Privacy statement and consent to use of data

We are glad for your visit to our homepage and thank you for your interest in our company. Our relationship with our customers and interested parties is a matter of trust. The trust placed in us is of very high value to us, and so is also, therefore, the significance and duty of care for your data and protecting it from misuse.

So that you may feel secure and comfortable when visiting our website, we take the protection of your personal data and its confidential treatment very seriously. This is why our actions are in accordance with the applicable legal provisions for the protection of personal data and for data security.

With these notes about data protection, we would therefore like to inform you of when we save which data, and how we use it – of course, always under observance of the applicable legislation. Data protection at centromed Berlin-Spandau Betriebs GmbH & Co. KG (centrovital Berlin) is especially based on the European General Data Protection Regulation (GDPR).

Name and address of the responsible entity

The responsible entity, in the sense of the GDPR and other national data protection laws of the Member States, as well as other data protection-related provisions, is:
centromed Berlin-Spandau Betriebs GmbH & Co. KG, Brauereihof 6, D-13585 Berlin, Germany, telephone: +49/30/818 75-0, e-mail: info@centrovital-berlin.de
 

Name and address of the data protection officer

The data protection officer of the responsible entity is:
DataSolution LUD GmbH,
E-mail: mail@ds-lud.de
 

General items related to data protection

1. Scope of the processing of personal data
Fundamentally, we record and use personal data of our users only when this is necessary for the provision of a functional website as well as our content and services. Recording and using personal data of our users is conducted regularly, only after consent from the user. There is an exception in cases where a prior request for consent is not possible for concrete reasons, and the processing of the data is authorised through legal provisions.
 

Provision of the website and establishing log files

1. Descriptions and scope of the data processing
At every consultation of our internet site, our system automatically records data and information from the computer system of the consulting computer. The following data is thereby recorded:
(1) Information about the browser type and version used
(2) The user’s operating system
(3) The user’s IP address
(4) Date and time of the access
(5) Websites from which the user’s system is redirected to our website
(6) Websites that are called up by the user’s system via our website
The data is saved in our system’s log files. This data is never saved together with other personal data of the user. Personal user profiles cannot be created from it. The saved data is only evaluated for statistical purposes.

2. Legal basis for the data processing
The legal basis for the temporary saving of the data and the log files is the article 6 paragraph 1 letter f of the GDPR.

3. Purpose of the data processing
The temporary saving of the IP address by the system is necessary to enable the delivery of the website to the user’s computer. For this reason, the user’s IP address must remain saved for the length of the session.
The saving in log files is conducted to ensure the functional capacity of the website. In addition, the data helps us optimise the website and ensure the security of our technical information system. In this context, there is no evaluation of the data for marketing purposes.
These purposes also constitute our legitimate interest in data processing in accordance with article 6 paragraph 1 letter f of the GDPR.

4. Length of storage
The data is deleted as soon as it is no longer necessary to achieve the purpose of its recording. In the case of the data being recorded in order to provide the website, this is the case at the end of the session in question.
In the case of the data being saved in log files, this is the case after seven days at the latest. A record lasting longer than this period is possible. In this case, the user’s IP address is deleted or anonymised so that its assignment to the consulting customer is no longer possible.

5. Possibility of opposition and disposal
The recording of the data in order to provide the website and the saving of data in log files is absolutely necessary for the operation of the internet site. Therefore, the user has no right to oppose this.
 

Contact/E-mail contact

1. Description and scope of the data processing
A contact possibility is present on our internet site, which can be used for electronical communications. If a user makes use of this possibility, they can contact the relevant person via the e-mail address provided. In this case, the user’s personal data transmitted with the e-mail is saved in the e-mail system.
In this context, there is no transmission of data to third parties. The data is used exclusively to process the conversation.

2. Legal basis for the data processing
The legal basis for the data processing, with the consent of the user, is the article 6 paragraph 1 letter a of the GDPR.
A further legal basis for the data processing is article 6 paragraph 1 letter f of the GDPR. If the contact request targets the conclusion of a contract, an additional legal basis for the data processing is the article 6 paragraph 1 letter b of the GDPR.

3. Purpose of the data processing
For the processing of personal data in the context of a contact request by e-mail, the necessary legitimate interest for processing data is present.

4. Length of storage
The data is deleted as soon as it is no longer necessary to achieve the purpose of its recording. In the case of personal data being sent by e-mail, this is the case when the conversation in question with the user is finished. The conversation is finished when the circumstances make it clear that the issue in question has been definitively resolved.
If a request for contact concerns a precontractual relationship (offer or reservation request), the data sent will be saved in our hotel software and used for the execution of the contract. If no contractual relationship arises, we delete the data after one year at the year’s end.

5. Possibility of opposition and disposal
The user has the possibility, at any time, of opposing the processing of their personal data. For this, we have established the e-mail address widerruf@centrovital-berlin.de.
We bring your attention to the fact that in the case of an opposition, the conversation cannot be continued, we cannot establish an offer, etc.
In this case, all personal data that was saved in the course of the contact request is deleted.
 

Online booking via the website

1. Description and scope of the data processing
Our internet site offers the possibility of booking hotel rooms and arrangements. If a user makes use of this offer, the data entered into the form is sent to us and saved. This data consists of: first name, surname, e-mail address, telephone, address, number of persons staying, provisional arrival time, requests, payment data (credit card), date, time.
A further function during the booking process is the possibility to complete and close the booking at a later time. A link is generated for this, which you can receive by e-mail. The booking data is stored for 24 hours. This is only done with your consent. If no booking is made after this period, the data will be deleted.
When you undertake an online booking on our website, this is conducted via the online reservation system of the company HotelNetSolutions GmbH., Genthiner Straße 8, 10785 Berlin, Germany. All the booking data you provide is transmitted in encrypted form. HotelNetSolutions GmbH has committed to complying with the data protection provisions with regards to the data transmitted to them. They have taken all the necessary organisational and technical measures to protect your data.
In this context, there is no other transmission of the data to third parties. The data is used exclusively for processing the booking and for communication purposes.

2. Legal basis for the data processing
The legal basis for the data processing is the conclusion of a hosting contract with the user in accordance with article 6 paragraph 1 letter b of the GDPR. With regard to the storage of the booking process, this is done with your consent in accordance with Art. 6 Para. 1 lit. a GDPR.

3. Purpose of the data processing
The processing of the personal data entered into the form solely serves to process the booking request and payment transaction.

4. Length of storage
The data is deleted as soon as it is no longer necessary to achieve the purpose of its recording. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual safeguarding period provisions have been observed.

5. Possibility of opposition and disposal
The user has the possibility, at any time, of opposing the processing of their personal data. For this, we have established the e-mail address widerruf@centrovital-berlin.de.
We bring your attention to the fact that in the case of an opposition, the booking cannot be completed, and the conversation cannot be continued.
 

Online booking via other websites

1. Description and scope of the data processing
centrovital Berlin gives interested parties the possibility of booking rooms and arrangements for the hotel via hotel reservation portals (third-party providers). If a user makes use of this possibility, the data they enter into the form will be transmitted to us and saved to the extent that the hotel reservation portal in question allows in accordance with their own data protection provisions. This data can consist of: first name, surname, e-mail address, telephone, address, number of persons staying, provisional arrival time, requests, payment data (credit card).
The data provided will be transmitted to our hotel software through a so-called channel manager. All booking data received is transmitted in encrypted form. HotelNetSolutions GmbH, Genthiner Straße 8, D-10785 Berlin, Germany, as provider of the channel manager, has committed to complying with the data protection provisions with regards to the data transmitted. They have taken all the necessary organisational and technical measures to protect your data.
In this context, there is no other transmission of the data to third parties. The data is used exclusively for processing the booking and possibly for communication purposes.

2. Legal basis for the data processing
The legal basis for the data processing is the conclusion of a hosting contract with the user in accordance with article 6 paragraph 1 letter b of the GDPR.

3. Purpose of the data processing
The processing of the personal data entered into the form solely serves to process the booking request and payment transaction.

4. Length of storage
The data is deleted as soon as it is no longer necessary to achieve the purpose of its recording. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual safeguarding period provisions have been observed.
We have no influence on the storage periods of the hotel reservation portal in question.

5. Possibility of opposition and disposal
The user has the possibility, at any time, of opposing the processing of their personal data. For this, we have established the e-mail address widerruf@centrovital-berlin.de.
We bring your attention to the fact that in the case of an opposition, the booking cannot be completed, and the conversation cannot be continued.
 

Conference bookings

1. Description and scope of the data processing
It is possible to book conferences and events on our internet site. If a user makes use of this possibility, the data entered into the form is sent to us and saved. This data consists of: title/company first name, surname, e-mail address, telephone.
When you book a conference or an event on our website, this is conducted through the online ordering platform of the company ZELFMADE GmbH, Paul-Nevermann-Platz 5, D-22765 Hamburg, Germany. All the ordering data you provide will be transmitted in encrypted form. ZELFMADE GmbH has committed to complying with the data protection provisions with regards to your transmitted data. They have taken all the necessary organisational and technical measures to protect your data.
In this context, there is no other transmission of the data to third parties. The data is used exclusively for processing the booking and for communication purposes.

2. Legal basis for the data processing
The legal basis for the data processing is the conclusion of a purchase contract with the user in accordance with article 6 paragraph 1 letter b of the GDPR.

3. Purpose of the data processing
The processing of the personal data entered into the form solely serves to process the booking request and payment transaction.

4. Length of storage
The data is deleted as soon as it is no longer necessary to achieve the purpose of its recording. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual safeguarding period provisions have been observed.

5. Possibility of opposition and disposal
The user has the possibility, at any time, of opposing the processing of their personal data. For this, we have established the e-mail address widerruf@centrovital-berlin.de.
 

Purchasing a voucher on the website

1. Description and scope of the data processing
It is possible to purchase vouchers on our internet site. If a user makes use of this possibility, the data entered into the form is sent to us and saved. This data consists of: title/company first name, surname, date of birth, e-mail address, address, telephone/fax, voucher value, requests, payment details.
When you purchase a voucher on our website, this is conducted through the online ordering platform of the company INCERT eTourismus GmbH & Co KG, Leonfeldner Straße 328, A-4040 Linz, Austria. All the ordering data you provide will be transmitted in encrypted form. INCERT has committed to complying with the data protection provisions with regards to your transmitted data. INCERT has taken all the necessary organisational and technical measures to protect your data.
In this context, there is no other transmission of the data to third parties. The data is used exclusively for processing the booking and for communication purposes.

2. Legal basis for the data processing
The legal basis for the data processing is the conclusion of a purchase contract with the user in accordance with article 6 paragraph 1 letter b of the GDPR.

3. Purpose of the data processing
The processing of the personal data entered into the form solely serves to process the booking request and payment transaction.

4. Length of storage
The data is deleted as soon as it is no longer necessary to achieve the purpose of its recording. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual safeguarding period provisions have been observed.

5. Possibility of opposition and disposal
The user has the possibility, at any time, of opposing the processing of their personal data. For this, we have established the e-mail address widerruf@centrovital-berlin.de.
 

Newsletter

1. Description and scope of the data processing
It is possible to register for our newsletter service in several ways on our internet site. If a user makes use of this possibility, the data entered into the form is sent to us and saved. This data consists of: e-mail address and optional information such as title, first name, surname, language, preferred destination or subjects.
When you register for the newsletter on our website, the data is saved in our CRM and newsletter tool by Revinate Inc..
Revinate Inc. has committed to complying with the data protection provisions with regards to your transmitted data. They have taken all the necessary organisational and technical measures to protect your data.
If we receive an e-mail address in another way, where the recipient clearly indicates they wish to receive the newsletter, we will enter their data in the form on our website.
In this context, there is no other transmission of the data to third parties. The data is used exclusively for sending newsletters.

2. Legal basis for the data processing
The legal basis for the data processing is the presence of the recipient’s consent, in accordance with article 6 paragraph 1 letter a of the GDPR. This is ensured through a double opt-in procedure.

3. Purpose of the data processing
The processing of the personal data serves exclusively to send individual newsletters.

4. Length of storage
The data is deleted as soon as the newsletter service is cancelled.

5. Possibility of opposition and disposal
The user has the possibility, at any time, of opposing the processing of their personal data. The user can cancel the newsletter service with every newsletter. In addition, we have established the e-mail address widerruf@centrovital-berlin.de.
 

Subscription to our Messenger services

1. Description and scope of the data processing
On our website you have the possibility to subscribe for newsletters via messenger services. When you send a start message, your personal data (e.g. name and first name, telephone number, Messenger ID, profile picture, messages) are used for direct communication and the necessary data processing using the selected Messenger. For the use of this service, an existing messaging account with the respective provider is required.
Responsible supplier of the messenger is with:

• Whatsapp die WhatsApp, Inc., 1601 Willow Road, Menlo Park, California 94025, USA. You can find the Privacy Policy under www.whatsapp.com/legal/
• Facebook Messenger die Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. You can find the Privacy Policy under facebook.com/about/privacy
• Insta News die Pylba Inc., 314 27th Avenue, San Mateo, CA, 94403, USA. You can find the Privacy Policy under apps.pylba.com/privacy

I am aware that the respective provider receives personal data (in particular communication metadata), which is also processed on servers in countries outside the EU (e.g. USA) where an adequate level of data protection cannot be guaranteed. However, WhatsApp Inc and Facebook Inc are certified under the Privacy Shield Agreement and thus offer a guarantee of compliance with the European General Data Protection Regulation (GDPR).
Further information can be found in the above-mentioned data protection guidelines of the respective messenger. We have neither exact knowledge nor influence on the data processing by the respective provider.
In order to provide this service, the technical service provider MessengerPeople GmbH, Herzog-Heinrich-Str. 9, 80336 München is used as data processor.

2. Legal basis for the data processing
The legal basis for the data processing is the presence of the recipient’s consent, in accordance with article 6 paragraph 1 letter a of the GDPR.

3. Purpose of the data processing
The processing of the personal data serves exclusively to send individual newsletters via the respective messenger service.

4. Length of storage
The data is deleted as soon as the newsletter service is cancelled.
To have all data stored by you at our service provider removed, send a message with the text "DELETE ALL DATA" via your Messenger.

5. Possibility of opposition and disposal
The recipient has the possibility at any time to object to the processing of his personal data. Your consent to this data processing can be freely revoked at any time by entering "STOP" in the respective messenger. In addition, we have established the e-mail address widerruf@centrovital-berlin.de

Counsel, advertising and market research

1. Description and scope of the data processing
For the support, counsel and promotion of corporate customers, in addition to the business partner or potential business partner, we also record and use the contact person’s name, telephone number and the postal address. We receive the information from various sources, either through request (e-mail or telephone), but also through events, trade shows, business cards that our sales employees receive, etc. The data is saved in the CRM modules of our central hotel software.
In this context, there is no other transmission of the data to third parties. The data is used exclusively for the purpose described above.

2. Legal basis for the data processing
The legal basis for the data processing is the article 6 paragraph 1 letter f of the GDPR. If the contact request aims to create a contract, this becomes an additional legal basis for the processing in accordance with article 6 paragraph 1 letter b of the GDPR.

3. Purpose of the data processing
We use this contact data exclusively for our own purposes and for the needs-based design of our own sales activities.

4. Length of storage
Fundamentally, no deletion deadline is planned. However, if our company has had no contact with the corporate contact in question for 3 years, the sales department will decide whether the data of the contact partner in the company in question should be deleted.
If a request for contact concerns a precontractual relationship (offer or reservation request), the data transmitted will be saved in our hotel software and used for the execution of the contract. If no contractual relationship arises, we delete the data after one year at the year’s end.

5. Possibility of opposition and disposal
The corporate contact has the possibility, at any time, of opposing the processing of their personal data. For this, we have established the e-mail address widerruf@centrovital-berlin.de.
In this case, all personal data of the contact partner of the business partner in question that is saved will be deleted.
 

Online evaluation

1. Description and scope of the data processing
Former guests can leave a review of our hotel after their check-out. For this, we would like to send you an e-mail within 14 days after your departure, to request that you leave a hotel review. Each review can be published in an anonymised form if you prefer. If you did not feel comfortable in our hotel, we would like to take the opportunity to contact you.
If you give an online evaluation on our website, the data will be saved in the evaluation tool of the company CA Customer Alliance GmbH, Ullsteinstraße 118 | Turm B, D-12109 Berlin, Germany. Customer Alliance has committed to complying with the data protection provisions with regards to your transmitted data. They have taken all the necessary organisational and technical measures to protect your data.
In this context, there is no other transmission of the data to third parties. The data is exclusively used for the publication of the evaluation and arbitration in the case of bad reviews.

2. Legal basis for the data processing
The legal basis for the data processing is the article 6 paragraph 1 letter f of the GDPR, i.e. legitimate interest.

3. Purpose of the data processing
The purpose of the hotel reviews is to communicate and summarise the opinions of hotel guests on our website, so that interested parties can form their own ideas about our services. In addition, the results are of use in our internal quality management.

4. Length of storage
The data is not deleted.

5. Possibility of opposition and disposal
It is possible, at any time, to delete the published evaluation (right to be forgotten). For this, we have established the e-mail address widerruf@centrovital-berlin.de. In this case, please tell us which evaluation you would like to have deleted.
 

Use of cookies

1. Description and scope of the data processing
Cookies are small files that make it possible to save specific, device-related information on the user’s access device (PC, smartphone or other). They help improve the user-friendliness of websites on the one hand, and thus help the users (for example by saving login data). They also serve to record the statistical data of the website use and make it possible to analyse this data for the purpose of improving our offer. The user can influence the implementation of the cookies. Most browsers have an option with which the saving of cookies can be limited or completely prevented. However, please note that the use and particularly the comfort of use without cookies can be limited.
You can manage many online advertisement cookies from companies via the US-American website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/uk/your-ad-choices/.

What are the different types of cookies?

1. Absolutely necessary cookies – this type of cookies is always activated, as they are necessary for the basic functioning of the website. This includes cookies that can save the course of navigation around the website.
2. Functionality and performance – with these analytical cookies, the anonymous tracking of user behaviours can help improve the functionality of the website. These cookies can also help queries be answered faster, for example. This includes communication with Facebook, Twitter or other social networks.

www.centrovital-berlin.de uses cookies to be able to offer you the desired information and services with optimum quality, as well as to be able to better transmit information and news concerning our website.

2. Legal basis for the data processing
The legal basis for the processing of personal data with use of technically necessary cookies is article 6 paragraph 1 letter f of the GDPR.
The legal basis for the processing of personal data with use of cookies for analysis purposes is, along with the presence of the user’s consent to this, article 6 paragraph 1 letter a of the GDPR.

3. Purpose of the data processing
The purpose of using technically necessary cookies is to simplify the use of websites for the user. Certain functions of our internet site cannot be provided without using cookies. For these, it is necessary for the browser to continue to be recognised, even after a change of page. The user data recorded through technically necessary cookies is not used to create user profiles.
Analysis cookies are used with the purpose of improving the quality of our website and its contents. The analysis cookies tell us how the website is used and can thus help us to continuously improve our offer.
These purposes also constitute our legitimate interest in the processing of personal data in accordance with article 6 paragraph 1 letter f of the GDPR.

4. Length of storage, possibility of opposition and disposal
Cookies are saved on the user’s computer and transmitted from there to our website. Therefore, you as user have full control of the cookies. How the web browser handles cookies, which cookies are accepted or rejected, can be determined by the user in the settings of the web browser. You can deactivate the storage of cookies and scripts in your browser, restrict it to certain websites or set your browser to notify you as soon as a cookie is sent. You can also delete cookies from your computer's hard drive at any time. The exact location of these settings depends on the respective Web browser. Detailed information on this can be called using the help function of the relevant Web browser.

You can reject cookies in any of the main browsers:
Mozilla Firefox: http://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
Google Chrome: https://support.google.com/chrome/bin/answer.py?hl=de&answer=95647&p=cpn_cookies
Internet Explorer: http://windows.microsoft.com/en-us/internet-explorer/delete-manage-cookies#ie=ie-11
Safari: https://support.apple.com/de-de/guide/safari/sfri11471/mac

Please note, however, that in these cases you must expect a restricted display of the page and limited user guidance. If the use of cookies is restricted, all functions of this website may no longer be fully usable.

If cookies are deactivated for our website, all the functions of our website may not be completely usable.
If you are worried about cookies of third-party providers, you can refuse these and still receive the cookies that let our website function correctly.
You can refuse cookies in each of the main browsers as follows:
Mozilla Firefox: http://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
Google Chrome: https://support.google.com/chrome/bin/answer.py?hl=de&answer=95647&p=cpn_cookies
Internet Explorer: http://windows.microsoft.com/en-us/internet-explorer/delete-manage-cookies#ie=ie-11
Safari: http://support.apple.com/
Please note, however, that in these cases you will be faced with a limited display of the website and a limited user experience.

5. Additional information
In addition to the information above about the use of cookies, please note the following:

Use of Google Analytics, Google Convers Tracking and Google Remarketing
Our internet presence uses Google Analytics, Google Convers Tracking and Google Remarketing. These services are provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States ("Google").

Web page improvement
Google Analytics
This website uses Google Analytics, a web analytic service provided by Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA ("Google") on the legal basis of overriding legitimate interest (analysis of website use). For this purpose, we have concluded a data processing agreement with Google.
When you visit our website, a software creates a connection to the Google servers and transmits data to the Google servers, some of which are located in the USA. Google Analytics uses cookies to store information on the user of the website and to analyze the website use.
This website uses the "IP anonymization" functionality. Google truncates and therefore anonymizes your IP-address within the Member States of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and truncated there.
According to Google, Google uses this information to evaluate your use of the website, to compile reports on website activities, and to provide other services relating to website activity and internet use.
Google may also transmit that information to third parties, if this is prescribed by law and to the extent that third parties process such data on behalf of Google.
Detailed information on how Google Analytics uses user data can be found in the data privacy statement of Google or Google Analytics.

Google AdWords conversion tracking
We use Google AdWords to display advertisements on Google and other third-party websites. Conversion tracking helps us determine how successful each ad is. Our purpose is to show you advertisements of interest to you and to make our website more interesting to you. The legal basis for the processing of your data is Article 6 paragraph 1 (f) of the GDPR.

The advertising is delivered by Google via what are known as “ad servers”. We use cookies to measure certain performance metrics, such as ads or user clicks. If you access our website via a Google ad, Google Adwords will save a cookie on your PC. These cookies usually expire after 30 days and are not intended to identify you personally. For this cookie, typically the unique cookie ID, number of ad impressions per placement (Frequency), last impression (relevant to post-view conversions), and opt-out information (mark that the user does not want to be addressed anymore) are saved as analysis parameters.

These cookies enable Google to recognise your Internet browser. If a user visits certain pages of an AdWords customer's website and the cookie stored on their computer has not yet expired, Google and the customer will be able to detect that the user clicked on the ad and was redirected to that page. Each AdWords customer is assigned a different cookie. Cookies cannot be tracked via the websites of AdWords customers. We ourselves do not collect and process any personal data in the aforementioned advertising measures. We receive only statistical analyses provided by Google. On the basis of these analyses, we can identify which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising material; in particular, we cannot identify the users on the basis of this information.

Due to the marketing tools used, your browser automatically establishes a direct connection to Google's servers. We have no influence over the scope and further use of the data collected by Google and will inform you to the best of our knowledge. By integrating AdWords Conversion Tracking, Google receives the information that you have accessed the relevant part of our website or clicked on an ad from us. If you are registered with a service provided by Google, Google may match the visit to your account. Even if you are not registered with Google or have not logged in, the provider may obtain and store your IP address.
You can refuse the use of cookies by selecting the appropriate settings in your browser; however, please note that if you do so, you may not be able to use all the features of this website to the fullest extent possible. In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by downloading and installing the browser plug-in available at the following link: http://www.google.com/settings/ads/plugin
Google participates in the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework
More information on Google’s Privacy Policy is available here: https://policies.google.com/privacy?hl=en

Google Maps
This page uses the map service Google Maps via an API. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The use of Google Maps is in the interest of an appealing representation of our online offers and an easy findability of the places indicated by us on the website. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
You can find more information on the handling of user data in Google's data protection declaration: https://www.google.de/intl/de/policies/privacy/

Use of YouTube plugins
This website uses plug-ins from the site YouTube, which is owned by Google. The operator of the site is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit a page of this website that features a YouTube plug-in, a connection to YouTube’s servers is established, which will inform the YouTube server which of our web pages you have visited. If you are logged in to your YouTube account, YouTube will be able to update your personal profile with details of your surfing behaviour. You can prevent this by logging out of your YouTube account. For more information on the handling of user data, see YouTube’s privacy policy at https://www.google.de/intl/en/policies/privacy/.

DialogShift chat application
Our website uses the chat application of DialogShift GmbH, Rheinsberger Str. 76/77, 10115 Berlin. This application processes and stores data for the purpose of web analysis, to operate the chat application and to answer queries.
For the operation of the chat function, the chat texts are stored and a cookie with a unique ID is set - this is used to recognise you as a customer.
A cookie is a small text file that is stored locally in the cache on your device. Using this cookie, our application recognises the device and can retrieve past chat logs. This cookie is stored for 90 days since last use. You can disable the storage of cookies in your browser settings. However, without the use of cookies, the chat function cannot be performed.
The possible disclosure of e.g. name, e-mail address or a telephone number is voluntary and with the consent to temporarily use and store this data for the purpose of contacting you until the end of the contact. This personal data is deleted after 90 days.
The legal basis for data processing is Article 6 (1) lit. F DS-GVO based on our legitimate interest in effective customer support, for statistical analysis of user behaviour and for optimisation purposes of our offers.
DialogShift offers at https://www.dialogshift.com/en/data-privacy for further information on the collection and use of data and on your rights and options for protecting your privacy.

Use of hotelchamp
We use the services of Hotelchamp, a professional provider of online software and services, to optimize our online booking process and help us to improve and personalize our interaction with you. In providing this service to us and to you, Hotelchamp may process some of your personal information on our behalf. Both Hotelchamp and we value and respect your privacy and we process and protect your personal information in accordance with all applicable laws and regulations. We have entered into a "Data Processing Agreement" with Hotelchamp to make special arrangements for the processing and protection of your personal information. We and Hotelchamp can process data such as your e-mail address, IP address and browser fingerprint in combination with your booking data and your other interactions on our website, to provide you with content and offers that we think are relevant and appealing to you.
 

Facebook fanpage

1. Description and scope of the data processing

On our Facebook Fanpage at: de-de.facebook.com/centrovital/ we use plugins of the provider Facebook.com, which are operated by the company Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94304, US. By using the fan page, data is forwarded to the Facebook servers, which contain information about your visits to our fan page. For logged-in Facebook users, this results in the usage data being assigned to their personal Facebook account. As soon as you actively use the Facebook plug-in as a logged-in Facebook user (for example by clicking on the "Like" button or using the comment function), this data will be transferred to your Facebook account and published. This can only be avoided by logging out of your Facebook account.

We do not know exactly which data Facebook stores and uses. As a user of the fan page, you must therefore expect that Facebook also saves your actions on the fan page without gaps.
Facebook receives your IP address, processor type and browser version by clicking on the "Like" button. Through your IP address, Facebook, along with other data and your real name, if you have given it to your Facebook profile, could identify your identity and habits under that profile. If you always log in to Facebook via this user profile, Facebook could in particular find out your preferences, contacts and lifestyle.

Otherwise, the General Terms of Use of Facebook Ireland Limited, Hanover Reach, 5-7 Hanover Quay, Dublin 2, Ireland under www.facebook.com/terms.php apply.

With regard to data protection on Facebook, please note the following privacy policy of Facebook Ireland Limited: www.facebook.com/about/privacy/

2. Legal basis for the data processing
The legal basis for the processing of personal data for analysis purposes is the legitimate interest of the company acc. Art. 6 para. 1 lit. f DSGVO.

3. Purpose of the data processing
The use of the analysis tools is for creating statistics for the use of the Facebook-Fanpage.

4. Length of storage, possibility of opposition and disposal

Responsible for the duration of the storage, the right of objection and the rights of those affected is Facebook. Please note the following privacy notices of Facebook Ireland Limited: www.facebook.com/about/privacy/.

Protection of minors

This website is mainly intended for adults. We currently market no special area for children. We therefore knowingly collect neither information about age nor personal data from children under the age of 16. We would, however, like to request of all of the visitors to our website under the age of 16 that they neither disclose nor provide any personal data via our website. If we notice that a child under the age of 16 has provided us with personal information, we shall delete the child’s data from our files, to the extent this is technically possible, in accordance with the Children's Online Privacy Protection Act (see the Federal Trade Commission website at www.ftc.gov for more information about this law).
 

Rights of the data subject

If personal data of yours is processed, you are the data subject in the sense of the GDPR, and you have the following rights with regards to the responsible entity:

You have a right to information about your personal data that is saved, about the purposes of its processing, about any possible transmission to other places and about the period it is saved for.

If data is false or no longer necessary for the purpose it was recorded for, you can request its rectification, deletion or the limitation of its processing. To the extent possible according to the processing procedures, you can also view and rectify your data yourself.

If there are reasons arising from your particular personal situation to oppose the processing of your personal data, you can oppose it, to the extent that the processing is based on a legitimate interest. In this case, the responsible entity will no longer process your personal data, unless they can prove that there are absolutely necessary, protection-compliant reasons for the processing that are more important than your interests, rights and freedoms, or if the processing serves to enforce, exercise or defend legal claims. If the personal data pertaining to you is processed to run direct advertising, you have the right to oppose the processing of personal data pertaining to you for such advertising purposes, at any time; this also applies to profiling, if it is linked to such direct advertising. If you oppose the processing for advertising purposes or profiling, your personal data will no longer be used for these purposes.

You have the right to withdraw your privacy-related declaration of consent at any time. The withdrawal of the consent does not affect the legality of the processing conducted until the withdrawal on the basis of the consent.

In case of questions about your rights and how they are respected, please contact the responsible entity or the data protection officer.
 

Right to complain to a supervisory authority

As a data subject, you have the right to file a complaint with a supervisory authority for data protection regardless or any other administrative or legal remedy, particularly in the Member State of your place of residence or the place of the presumed breach, if you are of the opinion that the processing of the personal data pertaining to you is in breach of privacy regulations.

The supervisory authority with which the complaint is filed shall inform you about the status and the results of your complaint, including the possibility of a legal remedy.
 

Security

centrovital Berlin has implemented technical and organisational security measures in accordance with article 32 of the GDPR to protect the data in our care from accidental or deliberate manipulation, loss, destruction or the access of unauthorised persons. Our security measures are continuously improved according to the latest technological developments. Access is only possible for a few authorised persons particularly subject to data security, who are in charge of the technical, administrative or editorial care of the data.
 

Declaration of consent of the user

With the use of our website and the offers contained within, you declare to agree with us saving the personal data voluntarily provided by you and processing and using this data in accordance with this privacy statement.

We reserve the right to modify, update or add to these privacy guidelines at any time. Modified privacy guidelines only apply to personal data recorded or changed after the validity of the modified guidelines.


Version | 2022