1. data protection information

Responsible for data processing is

Hotel Gude GmbH & Co. KG
Ralf Gude
Frankfurter Straße 299
34134 Kassel

E-mail: info@hotel-gude.de, Phone: +49 561 4805-0

The company data protection officer is:
DSB Kassel Christian Henkel und Stefan Zeidler GbR
Christian Henkel
Friedrich-Ebert-Str. 147
34119 Kassel
info@dsb-kassel.de
www.dsb-kassel.de

When you visit our website, the browser you use automatically sends information to the server of our website, which is stored there. This is this data:

• IP address of the requesting computer, initially in full length, automatically anonymized after 24 hours,
• Date and time of access,
• Name and URL of the retrieved file,
• Website from which the access is made (referrer URL),
• the browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

These data are processed for the following purposes:

• Ensuring a smooth connection of the website,
• Ensuring a comfortable use of our website,
• Evaluation of system security and stability, and
• for other administrative purposes.

The data is automatically deleted again. The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. f DSGVO. The legitimate interest lies in the purposes of data collection listed above. Inferences to persons are not drawn in any case.
So-called cookies are used during the visit to enable further analyses. Cookies are small files that the browser creates at the instigation of the server and stores on your end device (laptop, tablet, smartphone or similar). Cookies are not a threat to the security of your end device, as they only contain text data. The data they contain is determined by the server. Under no circumstances can other data on your terminal device be accessed. Cookies can be used to determine whether you have already visited a page. Cookies can also contain data that you have entered on a website and do not have to enter again when you visit the site again. Some cookies are automatically deleted after you leave the website. Other cookies may be stored on your terminal device for a specified period of time before they too are permanently deleted. The data processed by cookies is necessary for the aforementioned purposes to protect our legitimate interests as well as the interests of third parties in accordance with Art. 6 (1) p. 1 lit. f DSGVO.
If you do not wish to store cookies, you can configure the browser of your terminal device so that it either asks before each storage or rejects all cookies.

3. contact form

For appointment requests or questions of a simple nature, we offer a contact form. For the use of this form it is mandatory to enter your telephone number and your name. Further data are voluntary. We only need the telephone number to contact you quickly and to discuss your request. The name is used to address you personally. The legal basis for the storage and processing of this data is Art. 6 para. 1 p. 1 lit. a DSGVO and your voluntarily given consent. The data will be automatically deleted after completion of the contact request and if no further consent is given.

4. online bookings, room requests, last minute bookings for rooms and services via VIOMA.

To process our online bookings and online enquiries for rooms and services, we use the service of our partner VIOMA on our website. Provider of the service is vioma GmbH, Industriestraße 27, 77656 Offenburg, Germany (hereinafter VIOMA).If you use the buttons and links "Rooms" on our website, you are using the service of our partner VIOMA. Personal data and payment data are transmitted to our partner VIOMA and stored on its servers. The data protection regulations of VIOMA apply. You can view them here: www.vioma.de/de/service/datenschutzerklaerung/.Wir have concluded an order data processing contract with VIOMA.

5. table reservations via Ophelia

For table reservations we use the web service Ophelia GmbH & Co. KG, Alfred-Bozi-Straße 21/22, 33602 Bielefeld (hereinafter Ophelia). To use the service (click on the button "Save reservation" or "Table reservation") you will be redirected to the website of Ophelia. The necessary personal data as well as reservation data will be collected, stored and forwarded to us by Ophelia. The privacy policy of Ophelia applies. You can view these here: www.ophelia.de/unternehmen/impressum/.Wir have concluded an order data processing contract with Ophelia.

6. disclosure of data

In principle, we do not pass on any data to third parties. Exceptions are:

• Your express consent granted in accordance with Art. 6 (1) p. 1 lit. a DSGVO;
• the disclosure pursuant to Art. 6 (1) p. 1 lit. f DSGVO is necessary for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data;
• a legal obligation existing according to Art. 6 para. 1 p. 1 lit. c DSGVO;
• the transfer is legally permissible according to Art. 6 para. 1 p. 1 lit. b DSGVO and necessary for the processing of contractual relationships with you.

7. analysis tools

We use tracking measures on the basis of Art. 6 (1) p. 1 lit. f DSGVO. Thereby, we would like to optimize the design, the content and the findability of our website. These interests are to be regarded as legitimate in the sense of the aforementioned article.

AWStats
The analysis software AWStats is used on the servers of our web hoster. The program is OpenSource. The logfiles of the web server are analysed. Thus, no cookies are required by your browser. Our web hoster uses only anonymized IP address data for the analysis. This data cannot be assigned to specific persons. AWStats does not transmit any data to third parties.

8. google maps

To display addresses on a map and for convenient wayfinding, we use Google Maps of the company Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (in short: Google). If you use the map, Google also collects, processes and uses data about your use of the map. If you are logged in to Google, data may be linked to your user account. More information about data processing by Google can be found in Google's privacy policy. You may also be able to adjust your personal privacy settings in Google's Privacy Center.

9. right to be affected

Under the General Data Protection Regulation (GDPR), you have the right, 

• Information (Art. 15 DSGVO) about your personal data processed by us. You can request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details;
• to correct incorrect or complete your data stored by us (Art. 16 DSGVO);
• to the deletion of your data stored by us (Art. 17 DSGVO), unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims;
• to restrict the processing of your personal data (Art. 18 DSGVO), insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defence of legal claims or you have objected to the processing in accordance with Art. 21 DSGVO;
• to receive your data provided to us in a structured, common and machine-readable format or transfer to another controller (Art. 20 DSGVO);
• to revoke your consent (Art. 7 (3) DSGVO) with the consequence that we may no longer continue the data processing based on this consent in the future;
• to lodge a complaint with the supervisory authority (Art. 77 DSGVO), which is competent according to your usual place of residence or workplace or according to our registered office.

10. right of objection

According to Art. 21 DSGVO, you have the right to object if your personal data is processed on the basis of legitimate interests pursuant to Art. 6 (1) p. 1 lit. f DSGVO. Reasons must be provided for this which arise from your particular situation or if the objection is directed against direct advertising. In the latter case, we grant the right of objection without specifying a particular situation and ensure the immediate implementation of the objection.
For your right of objection, an email to us is sufficient.

11. data security

The transmission of our website from the server to your browser of the end device is encrypted. The Secure Socket Layer (SSL) method is used in conjunction with the highest encryption level supported by your browser. The data you enter on our website is also transmitted in encrypted form. You can usually recognize the correct function of the encryption by a symbol with a "key" or a "locked padlock" in the status bar or address bar of your browser.
Data on the server of our content provider is also protected against accidental or deliberate manipulation according to the state of the art. The same applies to the data you transmit to us, insofar as this is stored on our own servers. We take all reasonable technical and organizational measures to ensure the greatest possible protection of the data. Our security measures are continuously optimised in line with technological developments.

12. up-to-dateness and modification of this privacy policy

Our website is constantly optimized, improved and expanded. In this case and in the event that an update of the privacy policy becomes necessary due to legal or judicial requirements, we reserve the right to make changes - even at short notice. You can find the respectively valid declaration at https://www.hotel-gude.de/datenschutzerklaerung/.

This privacy policy was created by DSB Kassel Christian Henkel and Stefan Zeidler GbR(www.dsb-kassel.de) based on the information provided by the responsible party as of 18.10.2018. The use of this privacy policy requires a valid license.