Legal

Privacy Policy

Note: The German version of this Privacy Policy (Datenschutzerklärung) is the legally binding version. This English translation is provided for informational purposes only.

1. Privacy at a Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data by which you can be personally identified. Detailed information on the subject of data protection can be found in our full privacy policy below.

Data Collection on This Website

Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. You can find their contact details in the Legal Notice of this website.

How do we collect your data?
Your data is collected in two ways: data you provide directly to us (e.g. via email or telephone), and data collected automatically by our IT systems when you visit the website — such as technical data including browser type, operating system, and time of page access.

What do we use your data for?
Some data is collected to ensure the error-free provision of the website. With your explicit consent, we also use analysis and review tools (see Section 4).

What rights do you have regarding your data?
You have the right at any time to receive free information about the origin, recipient and purpose of your stored personal data. You also have a right to rectification or erasure of this data. If you have given consent to data processing, you may revoke it at any time for the future. You may contact us at any time: info@hotelesplanade.de.

2. General Information and Mandatory Disclosures

Data Protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations and this privacy policy.

Controller

Hotel Esplanade | HANNIG-KÖHLER-Hotelbetriebsgesellschaft mbH
Hohenstaufenring 56 · 50674 Köln (Cologne), Germany
Phone: +49 (0) 221 / 921 55 70
E-Mail: info@hotelesplanade.de

Data Protection Officer

Sabine Friederichs (External Data Protection Officer, TÜV-certified)
inch-media GmbH · Braunsberger Feld 12 · 51429 Bergisch Gladbach, Germany
Phone: +49 2204 76750-19 · E-Mail: datenschutz@inch-media.de

Withdrawal of Consent

Many data processing operations are only possible with your explicit consent. You may withdraw consent already given at any time by sending us an informal email. The lawfulness of data processing carried out prior to withdrawal remains unaffected.

Right to Object (Art. 21 GDPR)

WHERE DATA PROCESSING IS BASED ON ART. 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME, ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION, TO THE PROCESSING OF YOUR PERSONAL DATA. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY.

Right to Lodge a Complaint

In the event of breaches of the GDPR, you have the right to lodge a complaint with a supervisory authority. The competent supervisory authority for North Rhine-Westphalia: State Commissioner for Data Protection and Freedom of Information NRW (LDI NRW), www.ldi.nrw.de.

SSL/TLS Encryption

This website uses SSL/TLS encryption for security reasons. You can recognise an encrypted connection by "https://" and the padlock symbol in your browser address bar.

3. Data Collection on This Website

Cookies

Our website uses technically necessary cookies solely to store your cookie preferences (via localStorage). Tracking or analysis cookies (e.g. Google Analytics) are only set with your explicit consent (see Section 4). The storage of your cookie setting is based on Art. 6(1)(f) GDPR (legitimate interest in the technically error-free provision of the website).

Server Log Files

The hosting provider automatically collects information in server log files transmitted by your browser:

Browser type and version
Operating system used
Referrer URL
Hostname of the accessing device
Time of the server request
IP address

This data is not merged with other data sources. Legal basis: Art. 6(1)(f) GDPR.

Contact via Email or Telephone

If you contact us by email or telephone, your details — including the contact information you have provided — will be stored by us for the purpose of processing your enquiry. We will not share this data without your consent. Legal basis: Art. 6(1)(b) or (f) GDPR. The data is retained until you request its deletion or the purpose for processing no longer applies.

4. Plugins and Tools

Fonts (Self-Hosted)

This website uses the fonts "Playfair Display" and "Inter". The font files are hosted locally on our own server. No connections are made to external font services (e.g. Google Fonts, Bunny Fonts). No data is transmitted to third parties.

Google Maps (only with consent)

This website may embed the mapping service Google Maps. Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Maps is only loaded on this website with your explicit consent (Art. 6(1)(a) GDPR).

Without your consent, no connection to Google servers is established. If you have consented, your IP address is transmitted to a Google server (possibly in the USA). You may withdraw your consent at any time by clearing your browser storage (localStorage) or contacting us.

More information: Google Privacy Policy.

Review Widget (Customer Alliance)

With your consent, our main page embeds a review widget from Customer Alliance (CA Customer Alliance GmbH, Berlin). This widget displays verified guest reviews. Upon consent, your IP address is transmitted to Customer Alliance servers. No connection is established without your consent. Legal basis: Art. 6(1)(a) GDPR.

More information: Customer Alliance Privacy Policy.

Google Analytics 4

This website uses Google Analytics 4 (GA4), a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. GA4 is only loaded with your explicit consent via our cookie banner (Art. 6(1)(a) GDPR).

We use Google Analytics with Consent Mode v2. Without your consent, no data is transmitted to Google and no tracking cookie is set. After consent, GA4 collects anonymised usage data such as page views, session duration and device type. IP anonymisation is enabled by default.

Measurement ID: G-24CZK2KLQQ

You may withdraw your consent at any time by clearing your browser storage (localStorage) or by revisiting our cookie settings via the "Cookie Settings" link in the footer.

More information: Google Privacy Policy.

Google Tag Manager

This website uses Google Tag Manager (GTM), a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. GTM is only loaded with your explicit consent (Art. 6(1)(a) GDPR). GTM itself does not store cookies or collect personal data, but acts as a container for other tags (such as Google Analytics). Without your consent, the Tag Manager is not loaded.

5. Booking System

For online reservations we use the system MEWS (Mews Systems B.V., Amsterdam, Netherlands). The booking page is operated on a separate domain by Mews. The booking engine is only loaded upon user interaction (clicking "Book Now"). Until that point, no data is transmitted to Mews.

When using the booking engine, cookies from Mews and its service providers (e.g. Cloudflare) may be set. The legal basis for data processing in connection with the booking is Art. 6(1)(b) GDPR (pre-contractual measures). Mews's privacy policy applies: mews.com/privacy-policy.

6. Email Communication (Newsletter & Offers)

Brevo (formerly Sendinblue)

If you subscribe to our email communication, your email address, IP address, and the time of registration will be stored. Registration is carried out using a double opt-in procedure: after entering your email address, you will receive a confirmation email in which you must confirm your subscription by clicking a link. Only after this confirmation will you be added to our mailing list. The double opt-in procedure is logged for proof of consent.

We use your data to send you news, offers and information about Hotel Esplanade. This includes regular newsletters, seasonal offers and event-related communications.

We use Brevo (Brevo SAS, formerly Sendinblue, 106 boulevard Haussmann, 75008 Paris, France) for email delivery. Brevo acts as our data processor pursuant to Art. 28 GDPR (data processing agreement in place). Data processing takes place exclusively within the EU.

Brevo may track email opens and link clicks to measure campaign performance. This tracking is based on your consent (Art. 6(1)(a) GDPR) and can be prevented by disabling image loading in your email client.

Your data will be stored for the duration of your subscription. If you do not confirm the double opt-in within 7 days, your data will be automatically deleted. Upon unsubscription, your email address will be added to a suppression list to prevent future mailings.

The legal basis for processing your data is your consent pursuant to Art. 6(1)(a) GDPR. You may withdraw your consent at any time by using the unsubscribe link at the bottom of any email or by contacting us at info@hotelesplanade.de.

More information: Brevo Privacy Policy.

7. Hosting

Netlify

This website is hosted on servers provided by Netlify (Netlify Inc., 44 Montgomery Street, Suite 300, San Francisco, CA 94104, USA). When you visit our website, server log files are collected (see Section 3). Netlify acts as our data processor pursuant to Art. 28 GDPR. Data transfer to the USA is based on the EU Standard Contractual Clauses. More information: Netlify Privacy Policy.

Last updated: April 2026