Data protection
Protecting your privacy when processing personal data is an important concern for us. When you visit our website, our web servers automatically store the IP address of your Internet service provider, the website from which you visit us, the web pages you visit on our site, and the date and duration of your visit. This information is essential for the technical transmission of the web pages and secure server operation. This data is not evaluated in a personalized manner.
Johanniter-Hotel Regensburg gGmbH
Wernberger Straße 1
93057 Regensburg
Phone: +49 (0) 941 788 328 0
E‑mail: includio.regensburg@johanniter.de
Personal data is data about you. This includes your name, address and email address. You are not required to provide any personal data in order to visit our website. In some cases, we need your name and address as well as other information in order to offer you the desired service. The same applies if we provide you with information material on request or if we answer your inquiries. In these cases, we will always point this out to you. In addition, we only store the data that you have transmitted to us automatically or voluntarily. If you use one of our services, we generally only collect the data that is necessary to provide you with our service. We may ask you for further information, which is however voluntary. Whenever we process personal data, we do so in order to offer you our service or to pursue our commercial goals.
When you contact us (e.g. via contact form, e‑mail, telephone or via social media), the information provided by the requesting persons will be processed, insofar as this is necessary to answer the contact requests and any requested measures. The contact requests are answered within the framework of contractual or pre-contractual relationships to fulfill our contractual obligations or to answer (pre)contractual inquiries and, moreover, on the basis of the legitimate interests in answering the inquiries.
Data categories processed: Inventory data (e.g. names, addresses), contact data (e.g. e‑mail, telephone numbers), content data (e.g. entries in online forms).
Data subjects: Communication partners.
Purposes of processing: Contact requests and communication.
Legal basis: Contract fulfillment and pre-contractual inquiries (Art. 6 para. 1 lit. b. GDPR), Legitimate interests (Art. 6 para. 1 lit. f. GDPR).
Automatically stored data
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
Date and time of the request
Name of the requested file
Page from which the file was requested
Access status (file transferred, file not found, etc.)
Web browser and operating system used
Full IP address of the requesting computer
Amount of data transferred
This data is not merged with other data sources. The processing is carried out in accordance with Art. 6 Para. 1 lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. For reasons of technical security, in particular to defend against attempts to attack our web server, this data is stored by us temporarily. It is not possible for us to draw conclusions about individual persons on the basis of this data. After no more than seven days, the data is anonymized by shortening the IP address at the domain level, so that it is no longer possible to establish a connection to the individual user. In anonymized form, the data is also processed for statistical purposes; a comparison with other databases or a transfer to third parties, even in excerpts, does not take place. Only within the framework of our server statistics, which we publish every two years in our activity report, is the number of page views displayed.
When you visit our website, we may store information on your computer in the form of cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables the visited Internet pages and servers to distinguish the individual browser of the data subject from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified via the unique cookie ID. Through the use of session cookies, the controller can provide users of this website with a user-friendly service that would not be possible without the setting of cookies. Without consent, we only use technically necessary cookies on the legal basis of the legitimate interest pursuant to Art. 6 Para. 1 lit. f GDPR. We only use personal cookies to improve our website or for marketing/advertising purposes with your consent. During your first visit, you can voluntarily agree to tracking or analysis via the displayed cookie banner. Your data may be passed on to partners or third-party providers. These cookies are only stored if you explicitly agree to this, the legal basis is then your consent in accordance with Art. 6 Para. 1 lit. a GDPR.
You can change your settings for the use of cookies here at any time:
https://includio.de/#
Our website uses the consent technology from Cookiebot to obtain your consent to the storage of certain cookies on your end device or to the use of certain technologies and to document this in compliance with data protection regulations. The provider of this technology is Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter “Cookiebot”). When you enter our website, a connection to the Cookiebot servers is established to obtain your consents and other declarations regarding cookie usage. Cookiebot then stores a cookie in your browser to be able to assign the consents you have given or their revocation to you. The data collected in this way is stored until you ask us to delete it, delete the Cookiebot cookie yourself, or the purpose for data storage no longer applies. Mandatory statutory retention obligations remain unaffected. Cookiebot is used to obtain the legally required consents for the use of cookies. The legal basis for this is Art. 6 Para. 1 lit. c GDPR. We have concluded a contract for order processing (AV) in accordance with Art. 28 GDPR with the above-mentioned provider. This is a contract required under data protection law, which ensures that the provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.
This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics enables the website operator to analyze the behavior of website visitors. The website operator receives various usage data, such as page views, length of stay, operating systems used and origin of the user. This data is assigned to the respective end device of the user. An assignment to a device ID does not take place. Furthermore, we can use Google Analytics to record your mouse and scroll movements and clicks. Google Analytics also uses various modeling approaches to supplement the recorded data sets and uses machine learning technologies for data analysis. Google Analytics uses technologies that enable the recognition of the user for the purpose of analyzing user behavior (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transferred to a Google server in the USA and stored there. The use of this service is based on your consent in accordance with Art. 6 Para. 1 lit. a GDPR and 25 Para. 1 TTDSG. Consent can be revoked at any time. The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:
https://privacy.google.com/businesses/controllerterms/mccs/.
We use Google signals. When you visit our website, Google Analytics collects, among other things, your location, search history and YouTube history as well as demographic data (visitor data). This data can be used with the help of Google Signal for personalized advertising. If you have a Google account, the visitor data from Google Signal will be linked to your Google account and used for personalized advertising messages. The data is also used to create anonymized statistics on the user behavior of our users. We have concluded a contract for order processing (AV) in accordance with Art. 28 GDPR with the above-mentioned provider. This is a contract required under data protection law, which ensures that the provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR. This website uses the “e‑commerce measurement” function of Google Analytics. With the help of e‑commerce measurement, the website operator can analyze the purchasing behavior of website visitors to improve their online marketing campaigns. This involves collecting information such as the orders placed, average order values, shipping costs and the time from viewing to purchasing a product. This data can be summarized by Google under a transaction ID, which is assigned to the respective user or their device.
We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The Google Tag Manager is a tool that helps us integrate tracking or statistics tools and other technologies on our website. The Google Tag Manager itself does not create user profiles, does not store cookies and does not carry out any independent analyses. It is only used to manage and play out the tools integrated via it. However, the Google Tag Manager collects your IP address, which can also be transmitted to Google’s parent company in the United States. The Google Tag Manager is used on the basis of Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in the quick and uncomplicated integration and management of various tools on its website. If corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR and 25 Para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s end device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.
This page uses the Google Maps map service. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this page has no influence on this data transfer. When Google Maps is activated, Google may use Google Web Fonts for the purpose of uniform display of fonts. When you call up Google Maps, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly. Google Maps is used in the interest of an appealing presentation of our online offers and easy findability of the places specified by us on the website. This constitutes a legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR. If corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR and 25 Para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s end device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time. The data transfer to the USA is based on the standard contractual clauses of the EU Commission.
https://privacy.google.com/businesses/gdprcontrollerterms/ and
https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.
More information on how user data is handled can be found in Google’s privacy policy: https://policies.google.com/privacy?hl=de.
Google Web Fonts (local hosting)
This page uses so-called web fonts, which are provided by Google, for the uniform display of fonts. The Google Fonts are installed locally. A connection to Google’s servers does not take place.
Further information on Google Web Fonts can be found at
https://developers.google.com/fonts/faq and in Google’s privacy policy:
https://policies.google.com/privacy?hl=de.
We collect, process and use personal data only to the extent that it is necessary for the establishment, content design or modification of the legal relationship (inventory data). This is done on the basis of Art. 6 Para. 1 lit. b GDPR, which allows the processing of data for the fulfillment of a contract or pre-contractual measures. We collect, process and use personal data about the use of this website (usage data) only to the extent that this is necessary to enable the user to use the service or to bill them. The collected customer data will be deleted after completion of the order or termination of the business relationship. Legal retention periods remain unaffected.
For booking a room via our website, we use the booking software of hotelnetsolutions GmbH. The corresponding data protection information can be found at https://hotelnetsolutions.de/Datenschutz
If you have given your consent to the respective social media operator in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR, when you visit our online presences on the social media mentioned above, your data will be automatically collected and stored for market research and advertising purposes, from which usage profiles are created using pseudonyms. These can be used, for example, to place advertisements within and outside the platforms that are likely to correspond to your interests. Cookies are usually used for this purpose. For detailed information on the processing and use of data by the respective social media operator, as well as a contact option and your rights and setting options in this regard to protect your privacy, please refer to the data protection information of the providers linked below. Should you still need help in this regard, you can contact us.
We have taken technical and administrative security precautions to protect your personal data against loss, destruction, manipulation and unauthorized access. All our employees and service providers working for us are obliged to comply with the applicable data protection laws. Whenever we collect and process personal data, it is encrypted before it is transmitted. This means that your data cannot be misused by third parties. Our security precautions are subject to a constant improvement process and our data protection declarations are constantly being revised. Please make sure that you have the latest version.
You have the right to information, correction, deletion or restriction of the processing of your stored data at any time, a right to object to the processing and a right to data portability and to lodge a complaint in accordance with the requirements of data protection law.
You can request information from us as to whether and to what extent we process your data.
If we process your data that is incomplete or incorrect, you can request that we correct or complete it at any time.
You can request that we delete your data if we process it unlawfully or if the processing disproportionately interferes with your legitimate interests worthy of protection. Please note that there may be reasons that prevent immediate deletion, e.g. in the case of legally regulated retention obligations.
Irrespective of the exercise of your right to erasure, we will delete your data immediately and completely, unless there is a legal or legal obligation to retain it.
You can request that we restrict the processing of your data if
– You dispute the accuracy of the data, for a period that enables us to verify the accuracy of the data.
– the processing of the data is unlawful, but you refuse deletion and instead request a restriction on the use of the data,
– we no longer need the data for the intended purpose, but you still need this data to assert or defend legal claims, or
– You have objected to the processing of the data.
You can request that we provide you with your data that you have provided to us in a structured, common and machine-readable format and that you can transmit this data to another controller without hindrance by us, provided that
– we process this data on the basis of consent granted by you and which can be revoked or to fulfill a contract between us, and
– this processing is carried out using automated procedures.
If technically feasible, you can request that we transfer your data directly to another controller.
If we process your data on the basis of a legitimate interest, you can object to this data processing at any time; this would also apply to profiling based on these provisions. We will then no longer process your data unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims. You can object to the processing of your data for the purpose of direct advertising at any time without giving reasons.
If you believe that we have violated German or European data protection law in the processing of your data, please contact us to clarify any questions. You also have the right to contact the supervisory authority responsible for you, the respective state office for data protection supervision.
If you wish to assert any of the aforementioned rights against us, please contact our data protection officer. If in doubt, we may request additional information to confirm your identity.
We reserve the right to change our data protection declarations if this should become necessary due to new technologies. Please ensure that you have the most up-to-date version. If fundamental changes are made to this privacy policy, we will announce them on our website.
All interested parties and visitors to our website can reach us with data protection questions at:
Mr. Matthias Baumgartner
Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg
Tel.: 0941 2986930
Fax: 0941 29869316
E‑Mail: anfragen@projekt29.de
Internet: www.projekt29.de
