Data Privacy Notice and Cookies by Lennard Munzer & Christian Strasser GbR (Granevento) und Cookies
This policy applies to the following websites:
hotelservice-austria.at, hotelservice-deutschland.de, hotelagentur-deutschland.de,
hotelservicedeutschland.de, hotelservicegermany.de, granevento.de (hereinafter
„we“ or Granevento)
Responsibility for the collection, processing, and use of your personal data
Lennard Munzer & Christian Strasser GbR (Granevento)
Georg-Groening-Str. 75A
D-28209 Bremen
Tel.: +49 421 431 808 55
Fax: +49 4292 51 709 05
info@granevento.de
Managing partners:
Lennard Munzer
Christian Strasser
If you wish to object to the collection, processing, or use of your data by
HRS in accordance with these data privacy rules in general or for individual
measures, you may send your objection via e-mail, fax, or mail to the following
address:
Lennard Munzer & Christian Strasser GbR (Granevento)
Georg-Groening-Str. 75A
D-28209 Bremen
Tel.: +49 4292 51 709 06
Fax: +49 4292 51 709 05
datenschutz@granevento.de
Our data privacy rules may change from time to time. As long as you care about
your privacy, we recommend that you visit this page on a regular basis to ensure
that you are always aware of the latest developments. We wish you a relaxing
and nice trip!
Collection and storage of personal data
When you use our service, we ask you for specific information. This is basic
information such as your name, your contact data, the name of guests traveling
with you, and your payment information. This information is required to carry
out the respective agency orders as defined by Article 6, Paragraph 1, letter
b Alt. 1 of the General Data Protection Regulation. However, we herewith expressly
inform you that you are not legally required to provide any personal data to
us – if you refrain from doing so, however, this may impact the services
we are able to offer to you. For example, you will certainly understand that,
in case you do not specify any destination, we will be unable to make any hotel
bookings.
In addition, we collect information regarding your computer. This may be your IP address, the browser you use, and your language settings. It is also possible that we receive information about you from third parties or automatically collect other kinds of information. As long as we have received your consent in this respect, data processing is based on Article 6, Paragraph 1, Letter a of the General Data Protection Regulation; as long as these measures are necessary for technical reasons to ensure the functionality of our web pages and services, this is covered by Article 6, Paragraph 1, letter f of the General Data Protection Regulation. Our interest in the security of our offers is essential considering that, in the case of insufficient IT security, its operation as such – just like your personal data – would be greatly jeopardized. We additionally ensure that your interests in this regard are protected through reasonable measures, e.g. data anonymization or pseudonymization.
Personal information
Granevento collects and processes information you provide to us. When you make
a booking, you are asked to provide (at least) your name and your e-mail address.
We may possibly ask you to indicate your residence, your phone number, payment
information, the name of any guests traveling with you, and possible preferences
you may have regarding your stay.
Personal information we receive from you about others
Of course, you may possibly not just book for yourself, but rather travel with
other guests about whom you provide information when making a booking, or you
may possibly make a booking for someone else. However, we must inform you that
it is your responsibility to ensure that the persons about whom you provide
personal information are aware of such action, and that they have accepted the
manner in which HRS will use such information.
Personal information automatically collected by us
When you visit our websites or use our apps, and even if you do not make any
booking, we only process unpersonalized data ( only a part oft he IP address,)
Why does Granevento collect and use your personal data?
We ask you to provide personal data for practical reasons, for administration
and processing of your bookings, to ensure that you receive the best possible
service and protect your data. We use your personal data to contact you or inform
you about the latest offers.
We use the information collected about you for different purposes. Your personal data may be used as follows:
Bookings
First and foremost, we use your personal data to administer and complete your
online booking - this is important to ensure that we can achieve the purpose
of our company.
Customer Service
We offer international customer service and are available for you around the
clock. Whenever you share your details with our Service employees, you allow
us to reply to you whenever this is necessary. This includes answering any questions
you may have regarding your booking - or also answering other questions.
Other Communication
we may possibly contact you via e-mail, mail, telephone, or text message, depending
on which contact information you have shared with us. We will also process the
communication you have shared with us.
Ensuring Secure and Reliable Service
To create a reliable environment we may use personal data to detect and prevent
fraud and other illegal and/or undesired activities. We may additionally use
personal data for risk assessments and security purposes - including authentication
of users and bookings. At times, we may therefore have to put a temporary hold
on certain bookings.
Legal Purposes
In certain cases, we may use your data for the handling and resolution of legal
conflicts or use the same within the scope of investigations and to ensure conformity
with the compliance guidelines. We may also use your data to enforce the terms
of use of the online booking service of Granevento in our reasonable discretion.
Processing of your data as described is supported by the following legal bases
Contractual Performance
The use of your data may be necessary to perform the contract into which you
enter with us. For example, as long as you use our service to make an online
booking, we will use your data to comply with our duty to complete and carry
out the booking according to our mutual agreement.
Legitimate Interests
We may use your data for our legitimate business interests. This allows us to
provide you with the most personalized content on the website & apps, in
e-mails, and in newsletters or optimize and promote our products and services
as well as the contents on our website; in addition, this may serve for administrative
or legal purposes as well as the detection of fraudulent activities.
Consent
Under certain circumstances, your consent to use your personal data for certain
direct marketing activities is presumed. You are entitled to withdraw your consent
at any time by contacting us at the addresses at the bottom of this data privacy
notice.
How long does Granevento keep your personal data on file?
We only keep your data as long as the data privacy-related purpose for their maintenance continues to exist. For example, for the performance of hotel bookings, this means that your data are deleted after completion of the booking process and/or your stay (for billing reasons no later than 90 days after your stay) – of course, only as long as these data are not subject to longer compulsory retention periods by law (for example, for tax purposes). If this is the case, we keep the data on file until the end of the pertinent retention periods.
In case you granted your consent to any more comprehensive data processing (compare above), we will basically only store your data until you withdraw them. The e-mail address datenschutz@granevento.de may also be used for such purpose.
How does Granevento share your data with third parties?
The main purpose is to forward your booking data to the accommodation booked
by you to complete your booking. There are other parties which may receive a
part of your data.
In detail:
The accommodation booked by you
This issue is indispensable for our work. To complete your booking, we forward
the relevant booking data to the accommodation booked by you. This may be information
such as your name, your contact data, your payment information, your special
requests regarding the booking, as well as the name of guests traveling with
you. In case you have any question regarding your booking, we may contact the
operator of your accommodation and ask him or her to address this question.
In case you provide no payment during the booking process via the HRS web pages
and apps, we will forward your credit card details to the booked accommodation
for further processing (as long as you have provided us with these data during
the booking process). In the case of booking-related disputes, we may provide
the operator of your accommodation with data regarding the booking process,
as required. This may contain a copy of your booking confirmation, which serves
as a receipt for actual completion of the booking. We will forward your credit
card details to the booked accommodation for further processing (as long as
you have provided us with these data during the booking process). In the case
of booking-related disputes, we may provide the operator of your accommodation
with data regarding the booking process, as required. This may contain a copy
of your booking confirmation, which serves as a receipt for actual completion
of the booking.
Competent Authorities
We disclose personal data to enforce the law as long as this is required by
law or urgently necessary for the prevention, detection, or legal prosecution
of criminal acts or fraud. In addition, we may share personal data with the
competent authorities under certain circumstances to protect our rights and
accommodations or the rights and accommodations of our business partners.
Third-party service / order processing
When using our websites, we resort to the technical processing on processor
(third-party service), in this context, the knowledge received in the data received.
We have carefully selected all of the vendors we use to support our support
services, including from a privacy point of view, and have contracted with all
vendors. Your data will be processed in this respect according to our instructions
exclusively for technical processing.
List of third-party service providers:
- Our booking websites are located on the servers of https://uberspace.de (responsible:
Jonas Pasche Kaiserstr 15 151111 Mainz)
- We use an email account from Google Inc., 1600 Amphitheater Parkway, Mountain
View, CA 94043, USA, to process your email requests and book through our hotel
portals.
- Reservations are sent in addition to the email as an encrypted PDF to a fax
provider, which faxes them to the hotels. For security reasons, the credit card
details are forwarded exclusively to the hotel via this provider, where all
contents are deleted from the server after 14 days. Provider of this service
is: Interfax Communications Limited, Unit 7 Coolport, Coolmine Business Park,
Blanchardstown, Dublin 15, Ireland D15 HC91
- Our homepages are located on the servers of ALL-INKL.COM - Neue Medien Münnich
responsable: René Münnich
Hauptstraße 68 | D-02742 Friedersdorf, Germany. It also uses an email forwarding service on the
mentioned Google email accounts.
What security measures does Granevento take to protect your personal data?
According to the European data protection laws, we engage in reasonable measures
to ensure protection of your personal data against abuse and unauthorized access.
Your credit card data are not stored completely, and are only stored in encrypted
form and no longer than 90 days.
According to the European Data Protection Act, we implement reasonable procedures
to ensure the protection of your personal data against abuse and unauthorized
access.
To protect your personal data, we use the respective business systems and processes. Additionally, we use security procedures as well as technical and access restrictions whenever our servers access and use your personal data. Only authorized employees have access to your personal data for proper performance of their tasks.
The services of Granevento are not intended for children less than 18 years of age. Our services may only be used with the valid consent of one parent or a legal representative. In the event that data of children less than 18 years of age are transmitted to us, we reserve the right to delete such data. In certain cases in connection with a booking or the purchase of other travel-related services or under exceptional circumstances (e.g. functions intended for families), Granevento is entitled to collect and use data of children exclusively with the consent of the parent.
Use of cookies
Once our website is called, we set a so-called "session cookie", which
carries a session ID. This is technically required to maintain the booking status
(rooms will be reserved for a certain period of time as long as the booking
process is in progress) and therefore requires no separate consent. The cookie
is not stored persistently, but is automatically deleted when the browser window
is closed.
Plugins
Google Maps
We include a map into our website for the purpose of visualisation provided
by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA via
the Google Maps API. If you have the map displayed, a connection to the Google
Servers is being made under which the IP-Adress is transferred to Google. Google
can analyse the use of the Google Maps functionality by the visitor. In addition,
Google can write and read Cookies. These Cookies can be Google User Cookies
which are directly connected to your identity. We are using these on the basis
of our legitimate interest according to Art. 6 Abs. 1 lit. GDPR.
Further information can be found in the Google privacy documents which can be
found here:https://policies.google.com/privacy?hl=en
Links
You may occasionally find links to other websites on our website. By activating
these links you will be redirected to the website of another operator, which
can be seen in particular by changing the URL in the browser. We have no control
over this and so do not have any responsibility for how those other websites
handle your personal information. We have not checked if the operators of those
websites comply with the privacy policy. Please inform yourself about it.
Rights of affected persons
From the GDPR the following rights arise for you as the person concerned in
the processing of personal data, and we are obliged to point this out to you:
* According to Art. 15 GDPR, you may request information about your personal
data processed by us. They may in particular provide information on the processing
purposes, the categories of personal data, the categories of recipients to whom
your data has been disclosed or the planned storage period, the right to rectification,
deletion, limitation of processing or opposition, the existence of a The right
to complain, the origin of your data, if not collected from us, through a transfer
to third countries or to international organizations and the existence of an
automated decision-making process including profiling and, where appropriate,
meaningful information about their details.
* According to Art. 16 GDPR, you can immediately demand the correction of incorrect
or the completion of your personal data stored by us.
* According to Art. 17 GDPR, you may request the deletion of personal data held
by us, unless the processing is used to exercise the right to freedom of expression
and information, to fulfill a legal obligation, for reasons of public interest
or to assert, exercise or defend of legal claims is required.
* According to Art. 18 GDPR you can demand the restriction of the processing
of your personal data, as far as the correctness of the data is denied by you,
the processing is unlawful, we no longer need the data and you reject their
deletion, because you assert this, Exercise or defense of legal claims. You
are also entitled to the right under Art. 18 GDPR if you object to the processing
in accordance with Art. 21 GDPR.
* Pursuant to Art. 20 GDPR you may request to receive your personal data provided
to us in a structured, common and machine-readable format or you may request
the transfer to another person in charge.
* In accordance with Art. 7 (3) GDPR, you can revoke your once given consent
to us at any time. As a result, we are no longer allowed to continue the data
processing based on this consent for the future.
* According to Art. 77 GDPR you have the right to complain to a supervisory
authority. As a rule, you can contact the supervisory authority of your usual
place of residence, your workplace or our company headquarters.
Right to object
When processing your personal data on the basis of legitimate interests in accordance
with Art. 6 para. 1 sentence 1 lit. f DSGVO, you have the right to file an objection
against the processing of your personal data in accordance with Art. 21 DSGVO,
provided that there are reasons for this arising from your particular situation
or the objection is directed against direct mail. In the case of direct mail,
there is a general right of objection for you, which is implemented by us without
specifying any particular situation.
Data security and security measures
We are committed to protecting your privacy and keeping your personal information
confidential. To prevent any manipulation, loss or misuse of your stored data,
we take extensive technical and organizational security measures that are periodically
reviewed and adapted to technological progress. Among other things, this includes
the use of recognized encryption methods. We point out, however, that due to
the structure of the Internet, it is possible that the rules of data protection
and the o. G. Precautionary measures taken by other persons or institutions
not within our area of responsibility. In particular, unencrypted disclosed
data -. If this is done by e-mail - be read by third parties. We have no technical
influence on this. It is your responsibility to protect the information you
provide through encryption or otherwise against misuse.
Infomail
In order to register for our info mail, you only have to select the corresponding
box during a booking process. This application is only valid for one info mail,
namely for the following event for which you booked the accommodation in the
booking process.
With the registration you give us the data protection consent to send you this
one-time information by e-mail. You can revoke this consent at any time with
effect for the future by unsubscribing from the Info Mail. Just write us a short
message via e-mail.
The right of withdrawal with effect for the future also applies, provided you
have registered before 25 May 2018.
For the dispatch of the Infomail we can use a technical service provider by
means of order processing, at present this does not take place.
The legal basis for the use of your e-mail address is your consent (Art. 6 (1)
(a) GDPR). We will delete your information when you unsubscribe from the Infomail.
Actuality and modification of this privacy policy
This privacy policy is currently valid and has the status 25.05.2018. Due to
changes and further developments of our website or due to changed official or
legal requirements, it may be necessary to change this privacy policy. The current
privacy policy can be accessed at any time on our website, saved and / or printed
using the appropriate browser function.
In case of doubt the German version shall be binding.
