1. Privacy policy and consent to use your data within the app
2. Responsible entity
3. Collection, processing and use of personal data
4. Data collection in the context of app use
5. Analytical tools
6. Access rights of the app
6.1. Location
6.2. Photos, media, files
6.3. Camera
6.4. Wi-Fi connection information
6.5. Other
7. Storage of data
8. Links
9. Encryption
10. Information rights of the data subject
11. Right of appeal to the competent supervisory authority
12. Objection to advertising mails
13. Amendments of this privacy policy
1. Privacy policy and consent to use your data within the app
Gastfreund GmbH takes the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.
This data protection declaration applies to our iPhone and Android mobile apps (hereinafter “app”). It explains the type, purpose and scope of data collection in the context of app use.
We would like to point out that data transmission on the Internet can have security gaps. Complete protection of the data against access by third parties is not possible.
The following declaration informs you which personal and general data we collect and how we process and use it.
2. Responsible entity
“Responsible entity” means the entity that collects, processes or uses personal data (e.g. names, email addresses or similar).
The responsible entity for data processing within the scope of this app is Gastfreund GmbH, Bahnhofstraße 4, D-87435 Kempten (hereinafter: Gastfreund).
If you wish to object to the collection, processing or use of your data by Gastfreund in accordance with these data protection provisions, either in whole or in respect of individual measures, you may send your objection by e-mail or letter to the following contact details:
| Resonsible entity | Gastfreund GmbH Managing Director: Daniel Schulze Bahnhofstraße 4 87435 Kempten Germany info@hotelcore.io |
| Data Protection Officer | IITR Datenschutz GmbH Dr. Sebastian Kraska Marienplatz 2 80331 München Germany email@iitr.de |
3. Collection, processing and use of personal data
In principle, you can download and use our app without being personally identifiable. You also do not have to disclose any personal information. We only know the push ID of the app installation. These data are anonymised and do not allow any conclusions to be drawn about your person. This information is only evaluated for statistical purposes. You remain anonymous as an individual user.
The collection of further personal data through this app will only take place if we are legally entitled to do so or you have expressly consented to the data collection in question.
4. Data collection in the context of app use
Personal data may be collected in the context of app use in the following ways in particular:
(1) Your data is collected on the basis of the access rights that this app requires and that you have granted us (e.g. location data), see point 6
(2) Data you enter in the app
| Purpose of data processing | Provision of the Gastfreund services: digital guest communication between the Gastfreund client and guests. |
| Type and scope of data collection, processing and use | Entry of personal data by guests in the Gastfreund interface in the app or web. Forwarding of this data via AWS Mailclient to e-mail address specified by the customer. After the message has been sent by Gastfreund/AWS: deletion of the message sent and thus of the personal data depending on the applicable legal situation by Gastfreund customers. Amazon Web Services, Inc. Hosting is provided by: |
| Possible personal data of the guest | Contact details of the guest:
|
| Notice | Should users of the services enter personal data of third parties, this must be done with their consent. |
| Circle of persons concerned | Users of services offered by Gastfreund clients (guests) |
5. Analytical tools
When you access our app, your behaviour may be statistically evaluated using certain analytics tools and analysed for market research purposes or to improve our offerings.
Firebase
Firebase is a real-time database. It can be used to embed real-time information. User data is transmitted anonymously to Firebase. Firebase is owned by Google and is based in San Francisco (CA), USA. The privacy policy of Firebase can be found at https://www.firebase.com/terms/privacy-policy.html .
General analysis with Google Analytics and complementary services
In order to be able to comprehensively optimise our offers beyond these analyses, we use the web analysis service Google Analytics, which uses cookies to scan usage both in real time and in the long term. The data is usually transferred to US servers and stored there; however, because we have activated IP anonymisation, Google must first shorten your IP address in EU and EEA countries (only in the event of technical failures in Europe, for example, is it possible that the IP address will be only shortened in the USA). You can object to the data collection and processing described in apps by deactivating them in the settings (on Android and iOS directly in the app menu under Privacy).
6. Access rights of the app
In order to provide our services via the app, we require the access rights listed below, which allow us to access certain features of your device.
6.1. Location
The app accesses your exact GPS location. The GPS data is required for the display of your location on the map of the surroundings, as well as for the calculation of the distance. If access to the exact data is not possible, the application accesses the approximate network-based location.
6.2. Photos, media, files
The app requires access rights to be able to change or delete SD card contents. This right is required for downloading app photos and uploading feedback photos and basic entry photos. The protected memory must be tested to check whether a file is saved in the SD card memory or in the internal memory of the phone.
6.3. Camera
The access right to the camera of your device allows you to upload a photo for the feedback function or when suggesting a basic entry. In addition, you can scan QR codes via the camera and thus go directly to the presence of your host.
6.4. Wi-Fi connection information
The Wi-Fi connection is retrieved to allow you to access the app via Wi-Fi.
6.5. Other
Furthermore, the application requires access to the internet to download app content from the backend so that you can access the app via your mobile phone.
The app needs to detect if your device’s sleep mode is disabled in order to send push messages via the news function.
7. Storage of data
GPS data is kept in the app’s cache until it is replaced by an updated location. This position data is not personalised and does not allow any conclusions to be drawn about persons or devices. Images of the device or camera will only be processed in the context of feedback requests, sent by e-mail and not stored at Gastfreund. The push ID of the respective app installation is saved by default. This data is anonymised and does not allow any conclusions to be drawn about persons or devices. All data is stored until the app is deleted.
8. Links
In our app you will find links to other websites, such as to customers, websites relevant to tourism and to journals/magazines. While we strive to maintain links only to those sites that share our high standards and respect for privacy, we are not responsible for the content or security of those other sites, nor for their handling of personal information. Therefore, if you have left our website, we cannot take responsibility for the protection of the data you subsequently provide. In any case, you should exercise care and read the privacy statements of the websites concerned carefully.
9. Encryption
This app uses SSL encryption for security reasons and to protect the transmission of confidential content, such as enquiries that you send to us as the app operator. This encryption prevents the data you transmit from being read by unauthorised third parties.
10. Information rights of the data subject
According to the Bundesdatenschutzgesetz (Data Protection Act), our users have, among other things, a right to free information about their stored data, as well as, if applicable, a right to correction, blocking or deletion of data.
We take the protection of your data very seriously. To ensure that personal data is not disclosed to third parties, please send your request by e-mail or by post, clearly identifying yourself, to:
Gastfreund GmbH
Bahnhofstr. 4
87435 Kempten
Germany
Phone: +49 831 930 657-0
E-mail: info@hotelcore.io
11. Right of appeal to the competent supervisory authority
We would like to point out that you have the right to file a complaint with the competent supervisory authority in the event of a breach of data protection law. As a rule, the competent supervisory authority for data protection issues is the State Data Protection Commissioner of the federal state in which our company has its headquarters. A list of the data protection officers and their contact details can be found at the following link:
https://www.bfdi.bund.de/DE/Infothek/..
12. Objection to advertising mails
The use of contact data published within the framework of the legal notice obligation for the transmission of advertising and information material not expressly requested is herewith objected to. The operators of the app expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.
13. Amendments of this privacy policy
We reserve the right to change this privacy policy at any time in compliance with the law.
