When you visit our website, your browser transmits certain data to our web server. The reasons for this transmission are technical in nature, but it is also necessary in order for you to access the information you require. To ensure the security of our information system, we automatically collect data about your IP address, date and time of access, time zone difference to Greenwich Mean Time (GMT), content of the request (specific page), access status, etc. HTTP status codes, the amount of data transferred, the website requesting access, and information about your browser (version of the browser software operating system, language settings). You cannot use our website without providing us with at least your IP address, which we log. We collect the data provided to ensure the security of the network and information, with the aim of preventing accidental events or illegal or malicious actions. Processing is therefore necessary to safeguard our legitimate interests and is carried out on the basis of Article 6(1)(f) of the General Data Protection Regulation (GDPR). We process personal blog data for a maximum of 6 months. After that, we delete the data unless we have another legitimate reason for further processing.
Contact information: The controller responsible for processing personal data is: 1912 Hotels GmbH, Hohe Bleichen 8, 20354 Hamburg, Germany. The personal data collected is processed by our employees and processors who perform tasks related to ensuring the operation of the websites.
Right of access to data: You have the right to check whether we collect personal data about you and, if so, the right to access that data. If you, as an individual, would like us to check whether we collect personal data about you, you can request this in writing by email or post.
Right to erasure (‘right to be forgotten’): You have the right to request that we erase personal data concerning you without delay. As the controller, we are obliged to erase your personal data without delay in the following cases:
- You object to the processing (see right to object),
- we have processed personal data unlawfully,
- your personal data must be deleted in order to comply with legal requirements,
- it is necessary to fulfil the legal obligation to process data due to regulations,
- it serves to assert, enforce or defend legal claims.
Deletion will not take place if the processing of personal data is necessary. If you as an individual wish us to delete your personal data, you can request this in writing by e-mail or post. You can only exercise your right to deletion in the above-mentioned exceptional cases.
Right to rectification: You have the right to request the immediate rectification of inaccurate personal data concerning you. Taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data, including by providing a supplementary statement. If you, as an individual, wish to have your personal data corrected, you can request this in writing by e-mail or post.
Right to restriction of processing: You have the right to request that we restrict the processing of your personal data if:
- You contest the accuracy of the data for a period enabling us to verify the accuracy of the personal data,
- the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead,
- we no longer need your personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims,
- you have objected to the processing until it has been verified whether our legitimate reasons take precedence over yours;
- with your consent,
- to assert, enforce or defend legal claims,
- to protect the rights of another natural or legal person, or
- for reasons of important public interest of the Union or a Member State.
If you request a restriction for the reasons mentioned above, we may only store your personal data and carry out all other types of processing. Before we lift the restriction on the processing of personal data (i.e. terminate it), we must inform you that the restriction has been lifted. If we have rejected your request to erase your data, or if you simply wish to restrict the processing of your personal data, you can ask us to restrict the processing of your personal data by email or in writing by post. You can only exercise the right to restriction in the exceptional cases mentioned above.
Right to data portability: You may download the data you have provided to us and which we have collected in connection with your use of the service. Data in a portable format can be requested in person at our head office.
The right to lodge a complaint with a supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the General Data Protection Regulation. The supervisory authority with which the complaint is lodged shall inform you of the progress of the proceedings and the outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.
As a data subject, you have the right to lodge a complaint with the Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna, Austria, telephone: +43 1 52 152-0, email: dsb@dsb.gv.at. The Information Commissioner will duly inform you of the status of the matter and its decision on the complaint.
Processor of personal data: The website is hosted by our processor.
Disclosure of personal data: Personal data will not be disclosed to third parties or third countries, except in cases provided for by law, in particular when requested by authorised persons or authorities.