+49 (0) 6172 9081316

info@sonne-hotel.com

Buchen
Anfragen

Privacy Policy

1. Overview of Data Protection

1.1 General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data refers to all data that can personally identify you. Detailed information on data protection can be found in our privacy policy below.

1.2 Data Collection on This Website

Who is responsible for data collection on this website?

The data processing on this website is carried out by the website operator. You can find their contact details in the section titled “Notice on the Responsible Party” in this privacy policy.

How do we collect your data?

Your data is collected, on one hand, when you provide it to us directly, such as when you enter data into a contact form.

Other data is collected automatically or with your consent when you visit the website, typically technical data (e.g., your internet browser, operating system, or the time you accessed the site). This data is collected automatically as soon as you enter this website.

What do we use your data for?

Part of the data is collected to ensure the error-free operation of the website. Other data may be used to analyze your user behavior. If the website can be used to initiate or complete contracts, the submitted data will also be processed for contract offers, orders, or other inquiries.

What rights do you have regarding your data?

You have the right to receive information free of charge about the origin, recipient, and purpose of your stored personal data at any time. You also have the right to request correction or deletion of this data. If you have given consent for data processing, you can revoke this consent at any time for the future. Additionally, you have the right to request a restriction on the processing of your personal data under certain circumstances. You also have the right to lodge a complaint with the relevant regulatory authority.

If you have further questions about data protection, please contact us at any time.

1.3 Analysis Tools and Third-Party Tools

When you visit this website, your browsing behavior may be statistically analyzed, primarily using analytics programs.

Detailed information on these analytics programs can be found in the following privacy policy.

1.4 Hotel Image Copyright Notice

All hotel images on this website are copyrighted and may not be used for other commercial purposes without permission. For usage inquiries, please contact info@sonne-hotel.com.

2. Hosting

We host our website’s content with the following provider:

2.1 External Hosting

This website is hosted externally. The personal data collected on this website is stored on the servers of the hosting provider. This may include IP addresses, contact requests, metadata, communication data, contract data, contact details, names, website access data, and other data generated by a website.

External hosting is performed for the purpose of fulfilling contracts with our prospective and existing customers (Article 6(1)(b) GDPR) and in the interest of providing a secure, fast, and efficient online presence through a professional provider (Article 6(1)(f) GDPR). If consent for specific processing has been requested, processing is based solely on this consent (Article 6(1)(a) GDPR and Section 25(1) TTDDG), and consent can be withdrawn at any time.

Our hosting provider processes your data only to the extent necessary to fulfill its performance obligations and follows our instructions regarding this data.

We use the following hosting provider:

Main Website Server:
Tencent Cloud Computing (Beijing) Co., Ltd
Tencent Building
NO. 10000, Shennan Avenue,
Nanshan District, Shenzhen, Guangdong, China

Booking Section:
Online Hotel Direct Booking Engine —— Little Hotelier
1 Lyric Square, 8th floor, London, W6 0NB
Registriert in England & Wales No. 0724280

Data Processing Agreement (DPA)

We have entered into a Data Processing Agreement (DPA) with the above provider. This legally required agreement ensures that the provider processes personal data of our website visitors only according to our instructions and in compliance with the GDPR.

3. General Information and Mandatory Information

3.1 Data Protection

The operators of these pages take the protection of your personal data very seriously. We handle your personal data confidentially and in accordance with statutory data protection regulations and this privacy policy.

When you use this website, various personal data will be collected. Personal data refers to data with which you can be personally identified. This privacy policy explains which data we collect, how we use it, and for what purposes.

Please note that data transmission over the internet (e.g., in email communications) can have security vulnerabilities. Complete protection of data from third-party access is not possible.

3.2 Notice on the Responsible Party

The party responsible for data processing on this website is:

Shining Green Service GmbH
Hotel Sonne
Landwehrweg 3
61350 Bad Homburg v.d.H.

Telefon: +49 (0) 6172 9081316
E-Mail: info@ sonne-hotel.com

The responsible party is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).

3.3 Data Retention Period

Unless a more specific retention period is mentioned in this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you request deletion or revoke consent for data processing, your data will be deleted unless we have legally permissible reasons to retain your personal data (e.g., tax or commercial retention obligations); in the latter case, the deletion occurs after these reasons cease to exist.

3.4 General Information on the Legal Basis for Data Processing on This Website

If you have consented to data processing, we process your personal data based on Article 6(1)(a) of the GDPR, or Article 9(2)(a) of the GDPR, if special categories of data are processed under Article 9(1) of the GDPR. In the case of explicit consent for the transfer of personal data to third countries, the data processing also occurs based on Article 49(1)(a) of the GDPR. If you have consented to the storage of cookies or access to information on your device (e.g., via device fingerprinting), the data processing also takes place based on § 25(1) TTDSG. Consent can be revoked at any time. If your data is required for the performance of a contract or to carry out pre-contractual measures, we process your data based on Article 6(1)(b) of the GDPR. Additionally, we process your data if required for the fulfillment of a legal obligation based on Article 6(1)(c) of the GDPR. Data processing can also occur based on our legitimate interest under Article 6(1)(f) of the GDPR. The specific legal basis for data processing in each case will be outlined in the following sections of this privacy policy.

3.5 Recipients of Personal Data

As part of our business operations, we collaborate with various external parties. In some cases, the transfer of personal data to these external parties is necessary. We only share personal data with external parties when it is required for the fulfillment of a contract, when we are legally obligated to do so (e.g., sharing data with tax authorities), when we have a legitimate interest under Article 6(1)(f) of the GDPR, or when another legal basis permits the data transfer. When using processors, we share personal data only based on a valid data processing agreement. In the case of joint processing, a joint processing agreement will be concluded.

3.6 Withdrawal of Your Consent to Data Processing

Many data processing operations are only possible with your explicit consent. You can withdraw your consent at any time. The legality of the data processing carried out until the withdrawal remains unaffected by the withdrawal.

3.7 Right to Object to Data Collection in Special Cases and Direct Marketing (Article 21 GDPR)

If data processing is based on Article 6(1)(e) or (f) of the GDPR, you have the right to object at any time, on grounds related to your particular situation, to the processing of your personal data; this also applies to profiling based on these provisions. The specific legal basis for the processing can be found in this privacy policy. If you object, we will no longer process your personal data, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing is for the establishment, exercise, or defense of legal claims (objection under Article 21(1) GDPR).

If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing, including profiling to the extent that it is related to direct marketing. If you object, your personal data will no longer be used for direct marketing purposes (objection under Article 21(2) GDPR).

3.8 Right to Lodge a Complaint with the Competent Supervisory Authority

In the event of violations of the GDPR, affected individuals have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, place of work, or the location of the alleged infringement. This right to lodge a complaint is without prejudice to other administrative or judicial remedies.

3.9 Right to Data Portability

You have the right to receive personal data which we process based on your consent or for the performance of a contract in a structured, commonly used, and machine-readable format. You also have the right to request that this data be transmitted directly to another controller, where technically feasible.

3.10 Right to Information, Rectification, and Deletion

You have the right, under applicable law, to request information free of charge about your stored personal data, its origin, recipients, and the purpose of data processing, and if applicable, the right to rectification or deletion of this data. For these and any further questions related to personal data, you can contact us at any time.

3.11 Right to Restriction of Processing

You have the right to request the restriction of the processing of your personal data. You can contact us at any time to exercise this right. The right to restriction of processing applies in the following cases:

  • If you contest the accuracy of the personal data we have stored, we usually need time to verify this. During the verification period, you have the right to request the restriction of the processing of your personal data.
  • If the processing of your personal data was unlawful, you can request the restriction of data processing instead of deletion.
  • If we no longer need your personal data, but you require it for the establishment, exercise, or defense of legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
  • If you have lodged an objection under Article 21(1) GDPR, a balance must be made between your and our interests. As long as it is not clear whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, such data may only be processed with your consent or for the establishment, exercise, or defense of legal claims, or to protect the rights of another natural or legal person, or for reasons of important public interest of the European Union or a member state.

3.12 SSL/TLS Encryption

For security reasons and to protect the transmission of confidential content, such as orders or inquiries you send to us as the website operator, this site uses SSL/TLS encryption. You can recognize an encrypted connection by the fact that the address bar of the browser changes from “http://” to “https://” and by the padlock symbol in your browser bar.

When SSL/TLS encryption is activated, the data you transmit to us cannot be read by third parties.

4. Data Collection on This Website

4.1 Cookie Policy

Effective Date: 06-Nov-2024
Last Updated: 06-Nov-2024

Cookie Settings

Our websites use what are known as “cookies.” Cookies are small data packets that do not harm your device. They are either stored temporarily for the duration of a session (session cookies) or permanently on your device (permanent cookies). Session cookies are automatically deleted after your visit ends. Permanent cookies remain stored on your device until you delete them yourself or your web browser automatically deletes them.

Cookies can come from us (first-party cookies) or from third-party companies (third-party cookies). Third-party cookies enable the integration of specific services from third-party companies within websites (e.g., cookies for handling payment services).

Cookies serve various functions. Many cookies are technically necessary because certain website functions would not work without them (e.g., the shopping cart function or video display). Other cookies may be used to analyze user behavior or for advertising purposes.

Cookies required for the electronic communication process, the provision of certain functions requested by you (e.g., shopping cart function), or the optimization of the website (e.g., cookies for measuring web traffic) are stored based on Article 6(1)(f) of the GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. If consent to store cookies and similar recognition technologies is requested, processing is based solely on this consent (Article 6(1)(a) of the GDPR and Section 25(1) of the TTDDG); consent can be revoked at any time.

You can configure your browser to inform you about the setting of cookies and to allow cookies only on a case-by-case basis, to exclude the acceptance of cookies for specific cases or in general, and to activate the automatic deletion of cookies when closing the browser. The functionality of this website may be limited when cookies are disabled.

Below, you will find links to support documents on how to manage and delete cookies in the most popular web browsers.

Chrome

Safari

Firefox

Internet Explorer

If you are using a different web browser, please visit the official support documents of your browser.

Which Cookies and Services Are Used on This Website:

4.2 Contact Form

If you send us inquiries via the contact form, the information you provide in the inquiry form, including the contact details you provide, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not share this data without your consent.

The processing of this data is based on Article 6(1)(b) of the GDPR if your request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of inquiries addressed to us (Article 6(1)(f) of the GDPR) or on your consent (Article 6(1)(a) of the GDPR) if requested; consent can be revoked at any time.

The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to its storage, or the purpose for the data storage no longer applies (e.g., after your inquiry has been processed). Mandatory legal provisions—especially retention periods—remain unaffected.

5. Plugins and Tools

Google Fonts

This site uses Google Fonts provided by Google for the uniform display of fonts. When you access a page, your browser loads the necessary fonts into your browser cache to display texts and fonts correctly.

For this purpose, your browser needs to establish a connection to Google’s servers. As a result, Google becomes aware that your IP address has accessed this website. The use of Google Fonts is based on Article 6(1)(f) of the GDPR. The website operator has a legitimate interest in the uniform presentation of the typeface on its website. If consent has been requested, the processing is carried out solely on the basis of Article 6(1)(a) of the GDPR and Section 25(1) of the TTDDG, provided the consent includes the storage of cookies or access to user device information (e.g., device fingerprinting) as defined in the TTDDG. Consent can be revoked at any time.

If your browser does not support Google Fonts, a standard font from your computer will be used.

More information about Google Fonts can be found in the Google Fonts FAQ https://developers.google.com/fonts/faq and in Google’s Privacy Policy: https://policies.google.com/privacy?hl=de.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA, which aims to ensure that data processing in the USA adheres to European data protection standards. Every company certified under the DPF agrees to comply with these data protection standards. For more information, please visit: https://www.dataprivacyframework.gov/participant/5780.

Google Maps

This website uses the Google Maps service. The provider is Google Ireland Limited (“Google”), located at Gordon House, Barrow Street, Dublin 4, Ireland. This service enables us to incorporate map content on our website.

To use Google Maps features, you need to allow the storage of your IP address. This information is typically transmitted to and stored on a Google server in the United States. The provider of this site has no control over this data transmission. If Google Maps is enabled, Google may use Google Fonts for uniform font display. When Google Maps is loaded, your browser retrieves the necessary web fonts into your browser cache to display texts and fonts correctly.

The use of Google Maps is in the interest of an appealing presentation of our online offerings and to make it easier to locate the places indicated on our website. This constitutes a legitimate interest under Article 6(1)(f) of the GDPR. If consent has been requested, processing is based solely on Article 6(1)(a) of the GDPR and Section 25(1) of the TTDDG, provided consent includes the storage of cookies or access to user device information (e.g., device fingerprinting) as defined in the TTDDG. Consent can be revoked at any time.

Data transfers to the USA are based on the EU Commission’s standard contractual clauses. Details can be found at: Google’s GDPR Terms https://privacy.google.com/businesses/gdprcontrollerterms/ and Standard Contractual Clauses https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

For more information on how user data is handled, please see Google’s Privacy Policy: https://policies.google.com/privacy?hl=de.

The company is certified under the “EU-US Data Privacy Framework” (DPF) to ensure that data processing in the USA meets European data protection standards. More information can be found at: Data Privacy Framework: https://www.dataprivacyframework.gov/participant/5780.

Google reCAPTCHA

We use Google’s reCAPTCHA (hereafter “reCAPTCHA”) on this website. The provider is Google Ireland Limited, located at Gordon House, Barrow Street, Dublin 4, Ireland.

reCAPTCHA is intended to check whether data entry on this website (e.g., in a contact form) is carried out by a human or an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the site. To conduct the analysis, reCAPTCHA evaluates various information (e.g., IP address, time spent on the website, mouse movements made by the user). The data collected during the analysis is sent to Google.

The reCAPTCHA analyses take place entirely in the background. Website visitors are not informed that an analysis is taking place.

Data storage and analysis are based on Article 6(1)(f) of the GDPR. The website operator has a legitimate interest in protecting its website from abusive automated spying and spam. If consent has been requested, processing is based solely on Article 6(1)(a) of the GDPR and Section 25(1) of the TTDDG, provided the consent includes the storage of cookies or access to user device information (e.g., device fingerprinting) as defined in the TTDDG. Consent can be revoked at any time.

More information about Google Fonts can be found in the Google Fonts FAQ https://developers.google.com/fonts/faq and in Google’s Privacy Policy: https://policies.google.com/privacy?hl=de.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA, which aims to ensure that data processing in the USA adheres to European data protection standards. Every company certified under the DPF agrees to comply with these data protection standards. For more information, please visit: https://www.dataprivacyframework.gov/participant/5780.

LiteSpeed Cache

This site uses caching to enable a faster response time and better user experience. Caching may temporarily store a duplicate copy of every web page displayed on this site. All cache files are temporary and are never accessed by third parties, except as necessary to obtain technical support from the cache plugin provider. Cache files expire according to a schedule set by the administrator but can be removed manually by the administrator if needed. We may use QUIC.cloud services to process and temporarily cache your data. For more details, please refer to the QUIC.cloud Privacy Policy https://quic.cloud/privacy-policy/.

Email

info@sonne-hotel.com

Telefone

+49 (0) 6172 9081316

Mobile

+49 (0) 1520 8059999

Address

Landwehrweg 3

61350
Bad Homburg v. d. H.

Quelle: https://www.e-recht24.de