Datenschutz

Privacy policy

Hotel Bristol AG operates the Hotel Bristol and is committed to protecting your personal data and providing clear and transparent information about what data we collect and how we use it. This privacy policy explains how your personal data that we collect when you use our website or our services and platforms or that you provide to us is used.

Your trust is important to us, which is why we take the issue of data protection seriously and ensure appropriate security. It goes without saying that we comply with the legal provisions of the Federal Act on Data Protection (FADP), the Ordinance to the Federal Act on Data Protection (OFADP), the Telecommunications Act (TCA) and other applicable data protection provisions of Swiss or EU law, in particular the European General Data Protection Regulation (GDPR).

Please take note of the following information so that you know what personal data we collect from you and for what purposes we use it:

1.0 Data processing in connection with our website

1.1 Accessing our website

Hotel Bristol AG operates the Hotel Bristol and is the operator of the website www.hotelbristol.ch and is therefore responsible for the collection, processing and use of your personal data and the compliance of data processing with the applicable data protection law.

When you visit our website, our servers temporarily store every access in a log file. The following technical data is collected and stored without any action on your part, as is generally the case with every connection to a web server:

The IP address of the requesting computer,
the name of the owner of the IP address range (usually your Internet access provider),
the date and time of access
the website from which the access was made (referrer URL), if applicable with the search term used,
the name and URL of the retrieved file
the status code (e.g. error message),
the operating system of your computer
the browser you are using (type, version and language)
the transmission protocol used (e.g. HTTP/1.1) and
if applicable, your user name from a registration/authentication.

After 180 days, we automatically delete the recorded IP addresses so that no conclusions can be drawn about individual users.

This data is collected and processed for the purpose of enabling the use of our website (establishing a connection), ensuring system security and stability in the long term and enabling the optimisation of our website as well as for internal statistical purposes. This constitutes our legitimate interest in data processing within the meaning of Art. 6 para. 1 lit. f GDPR.

The IP address is also evaluated together with the other data in the event of attacks on the network infrastructure or other unauthorised or abusive use of the website for clarification and defence purposes and, if necessary, used in the context of criminal proceedings for identification and for civil and criminal proceedings against the users concerned. This is our legitimate interest in data processing within the meaning of Art. 6 para. 1 lit. f GDPR.

1.2 Room booking on the website, by correspondence or by telephone call

If you make bookings either via our website, by correspondence (email or letter post) or by telephone call, we require the following data (*mandatory) to process the contract:

Title*
First name* and surname*
postal address*
Date of birth*
Telephone number*
Language*
Credit card information*
Email address*
Expected arrival time
Motor vehicle licence plate
Preferences
Comments

We will only use this data to process the contract, unless otherwise stated in this privacy policy or unless you have given your separate consent. We will process the data by name in order to record your booking as requested, to provide the booked services, to contact you in the event of any ambiguities or problems and to ensure correct payment.

We use the BookOnlineNow Private Company service, part of the Epsilon Net Group of Companies, to process online bookings. Further information on how BookOnlineNow processes personal data can be found here: https://www.bookonlinenow.net/privacy-policy

1.3 Contact via e-mail

You have the option of contacting us by e-mail. We must collect your e-mail address for this purpose.

We only use your email address and other data you provide voluntarily (e.g. first name and surname) to answer your contact request in the best possible and personalised way. The processing of this data is therefore necessary within the meaning of Art. 6 para. 1 lit. b GDPR for the implementation of (pre-)contractual measures or is in our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR.

1.4 Contacting us by telephone

You have the option of contacting us by telephone.

We only use your telephone number and other data you provide voluntarily (e.g. first name and surname, email address) to answer your contact request in the best possible and personalised way. The processing of this data is therefore necessary within the meaning of Art. 6 para. 1 lit. b GDPR for the implementation of (pre-)contractual measures or is in our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR.

1.5 Applying for a vacancy

You can apply for a vacancy by e-mail. To do so, you must submit a complete application. The following data is required:

Salutation*
First name and surname*
Postal address*
Nationality*
Civil status*
Date of birth*
E-mail address*
Telephone number*
Letter of motivation, CV, photo*
Job references*

This data is used to process the application process. Unless you explicitly consent to further processing, the data will be deleted after the respective application process.

The legal basis for data processing is therefore the implementation of pre-contractual measures and our legitimate interest in accordance with Art. 6 para. 1 lit. b and f GDPR. The legal basis for further data processing is your consent in accordance with Art. 6 para. 1 lit. a GDPR.

1.6 Cookies

Cookies help in many ways to make your visit to our website easier, more pleasant and more meaningful. Cookies are information files that your web browser automatically stores on your computer's hard drive when you visit our website. We use cookies, for example, to temporarily save your selected services and entries when you fill out a form on the website so that you do not have to repeat the entry when you call up another subpage. Cookies may also be used to identify you as a registered user after you have registered on the website without you having to log in again when you access another subpage.

Most Internet browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or so that a message always appears when you receive a new cookie. On the following pages you will find explanations of how you can configure the processing of cookies in the most common browsers:

Microsoft Windows Internet Explorer
Microsoft Windows Internet Explorer Mobile
Mozilla Firefox
Google Chrome for desktop
Google Chrome for Mobile
Apple Safari for Desktop
Apple Safari for Mobile

If you deactivate cookies, you may not be able to use all the functions of our website.

1.7 Tracking tools

1.7.1 Google Analytics

We use the web analysis service of Google Analytics for the purpose of designing and continuously optimising our website in line with requirements. In this context, pseudonymised user profiles are created and small text files stored on your computer (‘cookies’) are used. The information generated by the cookie about your use of this website is transmitted to the servers of the providers of these services, stored there and processed for us. In addition to the data listed under section 1.1, we may receive the following information as a result:

Navigation path that a visitor takes on the site,
the time spent on the website or subpage
the subpage on which the website is left,
the country, region or city from which access is made,
end device (type, version, colour depth, resolution, width and height of the browser window) and
Returning or new visitor.

The information is used to analyse the use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage for the purposes of market research and the needs-based design of this website. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf.

The provider of Google Analytics is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (‘Google’). Before the data is transmitted to the provider, the IP address is shortened by activating IP anonymisation (‘anonymizeIP’) on this website within the member states of the European Union or in other contracting states of the Agreement on the European Economic Area. The anonymised IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. In these cases, we use contractual guarantees to ensure that Google complies with an adequate level of data protection. According to Google, under no circumstances will the IP address be associated with other data relating to the user.

Users can prevent Google from collecting the data generated by the cookie and relating to the use of the website by the user concerned (including the IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de

Further information about the web analysis service used can be found here on the Google website. Instructions on how to prevent the processing of your data by the web analysis service can be found here.

The legal basis for the aforementioned data processing is your consent (Art. 6 para. 1 lit. a GDPR). You can withdraw your consent at any time with effect for the future.

1.7.2 Creation of pseudonymised user profiles

In order to provide you with personalised services and information on our website (on-site targeting), we use and analyse the data that we collect about you when you visit the website. Cookies may also be used for the corresponding processing. The analysis of your user behaviour can lead to the creation of a so-called user profile. The usage data is only merged with pseudonymised, but never with non-pseudonymised personal data.

The legal basis for processing the data for this purpose is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR in the optimisation and personalisation of our online offering and our advertising communication.

1.7.3 Data protection provisions about the use of Google Remarketing

Hotel Bristol AG has integrated Google Remarketing services on this website. Google Remarketing is a function of Google AdWords that enables a company to display adverts to Internet users who have previously visited the company's website. The integration of Google Remarketing therefore allows a company to create user-related adverts and consequently to display adverts relevant to the interests of the Internet user.

The operating company of the Google Remarketing services is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

The purpose of Google Remarketing is to display interest-relevant advertising. Google Remarketing enables us to display adverts via the Google advertising network or on other websites that are tailored to the individual needs and interests of internet users.

Google Remarketing places a cookie on the data subject's information technology system. By setting the cookie, Google is able to recognise the visitor to our website when he or she subsequently visits websites that are also members of the Google advertising network. Each time a website on which the Google Remarketing service has been integrated is accessed, the data subject's internet browser automatically identifies itself to Google. As part of this technical process, Google receives knowledge of personal data, such as the IP address or the surfing behaviour of the user, which Google uses, among other things, to display interest-relevant advertising.

Cookies are used to store personal information, such as the websites visited by the data subject. Each time our website is visited, personal data, including the IP address of the Internet connection used by the data subject, is therefore transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass on this personal data collected via the technical process to third parties.

The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such a setting of the Internet browser used would also prevent Google from placing a cookie on the data subject's IT system. In addition, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programmes.

Furthermore, the data subject has the option of objecting to interest-based advertising by Google. To do this, the data subject must call up the link https://www.google.de/settings/ads from each of the Internet browsers they use and make the desired settings there.

Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.de/intl/de/policies/privacy/.

The legal basis for the aforementioned data processing lies in our interest in the personalised and interest-based advertising of our offer (Art. 6 para. 1 lit. f GDPR).

1.7.4 Data protection provisions about the application and use of Google AdWords

Hotel Bristol AG has integrated Google AdWords on this website. Google AdWords is an internet advertising service that allows advertisers to place adverts in Google's search engine results as well as in the Google advertising network. Google AdWords allows an advertiser to specify certain keywords in advance, which are used to display an advert in Google's search engine results exclusively when the user uses the search engine to retrieve a keyword-relevant search result. In the Google advertising network, the adverts are distributed to relevant websites using an automatic algorithm and taking into account the previously defined keywords.

The operating company of the Google AdWords services is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

The purpose of Google AdWords is to advertise our website by displaying interest-relevant adverts on the websites of third-party companies and in the search engine results of the Google search engine and by displaying third-party adverts on our website.

If a data subject reaches our website via a Google advert, a so-called conversion cookie is stored on the data subject's IT system by Google. A conversion cookie loses its validity after thirty days and is not used to identify the data subject. If the cookie has not yet expired, the conversion cookie is used to track whether certain sub-pages, such as the shopping basket from an online shop system, have been accessed on our website. The conversion cookie enables both us and Google to track whether a data subject who has reached our website via an AdWords ad has generated sales, i.e. completed or cancelled a purchase.

The data and information collected through the use of the conversion cookie is used by Google to compile visit statistics for our website. These visit statistics are in turn used by us to determine the total number of users who were referred to us via AdWords ads, i.e. to determine the success or failure of the respective AdWords ad and to optimise our AdWords ads for the future. Neither our company nor other Google AdWords advertisers receive information from Google that could be used to identify the data subject.

The conversion cookie is used to store personal information, such as the websites visited by the data subject. Each time our website is visited, personal data, including the IP address of the Internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass on this personal data collected via the technical process to third parties.

The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such a setting of the Internet browser used would also prevent Google from placing a conversion cookie on the data subject's IT system. In addition, a cookie already set by Google AdWords can be deleted at any time via the Internet browser or other software programmes.

Furthermore, the data subject has the option of objecting to interest-based advertising by Google. To do this, the data subject must call up the link http://www.google.de/settings/ads from each of the Internet browsers they use and make the desired settings there.

Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.de/intl/de/policies/privacy/.

The legal basis for the aforementioned data processing lies in our interest in the personalised and interest-based advertising of our offer (Art. 6 para. 1 lit. f GDPR).

2.0 Data processing in connection with your stay

2.1 Data processing to fulfill legal reporting obligations

When you arrive at our hotel, we require the following information from you and your accompanying persons (*mandatory):

First and Last Name*
Postal address and canton*
Birth date*
Place of birth*
Nationality*
Official identification card and number*
Arrival and departure day

We collect this information to fulfill legal reporting obligations, which arise in particular from hospitality or police law. To the extent that we are required to do so by applicable regulations, we will forward this information to the relevant police authority.

Our legitimate interest is in fulfilling the legal requirements within the meaning of Article 6 Paragraph 1 Letter f of the GDPR.

2.2 Recording of purchased services

If you receive additional services as part of your stay (e.g. reserving a parking space, purchasing drinks or booking tours, etc.), the subject of the service and the time at which the service was received will be recorded by us for billing purposes. The processing of this data is necessary to process the contract with us within the meaning of Article 6 Paragraph 1 Letter b GDPR.

2.3 WiFi usage

In order to provide you with access to the Internet via our WiFi network, we collect and use the following data when you dial in and use our WiFi network:

So-called inventory data (* mandatory)

Your first and last name including title and salutation*
The email address you provided*
Your mobile phone number

We need this inventory data for your general registration for our WLAN offer. The legal basis for data processing for this purpose is the execution and fulfillment of a contract in accordance with Article 6 Paragraph 1 Letter b GDPR.

We also collect so-called traffic data

The type of device you use to use our WiFi network
Various device identifications, namely the WLAN MAC address and the login assigned to you
The IP address assigned to you
Date and time of your Wi-Fi connections and Internet connections
Certain location data: This is the location of the nearest Wi-Fi access point to which you are connected via Wi-Fi; This also includes a timestamp. From the location of this access point, we usually know in which room you are staying with your device in our hotel and when. There is no more precise location of your actual location.

We need the traffic data in order to technically establish a connection between your device and our WiFi network and then to be able to provide and technically process access to the Internet. The location data serves the purpose of connecting you to the WLAN access point with the strongest signal. This is our legitimate interest in data processing within the meaning of Article 6 (1) (f) GDPR.

The IP address is also evaluated together with the other data for purposes of investigation and defense in the event of attacks on the network infrastructure or other unauthorized or abusive WLAN use and, if necessary, used as part of criminal proceedings for identification and for civil and criminal action against the users concerned. This is our legitimate interest in data processing within the meaning of Article 6 (1) (f) GDPR.

Based on your consent, we also use your data for other purposes, as described below. We combine your data listed above with the data we store about you from the accommodation relationship, and then use this combined data together for the following purposes:

To send you general information and individual offers about our hotel's products and services by email, based on the data we have with you, tailored to you and your interests during or after your stay. The information and offers you receive may also depend on your previous and current location within our hotel, e.g. if you have just entered one of our restaurants or have visited our fitness studio particularly frequently. If you have also provided us with your mobile phone number, we will use this to be able to send you additional information and offers via SMS to your mobile device.
In order to improve our service offering, we would like to support our employees in being able to address you personally by name when they contact you. For this purpose, we may use your name and the location data described above to inform our employees in a particular room of our hotel who is currently in that room. This makes it easier for our employees to address you personally by name.
For statistical evaluations, such as how our guests react to our marketing measures, which offers our guests use particularly frequently within the hotel, how our guests prefer to move around our hotel, which WiFi areas are well covered.

The legal basis for this data processing is the consent you have given in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time with future effect.

3.0 Plugins and APIS

3.1 Google Maps

We use Google Maps API (Application Programming Interface, “Google Maps”) from Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, on our website to visually display geographical information (site maps). By using Google Maps, information about your use of our website, including your IP address, is transmitted to a Google server in the USA and stored there.

The legal basis for processing the data for this purpose is our legitimate interest in accordance with Article 6 (1) (f) GDPR.

It is possible to deactivate the Google Maps service and prevent data transfer to Google if you deactivate JavaScript in your browser. However, we would like to point out that in this case you cannot use the map display.

More information about the collection, processing and use of your data by Google and your rights in this regard can be found in Google's data protection declaration at https://policies.google.com/privacy, as well as in the additional terms of use for Google Maps and Google Earth at https://www.google.com/intl/de_de/help/terms_maps/.

4.0 Storage and exchange of data with third parties

4.1 Booking platforms

If you make bookings via a third-party platform, we receive various personal information from the respective platform operator. This is usually the data listed in section 1.4 of this data protection declaration. In addition, inquiries about your booking may be forwarded to us. We will process this data by name in order to record your booking as requested and to provide the booked services. The legal basis for data processing for this purpose is the fulfillment of a contract in accordance with Art. 6 Para. 1 lit. b GDPR.

Finally, we may be informed by the platform operators about disputes in connection with a booking. In doing so, we may also receive data on the booking process, which may also include a copy of the booking confirmation as proof of the actual booking completion. We process this data to protect and enforce our claims. This is our legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR.

Please also note the data protection information of the respective provider.

4.2 Central storage and linking of data

We store the data specified in sections 1.1 to 1.10 and 2.1 to 2.3 in a central electronic data processing system (CRM). The data concerning you is systematically recorded and linked to process your bookings and handle the contractual services or based on your consent. For this purpose, we use software from the company "protel hotelsoftware Gmbh" in DE-44269 Dortmund. The processing of personal data within the framework of a CRM program takes place in the software from the company "Toedt, Dr. Selk & Coll. GmbH" in DE-80333 Munich. We base the processing of this data within the framework of the software on our legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR in customer-friendly and efficient customer data management and on the implementation of contractual measures in accordance with Art. 6 Para. 1 lit. b GDPR.

Based on your consent, we use your data for further purposes, as described below. We combine your data with the data we have stored about you from the accommodation relationship, from restaurant, SPA and internet visits, and then use this combined data to send you general information and offers for our hotel's products and services that are tailored to you and your interests by email, SMS or post during or after your stay.

The legal basis for this data processing is the consent you have given in accordance with Art. 6 Paragraph 1 Letter a of GDPR. You can revoke your consent at any time with effect for the future by email (datenschutz@thelivingcircle.ch).

4.3 Retention period

We only store personal data for as long as it is necessary to use the tracking services mentioned above and the further processing within the scope of our legitimate interest. We keep contract data for longer because this is required by statutory retention periods. Retention periods that require us to retain data arise from regulations on reporting law, accounting and tax law. According to these regulations, business communications, concluded contracts and accounting documents must be retained for up to 10 years. If we no longer need this data to carry out the services for you, the data will be blocked. This means that the data may then only be used for accounting and tax purposes.

4.4 Transfer of data to third parties

We only pass on your personal data if you have expressly consented to this, if there is a legal obligation to do so or if this is necessary to enforce our rights, in particular to enforce claims arising from the contractual relationship. In addition, we pass on your data to third parties if this is necessary in the context of using the website and processing the contract (also outside the website), namely the processing of your bookings.

Please also note the information in the previous sections of this data protection declaration regarding the transfer of data to third parties.

Below you will find an overview of the third parties we use:

4.4.1 YieldPlanet

YieldPlanet S.A.,6005 Lucerne, Switzerland

5.0 Further information

5.1 Right to information, correction, deletion and restriction of processing; right to data portability

Right to information: You have the right to request access to your personal data stored by us at any time and free of charge when we process it. This gives you the opportunity to check which personal data we process about you and that we use it in accordance with applicable data protection regulations.

Right to correction: You have the right to have incorrect or incomplete personal data corrected and to be informed of the correction. In this case, we will inform the recipients of the data concerned about the adjustments made, unless this is impossible or involves disproportionate effort.

Right to deletion: You have the right to have your personal data deleted under certain circumstances. In individual cases, the right to deletion may be excluded.

Right to restriction of processing: Under certain conditions, you have the right to request that the processing of your personal data be restricted.

Right to data portability: Under certain circumstances, users outside Switzerland have the right to receive the personal data you have provided to us from us free of charge in a readable format.

Right to complain: You have the right to lodge a complaint with a competent supervisory authority about the way in which your personal data is processed.

Right of revocation: You generally have the right to revoke your consent at any time. However, processing activities based on your consent in the past will not become unlawful if you revoke your consent.

5.2 Data security

We use suitable technical and organizational security measures to protect your personal data stored with us against manipulation, partial or complete loss and against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

You should always treat your access data confidentially and close the browser window when you have finished communicating with us, especially if you share the computer with others.

We also take internal data protection very seriously. Our employees and the service companies commissioned by us have been obliged by us to maintain confidentiality and to comply with data protection regulations.

5.3 Contact person

You have the right to complain to a data protection supervisory authority at any time.
Contact details of our data protection officer: info@hotelbristol.ch

6.0 Cookie Statement

This website uses cookies. We use cookies to personalize content and ads, to provide social media features and to analyze our traffic. We also share information about your use of our site with our social media, advertising and analytics partners. Our partners may combine this information with other information that you've provided to them or that they've collected from your use of their services.

Cookies are small text files that websites use to make your experience more efficient.

By law, we can place cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies, we need your permission.

This site uses different types of cookies. Some cookies are placed by third parties who appear on our pages.

You can change or withdraw your consent at any time from the Cookie Statement on our website.

Learn more about who we are, how to contact us and how we process personal data in our Privacy Policy.

Please provide your consent ID and date when contacting us regarding your consent.

Your consent applies to the following domains: www.hotelbristol.ch

November 1st, 2024