Data protection

Data protection information for this website and further information on the information obligation pursuant to Article 13 GDPR when collecting personal data from the data subject

Here you can find the information sheet for the direct survey

Privacy policy for this online offer and further information on the information obligation pursuant to Art. 13 GDPR when collecting personal data from the data subject

This privacy statement (Version: DSGVO 1.0 from the 23.05.2018) was created by:

German Data Protection Law Firm Data Protection Office Munich - www.deutsche-datenschutzkanzlei.de

Information on data processing for this website in accordance with Art. 13 of the EU General Data Protection Regulation (GDPR) when collecting personal data from the data subject

(Version: GDPR 2.1 from November 2023)

Timehouse Betreiber GmbH & Co. KG is responsible for this website and, as the provider of a teleservice, must inform you at the beginning of your visit about the type, scope and purpose of the collection and use of personal data in a precise, transparent, comprehensible and easily accessible form in clear and simple language. This content must be available to you at all times.

We attach great importance to the security of your data and compliance with data protection regulations. The processing of personal data is subject to the provisions of the European and national laws currently in force.

With the following data protection information, we would like to show you how we handle your personal data and how you can contact us:

Timehouse betreiber GmbH & co. KG
Leopold road, 204a
80804 München
Germany
Commercial Register No.: 102818
Managing Director: Martin Enax
E-mail: wecare@timehouse.de
Phone: +49 89 23020000

Our data protection officer
Sven Lenz
German data protection law firm - Datenschutzkanzlei Lenz GmbH & Co. KG
Bahnhofstrasse 50
87435 Kempten
Germany

If you have any questions about data protection or other data protection concerns, you are welcome to send an e-mail to the following e-mail address: datenschutz@timehouse.de

A. General

For the sake of clarity, we do not differentiate between the genders. In the interests of equal treatment, the corresponding terms apply to all genders. The meaning of the terms used, such as "personal data" or their "processing", can be found in Art. 4 GDPR.

The personal data processed in the context of this website includes
- Inventory data (e.g. names and addresses of customers),
- Contract data (e.g. services used, payment information),
- usage data (e.g. pages visited on our website) and
- Content data (e.g. entries in online forms).
B. Specific

Data protection information
We guarantee that we will only process your data in connection with the processing of your inquiries and for internal purposes as well as to provide the services or content you have requested.

Basics of data processing
We process your personal data only in compliance with the relevant data protection regulations and on the basis of the following legal bases:

-Processing for the fulfillment of our services and implementation of contractual measures
Art. 6 para. 1 lit. b) GDPR

-Processing to fulfill our legal obligations
Art. 6 para. 1 lit. c) GDPR

-Consent
Art. 6 para. 1 lit. a) and Art. 7 GDPR

-Processing for the protection of our legitimate interests
Art. 6 para. 1 lit. f) GDPR

Data transmission to third parties
We would like to point out that data may be transmitted when you use our website.

We cannot prevent some data transmissions due to the integrated services.
Other services offered are only loaded when you select these services using the "cookie consent tool" provided on the website.

As part of website hosting, the service provider used may have access to your data. We have described which web host we use in this privacy policy.

If we use subcontractors to provide our services, we take appropriate legal precautions and appropriate technical and organizational measures to ensure the protection of personal data in accordance with the relevant legal regulations.

Transfer of data to a third country or an international Organisation
Third countries are countries in which the GDPR is not directly applicable law. This basically includes all countries outside the EU or the European Economic Area.

We would like to point out that data may be transmitted when you use our website.

We cannot prevent some data transmissions due to the integrated services. Other services offered are only loaded when you select these services using the "cookie consent tool" provided on the website.

Since July 2023, there has been an adequacy decision by the EU Commission (Data Privacy Framework), which identifies the USA as a third country with a level of data protection comparable to that of the EU. The adequacy decision can now serve as the basis for data transfers to certified organizations in the USA. Details can be found under the individual services.

Storage period of your personal data
We adhere to the principles of data minimization and data avoidance. This means that we only store your data for as long as is necessary to fulfill the aforementioned purposes or as stipulated by the various storage periods stipulated by law. If the respective purpose no longer applies or after the corresponding periods have expired, your data will be routinely blocked or deleted in accordance with the statutory provisions.

Contact
Personal data is processed when you contact us electronically (e.g. via contact form or email). The information you provide will be stored exclusively for the purpose of processing your request and for possible follow-up questions.

We would like to give you the legal basis for this:
- Processing for the fulfillment of our services and implementation of contractual measures
Art. 6 para. 1 lit. b) GDPR

We would like to point out that e-mails can be read or changed without authorization or detection during transmission. We would also like to draw your attention to the fact that we use software to filter unwanted e-mails (spam filter). The spam filter can reject e-mails if they have been falsely identified as spam due to certain characteristics.
What are your rights?
a) right of access
You have the right to obtain information about your stored data free of charge. Upon request, we will inform you in writing which of your personal data we have stored. This also includes the origin and recipients of your data as well as the purpose of the data processing.

b) right to rectification
You have the right to have your data stored by us corrected if it is incorrect. You can also request a restriction of processing, e.g. if you dispute the accuracy of your personal data.

c) right to revocation
Furthermore, you can have your data blocked. Thus, a blocking of your data can be considered at any time, this data must be kept for control purposes in a lock file.

d) right to Erasure
You can request the deletion of your personal data, provided there are no statutory retention obligations. If such an obligation exists, we will block your data on request. If the relevant legal requirements are met, we will delete your personal data even without your request.

e) right to data portability
You are entitled to ask us for the provision of the personal data transmitted to us in a Format to which the Transfer is to a different place.

f) right to complain with a Supervisory authority
You have the option of lodging a complaint with one of the data protection supervisory authorities.

The data protection authority responsible for us:

Bavarian state office for data protection supervision (BayLDA)
Promenade 27, 91522 Ansbach, Germany
Telephone: +49 981 53-1300
Fax: +49 981 53-981300

You can open the complaint form via the following link: https://www.lda.bayern.de/de/beschwerde.html

Note: It is also possible to lodge a complaint with any data protection supervisory authority within the EU.

g) right to object
You have the right to object at any time, on grounds relating to your particular situation, to the processing of your data in accordance with Article 6(1)(e) and (f); this also applies to profiling based on these provisions.

Timehouse Betreiber GmbH & Co. KG will then no longer process your personal data unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.

Where personal data are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. In the event of such an objection, we will no longer process your personal data for the purposes of direct advertising. All you need to do is send us an email to this effect.

h) Right of withdrawal
You have the option to revoke your consent to the processing of your data at any time with effect for the future without giving reasons. You will not suffer any disadvantages as a result of the revocation. All you need to do is send us an e-mail to this effect.

However, such a revocation does not affect the legality of the processing carried out up to the time of revocation on the legal basis of Art. 6 para. 1 letter a) GDPR.

To assert your rights as a data subject, please send us an e-mail to the following address: daten-schutz@timehouse.de

The protection of your personal data
We take contractual, technical and organizational security measures in accordance with the state of the art to ensure that data protection laws are complied with and to protect the processed data against accidental or intentional manipulation, loss, destruction or access by unauthorized persons.

The security measures include in particular the encrypted transmission of data between your browser and our server. For this purpose, 256-bit SSL (AES 256) encryption technology is used.

Your personal data is protected within the framework of the following (excerpt):
a) maintaining the confidentiality of your personal data
In order to protect the confidentiality of your data stored by us, we have taken various measures to control access.

b) maintaining the integrity of your personal data
In order to protect the integrity of your data stored by us, we have taken various measures to control the transfer and input of data.

c) to maintain the availability of your personal data
In order to ensure the availability of your data stored by us, we have taken various measures for order and availability control.

The security measures in use are continuously improved in line with technological developments. Despite these precautions, we cannot guarantee the security of your data transmission to our website due to the insecure nature of the Internet. Therefore, any data transmission by you is at your own risk.

Protection Of Minors
Persons who have not yet reached the age of 16 may only provide us with personal information if they have the express consent of their legal guardians. This data will be processed in accordance with this privacy policy.

Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are

- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address

This data is not merged with other data sources.

The basis for data processing is our legitimate interest in accordance with Art. 6 para. 1 lit. f) GDPR.

Website hosting
We use the following hoster to host our website and display the page content: www.hetzner.com - Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen.

All data collected on our website is processed on the provider's servers.
We have concluded an order processing contract with the provider, which ensures the protection of the data of our site visitors and prohibits unauthorized disclosure to third parties.

You can find the data protection information from here: https://www.hetzner.com/de/legal/privacy-policy/

Cookies
Cookies are small text files that are stored locally in the cache of your Internet browser. The cookies make it possible, for example, to recognize the Internet browser. The files are used to help the browser to navigate through the website and to make full use of all functions.

Cookie Consent Tool
This website uses the "Cookie Consent Tool" of Cybot A/S, Havnegade 39, 1058 Kopenha-gen, Denmark ("CookieBot") to obtain effective user consent for cookies and cookie-based applications requiring consent,

The "Cookie Consent Tool" is displayed to users when they access a page in the form of an interactive user interface, on which consent for certain cookies and/or cookie-based applications can be granted by ticking a box. By using the tool, all cookies/services requiring consent are only loaded if the respective user gives their consent by ticking the appropriate box. This ensures that such cookies are only set on the user's end device if consent has been granted.

The tool sets technically necessary cookies to save your cookie preferences. Personal user data is not processed in this process.

If, in individual cases, personal data (such as the IP address) is processed for the purpose of storing, assigning or logging cookie settings, this is done in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in legally compliant, user-specific and user-friendly consent management for cookies and thus in a legally compliant design of our website.

Another legal basis for the processing is Art. 6 para. 1 lit. c GDPR. As the controller, we are subject to the legal obligation to make the use of technically unnecessary cookies dependent on the respective user consent.

Further information about the operator and the setting options of the cookie consent tool can be found directly in the corresponding user interface on our website.

Hubspot
This website uses the services of HubSpot, a software-based marketing service provided by HubSpot Ire-land Ltd, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland.

With the help of Hubspot, various customer service and customer management services can be digitally synchronized and processed via a central user interface. HubSpot enables the generation of leads, centralized e-mail and newsletter marketing, contact management in the form of user segmentation and CRM and the management of contact forms.

To perform the various functions, HubSpot uses cookies, small text files that are stored locally in the cache of your web browser on your end device and enable us to analyze your use of the website. The cookies collect certain information such as the IP address, the location, the time of the page view, etc. Information collected by HubSpot is stored on HubSpot servers and analyzed on our behalf.

All of the processing described above will only take place if you have given us your express consent in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 para. 1 TTDSG have given your express consent. You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service using the "cookie consent tool" provided on the website.

Data may be transferred to a third country (in this case the USA) or an international organization. Since July 2023, there has been an adequacy decision by the EU Commission (Data Privacy Framework), which identifies the USA as a third country with a level of data protection comparable to that of the EU. The adequacy decision can now serve as the basis for data transfers to certified organizations in the USA. According to the list of certified companies published by the US Department of Commerce, Google LLC is listed as a certified company.

We have concluded an order processing contract with HubSpot in which we oblige HubSpot to protect our customers' data and not to pass it on to third parties.

You can find more information about Hubspot's privacy policy at the following Internet address: https://legal.hubspot.com/de/datenschutz

Google Analytics 4 (with cookies, without UserIDs, without Google Signals)
We use Google Analytics 4 on our website, a service provided by Google Ireland Limi-ted, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). This allows us to analyze user behavior on our website.

Through the use of Google Analytics 4, so-called "cookies" are used by default. Cookies are text files that are stored on your end device and enable your use of a website to be analyzed. The information collected by cookies about your use of the website (including the IP address transmitted by your device, shortened by the last digits, see below) is usually transmitted to a Google server, where it is stored and processed. This also involves the transmission of information to the servers of Google LLC, based in the USA, where the information and data collected is processed further for Google's own purposes. For the transfer of your data to the USA, we obtain separate consent in accordance with Art. 49 para. 1 lit. a) GDPR and also point out the special risk, as the data protection rights in the context of a transfer of data to the USA are not guaranteed.

When using Google Analytics 4, the IP address transmitted by your end device when you use the website is automatically shortened by the last digits by default and only collected and processed in this way.

Google uses this and other information on our behalf to evaluate your use of the website, to compile reports on your website activity and usage behavior and to provide us with other services relating to your use of the website and the Internet. The data collected as part of the use of Google Analytics 4 is stored for two months and then deleted.

Google Analytics 4 also enables the creation of statistics with statements about the age, gender and interests of website users on the basis of an evaluation of interest-based advertising and with the use of third-party information via a special function, the so-called “demographic characteristics”. This makes it possible to determine and differentiate between user groups of the website for the purpose of target group-optimized marketing measures. However, data collected via the “demographic characteristics” cannot be assigned to a specific person and therefore not to you personally. This data collected via the “demographic characteristics” function is stored for two months and then deleted.

All processing described above, in particular the setting of Google Analytics cookies for the storage and reading of information on the terminal device used by you for the use of the website, will only take place if you have given us your express consent to do so in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 para. 1 TTDSG have given your express consent. Without your consent, Google Analytics 4 will not be used during your use of the website. You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service using the "cookie consent tool" provided on the website.

We have concluded a so-called data processing agreement with Google for our use of Google Analytics 4.

Data is transferred to a third country (in this case the USA) or an international organization. Since July 2023, there has been an adequacy decision by the EU Commission (Data Privacy Framework), which identifies the USA as a third country with a level of data protection comparable to that of the EU. The adequacy decision can now serve as the basis for data transfers to certified organizations in the USA. According to the list of certified companies published by the US Department of Commerce, Google LLC is listed as a certified company.

Further legal information on Google Analytics 4, including a copy of the aforementioned standard contractual clauses, can be found at https://policies.google.com/privacy?hl=de&gl=de and at https://policies.google.com/technologies/partner-sites

Matterport
This website uses the service of Matterport Inc, 362 E Java Dr, Sunnyvale, CA 94089 in connection with the 3D view function on the website.

To fulfill the various functions, Matterport uses cookies, small text files that are stored locally in the cache of your web browser on your end device.

Where legally required, we have obtained your consent to the processing of your data as described above in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 TTDSG obtained.

You can revoke your consent at any time with effect for the future. To exercise your revocation, deactivate this service in the "cookie consent tool" provided on the website.

You can find further information on data protection at Matterport here: https://matterport.com/de/privacy-policy

Online booking system
We use the Busy Rooms GmbH tool on the website for bookings
Kallenberg 25, 42929 Wermelskirchen. By clicking on the corresponding button, you will be forwarded directly to another page of the system. You can then make your booking here.

We have concluded an order processing contract with Busy Rooms GmbH.

You can find further information on data protection at Busy Rooms here: https://www.busy-rooms.com/de/datenschutz

Tripadvisor
We have integrated the Tripadvisor LLC, 400 1st Ave-nue, Needham MA 02494, USA travel platform service on the website.

This service sets a cookie to enable the visitor to view embedded content from Tripadvisor, such as advertisements. This cookie is also used to determine whether visitors click on the advertisements in order to receive payments from Tripadvisor.

Where legally required, we have obtained your consent to the processing of your data as described above in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 TTDSG obtained.

You can revoke your consent at any time with effect for the future. To exercise your revocation, deactivate this service in the "cookie consent tool" provided on the website.

In this context, there may also be a transfer to Tripadvisor LLC. servers in the USA.

Further information on Tripadvisor's data protection can be found here https://tripadvisor.mediaroom.com/DE-privacy-policy

Expedia
We have integrated the service of the travel platform Expedia, Expedia, Inc, 111 Expedia Group Way West, Seattle, WA 98119, USA on the website.

This service defines a unique ID for the session. This allows Expedia to obtain data about visitor behavior for statistical purposes.

Where legally required, we have obtained your consent to the processing of your data as described above in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 TTDSG obtained.

You can revoke your consent at any time with effect for the future. To exercise your revocation, deactivate this service in the "cookie consent tool" provided on the website.

In this context, there may also be a transfer to Expedia, Inc. servers in the USA.

Since July 2023, there has been an adequacy decision by the EU Commission (Data Privacy Framework), which identifies the USA as a third country with a level of data protection comparable to that of the EU. The adequacy decision can now serve as the basis for data transfers to certified organizations in the USA. According to the list of certified companies published by the US Department of Commerce, the Expedia Group is listed as a certified company.

Further information on Expedia's data protection can be found here: https://www.expedia.de/lp/b/privacy

LinkedIn Insight
This website uses retargeting technology from the following provider: LinkedIn Ireland Unlimited Com-pany, Wilton Place, Dublin 2, Ireland

This makes it possible to target visitors to our website with personalized, interest-based advertising who have already shown an interest in our store and our products. The advertising material is displayed on the basis of a cookie-based analysis of previous and current user behavior, but no personal data is stored. In the case of retargeting technology, a cookie is stored on your computer or mobile device in order to collect pseudonymized data about your interests and thus adapt the advertising individually to the stored information. These cookies are small text files that are stored on your computer or mobile device. They are used to display advertising that is highly likely to match your product and information interests.

All processing described above, in particular the setting of cookies for reading information on the terminal device used, will only be carried out if you have given us your express consent in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 TTDSG have given us your express consent to do so. Without this declaration of consent, retargeting technology will not be used during your visit to our website.

You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the "cookie consent tool" provided on the website.

LinkedIn Marketing Solutions
This website uses retargeting technology from the following provider: LinkedIn Ireland Unlimited Com-pany, Wilton Plaza, Wilton Place, Dublín 2, Ireland

You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the "cookie consent tool" provided on the website.

Facebook pixel for the creation of custom audiences
Within our online offering, we use the "Facebook Pixel" service of the following provider: Meta Platforms Ireland Limited, 4 Grand Canal Quare, Dublin 2, Ireland ("Facebook")

If a user clicks on an advertisement placed by us on Facebook, a parameter is added to the URL of our linked page with the help of "Facebook Pixel". This URL parameter is then entered into the user's browser after redirection by a cookie that our linked page sets itself.

On the one hand, this enables Facebook to determine the visitors to our online offering as a target group for the display of ads (so-called "Facebook ads"). Accordingly, we use the service to display the Facebook ads placed by us only to those Facebook users who have also shown an interest in our online offer or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited), which we transmit to Facebook (so-called "Custom Audiences").

On the other hand, "Facebook Pixel" can be used to track whether users have been redirected to our website after clicking on a Facebook ad and what actions they take there (so-called "conversion tracking").

The data collected is anonymous for us, so it does not allow us to draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes.

All processing described above, in particular the setting of cookies for reading information on the terminal device used, will only be carried out if you have given us your express consent in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 TTDSG have given your express consent to this. You can revoke your consent at any time with effect for the future by deactivating this service in the "cookie consent tool" provided on the website.

The information generated by Facebook is usually transmitted to a Facebook server and stored there; in this context, it may also be transmitted to Meta Platforms Inc. servers in the USA.

Since July 2023, there has been an adequacy decision by the EU Commission (Data Privacy Framework), which identifies the USA as a third country with a level of data protection comparable to that of the EU. The adequacy decision can now serve as the basis for data transfers to certified organizations in the USA. According to the list of certified companies published by the US Department of Commerce, Meta Platforms, Inc. is listed as a certified company.

Google Ads Remarketing
This website uses retargeting technology from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

For this purpose, Google sets a cookie in the browser of your end device, which automatically enables interest-based advertising by means of a pseudonymous cookie ID and on the basis of the pages you visit. Any further data processing will only take place if you have consented to Google linking your Internet and app browsing history to your Google account and using information from your Google account to personalize ads that you view on the web. In this case, if you are logged in to Google while visiting our website, Google will use your data together with Google Analytics data to create and define target group lists for cross-device remarketing. For this purpose, Google temporarily links your personal data with Google Analytics data to create target groups. As part of the use of Google Ads Remarketing, personal data may also be transmitted to the servers of Google LLC. in the USA.

Since July 2023, there has been an adequacy decision by the EU Commission (Data Privacy Framework), which identifies the USA as a third country with a level of data protection comparable to that of the EU. The adequacy decision can now serve as the basis for data transfers to certified organizations in the USA. According to the list of certified companies published by the US Department of Commerce, Google LLC is listed as a certified company.

All processing described above, in particular the setting of cookies for reading information on the terminal device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6 para. 1 lit. a GDPR. Without this consent, retargeting technology will not be used during your visit to our website.

You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the "cookie consent tool" provided on the website.

Use of videos from YouTube
We use the YouTube implementation function to display and play videos from the provider "YouTube", which belongs to Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google").

According to information from "YouTube", these cookies are used, among other things, to record video statistics, improve user-friendliness and prevent abusive behavior. If you are logged in to Google, your data will be assigned directly to your account when you click on a video. If you do not wish to be associated with your YouTube profile, you must log out before activating the button.

Where legally required, we have obtained your consent to the processing of your data as described above in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 TTDSG obtained.

You can revoke your consent at any time with effect for the future. To exercise your revocation, deactivate this service in the "cookie consent tool" provided on the website.

Google stores your data (even for users who are not logged in) as user profiles and analyzes them. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right. Regardless of whether the embedded videos are played, a connection to the Google network is established each time this website is accessed, which may trigger further data processing operations without our influence. Further information on data protection at "Y-ouTube" can be found in the provider's privacy policy at: https://www.google.de/intl/de/policies/privacy

Use of Google Maps
We use Google Maps (API) from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google") on this website. Google Maps is a web service for displaying interactive map material. Using this service will show you our location and make it easier for you to find us.

To the extent required by law, we have obtained your consent to the processing of your data as described above in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with § 25 TTDSG.

Google stores your data (even for users who are not logged in) as user profiles and analyzes them. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. If you do not agree to the future transmission of your data to Google in the context of the use of Google Maps, you also have the option of completely deactivating the Google Maps web service by switching off the JavaScript application in your browser. Google Maps and thus also the map display on this website can then not be used.

You can view Google's terms of use at:
https://www.google.de/intl/de/policies/terms/regional.html
The additional terms of use for Google Maps can be found at:
https://www.google.com/intl/de_US/help/terms_maps.html

Detailed information on data protection in connection with the use of Google Maps can be found on the Google website ("Google Privacy Policy"): https://www.google.de/intl/de/policies/privacy

Whatsapp
We offer the option of contacting us via the WhatsApp messaging service provided by WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

If you contact us via WhatsApp on the occasion of a specific transaction (e.g. an order placed), we will store and use the mobile phone number you use on WhatsApp and - if provided - your first and last name in accordance with Art. 6 para. 1 lit. b. GDPR to process your request. GDPR to process and respond to your request. On the same legal basis, we may ask you to provide further data (order number, customer number, address or e-mail address) via WhatsApp in order to be able to assign your request to a specific process.

If you use our WhatsApp contact for general inquiries (e.g. about our range of services, availability or our website), we store and use the mobile phone number you use on WhatsApp and - if provided - your first and last name in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in the efficient and timely provision of the requested information. Your data will only ever be used to respond to your request via WhatsApp. Your data will not be passed on to third parties.

The purpose and scope of the data collection and the further processing and use of the data by WhatsApp as well as your rights in this regard and setting options for protecting your privacy can be found in WhatsApp's data protection information: https://www.whatsapp.com/legal/?eea=1#privacy-policy

Social networks
In addition to this online offer, we also maintain presences in various social media, which you can reach via corresponding buttons on our website. When you visit such a presence, personal data may be transmitted to the provider of the social network. It is possible that, in addition to the storage of the specific data you enter in this social medium, further information may also be processed by the provider of the social network.

Further information can be found in our data protection information Social Media

Passing on of personal data for order processing

Payment by credit card: If you select payment by credit card, the payment details you enter and the necessary data (name, credit card number, etc.) will be transmitted to the relevant provider.

When paying via PayPal, credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" via PayPal, we pass on the payment data to PayPal (Eu-rope) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal"), as part of the payment processing. PayPal reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" via PayPal. PayPal uses the result of the credit check with regard to the statistical probability of non-payment for the purpose of deciding on the provision of the respective payment method. The credit report may contain probability values (so-called score values). If score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Among other things, address data is included in the calculation of the score values. Further data protection information, including information on the credit agencies used, can be found in PayPal's privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full

When paying via SOFORT, we receive the transfer credit immediately. You provide SOFORT GmbH (Sofort GmbH, Theresienhöhe 12, 80339 Munich, Germany) with your IBAN or account number, bank routing number, PIN and TAN via the secure payment form, which is not accessible to us. SOFORT GmbH automatically enters a transfer in your online bank account in real time. The purchase amount due will be transferred immediately and directly to our bank account. If you select the "Sofortüberweisung" payment method, a pre-filled form containing our bank details will open at the end of the order process. In addition, the transfer amount due and the reason for payment are entered. You must enter the country in which the online banking account is located and the bank sort code in the form. To execute the instant transfer, you must enter the account number and PIN for logging into the online banking account and confirm this by entering the TAN. The transaction is confirmed immediately. In principle, any user can choose instant bank transfer as a payment method if they have an activated online banking account with PIN/TAN procedure. Please note that Sofortüberweisung is not yet available at some banks. Further information can be found on the provider's website: https://www.klarna.com/sofort

When paying via "giropay", payment is processed by giropay GmbH, An der Welle 4, 60322 Frankfurt/Main, to whom we pass on the information you provided during the ordering process, along with information about your order. Your data will be passed on in accordance with Art. 6 para. 1 lit. b GDPR exclusively for the purpose of payment processing and only to the extent that it is necessary for this purpose. You can find more information about giropay GmbH's privacy policy at the following Internet address: https://www.giropay.de/rechtliches/datenschutzerklaerung

If you choose the paydirekt payment method, the payment will be processed by the payment service provider paydirekt GmbH, Hamburger Allee 26-28, 60486 Frankfurt am Main. Your payment data (e.g. payment amount, details of the payee) and your confirmation that the payment data is correct will be collected, processed and transmitted to your bank by paydirekt GmbH to carry out the paydirekt payment in accordance with Art. 6 para. 1 lit. b GDPR. This processing only takes place insofar as it is actually necessary for the execution of the payment. paydirekt GmbH then authenticates the payment using the authentication procedure stored for you at your bank. Further information about the transfer and processing of your data can be found in the paydirekt data protection declaration, which you can view at the following link: https://www.paydirekt.de/agb/index.html.

Changes to our privacy policy
We reserve the right to adapt our data protection information at short notice so that it always complies with current legal requirements or to implement changes to our services. This may concern, for example, the introduction of new services. The new data protection information will then apply to your next visit.

Data protection

Book your exclusive stay!

Legal

Contact

Connect with Us