Privacy policy
Privacy policy
1. data protection at a glance
General information
The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data by which you can be personally identified. For detailed information on the subject of data protection, please refer to our data protection declaration listed below this text.
Data collection on our website
Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. You can find his contact details in the imprint of this website.
Who may use this website?
Anyone who is at least 16 years old may use this website. If you are under 16, you may not use the site. You are also not allowed to order newsletters or book tables / hotel rooms.
How do we collect your data?
On the one hand, your data is collected by you providing it to us. This can be, for example, data that you enter in a contact form.
Other data is collected automatically by our IT systems when you visit the website. This is mainly technical data (e.g. internet browser, operating system or time of page view). This data is collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure error-free provision of the website.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to demand the correction, blocking or deletion of this data. You can contact us at any time at the address given in the imprint for this purpose and for further questions on the subject of data protection. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
2 General notes and mandatory information
Data protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.
When you use this website, various personal data are collected. Personal data is data by which you can be personally identified. This Privacy Policy explains what information we collect and how we use it. It also explains how and for what purpose this is done.
We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
Note on the responsible body
The responsible body for data processing on this website is:
Schindlerhof Kobjoll GmbH
Steinacher Street 6-10
90427 Nuremberg
Telephone: 0911 - 93 02 - 0
Fax: 0911 - 93 02 - 620
E-mail: hotel@schindlerhof.de
Data Protection Officer:
Sven Lünke
Sepire GmbH
At the rock cellar 12
90530 Wendelstein
Phone: +49 (151) 628 48614
Mobile: +49 (151) 628 48614
E-mail: hotel@Schindlerhof.de
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. All you need to do is send us an informal e-mail. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right of appeal to the competent supervisory authority
In the event of violations of data protection law, the person concerned has a right of appeal to the competent supervisory authority. The competent supervisory authority in matters of data protection law is the State Data Protection Commissioner of the federal state in which our company is based. A list of data protection officers and their contact details can be found at the following link:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another person responsible, this will only be done insofar as it is technically feasible.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Information, blocking, deletion
Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of the data processing and, if applicable, the right to correction, blocking or deletion of this data. For this purpose as well as for further questions on the subject of personal data, you can contact us at any time at the address given in the imprint.
Objection to advertising mails
We hereby object to the use of contact data published within the scope of the imprint obligation for the purpose of sending unsolicited advertising and information material. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, for example by spam e-mails.
3. data collection on our website
Cookies
Some of the Internet pages use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognise your browser on your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or generally and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.
Cookies that are required to carry out the electronic communication process or to provide certain functions that you have requested (e.g. shopping cart function) are stored on the basis of Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in storing cookies for the technically error-free and optimised provision of its services. Insofar as other cookies (e.g. cookies to analyse your surfing behaviour) are stored, these are treated separately in this data protection declaration.
Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
This data is not merged with other data sources.
The basis for data processing is Art. 6 para. 1 lit. f DSGVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.
Contact form and other enquiries
If you send us enquiries via the contact form (e.g. for reserving a table, a room or similar), your details from the enquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We do not pass on this data without your consent.
The processing of the data entered in the contact form is therefore based exclusively on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
The data you entered in the contact form will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions - in particular retention periods - remain unaffected.
Registration on this website
You can register on our website in order to use additional functions on the site. We will only use the data entered for this purpose for the purpose of using the respective offer or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise we will reject the registration.
For important changes, for example in the scope of the offer or in the case of technically necessary changes, we will use the e-mail address provided during registration to inform you in this way.
The processing of the data entered during registration is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke your consent at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing already carried out remains unaffected by the revocation.
The data collected during registration will be stored by us for as long as you are registered on our website and will then be deleted. Legal retention periods remain unaffected.
Processing of data (customer and contract data)
We collect, process and use personal data only to the extent that it is necessary for the establishment, content or amendment of the legal relationship (inventory data). This is done on the basis of Art. 6 (1) lit. b DSGVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures. We collect, process and use personal data about the use of our websites (usage data) only insofar as this is necessary to enable the user to use the service or to bill the user.
The collected customer data is deleted after completion of the order or termination of the business relationship. Statutory retention periods remain unaffected.
4. newsletter
Newsletter data
If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. No further data is collected or only on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The processing of the data entered in the newsletter registration form is based exclusively on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the "unsubscribe" link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted after you unsubscribe from the newsletter. Data stored by us for other purposes (e.g. e-mail addresses for the members' area) remain unaffected by this.
5. plugins and tools
Google Web Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.
For this purpose, the browser you use must connect to Google's servers. This informs Google that our website has been accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit. f DSGVO.
If your browser does not support web fonts, a standard font from your computer will be used.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy policy: https://www.google.com/policies/privacy/.
Google Maps
This site uses the map service Google Maps via an API. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission.
Google Maps is used in the interest of an appealing presentation of our online offers and to make it easy to find the places we indicate on the website. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
More information on the handling of user data can be found in Google's privacy policy: https://www.google.de/intl/de/policies/privacy/.
DialogShift chat application on our website
Our website uses the chat application of DialogShift GmbH, Torstr. 201, 10115 Berlin. This application processes and stores data for the purpose of web analysis, operating the chat application and responding to inquiries. To operate the chat function, the chat texts are saved and a cookie with a unique ID is set - this is used to recognize you as a customer. A cookie is a small text file that is stored locally in the cache on your device. With the help of this cookie, our application recognizes the device and can call up past chat logs. This cookie is stored for 90 days since it was last used. You can deactivate the storage of cookies in your browser settings. However, the chat function cannot be executed without the use of cookies. The possible disclosure of e.g. name, e-mail address or a telephone number is voluntary and with the consent to temporarily use and store this data for the purpose of establishing contact until the end of the contact. This personal data will be deleted after 90 days.
The legal basis for data processing is in accordance with Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TTDSG on the basis of your consent.
DialogShift provides further information on the collection and use of data as well as your rights and options for protecting your privacy at https://www.dialogshift.com/datenschutz.
6. online application
This website offers you the opportunity to apply for a job with us. We attach great importance to the protection of the personal data you provide. Therefore, we inform you in the following about the scope, purpose and use of the data collected from you in the context of the application. We assure you that the collection, processing and use of the personal data collected from you will be in accordance with applicable law and all other legal provisions and will be treated in strict confidence.
Scope and purpose of data collection
As part of your application, we will collect the following information in particular:
- Full first and last name
- Contact information (mobile phone number and e-mail)
- Address
- Curriculum vitae and relevant certificates / training certificates
- Other information on qualifications or work experience
The data is collected when you send it to us. This personal data is used exclusively for the processing and implementation of your current application procedure. Your personal data will only be passed on within our company to persons who are involved in processing your application. Beyond this, your personal data will not be passed on to third parties unless you have given us your express consent to do so.
By submitting this data, you also give your consent to the use of your data as described (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time for the future. You have the right to request information about your data stored by us at any time.
If the application is successful, the data you submit will be stored in our data processing systems for the purpose of implementing the employment relationship.
Right of withdrawal
You can revoke your consent regarding the use of data at any time. An informal declaration to us is sufficient for revocation. You can find the contact details in the imprint.
Retention period of the data
If we are unable to make you a job offer, if you reject a job offer or withdraw your application, we reserve the right to retain the data you have submitted for up to 6 months from the end of the application process (rejection or withdrawal of application). After this period, the data will be deleted and the physical application documents destroyed. This storage serves in particular as evidence in the event of a legal dispute (e.g. under the AGG). If it is evident that the data will be required after the 6-month period has expired (e.g. due to an impending or pending legal dispute), the data will not be deleted until it has become irrelevant. Other statutory retention obligations remain unaffected.
Right of information and revocation
You have the right to request information about your data stored by us at any time.
Data security
All data submitted by you will be transmitted in encrypted form (https encryption). Your data will be appropriately secured within our company on the software and hardware side and protected in accordance with the state of the art.
Please also note our general data protection declaration.
Evaluation cards
When you visit our hotel or restaurant or any of our other locations, we give you the opportunity to rate our service. You can do this by filling in the rating cards provided. Only the management and the reception have access to these rating cards.
We use your ratings to continually improve our offers, to make our service more personal and for the purpose of direct advertising. The legal basis for this is Art. 6 para. 1 lit. f DSGVO.
The address given in the evaluation card will be used to send a thank-you letter - or also a letter of apology 😉 - by post (direct advertising); the card and the data contained therein will be anonymised or deleted at the latest one month after handover. Furthermore, you can request the deletion of your personal data yourself at any time.
The provision of information is voluntary. This data will not be processed automatically. This data protection declaration is also on the rating cards themselves.
Status: July 2024