Data Protection Declaration

In this data protection declaration we would like to inform you about the type, the extent and the purpose of the processing of your personal data when using our online offer and the website connected with it. This privacy policy applies regardless of the platforms and devices (e.g. desktop or mobile) on which the online offer is executed.

With regard to the terms used, we refer to the definitions in Art. 4 of the Basic Data Protection Ordinance (DS-GMO).

Personal data is all information relating to an identified or identifiable natural person. This includes, for example, your name, address and communication data, e-mail address or user behavior.

Processing means any operation or series of operations carried out with or without the aid of automated procedures in relation to personal data, such as the collection, collection, organisation, arrangement, storage, adaptation or alteration, reading, retrieval, use, disclosure by transmission, dissemination or any other form of provision, reconciliation or linking, restriction, deletion or destruction.

Data subject is any identified or identifiable natural person whose personal data are processed by the controller.

Controller or “controller” means the natural or legal person, public authority, institution or other body which alone or jointly with others decides on the purposes and means of processing personal data.

Users include all categories of persons affected by data processing, including our customers, guests and visitors to our website.

1. name and address of the person responsible
RheinCity Hotel GmbH
Zollhofstrasse 11
67059 Ludwigshafen, Germany

Phone: +49 621 400 714 10
Fax: +49 621 400 714 96

E-mail: info@rheincity-hotel.de
Website: www.rheincity-hotel.de

The managing directors Ayhan Aydinli, Akgün Canoglu and Arijan Berisha are representatives of the responsible persons.

2. Data Protection Officer
You can contact our data protection officer by e-mail to info@rheincity-hotel.de or via our postal address with the addition “the data protection officer”.

3. processing of personal data
3.1. visit our website

3.1.1 Scope of data processing

When you visit our website, your browser transmits certain data to our web server for technical reasons. This is the following data (so-called server log files):

IP address
Date and time of the request
Time zone difference to Greenwich Mean Time (GMT)
Content of the request (specific page)
Operating system and its access status / HTTP status code
Amount of data transferred
Website from which the request comes (“referrer URL”)
Browser, language and version of the browser software
3.1.2 Purpose of data processing

The storage of this data in log files is necessary to ensure the functionality of the website. They serve us to optimize the website and to ensure the security of our information technology systems.

3.1.3 Legal basis of data processing

We collect this data on the basis of our legitimate interest within the meaning of Art. 6 Para. 1 letter f) DS-GMO in order to be able to display our website and to guarantee its security.

3.1.4 Duration of storage

Information in the log files is stored for a maximum of 12 months and then deleted for security reasons (e.g. to clarify acts of abuse or fraud and attempted attacks).

3.1.5 Possibility of objection and elimination

The collection of data for the provision of the website and its storage in log files is absolutely necessary for technical reasons. Consequently, there is no possibility of objection on the part of the user.

3.2. online booking

3.2.1 Scope of data processing

If you want to reserve or book a room with us online, we will process the following data: Title, first name, surname, e-mail address, street, house number, postcode, city, country, nationality, accompanying children and their age range, telephone number, smoking room yes/no, desired services (pet, breakfast, business package), non-binding requests, different billing address. The reservation runs over the service, which cloudbeds.com makes available.

3.2.2 Purpose of data processing

The data is required for the reservation or booking of a hotel room.

3.2.3 Legal basis of data processing

We process these data for the execution of an accommodation contract. The legal basis for this is Art. 6 para. 1 lit. b) DS-GMO

3.2.4 Duration of storage

The data stored by us will be deleted as soon as it is no longer required for its intended purpose and there are no legal obligations to keep it in safekeeping. Storage obligations result from commercial and tax law reasons. In accordance with statutory requirements, they are stored for 6 years in accordance with § 257 (1) HGB (commercial letters, accounting documents) and for 10 years in accordance with § 147 (1) AO (accounting documents, commercial and business letters, documents relevant for taxation).

3.2.5 Possibility of objection and elimination

These data are subject to retention obligations under commercial and tax law. Consequently, there is no possibility of objection on the part of the user.

3.3. cookies

3.3.1 Scope of data processing

Our website uses cookies. Cookies are small text files that are stored on your computer when you visit our website. Cookies do no damage to your computer and do not contain any malware such as viruses. Cookies contain a characteristic character string that enables a unique identification of the browser when the website is called up again. Some elements of our website require that the calling browser can be identified even after a page change. This website uses transient and persistent cookies.

Transient cookies are automatically deleted when you close your browser. These include in particular so-called session cookies. These store a so-called session ID, with which different requests of your browser can be assigned to the common session. When you return to our website, your computer can be recognized. The session cookies are deleted when you log out or close your browser.
Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete cookies at any time in the security settings of your browser.
3.3.2 Purpose of data processing

We use cookies to make our website attractive and user-friendly, to improve it and to speed up enquiries.

Some elements of our website require that the calling browser can be identified even after a page change. This includes, for example, bookings and log-in information.

3.3.3 Legal basis of data processing

The legal basis for the processing of personal data using the technically necessary cookies is Art. 6 para. 1 lit. f) DS-GMO.

3.3.4 Duration of storage

Session cookies are deleted as soon as the browser is closed.

Persistent cookies are automatically deleted after a specified period.

3.3.5 Possibility of objection and elimination

As a user, you have full control over the use of cookies. By changing the settings in your Internet browser, you can set it so that cookies are not saved at all or are automatically deleted at the end of your Internet session. To do this, select “do not accept cookies” in the settings of your browser. In Microsoft Internet Explorer, select “Tools > Internet Options > Privacy > Settings”; in Firefox select “Tools > Settings > Privacy > Cookies”); If you are using another Internet browser, please refer to the browser’s help function for instructions on preventing and deleting cookies.
Please note, however, that in this case you may not be able to use all functions of our website.

3.4. newsletter

3.4.1 Scope of data processing

You have the possibility to subscribe to a free newsletter on our website, which informs you regularly about offers, hotel openings and much more. To subscribe to the newsletter, we collect your e-mail address and, for a personal address, title, first name, surname. Optionally, we ask you to specify whether you use our hotels predominantly for private or business purposes.

We use a double opt-in procedure to subscribe to the newsletter. After subscribing to the newsletter, you will receive an e-mail in which you must confirm your subscription. We use this procedure so that no one can register with a different e-mail address. We log the registrations for the newsletter in order to be able to prove the registration process in accordance with the legal requirements. This includes the date, time and IP address at the time of registration.

In the course of the registration process, your consent is obtained for the processing of the data and reference is made to this data protection declaration. The data will be used exclusively for sending the newsletter.

3.4.2 Recipient of data processing

Your personal data, which we receive from you within the scope of the newsletter registration, will be processed by our marketing department.

3.4.3 Purpose of data processing

The collection of the user’s e-mail address serves to send the newsletter. The name is collected for personal contact.

3.4.4 Legal basis of data processing

The legal basis for the processing of the data after registration for the newsletter by the user is his consent pursuant to Art. 6 para. 1 lit. a) DS-GMO.

3.4.5 Duration of storage

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. The user’s e-mail address will therefore be stored for as long as the subscription to the newsletter is active.

3.4.6 Possibility of objection and elimination

You can cancel the receipt of our newsletter at any time, i.e. revoke your consent. For this purpose, each newsletter contains a link to unsubscribe from the newsletter.

3.5. contact form and e-mail contact

3.5.1 Scope of data processing

There is a contact form on our website with which you can send us questions or suggestions electronically. If you use this option, the data entered in the input mask will be transmitted to us and saved. This data is as follows: Title, surname, first name, e-mail address, subject, recipient (hotel company), reason for the request (selection field), your message to us, requested copy of the message sent, date and time of the sending process.

Alternatively, contact can be established via the e-mail addresses provided. In this case, the user’s personal data transmitted by e-mail will be stored.

The data will be used exclusively for processing the conversation and for processing the request.

3.5.2 Purpose of data processing

The processing of the personal data from the input mask serves us only for the treatment of the establishment of contact. In the event of contact by e-mail, this also constitutes the necessary legitimate interest in the processing of the data. The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

3.5.3 Legal basis of data processing

When contacting us (via contact form or e-mail), the user’s details for processing the contact request and its processing are processed in accordance with Art. 6 Para. 1 lit. b) DS-GVO.

3.5.4 Duration of storage

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those that were sent by e-mail, this is the case when the respective conversation with the user is finished. The conversation is terminated when it can be inferred from the circumstances that the facts in question have been finally clarified.

3.5.5 Possibility of objection and elimination

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued. Please send a revocation to info@rheincity-hotel.de

All personal data stored in the course of contacting us will be deleted in this case.

3.6. applications

3.6.1 Scope of data processing

If you apply to us by e-mail, we will process the data you have submitted to us in order to carry out the application process. Your personal data can be viewed by the personnel department and the specialist department responsible for staffing.

3.6.2 Purpose of data processing

We process personal data for the decision on the establishment of an employment relationship, in particular for the selection process of suitable candidates and the administrative implementation of the application procedure.

3.6.3 Legal basis of data processing

Legal basis is § 26 Abs. 1 BDSG-neu

3.6.4 Duration of storage

If the application leads to an employment relationship, we process this data for the performance of an employment relationship. These are then included in our personnel administration system.

If the application does not lead to an employment relationship, this data will be deleted 6 months after the end of the application procedure, unless the applicant has given his or her consent in accordance with Art. 6 para. 1 lit. a) DS-GMO and Art. 7 DS-GVO for the long-term storage of his or her personal data in order to be considered for new job offers if necessary.

3.6.5 Possibility of objection and elimination

The information you send us can be renewed or deleted at any time upon request. To do so, please send us an e-mail. This does not apply if you have applied for a specific position with us in an ongoing application process. In this case, we store the information you provide for this position until the end of the legal action periods (especially § 15 AGG).

3.7. web analysis Google Analytics

3.7.1 Scope of data processing

We use Google Analytics, a web analysis service of Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”).

Google analyses your use of our website on our behalf. We use cookies for this purpose. We have described what cookies are and how they can be deleted in the “Cookies” chapter above.

The information collected by Google about your use of this website (e.g. the pages visited by us) is transmitted to a Google server in the USA, stored there, analysed and the result made available to us in anonymised form.

On our website we use the IP anonymisation offered by Google. In this case your IP address will be reduced by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

Google is certified in the EU-US Privacy Shield, which guarantees an adequate level of data protection for Google in the USA.

3.7.2 Purpose of data processing

Google uses this information on our behalf to evaluate the use of our website and to compile reports on the activities within our website. This allows us to improve your online experience and increase the usability of our website.

3.7.3 Legal basis of data processing

Our legitimate interest in data processing by Google Analytics lies in the above-mentioned purposes. The legal basis is Art. 6 para. 1 lit. f) DS-GMO.

3.7.4 Duration of storage

Sessions and campaigns are terminated after a certain period of time. By default, sessions are closed after 30 minutes without activity and campaigns after six months. The time limit for campaigns may not exceed two years

3.7.5 Possibility of objection and elimination

The IP address transmitted by your browser is not merged with other Google data. You can prevent cookies from being saved by setting your browser software accordingly, as described in the “Cookies” section above. You can also prevent Google from collecting the data generated by the cookie and relating to your use of our website and from processing this data by Google by downloading and installing the available browser plug-in from Google: https://tools.google.com/dlpage/gaoptout?hl=en.

If you wish to prevent Google Analytics from collecting your data in the future when you visit our website via various devices (in particular mobile devices such as smartphones or tablets), you must opt-out on all systems used.

Please note that this opt-out cookie only prevents web analysis as long as you have not deleted it. Further information on Google Analytics can be found in the Google Analytics Terms of Use, the Google Analytics Security and Privacy Policy and the Google Privacy Policy.

Via this link you can deactivate tracking via Google Analytics: Google Analytics – Disable tracking
3.8. Google AdWords

3.8.1 Scope of data processing

We use Google Adwords to draw attention to our offers on external websites with the help of advertising media (so-called Google Adwords). These advertising media are delivered by Google via so-called “Ad Servers”. For this purpose, we use ad server cookies, through which certain parameters for measuring success, such as the insertion of ads or clicks by users, can be measured. If you access our website via a Google ad, Google Adwords stores a cookie on your PC. What cookies are and how they can be deleted, we have described above, These cookies enable Google to recognize your Internet browser. If a user visits certain pages of an Adwords customer’s website and the cookie stored on their computer has not expired, Google and the customer can recognize that the user has clicked on the ad and has been redirected to this page. Each Adwords customer is assigned a different cookie. Cookies cannot therefore be traced via the websites of Adwords customers. We do not collect and process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Google. On the basis of these evaluations we can recognize which of the used advertising measures are particularly effective. We do not receive any further data from the use of advertising material; in particular, we cannot identify users on the basis of this information.

Due to the marketing tools used, your browser automatically establishes a direct connection to the Google server. We have no influence on the extent and the further use of the data which are raised by the use of this tool by Google and inform you therefore according to our knowledge: By the integration of AdWords conversion Google receives the information that you called the appropriate part of our Internet appearance or clicked an announcement of us. If you are registered with a Google service, Google may associate your visit with your account. Even if you are not registered with Google or have not logged in, it is possible that the provider may obtain and store your IP address.

3.8.2 Purpose of data processing

We can determine in relation to the data of the advertising campaigns how successful the individual advertising measures are. We are interested in showing you advertisements that are of interest to you, to make our website more interesting for you and to achieve a fair calculation of advertising costs.

3.8.3 Legal basis of data processing

Data processing serves our legitimate interest in targeting advertising. The legal basis is Art. 6 para. 1 lit. f) DSGVO.

3.8.4 Duration of storage

These cookies usually expire after 30 days and are not intended to identify you personally. For this cookie, the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (mark that the user no longer wishes to be addressed) are usually stored as analysis values.

3.8.5 Possibility of objection and elimination

You can prevent participation in this tracking process in various ways: a) by setting your browser software accordingly, in particular by suppressing third-party cookies, you will not receive any ads from third-party providers; b) by deactivating cookies for conversion tracking, by setting your browser so that cookies are blocked by the domain “www.googleadservices.com”, https://www.google.de/settings/ads”, this setting being deleted when you delete your cookies; c) by deactivating the interest-based ads of the providers that are part of the “About Ads” self-regulation campaign via the link http://www.aboutads.info/choices”, this setting being deleted when you delete your cookies; d) by permanently deactivating Firefox, Internet Explorer or Google Chrome in your browsers under the link http://www.google.com/settings/ads/plugin .

Further information on data protection at Google can be found here: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.htm l. Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at http://www.networkadvertising.org Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework

4 Data Security
4.1 Technical, contractual and organisational measures

We take technical, contractual and organisational measures for the security of data processing in accordance with the state of the art. In this way we ensure that the regulations of the data protection laws, in particular the basic data protection regulation, are observed and that the data processed by us is protected against destruction, loss, alteration and unauthorized access. These security measures also include the encrypted transmission of data between your browser and our servers. Please note that SSL encryption is only activated for transmissions made over the Internet if the key symbol appears in the lower menu bar of your browser window and the address starts with https:// SSL (Secure Socket Layer) protects data transmission against illegal access by third parties using encryption technology. If this option is not available, you can also choose not to send certain data over the Internet.

Unless otherwise described in this document, all information you transmit to us is stored on our servers in the Federal Republic of Germany.

5. disclosure of data to third parties and contractors
Data will only be passed on to third parties within the framework of legal requirements. We only pass on user data to third parties if this is necessary, e.g. on the basis of Art. 6 para. 1 lit. b) DS-GMO for contractual purposes or on the basis of legitimate interests pursuant to Art. 6 para. 1 lit. f) DS-GVO in the economic and effective operation of our business.

Data processing takes place in Germany.

6. external services and content on our website
We integrate external services or content on our website. This is done on the basis of our legitimate interests in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 para. 1 letter f) DS-GMO.

When using such a service or displaying third-party content, communication data such as date, time and IP address are exchanged between you and the respective provider for technical reasons. In particular, this is your IP address, which is required to display content in your browser.

It may be that the provider of the respective services or contents of your data for further, own purposes processes. However, since we have no influence on the data collected from third parties and their processing by them, we cannot provide any binding information on the purpose and scope of processing your data. For further information on the purpose and scope of the collection and processing of your data, please refer to the data protection information provided by the providers of the services or content integrated by us who are responsible for data protection law. Here you will also find further information on the processing of data and possibilities of objection.

We currently use the following social media plug-ins: Facebook, Twitter, Google+, youtube and Pinterest. When you visit our site, no personal data is initially passed on to the providers of the plug-ins. You can recognize the provider of the plug-in by the marking on the box above its initial letter or the logo. We offer you the possibility to communicate directly with the provider of the plug-in via the button. Only if you click on the marked field and thereby activate it, the plug-in provider receives the information that you have accessed the corresponding website of our online offer.

By activating the plug-in, personal data will be transferred from you to the respective plug-in provider and stored there (for US providers in the USA). Since the plug-in provider collects data mainly via cookies, we recommend that you delete all cookies before clicking on the grayed-out box using your browser’s security settings.

We have no influence on the data collected and data processing processes, nor are we aware of the full extent of data collection, the purposes of processing, the storage periods. We also have no information on the deletion of the data collected by the plug-in provider.
The plug-in provider stores the data collected about you as user profiles and uses these for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation takes place in particular (also for not logged in users) for the representation of demand-fair advertisement and in order to inform other users of the social network about your activities on our website. You have a right of objection to the creation of these user profiles, whereby you must contact the respective plug-in provider to exercise this right. Through the plug-ins we offer you the possibility to interact with social networks and other users, so that we can improve our offer and make it more interesting for you as a user. The legal basis for the use of the plug-ins is Art. 6 para. 1 lit. f) DS-GMO.

The data is transferred regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in with the plug-in provider, your data collected with us will be directly assigned to your existing account with the plug-in provider. If you click the activated button and, for example, link the page, the plug-in provider also stores this information in your user account and shares it publicly with your contacts. We recommend that you log out regularly after using a social network, especially before activating the button, as this way you can avoid being assigned to your profile with the plug-in provider.

For more information on the purpose and scope of data collection and its processing by the plug-in provider, please refer to the data protection declarations of these providers as notified below. They will also provide you with further information about your rights in this regard and setting options to protect your privacy.

Addresses of the respective plug-in providers and URL with their data protection information:

Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php ; further information on data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications and http://www.facebook.com/about/privacy/your-info#everyoneinfo .
Facebook has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework .
Google Inc, 1600 Amphitheater Parkway, Mountainview, California 94043, USA; Further information on data protection: https://www.google.com/policies/privacy/partners/?hl=en .
Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework .
Twitter, Inc. 1355 Market St, Suite 900, San Francisco, California 94103, USA; Further information on data protection: https://twitter.com/privacy .
Twitter has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework
Videos from the YouTube platform of third-party provider Google Inc. 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Further information on data protection:: https://www.google.com/policies/privacy/ You can set an opt-out at https://www.google.com/settings/ads/.
YouTube has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework
Pinterest Inc, 635 High Street, Palo Alto, CA, 94301, USA. Privacy Policy: https://about.pinterest.com/de/privacy-policy .
Maps of the “Google Maps” service provided by Google Inc. 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy Policy: https://www.google.com/policies/privacy/ You can opt-out via:
“Google Tag Manager”, from Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA to integrate and manage Google analytics and marketing services on our website. Further information on data protection: https://www.google.com/policies/privacy/partners/?hl=en .
Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework
“Pingdom”, a monitoring service of the Swedish Pingdom AB, Kopparbergsvägen 8, 722 13, Västerås, Sweden. This tool enables an analysis of the loading behaviour and the availability of our website and collects your IP address. Cookies are set for this purpose. You can prevent this by making the appropriate settings in your browser. You can find Pingdom’s privacy policy here: https://www.pingdom.com/legal/privacy-policy /.
This website uses Userlike, a live chat software of the company Userlike UG (haftungsbeschränkt). Userlike uses “cookies”, which are text files placed on your computer, to provide a personal conversation in the form of a real-time chat on the website with you. The data collected is not used to personally identify the visitor to this website and is not combined with personal data about the bearer of the pseudonym.
We offer you the opportunity to submit the booking process via a rating service offered by Trustpilot A/S, Trommesalen 5, 3. sal, 1614 København, Denmark.
The submission of an evaluation is of course voluntary. If you make use of this option, your name, first name, e-mail address and reference number will be given to Trustpilot and will not be used by Trustpilot itself or passed on to third parties. An evaluation of our company can be carried out on the site en.trustpilot.com/review/.
A Trustpilot user profile is required for the submission of a rating or the recording of customer feedback. In addition to an evaluation for the inviting company, evaluations for other companies can then also be recorded on Trustpilot’s evaluation portal. In the case of a valuation without a previous invitation, however, a clear reference is then required for a contractual relationship with the evaluated company.
For more information, please contact Trustpilot. If an evaluation is submitted by clicking on the link contained in the invitation, a user profile is automatically created at Trustpilot after entering the personal data, usually name and e-mail address for verification. This implies your agreement to Trustpilot’s privacy policy and general terms and conditions. You can find them at de.legal.trustpilot.com/end-user-privacy-terms. If you participate in this feedback system, your rating will be published on our website and on the Trustpilot website. For further details, please refer to Trustpilot’s privacy policy and terms and conditions.
If you use third-party payment services (e.g. PayPal, Visa, Mastercard, Maestro, American Express), the terms and conditions and privacy notices of our electronic payment processing partner (Saferpay), which can be accessed in the transaction application, apply.

7. your rights
If we process your personal data, you are affected within the meaning of the Basic Data Protection Ordinance (DS-GVO) and you have the following rights vis-à-vis us regarding your personal data:

Right of access (Art. 15 GDPR)
Right to correction (Article 16 GDPR)
Right to cancellation (Art. 17 GDPR)
Right to limitation of processing (Art. 18 GDPR),
Right to data transferability (Art. 20 GDPR)
Right of opposition to processing (Art. 21 GDPR)
right to complain to a data protection supervisory authority (Art. 77 GDPR)

8 Privacy Policy Changes
We reserve the right to change the data protection declaration in order to adapt it to changed legal situations or in the event of changes to the service or data processing. However, this only applies with regard to declarations on data processing. If user consents are required or components of the data protection declaration contain provisions of the contractual relationship with the users, the changes will only be made with the users’ consent.

Please inform yourself regularly about the contents of the data protection declaration.