1. Data processing in connection with our website:
1.1 Accessing our websites:
Achesa Management AG operates the following companies and websites:
www.a-chesa.ch
www.achesahomes.ch
www.allegra-lodge.ch
www.hotel-welcomeinn.ch
www.tschadun.ch
www.restaurant-mercato.ch
www.pizzeria-giardino.ch
www.achesaliving.ch
and therefore responsible for the collection, processing and use of your personal data and the compliance of data processing with the applicable data protection law.
When you visit one of our websites, our servers temporarily store every access in a log file. As with every connection to a web server, the following technical data is recorded without any action on your part and stored by us until it is automatically deleted after 24 months at the latest:
- the IP address of the requesting computer
- the name of the owner of the IP address range (usually your Internet access provider)
- the date and time of access
- the website from which the access was made (referrer URL) possibly with the search term used
- search term used
- the name and URL of the retrieved file
- the status code (e.g. error message)
- the operating system of your computer
- the browser you are using (type, version and language)
- the transmission protocol used (e.g. HTTP/1.1) and
- if applicable, your user name from a registration/authentication.
This data is collected and processed for the purpose of enabling the use of our website (establishing a connection), ensuring system security and stability in the long term and enabling the optimisation of our website as well as for internal statistical purposes. This is our legitimate interest in data processing within the meaning of Art. 6 para. 1 lit. f GDPR and DSG.
The IP address is also evaluated together with the other data in the event of attacks on the network infrastructure or other unauthorised or abusive use of the website for clarification and defence purposes and, if necessary, used in the context of criminal proceedings for identification and for civil and criminal proceedings against the users concerned. This is our legitimate interest in data processing within the meaning of Art. 6 para. 1 lit. f GDPR and DSG.
The content of our website has been carefully prepared and checked several times, but we assume no liability for the topicality, correctness and completeness of the information provided. Claims for damages due to the use or non-use of the information or due to the use of incorrect or incomplete information are excluded. All offers are subject to change and non-binding. We reserve the right to change, supplement or delete the offer or parts thereof without prior notice or to temporarily or permanently cease publication of the website.
The content and programming of our website are protected by copyright and ancillary copyright. Any duplication – even in extracts – and public reproduction, in particular the copying of texts, graphics and photos, is prohibited without our prior written consent.
1.2 Use of our contact form:
You have the option of using a contact form to get in touch with us. To do so, we require the following information (*mandatory):
- First name and surname*
- e-mail address*
- Message incl. subject*
We only use this data and the data you provide voluntarily to answer your contact request in the best possible and personalised way. The processing of this data is therefore necessary within the meaning of Art. 6 para. 1 lit. b GDPR for the implementation of pre-contractual measures or is in our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR and FADP.
1.3 Use of the DialogShift chat application on our websites:
Our website uses the chat application of DialogShift GmbH, Rheinsberger Str. 76/77, 10115 Berlin. This application processes and stores data for the purpose of web analysis, operating the chat application and responding to enquiries. To operate the chat function, the chat texts are saved and a cookie with a unique ID is set – this is used to recognise you as a customer. A cookie is a small text file that is stored locally in the cache on your device. With the help of this cookie, our application recognises the device and can call up past chat logs. This cookie is stored for 90 days since it was last used. You can deactivate the storage of cookies in your browser settings. However, the chat function cannot be executed without the use of cookies. The possible disclosure of e.g. name, e-mail address or a telephone number is voluntary and with the consent to temporarily use and store this data for the purpose of establishing contact until the end of the contact. This personal data will be deleted after 90 days. The legal basis for data processing is in accordance with Art. 6 para. 1 lit. F GDPR and DSG based on our legitimate interest in effective customer care, for statistical analysis of user behaviour and for optimisation purposes of our offers.
DialogShift offers further information on the collection and use of data as well as your rights and options for protecting your privacy at https://www.dialogshift.com/en/data-privacy.
1.4 Subscription to our newsletter:
You have the option of subscribing to our newsletter on our website. Registration is required for this. The following data must be provided as part of the registration process (*mandatory):
- Title*
- First name and surname*
- e-mail address*
The above data is required for data processing. We process this data exclusively in order to personalise the information and offers sent to you and to better tailor them to your interests. By registering, you give us your consent to process the data provided for the regular dispatch of the newsletter to the address you have provided and for the statistical evaluation of user behaviour and the optimisation of the newsletter. This consent constitutes our legal basis for the processing of your e-mail address in accordance with Art. 6 para. 1 lit. a GDPR and DSG. We are authorised to commission third parties with the technical processing of advertising measures and are entitled to pass on your data for this purpose.
At the end of each newsletter you will find a link that you can use to unsubscribe from the newsletter at any time. After cancellation, your personal data will be deleted. Further processing only takes place in anonymised form to optimise our newsletter.
1.5 Room booking on one of our websites, by correspondence or by telephone call:
If you make bookings either via one of our websites, by correspondence (email, chat or letter post) or by telephone call, we require the following data (*mandatory) to process the contract:
- Title*
- First name and surname*
- Credit card information*
- e-mail address*
- Telephone number*
We will only use this data and other information voluntarily provided by you (e.g. language, postal address, expected arrival time, motor vehicle licence plate, preferences, comments) to process the contract, unless otherwise stated in this privacy policy or unless you have given your separate consent. We will process the data by name in order to record your booking as requested, to provide the booked services, to contact you in the event of ambiguities or problems and to ensure correct payment. The legal basis for data processing for this purpose is the fulfilment of a contract in accordance with Art. 6 para. 1 lit. b GDPR and FADP.
We use the service Mews System B.V., headquartered in Amsterdam, to process online bookings. Further information on how Mews processes personal data can be found here (https://app.mews.com/Platform/Document/PrivacyPolicy?language=en).
We also use the services of Revinate Solutions, based in Amsterdam. Further information on how Revinate Solutions processes personal data can be found here
https://www.revinate.com/privacy/
Our legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR and DSG lies in the fulfilment of legal requirements.
If you book a room as part of a company agreement, you agree that your data may be passed back to this company for statistical purposes. This includes the number of overnight stays and prices and is anonymised.
1.6 Subscription to our newsletter in connection with a booking:
In connection with a booking, you have the separate option of subscribing to our newsletter. By registering in connection with a booking, you give us your consent to process the data provided above for the regular sending of the newsletter to the address you have provided and for the statistical evaluation of user behaviour and the optimisation of the newsletter.
We process this data exclusively in order to personalise the information and offers sent to you and to better tailor them to your interests. This consent constitutes our legal basis for processing your e-mail address in accordance with Art. 6 para. 1 lit. a GDPR and FADP. We are authorised to commission third parties with the technical processing of advertising measures and are entitled to pass on your data for this purpose (see section 1.4). At the end of each newsletter you will find a link that you can use to unsubscribe from the newsletter at any time. When unsubscribing, you can voluntarily inform us of the reason for unsubscribing. After cancellation, your personal data will be deleted. Further processing only takes place in anonymised form to optimise our newsletter.
1.7 Contacting us via e-mail:
On our website, you have the option of contacting us and sending us an e-mail. We collect your e-mail address for this purpose. We only use your email address and other data you provide voluntarily (e.g. first name and surname) to answer your contact request in the best possible and personalised way.
The processing of this data is therefore necessary within the meaning of Art. 6 para. 1 lit. b GDPR and FADP for the implementation of (pre-)contractual measures or is in our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR and FADP. The use of emails is insecure and we assume that you are aware of this and consent to it.
1.8 Contacting us by telephone:
On our website, you have the option of contacting us by telephone. We only use your telephone number and other data voluntarily provided by you (e.g. first name and surname, email address) to answer your contact request in the best possible and personalised way. The processing of this data is therefore necessary within the meaning of Art. 6 para. 1 lit. b GDPR and FADP for the implementation of (pre-)contractual measures or is in our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR and FADP.
1.9 Ordering and purchasing event tickets and vouchers:
It is possible to place orders for certain services or vouchers online on our website. The following data is collected in this context (* mandatory):
- Salutation*
- First and last name of the buyer*
- First and last name of the beneficiary*
- Credit card information*
- e-mail address*
We will only use this data and other information voluntarily provided by you (e.g. postal address, telephone number, personal dedication, video greeting, etc.) to process the contract, unless otherwise stated in this privacy policy or unless you have given your separate consent. With the purchase, the buyer confirms that he/she has given his/her consent to the use of the third party’s data and is responsible for its accuracy. We will process the data by name in order to record your purchase as requested, provide the services, contact you in the event of ambiguities or problems and ensure correct payment. The legal basis for data processing for this purpose is the fulfilment of a contract in accordance with Art. 6 para. 1 lit. b GDPR and DSG.
We use the service incert eTourismus, headquartered in Linz, to process online purchases. Further information on how incert eTourismus processes personal data can be found here https://www.incert.at/en/data-protection/
Buyer data is anonymised after 14 days. The retention period for purchase or invoice data is 10 years.
1.10 Restaurant reservations:
Table reservations received by telephone, in person or in writing are entered in a reservation book (analogue or digital). You also have the option of reserving a table online on our website. The following data is collected in this context (* mandatory):
- First name and surname*
- e-mail*
- Telephone number*
We use the services of TheFork Swiss SA, Rue Muzy 8, 1207 Geneve, Switzerland, to process table reservations. Further information on how TheFork Swiss SA processes personal data can be found here
https://www.thefork.ch/de/legal#datenschutzerklarung-und-cookie-richtlinien.
This data is collected and processed for the purpose of reserving a table for a certain number of people. The legal basis for data processing for this purpose is the implementation of pre-contractual measures and fulfilment of a contract in accordance with Art. 6 para. 1 lit. b GDPR and FADP.
If you make a reservation by telephone, we will enter the same data into TheFork’s reservation system for you so that you can receive a confirmation by text message or email. If you do not agree to this, please let us know at the time of booking when we ask for your consent again.
1.11 Applying for a vacancy:
You have the opportunity to apply for a job vacancy on our website or spontaneously by e-mail. To do so, you must submit a complete application. The following data must be included in the application (* mandatory):
- Salutation*
- First name and surname*
- Postal address*
- Work permit* (if necessary)
- Civil status*
- Date of birth*
- E-mail address*
- Telephone number*
- Letter of motivation, full CV*
- Job references*
This data is used to process the application process and possible subsequent employment and its handling. Unless you explicitly consent to further processing, the data will be stored in Outlook for 6 months after completion of the application process and then deleted, unless you have been hired.
The legal basis for data processing is therefore the implementation of pre-contractual measures and our legitimate interest in accordance with Art. 6 para. 1 lit. b and f GDPR and FADP. The legal basis for further data processing is the consent you have given in accordance with Art. 6 para. 1 lit. a GDPR and FADP.
1.12 Cookies:
Cookies help in many ways to make your visit to our website easier, more pleasant and more meaningful. Cookies are information files that your web browser automatically stores on your computer’s hard drive when you visit our website. We use cookies, for example, to temporarily save your selected services and entries when you fill out a form on the website so that you do not have to repeat the entry when you call up another subpage. Cookies may also be used to identify you as a registered user after you have registered on the website without you having to log in again when you access another subpage. Most Internet browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or so that a message always appears when you receive a new cookie. On the following pages you will find explanations of how you can configure the processing of cookies in the most common browsers:
- Microsoft Windows Internet Explorer
- Microsoft Windows Internet Explorer Mobile
- Mozilla Firefox
- Google Chrome for desktop
- Google Chrome for Mobile
- Apple Safari for Desktop
- Apple Safari for Mobile
Deactivating cookies may mean that you cannot use all the functions of our website.
1.13 IP anonymisation:
The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. We would like to point out that on this website Google Analytics has been extended by the code “_anonymizeIp();” in order to ensure anonymised collection of IP addresses. As a result, IP addresses are further processed in abbreviated form, so that they cannot be linked to a specific person. If the data collected about you is personally identifiable, it is immediately excluded and the personal data is deleted immediately.
1.14 Recipient:
The recipient of the data is:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland as processor. We have concluded a data processing agreement with Google for this purpose. Google LLC, based in California, USA, and, if applicable, US authorities can access the data stored by Google.
1.15 Borlabs Cookie:
This website uses Borlabs Cookie, which sets a technically necessary cookie (borlabs-cookie) to store your cookie consent. Borlabs Cookie does not process any personal data. The borlabs cookie stores the consent you gave when you entered the website. If you wish to revoke this consent, simply delete the cookie in your browser. When you re-enter/reload the website, you will be asked for your cookie consent again.
1.16 Tracking tools and plug-ins:
a. General information:
We use the web analysis service of Google Analytics for the purpose of designing and continuously optimising our website to meet your needs. In this context, pseudonymised user profiles are created and small text files stored on your computer (“cookies”) are used. The information generated by the cookie about your use of this website is transmitted to the servers of the providers of these services, stored there and processed for us. In addition to the data listed under point 1, we may receive the following information:
- Navigation path that a visitor takes on the site
- the time spent on the website or subpage
- the subpage on which the website is left
- the country, region or city from which access is made
- end device (type, version, colour depth, resolution, width and height of the browser window) and returning or new visitor.
The information is used to analyse the use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage for the purposes of market research and the needs-based design of this website. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf.
b. Google Analytics and re-marketing:
This website uses Google Analytics and Google Re-Marketing. These are services provided by Google Inc (“Google”). Google uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States. The IP address is then shortened by Google by the last three digits, so that it is no longer possible to clearly assign the IP address. Google will use this information to analyse your use of the website, to compile reports on website activity for the website operator and to provide other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Third-party providers, including Google, place adverts on websites on the Internet. Third-party providers, including Google, use stored cookies to place adverts based on a user’s previous visits to this website. Google will not associate your IP address with any other data held by Google. You can object to the collection and storage of data at any time with effect for the future. You can deactivate the use of cookies by Google by visiting the page for deactivating Google advertising.
Alternatively, users can deactivate the use of cookies by third-party providers by visiting the deactivation page of the Network Advertising Initiative. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en .
However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above. You can object to the collection and storage of data at any time with effect for the future. Further information on Google’s provisions can be found here.
c. YouTube:
Our website uses plugins from the YouTube site operated by Google. The operator of the pages is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit one of our pages equipped with a YouTube plug-in, a connection to the YouTube servers is established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account. The use of YouTube is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR and DSG. Further information on the handling of user data can be found in YouTube’s privacy policy at: https://www.google.de/intl/en/policies/privacy .
d. Google Maps:
This website uses Google Maps to display maps and create directions. Google Maps is operated by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. By using this website, you consent to the collection, processing and use of the automatically collected data and the data entered by you by Google, one of its representatives or third-party providers. The terms of use for Google Maps can be found under the terms of use for Google Maps.
e. Social networks:
We may operate pages and other online presences (“fan pages”, “channels”, “profiles”, etc.) on social networks and other platforms operated by third parties and process the data about you described in section 1 and below there. We receive this data from you and the platforms when you come into contact with us via our online presence (e.g. when you communicate with us, comment on our content or visit our presence). At the same time, the providers of the platforms can analyse your use of our online presence (e.g. the way you interact with us, how you use our online presence, what you view, comment on or “like”) and process this data together with other data they have about you (e.g. information about your age and gender and other demographic information). In this way, they create profiles about you and statistics about the use of our online presences. They use this data and profiles to display our or other advertising and other personalised content on the platform and to manage behaviour on the platform, but also for market and user research and to provide us and other parties with information about you and the use of our online presence. Insofar as we are jointly responsible for certain types of processing with the provider, we will conclude a corresponding contract with the provider. You can find out about the main content of this contract from the provider. They also process this data for their own purposes, in particular for marketing and market research purposes (e.g. to personalise advertising) and to manage their platforms (e.g. to decide what content to show you), and act as separate controllers for this purpose.
We are authorised, but not obliged, to review content before or after it is published on our online presences, to delete content without notice and, if necessary, to report it to the provider of the platform in question. In the event of breaches of the rules of decency and behaviour, we may also inform the provider of the platform on which the user account in question is located in order to block or delete it. Further information on processing by the platform operators can be found in the data protection notices of the respective platforms. There you can also find out in which countries your data is processed, what rights of access and erasure you have and how you can exercise these or obtain further information. We currently use the following platforms
