Privacy Policy



This Privacy Notice informs you as a visitor and user of the website https://hotelcristall.com (hereinafter referred to as "website" or "site") about the nature, scope and purpose of the collection, processing and use of personal data on this website.

Responsible for the data processing is the operator of this page:

Hotel Cristall Frankfurt
Ottostr. 3
60329 Frankfurt am Main
Tel: +49 69 23 03 51
Mail: info@hotelcristall.com.


Gathering and storage of personal data, nature and purpose of its use



When visiting the website

When you access our website https://hotelcristall.com, information will automatically be transmitted to our website’s server by the browser used on your terminal. This information will be temporarily saved in a log file.
This information is technically necessary to correctly deliver the contents of web pages requested by you and is mandatory when using the internet.
The following information will, in the process, be recorded without your involvement, and saved until it is deleted automatically:
• IP address of the computer transmitting the query;
• date and time of access;
• name and URL of the file accessed;
• website from which our site is accessed (referring URL);
• browser used and, if applicable, the operating system of your computer, as well the name of your access provider.

Aforementioned data will be processed by us for the following purposes:
• ensuring that the website is enabled to establish the connection smoothly;
• ensuring convenient use of our website;
• evaluating the system security and stability; and
• for further administrative purposes.

The legal basis for the data processing is Art. 6(1)(1)(f) GDPR. Our justified interest arises from the purposes for gathering data listed above. Under no circumstances will we use the data gathered for the purpose of drawing conclusions regarding your identity.

Booking

When booking a room, we gather and process the following data, which is necessary for mutual proper contractual fulfilment. The latter includes:
• name and surname
• address
• email address
• Data for processing the payment (e.g. credit card number)


Data security:

The data that you enter as part of our website for the purpose of making a hotel reservation will be encrypted and transmitted to us (via HTTPS). These data, the nature and extent of which result from the corresponding input mask of the online booking engine we use, are collected, processed and used solely for the purpose of establishing, carrying out and processing the contractual relationship established with the reservation.

You can recognize an encrypted connection by changing the address line of the browser from "http: //" to "https: //" and the lock symbol in your browser line.

If encryption is enabled, the data you submit to us cannot be read by third parties.


Transfer of personal data:

The transfer of personal data takes place without explicit separate consent only insofar as it is necessary for the execution of the contract. Any further disclosure of personal data to third parties will not take place, unless we are obliged to do so by court order or by law.


Cookies:

The internet pages partly use so-called cookies. Cookies do not harm your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and stored by your browser. In the cookie information is stored, each resulting in connection with the specific terminal used. However, this does not mean that we are immediately aware of your identity.
Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or always a hint appears before a new cookie is created. However, disabling cookies completely may mean that you cannot use all features of our website.


Google Analytics:

To the extent that this website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"), your browser may store a cookie sent by Google Inc. or a third party that allows an analysis of your use of the website. The information collected (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google uses this information to evaluate your use of this website, to compile reports on website activity for website operators, and to provide other services related to website activity and internet usage. Google may also transfer this information to third parties if required by law or as far as third parties process this data on behalf of Google. Google will never associate your IP address with other data stored by Google. You can prevent the installation of cookies. To do this, you must select "Do not accept cookies" in your browser settings (in Internet Explorer under "Tools / Internet Options / Privacy / Settings", in Firefox under "Tools / Settings / Privacy / Cookies"). It should be noted that in this case you may not be able to fully use all features of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.


Google Maps:

Within the website are contents of third parties, such as Map material from Google Maps (hereinafter referred to as "third-party") included. For the use of such content, the transmission of the IP address of the user to the respective third-party provider is technically required. Because without the IP address, the third-party providers could not send the content embedded in the website to the browser of the respective user. We have no control over whether a third party provider uses the IP address, e.g. stored or otherwise used for statistical purposes.


Contact Form:

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored in order to process the request and in case of follow-up questions. We will not share this information without your consent.
The processing of the data entered into the contact form is therefore exclusively based on your consent (Art. 6 (1) lit. DSGVO). You can revoke this consent at any time. An informal message by e-mail to us is sufficient. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
The information you provide in the contact form will remain with us until you ask us to delete it, revoke your consent to storage or delete the purpose for data storage (for example, after your request has been processed). Mandatory statutory provisions - especially retention periods - remain unaffected.


Using Google reCAPTCHA:

This website uses the reCAPTCHA service from Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (Google). This service is used to check whether an entry was made by a natural person or by a machine. This query sends the IP address and any other data required by Google for the reCAPTCHA service to Google. This takes place on the basis of Art. 6 Para. 1 f.) GDPR on the basis of our legitimate interest in determining the individual willful conduct of actions on the Internet and avoiding abuse and spam. Google LLC, based in the USA, is certified for the US-European data protection agreement “Privacy Shield”, which guarantees compliance with the data protection level applicable in the EU. www.privacyshield.gov/participant?id=a2zt000000001L5AAI Further information on Google reCAPTCHA and Google's privacy policy can be viewed at: www.google.com/intl/de/policies/privacy/.

 

Payment Service Provider

CONCARDIS GMBH

We process our credit card payments via our service provider Concardis GmbH, Helfmannpark 7, 65760 Eschborn. To process your payment, Concardis GmbH transmits the following data to us: payment amount and order number. Concardis GmbH processes and uses your personal data in accordance with the content of your data protection regulations and the applicable German data protection laws, in particular the BDSG and the Telemedia Act ("TMG"). Concardis GmbH is certified according to the highest security standards of the card organizations and the specifications of the PCI-DSS (Payment Card Industry Data Security Standard).

Further information on data protection at Concardis GmbH can be found at: https://www.concardis.com/datenschutzerklaerung



At any time you have the right to obtain free information about the origin, recipient and purpose of your stored personal data. You also have a right to request the correction, blocking or deletion of this data. You can contact us at any time under info@hotelcristall.com as well as for further questions about data protection. Furthermore, you have a right of appeal to the competent supervisory authority.

This privacy policy is currently valid and is valid as of May 2018. As a result of the further development of our website and offers thereof or due to changed legal or official requirements, it may be necessary to change this privacy policy. The current privacy policy can be viewed at any time on the website at https://hotelcristall.com/en/privacy-policy be retrieved and printed.