Privacy Policy

Data protection

General notes and mandatory information

When you visit our website, various data, including personal data, are collected. We treat your personal data (defined according to Art. 4 para. 1 GDPR) confidentially and in accordance with the statutory data protection regulations. This Privacy Policy explains what data we collect, what we use them for, how and for what purpose. We do this primarily done to provide you with convenient and secure access to our information and offers. Of course, we also use our website to pursue economic interests, in order to strengthen both our image and our sales. For reasons of fairness and transparency, we would like to inform you about this in detail below in accordance with the EU General Data Protection Regulation (GDPR):

Who is the data controller responsible for data collection?

As the website provider, Immobilienservice Bürgermeister Reuter GmbH is responsible for data collection during your visit to this website https://www.immobilienservice-brst.de/impressum/.

How do we collect your data?

We collect your data automatically through our IT systems when you visit the website. The data collected are primarily technical data (e.g. internet browser, operating system or time of the page view). These data are collected automatically as soon as you visit our website. Other data are collected when you share them with us. These could include data that you enter into a contact form.

What do we use your data for?

Some of the data are collected to ensure error-free website provision. Further details are available in the following sections.

TLS encryption

This site uses TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the website provider. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Your contact for our data protection officer

The company mb-Datenschutz GmbH https://mb-datenschutz.de/ acts as our data protection officer.

Please direct any enquiries regarding data protection to the email address dsb@brst.de.

(For all other enquiries, please use the email address: info@hotel-luetzow.de.)

Data collection on our website

Cookies 

Our website uses so-called cookies. These serve the purpose of making our offer more user-friendly, effective and secure. Cookies are text files that are stored in the browser on your end device.

Cookies do not damage your computer and do not contain viruses. A distinction is made between so-called “session cookies” and “persistent cookies”. The former are deleted automatically after the end of your visit. Other cookies remain stored on your end device until they expire or are deleted. These cookies make it possible to recognise your browser on your next visit and to apply the settings you chose previously. You can set your browser so that you are notified about your cookie settings, only allow them in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.

Session cookies, which are required to carry out the electronic communication process, are stored on the basis of Art. 6 para. 1 f) GDPR. The website provider has a legitimate interest in the storage of cookies in order to ensure a technically error-free, optimised provision of its services. Insofar as other cookies are stored (e.g. to analyse your online behaviour), these are treated separately in this Privacy Policy.

Server log files 

The website provider automatically collects and stores data in so-called server log files which your browser automatically sends to us. The data in the log files include

  • the referrer URL (the website from which you arrived),
  • the browser type, browser version and language,
  • the operating system used and its interface,
  • the IP address (anonymised),
  • the time of the server query,
  • the http status code – access status,
  • the transferred data volume,

The storage duration is 7 days. This data is not merged with other data sources.

The legal basis for data processing is Art. 6 para. 1 f) GDPR, which permits the processing of data to optimise the presentation and security of the website on the basis of our legitimate interest.

Visitor interaction with the website

Contact form 

If you send us enquiries via the contact form, your details from the enquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We do not pass these data on to third parties without your consent.

The data entered in the contact form is generally processed on the legal basis of Art. 6 para. 1 b) GDPR (contract initiation or execution). Your data will remain with us until you ask us to delete them or the purpose for data storage no longer applies (e.g. after your enquiry has been processed). If we have to comply with statutory retention periods, we will delete the data after these have expired.

Comment function on this website 

When you use the comment function on this website, your comment, information about the time the comment was created, your email address and, if you are not posting anonymously, the user name you have chosen will be saved.

The comments are stored on the basis of your consent (Art. 6 para. 1 a) GDPR), which you can revoke at any time. All you need to do is send us an informal email. The legality of the data processing operations already carried out remains unaffected by the revocation.

Our comment function stores the IP addresses of users who post comments until the commented content has been completely deleted or the comments have to be deleted for legal reasons (e.g. offensive comments). We require these data in order to be able to take action against the author in the event of legal violations. The legal basis is out legitimate interest (Art. 6 para. 1 f) GDPR). Irrespective of this, we check the comments on our site before they are activated. If the investigating authorities ask us to disclose data due to comments that violate the law, this is done on the legal basis of the legal obligation to disclose data (Art. 6 para. c) GDPR).

Payment provider

Maestro, Visa, Mastercard, American Express

If you pay by credit card, the payment is processed by the payment provider: WorldLine. The data required for this (card number, validity and verification number) are encrypted and forwarded to the payment provider and cannot be viewed by the website provider. The electronic payment method by credit card is PCI-DSS-certified and offers customers the highest possible level of data security.

PayPal 

On our website we offer payment via PayPal. The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter referred to as “PayPal”).

If you select payment via PayPal, the payment data you enter will be transmitted to PayPal.

The transmission of your data to PayPal is based on Art. 6 para. 1 b) GDPR (contract fulfilment).

Company pages on social media

Privacy policy for our Facebook page

The aims of our Facebook page are

  • direct contact with our online visitors with the aim of customer acquisition and retention and the associated offer of timely communication channels,
  • references to our contributions and offers,
  • statistical analyses for our own market research purposes.

According to Art. 6 para. 1 f) GDPR, the use of this social media channel is in our legitimate interest. Nevertheless, it is important to us to inform you as transparently as possible about all data protection matters for which we are actively responsible.

When you visit our Facebook page, Facebook e.g. collects your IP address and other information that is stored on your device in the form of cookies. This information is used to provide us, as the operator of the Facebook page, with statistical information about the use of our page. If you want to avoid this, log out of Facebook or disable the ” stay logged in” function and configure your browser so that cookies are not set or are deleted promptly. For more information on the use of cookies by the provider, please see the latter’s Cookie Policy. You can also influence the way Facebook uses your data to a limited extent in the advertising settings and in the general settings.

You can find Facebook’s privacy policy for its basic functions here: https://www.facebook.com/privacy/explanation 

The data collected about you in this context will be processed by Facebook Ltd. and may be transferred to countries outside the European Union. Facebook describes what information it receives and how it generally uses this in its data usage guidelines.

Analysis tools

Matomo  

This website uses the open source software Matomo to measure coverage. Matomo is configured so that no cookies are stored on your computer. Instead, we use so-called fingerprinting to analyse the behaviour of our visitors for the purpose of optimising our website. This constitutes a legitimate interest for us as the website provider (Art. 6 para. 1 f) GDPR).

The fingerprint records the operating system, browser, device type (computer, laptop, telephone), screen resolution and language settings in order to understand the use and navigation on our pages. The IP address is anonymised directly when it is recorded. The above-mentioned measures do not allow us to draw any conclusions about the identity of individual visitors. The information collected is not transmitted to third parties, as we host Matomo ourselves. The storage duration is: 12 months.

You can also object to coverage measurement by Matomo directly here:

[Insert Matomo iframe code here]

When deactivated, an opt-out cookie is stored in your browser that prevents Matomo from saving use data. If you delete your cookies, the Matomo opt-out cookie will also be deleted. The opt-out must be reactivated when you visit our site again. Matomo observes the “Do-Not-Track” function of your browser.

For further information, please visit: https://matomo.org/docs/privacy

What rights do you have under GDPR?

GDPR aims to ensure that you as the data subject have the greatest possible control over your personal data. All data that are directly or indirectly related to you as a person are considered personal data. You have the following rights in relation to us to enable you to effectively exercise control over your data:

  • right to information pursuant to Art. 15 GDPR,
  • right to correction pursuant to Art. 16 GDPR,
  • right to erasure pursuant to Art. 17 GDPR,
  • right to a restriction of processing pursuant to Art. 18
  • GDPR,
  • right to object pursuant to Art. 21 GDPR, and
  • the right to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR if you believe that we are processing your data unlawfully. You can find the supervisory authority responsible for our company here:
    https://www.bfdi.bund.de/DE/Home/home_node.html

The right to data portability pursuant to Art. 20 would only be relevant when visiting our website if you had the option to create a profile (e.g. applicant profile, member profile or similar) or entered corresponding information about yourself.

Version: 26 August 2024

Data protection for applicants

Privacy policy on the collection of personal data in the context of applicant management

Information obligations for applicants at a glance

General information

We are happy that you are interested in working at Hotel Lützow Tiergarten in Berlin and are applying for or have applied for a position in our company. Below, we want to share with you information on the processing of your personal data in connection with your application, as we attach great importance to data protection. Under the EU General Data Protection Regulation (GDPR), we, as the controller responsible for the processing of personal data, are subject to corresponding information obligations.

Controller

The controller for this processing is

Immobilienservice Bürgermeister Reuter GmbH as the operating company of Hotel Lützow Tiergarten

Marburger Straße 10
10789 Berlin
Tel.: +49 30 491022-0

Email: info@ims-brst.de

Website

Our website www.hotel-luetzow.de contains further information about our company, details of the authorised representatives and other contact options.

Website: https://www.hotel-luetzow.de/en/contact/imprint

Contact person / data protection officer

The company mb-Datenschutz GmbH is the data protection officer.

Email: dsb@brst.de

We process the data that you sent us in connection with your application, such as your name, address, telephone number, email address, date of birth and references, in order to check your suitability for the position and to carry out the application process.

Legal basis

The legal basis for the processing of your personal data in this application procedure is Art. 6 para. 1 f) GDPR and Section 26 BDSG.

Section 26 BDSG (1) covers data processing that is necessary for the establishment, performance and termination of an employment relationship and for the detection of criminal offences in the employment relationship.

Section 26 BDSG (2) allows us to process your data on the basis of your voluntary written consent, which can be revoked for the future and which does not result in any disadvantages for you in our employment relationship, e.g. the inclusion of your application documents in our applicant pool.

Section 26 BDSG (3) allows us to process your sensitive data (e.g: health data, trade union membership) if it is necessary to exercise rights or to fulfil legal obligations arising from labour law, social security law and social protection law where this does not conflict with your protectable interests.

Art. 6 para. 1 f) GDPR allows us to process your personal data, if we or a third party have a legitimate interest in this processing, and your interests, fundamental rights or fundamental freedoms do not conflict with this, e.g. video surveillance in the public areas of the company group:

  • to safeguard our house rights and
  • to establish, exercise or defend legal claims.

Storage duration

General storage duration:

Your personal data will be deleted once the purpose of the data processing no longer applies and the statutory retention periods have expired.

Once an employment contract has been concluded, there are retention periods of 6 or 10 years for certain personnel documents, meaning that an employee’s data will continue to be stored for 10 years after the employment relationship has ended.

Storage duration for application documents:

If no employment contract is concluded, your application documents will be deleted no later than 6 months after the rejection.

Special storage duration:

  • 72 hours for video recordings

If the storage is based on your consent, we will delete your personal data if you withdraw your consent.

Disclosure to third parties

In our company, only those employees who require access to your personal data in order to fulfil their tasks will have access to said data.

Your data will not be transmitted to outside the EU/EEA.

Data that we receive about you from third parties

In the event that you have applied to us via a portal such as hotelcareer.de and indeed.com, or if you have been introduced to us as a potential employee by a personnel service provider, we will receive your application documents from this service provider.

If you have created profiles about yourself in business networks such as XING or LinkedIn, we will look at them.

Rights of the data subject

You have the

  • right to information pursuant to Art. 15 GDPR,
  • right to correction pursuant to Art. 16 GDPR,
  • right to erasure pursuant to Art. 17 GDPR,
  • right to a restriction of processing pursuant to Art. 18 GDPR,
  • and the right to object pursuant to Art. 21 GDPR,

You also have the right to lodge a complaint with a data protection supervisory authority in accordance with Art. 77 GDPR.

Right to lodge a complaint

You have the right to lodge a complaint regarding processing of personal data to our data protection officer or the competent supervisory authority for data protection.

Conclusion

All the best and good luck with your application for a job at Hotel Lützow Tiergarten.

Version 26 August 2024

Data protection for guests

Privacy policy on the collection of personal data in the context of your hotel stay including your booking

Dear hotel guest, dear interested party,

Under the EU General Data Protection Regulation (GDPR), we, as the controller responsible for the processing of personal data, are subject to new information obligations. In accordance with Art. 13 and Art. 14 GDPR, we therefore inform you of the following points:

Controller

The controller for this processing is

Immobilienservice Bürgermeister Reuter GmbH as the operating company of

Hotel Lützow Tiergarten

Address:
Immobilienservice Bürgermeister Reuter GmbH
Marburger Straße 10
10789 Berlin
Tel.: +49 30 491022-0
Email: info@hotel-luetzow.de

Website

Our website https://www.airporthotel-berlin-adlershof.de/ contains further information about our company, details of the authorised representatives and other contact options.

Website:https://www.hotel-luetzow.de/contact/en/imprint/

Contact person / data protection officer

The company mb-Datenschutz GmbH is the data protection officer.

dsb@brst.de 

Legal bases and purposes for the processing of your data:

  • Art. 6 para. 1 a) GDPR allows us to process your data on the basis of your consent for certain purposes, e.g. subscription to our newsletter.
  • Art. 6 para. 1 b) GDPR covers data processing that is necessary for the fulfilment of a contract (accommodation contract) and for pre-contractual measures.
  • Art. 6 para. 1 c) GDPR allows us to process your data on the basis of a legal obligation, e.g. registration form (Sections 30 and 31 BMG) or as a result of retention obligations under financial and tax law.
  • Art. 6 para. 1 f) GDPR allows us to process your personal data, if we or a third party have a legitimate interest in this processing, and your interests, fundamental rights or fundamental freedoms do not conflict with this, e.g. for:
    advertising,
  • your preferences during your stay at our hotel, e.g. for certain room categories,
  • the avoidance of damage and/or liability of the company through appropriate measures,
  • to establish, exercise or defend legal claims,
  • video surveillance to exercise our house rights.

Data storage duration:

General storage duration: 

Your personal data will be deleted once the purpose of the data processing no longer applies and the statutory retention periods have expired. As a rule, companies are obliged to keep records for 6 or 10 years.

Special storage duration:

  • 72 hours for video recordings

If the storage is based on your consent, we will delete your personal data if you withdraw your consent.

Recipients of your personal data:

In our company, only those employees who require access to your personal data in order to fulfil their tasks will have access to said data.

Commissioned service providers may be sent your data to fulfil the described purposes if they fulfil the confidentiality requirements under data protection law. These might e.g. include companies in the categories of IT services, printing and shipping services, market research companies, call centres, logistics companies, or companies that handle data destruction for us. These service providers are so-called processing service providers (processors) who are contractually obliged to fulfil special legal requirements.

Your data is processed in our OPERA hotel software in the ORACLE cloud. ORACLE is a leading global software provider in the hotel segment based in the USA. The server location for the data processed in Germany is Frankfurt am Main. We do not proactively pass on your data to recipients outside the EU/EEA. ORACLE has an adequate level of data protection comparable to that of the EU, which is confirmed by ORACLE’s official certification to the Data Privacy Framework. A corresponding agreement on order processing including EU standard contractual clauses was concluded with this service provider in compliance with the GDPR.

Banks/bank service providers will receive your data to process your payment.

If we believe that it is necessary to carry out a credit check, data will be transmitted to corresponding credit agencies in Germany.

Your data will be passed on to public authorities if there is a legal obligation to do so.

Data we receive about you from others:

If you have booked your room via a hotel portal or a travel agency, we will receive your data from this operator.

Your data protection rights:

You have a

  • right to information pursuant to Art. 15 GDPR,
  • right to correction pursuant to Art. 16 GDPR,
  • right to erasure pursuant to Art. 17 GDPR,
  • right to a restriction of processing pursuant to Art. 18 GDPR,
  • right to object pursuant to Art. 21 GDPR,

You also have the right to lodge a complaint with a data protection supervisory authority pursuant to Art. 77 GDPR.