Controller in with the sense of data protection law, and of the EU General Data Protection Regulation (GDPR) in particular, is:
Ostseehotel Dierhagen GmbH & Co KG
Your rights as data subject
By contacting our Data Protection Officer via the contact details provided, you may exercise the following rights at any tiime:
- obtain access to your data stored by us and to information regarding their processing,
- rectification of inaccurate personal data
- erasure of your data stored by us,
- restriction of data processing, should we, given our legal
- obligations, not yet be authorised to erase your data,
- objection to the processing of your data by us, and
- data portability, should you have given your consent to the processing of your data or have entered into a contract with us.
In the event that you have given us your consent, you may withdraw it any time with effect for the future.
You may contact the competent supervisory authority at any time in order to lodge a complaint. Your respective competent supervisory authority is in the federal state in which you have your habitual residence, place of work, or where the alleged infringement took place. A list of the supervisory authorities (for the non-public sector) and their address may be found at:
Purposes of data processing by the controller and third parties
you have granted us your explicit consent,
processing is required in order to perform a contract with you,
processing is required in order to comply with a legal obligation,
processing is required in order to safeguard legitimate interests and there is no reason to
believe that you have an overriding compelling interest regarding non-disclosure of your data
Erasure or blocking of data
We comply with the principles of data avoidance and data minimisation. We therefore store your personal data exclusively for the time necessary to achieve the purposes specified herein, or for the duration of the different retention periods prescribed by law. After expiry of the respective purpose or of the respective period, the relevant data will be blocked or erased in a routine procedure in accordance with legal provisions.
Recording of general information during a visit to our website
Each time you access our website, cookies will record general information. This information (server logfiles) contains:
- web browser type and version
- the operating system used
- host name of the accessing computer
- IP address
- time of the server request
- domain name of your internet service provider
This is information that does not reveal anything about your identity.
The information is technically necessary in order to deliver the requested contents of the websites correctly and are strictly required when using the internet. They are processed for the following purposes in particular:
- to guarantee a smooth connection to the website,
- to guarantee the smooth functioning of our website,
- to analyse the security and stability of the system, and
- for other administrative purposes.
Given our legitimate interest to collect data resulting from the previously indicated purposes,
we process your personal data. We will not use your data in order to identify you as a person. The controller and, if applicable, processors, are the only recipients of the data.
We may carry out statistical analysis of anonymous information of this kind in order to optimise our online presence and the technology it requires.
Like many other websites, we use “cookies“. Cookies are small text files transmitted by a website server to your hard disk. They provide us automatically with certain data, for example the IP address, the browser used, the operating system, and your connection to the internet.
Cookies cannot be used to start a programme or to upload viruses to your computer. Thanks to the information stored in cookies, we are able to facilitate your navigation and to correctly display our websites.
We will in no event disclose the data collected by us to third parties or link your data with other personal data without your consent.
Performance of fee-based services
In order to perform fee-based services, we will require additional data e.g. payment details, address, and contact details which allow us to process your booking. We will store these data in our systems until expiry of the legal retention period.
We use state of the art encryption technology (e.g. SSL) via HTTPS in order to ensure the security of your data when transferred.
When users leave comments on our website, apart from this information, we will also store the time of its creation and the user name previously chosen by the visitor to the website. This serves to protect us as we may be sued for illegal contents on our website, even if created by the user.
Provided you have granted us your explicit consent, we will send you our newsletter or similar information via email to your email address on a regular basis.
In order to receive the newsletter, you need to provide us with your email address only. When registering for the newsletters, the data provided by you will be used for this purpose only. Subscribers may also receive information relevant to the service or the registration (e.g. regarding changes in the newsletter service or technical circumstances) via email.
We need a valid email address in order to register you effectively. We apply the “double-opt-in“ procedure in order to verify that the registration was indeed carried out by the owner of the email address. For this purpose, we record the ordering of the newsletter, the sending of a confirmation email, and the receipt of the respective requested response. We will not collect any additional data. The data will be used exclusively in order to deliver the newsletter and will not be disclosed to third parties.
Each time you contact us with questions of any kind via email or the contact form, consent to establishing contact with you is given freely. To this end, a valid email address must be specified. It allows us to categorise your query and to subsequently respond to it. The provision of further data is optional. The data provided by you will be stored for the purpose of processing the query as well as with regard to potential follow-up questions. After your inquiry has been processed, personal data will automatically be erased.
Use of Google Maps
In the data protection centre, you can also change your personal privacy settings.
Embedded YouTube videos
We embed YouTube videos on some of our webpages. The operator of the respective plug-ins is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. Each time you visit a webpage containing a YouTube plug-in, a connection with the YouTube servers will be established and YouTube will be informed about which pages you visit. When you are logged-in into your YouTube account, YouTube may relate your surfing behaviour to you personally. You can prevent this from happening by logging out of your YouTube account beforehand.
Each time a YouTube video is started, the provider places a cookie in order to collect information on user behaviour.
If the placement of cookies been deactivated for the Google ad programme, cookies will not be placed when viewing YouTube videos. However, YouTube does also store non-personal user information in other cookies. If you want to avoid this, you need to prevent cookies from being stored on your browser.
Amendments to our data protection provisions
Queries and questions for the Data Protection Officer
Should you have questions regarding data protection, please write us an email or contact
the person responsible for data protection in our organisation directly: