IMPRINT & GDPR

Privacy Policy

Personal data (hereinafter generally referred to as "data") is processed by us only to the extent necessary and for the purpose of providing a functional and user-friendly website, including its content and the services offered there.

According to Article 4, Paragraph 1 of Regulation (EU) 2016/679, the General Data Protection Regulation (hereinafter referred to as "GDPR"), "processing" means any operation or set of operations performed with or without the help of automated processes in connection with personal data, such as collecting, recording, organizing, structuring, storing, adapting or altering, retrieving, consulting, using, disclosing by transmission, dissemination or otherwise making available, aligning or combining, restricting, deleting or destroying.

With this privacy policy, we inform you, in particular, about the nature, scope, purpose, duration, and legal basis of the processing of personal data, provided that we either alone or jointly with others decide on the purposes and means of processing. Furthermore, we inform you about third-party components used by us for optimization purposes and to enhance usability, insofar as these third parties process data on their own responsibility.

Our privacy policy is structured as follows:

I. Information about us as the data controller
II. Rights of users and data subjects
III. Information on data processing

I. Information about us as the data controller

The data controller for this website in terms of data protection law is:

Hotel Fritz
Enscheder Straße 59
48599 Gronau
Germany

Phone: +49 2562 817056
Email: info@hotel-fritz.com

The data protection officer at the provider is:

Erik Diepenmaat 

II. Rights of users and data subjects

Regarding the data processing described below, users and data subjects have the right to:

• Confirmation as to whether data concerning them is being processed, information about the processed data, further information about the data processing, and copies of the data (see also Article 15 GDPR);
• Rectification or completion of incorrect or incomplete data (see also Article 16 GDPR);
• Immediate deletion of data concerning them (see also Article 17 GDPR), or, alternatively, if further processing is required under Article 17, Paragraph 3 GDPR, restriction of processing in accordance with Article 18 GDPR;
• Receive the data concerning them and provided by them, and request transmission of these data to other providers/controllers (see also Article 20 GDPR);
• File a complaint with the supervisory authority if they believe that their data is being processed by the provider in violation of data protection regulations (see also Article 77 GDPR).

Furthermore, the provider is obliged to inform all recipients to whom data has been disclosed by the provider about any rectification or deletion of data or restriction of processing carried out in accordance with Articles 16, 17, Paragraph 1, 18 GDPR. However, this obligation does not exist if the notification is impossible or involves a disproportionate effort. Notwithstanding this, the user has the right to be informed about these recipients.

Users and data subjects also have the right under Article 21 GDPR to object to the future processing of their data if the data is processed by the provider in accordance with Article 6, Paragraph 1, lit. f) GDPR. In particular, an objection to data processing for direct marketing purposes is permissible.

III. Information on data processing

Your data processed when using our website will be deleted or blocked as soon as the purpose of storage ceases to apply, there are no statutory retention obligations opposing deletion of the data, and unless otherwise stated for specific processing procedures below.

Cookies

Newsletter

If you sign up for our free newsletter, the data you provide for this purpose, including your email address and optionally your name and address, will be transmitted to us. At the same time, we store the IP address of the internet connection from which you access our website, as well as the date and time of your registration. During the further registration process, we will obtain your consent to receive the newsletter, specifically describe the content, and refer to this privacy policy. The data collected in this context will be used exclusively for sending the newsletter and will not be passed on to third parties.

The legal basis for this is Article 6, Paragraph 1, lit. a) GDPR.

You can revoke your consent to receive the newsletter at any time with future effect according to Article 7, Paragraph 3 GDPR. To do this, you only need to notify us of your revocation or use the unsubscribe link included in each newsletter.

Contact Inquiries / Contact Possibilities

If you contact us via contact form or email, the data you provide will be used to process your request. Providing this data is necessary for processing and answering your request – without it, we cannot process or may only be able to partially process your request.

The legal basis for this processing is Article 6, Paragraph 1, lit. b) GDPR.

Your data will be deleted once your request has been conclusively answered and there are no legal retention obligations opposing deletion, such as in the case of subsequent contract processing.

YouTube

We maintain an online presence on YouTube to present our company and services and to communicate with customers/interested parties. YouTube is a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA.

We point out that there is a possibility that user data may be processed outside the European Union, particularly in the USA. This may pose increased risks for users, such as making later access to user data more difficult. We also do not have access to this user data. Access is solely with YouTube. Google LLC is certified under the Privacy Shield and has committed to adhering to European data protection standards.

https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

You can find YouTube's privacy information at:

https://policies.google.com/privacy

Facebook

To promote our products and services and to communicate with interested parties or customers, we operate a company presence on the Facebook platform.

On this social media platform, we are jointly responsible with Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

The data protection officer of Facebook can be reached via a contact form:

https://www.facebook.com/help/contact/540977946302970

We have regulated our joint responsibility in an agreement regarding the respective obligations under the GDPR. This agreement, which outlines the mutual obligations, can be accessed at the following link:

https://www.facebook.com/legal/terms/page_controller_addendum

The legal basis for the processing of personal data that occurs as described below is Article 6, Paragraph 1, lit. f) GDPR. Our legitimate interest lies in the analysis, communication, and marketing of our products and services.

The legal basis may also be a user's consent according to Article 6, Paragraph 1, lit. a) GDPR with respect to the platform operator. Users can withdraw their consent at any time for the future by notifying the platform operator according to Article 7, Paragraph 3 GDPR.

When accessing our online presence on the Facebook platform, data of the user (e.g., personal information, IP address, etc.) is processed by Facebook Ireland Ltd. as the operator of the platform in the EU.

This user data serves as statistical information about the use of our company presence on Facebook. Facebook Ireland Ltd. uses this data for market research and advertising purposes as well as to create user profiles. Based on these profiles, Facebook Ireland Ltd. can, for example, target users with interest-based advertising within and outside of Facebook. If the user is logged into their Facebook account at the time of access, Facebook Ireland Ltd. can also link the data to the respective user account.

In the event of contact from the user via Facebook, the personal data entered on this occasion will be used to process the request. The user data will be deleted once the user's request has been conclusively answered and there are no legal retention obligations, such as in the case of subsequent contract processing.

Facebook Ireland Ltd. may also set cookies for data processing.

If the user does not agree with this processing, there is the option to prevent the installation of cookies by adjusting the browser settings. Cookies already stored can also be deleted at any time. The settings for this depend on the respective browser. For Flash cookies, processing cannot be prevented through browser settings but through the appropriate settings in the Flash player. If the user prevents or restricts the installation of cookies, this may result in certain Facebook functions not being fully usable.

 

More details on processing activities, preventing them, and deleting data processed by Facebook can be found in Facebook's data policy:

https://www.facebook.com/privacy/explanation

It is not excluded that processing by Facebook Ireland Ltd. may also be carried out through Facebook Inc., 1601 Willow Road, Menlo Park, California 94025 in the USA.

Facebook Inc. has submitted to the "EU-US Privacy Shield" and thereby declares its compliance with EU data protection requirements in processing data in the USA.

https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active

Instagram

To promote our products and services and to communicate with interested parties or customers, we operate a company presence on the Instagram platform.

On this social media platform, we are jointly responsible with Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

The data protection officer for Instagram can be reached via a contact form:

https://www.facebook.com/help/contact/540977946302970

We have regulated our joint responsibility in an agreement concerning our respective obligations under the GDPR. This agreement, which outlines the mutual obligations, can be accessed at the following link:

https://www.facebook.com/legal/terms/page_controller_addendum

The legal basis for the processing of personal data described below is Article 6, Paragraph 1, lit. f) GDPR. Our legitimate interest lies in analyzing, communicating, and marketing our products and services.

The legal basis may also be a user's consent according to Article 6, Paragraph 1, lit. a) GDPR with respect to the platform operator. Users can withdraw their consent at any time for the future by notifying the platform operator in accordance with Article 7, Paragraph 3 GDPR.

When accessing our online presence on the Instagram platform, user data (e.g., personal information, IP address, etc.) is processed by Facebook Ireland Ltd. as the platform operator in the EU.

This user data serves as statistical information about the use of our company presence on Instagram. Facebook Ireland Ltd. uses this data for market research and advertising purposes, as well as to create user profiles. Based on these profiles, Facebook Ireland Ltd. can, for example, target users with interest-based advertising within and outside Instagram. If the user is logged into their Instagram account at the time of access, Facebook Ireland Ltd. can also link the data to the respective user account.

In the event of contact from the user via Instagram, the personal data entered on this occasion will be used to process the request. The user data will be deleted once the user's request has been conclusively answered and there are no legal retention obligations, such as in the case of subsequent contract processing.

Facebook Ireland Ltd. may also set cookies for data processing.

If the user does not agree with this processing, there is the option to prevent the installation of cookies by adjusting the browser settings. Cookies already stored can also be deleted at any time. The settings for this depend on the respective browser. For Flash cookies, processing cannot be prevented through browser settings but through the appropriate settings in the Flash player. If the user prevents or restricts the installation of cookies, this may result in certain Facebook functions not being fully usable.

More details on processing activities, preventing them, and deleting data processed by Instagram can be found in Instagram's data policy:

https://help.instagram.com/519522125107875

It is not excluded that processing by Facebook Ireland Ltd. may also be carried out through Facebook Inc., 1601 Willow Road, Menlo Park, California 94025 in the USA.

Facebook Inc. has submitted to the "EU-US Privacy Shield" and thereby declares its compliance with EU data protection requirements in processing data in the USA.

https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active

Social Media Links via Graphics or Text Links

We also promote our presence on the social networks listed below on our website. Integration is done via a linked graphic of the respective network. By using this linked graphic, it is prevented that, when accessing a website with a social media advertisement, an automatic connection to the server of the respective social network is established to display a graphic of the network. Only by clicking on the respective graphic will the user be redirected to the service of the respective social network.

After redirection, the respective network will collect information about the user. It cannot be excluded that the collected data may be processed in the USA.

Initially, this data includes IP address, date, time, and visited page. If the user is logged into their account on the respective network during this time, the network operator may be able to associate the collected information with the user's personal account. If the user interacts using a "Share" button on the respective network, this information may be stored and possibly published in the user's personal account. If the user wants to prevent the collected information from being directly associated with their personal account, they must log out before clicking the graphic. Additionally, there is the option to configure the respective user account accordingly.

The following social networks are linked on our page:

Facebook

Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, a subsidiary of Facebook Inc., 1601 S. California Ave., Palo Alto, CA 94304, USA.

Privacy Policy: https://www.facebook.com/policy.php

EU-US Privacy Shield Certification: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active

YouTube

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA

Privacy Policy: https://policies.google.com/privacy

EU-US Privacy Shield Certification: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

LinkedIn

LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, a subsidiary of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085 USA.

Privacy Policy: https://www.linkedin.com/legal/privacy-policy

EU-US Privacy Shield Certification: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active

Google Maps

On our website, we use Google Maps to display our location and provide directions. This is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google."

Through certification under the EU-US Privacy Shield:

https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

Google guarantees that the data protection requirements of the EU are also adhered to when processing data in the USA.

To enable the display of certain fonts on our website, a connection to Google's server in the USA is established when our website is accessed.

If you access the Google Maps component embedded in our website, Google will store a cookie on your device via your web browser. To display our location and provide directions, your user settings and data are processed. We cannot exclude the possibility that Google uses servers in the USA for this purpose.

The legal basis is Article 6, Paragraph 1, lit. f) GDPR. Our legitimate interest is in optimizing the functionality of our website.

Through the connection established to Google, Google can determine which website your request was sent from and to which IP address the directions should be transmitted.

If you do not agree with this processing, you have the option to prevent the installation of cookies by adjusting the settings in your web browser. Details on this can be found above under the "Cookies" section.

Additionally, the use of Google Maps and the information obtained through Google Maps is subject to the Google Terms of Service https://policies.google.com/terms?gl=DE&hl=de and the Google Maps Business Terms https://www.google.com/intl/de_de/help/terms_maps.html.

Furthermore, Google offers additional information at:

https://adssettings.google.com/authenticated

https://policies.google.com/privacy

Google Fonts

On our website, we use Google Fonts to display external fonts. This is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google."

Through certification under the EU-US Privacy Shield:

https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

Google guarantees that the data protection requirements of the EU are also adhered to when processing data in the USA.

To enable the display of certain fonts on our website, a connection to Google's server in the USA is established when our website is accessed.

The legal basis is Article 6, Paragraph 1, lit. f) GDPR. Our legitimate interest is in optimizing and economically operating our website.

Through the connection established to Google when accessing our website, Google can determine which website your request was sent from and to which IP address the font display should be transmitted.

Google offers additional information at:

https://adssettings.google.com/authenticated

https://policies.google.com/privacy

including information on how to prevent data usage.

OpenStreetMap

For directions, we use OpenStreetMap, a service provided by the OpenStreetMap Foundation, St John’s Innovation Centre, Cowley Road, Cambridge, CB 4 0 WS, United Kingdom, hereinafter referred to as "OpenStreetMap."

When accessing one of our web pages that incorporates the OpenStreetMap service, a cookie is stored on your device via your internet browser by OpenStreetMap. This cookie processes your user settings and data for the purpose of displaying the page and ensuring the functionality of the OpenStreetMap service. Through this processing, OpenStreetMap can determine which website your request was sent from and to which IP address the route display should be transmitted.

The legal basis is Article 6, Paragraph 1, lit. f) GDPR. Our legitimate interest lies in optimizing and economically operating our website.

If you do not agree with this processing, you can prevent the installation of cookies by adjusting the settings in your internet browser. Details on this can be found above under the "Cookies" section.

OpenStreetMap provides further information on data collection and usage, as well as your rights and options to protect your privacy at:

https://wiki.osmfoundation.org/wiki/Privacy_Policy

Cookiebot

As a "cookie banner," we use "Cookiebot." "Cookiebot" is a product of Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark, hereinafter referred to as "Cybot."

With the "Cookiebot" function, we inform users about the use of cookies on the website and allow them to make a decision about their use.

If the user consents to the use of cookies, the following data is automatically logged by Cybot:

• The anonymized IP address of the user;
• Date and time of consent;
• User agent of the end-user's browser;
• URL of the provider;
• An anonymous, random, and encrypted key.
• The user's accepted cookies (cookie status), which serves as proof of consent.

The encrypted key and cookie status are stored on the user's device using a cookie to maintain the corresponding cookie status for future page views. This cookie automatically deletes itself after 12 months.

The legal basis is Article 6, Paragraph 1, lit. f GDPR. Our legitimate interest lies in the user-friendliness of the website as well as in complying with the legal requirements of the GDPR.

Users can prevent or terminate the installation of cookies and thus their cookie consent at any time by adjusting their browser settings.

For more information on data protection, Cybot provides additional details at:

https://www.cookiebot.com/de/privacy-policy/

Sample Privacy Policy by Law Firm Weiß & Partner

Images

Sven Bollacke