Responsible body within the meaning of the data protection laws, in particular the
EU General Data Protection Regulation (GDPR) is:
Hotel Santo GmbH
Your rights as a data subject
You can exercise the following rights at any time using the contact details provided:
Information about your data stored by us and their processing,
Correction of incorrect personal data,
Deletion of your data stored by us,
Restriction of data processing if we are not yet allowed to delete your data due to legal obligations,
Objection to the processing of your data by us and
Data portability, provided you have consented to the data processing or have concluded a contract with us.
If you have given us your consent, you can revoke it at any time with effect for the future.
You can contact the supervisory authority responsible for you at any time with a complaint. Your competent supervisory authority depends on the state of your place of residence, your work or the alleged violation. A list of the supervisory authorities (for the non-public area) with addresses can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html .
Purposes of data processing by the responsible body and third parties
We process your personal data only for the purposes stated in this data protection declaration. A transfer of your personal data to third parties for purposes other than those mentioned does not take place. We will only pass on your personal data to third parties if:
You have given your express consent
the processing is necessary to process a contract with you,
the processing is necessary to fulfill a legal obligation,
Processing is necessary to safeguard legitimate interests and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data.
Deletion or blocking of the data
We adhere to the principles of data avoidance and data economy. We therefore only store your personal data for as long as is necessary to achieve the purposes mentioned here or as stipulated by the various storage periods provided by law. After the respective purpose or expiry of these deadlines, the corresponding data will be routinely blocked or deleted in accordance with the statutory provisions.
Collection of general information when you visit our website
When you access our website, information of a general nature is automatically recorded using a cookie. This information (server log files) includes, for example, the type of web browser, the operating system used, the domain name of your Internet service provider and the like. This is exclusively information that does not allow any conclusions to be drawn about your person.
This information is technically necessary in order to correctly deliver the website content you have requested and is mandatory when using the Internet. In particular, they are processed for the following purposes:
Ensuring a problem-free connection to the website,
Ensuring smooth use of our website,
Evaluation of system security and stability as well as
for further administrative purposes.
The processing of your personal data is based on our legitimate interest from the aforementioned data collection purposes. We do not use your data to draw conclusions about you personally. The recipient of the data is only the responsible body and, if necessary, the processor.
Anonymous information of this kind may be statistically evaluated by us in order to optimize our website and the technology behind it.
Registration on our website
When registering for the use of our personalized services, some personal data is collected, such as name, address, contact and communication data such as telephone number and e-mail address. If you are registered with us, you can access content and services that we only offer to registered users. Registered users also have the option of changing or deleting the data provided during registration at any time. Of course, we will also provide you with information about the personal data we have stored about you at any time. We will be happy to correct or delete them at your request, provided that there are no statutory retention requirements. To contact us in this context, please use the contact details given at the end of this data protection declaration.
Provision of chargeable services
For the provision of chargeable services, we ask for additional data, such as payment details, in order to be able to carry out your order. We store this data in our systems until the statutory retention periods have expired.
In order to protect the security of your data during transmission, we use state-of-the-art encryption methods (e.g. SSL) over HTTPS.
When users leave comments on our website, the time they were created and the user name previously selected by the website visitor are saved in addition to this information. This is for our security, as we can be prosecuted for illegal content on our website, even if it was created by users.
On the basis of your expressly given consent, we will regularly send you our newsletter or comparable information by e-mail to the e-mail address you provided.
To receive the newsletter, it is sufficient to provide your e-mail address. When you register to receive our newsletter, the data you provide will only be used for this purpose. Subscribers can also be informed by email about circumstances that are relevant for the service or registration (e.g. changes to the newsletter offer or technical circumstances). We need a valid email address for effective registration. In order to check that a registration is actually made by the owner of an e-mail address, we use the "double opt-in" procedure. For this purpose, we log the order for the newsletter, the dispatch of a confirmation e-mail and the receipt of this The requested response will not be collected. The data will only be used for sending the newsletter and will not be passed on to third parties.
You can revoke your consent to the storage of your personal data and its use for sending the newsletter at any time. There is a corresponding link in every newsletter. You can also unsubscribe directly on this website at any time or inform us of your request using the contact option given at the end of this data protection notice.
Room & table reservations
Table reservations made using the reservation mask at are subject to the data protection conditions of Horeca Digital and can be viewed here: HORECA.DIGITAL Privacy
If you contact us regarding questions of any kind by e-mail or contact form, give us your voluntary consent for the purpose of contacting us. A valid email address is required for this. This is used to assign the request and then answer it. The specification of further data is optional. The information you provide will be stored for the purpose of processing the request and for possible follow-up questions. After your request has been dealt with, personal data will be automatically deleted.
Use of script libraries (Google Web Fonts)
Use of Adobe Typekit
We use Adobe Typekit for the visual design of our website. Typekit is a service provided by Adobe Systems Software Ireland Ltd. which gives us access to a font library. In order to integrate the fonts we use, your browser must connect to an Adobe server in the USA and download the font required for our website. Adobe receives the information that our website has been accessed from your IP address. Further information on Adobe Typekit can be found in Adobe's data protection information, which you can access here: www.adobe.com/privacy/typekit.html
Use of Google Maps
This website uses Google Maps API to visually display geographic information. When using Google Maps, Google also collects, processes and uses data about the use of the map functions by visitors. You can find more information about data processing by Google in the Google data protection information. There you can also change your personal data protection settings in the data protection center.
Embedded YouTube Videos
We embed YouTube videos on some of our websites. The operator of the corresponding plug-ins is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit a page with the YouTube plug-in, a connection to YouTube servers is established. In doing so, YouTube is informed which pages you are visiting. If you are logged into your YouTube account, YouTube can assign your surfing behavior to you personally. You can prevent this by logging out of your YouTube account beforehand.
If you have deactivated the storage of cookies for the Google Ad program, you will not have to reckon with such cookies when watching YouTube videos. However, YouTube also stores non-personal usage information in other cookies. If you want to prevent this, you have to block the storage of cookies in your browser. Further information on data protection at "Youtube" can be found in the provider's data protection declaration at: https://www.google.de/intl/de/policies/privacy/
Change of our data protection regulations
We reserve the right to adapt this data protection declaration so that it always complies with current legal requirements or in order to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new data protection declaration will then apply to your next visit.
Questions about data protection
If you have any questions about data protection, please send us an email; the person responsible for data protection in our organization will contact you:
The data protection declaration was created with the data protection declaration generator of activeMind AG .