Privacy
1. TO THIS PRIVACY POLICY
The protection of your privacy is important to us. We would therefore urge you to read the following summary of how our website www.highpark.de works carefully.
This privacy policy complies with the guidelines of the GDPR and the BDSG. It is intended to provide information about the type, purpose and use of personal data by the website operator.
Although our site is equipped with various security precautions, we cannot guarantee complete protection of your data, as security gaps on the Internet cannot be ruled out. If you have any concerns regarding the collection of your data, you will find the relevant contact details of our contact persons at the end of the text.
2. PERSONAL DATA
The function and communication of our service are dependent on the data of our users. Personal data is particularly sensitive – this refers to all information that can be clearly traced back to a specific natural person. According to the GDPR, we are obliged to list the full scope of all such data.
By using our website, the following personal data is collected in accordance with the GDPR:
First name and surname
Address
Date of birth
E-mail address
IP address
This data is collected when you use the following functions:
Comment function
Contact form
Inquiry forms
Newsletter form
We assure you that this data is used exclusively for the functioning, statistical evaluation and improvement of our offer. According to the applicable regulations, this data is only collected for the time you use our service. The legally applicable extinguishing regulations are complied with.
What data we collect
If we require personal data from you in order to provide our services to you, we will ask you for this data. For example, if you wish to make a reservation for our hotel, we will ask you for information such as your name, address, telephone number, email address, credit card number and room preferences in order to process your reservation. We will use your email address to send you a confirmation and, if necessary, we will use the other information to contact you as needed to process the reservation. You can let us know at any time if you do not wish to receive emails. We require the same information if you wish to purchase a gift voucher or redeem bonus points.
Reservations
The personally identifiable information you provide to us when making a reservation will only be used to process your reservation request.
Securing the transmission and storage of data
We treat the information you provide as confidential. Accordingly, you are subject to our internal security procedures and regulations for the protection and use of confidential information. When you enter credit card details, these are transmitted via an SSL connection (Secured Sockets Layer) if you are using an SSL-enabled browser such as Microsoft Internet Explorer or Netscape Navigator. This ensures that your data is only sent in encrypted form on the Internet. This security mode is activated before such data is transmitted from your computer.
Once the HIGHPARK by Palmira hotel has received the data, it is stored on a security server protected by firewalls that prevent unauthorized access from outside.
Use of other technical facilities for the storage of personal data
Cookies are set in the online booking and bonus system that is not operated directly on our homepage. Cookies are small text files stored on your PC which are used, for example, when entering data online in databases to ensure that the current entries are made by the same user. No personal user data is stored, only the user’s Internet Protocol address. Under no circumstances will these cookies generate or pass on personal data or create a link to personal data. You can set your browser so that cookies are blocked (the instructions for your browser will tell you how to make this setting); however, such a setting may mean that you can no longer use some functions of the website.
Events and meetings
If you wish to submit a request online or order our meeting planning brochure, you will be required to provide certain personally identifiable information. All personally identifiable information that you provide to us, such as your name, postal address, e-mail address and telephone number, will be transmitted to HIGHPARK by Palmira hotel via the Internet as an unencrypted e-mail. We treat the information you provide as confidential.
Other websites
The HIGHPARK by Palmira hotel l is only responsible for data protection and the content of this website. We are not responsible for the privacy policies or the use of cookies on websites from which you have gained access to this website or from external sites to which you have access from this website.
3. HOW WE COLLECT DATA
3.1. Log files
A log file is created as part of an automatic log of the processing computer system. This means that information from the end device you use is stored as log files on a server.
We also carry out a log file analysis. Our website provider logs this:
Access to the page: date, time, frequency
How you reached the page (previous page, hyperlink, etc.)
Amount of data sent
Which browser and which version of it you are using
Your IP addressThe data collected here is also used solely to improve our offer. We may / The operator may only store server log files for longer, release them or subsequently access them if this is permitted within the legal framework (e.g. in the event of suspected illegal activities).
3.2. Cookies
This website uses cookies. These are small text files which are placed in your browser history and through which settings and other changes you have already made are reconstructed on your next visit. Cookies allow us to personalize our service and make it more user-friendly.
You have the option of blocking the setting of cookies and deleting cookies that have already been set. In such a case, we must inform you that certain features on the site will no longer work or will only work to a limited extent.
3.3. Newsletter and subscriptions
We send a newsletter to the e-mail addresses of our users. We store the corresponding e-mail addresses for this purpose. If you no longer wish to receive the newsletter, you can unsubscribe at any time. Please send us an e-mail to the following e-mail address: info@highpark.de . Your e-mail address will then be deleted from the mailing list immediately.
Liability for links
Our website contains links to external websites of third parties over whose content we have no influence. Therefore, we cannot accept any liability for this third-party content. The respective provider or operator of the pages is always responsible for the content of the linked pages. The linked pages were checked for possible legal violations at the time of linking. Illegal contents were not recognizable at the time of linking. However, permanent monitoring of the content of the linked pages is not reasonable without concrete evidence of an infringement. If we become aware of any legal infringements, we will remove such links immediately.
4. WEB ANALYSIS SERVICE
Google Analytics
This site uses Google Analytics. This service enables us to track the use of our website by creating reports and thus adapt our offer to the demands of the users. According to the templates of the privacy policy, we are obliged to inform you about how this service works.
Google Analytics sets its own cookies, which generally transfer the data collected to a server in the USA and store it there.
Data generated by Google Analytics includes:
Type of browser plus its version
The operating system you are using
How long you stay on our site
The previously visited website
Your IP address
We have also adapted Google Analytics to the applicable data protection legislation. If you have anonymized your IP address, it will generally be shortened before leaving the European Economic Area.
If you would like to deactivate the relevant cookies, you will find a corresponding browser plug-in under the following link: http://tools.google.com/dlpage/gaoptout?hl=de
If you do not want your data to be collected by Google Analytics at all, you can set an opt-out cookie via the following link, which prevents future collection of information: https://chrome.google.com/webstore/detail/google-analytics-opt-out/fllaojicojecljbmefodhfapmkghcbnh?hl=de
You can find more information on how the program itself works here: http://www.google.de/intl/de/analytics/?utm_source=Internal&utm_medium=adsol
5. DISCLOSURE OF DATA TO THIRD PARTIES
“In the event of a credit risk (name, address, e-mail address, company details and, if applicable, contract and receivables data), we transmit your data to IHD Gesellschaft für Kredit und Forderungsmanagement mbH, Augustinusstr. 11 B, 50226 Frechen, and, if applicable, to other cooperating credit agencies. The legal basis for this transfer is Art. 6 I b GDPR and Art. 6 I f GDPR. Transfers on the basis of Art. 6 I f GDPR may only take place insofar as this is necessary to safeguard the legitimate interests of our company and does not outweigh the interests or fundamental rights and freedoms of the data subject which require the protection of personal data.
6. SOCIAL ICONS
On our website, we offer the option of sharing content on social networks or by email via external links. If you use these, you will be redirected to the provider’s website and the corresponding user information will be passed on.
If you are logged into your account on one of these social networks while using our site and wish to share our content, this information will be linked to your respective account. As the operator, we have no influence on the data that is transmitted to the corresponding servers via plug-ins. As a rule, the IP address is transmitted.
For further information on the handling of your data, please refer to the privacy policy of the respective provider:
Facebook: http://de-de.facebook.com/policy.php
Google+/ youtube: http://www.google.com/intl/de/policies/privacy/
Pinterest: http://policy.pinterest.com/de/privacy-policy
Xing: http://privacy.xing.com/de/datenschutzerklaerung
LinkedIn: http://www.linkedin.com/legal/privacy-policy?_l=de_DE
Tripadvisor: http://tripadvisor.mediaroom.com/DE-privacy-policy
Here you will find information specifically about the buttons:
Facebook: http://developers.facebook.com/docs/plugins/
Google+/ youtube: http://www.google.com/intl/de/policies/privacy/
Pinterest: http://policy.pinterest.com/de/privacy-policy
Xing: http://privacy.xing.com/de/datenschutzerklaerung
LinkedIn: http://www.linkedin.com/legal/privacy-policy?_l=de_DE
Tripadvisor: http://tripadvisor.mediaroom.com/DE-privacy-policy
Privacy policy regarding the use of the Facebook Like button
In the following, High Park Hospitality GmbH provides Internet users with some important information on the subject of data protection in connection with the Facebook “Like” button. For the sake of readability, only the term Internet user is used, but female Internet users are also addressed.
Plugins from the social network Facebook are integrated into the High Park Hospitality GmbH website at www.highpark.de. The Facebook social network can be accessed at www.facebook.com and is operated by Facebook Inc., 1601 South California Avenue, Palo Alto, CA 94304, USA.
A connection is automatically established with the server of Facebook Inc. is set up when the Internet user accesses a High Park Hospitality GmbH website on which a Like button is integrated – even without the Internet user activating the Like button. The plugin is displayed on the website by notifying the Internet user’s browser.
High Park Hospitality GmbH has neither any influence on nor knowledge of the extent to which Facebook Inc. collects and/or processes Internet user data and/or to what extent the data is used and for what purposes. It has no knowledge of whether data from Facebook Inc. be passed on to third parties. In the following, the Internet user is informed according to the state of knowledge of High Park Hospitality GmbH:
Facebook Inc. receives information about which High Park Hospitality GmbH websites the Internet user has visited.
Even if the Internet user is not a registered member of Facebook and does not have a personal account there, it cannot be ruled out that Facebook will identify and store their IP address.
In the event that the Internet user is a registered member of Facebook and is logged in via his personal account at facebook.com during his visit to one of the websites of High Park Hospitality GmbH, Facebook Inc. assign the access to the websites to his personal account. When using a plugin function (pressing the Like button, writing a comment), this information is transmitted to Facebook Inc. and stored with the latter. Internet users can prevent this by logging out of their personal account at facebook.com before visiting one of High Park Hospitality GmbH’s websites.
It cannot be ruled out that the Internet user’s data may be processed by Facebook Inc. used to create a user profile and/or passed on to third parties.
Internet users can find information on the collection, processing and use of their data by Facebook in Facebook’s privacy policy. These are available at www.facebook.com.
Google Tag Manager
Google Tag Manager is used on our websites to manage our website tags via an interface. The Tag Manager itself is a cookie-free domain that does not collect any personal data. The task of the tool is to trigger other tags, which in turn can collect data under certain circumstances. However, Google Tag Manager does not access this data. It is, of course, possible to obtain further information on this and to use the service if necessary. to deactivate.
Privacy policy Google Maps
This website uses the Google Maps product from Google Inc. By using this website, you consent to the collection, processing and use of the automatically collected data by Google Inc, its representatives and third parties.
You can find the terms of use of Google Maps under “Terms of use of Google Maps”.
7. LEGAL BASIS OF THE PROCESSING
Art. 6 I lit. a GDPR serves our company as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is party, as is the case, for example, when processing operations are necessary for the supply of goods or to provide any other service or consideration, the processing is based on Article 6 I lit. b GDPR. The same applies to such processing operations that are necessary to carry out pre-contractual measures, for example in cases of inquiries about our products or services. If our company is subject to a legal obligation which requires the processing of personal data, such as for the fulfillment of tax obligations, the processing is based on Art. 6 I lit. c GDPR. In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor were injured in our company and their name, age, health insurance details or other vital information had to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6 I lit. d DS-GVO are based. Ultimately, processing operations could be based on Art. 6 I lit. f DS-GVO are based. This legal basis is used for processing operations which are not covered by any of the aforementioned legal bases if processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data. We are permitted to carry out such processing operations in particular because they have been specifically mentioned by the European legislator. In this respect, it took the view that a legitimate interest could be assumed if the data subject is a customer of the controller (Recital 47 Sentence 2 GDPR).
8. LEGITIMATE INTERESTS IN THE PROCESSING PURSUED BY THE CONTROLLER OR BY A THIRD PARTY
If the processing of personal data is based on Article 6 I lit. f GDPR, our legitimate interest is the performance of our business activities for the benefit of the well-being of all our employees and our shareholders.
9. DURATION FOR WHICH THE PERSONAL DATA IS STORED
The criterion for the duration of the storage of personal data is the respective statutory retention period. After this period has expired, the corresponding data is routinely deleted, provided it is no longer required for the fulfillment or initiation of the contract.
10. STATUTORY OR CONTRACTUAL REQUIREMENTS FOR THE PROVISION OF PERSONAL DATA; NECESSITY FOR THE CONCLUSION OF THE CONTRACT; OBLIGATION OF THE DATA SUBJECT TO PROVIDE THE PERSONAL DATA; POSSIBLE CONSEQUENCES OF FAILURE TO PROVIDE SUCH DATA
We would like to inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contractual partner). Sometimes it may be necessary for a contract to be concluded for a data subject to provide us with personal data that must subsequently be processed by us. For example, the data subject is obliged to provide us with personal data if our company concludes a contract with them. Failure to provide the personal data would mean that the contract with the data subject could not be concluded. Before the data subject provides personal data, the data subject must contact our data protection officer. Our data protection officer clarifies to the data subject on a case-by-case basis whether the provision of personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences would be if the personal data were not provided.
11. EXISTENCE OF AUTOMATED DECISION-MAKING
As a responsible company, we do not use automated decision-making or profiling.
12. YOUR RIGHTS
Of course, you have rights in relation to the collection of your data. According to applicable law, we are obliged to inform you of the same. The exercise and implementation of these rights is free of charge for you.
Right of withdrawal
You have the right to withdraw your consent to the collection of data at any time. This right applies with effect for the future; the data collected until the revocation becomes effective remains unaffected by this.
If you wish to exercise your right of withdrawal, please send us an e-mail to the following e-mail address: info@highpark.de
Right to data portability
You have the right to request a transfer of your data from us to another body.
Right to authorization, deletion or blocking
You have the right to have your data corrected, deleted or blocked. The latter is used if the legal situation does not permit deletion.
To exercise this right, please contact the following e-mail address: info@highpark.de
Right of appeal
You have the right to lodge a complaint with a supervisory authority or a competent body if you have a reason for complaint.
Responsible for data collection
For questions, requests for information, applications, complaints or criticism regarding our data protection, you can contact the following office:
High Park Hospitality GmbH
Gabriele-Tergit-Promenade 21,
10963 Berlin
E-mail: info@highpark.de
Data Protection Officer
The correct implementation of data protection is overseen by a data protection officer. If you have any concerns regarding the processing of your personal data, you also have the option of contacting them directly.
High Park Hospitality GmbH
Gabriele-Tergit-Promenade 21,
10963 Berlin
E-mail: info@highpark.de
13. AMENDMENT OF THE DATA PROTECTION DECLARATION
Severability clause
Should individual provisions of this data protection declaration be invalid, this shall not affect the legal validity of the remaining provisions. The invalid provision shall be replaced by a valid provision that complies with the meaning of the data protection declaration and is enforceable.
Stand
We will update the privacy policy if this becomes necessary for legal or factual reasons.