Privacy Policy 

1. An overview of data protection 


The following gives a simple overview of what happens to your personal information when you visit our website. Personal information is any data with which you could be personally identified. Detailed information on the subject of data protection can be found in our privacy policy found below. 


 Data collection on our website

Who is responsible for the data collection on this website? 

The data collected on this website are processed by the website operator. The operator’s contact details can be found in the website’s required legal notice. 


 How do we collect your data?

Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form. 

Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website. 



 What do we use your data for?

Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site. 


 What rights do you have regarding your data?

You always have the right to request information about your stored data, its origin, its recipients, and the purpose of its collection at no charge. You also have the right to request that it be corrected, blocked, or deleted. You can contact us at any time using the address given in the legal notice if you have further questions about the issue of privacy and data protection. You may also, of course, file a complaint with the competent regulatory authorities. 


 Analytics and third-party tools

When visiting our website, statistical analyses may be made of your surfing behavior. This happens primarily using cookies and analytics. The analysis of your surfing behavior is usually anonymous, i.e. we will not be able to identify you from this data. You can object to this analysis or prevent it by not using certain tools. Detailed information can be found in the following privacy policy. 

You can object to this analysis. We will inform you below about how to exercise your options in this regard. 

2. General information and mandatory information 


Data protection 

The operators of this website take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with the statutory data protection regulations and this privacy policy. 

If you use this website, various pieces of personal data will be collected. Personal information is any data with which you could be personally identified. This privacy policy explains what information we collect and what we use it for. It also explains how and for what purpose this happens. 

Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible. 



Notice concerning the party responsible for this website 

The party responsible for processing data on this website is: 

Hotel Excelsior München GmbH & Co.KG
Schützenstraße 11
80335 Munich, Germany
Tel: +49 89 551 370

The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (names, email addresses, etc.). 



Revocation of your consent to the processing of your data 

Many data processing operations are only possible with your express consent. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed. 



Right to file complaints with regulatory authorities

If there has been a breach of data protection legislation, the person affected may file a complaint with the competent regulatory authorities. The competent regulatory authority for matters related to data protection legislation is the data protection officer of the German state in which our company is headquartered. A list of data protection officers and their contact details can be found at the following link: 


Right to data portability 

You have the right to have data which we process based on your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a standard, machine-readable format. If you require the direct transfer of data to another responsible party, this will only be done to the extent technically feasible. 



SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar. 

If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties. 


Information, blockig, deletion

As permitted by law, you have the right to be provided at any time with information free of charge about any of your personal data that is stored as well as its origin, the recipient and the purpose for which it has been processed. You also have the right to have this data corrected, blocked or deleted. You can contact us at any time using the address given in our legal notice if you have further questions on the topic of personal data. 


Opposition to promotional emails

We hereby expressly prohibit the use of contact data published in the context of website legal notice requirements with regard to sending promotional and informational materials not expressly requested. The website operator reserves the right to take specific legal action if unsolicited advertising material, such as email spam, is received. 


Data protection officer

Statutory data protection officer 

We have appointed a data protection officer for our company. 

Data Privacy Officer
Franziska Rosin
Blombergstraße 4
86938 Schondorf



3. Data collection on our website


Some of our web pages use cookies. Cookies do not harm your computer and do not contain any viruses. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser. 

Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain in your device’s memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site. 

You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website. 

Cookies which are necessary to allow electronic communications or to provide certain functions you wish to use (such as the shopping cart) are stored pursuant to Art. 6 paragraph 1, letter f of DSGVO. The website operator has a legitimate interest in the storage of cookies to ensure an optimized service provided free of technical errors. If other cookies (such as those used to analyze your surfing behavior) are also stored, they will be treated separately in this privacy policy. 



Server log files

The website provider automatically collects and stores information that your browser automatically transmits to us in “server log files”. These are: 

  • Browser type and browser version 
  • Operating system used 
  • Referrer URL 
  • Host name of the accessing computer 
  • Time of the server request 
  • IP address 

These data will not be combined with data from other sources. 

The basis for data processing is Art. 6 (1) (f) DSGVO, which allows the processing of data to fulfill a contract or for measures preliminary to a contract. 


Contact form

Should you send us questions via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your question and any follow-up questions. We do not share this information without your permission. 

We will, therefore, process any data you enter onto the contact form only with your consent per Art. 6 (1)(a) DSGVO. You may revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed. 

We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory statutory provisions, especially those regarding mandatory data retention periods, remain unaffected by this provision. 


Table reservation

If you use our online service for table reservations, you will be automatically directed to the website of OpenTable.Inc. Please find the data protection provisions of OpenTable at the following link: 


Cookie Content with klaro.kirprotect (KIProtect GmbH)

Our website uses the klaro-cookie consent technology to obtain your consent to the storage of certain cookies in your browser and for their data privacy protection compliant documentation. The provider of this technology is

KIProtect GmbH,
Bismarckstr. 10-12,
10625 Berlin,
Germany (hereinafter referred to as Klaro). 

Whenever you visit our website, a klaro-cookie will be stored in your browser, which archives any declarations or revocations of consent you have entered. These data are not shared with the provider of the Klaro technology. 

The recorded data shall remain archived until you ask us to eradicate them, delete the Klaro cookie on your own or the purpose of storing the data no longer exists. This shall be without prejudice to any retention obligations mandated by law. To review the details of klaro data processing policies, please visit 

We use the klaro- cookie consent technology to obtain the declarations of consent mandated by law for the use of cookies. The legal basis for the use of such cookies is Art. 6 Sect. 1 Sentence 1 lit. c GDPR. 


4. Social media


Google+ plugin

Our pages use Google+ functions. It is operated by

Google Inc.,
1600 Amphitheatre Parkway,
Mountain View,
CA 94043, USA. 

Collection and disclosure of information: Using the Google +1 button allows you to publish information worldwide. By means of the Google+ button, you and other users can receive custom content from Google and our partners. Google stores both the fact that you have +1’d a piece of content and information about the page you were viewing when you clicked +1. Your +1 can be displayed together with your profile name and photo in Google services, for example in search results or in your Google profile, or in other places on websites and advertisements on the Internet. 

Google records information about your +1 activities to improve Google services for you and others. To use the Google + button, you need a globally visible, public Google profile that must contain at least the name chosen for the profile. This name is used by all Google services. In some cases, this name may also replace a different name that you have used to share content via your Google account. The identity of your Google profile can be shown to users who know your email address or other information that can identify you. 

Use of collected data: In addition to the uses mentioned above, the information you provide is used in accordance with the applicable Google data protection policies. Google may publish summary statistics about users’ +1 activity or share it with users and partners, such as publishers, advertisers, or affiliate websites. 


Instagram plugin

Our website contains functions of the Instagram service. These functions are offered by

Instagram Inc.,
1601 Willow Road,
Menlo Park,
CA 94025, USA. 

If you are logged into your Instagram account, you can click the Instagram button to link the content of our pages with your Instagram profile. This means that Instagram can associate visits to our pages with your user account. As the provider of this website, we expressly point out that we receive no information on the content of the transmitted data or its use by Instagram. 

For more information, see the Instagram Privacy Policy: 



This page uses through an API the Liverate Widget. Provider is the

LiveRate GmbH,
Metzstr. 12,
DE – 81667 Munich 

When visiting the site your browser is loading the needed scipts in order to display the price information widget correctly. 

For this purpose, the browser you use must connect to the servers of LiveRate GmbH. By this the Liverate GmbH will know, that through you IP adress our website was used. We point out that we as providers of the pages do not receive any information about the content of the transmitted data as well as of the use thorugh the Liverate GmbH. The use of Liverate fulfilled in the interest of a favorable booking for our guests. This means an interesting interest within the meaning of Art. 6 para. 1 lit. f DSGVO. 

Further information about Liverate can be found at 

5. Analytics and advertising


Google Analytics

This website uses Google Analytics, a web analytics service. It is operated by

Google Inc.,
1600 Amphitheatre Parkway,
Mountain View,
CA 94043, USA. 

Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. 

Google Analytics cookies are stored based on Art. 6 (1) (f) DSGVO. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising. 


IP anonymization

We have activated the IP anonymization feature on this website. Your IP address will be shortened by Google within the European Union or other parties to the Agreement on the European Economic Area prior to transmission to the United States. Only in exceptional cases is the full IP address sent to a Google server in the US and shortened there. Google will use this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity, and to provide other services regarding website activity and Internet usage for the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with any other data held by Google. 


Browser plugin

You can prevent these cookies being stored by selecting the appropriate settings in your browser. However, we wish to point out that doing so may mean you will not be able to enjoy the full functionality of this website. You can also prevent the data generated by cookies about your use of the website (incl. your IP address) from being passed to Google, and the processing of these data by Google, by downloading and installing the browser plugin available at the following link: 


Objecting to the collection of data 

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site: Disable Google Analytics. 

For more information about how Google Analytics handles user data, see Google’s privacy policy: 



Outsourced data processing

We have entered into an agreement with Google for the outsourcing of our data processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics. 

6. Newsletter

Newsletter data

If you would like to receive our newsletter, we require a valid email address as well as information that allows us to verify that you are the owner of the specified email address and that you agree to receive this newsletter. No additional data is collected or is only collected on a voluntary basis. We only use this data to send the requested information and do not pass it on to third parties. 

We will, therefore, process any data you enter onto the contact form only with your consent per Art. 6 (1) (a) DSGVO. You can revoke consent to the storage of your data and email address as well as their use for sending the newsletter at any time, e.g. through the “unsubscribe” link in the newsletter. The data processed before we receive your request may still be legally processed. 

The data provided when registering for the newsletter will be used to distribute the newsletter until you cancel your subscription when said data will be deleted. Data we have stored for other purposes (e.g. email addresses for the members area) remain unaffected. 

Further information about the newsletter can be found here: 

7. Plugins and tools

Google Maps

This site uses the Google Maps map service via an API. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. 

To use Google Maps, it is necessary to save your IP address. This information is generally transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer. 

The use of Google Maps is in the interest of making our website appealing and to facilitate the location of places specified by us on the website. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO. 

Further information about handling user data, can be found in the data protection declaration of Google at 

To help you find your way around, we have incorporated Google Maps maps from Google LLC into our website via an API. In order to display the content in your browser, Google must receive your IP address, otherwise Google could not provide you with this embedded content. 

The legal basis for this data processing is Article 6 (1) (b) GDPR, as the IP address is required to provide you with the content. In this processing, our cooperation with Google is based on a joint liability agreement under Art. 26 GDPR, which can be accessed here. 

See here: 

For more information about Google’s data processing, please refer to the Google Privacy Policy at 

8. Purposes of processing personal data 

We process the aforementioned data for the operation of our website and for the fulfillment of contractual obligations towards our customers or the protection of our legitimate interests. 

For inquiries from you outside an active customer relationship, we process the data for sales and advertising purposes. You may object to the use of your personal information for promotional purposes at any time. 

9.  Volontary information

As far as you have given us data non-obgliatory i.e. by filling out a contact form and these are not required for the performance of our contractual obligations, we process these data in the legitimate assumption that the processing and use of this data is in your interest. 

10. Recipient / transfer of data 

Data that you provide to us will generally not be disclosed to third parties. In particular, your data will not be disclosed to third parties for their advertising purposes. 

Geisel Privathotels act as joint responsible persons (Art. 2 DSGVO) when processing their guest data and process their data in accordance with Art. Art. 6 para. 1 sentence 1 lit. f) in the legitimate interest of Geisel Privathotels. This serves to improve our services. Your data will be used exclusively for hotel booking or re-booking. Excluded is the use of your guest data for advertising purposes without your consent. 

We also work with other service providers e.g. for the operation of this website or for other products or services from us. 

These are among others: Software service providers, IT companies, service providers for administrative tasks (billing, etc.), credit card companies. 

Here it may happen that a service provider receives knowledge of personal data. We carefully select our service providers – in particular with regard to data protection and data security – and take all data protection measures necessary for permissible data processing. 

11. Data processing outside the European Union 

If personal data is processed outside the European Union, you can see this from the previous comments. 

12. Change of this Privacy Policy 

We revise this Privacy Notice for changes to this website or other occasions that may require it. You will always find the current version on this website 

13. Presence in Online Media / Social Media 


We operate different sites on the Internet to interact with our customers, prospects or employees. There we put up-to-date information online, post pictures of events or show parts of our services. 

Since we offer these pages in the course of social media, data also reaches the non-EU area. However, the companies we work with have agreed on an appropriate level of data protection (US Privacy Shield). 

The data may also be used for market research and promotional purposes where user profiles are created. 

We process your data by editing your comments, postings, pictures or personal messages for legitimate purposes. Art. 6 para. 1 lit. f. DSGVO. In some cases, we may request that you consent to the processing of your data. Art. 6 para. 1 lit. a. DSGVO. 

If you have inquiries regarding further data processing or would like to get more detailed information, we will gladly provide information in the individual details. If you have further questions, you are also welcome to contact us. 


Facebook, pages, groups: 


Facebook Ireland Ltd.,
4 Grand Canal Square,
Grand Canal Harbor,
Dublin 2, Ireland 

We have an agreement with Facebook for the joint processing of personal data. The link can be found here: 

Privacy Policy:,
Opt-Out: and,
Privacy Shield: 



Google/ YouTube

Google LLC,
1600 Amphitheatre Parkway,
Mountain View,
CA 94043, USA

Privacy Policy:,
Privacy Shield:




Instagram Inc.,
1601 Willow Road,
Menlo Park,
CA, 94025, USA

Privacy Policy/ Opt-Out: 




Twitter Inc.,
1355 Market Street,
Suite 900,
San Francisco,
CA 94103, USA)

Privacy Policy:,
Privacy Shield:




Pinterest Inc.,
635 High Street,
Palo Alto,
CA, 94301, USA

Privacy Policy/ Opt-Out: 




LinkedIn Ireland Unlimited Company
Wilton Place,
Dublin 2, Irland

Privacy Policy ,
Privacy Shield:




Dammtorstraße 29-32,
20354 Hamburg,

Privacy Policy/ Opt-Out: 

14. Integration of services and content of third parties 

Based on our legitimate interests (ie interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 (1) lit. DSGVO), we make use of content or services offered by third-party providers in order to provide their content and services Services, such as Include videos or fonts (collectively referred to as “content”). 

This always presupposes that the third-party providers of this content perceive the IP address of the users, since they could not send the content to their browser without the IP address. The IP address is therefore required for the presentation of this content. We endeavor to use only content whose respective providers use the IP address solely for the delivery of the content. Third parties may also use so-called pixel tags (invisible graphics, also referred to as “web beacons”) for statistical or marketing purposes. The “pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user’s device and may include, but is not limited to, technical information about the browser and operating system, referring web pages, visit time, and other information regarding the use of our online offer. 

Created with by RA Dr Thomas Schwenke 


Google reCAPTCHA 

We use “Google reCAPTCHA” (hereafter “reCAPTCHA”) on our websites. Provider is

Google Inc.,
1600 Amphitheater Parkway,
Mountain View,
CA 94043, USA (“Google”).

With reCAPTCHA we want to check if the data entry on our websites (for example in a contact form) is done by a human or by an automated program. For this, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For analysis, reCAPTCHA evaluates various information (for example, the IP address, the website visitor’s visit time on the website, or user mouse movements). The data collected during the analysis will be forwarded to Google. The reCAPTCHA analyzes are completely in the background. Site visitors are not advised that an analysis is taking place. The data processing is based on Art. 6 para. 1 lit. f DSGVO. The Web site operator has a legitimate interest in protecting its web sites from abusive automated spying and SPAM. For more information about Google reCAPTCHA and the Google Privacy Policy, please visit the following links: and