Privacy statement
Privacy Statement
Bed & Breakfast Ravelin (Compliant with GDPR / AVG and German Law)
1. Responsible for Data Processing
The responsible party in the sense of the General Data Protection Regulation (GDPR) is:
Bed & Breakfast Ravelin
Wildenborgweg 1a
46459 Rees
Germany
Email: info@bbravelin.de
Phone: +49(0)17673221807
2. Collection and Storage of Personal Data
We process personal data exclusively to the extent that it is necessary for the execution of reservations and accommodation agreements, communication with guests, invoicing and administration, compliance with statutory obligations, and the security of our accommodation.
We may also process the following personal data: name and first name, address details, phone number, email address, payment information, arrival and departure dates, number of people, vehicle registration (if applicable) and IP address when using the website.
3. Legal Basis for Processing
The processing of personal data is based on:
Art. 6(1)(b) GDPR (execution of the contract)
Art. 6(1)(c) GDPR (statutory obligation)
Art. 6(1)(f) GDPR (legitimate interest, e.g., security and optimization of the website)
Art. 6(1)(a) GDPR (consent), if applicable
4. Storage Period
Personal data is stored only as long as it is necessary for the purpose of processing or as long as statutory storage periods require this.
According to German tax law, a storage period of 10 years usually applies for administrative and invoicing data.
5. Transfer to Third Parties
Personal data is only transferred to third parties if necessary for the execution of the contract, for payment processing, for cooperation with a tax consultant or accountant, or if we are legally obliged to do so.
No sale or commercial transfer of personal data to third parties takes place.
6. Cookies and Website Use
Our website may use technical necessary cookies that are required for the functionality and security of the website.
If analysis tools or marketing cookies are used, this will only be done with prior consent from the user in accordance with Art. 6(1)(a) GDPR.
When visiting the website, technical data may be processed automatically, such as IP address, date and time of access, browser and operating system used. This processing takes place to ensure the security and stability of the website and is based on our legitimate interest in accordance with Art. 6(1)(f) GDPR.
7. Rights of Affected Parties
You have the right to access your personal data (Art. 15 GDPR), rectification (Art. 16 GDPR), erasure (Art. 17 GDPR), restriction of processing (Art. 18 GDPR), data portability (Art. 20 GDPR) and objection to processing (Art. 21 GDPR).
If the processing is based on your consent, you have the right to withdraw this at any time with effect for the future.
8. Right of Appeal
You have the right to lodge a complaint with a competent supervisory authority for data protection in Germany if you believe that the processing of your personal data is in breach of the GDPR.
9. Data Security
Bed & Breakfast Ravelin takes appropriate technical and organizational measures to protect personal data against loss, destruction, manipulation or unauthorized access.
10. Amendment of this Privacy Statement
Bed & Breakfast Ravelin reserves the right to amend this privacy statement if necessary due to changes in legislation or business operations. The most up-to-date version is always published on the website.