Data Privacy Notice and Cookies by Lennard Munzer & Christian Strasser GbR (Granevento) und Cookies
This policy applies to the following websites:
hotelservice-austria.at, hotelservice-deutschland.de, hotelagentur-deutschland.de, hotelservicedeutschland.de, hotelservicegermany.de, granevento.de (hereinafter „we“ or Granevento)
Responsibility for the collection, processing, and use of your personal data
Lennard Munzer & Christian Strasser GbR (Granevento)
Tel.: +49 421 431 808 55
Fax: +49 421 431 808 56
If you wish to object to the collection, processing, or use of your data by HRS in accordance with these data privacy rules in general or for individual measures, you may send your objection via e-mail, fax, or mail to the following address:
Lennard Munzer & Christian Strasser GbR (Granevento)
Tel.: +49 421 431 808 55
Fax: +49 421 431 808 56
Our data privacy rules may change from time to time. As long as you care about your privacy, we recommend that you visit this page on a regular basis to ensure that you are always aware of the latest developments. We wish you a relaxing and nice trip!
Collection and storage of personal data
When you use our service, we ask you for specific information. This is basic information such as your name, your contact data, the name of guests traveling with you, and your payment information. This information is required to carry out the respective agency orders as defined by Article 6, Paragraph 1, letter b Alt. 1 of the General Data Protection Regulation. However, we herewith expressly inform you that you are not legally required to provide any personal data to us – if you refrain from doing so, however, this may impact the services we are able to offer to you. For example, you will certainly understand that, in case you do not specify any destination, we will be unable to make any hotel bookings.
In addition, we collect information regarding your computer. This may be your IP address, the browser you use, and your language settings. It is also possible that we receive information about you from third parties or automatically collect other kinds of information. As long as we have received your consent in this respect, data processing is based on Article 6, Paragraph 1, Letter a of the General Data Protection Regulation; as long as these measures are necessary for technical reasons to ensure the functionality of our web pages and services, this is covered by Article 6, Paragraph 1, letter f of the General Data Protection Regulation. Our interest in the security of our offers is essential considering that, in the case of insufficient IT security, its operation as such – just like your personal data – would be greatly jeopardized. We additionally ensure that your interests in this regard are protected through reasonable measures, e.g. data anonymization or pseudonymization.
Granevento collects and processes information you provide to us. When you make a booking, you are asked to provide (at least) your name and your e-mail address. We may possibly ask you to indicate your residence, your phone number, payment information, the name of any guests traveling with you, and possible preferences you may have regarding your stay.
Personal information we receive from you about others
Of course, you may possibly not just book for yourself, but rather travel with other guests about whom you provide information when making a booking, or you may possibly make a booking for someone else. However, we must inform you that it is your responsibility to ensure that the persons about whom you provide personal information are aware of such action, and that they have accepted the manner in which HRS will use such information.
Personal information automatically collected by us
When you visit our websites or use our apps, and even if you do not make any booking, we only process unpersonalized data ( only a part oft he IP address,)
Why does Granevento collect and use your personal data?
We ask you to provide personal data for practical reasons, for administration and processing of your bookings, to ensure that you receive the best possible service and protect your data. We use your personal data to contact you or inform you about the latest offers.
We use the information collected about you for different purposes. Your personal data may be used as follows:
First and foremost, we use your personal data to administer and complete your online booking - this is important to ensure that we can achieve the purpose of our company.
We offer international customer service and are available for you around the clock. Whenever you share your details with our Service employees, you allow us to reply to you whenever this is necessary. This includes answering any questions you may have regarding your booking - or also answering other questions.
we may possibly contact you via e-mail, mail, telephone, or text message, depending on which contact information you have shared with us. We will also process the communication you have shared with us.
Ensuring Secure and Reliable Service
To create a reliable environment we may use personal data to detect and prevent fraud and other illegal and/or undesired activities. We may additionally use personal data for risk assessments and security purposes - including authentication of users and bookings. At times, we may therefore have to put a temporary hold on certain bookings.
Processing of your data as described is supported by the following legal bases
The use of your data may be necessary to perform the contract into which you enter with us. For example, as long as you use our service to make an online booking, we will use your data to comply with our duty to complete and carry out the booking according to our mutual agreement.
We may use your data for our legitimate business interests. This allows us to provide you with the most personalized content on the website & apps, in e-mails, and in newsletters or optimize and promote our products and services as well as the contents on our website; in addition, this may serve for administrative or legal purposes as well as the detection of fraudulent activities.
Under certain circumstances, your consent to use your personal data for certain direct marketing activities is presumed. You are entitled to withdraw your consent at any time by contacting us at the addresses at the bottom of this data privacy notice.
How long does Granevento keep your personal data on file?
We only keep your data as long as the data privacy-related purpose for their maintenance continues to exist. For example, for the performance of hotel bookings, this means that your data are deleted after completion of the booking process and/or your stay (for billing reasons no later than 90 days after your stay) – of course, only as long as these data are not subject to longer compulsory retention periods by law (for example, for tax purposes). If this is the case, we keep the data on file until the end of the pertinent retention periods.
In case you granted your consent to any more comprehensive data processing (compare above), we will basically only store your data until you withdraw them. The e-mail address firstname.lastname@example.org may also be used for such purpose.
How does Granevento share your data with third parties?
The main purpose is to forward your booking data to the accommodation booked by you to complete your booking. There are other parties which may receive a part of your data.
The accommodation booked by you
This issue is indispensable for our work. To complete your booking, we forward the relevant booking data to the accommodation booked by you. This may be information such as your name, your contact data, your payment information, your special requests regarding the booking, as well as the name of guests traveling with you. In case you have any question regarding your booking, we may contact the operator of your accommodation and ask him or her to address this question. In case you provide no payment during the booking process via the HRS web pages and apps, we will forward your credit card details to the booked accommodation for further processing (as long as you have provided us with these data during the booking process). In the case of booking-related disputes, we may provide the operator of your accommodation with data regarding the booking process, as required. This may contain a copy of your booking confirmation, which serves as a receipt for actual completion of the booking. We will forward your credit card details to the booked accommodation for further processing (as long as you have provided us with these data during the booking process). In the case of booking-related disputes, we may provide the operator of your accommodation with data regarding the booking process, as required. This may contain a copy of your booking confirmation, which serves as a receipt for actual completion of the booking.
We disclose personal data to enforce the law as long as this is required by law or urgently necessary for the prevention, detection, or legal prosecution of criminal acts or fraud. In addition, we may share personal data with the competent authorities under certain circumstances to protect our rights and accommodations or the rights and accommodations of our business partners.
Third-party service / order processing
When using our websites, we resort to the technical processing on processor (third-party service), in this context, the knowledge received in the data received.
We have carefully selected all of the vendors we use to support our support services, including from a privacy point of view, and have contracted with all vendors. Your data will be processed in this respect according to our instructions exclusively for technical processing.
List of third-party service providers:
- Our booking websites are located on the servers of https://uberspace.de (responsible: Jonas Pasche Kaiserstr 15 151111 Mainz)
- We use an email account from Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, to process your email requests and book through our hotel portals.
- Reservations are sent in addition to the email as an encrypted PDF to a fax provider, which faxes them to the hotels. For security reasons, the credit card details are forwarded exclusively to the hotel via this provider, where all contents are deleted from the server after 14 days. Provider of this service is: Interfax Communications Limited, Unit 7 Coolport, Coolmine Business Park, Blanchardstown, Dublin 15, Ireland D15 HC91
- Our homepages are located on the servers of ALL-INKL.COM - Neue Medien Münnich responsable: René Münnich Hauptstraße 68 | D-02742 Friedersdorf, Germany. It also uses an email forwarding service on the mentioned Google email accounts.
What security measures does Granevento take to protect your personal data?
According to the European data protection laws, we engage in reasonable measures
to ensure protection of your personal data against abuse and unauthorized access.
Your credit card data are not stored completely, and are only stored in encrypted
form and no longer than 90 days.
According to the European Data Protection Act, we implement reasonable procedures to ensure the protection of your personal data against abuse and unauthorized access.
To protect your personal data, we use the respective business systems and processes. Additionally, we use security procedures as well as technical and access restrictions whenever our servers access and use your personal data. Only authorized employees have access to your personal data for proper performance of their tasks.
The services of Granevento are not intended for children less than 18 years of age. Our services may only be used with the valid consent of one parent or a legal representative. In the event that data of children less than 18 years of age are transmitted to us, we reserve the right to delete such data. In certain cases in connection with a booking or the purchase of other travel-related services or under exceptional circumstances (e.g. functions intended for families), Granevento is entitled to collect and use data of children exclusively with the consent of the parent.
Once our website is called, we set a so-called "session cookie", which carries a session ID. This is technically required to maintain the booking status (rooms will be reserved for a certain period of time as long as the booking process is in progress) and therefore requires no separate consent. The cookie is not stored persistently, but is automatically deleted when the browser window is closed.
We include a map into our website for the purpose of visualisation provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA via the Google Maps API. If you have the map displayed, a connection to the Google Servers is being made under which the IP-Adress is transferred to Google. Google can analyse the use of the Google Maps functionality by the visitor. In addition, Google can write and read Cookies. These Cookies can be Google User Cookies which are directly connected to your identity. We are using these on the basis of our legitimate interest according to Art. 6 Abs. 1 lit. GDPR.
Further information can be found in the Google privacy documents which can be found here:https://policies.google.com/privacy?hl=en
Rights of affected persons
From the GDPR the following rights arise for you as the person concerned in the processing of personal data, and we are obliged to point this out to you:
* According to Art. 15 GDPR, you may request information about your personal data processed by us. They may in particular provide information on the processing purposes, the categories of personal data, the categories of recipients to whom your data has been disclosed or the planned storage period, the right to rectification, deletion, limitation of processing or opposition, the existence of a The right to complain, the origin of your data, if not collected from us, through a transfer to third countries or to international organizations and the existence of an automated decision-making process including profiling and, where appropriate, meaningful information about their details.
* According to Art. 16 GDPR, you can immediately demand the correction of incorrect or the completion of your personal data stored by us.
* According to Art. 17 GDPR, you may request the deletion of personal data held by us, unless the processing is used to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend of legal claims is required.
* According to Art. 18 GDPR you can demand the restriction of the processing of your personal data, as far as the correctness of the data is denied by you, the processing is unlawful, we no longer need the data and you reject their deletion, because you assert this, Exercise or defense of legal claims. You are also entitled to the right under Art. 18 GDPR if you object to the processing in accordance with Art. 21 GDPR.
* Pursuant to Art. 20 GDPR you may request to receive your personal data provided to us in a structured, common and machine-readable format or you may request the transfer to another person in charge.
* In accordance with Art. 7 (3) GDPR, you can revoke your once given consent to us at any time. As a result, we are no longer allowed to continue the data processing based on this consent for the future.
* According to Art. 77 GDPR you have the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence, your workplace or our company headquarters.
Right to object
When processing your personal data on the basis of legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO, you have the right to file an objection against the processing of your personal data in accordance with Art. 21 DSGVO, provided that there are reasons for this arising from your particular situation or the objection is directed against direct mail. In the case of direct mail, there is a general right of objection for you, which is implemented by us without specifying any particular situation.
Data security and security measures
We are committed to protecting your privacy and keeping your personal information confidential. To prevent any manipulation, loss or misuse of your stored data, we take extensive technical and organizational security measures that are periodically reviewed and adapted to technological progress. Among other things, this includes the use of recognized encryption methods. We point out, however, that due to the structure of the Internet, it is possible that the rules of data protection and the o. G. Precautionary measures taken by other persons or institutions not within our area of responsibility. In particular, unencrypted disclosed data -. If this is done by e-mail - be read by third parties. We have no technical influence on this. It is your responsibility to protect the information you provide through encryption or otherwise against misuse.
In order to register for our info mail, you only have to select the corresponding box during a booking process. This application is only valid for one info mail, namely for the following event for which you booked the accommodation in the booking process.
With the registration you give us the data protection consent to send you this one-time information by e-mail. You can revoke this consent at any time with effect for the future by unsubscribing from the Info Mail. Just write us a short message via e-mail.
The right of withdrawal with effect for the future also applies, provided you have registered before 25 May 2018.
For the dispatch of the Infomail we can use a technical service provider by means of order processing, at present this does not take place.
The legal basis for the use of your e-mail address is your consent (Art. 6 (1) (a) GDPR). We will delete your information when you unsubscribe from the Infomail.
In case of doubt the German version shall be binding.