Privacy Policy

Privacy Policy

for the website attimo-hotel.de / attimo-hotel.com as well as the attimo app

We appreciate your interest in our website attimo-hotel.de / attimo-hotel.com (in the following “Website”) and in our application software for mobile devices, the attimo App (hereinafter “App”). The website and the app are published by H.W.A.C. Hotelmanagement GmbH (hereinafter referred to as “attimo”) and offers you as a user (in the following “username”) the opportunity to inform yourself about the room offers, to book with interest and vacancy and to contact us with inquiries.

The processing of personal data is always carried out in accordance with the General Data Protection Regulation and in accordance with the regulations of H.W.A.C. Hotelmanagement GmbH applicable country-specific privacy policy. Through this privacy policy, our company seeks to inform the public about the nature, scope and purpose of the personal information we collect, use and process. Furthermore, affected persons will be informed of their rights under this privacy policy. For this reason, every person concerned is free to submit personal data to us in alternative ways, for example by telephone.

Below we would like to inform you as a user of our website or our app about the handling of your data and to give you an overview of the measures we have taken to protect personal data. Any consent given may be revoked at any time with effect for the future. If you have any questions regarding the use of your personal information by us, please contact us.

As changes in the law or changes in our internal processes may necessitate an adjustment to this privacy policy, we request that you review this privacy statement periodically. The privacy policy can be accessed, saved and printed at any time

1. Responsible and Scope

The person responsible within the meaning of the EU General Data Protection Regulation (DSGVO) and other national data protection laws of the member states as well as other data protection regulations is:

H.W.A.C. Hotelmanagement GmbH
Wildunger Straße 5
D-70372 Stuttgart

Tel: 0711 / 2596200
Fax: 0711 / 259620-200
Internet: www.attimo-hotel.de / www.attimo-hotel.com
E-Mail: info@stuttgart-hotel.de

 

2. Principles of data processing

Personal data is any information that relates to an identified or identifiable natural person. These include, for example, information such as your name, age, address, phone number, date of birth, e-mail address, IP address or user behaviour. Information in which we cannot (or only with disproportionate effort make) relate to your person, e.g. by anonymizing the information, are not personal information. The processing of personal data (such as collecting, querying, using, storing or transmitting) always requires a legal basis or your consent. Processed personal data will be deleted as soon as the purpose of the processing has been achieved and no legally required retention requirements have to be maintained.
If we process your personal data for the provision of certain offers, we will inform you below about the specific transactions, the scope and purpose of the data processing, the legal basis for the processing and the respective retention period.

3. Individual processing operations
a. Type and scope of data processing

When calling and using our website, we collect the personal data that your browser automatically transmits to our server. This information is temporarily stored in a so-called log file. When you use our website, we collect the following information that is technically necessary for us to display our website and to ensure its stability and safety:
Every time a user accesses the website or the app and every time a file is accessed, access data about this process is stored in a log file on our server. These are:

  • Browser type / version
  • used operating system
  • Referrer URL (the previously visited page)
  • Host name of the accessing computer (IP address)
  • Time and date of the server request
  • Transferred amount of data and access status (file transfer, file not found etc.).

From this data, pseudonymised internal statistics are generated, which help us to analyze the use of the website, to fix errors and to improve our services. Any further personal use will not take place. In particular, no merging of this data with other data sources is undertaken. These data are automatically deleted after the statistical evaluation. You can prevent the use of your pseudonymous data for statistical purposes at any time by preventing the storage of cookies by a corresponding setting of your browser software (see Section 5).

b. Legal basis

Art. 6 para. 1 lit. f DSGVO as legal basis. The processing of the aforementioned data is necessary for the provision of a website and thus serves to safeguard the legitimate interests of our company. In addition, attimo basically only collects and uses personal data that the user transmits when using the website or the app, for example when booking a room or requesting via the contact form on the website.
When booking, the full name, address, e-mail address is required. These data are required for the processing of the booking. This may require additional information, such as telephone number, company name, tax code, bank account details or credit card information.

c. Storage duration and data deletion
As soon as the mentioned data for the display of the web page are no longer necessary, they are deleted. The collection of data for the provision of the website and the storage of the data in log files is essential for the operation of the website. There is consequently no contradiction on the part of the user. Further storage may be made in individual cases if required by law.

d. minor Persons under the age of 18
should not submit any personal data to us without the consent of their parents or guardians. We do not solicit personal information from children and adolescents, do not collect them and do not share them with third parties.

4. E-mail dispatch
a. Evaluation e-mail during or after the stay

During or after staying at the attimo Hotel Stuttgart, customers will receive an e-mail asking them to rate the stay and to suggest improvements.
For the purpose of using this e-mail address, Art. 6 para. 1 lit. f DSGVO as legal basis. The processing of the e-mail address as well as the obtaining of ratings are necessary for the guarantee of the hotel quality as well as the optimization of the hotel services and thus serve the preservation of a legitimate interest of our company. Additional purposes will not be tracked with this review email.
As soon as the mentioned data (e-mail address and rating) are no longer required for the mentioned optimization purposes, they will be deleted immediately.

5. Editing and deletion

attimo may, at its own initiative or at the request of the user, complete, correct or delete incomplete, incorrect or outdated personal data stored by attimo in connection with the operation of this website. If these processes take place at the request of the user, attimo can only do this if the user has sufficiently authenticated himself. Authentication can be based on a copy of a Photo identification done, which is of course deleted immediately after adjustment, or on the basis of features that can only be known to the user. Without authentication attimo cannot comply with the wishes of the user. Within the scope of the statutory provisions, attimo immediately deletes personal data at the instigation of the entitled party, provided that the non-mandatory statutory retention requirements are opposed.

6. Disclosure of personal data to third parties

a. The personal data will be treated confidentially and in compliance with the legal data protection regulations. The data will not be disclosed to third parties without the permission of the user, unless this is necessary for the execution of the orders, for the processing of payments or for the processing of inquiries or according to the legal regulations. The external service providers are required to treat the data confidentially and securely and may only use this data to the extent necessary to fulfil their task.

b. Incidentally, personal data will only be disclosed if the user has previously expressly consented or if this is necessary for the prosecution of criminal offenses. A transmission to authorities or state institutions with information right only takes place, if this is subject to a legal obligation to provide information or judicially. Your legitimate concerns will be taken into account in accordance with the legal data protection provisions. Where appropriate, we may be required by law to disclose your information to third parties. Such demand can only be met as far as necessary in the context of the legal obligation.

c. Any consent given by you to the forwarding of the data can be revoked at any time and without stating reasons to us.

7. Protection of the data

The protection of personal data is an important corporate principle at attimo. This will u. a. achieved through training and the written commitment of all employees and external service providers to data privacy and compliance with data protection requirements. All technical and organizational, physical and logical facilities and measures in the area of ​​data protection, IT and information security serve to protect against damage, destruction and unauthorized access to stored data and to achieve the confidentiality, availability and integrity protection goals. The personal data is collected for security using an encrypted “Secure Socket Layer” (SSL) connection (identified at the beginning of the Internet address with “https: //” at the top of the address bar of the Internet browser). In addition, attimo endeavours to take reasonable measures to prevent unauthorized access to, and unauthorized use or falsification of, personal data, as well as minimize the risks involved. The provision of personal information, whether it be in person, by telephone or over the Internet. However, there are always risks involved, and no technological system is completely unaffected by manipulation or sabotage.

8. Use of cookies

attimo uses so-called “cookies”, ie text files, or so-called “web beacons”, ie graphics files that are stored on the user’s display device. These are technologies that can be used to collect certain user-specific settings and technical information that can be used to identify the user. This information shows when and how users use the site and enable them to continually improve it. The use of cookies offers the user the advantage that he does not have to repeatedly enter his personal data when filling in forms on the website. The use of cookies is common and common practice on many websites. Cookies are stored on the user’s display device and not on the website.

At the beginning of the use of the website or app by attimo, users are informed about the use of cookies. attimo uses cookies only to read information in the memory of the user’s display device that has been stored there by a cookie from that page. By using the Website without making any settings in its browser, the user agrees to the use of cookies as set forth in this Privacy Policy. If the user does not want to store cookies on his display device, wants to delete a stored cookie or wants to be notified of their storage, he can set his browser or display device accordingly.

How to do this in detail can be found in the help for the browser or the display device. The legal basis for the processing of personal data using cookies is set out in Article 6 (1) lit. f DSGVO. If you have given us your consent to the use of cookies on the basis of a notice given by us on the website (“cookie banner”), the legality of the use is additionally governed by Art. 6 para. 1 sentence 1 lit. a GDPR.

Most browsers are pre-set to accept cookies by default. However, you can configure your browser to accept only certain or no cookies at all. We point out, however, that you may not be able to use all functions of our website if cookies are deactivated by your browser settings on our website. Using your browser settings, you can also delete cookies already stored in your browser or display the storage duration. It is also possible to set your browser to notify you before cookies are stored. Since the different browsers may differ in their respective functions, we ask that you use the respective help menu of your browser for the configuration options.
If you would like a comprehensive overview of all third-party access to your Internet browser, we recommend the installation of specially developed plug-ins.

9. Tracking and analysis tools

We use tracking and analysis tools to ensure continuous optimization and tailor-made design of our website. With the help of tracking measures, it is also possible for us to statistically record the use of our website by visitors and to further develop our online offer with the help of the insights gained thereby. Due to these interests, the use of the tracking and analysis tools described below in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO justified. The following description of the tracking and analysis tools also includes the respective processing purposes and the processed data.

a. Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files that are stored on your display device and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. On this website Google Analytics has been extended by the code “gat._anonymizeIp ();” in order to ensure an anonymized collection of IP addresses. As a result, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there.

On behalf of attimo, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The shortened IP address provided by Google Analytics as part of Google Analytics will not be merged with other Google data. You can prevent the storage of cookies by a corresponding setting of your browser software; however, we point out that in this case you may not be able to use all functions to the full extent.
In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website or app (including your IP address) and the processing of this data by Google using the browser available at the following link Download and install the add-on http://tools.google.com/dlpage/gaoptout?hl=en
As an alternative to this browser add-on, if you use mobile display devices, you can prevent the collection by Google Analytics by clicking on the following link. An opt-out cookie is set which prevents the future collection of your data when visiting this website:
More information about Google Analytics can be found here:
http://www.google.com/intl/de/policies/privacy/partners/

Social Plugins

10. Social Plugins

On our website we use the following plugins from Facebook and Twitter.
a. Facebook Social Plugins
The website contains “social plugins” (“plugins”) of the social network www.facebook.com, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”) , The plugins are marked with a Facebook logo or the addition “Facebook Social Plugin” (http://developers.
facebook.com/plugins). The website contains plugins that allow the user’s browser to connect directly to the Facebook servers as soon as the user visits the website. The contents of the plugins are transmitted by Facebook directly to the user’s browser and integrated by the user into the website. attimo has no influence on the amount of data Facebook collects with the help of these plugins.
By integrating the plugins, Facebook receives the information that the user has accessed the corresponding website. If the user is logged in to Facebook, Facebook can assign the visit to his Facebook account. If the user presses the “Like” button or makes a comment, the corresponding information is transmitted from his browser directly to Facebook and stored there.

According to its own information (https://www.facebook.com/help/186325668085084) Facebook stores the date and time of the visit to the site, the website visited and other technical data such as IP address and browser-related data to the services of Facebook continue to optimize. The purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as the related rights and setting options for the protection of privacy can be found in the Facebook privacy policy (https://www.facebook.com/about/privacy/).

If the user is a member of Facebook and does not want Facebook to collect data about him via attimo and associate it with his member data stored on Facebook, the user must log out of Facebook before visiting the website. However, even if the user is not logged in to Facebook, there is still the possibility that Facebook will learn and store certain data.

If the user wants to block the Facebook social plugins in general, he can install and activate a suitable extension for his browser, for example with the “Facebook Blocker” (http://webgraph
.com/resources/facebookblocker/).

b. Instagram Social Plugins

Our website uses so-called social plugins (“plugins”) operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA (“Instagram”). The plugins are marked with an Instagram logo, for example in the form of an “Instagram camera”. When the user visits a page on our website that contains such a plugin, the browser connects directly to Instagram’s servers. The content of the plugin is transmitted by Instagram directly to the user browser and integrated into the page. Through this integration, Instagram receives the information that the browser has accessed the corresponding page of our website, even if you do not have an Instagram profile or are currently not logged in to Instagram. This information (including your IP address) is transmitted by the browser directly to an Instagram server in the US and stored there. Is the If you’re logged in to Instagram, Instagram can instantly associate your visit to our website with the user’s Instagram account. If the user interacts with the plugins, for example, pressing the “Instagram” button, this information is also transmitted directly to an Instagram server and stored there. The information will also be posted on your Instagram account and displayed there to the user’s contacts. attimo has no control over the amount of data Instagram collects using these plugins.

The purpose and scope of the data collection and the further processing and use of the data by Instagram as well as related rights and setting options of the user to protect privacy, the user can be found in the privacy policy of Instagram: https://help.instagram.com/155833707900388/. If the user does not want Instagram to directly map the data collected via our website into the Instagram account, the user must log out of Instagram before visiting our website. The user can completely prevent the loading of Instagram plugins even with add-ons for your browser, eg. With the script blocker “NoScript” (http://noscript.net/).

c. Twitter Buttons

On the website is still the possibility, contributions, etc. to post via Twitter. This service and plug-ins are configured by Twitter, Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107. The tweet button allows the user to share blog posts via Twitter. The button also shows the number of tweets for a blog post.
When building the website, the code of the tweet button is queried directly from a server of Twitter through the browser of the user and integrated into the website. attimo therefore has no influence on the amount of data retrieved by Twitter.

According to its own information https:/twitter.com/privacy Twitter stores the transmitted message of the tweet and its metadata. These include according to the estimation of the operator: date and time of the tweet, the concrete possibly abbreviated Internet address on which the Tweet Button is located, and other technical data such as the IP address, the browser type, the operating system. Twitter does not communicate how long the information is stored. More information from Twitter can be found here https://twitter.com/privacy

11. Privacy Policy for Use and Use of YouTube

The controller has integrated YouTube components on this website. YouTube is an internet video portal that allows video publishers to freely watch video clips and other users for free viewing, rating and commenting. YouTube allows the publication of all types of videos, so that both complete film and television broadcasts, but also music videos, trailers or user-made videos via the Internet portal are available. YouTube’s operating company is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. The YouTube, LLC is one Subsidiary of Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA. Each visit to one of the pages of this site operated by the controller and incorporating a YouTube component (YouTube video) will automatically cause the Internet browser on the subject’s information technology system to be represented by the respective YouTube component to download an illustration of the corresponding YouTube component from YouTube. More information about YouTube can be found at https://www.youtube.com/yt/about/en/. As part of this technical process, YouTube and Google are aware of the specific bottom of our site visited by the person concerned. If the data subject is logged in to YouTube at the same time, YouTube recognizes by calling a sub-page containing a YouTube video, which specific bottom of our website the affected person visits. This information is collected by YouTube and Google and associated with the individual YouTube account. YouTube and Google will always receive information through the YouTube component that the data subject has visited

our website if the data subject is simultaneously logged into YouTube at the time of access to our website; this happens regardless of whether the person clicks on a YouTube video or not. If such transmission of this information to YouTube and Google is not wanted by the data subject, it can prevent the transmission by logging out of their YouTube account before calling our website. YouTube’s privacy policy, available at https://www. google.com/intl/en/policies/privacy/, identifies the collection, processing, and use of personally identifiable information by YouTube and Google.
12. Google Maps
This site uses the mapping service Google Maps via an API. Provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
To use the features of Google Maps, it is necessary to save your IP address. This information is usually transmitted to and stored on a Google server in the United States. The provider of this site has no influence on this data transfer.

The use of Google Maps is in the interest of an attractive presentation of our online offers and an easy findability of the places we have indicated on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
For more information on how to handle user data, please refer to Google’s Privacy Policy: https://www.google.com/intl/en/policies/privacy/.

12. Google Maps

This site uses the mapping service Google Maps via an API. Provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
To use the features of Google Maps, it is necessary to save your IP address. This information is usually transmitted to and stored on a Google server in the United States. The provider of this site has no influence on this data transfer.

The use of Google Maps is in the interest of an attractive presentation of our online offers and an easy findability of the places we have indicated on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
For more information on how to handle user data, please refer to Google’s Privacy Policy: https://www.google.com/intl/en/policies/privacy/.

13. Tawk.to (SMS SIA)

This website uses SMS SIA, Tirgonu iela, 6, Riga, Latvia, LV1050, (www.tawk.to) technologies for the purposes of web analytics and for running the live chat system to answer live support. Inquiries collected and saved. From this anonymous data can under a pseudonym
Usage profiles are created. Cookies can be used. Cookies are small text files stored locally in the cache of the site visitor’s Internet browser get saved. Cookies enable recognition of the Internet browser. If the information collected in this way has a personal reference, the processing will be carried out in accordance with Art. 6 para. 1 lit. f DSGVO based on our legitimate interest in effective customer care and the statistical analysis of user behaviour for optimization purposes.

The data collected with the tawk.to technologies will not be used to personally identify the visitor to this website and will not be merged with personal data about the bearer of the pseudonym without the specific consent of the person concerned. In order to avoid the storage of tawk.to cookies, you can set your Internet browser so that in the future no more cookies can be stored on your computer or already stored cookies are deleted.
However, switching off all cookies may mean that some functions on our website can no longer be executed. You can object to the collection and storage of data for the purpose of creating a pseudonymised user profile at any time with effect for the future, by sending us your objection informally by e-mail to the e-mail address stated in the imprint.

14. QR – Quality Reservation Booking Engine (IBE)

Using the online booking tool IBE
Our online presence uses the online booking tool IBE (hereinafter referred to as “QR”) of the company Quality Reservations Deutschland GmbH, Ostpassage 11, D-30853 Langenhagen, Germany (www.qr-hotels.com) to facilitate online bookings of accommodation services and other travel services as well as to process inquiries. , You will find the notices and provisions on data protection in the privacy policy of the QR, which you can access at any time from the website or at www.qr-hotels.com/datenschutz.

15. Links to other websites

The website may occasionally contain links (interactive links) to websites of third parties for which attimo is not responsible. attimo has no influence whatsoever on the content and design of the linked external pages or websites that the user accesses via these links. The content and design of these websites as well as compliance with data protection regulations are the sole responsibility of the respective providers.

16. Affected rights

From DSGVO the following rights arise for you as the person concerned in the processing of personal data:
• Pursuant to Art. 15 GDPR, you may request information about your personal data processed by us. In particular, they may contain information on the processing purposes, the categories of personal data, the categories of recipients to whom your data has been disclosed, the planned retention period, the right of rectification, erasure, restriction of access rights Processing or opposition, the existence of a right of appeal, the origin of their data, if not collected from us, via a transfer to third countries or to international organizations and through the existence of automated decision-making including profiling and, where appropriate, meaningful information on their details.

• Pursuant to Art. 16 GDPR, you can immediately request the correction of incorrect or completed personal data stored by us.
• Pursuant to Art. 17 GDPR, you may request the deletion of your personal data stored with us, insofar as the processing is not for the exercise of the right to freedom of expression and information, for the fulfilment of a legal obligation, for reasons of public interest or for assertion, exercise or defence of legal claims is required.
• According to Art. 18 GDPR you can demand the restriction of the processing of your personal data, as far as the accuracy of the data is disputed by you, the processing is unlawful, we no longer require the data and you refuse their deletion, because you assert these, Exercise or defence of legal claims. You are also entitled to the right under Art. 18 GDPR if you object to the processing pursuant to Art. 21 GDPR.
• According to Art. 20 GDPR, you may request to receive your personal data provided to us in a structured, common and machine-readable format or you may request the transfer to another person in charge.
• Pursuant to Art. 7 (3) GDPR, you can revoke your once given consent to us at any time. As a result, we are not allowed to continue the data processing based on this consent for the future.
• According to Art. 77 GDPR, you have the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence, your workplace or our company headquarters.

17. Right to object

When processing your personal data on the basis of legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO, you have the right to object to the processing of your personal data in accordance with Art. 21 DSGVO, provided that there are reasons for this arising from your particular situation or the objection is directed against direct mail. In the case of direct mail, there is a general right of objection for you, which is implemented by us without specifying any particular situation.

18. Data security and security measures

We are committed to protecting your privacy and keeping your personal information confidential. To avoid any manipulation, loss or misuse of your stored data, we take extensive technical and organizational security measures that are periodically reviewed and adapted to technological progress.

Among other things, this includes the use of recognized encryption methods (SSL or TLS). However, please note that due to the structure of the Internet, it is possible that the rules of data protection and the above mentioned. Safety measures taken by other persons or institutions not within our area of ​​responsibility are disregarded.
Insbesondere können unverschlüsselt preisgegebene Daten – z. B. wenn dies per E-Mail erfolgt – von Dritten mitgelesen werden. Wir haben technisch hierauf keinen Einfluss. Es liegt im Verantwortungsbereich des Nutzers, die von ihm zur Verfügung gestellten Daten durch Verschlüsselung oder in sonstiger Weise gegen Missbrauch zu schützen.

 

19. Änderungen

attimo kann jederzeit unangekündigt diese Datenschutzbestimmungen oder den Inhalt der Website ändern oder den Zugriff auf diese Website ändern oder sperren.

20. Fragen zum Datenschutz und Kontakt

Der Nutzer kann sich jederzeit an attimo wenden, wenn die zu seiner Person gespeicherten Daten berichtigt, gesperrt oder gelöscht werden sollen. Darüber hinaus erteilt attimo jederzeit Auskunft darüber, welche Daten vom Nutzer gespeichert worden sind sowie deren Herkunft und Empfänger sowie den Zweck der Speicherung.

 

Für Fragen zum Datenschutz wenden Sie sich bitte an:

H.W.A.C. Hotelmanagement GmbH
Wildunger Straße 5
D-70372 Stuttgart

Tel: 0711 / 2596200
Fax: 0711 / 259620-200

Internet: www.attimo-hotel.de / www.attimo-hotel.com
E-Mail: info@attimo-hotel.de