Symbol für mobile Navigation: Drei waagerechte Linien als Hamburger-Menü-Icon zur Anzeige der Website-Navigation des John & Will Hotels. Grafik eines Siegels mit der Aufschrift „TopHotel Newcomer Award“ – das John & Will Hotel wurde mit diesem Preis ausgezeichnet.
Book

Privacy Policy for overnight guests

Thank you for visiting our website. In the privacy policy, we would like to inform you about the handling of your data in accordance with Art. 13 of the General Data Protection Regulation (GDPR).

I. Controller

The controller for the data processing described below is named in the imprint.

II. Purpose and Legal Basis of Data Processing

In the context of reserving and booking hotel rooms in our establishment, we process your personal data for the purpose of handling your reservation request as well as establishing and executing the accommodation contract. Only the data necessary to fulfill this purpose will be processed. Specifically, we process the following data:

  • First and last name,
  • Address,
  • Phone number or email address,
  • Payment information,
  • Date of birth (if required),
  • Special requests or inquiries (e.g., accessibility, dietary preferences), if you provide them to us.

The processing of your personal data is based on the following legal grounds:

  • Article 6(1)(1)(b) GDPR (contract performance),
  • Article 6(1)(1)(c) GDPR (legal obligations),
  • Article 6(1)(1)(a) GDPR (consent), if you provide us with data that is not strictly necessary for the execution of the contract.

III. Obligation to Provide Your Personal Data

Within our business relationship, you must provide the personal data necessary for the initiation, execution, and termination of a business relationship with you and for the fulfillment of the associated obligations. Without this data, we will generally not be able to enter into a business relationship with you. If you have voluntarily provided us with data, we will indicate this accordingly during data collection.

IV. Data Source

If you have reserved or booked a room in our establishment through a third-party provider or travel agency, we receive the data directly from the provider or platform through which you made the reservation or booking. In these cases, we automatically receive a notification with your data necessary for fulfilling the contract in our booking system.

V. Recipients of Your Data

Your data will only be shared if it is necessary for the fulfillment of the contract or if we are legally obliged to do so. This may include:

  • Payment service providers and banks,
  • Tax and regulatory authorities,
  • IT service providers for managing our booking systems,
  • Third parties if necessary for your travel booking (e.g., external service providers for transfers or additional services).

In the context of data processing, strictly instructed external service providers are used to support us with IT support services. These service providers have been audited by us, and there are contracts for order processing.

If you have given us your consent as part of your booking, we will include you in our loyalty program, so you can receive benefits for future bookings at any of the Guldsmeden Hotels. In this context, your data will also be shared with other hotels in the Guldsmeden Hotel chain.

VI. Storage Duration / Criteria for Determining the storage duration

Your personal data will only be stored as long as necessary for the purposes of processing or as long as statutory retention obligations exist. Booking data is generally subject to a tax retention obligation of up to 10 years

VII. Your Data Protection Rights

You have the right to request free information about the personal data stored about you (Article 15(1) GDPR). Additionally, if the legal requirements are met, you have the right to rectification (Article 16 GDPR), deletion (Article 17 GDPR), and restriction of processing (Article 18 GDPR) of your personal data, as well as the right to data portability (Article 20 GDPR).

You have the right to object to data processing based on Article 6(1)(1)(e) or (f) GDPR (Article 21 GDPR). Please address the objection to: hello@johnandwill-hotel.com.

You also have the right to lodge a complaint with a data protection supervisory authority. The competent authority is the data protection supervisory authority of the federal state in which you reside, where the controller is based, or where the data protection violation occurred.

You can reach our data protection officer at: datenschutz nord GmbH Konsul-Smidt-Str. 88 Email: office@datenschutz-nord.de Phone: 0421 69 66 32-0.

Please include the above-mentioned controller in inquiries with our data protection officer.

zurück nach oben

Eingabehilfen öffnen