We take the protection of your personal data very seriously and comply with the data protection rules. Personal data are only collected, processed or used with the consent of the data subject, when this is necessary to fulfil a quotation or contract, or when a German law permits or stipulates this collection, processing or use. Personal data are stored to the extent required for technical purposes. The data will never be disclosed to third parties without the consent of the data subject.
The controller in terms of the General Data Protection Regulation and other national data protection laws of the EU Member States, and other data protection provisions is:
Schloss Friedestrom Hotel
41541 Dormagen, Germany
Tel.: +49 (0)21335030
Data protection officer
After examining the legal requirements, the following facts apply to our business:
- There are fewer than 10 people who are "continually" involved with the processing of personal data.
- There are fewer than 20 people "generally" involved with the processing of personal data.
- Data required for customer administration (name, address, e-mail address, etc.) do not contain any "sensitive data".
- Sensitive data are only gathered voluntarily with the prior consent of the customer.
- Personal data are not used for the purpose of commercial transfer (e.g. selling data).
There is therefore no requirement for a data protection officer.
General remarks on data processing
Extent of processing of personal data: we process the personal data of our users only to the extent necessary to provide an operational website and our information and services. The personal data of our users is only processed with the user's consent. An exception applies in cases where obtaining consent in advance is not possible for practical reasons, and the data processing is permitted by legal provisions.
Legal basis for processing personal data
Where we obtain consent from the data subject for processing personal data, the legal basis is Art. 6 Para. 1 lit. a of the EU General Data Protection Regulation (GDPR). When processing personal data required for concluding a contract where the contracting party is the data subject, the legal basis is Art. 6 Para. 1 lit. b. This also applies to processing procedures which are necessary for carrying out pre-contractual measures. Where it is necessary to process personal data to meet a legal obligation to which our business is subject, the legal basis is Art. 6 Para. 1 lit. c GDPR. If the vital interests of the data subject or another natural person make it necessary to process personal data, the legal basis is Art. 6 Para. 1 lit. d GDPR. If the processing is required to safeguard a justified interest of our company or a third party and the interests, basic rights and basic freedoms of the data subject do not outweigh the first-mentioned interest, the legal basis for the processing is Art. 6 Para. 1 lit. f GDPR.
Deleting data and period of storage
The personal data of the data subject will be deleted or processing will be restricted as soon as the purpose for the storage ceases to apply. Data can be stored beyond this point if there are provisions for this through the European or national legislators in EU legal regulations, laws or other provisions to which the controller is subject. The data will also be subject to restricted processing or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
Collection of general information (server log files)
When you access our website, general information is collected automatically. This information (server log files) contains the type of web browser, the operating system, the domain name of your Internet service provider, etc. This does not include personal information that could identify you. This information is required in order to supply the correct website content which you have requested and is a necessary requirement of using the Internet. We carry out statistical analysis on anonymous information of this kind in order to optimise our web presence and the underlying technology. We reserve the right to have data subsequently checked (by a certified company) if we become aware of concrete evidence of illegal use.
Google Analytics is not installed!
Cartographic services from Google Maps
This website integrates external fonts by Google Fonts. Google Fonts is a service of Google Inc. (USA). Integrating these fonts takes place by accessing a server at Google in the USA and it can be assumed that requests by Google will be stored. Further information can be found in the Google Fonts FAQ at https://developers.google.com/fonts/faq#what-does-using-the-google-fonts-api-mean-for-the-privacy-of-my-users and the Google Privacy notice at https://policies.google.com/?hl=en-GB&gl=de.
Link to Facebook
This website has a link to Facebook. You will only be transferred to the Facebook website if you click on/activate the Facebook button.
Link to Instagram
This website has a link to Instagram. You will only be transferred to the Instagram website if you click on/activate the Instagram button.
Our website uses links to external websites which are specially marked and whose content does not appear on our server. The external content of these links was checked when the links were established. However we cannot guarantee that no changes have been made to the content of the various providers afterwards. If you notice that the content of the external providers violates current legislation, please inform us.
No contact form
Our website does not send e-mails. We do not have a contact form on our website. When you click on our e-mail address, "your personal e-mail programme" opens automatically and this e-mail programme is used to send us your information. We wish to remind you of the fact that data transfer via the Internet (e.g. when communicating by e-mail) can contain security gaps. It is not possible to provide total protection for data from access by third parties. If you have concerns about sending us an e-mail, please just telephone!
An explanation about personal data
These are data which you provide to the domain owner (this website) and which enable you to be personally identified (e.g. your name, your e-mail address or account information), or other data which could be linked by this website from a contact form.
Definition: Non-personal data
This includes information which is recorded about users but which does not refer to any individually identifiable user.
How are personal data collected?
Only those data which we obtain from you voluntarily are stored and made available. We obtain these data when, for example, you are interested in our business and wish further information. However, in principle we only collect data which are necessary for the delivery of our services. If we ask you for additional information, this is voluntary.
The right to access, deletion and restriction of processing
You have the right at any time to free access to your stored personal data, its origin and recipients and to the purpose of the data processing as well as a right to rectification, restriction of processing or deletion of these data. We process personal data solely in compliance with the EU General Data Protection Regulation (GDPR). You may also ask us questions on the collection, processing and use of your personal data. For this and any further questions on the subject of personal data, you can contact us at any time at the address supplied in our legal statement.
Change to our data protection policy
Institut für Informations-, Telekommunikations- und Medienrecht
der Westfälischen Wilhelms-Universität Münster
Department of Civil Law
Prof. Dr. Thomas Hoeren
48149 Münster, Germany
Tel.: +49 (0)251-830
CCI - Chamber of Industry and Commerce Düsseldorf
40212 Düsseldorf, Germany
Tel.: +49 0211 35570
Commissioner for Data Protection and
Freedom of Information of North Rhine-Westphalia
40213 Düsseldorf, Germany
Tel.: +49 (0)211 384240
eRecht24 GmbH & Co. KG
10117 Berlin, Germany
CCI Krefeld - Mittlerer Niederrhein