Data protection policy of the SI-SUITES

Data protection of the SI-SUITES

We are pleased by your interest in our company and our website, www.si-suites.de. The confidence shown in us is very important to us. We take the protection of your personal data very seriously and we strictly observe the data protection legislation. We would like to explain some details of this below:

  1. Recording and storing personal data and the nature and purpose of their use

Visiting our website

When you access our website, www.si-suites.de, information is automatically sent to our server by the browser used by you. This is temporarily stored in a “log file”. The following information is recorded without your intervention and stored until it is automatically deleted: IP address of the accessing computer, date and time of access, time zone difference to GMT, name and URL of the file accessed, website from which access is gained (referrer URL), browser used including the language and version as well as the operating system of your computer and the name of your access provider. We may process these data in order to set up a trouble-free connection and facilitate convenient use of the website and also to evaluate system security and stability.

The legal basis for the data processing is Art. 6 Para. 1 S. 1 lit. f GDPR. Our legitimate interest arises from the above-listed purposes for the data recording. We never use the recorded data for the purpose of identifying you as an individual. The provision by you of the personal data concerned when you visit the website is not stipulated by law or necessary for the conclusion of a contract. They may be provided voluntarily and serve only the above-mentioned purposes. We use cookies and analysis services when you visit our website. You will also find more details about these in this data protection declaration.

Links to other websites

This data protection declaration applies exclusively to this website. Other regulations may apply to other websites operated by third parties. Therefore, please check the respective data protection declarations. We do not accept any responsibility or liability for the practices pursued by third parties.

Using our reservation tool

You have an option to make reservations with a form provided on the website. We use the HotelNetSolutions GmbH booking engine so that you can conveniently book your stay with us online. The data that are recorded here can be seen from the input mask. Your data are processed for the purpose of processing your reservation in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR for the implementation of (pre-)/contractual measures. The data are processed for the purpose of processing your reservation in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR for the fulfilment of a contract concluded with you or for the implementation of pre-contractual measures as a result of your enquiry. The provision of the above-mentioned personal data by you is not stipulated by law or contract but it is required if you intend to conclude a contract with us, which is not otherwise possible. The personal data recorded by us are automatically deleted after the achievement of the purpose for which they were submitted, subject to the observance of any commercial or tax law retention and storage periods. In addition, your data are used to send you crucial and important information about your current or future stay during and after your visit. This is done, for instance, in the form of a pre-stay email or an invitation to an online review of our premises. The data are processed in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. We never use the recorded data for the purpose of identifying you as an individual.

The underlying commercial purpose represents a legitimate interest within the meaning of the GDPR. The personal data recorded by us are automatically deleted after the achievement of the purpose for which they were submitted, subject to the observance of any statutory retention and storage periods.

The specification of preferences and other information such as food intolerance or mobility restrictions is voluntary. This information is processed in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR stored until you withdraw your consent and serve us to be able to offer you a service tailored to your needs for your current or future visit.

Setup of a user account/user profile

You have an option to set up a personal user account on our website in which your data will be stored for future reservation activities. The data that are recorded here can be seen from the relevant input mask. The data processing for the purpose of setting up a user account is done in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR for the fulfilment of a contract concluded with you or for the implementation of pre-contractual measures on the basis of your registration. The provision by you of personal data is not stipulated by law or contract but it is required if you wish us to set up a user profile for you. We delete the personal data as soon as you inform us that you wish us to do so (e.g. by email to info@si-suites.de).

In addition, your data are used to send you crucial and important information about your current or future stay during and after your visit. This is done, for instance, in the form of a pre-stay email or an invitation to an online review. The data are processed in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. We never use the recorded data for the purpose of identifying you as an individual.

The underlying commercial purpose represents a legitimate interest within the meaning of the GDPR. The personal data recorded by us are automatically deleted after the achievement of the purpose for which they were submitted, subject to the observance of any statutory retention and storage periods.

The specification of preferences and other information such as food intolerance or mobility restrictions is voluntary. This information is processed in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR stored until you withdraw your consent and serve us to be able to offer you a service tailored to your needs for your current or future visit.

Using our online and coupon shop

You have the option of purchasing various coupons or arrangements in our online / coupon shop. Which data is collected can be seen from the corresponding input mask. The processing of your data for the purpose of processing your booking or order takes place in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR for the implementation of pre-contractual measures. The provision of the aforementioned personal data is not required by law or contract, but is required if you intend to conclude a contract with us that is otherwise not possible. The personal data collected by us will be automatically deleted, taking into account any retention and storage periods under commercial / tax law, after the purpose for which they were provided has been completed.

Subscribing to our newsletter

We use the double opt-in procedure to register for the newsletter. Immediately after registration, you will receive an e-mail to the e-mail address provided asking you to confirm your registration. We save your IP address and the time of registration for the newsletter and the time of confirmation. This is necessary in order to be able to prove your registration.

If you have consented in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR, we will use your e-mail address and date of birth to send you our newsletter and birthday wishes from time to time. To receive the newsletter, it is necessary and sufficient to provide an e-mail address. You can unsubscribe at any time, e.g. by sending an e-mail to info@si-suites.de. We will then immediately delete your email address from our newsletter mailing list.

Use of our contact form, email contact

We offer you the opportunity to contact us using a form provided on the website. Which data is collected can be seen from the corresponding input mask. The data processing when you contact us is carried out in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR on the basis of our legitimate interest in answering your request. If your contact is aimed at the conclusion of a contract, the legal basis according to Art. 6 Para. 1 S. 1 lit. b GDPR. The personal data collected by us for the use of the contact form will be automatically deleted after your inquiry has been dealt with, provided that there are no statutory retention requirements.

In addition, your data will be used to provide you with central and important information about your current or future stay during and after your visit. This happens, for example, in the form of a pre-stay email or an invitation to an online evaluation of our house. The data processing takes place consented Art. 6 Para. 1 S. 1 lit. f GDPR. In no case do we use the collected data for the purpose of drawing conclusions about you personally.

The underlying advertising purpose represents a legitimate interest within the meaning of the GDPR. The personal data collected by us will be automatically deleted, taking into account any statutory retention and storage periods after the purpose of their transfer has been completed.

The specification of preferences and other information such as food intolerance or mobility restrictions is voluntary. This information is processed consented Art. 6 Para. 1 S. 1 lit. a GDPR stored until you withdraw your consent and serve us to be able to offer you a service tailored to your needs for your current or future visit.

The above applies accordingly if you send us personal data as part of an inquiry by email, telephone or other means.

Application for an advertised position or initial application

If you send us your application for an advertised position, your application documents will be processed in accordance with Art. 88 GDPR in conjunction with § 26 BDSG. If you also send an application photo, you do so voluntarily and thus gives your consent to store your application photo in accordance with Art. 88 GDPR in conjunction with § 26 BDSG. We have a very great interest in the implementation and completion of a proper application process. Your application documents will be deleted 6 months after rejection. Your application documents will only be stored for a longer period with your consent. Unsolicited applications will be deleted, even without rejection, after receipt of your application documents within a maximum of 6 months.

  1. Cookies and other services

We use the technology of cookies for our website. Cookies are small text files that are sent from our web servers to your browser when you visit our website and are stored by them on your computer for later retrieval. You can determine yourself whether cookies are set and retrieved using the settings in your browser. For example, you can completely deactivate the storage of cookies in your browser, limit it to certain websites or configure your browser so that it automatically notifies you as soon as a cookie is to be set and asks you for feedback.

We use so-called session cookies and permanent cookies on our website. Session cookies are only cached for the duration of your use of one of our websites. The purpose of these cookies is to identify your computer during a visit to our website and to be able to determine the end of your visit. In order to use the full functionality of our website, it is necessary for technical reasons to allow session cookies. The session cookies are deleted as soon as you leave our website or end your browser session.

In addition, we also use permanent cookies in order to recognize returning visitors even after a long period of time and to be able to offer needs-based information about our products and services. Persistent cookies are permanently stored on the visitor’s computer and are not deleted when the website is exited or the browser is closed. If permanently set cookies are to be removed, they must be deleted manually. With regard to their function, a distinction is again made between cookies:

Essential cookies: Essential cookies help make a website usable by enabling basic functions such as page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

Statistics: Statistics cookies help website owners understand how visitors interact with websites by collecting and reporting information anonymously.

Marketing: Marketing cookies are used to follow visitors on websites. The intent is to show ads that are relevant and engaging to the individual user and therefore more valuable to publishers and third party advertisers.

External media: These serve to improve the interactivity of our website with other services (e.g. social networks); Sharing cookies are stored for a maximum of 13 months.

The data processed by essential cookies are required for the purposes mentioned to safeguard our legitimate interests as well as those of third parties in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. Any use of cookies that are not technically necessary represents data processing that can only be carried out with your express and active consent in accordance with. Art. 6 Para. 1 S. 1 lit. a GDPR.

The following essential cookies are used by us:

Borlabs Cookie: Saves the settings of the visitors selected in the Borlabs Cookie cookie box.

Convert Plus: These cookies control the repetition rate of various popups and slide-ins.

PHPSESSID: Maintains the settings of the user for all page requests.

WPML Cookie: Stores the current language and the current language of the WordPress administration area.

Google Analytics and Google Search Console

For the purpose of the needs-based design and continuous optimization of our pages, we use on the basis of Art. 6 Para. 1 S. 1 lit. f GDPR Google Analytics and Google Search Console, a web analysis service provided by Google LLC, Amphitheater Parkway, Mountain View, CA 94043, USA. In this context, pseudonymised usage profiles are created and cookies are used. The information generated by the cookie about your use of this website such as browser type / version, operating system used, referrer URL (the previously visited page), host name of the accessing computer (IP address), time of the server request, are sent to a server transmitted by Google in the USA and stored there. The IP addresses are anonymized so that an assignment is not possible (IP masking). The IP addresses of users are shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Google is a registered member of the EU-US Privacy Shield. The full IP address is only transmitted to a Google server in the USA and shortened there in exceptional cases. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage for the purposes of market research and the needs-based design of this website. This information may also be transferred to third parties if this is required by law or if third parties process this data on behalf of us. Under no circumstances will your IP address be merged with other Google data. Various reports can be viewed in the Search Console and a website can be configured.

You can prevent the installation of cookies by setting the browser software accordingly. You can object to the collection and use of your IP address by Google Analytics at any time with effect for the future. For more information, see:

http://tools.google.com/dlpage/gaoptout?hl=de.

Further information on data protection in connection with Google Analytics can be found in the Google Analytics Help Center:

https://support.google.com/analytics/answer/6004245?hl=de

Facebook Pixel

For marketing and optimization purposes we use on our website Facebook Pixel. In particular to place relevant and interesting ads on Facebook and thus improve our offer, make it more interesting for you as a user and avoid annoying ads. This happens on the basis of Art. 6 Para. 1 S. 1 lit. f GDPR. Facebook-Pixel is a service of Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA. Facebook pixel enables Facebook to show our advertisements on Facebook, so-called “Facebook ads”, only to those Facebook users who have been visitors to our website, in particular those who have shown interest in our online offer or in certain topics or products. Facebook pixel enables a check to be made as to whether a user was redirected to our website after clicking on our Facebook ads. Among other things, Facebook-Pixel uses cookies that are stored locally in the cache of your web browser on your device. If you are logged into your Facebook user account, the visit to our online offer will be noted in your user account. The data collected about you is anonymous to us, so it does not allow us to draw any conclusions about the identity of the user. However, this data can be linked by Facebook to your user account there. We have no influence on the scope and further use of data that is collected by Facebook through the use of Facebook pixels. If you have a Facebook user account and are registered, Facebook can assign the visit to your user account. Even if you are not registered with Facebook or have not logged in, there is the possibility that Facebook will find out and save your IP address and, if necessary, other identification features.

Hotelchamp

In order to improve our online booking process and to personalize and optimize our interaction with you, we use in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR the services of Hotelchamp B.V., Johan Huizingalaan 763, 1066 VH Amsterdam, Holland, a professional provider of online software and services. In providing this service, Hotelchamp may process some of your personal data on our behalf. Both Hotelchamp and we value and respect your privacy. We process and protect your personal data in accordance with all applicable laws and regulations. We and Hotelchamp can process data such as your e-mail address, IP address or your browser fingerprint in combination with your booking data and other interactions on our website in order to prepare content and offers that we think are relevant to you and can be appealing. Hotelchamp’s services may include the use of cookies on our website. If you continue to visit our website, you consent to the use of cookies so that we can personalize and improve our interaction with you. Only your interactions with us and our website are used to personalize our content and offers for you, not your behavior on other websites or elsewhere.

Google Maps

To display interactive maps, we use in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR Google Maps, a service from Google LLC, Amphitheater Parkway, Mountain View, CA 94043, USA. By using Google Maps, information about the use of the website including the user’s IP address can be transmitted to Google servers in the USA. If the user calls up content on the website that contains Google Maps, his browser establishes a direct connection with the Google servers. The map content is sent directly from Google to the user’s browser and integrated into the website. Google is a registered member of the EU-US Privacy Shield.

Google Tag Manager

This website uses the Google Tag Manager. This service enables website tags to be managed via an interface. The Google Tool Manager only implements tags. This means: no cookies are used and no personal data is recorded. The Google Tool Manager triggers other tags, which in turn may collect data. However, the Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, it will remain in effect for all tracking tags, provided that they are implemented with the Google Tag Manager.

  1. Data security

In the context of the website visit we use the widespread SSL (Secure Socket Layer) procedure in combination with the highest relevant level of encryption supported by your browser. As a rule this is 256-bit encryption. If your browser does not support 256-bit encryption, we rely on 128-bit v3 technology instead. You can tell whether an individual page of our internet presence is transmitted with encryption by the display of a key or locked padlock symbol in the status bar of your browser. We also use appropriate technical and organizational security measures to protect your data from accidental or deliberate interference, partial or total loss, destruction or unauthorized access by third parties. Our security measures are constantly improved in line with technological developments.

  1. Passing on of data to third parties

Your personal data are not passed on to third parties except for the purposes mentioned above. We only pass your personal data on to third parties if you have given your express consent to this in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR, if it is necessary for the claiming, exercise or defence of legal rights in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR and there is no reason to assume that you have an overriding interest worthy of protection in your data not being passed on, in the event that there is a legal duty to pass them on in accordance with Art. 6 Para. 1 S. 1 lit. c GDPR and if it is legally permitted and if it is required for the fulfilment of contractual relationships with you in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR.

If we outsource the processing of personal data, we use specialized service providers. Our service providers are carefully selected by us and checked regularly. They process personal data only on our behalf and strictly in accordance with our instructions on the basis of corresponding contracts for order processing within the meaning of Art. 28 GDPR. For the processing of personal data that we carry out on behalf of a responsible party, we offer sufficient guarantees that we take suitable technical and organizational measures so that the processing is in accordance with the legal provisions and the protection of the rights of the data subjects is guaranteed is. If we transfer personal data to countries outside the EU that do not offer an equivalent level of data protection, we rely on an adequacy decision by the Commission within the meaning of Art. 45 GDPR or on suitable guarantees within the meaning of Art. 46 GDPR or Art. 49 GDPR the exceptions for a transfer to a third country. Tools from companies based in the USA are integrated on our website. When these tools are active, your personal data can be passed on to the US servers of the respective companies. We would like to point out that the USA is not a safe third country within the meaning of EU data protection law. US companies are obliged to surrender personal data to security authorities without you as the person concerned being able to take legal action against this. It cannot therefore be ruled out that US authorities (e.g. secret services) will process, evaluate and permanently store your data on US servers for monitoring purposes. We have no influence on these processing activities.

  1. Social Media

We use “social plugins” from Facebook, XING, Instagram and Google+ social networks as well as the rating platform Customer Alliance on our website in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. The underlying commercial purpose represents a legitimate interest within the meaning of the GDPR.

When you visit our website, the buttons of these social plugins are deactivated by default i.e. without your intervention we do not send any data to the relevant social networks. Before you can use the buttons, you must activate them by clicking on them. The buttons remain active until you deactivate them again or you delete your cookies. You will find more details about cookies in our Cookies information. If you recommend or share content from our website via social networks, this is always done voluntarily. This may lead in particular to the IP addresses used by you and/or personal data being transmitted to the providers of these services or to third parties and stored there. This may also occur on servers outside the European Union. Once a button is activated, the relevant social network may immediately record data regardless of whether you interact with the button. If you are logged into a social network, this may attribute your visit to our website to your user account. If you are a member of a social network and do not want these data gathered upon your visit to our website to be linked with your stored membership data, you must log out of the relevant social network before activating the buttons. We have no influence over the extent of the data recorded by the social networks with your buttons. Please see the following linked data protection information of the relevant social networks regarding the purpose and extent of the data recording and the further processing and use of the data by the relevant social networks and your rights in this area and the settings options for protecting your privacy.

Facebook (Provider: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland)

Google+ (Provider: Google LLC, Amphitheatre Parkway, Mountain View, CA 94043, USA

Instagram (Provider: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland)

XING (Provider: XING SE, Dammtorstr. 30, 20354 Hamburg, Deutschland)

Customer Alliance (Provider: CA Customer Alliance GmbH, Ullsteinstr. 130, Tower B
12109 Berlin, Deutschland)

  1. Your rights as a Data Subject

According to Art. 15 GDPR you may demand information about your personal data processed by us. You may in particular demand information about the purposes of the processing, the category of the personal data, the categories of recipients to whom your data have been or are being disclosed, the planned retention period, the existence of a right to correction, deletion, restriction or refusal of the processing, the existence of a right to complain, the origin of your data if they were not recorded by us and about the existence of automatic decision-making including profiling and, if relevant, meaningful information about its details. According to Art. 16 GDPR you may demand prompt correction of your incorrect personal data or prompt completion of your personal data stored by us. According to Art. 17 GDPR you may demand the deletion of your personal data stored by us in so far as the processing is not necessary for the exercise of the right to freedom of expression and information, for the fulfilment of a legal duty, for reasons of the public interest or the claiming, exercise or defence of legal rights. According to Art. 18 GDPR you may demand the restriction of the processing of your personal data if the correctness of the data is disputed by you, the processing is unlawful but you refuse their deletion and we no longer require the data but you still require them for the claiming, exercise or defence of legal rights or you have given notice of refusal to allow the processing per Art. 21 GDPR. According to Art. 20 GDPR you may receive your personal data that you have provided to us in a structured, conventional and machine-readable format or demand their transmission to another Data Controller. According to Art. 7 Para. 3 GDPR you may at any time withdraw your consent given to us. This has the consequence that in the future we will no longer be able to continue the data processing that relied on this consent. According to Art. 77 GDPR you may complain to a supervisory authority. As a rule you may apply for this to the supervisory authority of your usual place of residence or of our company’s registered office.

  1. Right of refusal of consent

If your personal data are being processed on the basis of legitimate interests in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR, you have a right in accordance with Art. 21 GDPR to give notice of refusal to allow the processing of your personal data if there are reasons for this that arise from your special situation or if the refusal is aimed at direct advertising. In the latter case you have a general right of refusal that is implemented by us without any statement of a special situation. If you would like to exercise your right of withdrawal or refusal, an email to info@si-suites.de will suffice.

  1. Details of the Data Controller and the Data Protection Officer

This data protection information applies to the data processing by:

Data Controller: Appartment House SI Betriebs GmbH, Plieninger Str. 101-107, D-70567 Stuttgart

Email: info@si-suites.de; Telephone: +49 (0) 711/72 78 50

You can contact our Data Protection Officer by email on dsb@si-suites.de or by post to SI Betriebs GmbH – Datenschutzbeauftragter, Plieninger Str. 101-107, D-70567 Stuttgart.

We reserve the right to amend this data protection declaration to current actual and legal requirements. You may access the current up-to-date data protection declaration on our website at https://www.si-suites.de/en/data-protection/ and print it off at any time.