Your trust is important to us, which is why we take data protection seriously and ensure appropriate security. Of course, we comply with the legal provisions of the Swiss Federal Data Protection Act (DSG), the Ordinance to the Federal Data Protection Act (VDSG), the Telecommunications Act (FMG), and any other applicable data protection regulations under Swiss or EU law, particularly the General Data Protection Regulation (GDPR). In order for you to know which personal data we collect from you and for what purposes we use it, please read the following information.
1. Accessing our website
Our hosting provider uses standard web server logs and collects the following information: • IP address • Browser type and version • Operating system used • Referrer URL • Hostname of the accessing computer • Time of the server request These data are not associated with specific individuals and cannot be evaluated by us in relation to individuals. We do not combine this data with other data sources. We reserve the right to analyze web server log information retroactively if specific indications of illegal activity, abuse, or unusual anomalies related to the use of the website become known to us. This constitutes our legitimate interest in data processing within the meaning of Article 6(1)(f) GDPR. Our hosting provider: Smoobu GmbH, Pappelallee 78/79, 10437 Berlin, Germany
2. Booking via the website, correspondence, or phone call
If you make a booking through our website, via email, or by phone, we require the following information for the contract processing: Title First and last name Postal address Phone number Payment information Email address This data, as well as any additional information you voluntarily provide (e.g., expected arrival time, preferences, comments), will only be used to process the contract, unless otherwise stated in this privacy policy or you have given separate consent. We will process the data to record your booking as desired, provide the booked services, contact you in case of uncertainties or issues, and ensure correct payment. The legal basis for data processing for this purpose is the fulfillment of a contract under Article 6(1)(b) GDPR.
3. Cookies
Cookies help make your visit to our website easier, more pleasant, and more meaningful in many ways. Cookies are information files that your web browser automatically stores on your computer's hard drive when you visit our website.
4. Tracking tools
For the purpose of customizing and continuously optimizing our website, we use the web analytics service Google Analytics. In this context, pseudonymized user profiles are created, and cookies stored on your computer are used. The information generated by the cookie about your use of this website is transferred to the service providers' servers, where it is stored and prepared for us. In addition to the data listed under point 1, we may receive the following information: Navigation path a visitor follows on the website Duration of stay on the website or subpage The subpage from which the website is exited Country, region, or city from where access is made Device (type, version, color depth, resolution, width, and height of the browser window) Whether the visitor is new or returning The information is used to evaluate website use, compile reports on website activity, and provide further services related to website use and internet use for market research and website customization purposes. This information may also be transferred to third parties if required by law or if third parties process this data on our behalf.
5. Data processing to fulfill legal reporting obligations
Before your arrival, we may need the following information from you and your companions, which is collected via an online check-in form: First and last name Residential or business address Nationality Date of birth Email address Phone number Official identification document and number, if applicable Credit card information Signature We collect this information to fulfill legal reporting obligations, which arise in particular from hospitality or police regulations. If required by applicable regulations, we forward this information to the relevant police authority. Our legitimate interest in fulfilling legal requirements lies in Article 6(1)(f) GDPR.
6. Recording additional services
If you use additional services during your stay, the service and the time of service use will be recorded by us for billing purposes. The processing of this data is necessary for the fulfillment of the contract according to Article 6(1)(b) GDPR.
7. Booking platforms
If you make bookings through a third-party platform, we receive various personal information from the respective platform operator. This typically includes the data listed under point 5 of this privacy policy. Additionally, we may receive inquiries related to your booking. We process this data to record your booking as desired and provide the booked services. The legal basis for data processing for this purpose is the fulfillment of a contract under Article 6(1)(b) GDPR.
8. Central storage and linkage of data
We store the data specified in points 2-5 and 8-10 in a central electronic data processing system. Your data will be systematically recorded and linked in this system to process your bookings and fulfill contractual services. For this purpose, we use software from Smoobu GmbH, Pappelallee 78/79, 10437 Berlin. The processing of this data through the software is based on our legitimate interest in customer-friendly and efficient customer data management according to Article 6(1)(f) GDPR.
9. Retention period
We store personal data only as long as necessary to use the above tracking services and for other processing within our legitimate interest. Contractual data is stored for a longer period as required by statutory retention obligations. Retention obligations requiring us to store data arise from regulations related to registration, accounting, and tax law. According to these regulations, business communication, contracts, and booking receipts must be kept for up to 10 years. Once we no longer need this data for providing services, it will be deleted.
10. Disclosure of data to third parties
We only disclose your personal data to third parties if you have expressly consented, if there is a legal obligation, or if it is necessary to enforce our rights, particularly for the enforcement of claims arising from the contractual relationship. Furthermore, we disclose your data to third parties to the extent necessary for the use of the website and contract processing (including outside the website), specifically the processing of your bookings.
11. Right to access, correct, and delete data
You have the right to request information about the personal data we store about you. You also have the right to correct inaccurate data and the right to have your personal data deleted, provided there is no legal retention obligation or an authorization basis that allows us to process the data. Additionally, you have the right to request the data you have provided to us back (right to data portability). Upon request, we will transfer the data to a third party of your choice. You have the right to receive the data in a standard file format. You can contact us for these purposes at simonebucher@gmx.ch. We may require proof of identity at our discretion to process your requests.
12. Data security
We use appropriate technical and organizational security measures to protect your personal data stored with us from manipulation, partial or complete loss, and unauthorized access by third parties. Our security measures are continuously improved in line with technological developments. You should always treat your access data confidentially and close the browser window when you have finished communicating with us, especially if you share the computer with others.
