Data protection

1. Data protection overview

General information

The following information is designed to give you a simple overview of what happens to your personal data when you visit this website. Personal data is any data that identifies you as an individual. More detailed information about data protection can be found in our privacy policy below.

Data collection on this website
Who is responsible for data collection on our website?

Data from our website is processed by the website operator. You can find their contact information in the “Responsible party” section of this privacy policy.

How do we collect your data?

Some data is collected when you provide it to us, such as when you enter your data in a contact form.

Other data is collected automatically or subject to your consent by our IT systems when you visit our website. This data is primarily technical data, such as details of your internet browser or operating system or the time that you visited this website. This data is collected automatically as soon as you enter this site.

What do we use your data for?

Some data is collected to help us keep our website running properly. Other data is collected so that we can analyse how visitors use our site.

What are your rights regarding your data?

You have the right to request information, at any time and free of charge, about your personal data, its origin, its recipients and the purpose of its collection. You also have the right to request that your data be corrected or deleted. If you have given your consent to the processing of your data, you may withdraw it at any time. In addition, subject to certain conditions, you have the right to request that the processing of your personal data be restricted. You also have the right to lodge a complaint with the responsible supervisory authorities.

If you wish to invoke these rights or have any other questions about data protection, you can contact us at any time.

Analytics and third-party tools

We use statistical analyses to evaluate the way that visitors use this site. For this, we mostly use cookies and analytics programs.

More detailed information about this can be found in the privacy policy below.

2. Hosting

External hosting

This website is hosted by an external service provider (host). Personal data that is captured on this website is stored on the host’s servers. This may comprise IP addresses, contact requests, metadata and communication data, contract details, contact details, names, website visits and other data that is generated by a website.

The host is used for the purpose of fulfilling the contract with our potential and existing customers. (Article 6, paragraph 1, point (b) of the GDPR) and in the interests of providing our website securely, quickly and efficiently through a professional service provider (Article 6, paragraph 1, point (f) of the GDPR). If corresponding consent has been requested, the processing is carried out exclusively on the basis of Article 6, paragraph 1, point (a) of the GDPR and section 25, paragraph 1 of the Telecommunications and Telemedia Data Protection Act (TTDSG), insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g. device fingerprinting) within the meaning of the TTDSG. You can withdraw your consent at any time.

Our host will only process your data insofar as this is required to fulfil their obligation to perform a contract and will follow our instructions with regard to this data.

We use the following web host:

weber.digital GmbH
Bahnhofstraße 16
72336 Balingen
Germany

Order processing

We have concluded a contract for order processing with the provider named above. This is a contract prescribed by data protection law that guarantees that the personal data of visitors to our website is only processed according to our instructions and in compliance with the GDPR.

3. General and mandatory information

Data protection

The operators of this website take the protection of your personal data very seriously. We treat your data as confidential and process it in line with both data protection legislation and the terms of this privacy policy.

When you use this website, various items of your personal data will be collected. Personal data is any data that identifies you as an individual. The following privacy policy explains what data we collect and what we use it for. It also explains how we collect your data and for what purpose.

Please note that any data transmitted via the internet (e.g. by email) may be subject to security breaches. It is impossible to completely protect your data against third-party access.

Responsible party

The party responsible for data processing on this website is:

4K HOTEL
Bahnhofstraße 14
88239 Wangen (im Allgäu)
Germany

Phone: +49 (7522) 97 780 – 00
Email: welcome@4k-hotel.de

The responsible party is the natural or legal person with sole or joint responsibility for deciding on the purposes for which, and means by which, your personal data (names, email addresses, etc.) is processed.

Storage period

Unless a more specific storage period is stated within this privacy policy, your personal data will remain with us until the purpose for processing the data no longer applies. If you make a legitimate request for erasure or withdraw consent to data processing, your data will be deleted providing we have no other legally permissible reasons to save your personal data (e.g. retention periods under tax or commercial law). In the case of the latter, the data will be deleted once these reasons no longer apply.

General information about the legal basis for data processing on this website

If you have consented to data processing, we will process your personal data on the basis of Article 6, paragraph 1, point (a) of the GDPR, or Article 9, paragraph 2, point (a) of the GDPR, insofar as data categories according to Article 9, paragraph 1 of the GDPR are being processed. In the event of explicit consent to the transfer of personal data to third countries, the data processing is also carried out on the basis of Article 49, paragraph 1, point (a) of the GDPR. If you have consented to the storage of cookies or to the access to information on your device (e.g. via device fingerprinting), the data processing is also carried out on the basis of section 25, paragraph 1 of the TTDSG. You can withdraw your consent at any time. If your data is required in order to fulfil a contract or carry out pre-contractual measures, we will process your data on the basis of Article 6, paragraph 1, point (b) of the GDPR. Furthermore, insofar as this is necessary to fulfil a legal obligation, we process your data on the basis of Article 6, paragraph 1, point (c) of the GDPR. Data processing may also be carried out on the basis of our legitimate interest pursuant to Article 6, paragraph 1, point (f) of the GDPR. Information on the relevant legal basis in each individual case is provided in the following paragraphs of this privacy policy.

Data protection officer

The designated data protection officer for our company is:

EXACON
Benedict Lenz
Untere Gallusstr. 34
88677 Markdorf

Phone: +49 (7544) 7425681
Email: benedict.lenz@exacon-gmbh.de

Withdrawal of consent to data processing

Many data processing operations are only possible with your explicit consent. You can withdraw the consent you have given at any time The withdrawal of consent does not affect the lawfulness of any data processing prior to this withdrawal.

Right to object against data collection in particular cases and against direct marketing (Article 21 of the GDPR)

IF THE DATA PROCESSING TAKES PLACE ON THE BASIS OF ARTICLE 6, PARAGRAPH 1, POINT (E) OR (F) OF THE GDPR YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS; RIGHTS AND FREEDOMS OR FOR THE ESTABLISHMENT, EXERCISE OR DEFENCE OF LEGAL CLAIMS (OBJECTION PURSUANT TO ARTICLE 21, PARAGRAPH 1 OF THE GDPR).

WHERE YOUR PERSONAL DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU SHALL HAVE THE RIGHT TO OBJECT AT ANY TIME TO PROCESSING OF PERSONAL DATA CONCERNING YOU FOR SUCH MARKETING, WHICH INCLUDES PROFILING TO THE EXTENT THAT IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT TO PROCESSING FOR DIRECT MARKETING PURPOSES, THE PERSONAL DATA SHALL NO LONGER BE PROCESSED FOR SUCH PURPOSES (OBJECTION PURSUANT TO ARTICLE 21, PARAGRAPH 2 OF THE GDPR).

Right to lodge a complaint with the responsible supervisory authorities

In the case of infringements of the GDPR, the data subject has the right to lodge a complaint with a supervisory authority in particular in the Member State of their habitual residence, their place of work or the place of the alleged infringement. The right of appeal is without prejudice to any other administrative or judicial remedy.

Right to data portability

You have the right to receive data that we have processed automatically on the basis of your consent or where the processing is necessary for the performance of a contract or have it passed on to a third party in a commonly used, machine-readable format. If you request to have the data transferred directly to another controller, this will only occur insofar as this is technically feasible.

SSL and/or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the padlock symbol in your browser address bar.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Information, erasure and rectification

Within the framework of the applicable legal provisions, you have the right to obtain information – about your stored personal data, its origin and recipient and the purpose of the data processing – at any time and free of charge, and, if applicable, a right to rectification or erasure of this data. If you wish to invoke these rights or have any other questions about personal data, you can contact us at any time.

Right to the restriction of processin

You have the right to request that the processing of your personal data be restricted. You can contact us in this regard at any time. The right to the restriction of processing applies in the following cases:

  • If you dispute the accuracy of the personal data about you that we have stored, we usually need time to verify this. You have the right to request that the processing of your personal data be restricted for the duration of the verification.
  • If your data is/has been processed unlawfully, you can request that the processing of your data be restricted rather than be erased.
  • If we no longer require your personal data, but you do in order to exercise, defend or assert legal claims, you have the right to demand that the processing of your personal data be restricted rather than be erased.
  • If you have filed an objection pursuant to Article 21, paragraph 1 of the GDPR, it must be decided whether your interests or ours take precedence. As long as it is not clear whose interests take precedence, you have the right to request that the processing of your personal data be restricted.

If you have restricted the processing of your personal data, this data may only be processed – with the exception of its storage – with your permission or for the purposes of asserting, exercising or defending legal claims or to protect the rights of another natural or legal person or on the grounds of an important public interest of the European Union or a member state.

4. Data collection on this website

Cookies

Our web pages use cookies. Cookies are small text files and do not cause damage to your device. They are either saved temporarily for the duration of a session (session cookies) or may be saved permanently on your device (persistent cookies). Session cookies are automatically deleted when you leave the website. Persistent cookies remain saved on your device until you delete them yourself or your web browser deletes them automatically.

Third-party cookies may also be saved on your device when you visit our page. They allow us or you to use certain services from third-party companies (e.g. cookies for payment services).

Cookies have various functions. Numerous cookies are technically essential, as certain website features will not function without them (e.g. the shopping basket function or displaying videos). Other cookies are there to evaluate user behaviour or display advertising.

Cookies which are necessary for electronic communications or certain features you wish to access (such as the shopping basket) or for optimising the website (e.g. cookies that detect the online audience) are stored on the basis of Article 6, paragraph 1, point (f) of the GDPR insofar as no other legal basis is given. The website operator has a legitimate interest in storing necessary cookies, since they enable them to optimise their website service and keep the site running properly. Provided that consent to the storing of cookies and comparable recognition technologies has been requested, data processing will take place exclusively on the basis of this consent (Article 6, paragraph 1, point (a) of the GDPR and section 25, paragraph 1 of the TTDSG); you can withdraw your consent at any time.
You can change the settings in your browser so that you are informed of the setting of cookies and only allow cookies in individual cases, reject cookies in certain cases or in general, or automatically delete cookies when you close your browser. Disabling cookies might mean you can’t access some of our website’s features.

If cookies are used by third-party companies or for analysis purposes, we will inform you about this separately within the framework of this privacy policy and, if necessary, request your consent.

Consent with Borlabs Cookie

Our website uses the consent technology from Borlabs Cookie to obtain your consent to store certain cookies in your browser or to use certain technologies and to document this in a way that is compliant with data protection regulations. The provider of this technology is Borlabs – Benjamin A. Bornschein, Rübenkamp 32, 22305 Hamburg, Germany (hereinafter Borlabs).

When you access our website, a Borlabs Cookie will be saved in your browser, in which the consent you have given or the withdrawal of this consent is saved. This data will not be passed on to the providers of Borlabs Cookie.

The data captured will be saved until you demand its erasure, delete the Borlabs Cookie yourself or the purposes for which the cookie was saved no longer apply. Mandatory statutory retention periods remain unaffected. You can find details about the data processing by Borlabs Cookie at https://borlabs.io/kb/what-information-does-borlabs-cookie-store/.

Borlabs Cookie consent technology is used to obtain the legally required consent to the use of cookies. The legal basis for this is Article 6, paragraph 1, point (c) of the GDPR.

Server log files

Your browser automatically transmits certain data. The website provider automatically collects and stores this information in server log files. This data includes:

  • Browser type and browser version
  • Operating system
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server query
  • IP address

This data is not combined with other data sources.

This data is captured on the basis of Article 6, paragraph 1, point (f) of the GDPR. The website operator has a legitimate interest in ensuring its website is displayed properly and is optimised – server log files must be captured for this purpose.

Contact form

If you send us an enquiry using our contact form, we store any data entered in the form, including your contact details, for the purposes of processing your enquiry and any follow-up questions. We will not forward this information on without your consent.

This data is processed on the basis of Article 6, paragraph 1, point (b) of the GDPR, provided that your enquiry relates to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective handling of enquiries addressed to us (Article 6, paragraph 1, point (f) of the GDPR) or on your consent (Article 6, paragraph 1, point (a) of the GDPR) insofar as this was requested; you may withdraw your consent at any time.

The data you enter in the contact form stays with us until you demand its erasure, withdraw your consent to its storage or the purpose of storing the data no longer applies (e.g. once your enquiry has been processed). Mandatory statutory provisions – in particular, retention periods – remain unaffected.

Enquiries by email, phone or fax
If you contact us by email, phone or fax, your enquiry, including all related personal data (name, enquiry), will be stored and processed by us for the purposes of dealing with your issue. We will not forward this information on without your consent.

This data is processed on the basis of Article 6, paragraph 1, point (b) of the GDPR, provided that your enquiry relates to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective handling of enquiries addressed to us (Article 6, paragraph 1, point (f) of the GDPR) or on your consent (Article 6, paragraph 1, point (a) of the GDPR) insofar as this was requested; you may withdraw your consent at any time.

The data you send to us via contact requests stays with us until you demand its erasure, withdraw your consent to its storage or the purpose of storing the data no longer applies (e.g. once your enquiry has been processed). Statutory requirements, in particular those governing statutory retention periods, always take precedence.

5. Own services

Handling applicant data

We offer you the opportunity to apply to work with us (e.g. by email, post or via the online application form). Below we will inform you about the scope, purpose and use of the personal data collected from you as part of the application process. We assure you that the collection, processing and use of your data will be carried out in accordance with applicable data protection law and all other statutory provisions and that your data will be treated in strict confidence.

Scope and purpose of data collection

When you send us an application, we process the associated personal data (e.g. contact and communication details, application documents, notes as part of interviews, etc.), insofar as this is required for the decision on the establishment of an employment relationship. The legal basis for this is section 26 (data processing for employment-related purposes) of the Federal Data Protection Act (BDSG), Article 6, paragraph 1, point (b) of the GDPR (general facilitation of a contract) and – insofar as you have provided your consent – Article 6, paragraph 1, point (a) of the GDPR. You can withdraw your consent at any time. Your personal data will only be passed on to people within our company who are involved in handling your application.

If the application is successful, the data you submit will be saved in our data processing system on the basis of section 26 of the BDSG and Article 6, paragraph 1, point (b) of the GDPR, for the purpose of conducting an employment relationship.

Storage period of the data

If we cannot make you a job offer, you reject a job offer or you withdraw your application, we reserve the right to retain the data you have transmitted on the basis of our legitimate interests (Article 6, paragraph 1, point (f) of the GDPR) for up to six months after the end of the application process (rejection or withdrawal of the application). The data will be subsequently deleted and the physical application documents will be deleted. The storage of the data serves in particular as evidence in the event of a legal dispute. If it is conceivable that the data will be required beyond the end of the six-month period (e.g. due to a threatened or pending legal dispute), the data will only be erased once the purpose for the ongoing storage no longer applies.

The data may also be kept longer if you have given your consent (Article 6, paragraph 1, point (a) of the GDPR) or if statutory storage obligations prevent its erasure.

6. User analysis

This website uses functionalities of the web analysis service https://www.dailypoint.com/360dp/. dailypoint™ uses cookies. These are text files that are stored on your computer and enable Google Analytics to analyse your use of our website. Usually, the information generated by the cookies about your use of our website is transmitted to and stored on dailypoint’s server.

If we use your personal data for direct advertising, you can object to this at any time by notifying us in accordance with Art. 21 GDPR.

The privacy policy of Toedt, Dr. Selk & Coll. GmbH can be viewed here: https://www.dailypoint.com/privacypolicy/.

7. Newsletter

Newsletter data

If you wish to receive the newsletter offered on the website, we require your email address as well as information that allow us to verify whether you are the owner of the email address given and agree to receive the newsletter. Other data will not be collected or will only be collected on a voluntary basis. We use this data exclusively to send the requested information and do not forward it to third parties. Data provided via the newsletter subscription is processed exclusively on the basis of your consent (Article 6, paragraph 1, point (a) of the GDPR). You can revoke your consent to the storage of the data, the email address and their use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. This does not affect the lawfulness of any data processing prior to this withdrawal. The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter, and it will be deleted after you unsubscribe from the newsletter. Data stored by us for other purposes (e.g. email addresses for the members’ area) remain unaffected by this. This website uses dailypoint™ to send newsletters. The provider is

dailypoint™ – software made by
Toedt, Dr. Selk & Coll. GmbH
Augustenstr. 79
80333 Munich
Germany

dailypoint™is a service that can be used to organise the distribution and analysis of newsletters, for example. The data you have entered for the purpose of receiving the newsletter will be saved on the dailypoint™ servers. If you do not wish your data to be analysed by dailypoint™, you must unsubscribe from the newsletter. We include a link for this purpose in every newsletter. In addition, you can also unsubscribe from the newsletter directly on the website.

8. DATA ANALYSIS BY dailypoint™

The emails distributed by dailypoint™ contain a tracking pixel for the purposes of analysis, which connects to the dailypoint™ servers when the email is opened. This means that it can be determined whether the newsletter message has been opened or not. Furthermore, with the help of dailypoint™, we can determine whether and which links in the newsletter message have been clicked on. All links in the email are tracking links that can be used to count your clicks. You can find more detailed information about the analysis functions of dailypoint™ via the following link https://www.dailypoint.com/privacypolicy/.

9. Use of script libraries

The licensed web fonts we use are loaded and verified with a page view tracking code from https://www.linotype.com/ (so-called @font-face-selectors in CSS files). These web font services and the page views comply with the GDPR. With regard to data processing (as controller), Linotype invokes Article 6, paragraph 1, point (f) of the GDPR and therefore has permission to process your IP address for a short period of time on the basis of legitimate interest. This makes counting possible and prevents misuse of the counter. The log data is deleted after 30 days and no personal data may be processed after that point. The corresponding privacy policy can be found here: https://www.monotype.com/legal/privacy-policy/web-font-tracking-privacy-policy

Scroll to Top

#News

Do you want to be kept in the loop and be the first to find out about the best offers? Then we would love it you would sign up to our 4K newsletter.

*
*
Type the number: