3. The processing of special personal data (e.g. health data) within the meaning of Article 9 (1) of the GDPR is, in particular, lawful under Article 9 (2) of the GDPR if one of the following conditions applies:

– there is an express consent of the person;

– the processing is necessary for the assertion, exercise or defense of legal claims or for acts of the courts in the context of their judicial activity.

 4. An automatic decision-making or profiling of personal data in the sense of Ar t. 22 GDPR does not take place.

5. The operator ensures the security of the data in accordance with Art. 32 GDPR by taking appropriate technical measures, taking into account the proportionality principle.

6. In the unlikely event that data protection is breached, the competent supervisory authority will be notified in accordance with Art. 33 GDPR and the data subject in accordance with Art. 34 GDPR.

Scope

This Privacy Policy applies only to our websites. If you are forwarded to other pages via links on our pages, please inform yourself there about the respective handling of your data.

Duration of data storage

The period of retention of the transferred data depends on the legal retention requirements. As far as commercial and tax retention periods are to be observed, the duration of the storage of certain data can be up to 10 years.

Transfer of data to third parties

A passing on of information provided within the framework of the contract data to third parties (Art. 4 No. 10 GDPR), takes place o nly if you expressly your consent (Art. 4 No. 11 GDPR) to declare or transfer the information to fulfill the contract’s is requirements. The consent can be withdrawn informally at any time. Data collected by visiting the website are only collected by third parties, which are mentioned below.

Responsible according to the GDPR

The person responsible within the meaning of the General Data Protection Regulation (GDPR), as well as other data protection laws in the European Union and other provisions of a data protection nature is:

PRINZHOTEL ROTHENBURG
An der Hofstatt 3
91541 Rothenburg o.d.T.
Telephone: +49-(0)9861-975-0
Fax: +49-(0)9861-975-75
E-Mail: info[at]prinzhotel.rothenburg.de

Storage of access data in log files

You can visit our websites without giving any personal information. We only store access data in so-called server log files, such as the name of the requested file, the date and time of the retrieval, the amount of data transferred and the requesting provider. This data is evaluated solely to ensure trouble-free operation of the site and to improve our offer and does not allow us to conclude on your behalf. The purpose of the processing results is for our interest only within the meaning of Art. 6 para. 1 lit. f) GDPR.

An order processing contract has been finalized with our host the Mittwald CM Service GmbH & Co KG, Königsbergerstraße 6, 32339 Espelkamp.

Cookies

We use cookies on our site. These are small files that are automatically created by your browser and stored on your end device (PC, laptop, tablet, smartphone or similar) when you visit our site. Cookies do not cause any damage to your terminal device, do not contain viruses, trojans or other malware. Information is stored in the cookie that is related to the specific terminal device used. This does not mean, however, that we obtain direct knowledge of your identity.

The use of cookies serves on the one hand to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted when you leave our site.

In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your end device for a certain defined period of time. If you visit our site again to use our services, we will automatically recognize that you have already been with us and what entries and settings you have made so that you do not have to enter them again.

These cookies enable us to automatically recognize that you have already been with us when you visit our site again. These cookies are automatically deleted after a defined time. The data processed by cookies is required for the above-mentioned purposes in order to safeguard our legitimate interests and those of third parties in accordance with Art. 6 Para. 1 S. 1 lit. f DSGVO. Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or so that a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you cannot use all the functions of our website.

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if IP anonymization is activated on this website, your IP address will be shortened by Google beforehand within member states of the EU or other parties to the Agreement on the European Economic Area.

Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address provided by Google Analytics as part of Google Analytics will not be merged with other Google data.

You can prevent the storage of cookies by a corresponding setting of your browser software. However, please note that in this case you may not be able to use all the features of this website to their full extent.

In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading the browser plug-in available under the following link and install: http://tools.google.com/dlpage/gaoptout?hl=entools.google.com/dlpage/gaoptout .

The Google Analytics anonymization feature is used to obscure IP addresses. An order fulfillment contract has been signed with Google Inc.

Google web fonts

On these websites external fonts, Google Fonts are used. Google Fonts is a service of Google Inc. (“Google”). The integration of these web fonts is done by a server call, usually a Google server in the USA. This will be transmitted to the server, as to which of our websites you have visited. Also, the IP address of the browser of the terminal of the visitor of this website is stored by Google.

For more information, see the Google Privacy Policy, which you can access here:

https://www.google.com/fonts#AboutPlace:about

https://www.google.com/policies/privacy/

Font Awesome

This site uses so-called web fonts provided by, Fonticons, Inc. for consistent font representation. When you call up a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.

For this purpose, the browser you use must connect to the servers of, Fonticons, Inc. or the provider Stackpath record, tape. This will give, Fonticons, Inc. notice that your website has been accessed through your IP address. The use of web fonts is in the interest of a uniform and attractive presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

If your browser does not support web fonts, a default font will be used by your computer.

More information about Font Awesome can be found at fontawesome.com/help and in the , Fonticons, Inc. Privacy Policy: https://fontawesome.com/privacy .

An order processing contract has been finalized.

Google Maps

This website uses the “Google Maps API” of the company Google Inc. (Google) for the visual presentation of maps. When using Google Maps, Google also collects, processes and uses data about the use of the Maps features by visitors to the websites. The terms of service for Google Maps can be found in Google Maps Terms of Service. For more information about Google’s privacy policy, please visit: https://www.google.com/intl/en/policies/privacy/

Vimeo

We use the provider Vimeo for the integration of videos. Vimeo is operated by Vimeo, LLC, headquartered at 555 West 18th Street, NY, New York 10011.

On some of our websites we use plugins of the provider Vimeo. If you call up the Internet pages of our Internet presence provided with such a plugin – for example our media library – a connection to the Vimeo servers will be established and the plugin will be displayed. It will be transmitted to the Vimeo server, which of our websites you have visited. If you are logged in as a member of Vimeo, Vimeo assigns this information to your personal user account. When using the plugin eg. by clicking on the start button of a video this will also assign this information to your user account. You can prevent this association by logging out of your Vimeo user account before using our website and deleting the corresponding cookies from Vimeo.

For more information on data processing and privacy by Vimeo, please see this link:

https://vimeo.com/privacy

Job applications

During the application process, personal data such as name, address, telephone number and e-mail address are stored in the applicant database. Furthermore application documents (letters, CV , certificates, etc.) are recorded and saved. Your data will only be evaluated, processed or forwarded internally as part of the application process. Your data can only be viewed by employees and and the persons responsible for the selection. A dissemination of the data to third parties will not take place.

In the case of a successful application, the exercise data is transferred to the personnel file. The remaining applicant data will be stored for a maximum of 3 months after the end of the bidding process.

At any time you have the option to revoke the consent and to delete the applicant data. For this an informal e-mail will be enough.

Security of your data / SSL encryption

In accordance with the statutory provisions of § 13 (7) TMG, this site uses SSL encryption, which can be recognized by a lock symbol in the address bar of your browser. Submitted data can not be read by third parties if SSL encryption is activated .

In general, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we’ll use 128-bit v3 technology instead. Whether a single page of our website is transmitted in encrypted form is indicated by the closed representation of the key or lock symbol in the status bar of your browser.

We also take appropriate technical and organizational security measures (TOM) to protect your data against accidental or intentional manipulation, partial or total loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

Rights of the user

You can request information about the personal data stored about you at any time and free of charge. Your rights also include the acknowledgment, correction, limitation, blocking and deletion of such data and the provision of a copy of the data in a form suitable for transmission, as well as the revocation of consent granted and the objection. Legal storage obligations remain unaffected.

Their rights arise in particular from the following standards of the GDPR: