Contact | Privacy Policy

Data Privacy Statement of BUDERSAND Hotel – Golf & Spa – Sylt

Recitals
For the company Südkap GmbH und Co. KG, as the operator of the hotel "BUDERSAND Hotel – Golf & Spa – Sylt", the protection of your privacy and the legally compliant handling of your personal data has top priority. This data privacy statement defines the basis on which we process your personal data which we collect or which you make available to us. As a general rule, we only process your personal data with your prior consent. However, the aforementioned rule does not apply in case your prior consent is impossible for factual reasons and/or the processing of your personal data is permitted by legal regulations.

I. Controller
Controller pursuant to Art. 4 (7) General Data Protection Regulation of the European Union ("GDPR") and other data privacy laws applicable in the member states is:
Südkap GmbH & Co. KG
BUDERSAND Hotel – Golf & Spa – Sylt
Am Kai 3
25997 Hörnum, Sylt, Germany
Phone: +49 (0) 4651 4607 -0
E-mail: hotel@budersand.de
Website: www.budersand.de

II. Data Protection Officer:
The Data Protection Officer of the controller is:
Alexander Schmitt
resource Software AG
Industriepark Rübgrund | Rübgrund 19
64347 Griesheim
Telefon: +49 6151 6 272727-27
E-Mail: budersand@resource.ag

III. Basic Information regarding the Data Processing

1. Legal Basis for the Processing of Personal Data
Insofar as you have given your consent to the processing of your personal data, Art. 6 (1) (a) GDPR serves as legal basis. The processing of personal data, which we need for the performance of a contract or for pre-contractual measures, is carried out on the basis of Art. 6 (1) (b) GDPR. Insofar as processing is carried out for the fulfilment of a legal obligation to which we are subject, Art. 6 (1) (c) GDPR serves as the legal basis. In case the processing is necessary to safeguard our legitimate interests or those of a third party, and such interests are not overridden by the interests or fundamental rights and freedoms of you as the data subject, Art. 6 (1) (f) GDPR serves as our legal basis for the processing of personal data.

2. Data Erasure and Storage Time
Your personal data will be deleted or blocked as soon as the purpose of their storage has ceased to exist. Further storage may be made if this is prescribed by the European or national legislators by means of ordinances, laws or other regulations to which we are subject.

IV. Information About the Processing of Personal Data

1. Collection of Personal Data in Case of Visits to Our Website for Informational Purposes
If you access our website (www.budersand.de) for information purposes only, i.e. you do not reserve rooms with us, book other services or otherwise transfer personal data to us, our system automatically collects data and information from your computer system.  These data are necessary for us for technical reasons, so that we can display our website and guarantee stability and security. In this case, the following data are collected:
Webserver logfile
Inquiry
Status Code
Information about the browser type and version used
Your operating system
Your IP address
date and time of access
Websites from which your system reaches our website
Websites accessed from your system through our website

hold-back time: 3 days

Websites accessed from your system through our website The legal basis for this is Art. 6 (1) 1st sentence (f) GDPR. The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. If we collect the data for the provision of the website, this is the case when the respective session has ended. The data are not evaluated for marketing purposes. We only evaluate the data in an anonymous manner. The collection of data for the provision of the website is essential for the operation of our website. As a result, you have no right of objection in this regard. This purpose constitutes our legitimate interest in processing within the meaning of Art. 6 (1) (f) GDPR

2. Contact Form and E-mail Contact
When you contact us by e-mail or using the contact form provided on our website (http://www.budersand.de/de/kontakt/kontakt/), we will save your e-mail address and message so that we can answer your enquiry. As an option, you can also enter your a title, academic title, your first and last name, your company, your address and your telephone number in addition to your e-mail address, so that we can also address you personally and answer your enquiry in an even more targeted manner. The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected, or we restrict processing in case of legal obligations to retain data. The legal basis for the processing of the data which you submit to us upon establishment of contact is Art. 6 (1) (b) GDPR. The legal basis for the processing of the data in case of consent is Art. 6 (1) (a) GDPR. You have the possibility to withdraw your consent to the processing of personal data at any time. If you contact us by e-mail or via the contact form, you can object to the storage of your personal data at any time. In this case, any and all personal data stored in the course of the establishment of contact by means of the contact form or the e-mail will be deleted. You can withdraw your consent and object to the storage of your personal data by sending an e-mail to hotel@budersand.de or to the contact details stated in the "about us" section.

3. Online Reservations
On our website, you have the possibility to book online different room categories in our hotel as well as other services, such as a rental car, an e-bike or a garage parking space by providing your personal data. For the conclusion of the contract it is necessary that you give us your personal data which we need for the conclusion of the contract. The mandatory information required is your first and last name, your e-mail address, your address and telephone number as well as your credit card data. You can also voluntarily provide us with additional data so that we can adapt your room to your individual wishes in the best possible way. We process your personal data in order to process your reservation. The processing of your personal data is therefore necessary to fulfil a contract with you. For this purpose, we may also forward your data to payment service providers and our contractual partners. The legal basis for the processing of your personal data is Art. 6 (1) (b) GDPR.
By reason of commercial and tax laws, we are obliged to store your address, payment, and order data for a period of ten years. However, we will restrict processing after two years.
We attach the greatest possible importance to the security of your data. In order to prevent unauthorized access by third parties to your personal data, in particular financial data, the transmission of your data, in particular the order process, is transmitted using 2048-bit SSL encryption.
We use external service providers to process your personal data. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly checked.

4. Spa Enquiry
We offer you the possibility to send a request to our BUDERSAND Spa on our website via (http://www.budersand.de/de/spa/anfrage/). When you contact our Spa, we will store your form of address and your first and last name to answer your request. As an option, you can also enter your a title, academic title, your first and last name, your company, your address and your telephone number so that we can process your enquiry in a more targeted manner. The processing of your personal data from the contact mask serves us solely to process your Spa enquiry and to conclude a contract with you. The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. This is the case, if the data is no longer required for the execution of the contract. Even after the conclusion of the contract, it may still be necessary to store your personal data in order to comply with contractual or legal obligations. The legal basis for the processing of your personal data entered into the enquiry template is Art. 6 (1) (b) GDPR.
5. Online reservation restaurant
On   our  pages    https://www.budersand.de/de/kulinarik/kai3/    and https://www.budersand.de/de/kulinarik/stroenholt/ you have the possibility to reserve a table for KAI3 or Restaurant Strönholt. This is done via an online reservation system. Here we pass your data on to Opentable, OpenTable GmbH, Zeil 109, Frankfurt 60313, as they operate the reservation system for us. You can find their data protection declaration under: https://www.opentable.de/legal/privacy-policy.


6. Voucher Shop
Furthermore, in the voucher shop presented on our website, we offer you the opportunity to purchase various BUDERSAND gift vouchers. If you would like to order a voucher in our voucher shop, it is necessary for the conclusion of the contract that you enter the personal data we need for the processing of your order. The required data for the processing of your BUDERSAND voucher order are marked separately. These are your salutation, your form of address, your first and last name, your address, telephone number, your e-mail address, and your payment data. Any further information is voluntary. We process your personal data in order to process your BUDERSAND voucher order. The processing of your personal data is therefore essential to fulfil the contract with you. For this purpose, we may also pass on your data to our payment service providers and sales partners. The legal basis for the processing of your personal data is Art. 6 (1) (b) GDPR.
By reason of commercial and tax laws, we are obliged to store your address, payment, and order data for a period of ten years. However, we will restrict processing after two years.
We attach great importance to the greatest possible security of your data. In order to prevent unauthorized access by third parties to your personal data, in particular financial data, the transmission of your data, in particular the order process, is transmitted using 2048-bit SSL encryption.
We use external service providers to process your personal data. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly checked.

7. Newsletter

With your consent, you can subscribe to our BUDERSAND hotel newsletter, in which we will inform you about our current offers and information around the BUDERSAND Hotel – Golf & Spa – Sylt.

For the registration to our newsletter we use the so-called double opt-in process. This means that after your have registered for our newsletter, we will send an e-mail to the e-mail address you specified; in this e-mail, you must confirm the sending of the newsletter. In the event that your registration is not confirmed within 24 hours, your information will first be blocked and then automatically deleted. In addition, we store the IP addresses you used and the time of registration and confirmation. The purpose of this procedure is to be able to prove your registration for the receipt of the newsletter and to be able to clarify any possible misuse of your personal data.

The only mandatory information for sending the newsletter is your e-mail address. After having received your confirmation, we will save your e–mail address for the purpose of sending you the newsletter. The data will be stored until you unsubscribe from our newsletter. The legal basis for this is Art. 6 (1) 1st sentence (a) GDPR.

You can withdraw your consent to receiving the newsletter at any time and unsubscribe from the newsletter. You can cancel your subscription simply by clicking on the link provided in each of our newsletters, by sending an e-mail to hotel@budersand.de, or by sending a message to the contact details stated in the section "about us".

We use external service providers to process your personal data. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly checked.

8. Cookies
In addition to the data listed under IV. 1., cookies are stored on your computer when you use our website. We use cookies on various pages to make your visit to our website appealing and to enable the use of certain functions. These are small text files that are stored on your terminal device and which provide us with certain information. Cookies cannot run programs or transmit viruses to your computer.
This website uses transient cookies and persistent cookies, the scope and functionality of which we will explain to you in more detail below.

Transient cookies are automatically deleted when you close your browser. These include in particular the so-called session cookies. Session cookies store a session ID with which various requests from your browser can be assigned to the shared session. This allows your computer to be recognized when you return to our website. Session cookies are deleted when you log out or close your browser.
Persistent cookies are automatically deleted after a specified period, which varies depending on the cookie. You can delete cookies at any time in the security settings of your browser.
You can configure your browser settings according to your wishes and refuse the acceptance of third party cookies or all cookies, for example. However, we would like to point out that in this case you may not be able to use all functions of our website without restriction.
The legal basis for the processing of personal data using cookies is Art. 6 (1) 1st sentence (f) GDPR. Our legitimate interest lies in providing our website and improving the quality of our website and its content.


9. Note for the integration of Vimeo videos
On this website we use the provider Vimeo for the integration of videos. Vimeo is operated by Vimeo, LLC, headquartered at 555 West 18th Street, New York, New York 10011. This will transmit to the Vimeo server which of our web pages you have visited. If you are logged in to Vimeo as a member (this is not necessary to view our videos), Vimeo will associate this information with your personal account. For the associated use of data from your browser or terminal device, we refer to Vimeo's data protection information. Vimeo is responsible for the corresponding data processing. Vimeo's privacy policy can be found here: https://vimeo.com/privacy
Vimeo states that it guarantees an appropriate level of data protection by adhering to the Privacy Shield guidelines. More information can be found here: https://vimeo.com/transfer_statement

V. Your Rights
If your personal data are processed, you are a data subject within the meaning of the GDPR. You, as the data subject, therefore, have the following rights against us as the controller:
You have the right to request information as to whether and which personal data we process with regard to your person.
You have the right to request rectification and erasure of such data.
You have the right to a restriction of the processing of your personal data.
You are also entitled to object to the processing or use of your personal data for purposes of advertising or market and opinion research as well as business-like data processing.
You also have the right to object to the processing of your personal data at any time for reasons arising from your particular situation. This does not apply if we are obliged or entitled by law to collect, process or use this data.
Furthermore, as a matter of principle, you have the right to withdraw your prior consent to the processing of your personal data at any time with future effect. The withdrawal of consent shall not affect the legality of the processing carried out on the basis of the consent until the withdrawal.
Besides, you also have a right to data portability.
To exercise your rights, you can send an e-mail to hotel@budersand.de or a letter to BUDERSAND Hotel – Golf & Spa – Sylt with the addition "FAO the Data Protection Officer", Am Kai 3, 25997 Hörnum, Sylt, Germany.
Furthermore, without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority about the processing of your personal data by us.

VI. Changes to the Data Privacy Statement
Future changes to our privacy policy will be posted on this website and, as the case may be, you may be notified by email. Therefore, please check regularly for updates or changes to our privacy policy.

Version: June 2018

 
 
 
Privathotels Sylt

„Vielfalt erleben, Neues entdecken“


Außergewöhnliche, privat geführte Hotels auf der Insel Sylt, die zusammenarbeiten, um etwas zu bewegen, Dinge anzupacken und zukunftsweisende Akzente zu setzen.

Zur Website