Book now
  • Site notice & privacy

    Springe zum Inhalt

Imprint according to §5 German Teleservices Act (TMG):

Publisher
b'mine hotels GmbH
Holzhauser Straße 148
13509 Berlin, Germany
Phone +49 30 22182670
Fax: +49 30 221826744
Email: info@bmine.de
Represented by: Torsten Hagen, Matthias Beinlich und Stefan Sauga

Registered office of the company: Berlin

Commercial register: Register court Charlottenburg HRB 193159 B

Value added tax identification number: DE316565727

Responsible for content (according to § 5 TMG): b'mine hotels GmbH

Conception, design and realisation:
myhotelshop GmbH
Floßplatz 6, 04107 Leipzig, Germany
Phone: +49 341 392816571
Fax: +49 341 392816759
Represented by Ullrich Kastner (Managing Director)

Liability note: Despite careful content control, we assume no liability for the content of external links.

Alternative dispute resolution pursuant to Art. 14 para. 1 ODR-VO and § 36 VSBG
The European OS platform for out-of-court online dispute resolution can be reached via the following link: http://ec.europa.eu/consumers/odr/
Our e-mail address is: info@bmine.de

We are not obliged or prepared to participate in any dispute resolution proceedings before a consumer arbitration board.

Privacy policy of b'mine hotels GmbH according to art. 13 GDPR

The data protection and privacy of the users of our Internet pages are of particular concern to us. We therefore undertake to protect your personal data and to collect, process and use it only in accordance with the General Data Protection Regulation (GDPR) and the national data protection legislation. The following data protection declaration explains which of your personal data is collected on our Internet pages and how this data is used. Our data protection declaration is regularly updated in accordance with the legal and technical requirements. Please therefore take note of the current version of our data protection declaration.

The following data protection provisions apply exclusively to the Internet pages of b'mine hotels GmbH on the website and related sub-pages of: www.bmine.de

I. Name and address of the responsible person
The person responsible within the meaning of the General Data Protection Regulation and other national data protection laws as well as other provisions of data protection law is the data controller:

b'mine hotels GmbH
Holzhauser Straße 148
13509 Berlin, Germany
Phone: +49 30 22182670
Fax: +49 30 221826744
Email: info@bmine.de
Website: www.bmine.de

II. Name and address of the data protection officer
The data protection officer of b'mine hotels GmbH is:

Andreas Thurmann, DataSolution Thurmann GbR
Isarstr. 13
14974 Ludwigsfelde, Germany
Phone: +49 3378 202513
Fax: +49 3378 202514
Email: mail@hoteldatenschutz.de

III. General information on data processing

1. Scope of processing of personal data
As a matter of principle, your personal data will only be processed to the extent necessary to provide a functioning website and our content and services. The processing will only take place regularly after your consent, unless a prior obtaining of consent is not possible for actual reasons and the processing of data is permitted by law.

2. Legal basis for the processing of personal data
As a legal basis for the processing of personal data, we use the information provided in Art. 6 Par. 1
GDPR as follows:

a) Art. 6 para. 1 lit. a GDPR, provided that we obtain the consent of the data subject for the processing of personal data.
b) Art. 6 para. 1 lit. b GDPR if the processing of personal data is necessary for the performance of a contract to which the data subject is a party. This also applies to processing operations that are necessary for the implementation of pre-contractual measures.
c) Art. 6 para. 1 lit. c GDPR, if the processing of personal data is necessary to fulfil a legal obligation to which our company is subject.
d) Art. 6 para. 1 lit. d GDPR, insofar as vital interests of the data subject or another natural person necessitate the processing of personal data.
e) Art. 6 para. 1 lit. f GDPR, if the processing is necessary to safeguard a legitimate interest of our company or a third party and this outweighs the interests, fundamental rights and fundamental freedoms of the data subject.

3. Data erasure and storage duration
As soon as the purpose of storage no longer applies, your personal data will be deleted or blocked. If the European or national legislator provides for a storage beyond the purpose in Union regulations, laws or other provisions to which the person responsible is subject, this can take place until the expiry of the storage period prescribed by the aforementioned standards. Subsequently, the data will be blocked or deleted, unless it is necessary for further storage of the data for the conclusion or performance of a contract.

IV. Provision of the website and creation of log files

1. Description and scope of data processing
Our system automatically collects data and information from the computer system of the calling computer each time you visit our website.

In particular, the following data is collected:

a) the user IP address
b) the date and time of access
c) your Internet provider
d) information about the type of access browser and the version used
e) your operating system
f) Websites from which your system accesses our website
g) Websites accessed by your system through our website

This data is also stored in the log files of our system. These data are not stored together with your other personal data.

2. Legal basis for data processing
Art. 6 para. 1 lit. f GDPR constitutes the necessary legal basis for the temporary storage of data and log files.

3. Purpose of the data processing
The provision of the website to your computer requires the temporary storage of the IP address by the system. To do this, your IP address must remain stored for the duration of the session.

To ensure the functionality of the website and the security of our IT systems as well as to optimise the website, this data is stored in log files. In this context, the data is not evaluated for marketing purposes.

These purposes also represent our legitimate interest in data processing pursuant to Art. 6 para. 1 lit. f GDPR.

4. Duration of storage
If the data collection is no longer necessary to achieve the purpose, the data will be deleted. In the case of data collection for the provision of the website, this takes place at the end of each session.

If the data are stored in log files, they will be deleted after seven days at the latest. Storage beyond this may also be possible. For this purpose, the user IP addresses are deleted or alienated in order to no longer enable assignment to the calling client.

5. Possibility of objection and removal

There is no possibility for you to object, as the collection and storage of data in log files is mandatory for the provision and operation of the website.

V. Use of cookies

1. Description and scope of data processing
Our website uses so-called "cookies". These are text files that are stored in the Internet browser or by the Internet browser on your computer system. A cookie can be stored on your operating system as soon as it calls up a website. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again.

Cookies are used for the user-friendly design of our website. Because some parts of our website require identification of the browser used even after a page change.

In particular, the following data is stored and transmitted in the cookies:

a) Log-in information
b) Language settings

In addition, we also use cookies on our website to analyze your surfing behavior. For this purpose we use external services, which are described in the section"VII. Passing on your data to third parties / external services" of this data protection declaration.

Your data collected in this way is pseudonymised by technical measures. An allocation of these data with you is not possible. These data are also not stored together with other personal data of users.

When you access our website, you will be informed about the use of cookies for analysis purposes. Your consent will also be obtained to process the personal data used in this context. This also includes a reference to this data protection declaration.

2. Prevent the storage of cookies
Depending on the browser you are using, you can set cookies to be stored only with your consent. If you only want to accept the cookies used by us, but not the cookies of any service providers and partners, you can select the setting in your browser "Block third-party cookies". As a rule, the Help function in the menu bar of your web browser shows you how to reject new cookies and how to deactivate cookies that have already been received. We recommend that you always log out of shared computers that are set to accept cookies and flash cookies.

3. Legal basis for data processing
Art. 6 para. 1 lit. f GDPR represents the necessary legal basis for the processing of personal data using technically necessary cookies.

For the processing of personal data for analysis purposes using cookies that are not technically necessary, a consent according to Art. 6 para. 1 lit. a GDPR is the necessary legal basis.

4. Purpose of data processing
The use of technically necessary cookies is carried out for the purpose of simplifying the use of our websites for you. Without the use of cookies, various functions of our website cannot be offered, as these require the recognition of the browser after a page change.

The following applications require cookies:

a) Remembering search terms
b) Acceptance of language settings
c) Carrying out the reservation process

There is no creation of user profiles by means of technically necessary cookies of collected user data.

Analysis cookies are used to optimise the quality of our website and its content. We can regularly improve our offer by using analysis cookies and thus learn how our website is used.

These purposes also represent our legitimate interest in data processing pursuant to Art. 6 para. 1 lit. f GDPR.

5. Duration of storage, objection and removal possibility
Cookies are stored on your computer. From there they are transmitted to our website. As a user, you have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. You can also delete cookies that have already been saved at any time. This can also be done automatically. If you deactivate cookies for our website, this may result in restrictions on the use of the functions of our website.

VI. Contact form and e-mail contact

1. Description and scope of data processing
For electronic contact, we offer a contact form on our website. To use it, you enter your data in the input mask. These data will then be transmitted to us and stored:

a) Name
b) Company
c) Telephone
d) Email
e) Message to us

The following data is also stored when the message is sent:

a) Date and time of your establishment of contact

During the sending process we obtain your consent to the processing of this data and refer to this privacy policy.

You can also contact us via the e-mail address provided. Your personal data transmitted with the e-mail will be stored.

The data will be used exclusively for the processing of the communication. The data processed for communication will not be passed on to third parties.

To prevent unauthorized access to your personal data by third parties, the use of the contact form is supported by LetsEncrypt and encrypted using SSL technology.

2. Legal basis for data processing
The necessary legal basis for the processing of the data is the user's consent in accordance with Art. 6 para. 1 lit. a GDPR.

If the personal data is transmitted by e-mail, Art. 6 para. 1 lit. f GDPR constitutes the necessary legal basis for the processing of the data. If this contact is also intended to conclude a contract, Art. 6 para. 1 lit. b GDPR also constitutes the necessary legal basis for the processing.

3. Purpose of data processing
We process the personal data collected via the input mask exclusively to process the establishment of contact. If you contact us by e-mail, this is also the necessary legitimate interest in the processing of the data.

To prevent misuse of the contact form and to secure our IT systems, we use other personal data processed during the sending process.

4. duration of storage
If the data collection is no longer necessary to achieve the purpose, the data will be deleted. This applies to the personal data from the input mask of the contact form and those sent by e-mail when the respective communication with you has ended. This is the case if the circumstances indicate that the facts in question have been conclusively clarified.

After a period of seven days at the latest, any additional personal data collected during the sending process will be deleted.

5. possibility of objection and removal
You can revoke your consent to the processing of your personal data at any time. If you contact us by e-mail, you can object to the storage of your personal data at any time. Please note that in this case further communication with you can no longer be continued.

Personal data stored for the purpose of contacting you will be completely deleted in this case.

VII. Passing on your data to third parties / external services

In order to make our website as pleasant and convenient as possible for you as a user, we occasionally use the services of external service providers. Below you have the opportunity to inform yourself about the data protection regulations for the use and application of the services and functions used, in order to possibly also exercise your rights with these service providers.

1. Google Analytics
2. Google AdWords
3. Google Maps
4. social media plugins
5. MHS tracking pixel
6. simple booking

1. Google Analytics
Google Analytics is a service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information collected by the cookie about your use of our website (including your IP address) will generally be transmitted to and stored by Google on servers in the United States.

At our request, Google will only record your IP address in abbreviated form, which guarantees anonymisation and does not allow any conclusions to be drawn about your identity. If IP anonymisation is activated on our websites, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to and truncated by Google on servers in the United States.

Google will use this information to evaluate your use of our websites, to compile reports on website activity for us and to provide us with other services relating to the use of websites and the internet. The IP address transmitted by your browser as part of Google Analytics is not combined with other data from Google. A transfer of this data by Google to third parties only takes place due to legal regulations or in the context of order processing. Under no circumstances will Google combine your data with other data collected by Google.

By using this website, you consent to the processing of data about you by Google and the manner of data processing and purpose set out above. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. However, we would like to point out that in this case you may not be able to use all the functions of our website to their full extent.

Further information on Google Analytics and data protection can be found at https://tools.google.com/dlpage/gaoptout?hl=en.

2. Google AdWords
Our website uses the online advertising program "Google AdWords" and, within this framework, conversion tracking. The conversion tracking cookie is set when a user clicks on an ad placed by Google. These cookies expire after 30 days and are not personally identifiable. If the user visits certain pages of this website and the cookie has not expired, we and Google may recognize that the user clicked on the ad and was directed to that page. Each Google AdWords customer receives a different cookie. As a result, cookies cannot be tracked through AdWords customer websites.

The information collected from the Conversion cookie is used to generate conversion statistics for AdWords customers who have opted for Conversion Tracking. Customers will know the total number of users who clicked on their ad and were directed to a page with a conversion tracking tag. However, they will not receive information that personally identifies users. Users who do not wish to participate in tracking can easily disable the Google Conversion Tracking cookie from their Internet browser under User Preferences. These users are not included in the conversion tracking statistics. Learn more about the Google Privacy Policy.

3. Google Maps
Our websites use Google Maps to display maps and to create maps. Google Maps is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. By using this website, you consent to the collection, processing and use of the data automatically collected and submitted by you by Google, its agents or third parties. The Google Maps Terms of Use can be found in the Google Maps Terms of Use. Detailed information can also be found in the privacy policy of Google Inc.

4. Use of social media
We use the following social media platforms and services for the purpose of establishing contact and providing contributions and comments:

a) Facebook
b) Instagram
c) LinkedIn
d) XING

By means of icon linking in the footer you can easily access them via our websites.

We would like to point out that you use our respective social media site and its functions under your own responsibility. This applies in particular to the use of the respective interactive functions (e.g. commenting, sharing, rating). Alternatively, you can also call up the information offered on this page on our Internet site at www.bmine.de .

In the following, we will try to provide you with information on social networks, in particular Facebook. This assistance is provided to the best of our knowledge and belief on the basis of the information available to us, in particular on Facebook. For more information about Facebook and other social networking sites and how you can protect your privacy, please visit www.youngdata.de.

a) Facebook
The social network “Facebook” is operated by Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA . Facebook Inc. as a globally operating company maintains various subsidiaries, e.g. Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland for the EU and Facebook Germany GmbH, Caffamacherreihe 7, 20355 Hamburg for Germany.

When you visit our Facebook page, Facebook collects, among other things, your IP address and other information that is available on your PC in the form of cookies. This information is used to provide us, as operators of Facebook pages, with statistical information about the use of the Facebook page. Facebook provides further information on this under the following link: https://www.facebook.com/help/pages/insights.

The data collected about you in this context is processed by Facebook Ireland Ltd. and may be transferred to countries outside the European Union. Facebook describes in general terms what information it receives and how it is used in its data use guidelines. You will also find information on how to contact Facebook and how to post advertisements.

The Data Usage Guidelines are available at the following link: https://de-de.facebook.com/about/privacy

The complete Facebook data guidelines can be found here: https://de-de.facebook.com/full_data_use_policy

You can find rules on joint responsibility with Facebook here: https://www.facebook.com/legal/terms/page_controller_addendum

In what way Facebook uses the data from visits to Facebook pages for its own purposes, to what extent activities on the Facebook page are assigned to individual users, how long Facebook stores this data and whether data from a visit to the Facebook page is passed on to third parties, is not conclusively and clearly named by Facebook and is not known to us.

When you access a Facebook page, the IP address assigned to your end device is transmitted to Facebook. According to Facebook, this IP address is anonymized (for "German" IP addresses) and deleted after 90 days. Facebook also stores information about its users' end devices (e.g. as part of the "registration notification" function); Facebook may thus be able to assign IP addresses to individual users.

If you are currently logged on to Facebook as a user, a cookie with your Facebook identification is stored on your terminal. This enables Facebook to track that you have visited this page and how you have used it. This also applies to all other Facebook pages. Facebook buttons integrated into web pages enable Facebook to record your visits to these web pages and assign them to your Facebook profile. This information can be used to tailor content or advertising to you.

If you want to avoid this, you should log out of Facebook or deactivate the function "stay logged in", delete the cookies on your device and close and restart your browser. This deletes Facebook information that immediately identifies you. This allows you to use our Facebook page without revealing your Facebook identifier. When you access the interactive features of the page (like, comment, share, message, etc.), a Facebook login screen appears. Once you have logged in, Facebook will recognize you again as a specific user.

For information on how to manage or delete information about you, please visit the following Facebook support pages: https://de-de.facebook.com/about/privacy#

As the provider of the information service, we do not collect and process any other data from your use of our service.

b) Instagram
The “Instagram” service is maintained by Facebook Inc. In addition to the Facebook information above, you can find Instagram's privacy statement here.

c) LinkedIn
The “LinkedIn” social network is operated by the LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. The Link to LinkedIn's Privacy Policy can be found here: LinkedIn Privacy Notice.

d) XING
The social network “XING” is operated by XING SE, Dammtorstraße 30, 20354 Hamburg, Germany. You can find the link to XING's privacy policy here: Privacy policy of XING.

5. MHS tracking pixel
Our websites also used the "myhotelshop" service to check availability and bookings. Provider of "myhotelshop" is myhotelshop GmbH, Flossplatz 6, 04107 Leipzig.

By using the booking system on our websites, myhotelshop receives your contact details as well as the information required to process the booking (e.g. date and duration of stay, reservation number, accommodation). We use the MHS-Tracking Pixel from myhotelshop on our booking confirmation page. For this purpose, we use cookies from myhotelshop according to the section "Cookies". The integration of the MHS tracking pixel enables us to determine the conversion rate, i.e. how many website visitors have made a transaction in order to improve our service. The MHS tracking pixel provides us with transaction data such as turnover, currency, etc. We also receive the reservation number for fraud prevention purposes.

The processing of your data takes place within the European Union, a transfer to third countries is not intended in this respect. The processing is carried out for the purposes of contract fulfilment, fraud prevention, measurement of the web audience, demand-oriented design of websites and for billing purposes. We delete the data arising in this context after processing is no longer necessary or restrict processing if there are legal storage obligations (e.g. mandatory commercial and tax storage obligations).

The legal basis for the processing is Art. 6 para. 1 sentence 1 lit. f) GDPR or Art. 6 para. 1 sentence 1 lit. b) GDPR, if the processing is carried out in order to fulfil or prepare the contract. The processing of your data takes place within the European Union, a transfer to third countries is not intended in this respect. The processing is carried out for the purposes of contract fulfilment, fraud prevention, measurement of the web audience, demand-oriented design of websites and for billing purposes. The data will be processed by myhotelshop for the fulfilment of contractual obligations with us and deleted on request, unless there are legal storage obligations.

You have the right to object to the processing. Your right of objection exists for reasons arising from your particular situation, unless we can prove compelling grounds for processing worthy of protection which outweigh your interests, rights and freedoms, and also if the processing serves to assert and exercise or defend against legal claims (Art. 21 para. 1 GDPR). You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it is possible that all functions of the website can no longer be used to their full extent.

Further information on the purpose and scope of processing by the provider can be found in myhotelshop's data protection declaration: https://www.myhotelshop.com/de/terms-and-conditions.

6. Simple booking
We use the Simple Booking service of QNT S.r.l., Via Lucca 52, 50142 Florence, Italy, to support and process our reservation services and for marketing purposes.

Further information about Simple Booking can be found here: https://www.simplebooking.travel.

VIII Rights of the data subject
If personal data are processed by you, you are affected in the sense of the GDPR. You therefore have the following rights vis-à-vis the person responsible:

1. Right to information
You can request confirmation from the person responsible as to whether we are processing personal data relating to you.

In the event of such processing, you may request the following information from the data controller:

a) the purposes of the processing;
b) the categories of personal data processed;
c) the recipients or categories of recipients to whom the personal data relating to you has been or will be disclosed;
d) if possible, the planned duration for which your personal data will be stored or, if this is not possible, the criteria for determining this duration;
e) the existence of a right to rectify or erase personal data concerning you or to limit the processing carried out by the controller or to oppose such processing;
f) the existence of a right of appeal to a supervisory authority;
g) where the personal data are not collected from the data subject, any available information as to the source of the data;
h) the existence of automated decision-making including profiling in accordance with Article 22 (1) and (4) of the DS Block Exemption Regulation and, at least in these cases, meaningful information on the logic involved and the scope and intended effects of such processing on the data subject.

You may also request information as to whether the personal data concerning you will be transferred to a third country or to an international organisation. If this is the case, you can request information on the appropriate guarantees in connection with the transfer in accordance with Art. 46 GDPR.

2. Right to rectification
You may request the person responsible to correct any inaccurate personal data concerning you. You may also request the completion of incomplete personal data - also by means of a supplementary declaration - taking into account the purposes of the processing. The person responsible must carry out the requested correction immediately.

3. Right to cancellation ("right to be forgotten")
You may request the data controller to delete the personal data concerning you immediately and the data controller is obliged to delete this data immediately if one of the following reasons applies:

a) Your personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
b) You revoke your consent on which the processing pursuant to Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a GDPR was based and there is no other legal basis for the processing.
c) You object to the processing pursuant to Art. 21 para. 1 GDPR and there are no overriding legitimate reasons for the processing or you object to the processing pursuant to Art. 21 para. 2 GDPR.
d) Your personal data have been processed unlawfully.
e) The deletion of your personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the data controller is subject.
f) Your personal data have been collected in relation to information society services offered pursuant to Art. 8 para. 1 GDPR.

If the data controller has made the personal data concerning, you public and is obliged to delete them pursuant to Art. 17 para. 1 GDPR, he shall take appropriate measures, including technical measures, taking into account the available technology and the implementation costs, to inform the data controllers processing the personal data that you as the data subject have requested them to delete all links to this personal data or copies or replications of this personal data.

However, the right to deletion does not exist if the processing is required as follows

a) the exercise of freedom of expression and information;
b) to fulfil a legal obligation which processing is subject to under the law of the Union or of the Member States to which the controller is subject or to perform a task carried out in the public interest or in the exercise of official authority vested in the controller;
c) for reasons of public interest in the field of public health pursuant to Art. 9 para. 2 lit. h and i as well as Art. 9 para. 3 GDPR;
d) for archival purposes in the public interest, scientific or historical research purposes or for statistical purposes pursuant to Art. 89 para. 1 GDPR, insofar as the right of deletion described above is likely to make it impossible or seriously impair the attainment of the objectives of such processing, or
e) to assert, exercise or defend legal claims.

4. Right to limit the processing
You may request the person responsible to restrict the processing of your personal data if one of the following conditions applies:

a) you have contested the accuracy of your personal data for a period of time which allows the data controller to verify the accuracy of your personal data;
b) the processing is unlawful, and you refuse to delete the personal data and instead request the restriction of the use of your personal data;
c) the controller no longer needs your personal data for the purposes of processing, but you do need them for the assertion, exercise or defence of legal claims, or
d) You have lodged an objection against the processing pursuant to Art. 21 para. 1 GDPR and it is not yet clear whether the legitimate reasons of the data controller outweigh your own.

If the processing of your personal data has been restricted, these personal data - apart from their storage - may only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the Union or a Member State.

If you have obtained a limitation of the processing under the conditions set out above, you shall be informed by the controller before the limitation is lifted.

5. Right to information
If you have exercised the aforementioned rights of rectification, cancellation or limitation of processing against the controller, the latter must notify all recipients to whom your personal data have been disclosed of this rectification, cancellation or limitation of processing, unless this proves impossible or involves a disproportionate effort.

At your request, the data controller must inform you of these recipients.

6. Right to transfer data
You have the right to receive the personal data concerning you that you have provided to the responsible person in a structured, common and machine-readable format. You also have the right to communicate this data to another data controller without being hindered by the controller to whom the personal data was provided, provided that

a) the processing is based on a consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR or on a contract pursuant to Art. 6 para. 1 lit. b GDPR and
b) the processing is carried out by automated means.

In exercising this right, you also have the right to have your personal data transmitted directly by one responsible person to another responsible person, insofar as this is technically feasible.

The right to data transfer does not apply to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Similarly, the right to data transfer must not affect the rights and freedoms of other persons.

7. Right of objection
You have the right to object at any time, for reasons related to your particular situation, to the processing of your personal data carried out on the basis of Art. 6 para. 1 lit. e or f GDPR; this also applies to profiling based on these provisions.

The person responsible will no longer process your personal data unless he can prove compelling grounds for processing worthy of protection which outweigh your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims.

If your personal data are processed for the purpose of direct marketing, you have the right at any time to object to the processing of your personal data for the purpose of such advertising; this also applies to profiling, insofar as it is connected with such direct marketing.

If you object to the processing for purposes of direct marketing, your personal data will no longer be processed for these purposes.

Notwithstanding Directive 2002/58/EC, you may exercise your right to object to the use of Information Society services by means of automated procedures using technical specifications.

8. Right to revoke the declaration of consent under data protection law
You can revoke your declaration of consent under data protection law at any time. The revocation of your consent does not affect the legality of the processing carried out on the basis of your consent until you revoke it.

9. Automated decision in individual cases including profiling
You have the right not to be subject to any decision based solely on automated processing, including profiling, that has any legal effect on you or similarly significantly affects you.

This does not apply if the decision

a) is necessary for the conclusion or performance of a contract between you and the person responsible,
b) is authorised by legislation of the Union or of the Member States to which the person responsible is subject and contains appropriate measures to safeguard your rights and freedoms and your legitimate interests; or
c) with your express consent.

In the cases referred to in a) and c), the controller shall take reasonable steps to protect your rights and freedoms and your legitimate interests, including at least the right of the controller to obtain the intervention of a person, to state his or her point of view and to contest the decision.

The decisions according to a) to c) must not be based on special categories of personal data according to Art. 9 para. 1 GDPR, unless Art. 9 para. 2 lit. a or g GDPR applies and appropriate measures have been taken to protect your rights and freedoms as well as your legitimate interests.

10. Right of complaint to a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to complain to a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of presumed infringement, if you consider that the processing of your personal data is contrary to the GDPR.

The supervisory authority with which the complaint was lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 DS Block Exemption Regulation.

IX. Foreign language pages

As far as parts of the website are also offered in languages other than German, this is exclusively a service for our customers, interested parties and employees who are not proficient in the German language.

X. Timeliness and amendment of this data protection declaration

This privacy policy is currently valid and as of November 2018.

The further development of our website and its offers or changed legal provisions or issued jurisdiction or official requirements may make it necessary to amend this privacy statement.