or deleted if a storage period prescribed by the aforementioned regulations expires, unless there is a need to continue storing the data for the conclusion or performance of a contract.
Contacting
When contacting us (e.g. by contact form, e-mail, telephone or via social media), your data will be processed for the purpose of handling the contact request and its processing pursuant to Art. 6 (1) lit. b) DSGVO (so-called pre-contractual measure).
We delete the enquiries if they are no longer necessary. We review this necessity every two years. Furthermore, the legal archiving obligations apply.
Legal basis
The legal basis for the processing of this data is so-called pre-contractual measures according to Art. 6 para. 1 lit. b DSGVO
Protocol data
The provider of the Internet services (provider) automatically collects “protocol data” in server log files.
The protocol data includes the following information:
- Date and time of the respective request
- Internet address (URL) that was requested
- URL that the visitor visited immediately before (referrer)
- Browser and language used
- Operating system used
- IP address and host name of the visitor
- Access status / http status code
- Amount of data transferred in each case
The transmission of this data to us is automatic and this data cannot be assigned to your person with a reasonable effort.
Legal basis
The legal basis for processing this data is our legitimate interest pursuant to Art. 6 (1) sentence 1 lit. f DSGVO.
The logging serves to control access and monitor the technical processes and their optimisation. In addition, this data is used in accordance with § 76 BDSG to check the processing procedures under data protection aspects.
The data is not passed on to third parties, except to law enforcement authorities following a court order in the event of an incident.
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected or after the legally specified deletion period has been reached.
Consequently, the user has no right of objection.
Your rights
You have the right to free information about your personal data stored by us and, if applicable, the right to correction, restriction of processing or deletion of this data. You also have the right to data portability. Finally, you also have the right to complain about the processing of your personal data by us to the data protection supervisory authority.
Right of objection
We would also like to point out that you may object to the future processing of your personal data in accordance with the legal requirements pursuant to Art. 21 DSGVO at any time. In particular, you may object to processing for direct marketing purposes.
Right to information
If you have any questions regarding the collection, processing or use of your personal data, for information, for the correction, blocking or deletion of data, as well as for the revocation of any consent given or for objection to a specific use of data, please contact us using the following e-mail address:
info@ibz-marienthal.de
Encryption by SSL / TLS
For security reasons, our website uses SSL or TLS encryption. This protects transmitted data and prevents it from being read by third parties. You can recognise successful encryption by the fact that the protocol name in the status bar of the browser changes from “http://” to “https://” and that a closed lock symbol is visible there.
Linking
This website may contain links to websites operated by other companies, including, for example, websites of social media channels.
If you follow such links you may encounter cookies which are outside our control. We cannot accept any liability for this and we refer you to the data protection provisions or cookie guidelines of the respective websites.
Web hosting via all-inkl
We use the services of ALL-INKL.COM – Neue Medien Münnich, Hauptstraße 68, D-02742 Friedersdorf for web hosting for our websites and have concluded an order processing contract with all-inkl.com in accordance with Art. 28 DSGVO.
For further information, please refer to the privacy policy of all-inkl. at https://all-inkl.com/datenschutzinformationen.
Legal basis
The legal basis for the processing of this data is our legitimate interest in operating and maintaining the operational security of these websites in accordance with Art. 6 (1) lit. f DSGVO.
Google Web Fonts
We use Google web fonts. All fonts are loaded locally.
When using Google Web Fonts, no personal data is forwarded to third parties.
vioma Booking
In order to offer you the enquiry and booking process as conveniently and efficiently as possible, we use products from vioma GmbH, Industriestraße 27, 77656 Offenburg, Germany.
When you make a booking enquiry or online booking via our website, the following personal data is transmitted to us.
- Room requirement
- Number of adults
- Number of children
- Arrival; departure dates
- Alternative date of travel, if applicable
- First name, last name
- Telephone number
- E-mail address
- Address
The data you send us will remain with us until the purpose for storing the data no longer applies (e.g. after your request has been processed).
Mandatory legal provisions – in particular legal retention periods – remain unaffected. To protect your data, we have concluded an order processing contract with Hotjar in accordance with Art. 28 DSGVO.
You can find further information under the following link: https://www.vioma.de/de/company/datenschutzhinweise/.
Legal basis
The processing of your data for online booking and online booking request is based on Art. 6 para. 1 lit. b DSGVO and serves the fulfilment of a contract or the implementation of pre-contractual measures.
WCP OpenWeather
In order to inform our visitors and interested parties about the current weather situation, we use the plugin WCP OpenWeather, developed by webcodin. OpenWeather is a weather data service provided by Openweather Ltd, 17th floor, 1 Ropemaker Street, City Point, London, EC2Y 9ST United Kingdom.
For more information on how the data is processed, please visit https://openweather.co.uk/privacy-policy.
Legal basis
The legal basis for this processing of data is our legitimate interest pursuant to Art. 6 Para. 1 lit. f DSGVO in order to be able to offer you an attractive, up-to-date service.
Web analysis with Matomo
Matomo is used on this website to analyse and statistically evaluate user behaviour anonymously with the help of cookies. The provider of this service is Innocraft Ltd, 150 Willis St, 6011 Wellington, New Zealand. In the course of processing the data, the IP addresses of the users are anonymised. The data is stored on our servers and is not passed on to third parties.
Further information can be found in MATOMO’s data protection declaration at https://matomo.org/privacy/.
Legal basis
for this processing of the data is Art. 6 para. 1 lit. f DSGVO.