Privacy policy

Thank you for visiting our website and for your interest in our company. We understand data protection as a customer-oriented quality feature. The protection of your personal data and the protection of your personal rights are important to us. With this data protection declaration we would like to inform all visitors to our website transparently about the type, scope and purpose of the personal data collected, used and processed by us and inform you about your rights.

Our website can generally be used without providing personal data. However, if you use our company’s services via our website, it may be necessary to process your personal data. The data automatically collected when you visit our website or the personal data you enter when using services are processed in accordance with the current legal provisions for the protection of personal data.

If it is necessary to process your personal data and there is no legal basis for such processing, we generally obtain consent for the required processing purpose. As the company responsible for processing, we have defined technical and organizational measures to ensure the highest possible level of protection for your personal data. However, we would like to point out that data transmission via the World Wide Web can generally have security gaps. If you would like to use the services of our company and do not want to use the data transmission via the World Wide Web, you can also contact us by telephone.

1. Contact details of the person responsible for processing

The person responsible within the meaning of the General Data Protection Regulation is:
Company: Hotel Restaurant Jägersteig
Street: Kappelwindeckstraße 95a
ZIP / City: 77815 Bühl
Tel .: 07223/98590
Email: leppert@jaegersteig.de

The appointed data protection officer is: Mr. Leppert

2. Collection of general access information

Each time you visit our website, server log file information that your browser transmits to us is automatically recorded. These are:
1. IP address (Internet protocol address) of the accessing computer
2. the website from which you are visiting us (referrer)
3. the website that you visit with us
4. the date and duration of the visit
5. Browser type and browser settings
6. Operating system
We would like to point out that this data cannot be assigned to a specific person. We use this technical access information exclusively for the following purposes:
1. To improve the attractiveness and usability of our website,
2. To identify technical problems on our website at an early stage.
3. to correctly deliver the content of our website,
4. and to provide law enforcement authorities with the information necessary for law enforcement in the event of a cyber attack.
As a technical precaution, this data is stored for a maximum of 7 days to protect the data processing systems against unauthorized access.

3. Collection and disclosure of personal data

We only use your personal data for the purposes stated on this information page on data protection.
The following input masks exist on our website for the collection of personal data:

3.1 Contact fields on our website
3.2.1 Contact by email or contact form
On our website, we offer you the option of contacting us by email and / or using a contact form. If you contact us by email or using a contact form, the personal data you have transmitted will be saved automatically. Such personal data that you provide to us on a voluntary basis will be stored for the purpose of processing your request or contacting the person concerned. This personal data is not passed on to third parties. If you have ticked our newsletter, you will also receive it at the specified email address.

4. Cookies

In order to optimize our website for you and to be able to continuously improve it, we use cookies. We use this exclusively for our marketing and for statistics.

Cookies are text files that are stored and stored on a computer system via an internet browser. Numerous websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier for the cookie. It consists of a string of characters through which websites and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables the websites and servers visited to distinguish the individual browser of the person concerned from other Internet browsers that contain other cookies. A specific internet browser can be recognized and identified via the unique cookie ID. By using cookies, we can provide the users of this website with more user-friendly services that would not be possible without the cookie setting.

Using a cookie, the information and offers on our website can be optimized in the interests of the user. As already mentioned, cookies enable us to recognize the users of our website. The purpose of this recognition is to make it easier for users to use our website. For example, the user of a website that uses cookies does not have to re-enter their access data every time they visit the website, because this is done by the website and the cookie stored on the user’s computer system. Another example is the cookie of a shopping cart in the online shop. The online shop uses a cookie to remember the items that a customer has placed in the virtual shopping cart.

The person concerned can prevent the setting of cookies by our website at any time by means of a corresponding setting in the Internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common internet browsers. If the person concerned deactivates the setting of cookies in the internet browser used, not all functions of our website may be fully usable.

5. Implementation and use of tracking, analysis tools and social plugins

In order to optimize our website for you and to be able to continuously improve it, we use web analysis tools (Google Analytics). We use this exclusively for our marketing and for statistics. “How Google uses data when using our partners’ websites and apps.”
Reference to this: https://policies.google.com/technologies/partner-sites?hl=de

6. Deletion, blocking and duration of storage of personal data

We process and store your personal data only for the period that is necessary to achieve the respective storage purpose or as stipulated by the various retention periods provided by law. After a storage purpose has ceased to exist or the retention period provided by law has expired, the personal data will be routinely blocked or deleted for further processing in accordance with the statutory provisions.

7. Data subject’s data protection rights

If you have any questions about your personal data, you can contact us in writing at any time. According to the GDPR, you have the following rights:

7.1 The right to information (sub-item Art. 15 GDPR)
You have the right to receive information at any time about which categories and information about your personal data are processed by us for what purpose and how long and according to what criteria this data is stored and whether automated decision-making including profiling is used in this context. You also have the right to know which recipients or categories of recipients your data have been disclosed or are still being disclosed; especially for recipients in third countries or international organizations. In this case, you also have the right to be informed about suitable guarantees in connection with the transfer of your personal data.
In addition to the right to complain to the supervisory authority and the right to information about the origin of your data, you have the right to deletion, correction and the right to restrict or object to the processing of your personal data.
In all of the above cases, you have the right to request a free copy of your personal data that we process from the data processor. We are entitled to charge an appropriate administration fee for all further copies that you request or that go beyond the data subject’s right to information.

7.2 The right to correction (Art. 16 GDPR)
You have the right to request the immediate correction of your incorrect personal data and, taking into account the purposes of the processing, to request the completion of incomplete personal data, including by means of a supplementary declaration. If you would like to exercise your right to correction, you can contact our data protection officer or the person responsible for processing at any time.

7.3 The right to erasure (Art. 17 GDPR)
You have the right to request the immediate deletion of your data (“right to be forgotten”), in particular if the storage of the data is no longer necessary, you revoke your consent to data processing, your data has been unlawfully processed or unlawfully collected and a There is a legal obligation to delete under EU or national law. However, the right to be forgotten does not apply if there is an overriding right to freedom of expression or freedom of information, data storage is necessary for the fulfillment of a legal obligation (e.g. retention obligations), archiving purposes prevent deletion or storage for assertion, Serves to exercise or defend legal claims.

7.4 The right to restriction (Art. 18 GDPR)
You have the right to request that the controller restrict the processing of your data if you dispute the accuracy of the data, if the processing is unlawful, if you refuse to delete your personal data and instead request a restriction on processing if the requirement for the processing purpose does not apply or you have objected to the processing in accordance with Article 21 paragraph 1, as long as it has not yet been determined whether legitimate reasons on our part outweigh yours.

7.5 The right to data portability (Art. 20 GDPR)
You have the right to the portability of your personal data, which you have provided to our company in the form of a common format, so that you can have your personal data forwarded to another person responsible without hindrance, provided that you have given your consent and the processing by means of an automated Procedure takes place.

7.6 The right to object (Art. 21 GDPR)
You have the right to object at any time to the collection, processing or use of your personal data for purposes of direct advertising or market and opinion research as well as general business data processing, unless we can prove compelling reasons worthy of protection for the processing that are yours Interests, rights and freedoms predominate.
In addition, you cannot exercise your right to object if a legal provision provides for the collection, processing or use of the data or if it obliges you to collect, process or use it.

7.7 Right to lodge a complaint with the data protection supervisory authority (Art. 77 GDPR in conjunction with Section 19 BDSG)
You are granted the right to complain to the competent supervisory authority if you are of the opinion that there has been a violation in the processing of your personal data.

7.8 Right to withdraw consent under data protection law (Art. 7 Para. 3 GDPR)
You can revoke your consent to the processing of your personal data at any time and without giving reasons. This also applies to the revocation of declarations of consent that were given to us before the EU General Data Protection Regulation came into force.

8. Legal basis for processing

When processing personal data for which we obtain the consent of the data subject, Article 6, Paragraph 1, Clause 1 a) of the General Data Protection Regulation (GDPR) serves as the legal basis. When processing personal data that are necessary for the performance of a contract to which the data subject is a party, Article 6 Paragraph 1, Clause 1 b) (GDPR) serves as the legal basis. This regulation also includes processing operations that are necessary to carry out pre-contractual measures. Insofar as the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 Paragraph 1, Clause 1 c) (GDPR) serves as the legal basis. If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 (1) sentence 1 f) (GDPR) serves as the legal basis for the processing. The legitimate interest of our company lies in the conduct of our business activities as well as in the analysis, optimization and maintenance of the security of our online offer.

9. Transmission of data to third parties

We generally do not sell or lend user data. A transfer to third parties beyond the scope described in this data protection declaration will only take place if this is necessary to process the respective requested service. We only transmit data if there is a legal obligation to do so. This is the case when state institutions (e.g. law enforcement authorities) request information in writing or a court order is available. A transfer of personal data to so-called third countries outside the EU / EEA area does not take place.

10. Statutory or contractual provisions for the provision of personal data as well as possible consequences of non-provision

We hereby point out that the provision of personal data is required by law in certain cases (e.g. tax regulations) or can result from contractual regulations (e.g. information on the contractual partner). For example, it may be necessary for the conclusion of a contract that the person concerned / the contractual partner must provide their personal data so that we can process their request (e.g. order) at all. There is an obligation to provide personal data, especially when concluding contracts. If no personal data is provided in this case, the contract cannot be concluded with the person concerned. Before the person concerned provides personal data, the person concerned can contact our data protection officer or the person responsible for processing. The data protection officer or the person responsible for processing then informs the data subject whether the provision of the required personal data is required by law or contract or is necessary for the conclusion of the contract and whether the concerns of the data subject result in an obligation to provide the personal data or what consequences a failure to provide the requested data has for the person concerned.

11. Existence of automated decision-making

As a responsible company, we do not use automatic decision-making or profiling in our business relationships.