Book Now
Book your room

Privacy Policy

General Information

The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data is any data by which you can be personally identified. Detailed information on the subject of data protection can be found in our privacy policy listed below this text.

Data Collection on Our Website

Who is responsible for data collection on this website? Data processing on this website is carried out by the website operator. You can find their contact details in the imprint (legal notice) of this website.
How do we collect your data?
Your data is collected, on the one hand, by you providing it to us. This may, for example, be data that you enter into a contact form.

Other data is collected automatically by our IT systems when you visit the website. These are primarily technical data (e.g., internet browser, operating system, or the time of the page visit). The collection of this data occurs automatically as soon as you enter our website.

What do we use your data for?
Part of the data is collected to ensure the error-free provision of the website. Other data may be used to analyze your user behavior.
Furthermore:

Enabling and processing guest bookings

Carrying out the guest’s stay

Tailoring the stay to the wishes and interests of the guest

The ability to offer services in accordance with the guest’s interests in the future

Marketing related to the hotel’s services and improvement of the hotel’s offerings

What rights do you have regarding your data?
You have the right at any time to obtain information free of charge about the origin, recipient, and purpose of your stored personal data. You also have the right to request the correction, blocking, or deletion of this data. For this purpose, as well as for further questions on the subject of data protection, you can contact us at any time at the address given in the imprint. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

For this purpose, as well as for further questions on the subject of data protection, you can contact us at any time at the address given in the imprint.

Hosting

This website is hosted by an external service provider (Netcup). Personal data collected on this website is stored on the servers of the hosting provider. This may include, in particular, IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses, and other data generated via a website.
The use of the hosting provider is for the purpose of fulfilling contracts with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast, and efficient provision of our online services by a professional provider (Art. 6 para. 1 lit. f GDPR).

Our hosting provider will only process your data to the extent necessary to fulfill its service obligations and will follow our instructions regarding this data.

Mandatory Information

Data Protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations and this privacy policy.
When you use this website, various personal data are collected. Personal data is any data by which you can be personally identified. This privacy policy explains which data we collect and what we use it for. It also explains how and for what purpose this happens.

We would like to point out that data transmission over the internet (e.g., when communicating by email) can have security gaps. Complete protection of data against access by third parties is not possible.

Note on the Responsible Party

The responsible party for data processing on this website is:
Hotel Sonne Erzgebirge
Familie Kerseboom – van der Heijden
Bergmannsweg 1
09548 Kurort Seiffen
+49 37362 76995
info@hotel-sonne-erzgebirge.de

The responsible party is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Revocation of Your Consent to Data Processing

Many data processing operations are only possible with your explicit consent. You can revoke consent that you have already given at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to Object to Data Collection in Special Cases and to Direct Advertising (Art. 21 GDPR)

If data processing is based on Art. 6 para. 1 lit. e or f GDPR, you have the right at any time, for reasons arising from your particular situation, to object to the processing of your personal data; this also applies to profiling based on these provisions. The respective legal basis on which processing is based can be found in this privacy policy. If you object, we will no longer process your affected personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms or the processing serves the establishment, exercise, or defense of legal claims (objection pursuant to Art. 21 para. 1 GDPR).
If your personal data is processed for the purpose of direct advertising, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling, insofar as it is associated with such direct advertising. If you object, your personal data will no longer be used for direct advertising purposes (objection pursuant to Art. 21 para. 2 GDPR).

Right to Lodge a Complaint with the Competent Supervisory Authority

In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work, or the place of the alleged infringement. The right to lodge a complaint exists without prejudice to other administrative or judicial remedies. A list of data protection officers and their contact details can be found at the following link:
For Germany: https://www.bfdi.bund.de/DE/Service/Anschriften/anschriften_table.html

Protection of Minors

Persons who have not yet reached the age of 16 may not transmit any personal data to us without the consent of their legal guardians. Persons who have not yet reached the age of 16 may only provide us with personal information if the explicit consent of their legal guardians has been obtained or if they are at least 16 years old. Such data will be processed in accordance with this privacy policy.

SSL or TLS Encryption

For security reasons and to protect the transmission of confidential content—such as orders or inquiries that you send to us as the website operator—this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the browser’s address bar changes from “http://” to “https://” and by the lock symbol in your browser’s address bar.
When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Data Collection on Our Website

Cookies

Our websites use so-called “cookies.” Cookies are small text files that do not cause any damage to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your device. Session cookies are automatically deleted after your visit ends. Persistent cookies remain stored on your device until you delete them yourself or your web browser automatically deletes them.
Some cookies may also be stored on your device by third-party companies when you enter our site (third-party cookies). These enable us or you to use certain services of the third-party company (e.g., cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., the shopping cart function or displaying videos). Other cookies are used to analyze user behavior or display advertising.

Cookies that are required to carry out the electronic communication process (necessary cookies), to provide certain functions you desire (functional cookies, e.g., for the shopping cart function), or to optimize the website (e.g., cookies for measuring the web audience) are stored on the basis of Art. 6 para. 1 lit. f GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. If consent to the storage of cookies has been requested, the relevant cookies are stored exclusively on the basis of this consent (Art. 6 para. 1 lit. a GDPR); consent can be revoked at any time.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.

If cookies are used by third-party companies or for analysis purposes, we will inform you about this separately as part of this privacy policy and, if necessary, request your consent.

Server Log Files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

This data is not merged with other data sources.
The collection of this data is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of their website – for this, the server log files must be recorded.

Contact Form

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass on this data without your consent.
The processing of this data is based on Art. 6 para. 1 lit. b GDPR if your request is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of inquiries addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) if this has been requested.

The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory statutory provisions – in particular retention periods – remain unaffected.

Inquiry by Email, Telephone, or Fax

If you contact us by email, telephone, or fax, your inquiry, including all personal data resulting from it (name, inquiry), will be stored and processed by us for the purpose of handling your request. We do not pass on this data without your consent.
The processing of this data is based on Art. 6 para. 1 lit. b GDPR if your request is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of inquiries addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) if this has been requested.

The data you send to us via contact inquiries will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.

Cookie Consent with Truendo

Our website uses the cookie consent technology from Truendo to obtain your consent for the storage of certain cookies on your device and to document this consent in a manner compliant with data protection regulations. The provider of this technology is TRUENDO Technologies GmbH, Leonard-Bernstein-Straße 10, 1220 Vienna, Austria, website: https://truendo.com/ (hereinafter referred to as the “Consent Manager Provider”).
When you enter our website, a connection is established to the servers of the Consent Manager Provider in order to obtain your consents and other declarations regarding the use of cookies. The Consent Manager Provider then stores a cookie in your browser to be able to assign the consents given or their revocation to you. The data collected in this way will be stored until you request us to delete it, you delete the Consent Manager Provider cookie yourself, or the purpose for data storage no longer applies. Mandatory statutory retention periods remain unaffected.

The use of the Consent Manager Provider is carried out to obtain the legally required consents for the use of cookies. The legal basis for this is Art. 6 para. 1 sentence 1 lit. c GDPR.

Social Media

Facebook Plugins (Like & Share Button)

This website integrates plugins from the social network Facebook. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. According to Facebook, the data collected is also transferred to the USA and other third countries.
You can recognize the Facebook plugins by the Facebook logo or the “Like Button” (“Gefällt mir”) on this website. An overview of the Facebook plugins can be found here: https://developers.facebook.com/docs/plugins/?locale=de_DE.

When you visit this website, a direct connection is established between your browser and the Facebook server via the plugin. Facebook thereby receives the information that you have visited this website with your IP address. If you click the Facebook “Like Button” while you are logged into your Facebook account, you can link the contents of this website to your Facebook profile. This allows Facebook to associate your visit to this website with your user account. We would like to point out that, as the provider of this website, we have no knowledge of the content of the data transmitted or how it is used by Facebook. For more information, please see Facebook’s privacy policy at: https://de-de.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0.

If you do not want Facebook to be able to associate your visit to this website with your Facebook user account, please log out of your Facebook user account.

The use of Facebook plugins is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in achieving the widest possible visibility in social media.

YouTube

Our website may also include videos from the “YouTube” platform. This service is provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy Policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated

Analytics Tools and Advertising

Burst Statistics

We use the web analytics service Burst Statistics. Data processing is carried out by: Burst Statistics B.V., Kalmarweg 14-5, 9723JG Groningen, Netherlands.

Burst Statistics records page views, the browser used, and the referrer when you access our website. The collected IP addresses are anonymized by Burst Statistics. The data is stored exclusively locally on our server.

Important: Burst Statistics uses a cookieless tracking technology for analyzing page views. This means that no cookies are set on the end devices of website visitors.

For more information on data protection at Burst Statistics, please visit: https://burst-statistics.com/legal/privacy-statement-eu/

Data processing by Burst Statistics is based on consent in accordance with Art. 6 para. 1 lit. a) GDPR.

We use Burst Statistics for the purpose of error analysis, evaluating website usage, and deriving measures for the future development of our website.

Google Ads

The website operator uses Google Ads. Google Ads is an online advertising program of Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Ads enables us to display advertisements in the Google search engine or on third-party websites when the user enters certain search terms on Google (keyword targeting). Furthermore, targeted advertisements can be displayed based on the user data available at Google (e.g., location data and interests) (audience targeting). As website operators, we can quantitatively evaluate this data, for example, by analyzing which search terms led to the display of our advertisements and how many ads resulted in corresponding clicks.

The use of Google Ads is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the most effective marketing of its services and products.

Map Services and Route Planners

Google Maps

This site uses the Google Maps map service via an API. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
To use the functions of Google Maps, it is necessary to store your IP address, browser information (name, version), website, user’s operating system, user’s screen resolution, and language settings of the browser or operating system. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.

The use of Google Maps is in the interest of providing an attractive presentation of our online offerings and easy findability of the locations specified by us on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

For more information on the handling of user data, please refer to Google’s privacy policy: https://policies.google.com/privacy?hl=de.

Online Booking

Viato

To enable you to book a room through our website, we have integrated an online booking system. The provider of this booking system is Viato GmbH, Industriestraße 51, 79194 Gundelfingen, Tel: +49761 60068560, info@viato.travel. The personal data you provide during the booking process is stored on Viato’s servers. Viato uses this information exclusively for booking your hotel stay on our behalf. Viato does not use the data of our contractual partners to contact them directly or to pass it on to third parties. We have concluded a data processing agreement with Viato in accordance with Art. 28 GDPR. This is a contract in which Viato undertakes to protect the data of our users, to process it in accordance with our instructions and its own data protection provisions, and especially not to pass it on to third parties. You can view Viato’s privacy policy here: viato.travel/datenschutz.

Changes to Our Privacy Policy

We reserve the right to amend this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy, for example when introducing new services. The new privacy policy will apply to your next visit.