Public procedure directory
Public procedure directory
1. Name and address of the responsible body
Special Village 18
Telephone 08326/74 44
Fax 08326/36 65 19
2. Owner of the company
3. Representative Head of Data Processing
4. Purpose of data collection, processing and use operation of an inn, as well as all related transactions for the purpose of taking and making reservations. Video surveillance is solely for the collection of evidence of vandalism, burglary, robbery or other criminal offenses. The presence and use of video cameras are indicated by appropriate warnings. Digitized recordings of bookings for documentation, proof and training purposes are only made with the express permission of the other party.
Carrying out the storage and processing of personal data for own purposes. The collection, processing and use of data is done for the purposes set out above.
5. Description of data subjects and related data
Personal data are collected, processed and used for the following groups:
Guest data (especially address data, reservation data, guest wishes, billing data)
Customer data (especially address data, contract data, billing and performance data)
Interest data (especially interest in accommodation, room and hall rental interests, address data) Employee data, applicant data, data of pension providers (best personnel and salary data)
Broker / broker / agency data (especially address, billing and performance data) Business partners, external service companies (especially address, billing and performance data) Supplier data (especially address, billing, performance and function data) if they are necessary to fulfill the purposes mentioned under point 5.
6. Categories of recipients to whom data can be communicated
Hotels, guesthouses and other lodging establishments may collect personal data of their guests and store it in automated procedures, as far as this is required by the accommodation contract. This usually also includes billing information about food and beverages, telephone calls made from the room and / or other hotel-specific services. Hotels and tourist accommodation are required by law to obtain information about the place of residence, the date of birth and the nationality of their guests and their family members.
Furthermore, data may be communicated to the following recipients: Public bodies that receive data on the basis of statutory regulations (eg social insurance institutions) Internal bodies involved in the execution and fulfillment of the respective business processes (eg personnel administration / management, accounting) , Marketing, Sales, IT Organization and the Central Reservation Service (Customer Service Center) External contractors (service companies) according to § 11 BDSG
Other external entities (eg credit institutions, brokerage agencies in the context of intermediary activities, affiliated companies as long as the parties have given written consent or a transfer of predominantly legitimate interest is admissible), as well as partner companies within the framework of the client's mandate.
7. Rule deadlines for the deletion of the data
The legislature has issued a variety of storage obligations and deadlines. After expiry of these periods, the corresponding data and data records are routinely deleted if they are no longer required for fulfillment of the contract (guest, rental and service contracts). Thus, the commercial or financial data of a completed financial year are deleted in accordance with the legal provisions after another ten years, as long as no longer retention periods prescribed or required for legitimate reasons. Personnel management and personnel control uses shorter deletion periods in specific areas. This applies in particular to rejected applications or warnings. If data are not affected by this, they will be deleted without being asked if the purposes mentioned under point 5 are omitted.
Entry forms are according to the valid registration law in the individual hotel and accommodation establishments acc. the minimum period prescribed by law and then subjected to special precautionary measures of destruction in accordance with data protection.
8. Planned data transmission to third countries
A transfer of personal data to third countries is not planned.
9. Ensuring security in data processing
The country house Bolgental uses technical and organizational security measures gem. § 9 BDSG, in order to protect the data managed by them against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. The security measures used are continually being improved in line with technological developments. Access to it is only possible for a small number of authorized persons who are subject to special data protection and who are responsible for technical, administrative or editorial support.
Status of the Public Register of Procedures: December 2009
Responsible for the content of the Public Procedures Directory:
The Commissioner for Data Protection in the Bergwirtwirt