1 People

Menü

Data privacy

1. about this privacy policy

The protection of your privacy is important to us, Fibona GmbH. Therefore, we would like to urge you to carefully read the following summary about the operation of our website www.legere-hotelgroup.com as well as - but limited in its operation - also on www.fibona.de.


The data protection declaration listed here complies with the guidelines of the Basic Data Protection Regulation (DSGVO) and the Federal Data Protection Act (BDSG). It is intended to provide information about the nature, scope and purpose of the processing of personal data by the website operator (Fibona GmbH) and the websites linked to it, about functions and content.
In this respect, our data protection declaration also uses the terms and definitions of the General Data Protection Regulation (DSGVO) and the BDSG. You can read further details there or in the following section 4. of this data protection declaration, because there the terms used here are defined and explained in more detail in each case, such as "personal data" or their "processing". In this regard, we refer in particular to Art. 4 of the General Data Protection Regulation (DSGVO).


Although our site is equipped with various security measures, no complete protection of your data can be guaranteed, as security gaps on the Internet can not be excluded. If you have any concerns regarding your data, you will find the relevant contact details of our contact persons at the beginning of this text.

 

2. legal basis for the processing of personal data.

In the context of the use of our online offers, we ask you for information necessary for us, without which we would not be able to provide these online offers, such as to find and book a suitable accommodation or event. This required information is your name (first and last name), your address, other contact information such as telephone number or e-mail address, the name of the guests traveling with you, your payment information, for example, the details of your credit card or the account details in the case of agreed direct debit. All this information is necessary in the sense of Art. 6 para. 1 lit. b. Alt. 1 DSGVO, because only in this way bookings of hotel rooms are possible. We therefore need your personal information to look after, complete, manage and realize your bookings and, to ensure that we can provide the best possible service by contacting you, answering and clarifying queries and sending you the latest offers.


You are of course free not to provide us with this information. Then, however, with the consequence that without this information, for example, booking inquiries can not be answered, no hotel bookings can be made and thus no services can be provided by us.

When you visit our website, we collect further information about the terminal device you use, such as your IP address, the browser you use, etc.. This is necessary to ensure the functionality of our websites and also to ensure both the IT security of our offers and your personal data.

We process personal data exclusively in compliance with the relevant data protection regulations. User data will only be processed if we have a legal permission to do so, i.e. in particular if the data processing is necessary for the provision of our contractual service (for example, processing of booking requests) or is required by law, if consent has been given or on the basis of our legitimate interest.

Insofar as we obtain the consent of the data subject for processing operations of personal data, Art. 6 (1) lit. a EU General Data Protection Regulation (DSGVO) serves as the legal basis.

For the processing of personal data of the data subject, the collection and use of which are necessary for the performance of a contract with him, Art. 6 (1) lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

In the case of processing of personal data required to fulfill a legal obligation incumbent upon us, Art. 6 (1) lit. c DSGVO serves as the legal basis.

In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Art. 6 (1) lit. d DSGVO serves as the legal basis.

If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override the former interest, Art. 6 (1) lit. f DSGVO serves as the legal basis for the processing.

Our legitimate interest is the analysis, optimization, economic operation and security of our online offer within the meaning of Art. 6 para. 1 lit. f. DSGVO, in particular in the case of range measurement, creation of profiles for advertising and marketing purposes, as well as collection of access data and use of third-party services.

 
3. personal data

The term "personal data" means any information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

The term "processing" means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

We receive personal data directly from you, for example, in the context of general inquiries or reservation and booking requests, requests for a table reservation in restaurant or bar, in the context of bookings, orders for brochure materials or newsletter subscriptions, in the context of existing business relationships or through personal contact with our employees. We process your personal data in accordance with the DSGVO only to the extent necessary for the provision of our service.

We process the following data, among others:

Contract data (first name, last name, address, telephone and e-mail address, services used, contact person data, payment information, forwarding of this payment information to payment service providers).Master data for contacting (e.g. first and last name, address, contact details)Order and correspondence data (e.g. in the context of order processes)Advertising and sales data (e.g. about potentially interesting products)Data for the initiation and execution of our business relationships (e.g. newsletter, payment processing) 
For further details on this processed data, we refer to the explanations under the above section 3, in which this information and data are specifically named.

We use the data we collect to provide the products and services you request, to inform you about other products and services we offer, to administer our websites and services, and to comply with our legal rights and obligations regarding data processing.

Data is processed for the performance of a contract with you or for the performance of pre-contractual measures based on your request. The purposes of the data processing depend in detail on the specific business relationship or the specific assignment by you.

According to the applicable regulations, this data is only collected and stored for the time required and used for the fulfillment of our services.The legally applicable deletion regulations are observed.

 
4. further data collection
In addition, we collect further general data and information (for example, browser type and browser version, operating system used, the website from which our website is accessed, date and time of access to our website, the respective Internet protocol address (IP address), as well as other information that serves to avert danger) with each call to our website, for example:

4.1 Log files
When you access our website, information is automatically sent to the server of our website by the browser you are using. This information is temporarily stored in a so-called log file. Such a log file is created in the course of an automatic protocol of the processing computer system. This means that information concerning the terminal device you are using is recorded as log files on a server.

We also carry out a log file analysis. We, as the site provider, or the provider commissioned by us to do so, logs the following in the process

Access to the page: date, time, frequencyHow you arrived at the page (previous page, hyperlink, etc.)Amount of data sentWhich browser and which version of the same you are usingYour IP address 
Again, the data collected is only used to improve our service. In addition, a smooth connection establishment of the website as well as a comfortable use shall be guaranteed The mentioned data are also processed for the evaluation and review of the system security and system stability as well as for further administrative purposes. We or our provider may only store server log files for a longer period of time, release them or access them subsequently if this is permitted within the legal framework (e.g. in the event of suspicion of illegal activities).

4.2 Cookies
a) Session cookies/Session cookies
This website uses cookies. Cookies are small text files or other storage technologies that are placed and stored on your terminal device by the Internet browser you use. Through these cookies, certain information from you, such as your browser or location data or your IP address, is processed to an individual extent. Among other things, we use authentication cookies language/country cookies and cookieconsent (cookie consent).
 
This processing makes our website more user-friendly, effective and secure, as the processing enables, for example, the reproduction of our website in different languages or the offer of a shopping cart function.
 
The legal basis for this processing is Art. 6 (1) lit. b DSGVO, insofar as these cookies data are processed for the purpose of initiating or executing a contract.
 
If the processing does not serve to initiate or execute a contract, our legitimate interest lies in improving the functionality of our website. The legal basis is then Art. 6 para. 1 lit. f DSGVO.
 
All cookies are deleted upon logout. Otherwise, authentication cookies are deleted after 20 min of inactivity (expiration of the session), cookieconsent after 1 year and language/country cookies when closing the browser or 20 minutes of inactivity.

You have the option to block the setting of cookies and delete cookies that have already been set. In such a case, we must inform you that certain features on the site will either no longer function or will only function to a limited extent.


b) Third-party cookies
With our website, we also use cookies from third-party companies with which we cooperate for the purpose of advertising, analysis or the functionalities of our website.
 
The details of this, in particular the purposes and legal bases of the rarbeitung of such third-party cookies, please refer to the following information.
 
Since most browsers automatically accept cookies, we have set up an initial query before you use our website, in which you can choose whether you only want to allow technically necessary cookies or also third-party cookies. You can therefore configure your browser so that only session cookies, but not third-party cookies, are stored on your computer. You can therefore also allow all cookies, but revoke this consent at any time via the Consent Manager and thereby delete already stored cookies at any time. However, the steps and measures required for this depend on your specific Internet browser used. If you have any questions, please use the help function or documentation of your Internet browser or contact its manufacturer or support. In the case of so-called Flash cookies, however, processing cannot be prevented via the browser settings. Instead, you must change the settings of your Flash player. The steps and measures required for this also depend on the specific Flash player you use. If you have any questions, please also use the help function or documentation of your Flash player or contact the manufacturer or user support.
 
However, if you prevent or restrict the installation of cookies, this may mean that not all functions of our website can be fully used.


5.1 Google Analytics web analytics services
For the purpose of demand-oriented design and ongoing optimization of our pages, we use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). In this context, pseudonymized usage profiles are created and cookies (see under point 4) are used. The information generated by the cookie about your use of this website, such as
 
Browser type/version,operating system used,Referrer URL (the previously visited page)Host name of the accessing computer (IP address)Time of the server request, 
are usually transmitted to a Google server and stored there; this may also involve transmission to Google LLC. servers in the USA. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services associated with the use of the website and the Internet for the purposes of market research and demand-oriented design of these Internet pages. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymized so that an assignment is not possible (IP masking).

Due to the certification according to the EU-US Privacy Shield ("EU-US Privacy Shield")
 
https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
 
Google guarantees that the data protection requirements of the EU are also complied with when processing data in the USA.
 
The Google Analytics service is used to analyze the usage behavior of our website. The legal basis is Art. 6 para. 1 lit. f DSGVO. Our legitimate interest lies in the analysis, optimization and economic operation of our website.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout?hl=de).
 
As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent the collection by Google Analytics by clicking on this link. An opt-out cookie will be set, which prevents the future collection of your data when visiting this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again.

5.2 Newsletters and subscriptions
If you register for an offered newsletter to receive our promotional information, your e-mail address together with your first and last name and other information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter, will be stored by us.

Our registration system ensures by sending a registration email with confirmation link that the selected newsletter is actually desired by you (so-called double opt-in procedure).

Within the scope of the consent thus expressly granted in accordance with Art. 6 (1) sentence 1 lit. a DSGVO, we will then use your e-mail address to send you our newsletter on a regular basis. For the receipt of the newsletter, the specification of an e-mail address is sufficient.

Your data will be processed exclusively for the requested newsletter, any further use of your data for other purposes will not take place. We will also not pass on your data to third parties.

For the collection of data and for sending the newsletter, we use the mailing service "MailChimp" of the US company The Rocket Science Group. The processing of this personal data takes place on servers in the USA within the framework of and in compliance with the "EU-US Privacy Shield". With the decision of the European Commission (2016/1250)of July 12, 2016 on the so-called EU-U.S. Privacy Shield, this basis has been available for data transfers to the USA since August 1, 2016. MailChimp is certified under this data protection agreement "EU-US Privacy Shield" and thus undertakes to comply with the EU data protection requirements. For further details on MailChimp, please refer to the following information under section 8.2 paragraph (8).


If you no longer wish to receive this, you can unsubscribe from the newsletter at any time. To unsubscribe, a corresponding link is listed at the bottom of the newsletter.Your email address will then be deleted from the distribution list immediately.
 
6. contacting us
When contacting us directly (via contact form on our website, by e-mail, letter, telephone, messenger service, etc.), your information will be processed for the purpose of processing the contact request and its settlement pursuant to Art. 6 para. 1 lit. b. DSGVO processed. We are also entitled to do this on the basis of our legitimate interests (efficient and fast processing of user requests).

We use the hotel software onepagebooking of HotelNetSolutions GmbH (HNS) for the collection of data on our website and for bookings made online. The processing of this personal data takes place within the framework of order processing according to Art. 28 DSGVO.

This data is then transferred, stored and processed via an interface to the property management system (PMS) we use, the hotel software SIHOT.PMS of GUBSE AG. According to information from Gubse AG and to our knowledge, there is no access to the personal data collected in this way. However, Gubse AG would be and, if applicable, is itself obliged to comply with the EU data protection level.
 
7. comments and contributions
Even if you leave comments or other contributions, your respective IP address will be stored on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. DSGVO will be stored for 7 days. This is necessary in case illegal, especially criminal content is left in comments and posts (for example, insults, prohibited political propaganda, etc.). In this case, we ourselves could be responsible for the comment or post and must therefore at least be able to establish the identity of the author.
 
8. data transfer to third parties
As a matter of principle, we do not pass on your data to third parties. Furthermore, we take appropriate measures and carry out regular checks to ensure that the data we collect cannot be viewed by third parties and that it cannot be accessed by third parties.
 
8.1 Data transfer to external service providers
Service partners are an exception to the above regulation, insofar as they act on our behalf and support Fibona GmbH in the provision of its services. Such service partners are, for example, the provider of this website or the hotel software used for bookings. This may also be the case, for example, when sending advertising content or when processing payment transactions, such as credit cards. The transfer of data always takes place only within the framework of legal requirements. We only pass on the data to third parties if you have given your express consent to this in accordance with Art. 6 Para. 1 S. 1 lit. a. DSG VO or if this is necessary, for example, on the basis of Art. 6 para. 1 lit. b. DSGVO is necessary for the contractual purposes or on the basis of legitimate interests according to Art. 6 para. 1 lit. f. DSGVO in an economic and effective operation.

Where external service providers come into contact with your personal data, we also ensure through legal, technical and organizational measures, as well as regular checks, that these service providers comply with the applicable data protection regulations. Fibona GmbH has committed these service providers to the applicable level of data protection according to DSGVO and BDSG and also monitors their compliance on an ongoing basis.

8.2 The following provides an overview of these external service providers
(1) We have commissioned Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany, as hosting provider, i.e. for the hosting of the websites and for the back-up. This hosting provider operates the Internet services required for the necessary infrastructure of the website. You can find the link to the privacy policy here: https://www.hetzner.de/rechtliches/datenschutz.

(2) As booking engine we use the hotel software onepagebooking of HotelNetSolutions GmbH (HNS), Genthiner Str. 8, 10785 Berlin. When booking through our website, you provide your information in this software system used by us, where it is stored and processed. You can find the link to the privacy policy here: https://www.hotelnetsolutions.de/Datenschutz


(2) As booking engine we use the hotel software onepagebooking of HotelNetSolutions GmbH (HNS), Genthiner Str. 8, 10785 Berlin. When booking via our website, you provide your details in this software system used by us, where they are stored and processed. You can find the link to the privacy policy here: https://www.hotelnetsolutions.de/Datenschutz

We also use the hotel softwareSIHOT.PMS, a Property Management System (PMS) of GUBSE AG, Bahnhofstraße 26-28, 66578 Schiffweiler, to manage our hotels. This is an information and management system for controlling the processes in the hotel, in which all functions of the front office, reservation and property management areas are combined in one interface. More detailed information on this can be found in section 9 below.

(3) We use systems of our partner Supranational Hotels Ltd. as a global distribution system (GDS) with which travel agencies retrieve information and booking options, in particular on prices, availability and booking options, in particular the CRS (Central Reservation System) there, so that we are also bookable online internationally for customers and guests via the affiliated travel agencies and travel service providers. Supranational is a brand ofReconline AG, Staldenstrasse 58, 3920 Zermatt, Switzerland.The link to the privacy policy can be found here: http://www.reconline.com/d/index.html#

(4) As a guest feedback platform and rating tool, we use the product TRUSTYOU of TrustYou GmbH, Steinerstrasse 15, 81369 Munich. For this purpose, customers receive an e-mail from the hotel with a direct link to TRUSTYOU and fill out questionnaires with customer data online there. The completed questionnaires with the customer data are evaluated and processed by TRUSTYOU and then made available to the hotel. You can find the link to the privacy policy here: https://www.trustyou.com/wp-content/uploads/2018/06/2018-05-24-trustyou-DSE.pdf
(5) Exclusively for the Légère Hotel Luxembourg, it is possible to book a table in the restaurant and other food&beverage services online. For this purpose, a table reservation tool of Luxtable artipub s.à r.l., 13, rue Edmond Reuter, L-5326 Contern, is used. The customer can enter his name, contact details and the number of seats required there.

(6) We have commissioned the advertising agency Münch Impact GmbH, Humboldtstraße 6, 65189 Wiesbaden, as the advertising agency that is also responsible for creating and sending the newsletter.You can find the link to the data protection declaration here: https://muenchimpact.com/datenschutz/

(7) In the case of job advertisements, we link applicants who wish to apply via our website directly to the HOTELCAREER website of our partner YOURCAREERGROUP GmbH, Kaiserswerther Straße 282, 40474 Düsseldorf. The applicant can then enter the information requested there on the HOTELCAREER website, which is then forwarded to us by HOTELCAREER. The link to the privacy policy can be found here: https://www.hotelcareer.de/datenschutzerkl%C3%A4rung.

(8) The newsletter is sent using "MailChimp", a newsletter sending platform of the US provider The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.

Your data stored during newsletter registration via MailChimp (first and last name, e-mail address, IP address, date and time of your registration) are transferred to a server of The Rocket Science Group in the USA and stored there in compliance with the "EU-US Privacy Shield". The link to the privacy policy with further information on data protection at MailChimp can be found at: mailchimp.com/legal/privacy/.

Further information on the "EU-US Privacy Shield" can be found at: The Federal Commissioner for Data Protection and Freedom of Information ec.europa.eu/justice/data-protection/international-transfers/eu-us-privacy-shield/index_en.htm.


(9) Creditworthiness check: In the case of payment procedures that are associated with payment default risks for us due to the provision of advance services or the possibility of a chargeback, i.e. payment by credit card or payment in cash or with Girocard at the end of the hotel stay, we occasionally check your current and previous payment behavior towards us as well as your creditworthiness, based on the necessity and the overriding legitimate interest of avoiding payment defaults and protecting our customers from identity abuse. This is based on and in accordance with the regulation in Art. 22 para. 1 lit. a DSGVO as well as in Art. 6 para. 1 lit. b. and lit. f. DSGVO as the legal basis. For this purpose, we cooperate with Creditreform, more precisely the Verband der Vereine Creditreform e.V., Hellersbergstraße 12, 41460 Neuss,from which we receive the data required for this purpose. You can find the link to the data protection declaration here: https://www.creditreform.de/eu-dsgvo.html.

The processing of your personal data by commissioned service providers takes place within the framework of commissioned processing in accordance with Art. 28 DSGVO, but always only to the extent necessary, i.e. to the extent that these service providers thereby obtain or can obtain access to relevant personal information at all.

These service providers only receive access - if at all - to such personal information that is necessary for the performance of the respective activity and may only use the personal data according to our instructions. The service providers may not disclose your personal information or use it for other purposes, in particular for their own promotional purposes.

Insofar as external service providers come into contact with your personal data, we ensure through legal, technical and organizational measures, as well as through regular checks, that these service providers also comply with the applicable data protection regulations. Fibona GmbH has committed these service providers to the German data protection level and also monitors their compliance on an ongoing basis.

Finally, we may also be required by existing laws to disclose personal data to the relevant authorities for law enforcement purposes.

Also, to the extent that a chargeback of credit card payments occurs, it may be necessary to transmit certain booking details to the payment provider and the respective financial institutions for clarification in order to process the chargeback request. This may be, for example, a copy of the booking confirmation or the IP address used for the booking.

We do not commercially share your personal data with other companies.

Finally, we integrate the use of some social media into our websites, so we may be involved in collecting your personal data or the social media provider may receive some of your information as a result. We have listed the further details of this below.
 
9. integration of third party services and content
We incorporate third-party content or service offerings to provide you with a comprehensive, convenient service experience that meets your expectations. To enable you to use these services, your IP address must be forwarded to these third-party providers, because without the IP address they would not be able to send the content to your browser.

Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information, such as visitor traffic on the pages of this website.

The following presentation provides an overview of the third-party providers integrated by us as well as their content, together with - where possible - links to their privacy statements, which contain further information on the processing of data and opt-out options:
 
9.1 Google Analytics web analytics services
This website uses functions of the Google Analytics web analysis service. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.This service allows us to track the use of our website by creating reports and thus adapt our offer to the demands of users. We are required by law to inform you about how this service works.

Google Analytics sets its own cookies. The data collected in this way is usually transferred to a server in the USA and stored there. Google Analytics cookies are stored on the basis of Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its web offering and its advertising.

Data generated by Google Analytics include:

 
The type of browser and its versionThe operating system you are usingHow long you stay on our siteThe website you visited beforeYour IP address 
Google is certified under the Privacy Shield agreement and thereby offers a guarantee of compliance with European data protection law.

We have also adapted Google Analytics to comply with the applicable legal regulations on data protection. If you have anonymized your IP address, it will generally be shortened before leaving the European Economic Area.

If you would like to deactivate the cookies in question, you can find a corresponding browser plugin under the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

If you do not wish your data to be collected by Google Analytics at all, you can set an opt-out cookie via the following link, which will prevent future collection of information: https://tools.google.com/dlpage/gaoptout?hl=de.

IP AnonymizationWe have activated the IP anonymization function on this website. This means that your IP address will be truncated by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with any other data held by Google.

Browser PluginYou may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

Objection to data collectionYou can prevent the collection of your data by Google Analytics by clicking on the following link: Disable Google Analytics.

An opt-out cookie will be set that will prevent the collection of your data during future visits to this website. More information on how Google Analytics handles user data can be found in Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.
 
Demographic characteristics with Google AnalyticsThis website uses the "demographic characteristics" function of Google Analytics. This allows reports to be generated that contain statements about the age, gender and interests of site visitors. This data comes from interest-based advertising from Google as well as visitor data from third-party providers. This data cannot be assigned to a specific person. You can deactivate this function at any time via the ad settings in your Google account or generally prohibit the collection of your data by Google Analytics as shown in the item "Objection to data collection".
 
9.2 YouTube videos
We have embedded YouTube videos on our website, which are stored on the servers of the provider YouTube and can be played from our website via an embedding. The embedding of the videos takes place with the option for extended data protection settings activated. When you play these videos, YouTube cookies and DoubleClick cookies are stored on your computer and data may be transferred to Google Inc, Amphitheater Parkway, Mountain View, CA 94043, USA, as YouTube operator.

When playing videos stored on YouTube, at least the following data is transmitted to Google Inc. as YouTube operator and operator of the DoubleClick network according to the current status: IP address and cookie, the specific address of the page called up on our site, system date and time of the call-up, identifier of your browser.

The transmission of this data takes place regardless of whether you have a Google user account through which you are logged in or whether you do not have a user account. If you are logged in this way, Google may assign this data directly to your account. If you do not want the assignment to your profile, you must log out before activating the play button for the video.


YouTube and Google Inc. store this data as user profiles and may use it for purposes of advertising, market research and/or demand-oriented design of their websites. Such an evaluation is carried out in particular (also for non-registered users) for the provision of tailored advertising and to inform other users about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Google as the operator of YouTube to exercise this right.

Further information on the purpose & scope of data collection and its processing by Google can be found on this information page. The following privacy policy published by YouTube, which is at www.google.de/intl/de/policies/privacy/abrufbar, informs you about the collection, processing and use of personal data by YouTube and Google.

Opt-out: https://www.google.com/settings/ads/.

9.3 Google Maps
This website uses the mapping software GoogleMaps from Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. By using this website, you consent to the collection, processing and use of data that may be automatically collected by Google and its agents. The applicable data protection provisions are available at www.google.de/intl/de/policies/privacy/. They inform about the collection, processing and use of personal data by YouTube and Google. Opt-out: https://www.google.com/settings/ads/.

9.4 Google AdWords
For the purpose of optimizing our website and to statistically record the use of our website, we also use Google Conversion Tracking. The provider of Google AdWords is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The applicable data protection provisions are available at www.google.de/intl/de/policies/privacy/.

If you access our website via a Google ad, Google Adwords sets a cookie (see section 5.2) on your computer. These cookies lose their validity after 30 days. They are not used for personal identification. If you then visit our website again and the cookie has not yet expired, it will be recognized that the user clicked on the ad and was redirected to this page. Each Adwords customer receives a different cookie. Cookies can therefore not be tracked across Adwords customers' websites. The information obtained using the conversion cookie is used to create conversion statistics for Adwords customers who have opted for conversion tracking. The Adwords customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users. If you do not wish to participate in the tracking process, you can also refuse the setting of a cookie required for this - for example, via a browser setting that generally disables the automatic setting of cookies. You can also disable cookies for conversion tracking by setting your browser to block cookies from the "www.googleadservices.com" domain. Google's privacy policy on conversion tracking can be found here (https://services.google.com/sitestats/de.html).

9.5 Property Management System (PMS) of Gubse AG
We use the hotel software SIHOT.PMS, a Property Management System (PMS) of GUBSE AG, Bahnhofstraße 26-28, 66578 Schiffweiler, to manage our hotels. It is an information and management system for the control of the processes in the hotel, in which all functions of the areas front office, reservation and property management are united in one interface. Interfaces connect SIHOT.PMS with all known applications, from the telephone system to the energy management to internet reservations, internet bookings or even the external financial accounting.

Your data can thus be stored and processed in this software system used by us. According to information from Gubse AG and to our knowledge, SIHOT does not have access to the personal data collected in this way. However, Gubse AG would be and, if applicable, is itself obliged to comply with the EU data protection level. You can find the link to the data protection declaration here: https://www.sihot.com/rechtliche-informationen/.



9.6 Payment service provider, payments by credit card or Girocard:
(1) We use the services of the payment provider SIX Payment Services AG, Hardturmstrasse 201 (P.O. Box 1521), CH-8021 Zurich, for the processing of payments or for the provision of collateral by girocard or credit card.

According to information from SIX Payment Services AG and to our knowledge, there is no access to the data collected in this way (only the credit card number is read in, according to information from SIX), because the data collected and transmitted is not personal. Nevertheless, SIX Payment Services AG is obligated by us to comply with the EU data protection level. You can find the link to the data protection declaration here: https://www.six-payment-services.com/de/services/legal/privacy-statement.html.

(2) However, insofar as a chargeback of credit card payments occurs, it may be necessary to transmit certain booking details to the payment provider and the respective financial institutions for clarification in order to process the chargeback request. For example, this may be a copy of the booking confirmation or the IP address used for the booking.

9.7 Instagram:
Facebook Ireland Ltd. processes (personal) data when using Facebook products - including when visiting the Instagram page of - even from persons who are not logged into any of the Facebook services. Which (personal) data these are in detail, how, for which purposes and on which legal basis they are processed, is described by Facebook in its data policy (https://help.instagram.com/519522125107875?helpref=page_content), which applies to all Facebook products. Information on how to contact Facebook and on the settings options for advertisements, cookies, etc. can also be found there. The data may be transferred to countries outside the European Union.

For more information about the cookies that Instagram sets when having an Instagram account, using Facebook products (including the website and apps), or visiting other websites and apps that use Facebook products (including the "Like" button or other Facebook technologies), Facebook provides the Cookie Policy (https://www.facebook.com/policies/cookies/). Information on how to manage information available about you can also be found at this link: https://www.facebook.com/policies/cookies/.

When you visit the Instagram page of Facebook collects, among other things, your IP address. Together with other information that Facebook receives through cookies, Facebook provides Fibona GmbH, as the operator of the Instagram page, with statistical information about the use of this Instagram page (so-called page insights). These are summarized data that show how users interact with the page. These page insights may be based on personal data collected by Facebook in connection with a visit or interaction of users on or with the Instagram page of the Federal President and its content. Facebook provides more information on this here: https://www.facebook.com/about/privacy.

Fibona GmbH can use Page Insights to perform an anonymous evaluation of reach, page views, time spent on video posts, actions (likes, comments, sharing of posts), as well as by age, gender and location (as indicated by users in their respective Instagram profiles). In this context, settings can be made for the evaluation of the reach or corresponding filters can be set with regard to the selection of a time period, the consideration of a specific post as well as demographic groupings (e.g. female, 20-30 years old). This data is anonymized, aggregated and abstracted. These settings therefore do not allow Fibona GmbH to draw conclusions about individuals. The evaluation is used to optimally design the offer on the Instagram page of the Federal President for the purpose of public relations.


9.8 Other services:
(1) We have integrated functions of the Google+ service on our website, offered by the third-party provider Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. We, as the provider of our websites, do not obtain any knowledge of the content of the transmitted data or its use by Google+. You can find the link to the privacy policy here: https://www.google.com/policies/privacy/, Opt-Out: https://www.google.com/settings/ads/.

(2) We have integrated functions of the service Instagrameeinbinden on our website, offered by Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA. We, as the provider of our websites, do not obtain knowledge of the content of the transmitted data or its use by Instagram. You can find the link to the privacy policy here: http://instagram.com/about/legal/privacy/.

(3) We have integrated functions of the Facebook network on our website, offered by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. As the provider of our websites, we do not receive any knowledge of the content of the transmitted data or its use by Facebook.

You can find the link to the privacy policy here: https://www.facebook.com/about/privacy/.

Facebook is certified under the Privacy Shield agreement and thereby offers a guarantee that it will comply with European data protection law even when transferring and storing data in the USA (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

Further information on the "EU-US Privacy Shield" can be found at: The Federal Commissioner for Data Protection and Freedom of Information ec.europa.eu/justice/data-protection/international-transfers/eu-us-privacy-shield/index_en.htm.

 
10. data protection during applications and the application process
We collect and process the personal data of applicants for the purpose of handling the application process. If an employment relationship is established following the application process, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If no employment relationship is established with the applicant, the application documents are automatically deleted two months after notification of the rejection decision, provided that no other legitimate interests prevent deletion, for example in the case of proceedings under the General Equal Treatment Act (AGG).

We have commissioned YOURCAREERGROUP GmbH, Kaiserswerther Straße 282, 40474 Düsseldorf, to carry out the application process. A link on our website takes the applicant directly to the HOTELCAREER website of YOURCAREERGROUP. There, the applicant can provide the information required for the application, which will then be forwarded to Fibona GmbH.
 
11. your rights
Of course, you have rights in relation to the collection of your data. We are required by law to inform you of the same. The exercise and implementation of these rights is free of charge for you.

Right of withdrawal (Art. 7 para. 3 DSGVO).
You have the right to revoke your declaration of consent under data protection law at any time with an explanation to Fibona GmbH. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. If you wish to exercise your right of revocation, an e-mail to datenschutz@legere-hotelgroup.com will suffice.

Right of objection (Art. 6 para. 1 DSGVO).
You have the right at any time to object to the processing of personal data relating to you in accordance with Art. 6 (1) f DSGVO.We will then no longer process your personal data unless legitimate grounds for the processing override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. If you wish to exercise your right to object, simply send an e-mail to datenschutz@legere-hotelgroup.com.
 
Right to data portability (Art. 20 DSVGO).
You have the right to request a transfer of your data from us to another entity at any time.

The right to data portability requires that

personal data as defined in 4 (1) of the GDPR are affected,the personal data have been provided to the controller by the data subjectthe processing of the personal data must be based on consent or a contract pursuant to 6 para. 1 lit. b DSGVO, andthe data processing is carried out by means of an automated procedure.


Right of access (Art. 15 DSGVO)
You have the right to request confirmation from us whether and how we obtain personal data from you. This right is realized by this privacy policy. In addition, you can request electronic information.

The right to rectification (Art. 16 DSGVO).
If data processing is carried out with incorrect personal data of the data subject, the data subject has a right to immediate rectification. However, the purpose of the processing must be taken into account.

Right to erasure (Art.17 DSGVO).
You have the right to have your data deleted (right to be forgotten). The data subject has the right to require the controller to erase the relevant personal data without undue delay.

Right to restriction of processing (Art. 18 DSGVO).
The data subject has a right to restriction of processing, i.e. to a "Stop!" of processing. This right takes effect if

the data subject questions the accuracy of the data,the processing is unlawfulthe data is needed to assert legal claims after the purpose of the data processing has been fulfilled, orthe data subject has lodged an objection in accordance with Art. 21 DSGVO. 
Right to lodge a complaint (Art. 77 DSGVO)
You have the right to complain to a supervisory authority or a competent body, insofar as you should have a reason to complain.

Competent supervisory authority:

The Hessian Commissioner for Data Protection and Freedom of Information.Gustav-Stresemann-Ring 165189 Wiesbaden

or

P.O. Box 31 63,65021 Wiesbaden

Phone: +49 (0) 611 1408 0Fax: +49 (0) 611 1408 611

Internet: http://www.datenschutz.hessen.de

To exercise this right and the two previously mentioned, you can also contact the contact persons listed at the beginning of this privacy policy.

Right of objection
Insofar as your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f. DSGVO, you have the right to object to the processing of your personal data in accordance with Art. 21 DSGVO, insofar as there are grounds for doing so that arise from your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right of objection, which is implemented by us without specifying a particular situation. If you would like to exercise your right of revocation or objection, it is sufficient to send an e-mail to datenschutz@legere-hotelgroup.com. 
 
12. data security
We take organizational, contractual and technical security measures in accordance with the state of the art. We thus ensure that the provisions of data protection laws are complied with. We thus protect the data processed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons.

We maintain a wide variety of security measures within the meaning of Art. 32 DSGVO (technical and organizational measures) to protect your personal data.

To ensure secure transmission of the data you send to us, we offer SSL/TLS encryption on our website using the current encryption protocols TLS v1.1. and TLS v1.2. We would like to point out that the comprehensive encryption of the transmission path also depends on your Internet browser. We therefore recommend that you keep your Internet browser up to date so that TLS v1.1. or TLS v1.2 encryption is automatically set up when you access our website.

If you contact us by e-mail, we would like to point out that the confidentiality of the transmitted information is not guaranteed. The content of the e-mails may be viewed by third parties under certain circumstances. We therefore recommend that you send us confidential information by post.

For applications, at least the attachment should be encrypted with 7Zip. The password can then be forwarded to the future employer by telephone.
 
13. deletion of data
The stored data will be deleted as soon as they are no longer needed for their intended purpose and the deletion does not conflict with any legal obligations to retain data. If the data is not deleted because, for example, it must be retained for reasons of commercial or tax law, its processing will be restricted. The data will then be blocked and not processed for other purposes.

 
14. change of the privacy policy
We reserve the right to change this data protection declaration if the legal situation or this online offer or the type of data collection changes. However, this only applies with regard to statements on data processing. If the user's consent is required or if components of the data protection declaration contain a regulation of the contractual relationship with users, the data protection declaration will only be changed with the user's consent.

Therefore, please check this data protection declaration regularly as required, especially if you provide personal data.

The current data protection declaration can be accessed and printed out by you at any time on the following websites at www.legere-hotels-online.com/datenschutz, at www.charlys-house.de/datenschutz and, with regard to the websites with restricted functionality, www.fibona.de/hotels_resorts/legere-hotels and www.fibona.de/hotels_resorts/charlys-house at www.fibona.de/datenschutz.

Status: June 2018

The latest news, offers, and updates

Let’s keep in touch. Sign up to our newsletter to find out about all the latest developments in our hotel group, exclusive seasonal offers and more. We promise it’ll be worth your while.