Parkhotel Leipzig Theo Gerlach OHG
represented by Mr Gregor Gerlach
Tel.: +49 (0)341 98 52 0
Fax: +49 (0)341 98 52 750
Data protection officer:
Dr. Jürgen Fechner
Telefon: +49 (0)171 8266933
When you visit our website parkhotelleipzig.de, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is recorded without your intervention, and stored until it is automatically deleted:
The above-mentioned data will be processed by us for the following purposes:
The legal basis for any data processing is Art. 6 Section 1 Sentence 1 f GDPR (General Data Protection Regulation). relating to legitimate interest. Our legitimate interest is based on the purposes listed above for the data collection. Under no circumstances do we use the data collected for the purpose of drawing conclusions about you personally.
If you have expressly consented according to Art. 6 Section 1 Sentence 1 a GDPR, we will use your email address to send you our newsletter on a regular basis. To receive the newsletter it is sufficient to provide an email address.
You can unsubscribe at any time, for example via a link at the end of each newsletter. Alternatively, you are welcome to send your unsubscription request at any time to info(at)parkhotelleipzig.de by email.
If you have any questions, we offer you the opportunity to contact us using the form provided on the website. A valid email address is required so that we know who sent the request and can respond to it. Further information can be provided voluntarily.
The data will be processed for the purpose of contacting us in accordance with Art. 6 Section 1 Sentence 1 a GDPR on the basis of your voluntary consent. If contact is made to carry out pre-contractual measures (e.g. request for an offer), the data will be processed on the basis of Art. 6 Section 1 Sentence 1 b GDPR.
The personal data collected by us for the use of the contact form will be automatically deleted after your request has been processed. If the request concerns business correspondence (receipt of commercial mail – obligation to keep records in accordance with § 257 Section 1 No. 2 Commercial Code, obligation to keep records of commercial and business mail § 147 Section 1 No. 2, Section 3 Tax Code for 6 years).
We use a widget from HOTELCLASS on our website to display the current star category of a hotel. The provider is DEHOGA Deutsche Hotelklassifizierung GmbH, Am Weidendamm 1A, 10117 Berlin, Germany (https://hotelclass.info/imprint.php). Guests thus see upon first glance that a hotel has been officially classified, and complies with the official guidelines of the German Hotel Classification. The protection of personal data is an important concern for us. The use of the HOTELCLASS widget of DEHOGA Deutsche Hotelklassifizierung GmbH is in accordance with the applicable legal provisions governing the protection of personal data and data security. This data protection notice provides you with information on how DEHOGA Deutsche Hotelklassifizierung GmbH handles information that is collected during the use of the HOTELCLASS widget.
Collection and processing of personal data
The use of the HOTELCLASS widget of DEHOGA Deutsche Hotelklassifizierung GmbH is possible without providing personal data. The term “personal data” denotes any information about your identity, such as your name, e-mail address or postal address. Such data is neither collected nor stored when using HOTELCLASS widget.
Server log files
The provider of our website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. The data in the log files include:
This data is not merged with other data sources.
The legal basis for data processing is Art. 6 (1) lit. f GDPR, which permits the processing of data for the optimal presentation and security of the website based on our legitimate interest, without your interests regarding the exclusion of data collection being overridden.
Storage location of the data
This information is usually sent to a server at the following location:
MINDSTREAM – Christian Klar, Maria-Theresien-Straße 21, 6020 Innsbruck, at the Data Center Park Falkenstein, and stored there.
DEHOGA Deutsche Hotelklassifizierung GmbH takes the necessary precautions to protect your personal data from loss, destruction, falsification, manipulation and unauthorised access. The legal data protection regulations of the Federal Republic of Germany are, of course, observed at all times.
Right to the disclosure of information
If you have any questions regarding the processing of your personal data, please contact or:
DEHOGA Deutsche Hotelklassifizierung GmbH, Am Weidendamm 1A, 10117 Berlin, authorised Managing Director: Markus Luthe.
Your personal data will not be transmitted to third parties for purposes other than those listed below.
We will only pass on your personal data to third parties if:
Information is stored in the cookie, in each case in relation to the specifically used terminal device. However, this does not mean that we immediately become aware of your identity.
The application of cookies serves on the one hand to make the use of our service more pleasant for you. For example, we use so-called session cookies to recognise that you have already visited individual pages of our website. These cookies are automatically deleted after you leave our site.
In addition, we also use temporary cookies that are stored on your end device for a specified period of time to optimise user-friendliness. If you visit our site again to use our services, it will automatically recognise that you have already been with us, and which entries and settings you have made so that you do not have to enter them again.
The data processed by cookies is required for the above-mentioned purposes in order to protect our legitimate interests and those of third parties in accordance with Art. 6 Section 1 S. 1 f GDPR.
Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. However, the complete deactivation of cookies can lead to the fact that you cannot use all functions of our website.
The tracking measures listed below and used by us are carried out on the basis of Art. 6 Section 1 Sentence 1 f GDPR. With the tracking measures used, we aim to ensure that our website is designed to meet your requirements and is continually optimised. On the other hand, we use the tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimising our offer. These interests are to be regarded as legitimate within the meaning of the above-mentioned provision.
The respective data processing purposes and data categories can be found in the corresponding tracking tools.
For the purpose of demand-oriented design and continuous optimisation of our pages we use Google Analytics, a web analysis service provided by Google Inc. (https://www.google.de/intl/en/about/) (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter “Google”). In this context, pseudonymised user profiles are created and cookies (see Point 4) are used. The information generated by the cookie about your use of this website such as
is transferred to a Google server in the USA and stored there. The information is used to evaluate the use of the website, to compile reports on the website activities and to provide further services associated with the use of the website and the Internet for the purposes of market research and demand-oriented design of these Internet pages. This information may also be transferred to third parties if this is required by law or if third parties process this data on behalf of the company. Under no circumstances will your IP address be merged with other data by Google. The IP addresses are anonymised so that an assignment to individuals is not possible (IP masking).
You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout?hl=en).
As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent Google Analytics from collecting data by clicking on this link. An opt-out cookie is set to prevent future collection of your data when you visit this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again.
For more information about privacy in connection with Google Analytics, please visit the Google Analytics Help function (https://support.google.com/analytics/answer/6004245?hl=en).
This site uses so-called Web Fonts provided by Google to uniformly display fonts. When you call up a page, your browser loads the required Web Fonts into your browser cache to display texts and fonts correctly.
To do this, the browser you are using must connect to Google’s servers. This gives Google knowledge that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 Section 1 f GDPR.
If your browser does not support Web Fonts, a default font is used by your computer.
This website uses “fonts.com”, a font service provided by Linotype GmbH, Werner-Reimers-Straße 2-4, 61352 Bad Homburg, Germany (“fonts.com”). Each time this website is accessed, files are loaded from a “fonts.com” server to display the texts in a specific font. Their IP address can be transferred to a server of “fonts.com” and stored in the context of the usual weblog. The further processing of this information is incumbent on “fonts.com”, the corresponding conditions and setting possibilities can be found in the data protection information of “fonts.com”.
This website uses social plugins of the social network Facebook.com. The plugins are provided by Facebook Inc. (hereinafter: Facebook), 1601 S. California Ave, Palo Alto, CA 94304, USA. The plugins are marked with a white “f” and refer to our “Seaside Park Hotel Leipzig” offer on Facebook. The list of Facebook plugins can be viewed here.
When you access a page on our website that contains such a plugin, the browser establishes a direct connection to Facebook’s servers. The content of the plugin is transmitted directly from Facebook to your browser and integrated into the website. Please note that we have no control over the amount and manner of information Facebook collects and processes through this plugin. By integrating the plugins, Facebook receives the information that you have called up the corresponding page of our website. If you are logged in to Facebook, Facebook can assign your visit to your Facebook account. If you use the plugin (“like” button etc.), information from your browser is transmitted directly to Facebook and stored there. If you are not a member of Facebook, it is still possible for Facebook to determine and store the IP address of the device. The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as the corresponding rights and setting options for the protection of the privacy of the users can be found in the data protection information of Facebook in its currently valid form.
If you do not want Facebook to collect data about you via our website, we recommend that you log out of Facebook before visiting our website.
If you have expressly consented according to Art. 6 Section 1 P. 1 a GDPR, we will use your email address to send you our newsletter on a regular basis. The newsletter is sent via “Revinate”, the email marketing service of the US provider Revinate, Inc. 1 Letterman Dr., Building C, Suite CM100, San Francisco, CA 94129, USA. The email addresses and names of our guests and newsletter recipients, as well as their other data described in this notice, are stored on Revinate’s servers in the USA. Revinate uses this information to send and evaluate the newsletters on our behalf and to optimise or improve its own services (e.g. to technically optimise the dispatch and presentation of the newsletters). When the newsletter is opened, technical information, such as information about the browser and your system, as well as your IP address and time of access, is first collected via a so-called “web beacon”. This information is used to improve the services based on the technical data or the target groups, and their browsing behaviour based on their retrieval locations (which can be determined using the IP address) or access times. We have concluded “standard contractual clauses” with Revinate in order to oblige Revinate to maintain an appropriate level of data protection.
You can object to being sent the newsletter at any time for the future. At the same time, your consent to being sent the newsletter by Revinate will expire. In this case please send an email to info(at)parkhotelleipzig.de. You will also find a link to cancel the newsletter at the end of each newsletter.
Our website uses social plugins (the “plugins”) from Instagram, which is operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA (“Instagram”). These plugins are marked with an Instagram logo, for example in the form of an “Instagram camera”. An overview of the Instagram plugins and their appearance can be found here: http://blog.instagram.com/post/36222022872/introducing-instagram-badges.
When you visit a page on our website that contains such a plugin, your browser establishes a direct connection with Instagram’s servers. The content of the plugin is transmitted by Instagram directly to your browser and integrated into the page. This integration provides Instagram with the information that your browser has accessed the relevant page on our website, even if you do not have an Instagram profile or are not currently logged into Instagram. This information (including your IP address) is transferred directly from your browser to an Instagram server in the USA and stored there.
If you are logged into Instagram, Instagram can directly associate your visit to our website with your Instagram account. If you interact with the plugins, for example by clicking on the “Instagram” button, this information is also transmitted directly to a server operated by Instagram and stored there. The information will also be published in your Instagram account and displayed in your contacts there.
If you do not want Instagram to associate the data collected through our website directly with your Instagram account, you must log out of Instagram before visiting our website. You can also completely prevent the Instagram plugins from loading with add-ons for your browser, e.g. with the “NoScript” script blocker (https://noscript.net).
Our website uses the booking tool BAHNHIT.de (referred to below as “bahnhit”) provided by Stadt und Land Reisen GmbH, Am Karlsbad 11, 10785 Berlin, Germany (www.bahnhit.de) to enable further direct bookings of accommodation and other travel services, as well as to process enquiries. Stadt und Land Reisen GmbH operates the website bahnhit.de with an online booking platform and its own call centre with advice and booking options. As part of our cooperation with Stadt und Land Reisen GmbH, our website links directly to the booking platform of Stadt und Land Reisen GmbH. Their system processes the booking data of the relevant transaction as the responsible party. You will find the applicable information and provisions on data protection for this link in the data policy of Stadt und Land Reisen GmbH at https://www.bahnhit.de/datenschutz.
Our online presence uses the booking tool TheFork. This online tool allows you to book a table in a restaurant and – in certain locations – to pay for the service. These services are provided by La Fourchette SAS, Registered Office: 70, rue Saint-Lazare, 75009 Paris, France, RCS PARIS 494 447 949, in the capacity of owner and data controller. By going to TheFork from our websites and related applications, you are leaving our website and agreeing to TheFork’s practices there. Information is collected from and about you for the purpose of providing a more personalised and relevant user experience. Some information is collected automatically, while other information is collected from a variety of sources, including affiliates, business partners and other independent third party sources. With this in mind, when you use TheFork’s services by “clicking through” from our website or when you visit third-party websites through our services, those third-party websites may share information about your use of their services with TheFork. The information collected may include the following:
TheFork may also collect information about other restaurant guests, including their email address and other reservation information, such as their first and last name, in cases where you have provided this information. You must obtain consent from other individuals if you wish to share their information with TheFork. TheFork’s full privacy information can be found at: https://www.thefork.de/legal#datenschutzerklarung-und-cookie-richtlinien.
You have the right:
If your personal data is processed on the basis of legitimate interests in accordance with Art. 6 Section 1 Sentence 1 f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, provided that there are reasons for this which arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which we will implement without specifying a particular situation.
If you would like to make use of your right of revocation or objection, simply send an email to info(at)parkhotelleipzig.de
9.1. We use the most common SSL (Secure Socket Layer) method in connection with the highest level of encryption supported by your browser. Usually this is 256 bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. Whether a single page of our website is transmitted in encrypted form is indicated by the closed display of the key or lock symbol in the lower status bar of your browser.
We also use suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.
9.2 Emails sent via the Internet without additional security measures (encryption) are no more confidential than a postcard. If you communicate with us by email without the additional security of encryption, we will assume that you are aware of this technical circumstance and allow us to answer you by simple email.
Basic encryption between email providers
However, we also attach great importance to confidentiality in communication by email. Our provider therefore automatically offers you secure email communication via your email provider.
Our German hosting provider implements email communication with you using additional security measures. However, the security depends on whether your email provider offers you the same security measures. At https://dane.sys4.de you can test whether your email provider uses the current security standards. If in doubt, we can discuss alternative security measures, e.g. PGP email encryption mentioned below. Regarding the security measures used by our provider, the provider writes:
“DNSSEC has been implemented as security measures for email communication (see https://en.wikipedia.org/wiki/Domain_Name_System_Security_Extensions). In addition, in 2015 (see how it works: https://en.wikipedia.org/wiki/DNS-based_Authentication_of_Named_Entities) DANE was introduced, the next logical step towards greater security. The DANE (DNS-based Authentification of Named Entities) network protocol adds additional security to the SSL/TLS transport protocol frequently used in email traffic. Certificates are directly linked to special DNS entries (TLSA-RR) of a domain and secured via DNSSEC. This ensures that a certificate has not been exchanged in the meantime and that its authenticity can be confirmed. Mail servers that support DANE can now force encrypted connections to each other. This significantly increases security when transmitting emails.”
PGP email encryption
A better and therefore recommended encryption (cryptography) of data transmission is possible with asymmetric encryption after the exchange of public keys. We will gladly provide you with our public PGP key (PGP: Pretty Good Privacy).
You can use this key to encrypt messages.
To communicate securely, you must install OpenPGP Software on your computer. Here is a list of possible solutions for different operating systems:
Please import the public key into your local OpenPGP key management to encrypt a message to us.