1. privacy policy and consent to the use of data
We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
This privacy policy applies to our mobile iPhone and Android app (hereinafter referred to as "app"). It explains the type, purpose and scope of data collection when using the app.
We would like to point out that data transmission over the Internet may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible.
The following declaration informs you which personal and general data we collect and how we process and use it.
2. responsible body
"Controller" is the entity that collects, processes or uses personal data (e.g. names, email addresses, etc.).
Details of the responsible organisation:
Casblanca Hotel Software (Privacy policy)
If you wish to object to the collection, processing or use of your data by the controller in accordance with these data protection provisions as a whole or for individual measures, you can send your objection by e-mail or letter to the contact details given above.
3. collection, processing and use of personal data
In principle, you can download and use our app without being personally identifiable. You also do not have to disclose any personal information. We only learn the push ID of the app installation. This data is anonymised and does not allow any conclusions to be drawn about you personally. This information is only analysed for statistical purposes. You remain anonymous as an individual user.
The collection of further personal data by this app only takes place if we are legally authorised to do so or if you have expressly consented to the data collection in question.
4. data collection in the context of app use
Personal data may be collected in particular in the following ways when using the app:
(1) Your data is collected on the basis of the access rights that this app requires and that you have granted us (e.g. location data), see point 6.
(2) Data that you enter in the app.
Purpose of data processing
Provision of hotel services: Digital guest communication between us and our guests.
Type and scope of data collection, processing and use
Input of personal data by guests in the app.
Forwarding of this data via AWS Mailclient to one of our e-mail addresses.
After sending the message: Deletion of the sent message and thus the personal data, depending on the applicable legal situation.
Amazon Web Services, Inc.
P.O. Box 81226
Seattle, WA 98108-1226
http://aws.amazon.com
Hosting is provided by:
Amazon Web Services (server rooms)
AWS Region Ireland
Possible personal data of the guest
Contact details of the guest:
- Name
- Address
- Telephone number
- Number and age of children (if relevant for booking a room)
- Time and duration of stay
- Date and place of birth
Hint
If users of the services enter personal data of third parties, this must be done with their consent.
Circle of those affected
Users of our offered services (guests).
5. analysis tools
When you access our app, your behaviour can be statistically evaluated with the help of certain analysis tools and analysed for market research purposes or to improve our offers.
Firebase
Firebase is a real-time database. It can be used to embed real-time information. User data is transmitted to Firebase in anonymised form. Firebase belongs to Google and is based in San Francisco (CA), USA. You can find Firebase's privacy policy at https://www.firebase.com/terms/privacy-policy.html.
General analysis with Google Analytics and supplementary services
In order to be able to comprehensively optimise our offers beyond these analyses, we use the web analysis service Google Analytics, which uses cookies to scan usage both in real time and over the long term. The data is generally transferred to US servers and stored there; however, because we have activated IP anonymisation, Google must first truncate your IP address in EU and EEA countries (only in the event of technical failures in Europe, for example, is it possible that the IP address will only be truncated in the USA). You can object to the described data collection and processing in apps by deactivating it in the settings (on Android and iOS directly in the app menu under Privacy).
6. access rights of the app
In order to provide our services via the app, we require the access rights listed below, which enable us to access certain functions of your device.
6.1 Location
The app accesses your exact GPS location. The GPS data is required to display your location on the map and to calculate the distance. If it is not possible to access the exact data, the application accesses the approximate, network-based location.
6.2 Photos, media, files
The app requires access rights to be able to change or delete SD card contents. This authorisation is required for downloading app photos and for uploading feedback photos and basic entry photos. The protected memory must be tested to check whether a file is saved in the SD card memory or in the phone's internal memory.
6.3 Camera
Access rights to your device's camera allow you to upload a photo for the feedback function or when suggesting a basic entry. You can also use the camera to scan QR codes and go directly to the relevant page.
6.4 WLAN connection information
The Wi-Fi connection is retrieved to enable you to access the app via Wi-Fi.
6.5 Other
Furthermore, the application requires access to the Internet in order to download app content from the backend so that you can access the app via your mobile phone.
The application must recognise whether the sleep mode of your device is deactivated in order to be able to send push messages via the news function.
7. storage of the data
GPS data is stored in the app's cache until it is replaced by an updated location. This position data is not personalised and does not allow any conclusions to be drawn about persons or end devices. Images from the device or camera are only processed as part of feedback requests or sent by email. The push ID of the respective app installation is stored by default. This data is anonymised and does not allow any conclusions to be drawn about individuals or end devices. All data is stored until the app is deleted.
8. links
In our app you will find links to other websites such as partners, tourism-related websites and magazines. Whilst we endeavour to link only to sites that share our high standards and respect for privacy, we are not responsible for the content and security of these other sites, nor for their handling of personal data. Therefore, once you have left our app, we cannot be responsible for the protection of any information which you subsequently provide. In any case, you should exercise caution and read the privacy statements of the websites concerned carefully.
9. encryption
This app uses SSL encryption for security reasons and to protect the transmission of confidential content, such as the enquiries you send to us as the app operator. This encryption prevents the data you transmit from being read by unauthorised third parties.
10. information rights of the data subject
According to the Federal Data Protection Act, our users have, among other things, a right to free information about their stored data and, if necessary, a right to correction, blocking or deletion of data.
We take the protection of your data very seriously. To ensure that personal data is not disclosed to third parties, please send your enquiry by e-mail or post, clearly identifying yourself, to the responsible body named under point 2.
11. right of appeal to the competent supervisory authority
We would like to point out that you have the right to lodge a complaint with the competent supervisory authority in the event of breaches of data protection law. The competent supervisory authority for data protection issues is generally the state data protection officer of the federal state in which our company has its headquarters. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
12. objection to advertising e-mails
We hereby object to the use of contact data published in the context of the imprint obligation to send unsolicited advertising and information material. The operators of the app expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.
13. amendment of this privacy policy
We reserve the right to amend these data protection provisions at any time in compliance with legal requirements.
