Data protection - Hotel home

Privacy policy

General note and important information

Designation of the responsible party

The controller in charge of data processing on this website is:

Home Hotelbetrieb GmbH & Co. KG
Börsenstraße 78-80
26382 Wilhelmshaven
E-mail: info@hotelhome.de

The controller alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, contact details, etc.).

Revocation of your consent to data processing

Some data processing operations are only possible with your express consent. You can withdraw your consent at any time. An informal notification by e-mail is sufficient for the revocation. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to lodge a complaint with the competent supervisory authority

As a data subject, you have the right to lodge a complaint with the competent supervisory authority in the event of a breach of data protection law. The competent supervisory authority with regard to data protection issues is the state data protection officer of the federal state in which our company is based. The following link provides a list of data protection officers and their contact details: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right to data portability

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to third parties. The data will be provided in a machine-readable format. If you request the direct transfer of the data to another controller, this will only take place if it is technically feasible.

Right to information, correction, blocking, deletion

You have the right to free information about your stored personal data, the origin of the data, its recipients and the purpose of the data processing and, if necessary, a right to correction, blocking or deletion of this data at any time within the framework of the applicable legal provisions. You can contact us at any time using the contact options listed in the legal notice if you have any further questions on the subject of personal data.

SSL or TLS encryption

For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses SSL or TLS encryption. This means that data that you transmit via this website cannot be read by third parties. You can recognize an encrypted connection by the “https://” address line of your browser and the lock symbol in the browser line.

Server log files

The website provider automatically collects and stores information that your browser automatically transmits to us in server log files. These are

Visited page on our domain
Date and time of the server request
Browser type and browser version
Operating system used
Referrer URL
Host name of the accessing computer
IP address

This data is technically necessary for us to display our website to you and to ensure stability and security. (The legal basis for data processing is Art. 6 para. 1 lit. f GDPR) This data is not merged with other data sources.

Registration on this website

You can register on our website to use certain functions. The transmitted data is used exclusively for the purpose of using the respective offer or service. Pﬂichtangaben requested during registration must be provided in full. Otherwise we will reject the registration.

In the event of important changes, for example for technical reasons, we will inform you by e-mail. The e-mail will be sent to the address provided during registration. The processing of the data entered during registration is based on your consent (Art. 6 para. 1 lit. a GDPR). You can withdraw your consent at any time. An informal notification by e-mail is sufficient for the revocation. The legality of the data processing that has already taken place remains unaffected by the revocation. We store the data collected during registration for the period that you are registered on our website. Your data will be deleted if you cancel your registration.

Statutory retention periods remain unaffected.

Contact form

Data transmitted via the contact form, including your contact details, will be stored in order to process your request or to be available for follow-up questions. This data will not be passed on without your consent.

Depending on the type of request, the legal basis for this processing is Art. 6 para. 1 lit. b GDPR for requests that you make yourself as part of a pre-contractual measure or Art. 6 para. 1 sentence 1 lit. f GDPR if your request is of a different nature. If personal data is requested that we do not need to fulfill a contract or to protect legitimate interests, it will be transmitted to us on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR.t unaffected by the revocation.

Data transmitted via the contact form will remain with us until you ask us to delete it, revoke your consent to storage or there is no longer any need to store the data. Mandatory statutory provisions – in particular retention periods – remain unaffected.

Newsletter data

We require an e-mail address from you in order to send you our newsletter. Veriﬁcation of the e-mail address provided is necessary and you must consent to receiving the newsletter. Additional data is not collected or is voluntary. The data is used exclusively for sending the newsletter.

The data provided when registering for the newsletter will be processed exclusively on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can withdraw your consent at any time. To withdraw your consent, simply send us an informal email or unsubscribe via the “Unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.

Data entered to set up the subscription will be deleted if you unsubscribe. If this data has been transmitted to us for other purposes and elsewhere, it will remain with us.

Brevo

This website uses Brevo to send newsletters. The provider is Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.

Brevo is a service with which, among other things, the sending of newsletters can be organized and analyzed. The data you enter for the purpose of subscribing to the newsletter is stored on the servers of Sendinblue GmbH in Germany.

Data analysis by Brevo

With the help of Brevo, we are able to analyze our newsletter campaigns. So we can

z. For example, we can see whether a newsletter message has been opened and which links have been clicked on. In this way, we can determine which links have been clicked on particularly often.

We can also recognize whether certain previously deﬁned actions were carried out after opening/clicking (conversion rate). For example, we can recognize whether you have made a purchase after clicking on the newsletter.

Brevo also allows us to subdivide (“cluster”) newsletter recipients according to various categories. The newsletter recipients can be subdivided according to age, gender or place of residence, for example. In this way, the newsletters can be better adapted to the respective target groups.

If you do not wish to be analyzed by Brevo, you must unsubscribe from the newsletter. We provide a link for this purpose in every newsletter message.

Detailed information on the functions of Brevo can be found at the following link: https://www.brevo.com/de/newsletter-software/.

Cookies

Cookies are small text files or other storage notes that store information on end devices and read information from the end devices. For example, to store the login status in a user account, the contents of a shopping cart in an e-shop, the content accessed or the functions used in an online offering. Cookies can also be used for various purposes, e.g. to ensure the functionality, security and convenience of online services and to analyze visitor flows.

Notes on consent: We use cookies in accordance with the statutory provisions. We therefore obtain prior consent from users, unless this is not required by law. In particular, consent is not required if the storage and reading of information, including cookies, is absolutely necessary in order to provide the user with a telemedia service expressly requested by them (i.e. our online offer). The revocable consent is clearly communicated to the users and contains the information on the respective cookie use.

Information on legal bases under data protection law: The legal basis under data protection law on which we process users’ personal data with the help of cookies depends on whether we ask users for their consent. If users give their consent, the legal basis for processing their data is their declared consent. Otherwise, the data processed using cookies will be processed on the basis of our legitimate interests (e.g. in the commercial operation of our online offering and improving its usability) or, if this is done in the context of fulfilling our contractual obligations, if the use of cookies is necessary to fulfill our contractual obligations. We will explain the purposes for which we process cookies in the course of this privacy policy or as part of our consent and processing procedures.

Storage duration

A distinction is made between the following types of cookies with regard to the storage period:

Temporary cookies (also: session cookies): Temporary cookies are deleted at the latest after a user has left an online service and closed their end device (e.g. browser or mobile application).

Permanent cookies: Permanent cookies remain stored even after the end device is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. The user data collected with the help of cookies can also be used to measure reach. If we do not provide users with explicit information on the type and storage duration of cookies (e.g. when obtaining consent), users should assume that cookies are permanent and can be stored for up to two years.

General information on revocation and objection (opt-out): Users can revoke the consent they have given at any time and also object to the processing in accordance with the legal requirements in Art. 21 GDPR (further information on objection can be found in this data protection declaration). Users can also declare their objection using their browser settings.

Cookie settings / objection option:

Edit Cookies

Further information on processing operations, procedures and services:

Processing of cookie data on the basis of consent: We use a cookie consent management procedure in which the consent of users to the use of cookies or the processing and providers named in the cookie consent management procedure can be obtained, managed and revoked by users. The declaration of consent is stored so that it does not have to be requested again and the consent can be proven in accordance with the legal obligation. Consent can be stored on the server and/or in a cookie (so-called opt-in cookie or using comparable technologies) in order to be able to assign the consent to a user or their device. Subject to individual information on the providers of cookie management services, the following information applies: Consent may be stored for up to two years. A pseudonymous user identiﬁcator is created and stored with the time of consent, information on the scope of consent (e.g. which categories of cookies and/or service providers) as well as the browser, system and end device used.

Hosting

We host the content of our website with the provider 3W2M – Tim Binderszewsky, Schulstraße 55, 26384 Wilhelmshaven (hereinafter referred to as the hoster). When you visit our website, the host collects various logﬁles including your IP addresses.

The hoster is used on the basis of Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in ensuring that our website is displayed as reliably as possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. for device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

Order processing

We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract prescribed by data protection law, which ensures that it processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

Facebook

Plugins from the social network Facebook (Facebook Inc., 1601 Willow Road, Menlo Park, California, 94025, USA) are integrated on our pages. You can recognize the Facebook plugins by the Facebook logo or the “Like” button on our site. You can ﬁnd an overview of the Facebook plugins here: http://developers.facebook.com/docs/plugins/.

Type and scope of processing

When you visit our pages, a direct connection is established between your browser and the Facebook server via the plugin. Facebook receives the information that you have visited our site with your IP address. If you click on the Facebook “Like” button while you are logged into your Facebook account, you can link the content of our pages to your Facebook profile. This allows Facebook to associate your visit to our pages with your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Facebook. Further information on this can be found in Facebook’s privacy policy at http://de- en.facebook.com/policy.php

If you do not want Facebook to be able to associate your visit to our pages with your Facebook user account, please log out of your Facebook user account.

Instagram

Components of the Instagram service are integrated on this website. Instagram is a service that qualiﬁes as an audiovisual platform and allows users to share photos and videos and also to redistribute such data in other social networks. The operating company of Instagram’s services is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA.

Type and scope of processing

With each call-up to one of the individual pages of this Internet site, which is operated by the controller and on which an Instagram component (Insta button) was integrated, the Internet browser on the information technology system of the data subject is automatically prompted to the download of a display of the corresponding Instagram component of Instagram. As part of this technical process, Instagram receives information about which specific subpage of our website is visited by the data subject. If the data subject is logged in at the same time on Instagram, Instagram detects with every call-up to our website by the data subject-and for the entire duration of their stay on our Internet site-which specific sub-page of our Internet page was visited by the data subject. This information is collected by the Instagram component and assigned by Instagram to the respective Instagram account of the data subject.

If the data subject clicks on one of the Instagram buttons integrated on our website, the data and information transmitted with it is assigned to the personal Instagram user account of the data subject and stored and processed by Instagram. Instagram always receives information via the Instagram component that the data subject has visited our website if the data subject is logged in to Instagram at the same time as accessing our website; this occurs regardless of whether the data subject clicks on the Instagram component or not. If the data subject does not want this information to be transmitted to Instagram, he or she can prevent the transmission by logging out of his or her Instagram account before accessing our website.

Further information and the applicable data protection provisions of Instagram can be found at https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/.

YouTube

Type and scope of processing

We have integrated YouTube Video on our website. YouTube Video is a component of the video platform of YouTube, LLC, on which users can upload content, share it over the Internet and receive detailed statistics. YouTube Video enables us to integrate content from the platform into our website.

YouTube Video uses cookies and other browser technologies to evaluate user behavior, recognize users and create user profiles. This information is used, among other things, to analyze the activity of the content listened to and to create reports. If a user is registered with YouTube, LLC, YouTube Video can assign the videos played to the proﬁle.

When you access this content, you establish a connection to the servers of YouTube, LLC, Google Ireland Limited, Gordon House, Barrow Street Dublin 4 Ireland, whereby your IP address and possibly browser data such as your user agent are transmitted.

Purpose and legal basis

The use of the service is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and §25 para. 1 TDDDG. We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certiﬁed in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

Storage duration

The specific storage period of the processed data cannot be influenced by us, but is determined by YouTube, LLC. Further information can be found in the privacy policy for YouTube Video: https://policies.google.com/privacy.

Vimeo

Type and scope of processing

We have integrated Vimeo Video on our website. Vimeo Video is a component of the video platform of Vimeo, LLC, where users can upload content, share it over the Internet and receive detailed statistics.

Vimeo Video enables us to integrate content from the platform into our website.

Vimeo Video uses cookies and other browser technologies to evaluate user behavior, recognize users and create user profiles. This information is used, among other things, to analyze the activity of the content listened to and to create reports.

When you access this content, you establish a connection to the servers of Vimeo, LLC, 555 W 18th St, New York, New York 10011, whereby your IP address and possibly browser data such as your user agent are transmitted.

Purpose and legal basis

The use of Vimeo is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and §25 para. 1 TDDDG. We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certiﬁed in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

Storage duration

The specific storage period of the processed data cannot be influenced by us, but is determined by Vimeo, LLC. Further information can be found in the privacy policy for Vimeo Video: https://vimeo.com/privacy.

Google Analytics

Type and scope of processing

We use Google Analytics from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, as an analysis service for the statistical evaluation of our online offering. This includes, for example, the number of visits to our website, subpages visited and the time spent by visitors.

Google Analytics uses cookies and other browser technologies to evaluate user behavior and recognize users.

This information is used, among other things, to compile reports on website activity.

Purpose and legal basis

The use of Google Analytics is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TDDDG.

We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certiﬁed in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

In cases where there is no adequacy decision by the European Commission (including US companies that are not certified under the EU-U.S. DPF), we have agreed other appropriate safeguards with the recipients of the data within the meaning of Art. 44 GDPR. GDPR have been agreed. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of June 4, 2021. You can view a copy of these standard contractual clauses at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX%3A32021D0914&from=DE.

In addition, before such a third country transfer, we obtain your consent in accordance with Art. 49 para. 1 sentence 1 lit. a. GDPR, which you give via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that in the case of third country transfers, there may be risks that are unknown in detail (e.g. data processing by security authorities in the third country, the exact scope and consequences of which for you we do not know, over which we have no control and of which you may not become aware).

Storage duration

The specific storage period of the processed data cannot be influenced by us, but is determined by Google Ireland Limited. Further information can be found in the privacy policy for Google Analytics: https://policies.google.com/privacy.

Google reCAPTCHA

Type and scope of processing

We have integrated Google reCAPTCHA components on our website. Google reCAPTCHA is a service of Google Ireland Limited and enables us to distinguish whether a contact request comes from a natural person or is automated by means of a program. When you access this content, you establish a connection to the servers of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, whereby your IP address and possibly browser data such as your user agent are transmitted. In addition, Google reCAPTCHA records the time spent on the website and the user’s mouse movements in order to distinguish between automated and human requests. This data is processed exclusively for the above-mentioned purposes and to maintain the security and functionality of Google reCAPTCHA.

Purpose and legal basis

The use of Google reCAPTCHA is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and §25 para. 1 TDDDG. We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certiﬁed in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

Storage duration

Google Maps

Type and scope of processing

We use the map service Google Maps to create directions. Google Maps is a service provided by Google Ireland Limited, which displays a map on our website.

When you access this content on our website, you establish a connection to servers of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, whereby your IP address and possibly browser data such as your user agent are transmitted. This data is processed exclusively for the above-mentioned purposes and to maintain the security and functionality of Google Maps.

Purpose and legal basis

The use of Google Maps is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and §25 para. 1 TDDDG. We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certiﬁed in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

Storage duration

Google Tag Manager

Type and scope of processing

We use the Google Tag Manager of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager is used to manage website tags via an interface and enables us to control the precise integration of services on our website.

This allows us to ﬂexibly integrate additional services in order to evaluate user access to our website.

Purpose and legal basis

The use of Google Tag Manager is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and §25 para. 1 TDDDG. We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certiﬁed in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

Storage duration

Pinterest plugin

Our website uses functions of the social network Pinterest. The provider is Pinterest Inc, 808 Brannan Street, San Francisco, CA 94103-490, USA.

When you access a page with Pinterest functions, your browser establishes a direct connection to the Pinterest servers. Log data is transmitted to the Pinterest servers. The servers are located in the USA. The log data may allow conclusions to be drawn about your IP address, websites visited, browser type and settings, date and time of the request, your use of Pinterest and cookies.

The use of Pinterest Plugin is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TDDDG.

Details on this can be found in Pinterest’s privacy policy: https://about.pinterest.com/de/privacy-policy.

Google Ads

Type and scope of processing

We have integrated Google Ads on our website. Google Ads is a service provided by Google Ireland Limited to display targeted advertising to users. Google Ads uses cookies and other browser technologies to evaluate user behaviour and recognize users.

Google Ads collects information about visitor behavior on various websites. This information is used to optimize the relevance of advertising. Furthermore, Google Ads delivers targeted advertising based on behavioral profiles and geographic location. Your IP address and other identiﬁcation features such as your user agent are transmitted to the provider.

If you are registered with a Google Ireland Limited service, Google Ads can assign the visit to your account. Even if you are not registered with Google Ireland Limited or have not logged in, it is possible that the provider will ﬁnd out and store your IP address and other identiﬁcation features.

In this case, your data will be passed on to the operator of Google Ads, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Purpose and legal basis

The use of Google Ads is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TDDDG.

Storage duration

Bing Ads

Type and scope of processing

We have integrated Bing Ads on our website. Bing Ads is a service provided by Microsoft Corporation to display targeted advertising to users. Bing Ads uses cookies and other browser technologies to evaluate user behaviour and recognize users.

Bing Ads collects information about visitor behavior on various websites. This information is used to optimize the relevance of advertising. Furthermore, Bing Ads delivers targeted advertising based on behavioral profiles and geographic location. Your IP address and other identiﬁcation features such as your user agent are transmitted to the provider.

In this case, your data will be passed on to the operator of Bing Ads, Microsoft Corporation, One Microsoft Way Redmond, WA 98052-6399, United States.

Purpose and legal basis

The use of Bing Ads is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and §25 para. 1 TDDDG. We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certiﬁed in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

Storage duration

The specific storage period of the processed data cannot be influenced by us, but is determined by Microsoft Corporation. Further information can be found in the privacy policy for Bing Ads: https://privacy.microsoft.com/de-de/privacystatement.

Font Awesome

Type and scope of processing

We use Font Awesome from the provider Fonticons, Inc. to properly provide the content of our website.

Purpose and legal basis

The use of Font Awesome is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TDDDG.

We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. In cases where no adequacy decision of the European Commission exists, we have agreed other appropriate safeguards with the recipients of the data within the meaning of Art. 44 GDPR. GDPR have been agreed. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of June 4, 2021. You can view a copy of these standard contractual clauses at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE.

Storage duration

The specific storage period of the processed data cannot be influenced by us, but is determined by Fonticons, Inc. Further information can be found in the privacy policy for Font Awesome CDN: https://cdn.fontawesome.com/privacy.

Booking portal CBOOKING.DE – Room booking

Our website uses the service of the website www.cbooking.de operated by HotelNetSolutions GmbH. The operator of the site is :

HotelNetSolutions GmbH
Genthiner Str. 8
10785 Berlin
Germany

Type and scope of processing

If you would like to book a room with us via our website, you will be redirected to the website of www.cbooking.de. This establishes a connection to the HotelNetSolutions GmbH servers.
The HotelNetSolutions GmbH service is used in the interest of automated room booking. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.
Further information on the handling of user data can be found in the data protection declaration of HotelNetSolutions GmbH at: https://www.hotelnetsolutions.de/Datenschutz/.

Order processing

We have concluded data processing agreements (DPAs) for the use of the aforementioned booking services. This is a contract prescribed by data protection law, which ensures that it processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

Straiv

Type and scope of processing

We use the service provider straiv GmbH, Industriestrasse 23, 70565 Stuttgart, Germany (hereinafter referred to as straiv) for digital guest communication and to provide various hotel services. Via straiv, we offer our guests, for example, a digital check-in/check-out, the digital registration form, guest information or feedback options.
Personal data is processed in accordance with Art. 6 para. 1 lit. b GDPR (for the implementation of pre-contractual measures and for the fulfillment of the accommodation contract) and, if applicable, on the basis of Art. 6 para. 1 lit. f GDPR (legitimate interest in an efficient and modern guest service). Processing may also take place on the basis of consent in accordance with Art. 6 para. 1 lit. a GDPR, in particular for optional functions.

Order processing

Data processing by straiv takes place exclusively within the framework of order processing in accordance with Art. 28 GDPR. straiv uses suitable technical and organizational measures to protect your data.
Further information on data processing by straiv can be found at: https://straiv.io/legal/datenschutz/

Up-to-dateness of and changes to this privacy policy

This privacy policy is currently valid and is dated July 2025. Due to the further development of the software or due to changed legal or official requirements, it may be necessary to adapt this privacy policy from time to time. The German language version of this privacy policy is authoritative for the interpretation of this privacy policy.