1. Responsible and Scope
The person responsible within the meaning of the EU General Data Protection Regulation (DSGVO) and other national data protection laws of the member states as well as other data protection regulations is:
H.W.A.C. Hotelmanagement GmbH
Wildunger Straße 5
Tel: 0711 / 2596200
Fax: 0711 / 259620-200
Internet: www.attimo-hotel.de / www.attimo-hotel.com
2. Principles of data processing
Personal data is any information that relates to an identified or identifiable natural person. These include, for example, information such as your name, age, address, phone number, date of birth, e-mail address, IP address or user behaviour. Information in which we cannot (or only with disproportionate effort make) relate to your person, e.g. by anonymizing the information, are not personal information. The processing of personal data (such as collecting, querying, using, storing or transmitting) always requires a legal basis or your consent. Processed personal data will be deleted as soon as the purpose of the processing has been achieved and no legally required retention requirements have to be maintained.
If we process your personal data for the provision of certain offers, we will inform you below about the specific transactions, the scope and purpose of the data processing, the legal basis for the processing and the respective retention period.
3. Individual processing operations
a. Type and scope of data processing
When calling and using our website, we collect the personal data that your browser automatically transmits to our server. This information is temporarily stored in a so-called log file. When you use our website, we collect the following information that is technically necessary for us to display our website and to ensure its stability and safety:
Every time a user accesses the website or the app and every time a file is accessed, access data about this process is stored in a log file on our server. These are:
Browser type / version
used operating system
Referrer URL (the previously visited page)
Host name of the accessing computer (IP address)
Time and date of the server request
Transferred amount of data and access status (file transfer, file not found etc.).
From this data, pseudonymised internal statistics are generated, which help us to analyze the use of the website, to fix errors and to improve our services. Any further personal use will not take place. In particular, no merging of this data with other data sources is undertaken. These data are automatically deleted after the statistical evaluation. You can prevent the use of your pseudonymous data for statistical purposes at any time by preventing the storage of cookies by a corresponding setting of your browser software (see Section 5).
b. Legal basis
Art. 6 para. 1 lit. f DSGVO as legal basis. The processing of the aforementioned data is necessary for the provision of a website and thus serves to safeguard the legitimate interests of our company. In addition, attimo basically only collects and uses personal data that the user transmits when using the website or the app, for example when booking a room or requesting via the contact form on the website.
When booking, the full name, address, e-mail address is required. These data are required for the processing of the booking. This may require additional information, such as telephone number, company name, tax code, bank account details or credit card information.
c. Storage duration and data deletion
As soon as the mentioned data for the display of the web page are no longer necessary, they are deleted. The collection of data for the provision of the website and the storage of the data in log files is essential for the operation of the website. There is consequently no contradiction on the part of the user. Further storage may be made in individual cases if required by law.
d. minor Persons under the age of 18
should not submit any personal data to us without the consent of their parents or guardians. We do not solicit personal information from children and adolescents, do not collect them and do not share them with third parties.
4. E-mail dispatch
a. Evaluation e-mail during or after the stay
During or after staying at the attimo Hotel Stuttgart, customers will receive an e-mail asking them to rate the stay and to suggest improvements.
For the purpose of using this e-mail address, Art. 6 para. 1 lit. f DSGVO as legal basis. The processing of the e-mail address as well as the obtaining of ratings are necessary for the guarantee of the hotel quality as well as the optimization of the hotel services and thus serve the preservation of a legitimate interest of our company. Additional purposes will not be tracked with this review email.
As soon as the mentioned data (e-mail address and rating) are no longer required for the mentioned optimization purposes, they will be deleted immediately.
5. Editing and deletion
attimo may, at its own initiative or at the request of the user, complete, correct or delete incomplete, incorrect or outdated personal data stored by attimo in connection with the operation of this website. If these processes take place at the request of the user, attimo can only do this if the user has sufficiently authenticated himself. Authentication can be based on a copy of a Photo identification done, which is of course deleted immediately after adjustment, or on the basis of features that can only be known to the user. Without authentication attimo cannot comply with the wishes of the user. Within the scope of the statutory provisions, attimo immediately deletes personal data at the instigation of the entitled party, provided that the non-mandatory statutory retention requirements are opposed.
6. Disclosure of personal data to third parties
a. The personal data will be treated confidentially and in compliance with the legal data protection regulations. The data will not be disclosed to third parties without the permission of the user, unless this is necessary for the execution of the orders, for the processing of payments or for the processing of inquiries or according to the legal regulations. The external service providers are required to treat the data confidentially and securely and may only use this data to the extent necessary to fulfil their task.
b. Incidentally, personal data will only be disclosed if the user has previously expressly consented or if this is necessary for the prosecution of criminal offenses. A transmission to authorities or state institutions with information right only takes place, if this is subject to a legal obligation to provide information or judicially. Your legitimate concerns will be taken into account in accordance with the legal data protection provisions. Where appropriate, we may be required by law to disclose your information to third parties. Such demand can only be met as far as necessary in the context of the legal obligation.
c. Any consent given by you to the forwarding of the data can be revoked at any time and without stating reasons to us.
7. Protection of the data
The protection of personal data is an important corporate principle at attimo. This will u. a. achieved through training and the written commitment of all employees and external service providers to data privacy and compliance with data protection requirements. All technical and organizational, physical and logical facilities and measures in the area of data protection, IT and information security serve to protect against damage, destruction and unauthorized access to stored data and to achieve the confidentiality, availability and integrity protection goals. The personal data is collected for security using an encrypted “Secure Socket Layer” (SSL) connection (identified at the beginning of the Internet address with “https: //” at the top of the address bar of the Internet browser). In addition, attimo endeavours to take reasonable measures to prevent unauthorized access to, and unauthorized use or falsification of, personal data, as well as minimize the risks involved. The provision of personal information, whether it be in person, by telephone or over the Internet. However, there are always risks involved, and no technological system is completely unaffected by manipulation or sabotage.
Most browsers are pre-set to accept cookies by default. However, you can configure your browser to accept only certain or no cookies at all. We point out, however, that you may not be able to use all functions of our website if cookies are deactivated by your browser settings on our website. Using your browser settings, you can also delete cookies already stored in your browser or display the storage duration. It is also possible to set your browser to notify you before cookies are stored. Since the different browsers may differ in their respective functions, we ask that you use the respective help menu of your browser for the configuration options.
If you would like a comprehensive overview of all third-party access to your Internet browser, we recommend the installation of specially developed plug-ins.
9. Tracking and analysis tools
We use tracking and analysis tools to ensure continuous optimization and tailor-made design of our website. With the help of tracking measures, it is also possible for us to statistically record the use of our website by visitors and to further develop our online offer with the help of the insights gained thereby. Due to these interests, the use of the tracking and analysis tools described below in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO justified. The following description of the tracking and analysis tools also includes the respective processing purposes and the processed data.
a. Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files that are stored on your display device and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. On this website Google Analytics has been extended by the code “gat._anonymizeIp ();” in order to ensure an anonymized collection of IP addresses. As a result, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there.
On behalf of attimo, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The shortened IP address provided by Google Analytics as part of Google Analytics will not be merged with other Google data. You can prevent the storage of cookies by a corresponding setting of your browser software; however, we point out that in this case you may not be able to use all functions to the full extent.
In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website or app (including your IP address) and the processing of this data by Google using the browser available at the following link Download and install the add-on http://tools.google.com/dlpage/gaoptout?hl=en
As an alternative to this browser add-on, if you use mobile display devices, you can prevent the collection by Google Analytics by clicking on the following link. An opt-out cookie is set which prevents the future collection of your data when visiting this website:
More information about Google Analytics can be found here:
10. Social Plugins
On our website we use the following plugins from Facebook and Twitter.
a. Facebook Social Plugins
The website contains “social plugins” (“plugins”) of the social network www.facebook.com, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”) , The plugins are marked with a Facebook logo or the addition “Facebook Social Plugin” (http://developers.
facebook.com/plugins). The website contains plugins that allow the user’s browser to connect directly to the Facebook servers as soon as the user visits the website. The contents of the plugins are transmitted by Facebook directly to the user’s browser and integrated by the user into the website. attimo has no influence on the amount of data Facebook collects with the help of these plugins.
By integrating the plugins, Facebook receives the information that the user has accessed the corresponding website. If the user is logged in to Facebook, Facebook can assign the visit to his Facebook account. If the user presses the “Like” button or makes a comment, the corresponding information is transmitted from his browser directly to Facebook and stored there.
If the user is a member of Facebook and does not want Facebook to collect data about him via attimo and associate it with his member data stored on Facebook, the user must log out of Facebook before visiting the website. However, even if the user is not logged in to Facebook, there is still the possibility that Facebook will learn and store certain data.
If the user wants to block the Facebook social plugins in general, he can install and activate a suitable extension for his browser, for example with the “Facebook Blocker” (http://webgraph
b. Instagram Social Plugins
Our website uses so-called social plugins (“plugins”) operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA (“Instagram”). The plugins are marked with an Instagram logo, for example in the form of an “Instagram camera”. When the user visits a page on our website that contains such a plugin, the browser connects directly to Instagram’s servers. The content of the plugin is transmitted by Instagram directly to the user browser and integrated into the page. Through this integration, Instagram receives the information that the browser has accessed the corresponding page of our website, even if you do not have an Instagram profile or are currently not logged in to Instagram. This information (including your IP address) is transmitted by the browser directly to an Instagram server in the US and stored there. Is the If you’re logged in to Instagram, Instagram can instantly associate your visit to our website with the user’s Instagram account. If the user interacts with the plugins, for example, pressing the “Instagram” button, this information is also transmitted directly to an Instagram server and stored there. The information will also be posted on your Instagram account and displayed there to the user’s contacts. attimo has no control over the amount of data Instagram collects using these plugins.
c. Twitter Buttons
On the website is still the possibility, contributions, etc. to post via Twitter. This service and plug-ins are configured by Twitter, Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107. The tweet button allows the user to share blog posts via Twitter. The button also shows the number of tweets for a blog post.
When building the website, the code of the tweet button is queried directly from a server of Twitter through the browser of the user and integrated into the website. attimo therefore has no influence on the amount of data retrieved by Twitter.
According to its own information https:/twitter.com/privacy Twitter stores the transmitted message of the tweet and its metadata. These include according to the estimation of the operator: date and time of the tweet, the concrete possibly abbreviated Internet address on which the Tweet Button is located, and other technical data such as the IP address, the browser type, the operating system. Twitter does not communicate how long the information is stored. More information from Twitter can be found here https://twitter.com/privacy