Privacy & Cookies Policy | Best Western Ahorn Hotel Oberwiesenthal

We are pleased that you are visiting our website and thank you for your interest. Dealing with our customers and prospective customers is a matter of trust. This trust is of utmost importance to us, and therefore we are committed to handling your data with care and protecting it from misuse.

The Best Western Ahorn Hotel Oberwiesenthal specifically adheres to the EU General Data Protection Regulation and the current German Federal Data Protection Act (BDSG). Below, we explain what information we collect during your visit to our websites and in the hotels and how this information is used.

If we obtain the consent of the data subject for the processing of personal data, Art. 6 (1) (a) GDPR serves as the legal basis. If personal data is necessary to fulfill a contract to which the data subject is a party, Art. 6 (1) (b) GDPR serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures. If the processing of personal data is necessary to fulfill a legal obligation to which our company is subject (e.g. national reporting laws), Art. 6 (1) (c) GDPR serves as the legal basis. If processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 (1) (f) GDPR serves as the legal basis for processing.

The personal data of the data subject will be deleted or blocked as soon as the purpose for which they were stored no longer applies. Storage may also occur if this has been provided for by European or national legislators in EU regulations, laws, or other provisions to which the controller is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need to continue storing the data for the conclusion or fulfillment of a contract.

The purpose of the hotel group is to operate several hotels in Germany under joint responsibility. Data collection, processing, and use are carried out for the stated purpose.

AHORN Management GmbH, Tauentzienstr. 11, 10789 Berlin, Germany, is responsible for the implementation of central services such as reservations, marketing, and personnel management. To enhance our services, we manage all received data in our central hotel software within the hotel group as well as in the CRM system. The responsible party is the hotel in which the booking is made. The respective booking data is only visible to the responsible party. Access to a guest's master data is used, for example, to make a reservation for another hotel at a later date, to rebook, or to conduct centralized marketing activities. For this purpose, central services such as reservations and marketing access this data.

Data may be communicated to the following recipients:

Internal departments involved in the execution and fulfillment of the respective business processes (e.g. hotels of the hotel group, central reservation, accounting, sales & marketing, IT organization)
Public bodies that receive data due to legal regulations (e.g. law enforcement authorities, public authorities)
External contractors according to Art. 28 GDPR (service providers)
Other external bodies (e.g. credit institutions, companies, provided that data subjects have given their written consent or transmission is permissible due to overriding legitimate interests)

The legislature has enacted a variety of retention obligations and periods. After these periods have expired, the corresponding data and records are routinely deleted or anonymized if they are no longer required for contract fulfillment. For example, commercial or financial data from a completed fiscal year are deleted after a further ten years in accordance with legal regulations, unless longer retention periods are prescribed or necessary for legitimate reasons. Reservation documents can be destroyed after six years, and the special registration form can be destroyed after one year at the end of the year.

The purpose of the hotel group is to operate several hotels in Germany under joint responsibility. Data collection, processing, and use are carried out for the stated purpose.

During a stay at our hotel, we collect and process guest information in our hotel software. Data from the following groups of people may be stored:

Guests, business partners, companies
Interested parties and potential interested parties (e.g. inquiries about offers)

The data collected may include:

First and Last Name
birth date
Contact details (phone, mobile, email address)
Address, company if applicable
nationality
ID and passport details (for foreign guests on the registration form)
Data on services, billing data,
Data about payment processing (e.g. credit card details)
Video recordings to collect evidence in cases of vandalism, burglary, robbery or other crimes

If you made your booking through a hotel portal, a tour operator or a travel agency, your data will be forwarded to us by these providers in order to fulfill the concluded contract.

The city/municipality of a hotel may levy a cultural tax/tourist tax, a tax levied on paid accommodations. In this case, the guest is the tax debtor. We, as the accommodation provider, collect the tax from the guest and remit it to the city/municipality. As a guest, you can be exempt from the tax if your stay is for business reasons. In this case, we will collect your personal data and details of your stay in a separate declaration, as specified by the city/municipality.

We use the personal data you provide exclusively to fulfill the agreed contractual services, i.e. the administration, support, and hospitality of guests within the framework of the accommodation contract. We store your data in our hotel software as well as in reservation, billing, and payment applications. In addition to your personal data, this may also include billing data for food and beverages, telephone calls made from the room, and/or other hotel-specific services. Due to registration regulations (Section 29 et seq. of the Federal Registration Act), hotels are required to have their guests complete a registration form on-site or online. In addition to their first and last name and address, this form also contains information about their date of birth, nationality, and accompanying family members. We must also request an ID number from foreign guests. All other information is voluntary.

If services are used, we generally only collect data that is necessary to provide the services. Any additional data collected is voluntary. Personal data is processed exclusively to fulfill the requested services and to protect our legitimate business interests in accordance with Art. 6 (1) (f) GDPR.

Data is used for the following purposes:

Registration upon arrival and departure including completion of the registration form
The handing over of the room card for yourself and fellow travelers
Implementation of desired services
Processing of payment terms
Billing and reporting within the framework of the cultural tax / tourist tax
Saving preferences for future hotel stays

Our guests' contact details may be used for advertising purposes at a later date. Use of the email address requires your consent.

Data will only be processed for purposes other than those stated above if this processing is permitted under Art. 6 (4) GDPR and is compatible with the original purposes of the contractual relationship. We will inform you of this processing before your data is further processed in this way.

Public bodies that receive data due to legal regulations (e.g. city administration or municipal administration, law enforcement authorities, public sector authorities)
Internal departments involved in the execution and fulfillment of the respective business processes (e.g. administration, accounting, sales & marketing, IT organization)
Associated hotels (master data in the PMS)
External contractors according to Art. 28 GDPR (service providers)
Other external bodies (e.g. credit institutions)

The legislature has enacted a variety of retention obligations and periods. After these periods have expired, the corresponding data and records are routinely deleted if they are no longer required for contract fulfillment. For example, commercial or financial data from a completed fiscal year are deleted after a further ten years in accordance with legal regulations, unless longer retention periods are prescribed or necessary for legitimate reasons. Reservation documents can be destroyed after six years, and the registration form after one year at the end of the quarter. Unless affected by this, data will be deleted without request when the stated purposes no longer apply.

Video recordings are stored for 72 hours.

Our website offers the option to book rooms and packages. If you choose to do so, the data you enter in the input form will be transmitted to us and stored. This data includes: title, first and last name, email address, telephone number, address, number of fellow travelers, expected arrival time, preferences, payment method, and the date and time of the reservation.

We use payment service providers to process the purchase transaction. You can choose the payment method yourself. Please note that, depending on your selection, your payment data may be transmitted to the payment service provider's servers in the USA and processed there.

If you make an online booking from our website, this is done through the online reservation system cbooking provided by HotelNetSolutions GmbH, Genthiner Str. 8, 10785 Berlin, Germany. All booking data you enter is transmitted in encrypted form.

The legal basis for the processing of data is the conclusion of an accommodation contract.

To enhance our services, we manage all received data in our central CRM software within AHORN Hotels & Resorts. The responsible party is the hotel in which the booking is made. The respective booking data can only be viewed by the responsible party. Access to a guest's master data is used, for example, to make a reservation for another hotel at a later date, to rebook, or to conduct centralized marketing activities. For this purpose, central services such as reservations and marketing access this data. The legal basis for processing the data is our legitimate interest in data processing as part of the central administration and use of our customers' and business partners' data within the hotel group.

AHORN Hotels & Resorts offers interested parties the opportunity to book rooms and packages for any AHORN hotel through third-party hotel reservation portals. If you choose this option, the data entered in the input form will be transmitted to us and stored in accordance with the respective hotel reservation portal's own privacy policy. This data may include: title, first and last name, email address, telephone number, address, number of fellow travelers, expected arrival time, preferences, and payment details (credit card).

The legal basis for the processing of data is the conclusion of an accommodation contract.

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of a contractual relationship, we will delete the received data as soon as national, commercial, statutory, or contractual retention requirements are met. The transmitted data will be stored in our hotel software and used to execute the contract. If no contractual relationship is established, we will delete the data after one year at the end of the year.

AHORN Hotels & Resorts has no influence on the storage periods of the respective hotel reservation portal.

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data sent via email, this is the case when the respective conversation with the user has ended. The conversation is terminated when it can be inferred from the circumstances that the matter in question has been conclusively resolved.

If the contact is for a pre-contractual relationship (quote or reservation request), the transmitted data will also be stored in our hotel software and used to execute the contract. If no contractual relationship is established, we will delete the data after one year at the end of the year.

Our website offers the option to reserve a table at our restaurants in selected hotels. If you choose this option, the data you enter in the input form will be transmitted to us. This data includes: first and last name, email address, details of the table reservation (day, time, number of people, restaurant), and comments.

When you make a table reservation from our website, this is done through the online reservation system of resmio GmbH, Gneisenaustr. 66-67, D-10961 Berlin, Germany. All order data you enter is transmitted in encrypted form. Further information can be found in the system provider's privacy policy.

Our website offers the option to reserve our wellness services. If you choose to do so, the data you enter in the form will be transmitted to us. This data includes: title, first and last name, email address, telephone number, and booking details (date, time, treatment, price).

If you make bookings for our wellness offerings from our website, this is done through the Termin2go online booking system provided by Termin2go GmbH, Radinkendorf 20, 15848 Beeskow. All order data you enter is transmitted in encrypted form. Further information can be found in the system provider's privacy policy at www.termin2go.com/de-DE/datenschutzhinweise.

Our website offers the option to purchase vouchers. If you choose to purchase vouchers, the data entered in the input form will be transmitted to us and stored. This data includes: title/company, first and last name, date of birth, email address, address, telephone/fax, voucher value, voucher personalization (personal information for the recipient), shipping options, and payment details via third-party providers.

If you purchase a voucher value from our website, this is done through the online ordering platform of HotelNetSolutions GmbH, Genthiner Str. 8, 10785 Berlin, Germany. All order data you enter is transmitted in encrypted form. Further information can be found in the system provider's privacy policy.

Every participant, as well as other third parties, has the opportunity to object to the publication of their personal data (especially photos) at any time. To this end, all participants will be informed at the entrance to the event that they can either withdraw from the photographer's photographs or inform the photographer that they do not wish their images to be used or published. In the latter case, the photographer will take a separate photo to identify the objecting individual at a later date.

It's always possible that we accidentally publish images of people without their consent or without their express consent. If you do not want your image published, we will immediately do everything we can to comply with your rights. For group photos, we reserve the right to distort faces. Please contact us directly; we have set up an email address for this purpose: widerruf@ahorn-hotels.de.

The legal basis for processing the data is initially our legitimate interest in data processing in the context of the contact made by the enquiring party. If the contact is aimed at concluding a contract, the additional legal basis for processing is the contract initiation or contractual relationship.

To enhance our services, we manage all received data in the central CRM module within AHORN Hotels & Resorts. The responsible party is the hotel with which a business relationship exists. Central services such as sales, banqueting, reservations, and marketing access this data. The legal basis for processing the data is our legitimate interest in data processing within the framework of centralized management and use of the data of our customers and business partners within the hotel group.

Generally, no deletion period is specified. However, if our sales department has not had contact with the company contact within three years, the sales department will decide whether to delete the contact person for the company contact.

Former guests can leave a review of our hotel after checking out. We will send you an email within 14 days of your departure requesting that you submit a hotel review on HolidayCheck. Each review can be published anonymously upon request. If you did not feel comfortable at one of our hotels, we would like to take the opportunity to contact you.

If you, as a former guest, take advantage of this online review option, your data will be saved in the review form. This data includes your email address and voluntary information such as your first name, last name, language, and review details.

In the event of a credit risk, we will transmit your data (name, address, email address, company information, and, if applicable, contract and receivables data) to IHD Gesellschaft für Kredit und Forderungsmanagement mbH, Augustinusstr. 11 B, 50226 Frechen, and, if applicable, to other cooperating credit agencies for the purpose of credit assessment, to check the deliverability of the specified address, and for debt collection purposes.

For the purpose of deciding on the establishment, implementation or termination of the contractual relationship, we also collect or use automatically generated probability values, the calculation of which may include, among other things, address data.

Each time you visit our website, our system automatically collects data and information from the accessing computer's system. The following data is collected:

Information about the browser type and version used
The user's operating system
The user's IP address
Date and time of access
Websites from which the user's system accesses our website
Websites accessed by the user's system via our website

The data is also stored in our system's log files. This data is not stored together with other personal user data. Personal user profiles cannot be created. The stored data is evaluated only for statistical purposes.

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this purpose, the user's IP address must be stored for the duration of the session.

The data is stored in log files to ensure the functionality of the website. Furthermore, we use the data to optimize the website and ensure the security of our information technology systems. The data is not evaluated for marketing purposes in this context.

These purposes also constitute our legitimate interest in data processing for the provision of our website.

Cookies are small files that allow us to store specific information on your computer while you visit one of our websites. Cookies help us determine the frequency and number of users of our website, as well as make our offerings as convenient and efficient as possible for you.

We also use cookies on our website that enable us to analyze user browsing behavior. This allows the following data to be transmitted: search terms entered, frequency of page views, and use of website functions. User data collected in this way is pseudonymized using technical precautions. Therefore, it is no longer possible to assign the data to the accessing user. The data is not stored together with other personal data of the user. When accessing our website, the user is informed about the use of cookies for analysis purposes and their consent to the processing of the personal data used in this context is obtained. In this context, a reference to this privacy policy is also provided.

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. These require that the browser be recognized even after changing pages. The user data collected by technically necessary cookies is not used to create user profiles.

We use analytics cookies to improve the quality of our website and its content. Analytics cookies allow us to learn how the website is used and thus continuously optimize our offering.

Cookies are stored on the user's computer and transmitted from there to our website. Therefore, you, as the user, have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your internet browser. Cookies that have already been stored can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, you may no longer be able to fully use all of the website's functions.

Below, we describe in more detail which cookies we use on the site. These cookies enable us to offer you tailored site features and content by remembering your preferences. For example, these cookies can be used to remember your user details in our forum or to select a language. They can also be used to provide interactive information, such as viewing our virtual catalogs or videos.

Our website uses cookie consent technology from CCM19 Cookie to obtain your consent to the storage of certain cookies in your browser and to document this consent in compliance with data protection regulations. The provider of this technology is Papoo Software & Media GmbH - Dr. Carsten Euwens. Bornschein, Auguststr. 4, 53229 Bonn, Germany.

When you visit our website, a CCM19 cookie is stored in your browser, which stores the consent you have given or the revocation of that consent. This data will not be shared with CCM19.

The collected data will be stored until you request its deletion, until you delete the CCM19 cookie yourself, or until the purpose for storing the data no longer applies. Mandatory statutory retention periods remain unaffected.

The CCM19 cookie consent technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 (1) (c) GDPR.

Our website uses meta pixels from Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, to create so-called custom audiences, i.e., to segment visitor groups to our online offering, determine conversion rates, and subsequently optimize them. This happens especially when you interact with advertisements we have placed with Meta Platforms Ireland Limited.

The use of meta pixels is based on your consent in accordance with Art. 6 (1) (a) GDPR.

We intend to transfer personal data to third countries outside the European Economic Area, in particular to the USA. Data transfer to the USA is carried out in accordance with Art. 45 (1) GDPR and based on the European Commission's adequacy decision. The participating US companies and/or their US subcontractors are certified according to the EU-US Data Privacy Framework (EU-US DPF).

In cases where no adequacy decision by the European Commission exists (including US companies that are not certified according to the EU-US DPF), we have agreed on other appropriate safeguards with the data recipients within the meaning of Art. 44 et seq. GDPR. Unless otherwise stated, these are standard contractual clauses of the EU Commission pursuant to Implementing Decision (EU) 2021/914 of June 4, 2021. A copy of these standard contractual clauses can be viewed at eur-lex.europa.eu/legal-content/DE/TXT/HTML/.

In addition, before such a third-country transfer, we will obtain your consent in accordance with Art. 49 (1) Sentence 1 (a) GDPR, which you grant via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that transfers to third countries may involve risks that are unknown in detail (e.g., data processing by security authorities in the third country, the exact scope of which and the consequences for you that we do not know, over which we have no influence, and of which you may not be aware).

We have no control over the specific storage period of the processed data; it is determined by Meta Platforms Ireland Limited. Further information can be found in the Meta Pixel Privacy Policy.

We use TikTok Pixel from TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland, to create so-called custom audiences, i.e., to segment visitor groups to our online offering, determine conversion rates, and subsequently optimize them. This happens especially when you interact with advertisements we have placed with TikTok Technology Limited.

The use of TikTok Pixel is based on your consent in accordance with Art. 6 (1) (a) GDPR and Section 25 (1) TDDDG.

We have no control over the specific storage period for the processed data; it is determined by TikTok Technology Limited. Further information can be found in the TikTok Pixel privacy policy.

Our website uses the "myhotelshop" service to check availability and make bookings. The provider of "myhotelshop" is myhotelshop GmbH, Flossplatz 6, 04107 Leipzig, Germany.

We use the MHS tracking pixel from myhotelshop on our booking confirmation page. For this purpose, we use cookies from myhotelshop in accordance with the "Cookies" section. The integration of the MHS tracking pixel allows us to determine the conversion rate, i.e., how many website visitors have completed a transaction, in order to improve our service.

We process your data with the help of myhotelshop for the purpose of optimizing our website and for marketing purposes based on your consent in the Consent Manager in accordance with Art. 6 (1) (a) GDPR in conjunction with Section 25 TTDSG.

The processing is carried out for the purposes of measuring the web audience and tailoring websites to meet customer needs. The data is processed by myhotelshop to fulfill our contractual obligations and deleted upon request, unless legally required to retain the data.

Further information on the purpose and scope of processing by the provider can be found in myhotelshop’s privacy policy.

We have integrated Microsoft Advertising into our website. Microsoft Advertising is a service provided by Microsoft Corporation to display targeted advertising to users. Microsoft Advertising uses cookies and other browser technologies to evaluate user behavior and recognize users.

Microsoft Advertising collects information about visitor behavior across various websites. This information is used to optimize the relevance of advertising. Furthermore, Microsoft Advertising delivers targeted advertising based on behavioral profiles and geographic location. Your IP address and other identifiers, such as your user agent, are transmitted to the provider.

The ANID is a unique identifier associated with a specific Microsoft account. This identifier allows a user to be uniquely identified without directly containing personal information (such as a name or email address). The ANID is used to display targeted advertising. This means that Microsoft can use this identifier to deliver personalized ads based on the user's interests and behavior. This is often done by collecting and analyzing data about the user's online behavior. In addition to advertising, the ANID is also used to deliver personalized content and services. This can mean that websites or applications adapt their content and functionality to better meet the user's preferences and needs. The identifier can also be used for general operational purposes. This could include improving security, diagnosing technical problems, or optimizing the user experience.

In this case, your data will be passed on to the operator of Microsoft Advertising, Microsoft Corporation, One Microsoft Way Redmond, WA 98052-6399, United States.

The use of Microsoft Advertising is based on your consent in accordance with Art. 6 (1) (a) GDPR.

We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. Data transfer to the USA takes place in accordance with Art. 45 (1) GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certified according to the EU-US Data Privacy Framework (EU-US DPF). In cases where no adequacy decision of the European Commission exists (including US companies that are not certified according to the EU-US DPF), we have agreed on other appropriate guarantees with the data recipients within the meaning of Art. 44 et seq. GDPR. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of June 4, 2021. A copy of these standard contractual clauses can be viewed at eur-lex.europa.eu/legal-content/DE/TXT/HTML/. In addition, before such a third-country transfer, we will obtain your consent in accordance with Art. 49 (1) Sentence 1 (a) GDPR, which you grant via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that transfers to third countries may involve risks that are unknown in detail (e.g., data processing by security authorities in the third country, the exact scope of which and the consequences for you that we do not know, over which we have no influence, and of which you may not be aware).

We have no control over the specific storage period for the processed data; it is determined by Microsoft Corporation. Further information can be found in the Microsoft Advertising Privacy Policy.

If you, as a user, choose to opt out of interest-based advertising from Microsoft, this choice will be linked to the ANID. This means that Microsoft can use the ANID to remember that this user does not want to receive personalized advertising. This ensures that this preference is respected, even if you sign in to your Microsoft account again or browse across different devices.

We use Google Tag Manager, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager is used to manage website tags via an interface and allows us to control the precise integration of services on our website.

This allows us to flexibly integrate additional services to evaluate user access to our website.

The use of Google Tag Manager is based on your consent in the Consent Manager in accordance with Art. 6 (1) (a) GDPR. If services are launched from the Google Tag Manager that require consent, you grant us this consent by setting the cookie settings (cookie banner/Consent Manager). You can also revoke your consent at any time with future effect in accordance with Art. 7 (3) GDPR.

We have no control over the specific storage period for the processed data; it is determined by Google Ireland Limited. Further information can be found in Google's privacy policy.

Our website uses Google Analytics 4, a web analytics service provided by Google LLC. The responsible party for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google").

Google Analytics uses cookies, which enable an analysis of your use of our website. The information collected through cookies about your use of this website is usually transferred to a Google server in the USA and stored there.

We use the User ID feature. Using the User ID, we can assign a unique, persistent ID to one or more sessions (and the activities within those sessions) and analyze user behavior across devices.

We continue to use Google Signals. These allow Google Analytics to collect additional information about users who have enabled personalized ads (interests and demographic data), and ads can be delivered to these users in cross-device remarketing campaigns.

In Google Analytics 4, IP address anonymization is activated by default. Due to IP anonymization, your IP address will be shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

During your website visit, your user behavior is recorded in the form of "events." Events can be:

Page views
First time visiting the website
Start of the session
Your “click path”, interaction with the website
Scrolls (whenever a user scrolls to the end of the page (90%))
Clicks on external links
internal search queries
Interaction with videos
Dateidownloads
ads viewed / clicked
Language setting

Also recorded:

Your approximate location (region)
Your IP address (in abbreviated form)
technical information about your browser and the devices you use (e.g. language settings, screen resolution)
Your internet provider
the referrer URL (from which website/advertising medium you came to this website)

To the extent that data is processed outside the EU/EEA and no data protection level equivalent to European standards exists, we have concluded EU standard contractual clauses with the service provider to ensure an appropriate level of data protection. The parent company of Google Ireland, Google LLC, is based in California, USA. The transfer of data to the USA and access by US authorities to the data stored by Google cannot be ruled out. The USA is currently considered a third country from a data protection perspective. You do not have the same rights there as within the EU/EEA. You may not have any legal remedies against access by authorities.

We process your data with the help of Google Analytics 4 based on your consent in accordance with Art. 6 (1) (a) GDPR. Your consent. You grant your consent by setting the cookie settings (cookie banner/consent manager), which you can also revoke at any time with future effect in accordance with Art. 7 (3) GDPR.

You can also prevent cookies from being saved by setting your browser software accordingly. However, if you configure your browser to reject all cookies, this may limit the functionality of this and other websites. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by (I) not granting your consent to the setting of cookies or (II) downloading and installing the browser add-on to deactivate Google Analytics HERE. Further information can be found in the Google Terms of Use and Privacy Policy.

We have integrated components from DoubleClick by Google into our website. DoubleClick is a Google brand under which specialized online marketing solutions are primarily marketed to advertising agencies and publishers. DoubleClick by Google transfers data to the DoubleClick server with every impression, click, or other activity.

Each of these data transfers triggers a cookie request to the data subject's browser. If the browser accepts this request, DoubleClick places a cookie in your browser.

DoubleClick uses a cookie ID, which is required to process the technical process. The cookie ID is required, for example, to display an advertisement in a browser. DoubleClick can also use the cookie ID to record which advertisements have already been displayed in a browser to avoid duplicate ads. Furthermore, the cookie ID enables DoubleClick to record conversions. Conversions are recorded, for example, when a user has previously been shown a DoubleClick advertisement and subsequently makes a purchase on the advertiser's website using the same internet browser.

A DoubleClick cookie does not contain any personal data, but may contain additional campaign identifiers. A campaign identifier is used to identify the campaigns you have already been involved with on other websites. As part of this service, Google receives data that Google also uses to create commission statements. Among other things, Google can track that you have clicked on certain links on our website. In this case, your data is passed on to the operator of DoubleClick, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

We process your data using the Double-Click cookie for the purpose of optimizing and displaying advertising based on your consent in accordance with Art. 6 (1) (a) GDPR. You grant your consent by setting the cookie settings (cookie banner/consent manager), which also allows you to revoke your consent at any time with future effect in accordance with Art. 7 (3) GDPR.

The cookie is used, among other things, to place and display user-relevant advertising and to create reports on advertising campaigns or to improve them. The cookie also serves to prevent the same advertisement from being displayed multiple times. Each time you visit one of the individual pages of our website on which a DoubleClick component has been integrated, your browser is automatically prompted by the respective DoubleClick component to transmit data to Google for the purposes of online advertising and the settlement of commissions. There is no legal or contractual obligation to provide your data. If you do not give us your consent, you can visit our website without restrictions; however, not all functions may be fully available.

We have no control over the specific storage period for the processed data; it is determined by Google Ireland Limited. Further information can be found in Google's privacy policy.

We have integrated Google AdWords Remarketing on our website. Google AdWords Remarketing is a service provided by Google Ireland Limited to display targeted advertising to users. Google AdWords Remarketing uses cookies and other browser technologies to evaluate user behavior and recognize users.

Google AdWords Remarketing collects information about visitor behavior across websites. This information is used to optimize the relevance of advertising. Furthermore, Google AdWords Remarketing delivers targeted advertising based on behavioral profiles and geographic location. Your IP address and other identifiers, such as your user agent, are transmitted to the provider.

If you are registered with a Google Ireland Limited service, Google can associate the visit with your account. Even if you are not registered with Google Ireland Limited or are not logged in, it is possible that the provider will find and store your IP address and other identification features. In this case, your data will be transferred to the operator of Google Ads, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

We process your data with the help of Google AdWords Remarketing for the purposes of advertising, analytics, conversion tracking, and remarketing. This information is used to optimize the relevance of advertising. Furthermore, Google Ads Remarketing delivers targeted advertising based on behavioral profiles and geographic location.

Data processing is based on your consent in accordance with Art. 6 (1) (a) GDPR. You grant your consent by selecting the cookie settings (cookie banner/consent manager), which you can also revoke at any time with future effect in accordance with Art. 7 (3) GDPR.

We have no control over the specific storage period for the processed data; it is determined by Google Ireland Limited. Further information can be found in Google's privacy policy.

We have integrated Google AdWords Conversation on our website. Google AdWords Conversation is a conversion marketing service provided by Google Ireland Limited. This service helps website operators convert website visitors into paying customers.

The date and time of the visit, IP address, browser type, browser language, cookie ID, ads clicked, web request, success rates of advertising campaigns and the number of purchases made through ads are collected and processed by Google.

If you are registered with a Google Ireland Limited service, Google can associate the visit with your account. Even if you are not registered with Google Ireland Limited or are not logged in, it is possible that the provider will find and store your IP address and other identification features. In this case, your data will be passed on to the operator of Google AdWords Conversation, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

We process your data using Google AdWords Conversation for the purposes of advertising, analytics, and conversion tracking. This information is used to optimize the relevance of advertising.

We have no control over the specific storage period for the processed data; it is determined by Google Ireland Limited. Further information can be found in Google's privacy policy.

We have integrated components of Google reCAPTCHA on our website. Google reCAPTCHA is a service provided by Google Ireland Limited and enables us to distinguish whether a contact request originates from a natural person or is automated using a program. When you access this content, you establish a connection to servers of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Your IP address and possibly browser data such as your user agent are transmitted. Google reCAPTCHA also records the user's length of stay and mouse movements in order to distinguish automated requests from human requests. This data is processed exclusively for the purposes stated above and to maintain the security and functionality of Google reCAPTCHA.

The use of the service is based on your consent in the Consent Manager in accordance with Art. 6 (1) (a) GDPR for protection when submitting forms.

We have no control over the specific storage period for the processed data; it is determined by Google Ireland Limited. Further information can be found in the Google reCAPTCHA privacy policy.

We maintain fan pages, accounts, or channels on the networks listed below to provide you with information and offers within social networks and to offer you additional ways to contact us and learn about our offerings. Below, we will inform you about which data we or the respective social network process in connection with your access to and use of our fan pages/accounts.

If you would like to contact us via messenger or direct message via the respective social network, we will generally process the username you use to contact us and, if necessary, store any other data you provide to the extent necessary to process/respond to your request. The legal basis is Art. 6 (1) (f) GDPR (processing is necessary to protect the legitimate interests of the controller).

We receive automated statistics about our accounts via Insights functionality. These statistics include, among other things, the total number of page views, likes, information on page activity and post interactions, reach, video views, and information on the proportion of men/women among our fans/followers. These statistics contain only aggregated data and cannot be linked to individual people. We cannot identify you through them.

In order to view the content of our fan pages or accounts, you do not have to be a member of the respective social network and therefore no user account for the respective social network is required.

Please note, however, that when you access the respective social network, the social networks collect and store data (e.g., technical data to display the website to you) even from website visitors without a user account and use cookies and similar technologies, over which we have no control. Details on this can be found in the privacy policy of the respective social network.

If you want to interact with the content on our fan pages/accounts, e.g. comment on, share or like our postings/contributions and/or contact us via messenger functions, you must first register with the respective social network and provide personal data. We have no influence on the data processing by the social networks when you use them. To the best of our knowledge, your data will be stored and processed in particular in connection with the provision of the services of the respective social network, and also to analyze usage behavior (using cookies, pixels/web beacons and similar technologies) on the basis of which advertising based on your interests is displayed both within and outside the respective social network. It cannot be ruled out that your data will also be stored by the social networks outside the EU/EEA and passed on to third parties.

Information on the exact scope and purposes of processing your personal data, the storage period/deletion, and guidelines for the use of cookies and similar technologies in the context of registration and use of social networks can be found in the social networks' privacy policies/cookie policies. There you will also find information on your rights and options for objection.

Our website incorporates plug-ins from the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA. You can recognize these plug-ins by the logo on our site. You can find an overview of the plug-ins here.

We have no influence on the collection and further processing of data by Facebook. Furthermore, we cannot determine the extent, location, and duration of data storage, the extent to which Facebook complies with existing deletion obligations, the evaluations and links made to the data, and to whom the data is shared. If you would like to prevent Facebook from processing personal data you have sent to us, please contact us by other means.

Further information can be found in Facebook's privacy policy. If you do not want Facebook to be able to associate your visit to our pages with your user account, please log out of your respective user account.

On our Facebook fan page at: https://www.facebook.com/bestwesternahornhoteloberwiesenthaladultsonly/ we use plugins from the provider Facebook.com, which are provided by Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94304 in the USA.

When you visit our Facebook page, Facebook (Meta) records, among other things, your IP address and other information stored on your PC in the form of cookies. This information is used to provide us, as the operator of the Facebook page, with statistical information about the use of the Facebook page. Further information on this can be found at the following link: facebook.com/help/pages/insights.

The statistical information provided does not allow us to draw conclusions about individual users. We only use it to respond to the interests of our users and to continuously improve our online presence and ensure its quality.

We collect your data via our fan page solely to enable communication and interaction with us. This collection typically includes your name, message content, comment content, and the profile information you have made publicly available.

The processing of your personal data for the purposes stated above is based on our legitimate business and communicative interest in offering an information and communication channel in accordance with Art. 6 (1) (f) GDPR. If you, as a user, have given your consent to data processing to the respective provider of the social network, the legal basis for processing extends to Art. 6 (1) (a) and Art. 7 GDPR.

Due to the fact that the actual data processing is carried out by the social network provider, our access to your data is limited. Only the provider of the social network is authorized to have full access to your data. Therefore, only the provider can directly take and implement appropriate measures to fulfill your user rights (request for information, request for deletion, objection, etc.). The most effective way to assert these rights is therefore to contact the respective provider directly.

We and Facebook are jointly responsible for the personal content of the fan page. Data subjects' rights can be asserted with Meta Platforms Ireland Ltd. and with us.

According to the GDPR, Facebook is primarily responsible for processing Insights data, and Facebook fulfills all obligations under the GDPR with regard to the processing of Insights data. Meta Platforms Ireland Ltd. makes the essence of the Page Insights supplement available to the data subjects.

We do not make any decisions regarding the processing of Insights data or the storage period of cookies on user devices.

Further information can be found directly on Facebook (Supplementary Agreement with Facebook).

Further information, including the exact scope and purposes of the processing of your personal data, the storage period/deletion as well as guidelines for the use of cookies and similar technologies in the context of registration and use, can be found in Facebook's privacy policy / cookie policy.

Every person depicted, as well as other third parties, has the right to object to the publication of their personal data (photos) at any time. We have set up the email address widerruf@ahorn-hotels.de for this purpose. This right of objection applies in particular to the future publication of images.

It's always possible that we accidentally publish images of people without their consent. If you don't want them published, we will immediately do everything we can to comply with your rights. For group photos, we reserve the right to distort faces.

Our Instagram fan page https://www.instagram.com/bestwestern_oberwiesenthal/ is a service of the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA. We would like to publish photos and information about our events and activities, as well as selected individuals, on Instagram. The photos may include employees, guests, models, and third parties.

By using the fan page, data containing information about your visits to our fan page is forwarded to the Instagram servers. For logged-in users, this means that the usage data is assigned to your personal Instagram account. As soon as you, as a logged-in Instagram user, actively use the Instagram plugin, e.g., by clicking on the "Instagram" logo, this data is transferred to your Instagram account. You can only avoid this by logging out of your Instagram account beforehand.

When you visit the Instagram page, Facebook records, among other things, your IP address. Together with other information that Facebook receives through cookies, Facebook, as the operator of the Instagram page, provides statistical information about the use of this Instagram page (so-called Page Insights). This is aggregated data that shows how users interact with the page. These Page Insights may be based on personal data collected by Facebook in connection with a user visit to or interaction with our Instagram page and its content.

With the help of Page Insights, we can anonymously evaluate reach, page views, time spent on video posts, actions (likes, comments, shares of posts), as well as age, gender, and location (as specified by users in their respective Instagram profiles). Settings can be configured for the reach evaluation, or appropriate filters can be set regarding the selection of a time period, the viewing of a specific post, and demographic groupings (e.g., female, 20-30 years old). This data is anonymized, aggregated, and abstracted. These settings therefore do not allow us to draw any conclusions about individuals. The evaluation serves to optimize the offering on the Instagram page for the purpose of public relations.

Due to the fact that the actual data processing is carried out by the social network provider, our access to your data is limited. Only the provider of the social network is authorized to have full access to your data. For this reason, only the provider can directly take and implement appropriate measures to fulfill your user rights (request for information, request for deletion, objection, etc.). The most effective way to assert these rights is therefore to contact the respective provider directly.

We and Instagram are jointly responsible for the personal content of the fan page. Data subjects' rights can be asserted with Meta Platforms Ireland Ltd. and with us.

According to the GDPR, Instagram is primarily responsible for processing Insights data, and Instagram fulfills all obligations under the GDPR with regard to the processing of Insights data. Meta Platforms Ireland Ltd. provides the essence of the Page Insights supplement to the data subjects.

We do not make any decisions regarding the processing of Insights data or the storage period of cookies on user devices.

Further information can be found directly on Instagram (supplementary agreement with Facebook). Further information, including the exact scope and purposes of processing your personal data, the storage period/deletion, and guidelines for the use of cookies and similar technologies during registration and use, can be found in Instagram's privacy policy/cookie policy (note: clicking on the following link will take you to the Facebook social network website): help.instagram.com/519522125107875/ This information can also be viewed in the help section of the Instagram website via the following link: help.instagram.com/581066165581870

We have integrated YouTube Video into our website. YouTube Video is a component of the video platform provided by YouTube, LLC, where users can upload content, share it online, and receive detailed statistics.

YouTube Video allows us to integrate content from the platform into our website.

YouTube Video uses cookies and other browser technologies to evaluate user behavior, recognize users, and create user profiles. This information, such as IP address, device information, referrer URL, videos viewed, IP address, information about the device used, and videos viewed, is used, among other things, to analyze the activity of the content listened to and to create reports. If a user is registered with YouTube, LLC, YouTube Video can assign the videos played to the profile.

When you access this content, you establish a connection to servers of YouTube, LLC, Google Ireland Limited, Gordon House, Barrow Street Dublin 4 Ireland, whereby your IP address and possibly browser data such as your user agent are transmitted.

The use of this service is based on your consent in accordance with Art. 6 (1) (a) GDPR in conjunction with Section 25 of the German Telemedia Act (TTDSG) for the purpose of integrating and displaying image films on our websites and analyzing film visits. You grant your consent by selecting the cookie settings (cookie banner/consent manager), which you can also revoke at any time with future effect in accordance with Art. 7 (3) GDPR.

We have no control over the specific storage period for the processed data; it is determined by YouTube, LLC. Further information can be found in the YouTube Video Privacy Policy.

This service is primarily directed at adults. We do not currently market any areas specifically for children. Accordingly, we do not knowingly collect age-based information or knowingly collect personal information from children under the age of 16. However, we urge all visitors to our website who are under the age of 16 not to disclose or provide any personal information through our service. In the event that we discover that a child under the age of 16 has provided us with personal information, we will delete the child's personal information from our files, to the extent technically feasible.

If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:

You have the right to information about the personal data stored about you, the purposes of the processing, any transmission to other parties and the duration of storage.
If data is incorrect or no longer required for the purposes for which it was collected, you can request that it be corrected, deleted, or restricted. If provided for in the processing procedures, you can also view your data yourself and correct it if necessary.
If your particular personal situation gives rise to reasons against the processing of your personal data, you may object to this processing, provided the processing is based on a legitimate interest. The controller will no longer process the personal data concerning you unless they can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims.
If the personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purposes of such advertising; this also applies to profiling insofar as it is related to such direct marketing. If you object to processing for direct marketing or profiling purposes, the personal data concerning you will no longer be processed for these purposes.

You have the right to revoke your consent to data protection at any time. Revoking your consent does not affect the legality of the processing carried out on the basis of your consent up to the time of revocation.

If you have any questions about your rights and how to exercise them, please contact:

AHORN Headquarters: AHORN Management GmbH, Tauentzienstr. 11, D-10789 Berlin, Germany. Email: info@ahorn-hotels.de

Data Protection Officer: DataSolution LUD GmbH, Isarstr. 13, D-14974 Ludwigsfelde, Germany. Email: mail@hoteldatenschutz.de

As a data subject, you have the right to lodge a complaint with a supervisory authority for data protection, in particular in the Member State of your habitual residence or of the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes data protection laws, without prejudice to any other administrative or judicial remedy.

The supervisory authority to which the complaint is submitted will inform you of the status and outcome of your complaint, including the possibility of judicial redress.

More information can be found on the website of the Federal Commissioner for Data Protection and Freedom of Information. Follow the link.

AHORN Hotels & Resorts implements technical and organizational security measures in accordance with Art. 32 GDPR to protect your data managed by us against accidental or intentional manipulation, loss, destruction, or access by unauthorized persons. Our security measures are continuously improved in line with technological developments. Access to these data is only possible for a few authorized persons and those subject to special data protection obligations who are involved in the technical, administrative, or editorial management of data.

Privacy & Cookies

General information on data processing

Collection, processing and use of personal data at AHORN Hotels & Resorts

Your stay at the hotel

Online booking via the website

Online booking via other websites

Sending emails before arrival

Contact form/email contact

Table reservation

Booking wellness offers

Purchase of a voucher via the website

Newsletterservice

Publication of information and images about events

Support, advice and advertising for corporate customers

Online evaluation

Transfer of your data to a credit agency

Provision of the website and creation of log files

Use of cookies

Use of Google services

Protection of minors

Right to lodge a complaint with a supervisory authority

Security

Update and change