Data Protection | Schani Hotels

Statement on the Duty to Inform

Basis

This privacy policy applies to all individuals who use the services of Hotel Schani GmbH (Hotel Schani Wien), MH58 GmbH (Hotel Schani Salon), Mag. Benedikt Komarek (Bio-Hotel Schani Wienblick), and Hotel Schani Donau GmbH (Hotel Schani UNO City), hereinafter referred to as "Hotels."

We inform you about the nature, scope, and purpose of collecting and using your personal data by our companies. The protection of your personal data is of particular importance to us. We strive to fully comply with the legal provisions for processing your personal data (EU Regulation No. 679/2016 (GDPR), DSG 2000, DSG 2018, and TKG 2003). All your personal data is processed based on this.

The responsible entity for data processing is the respective hotel where you utilize the service. This could be Hotel Schani GmbH (Hotel Schani Wien, Karl-Popper-Straße 22, 1100 Vienna), MH58 GmbH (Hotel Schani Salon, Mariahilfer Straße 58, 1070 Vienna), or Mag. Benedikt Komarek (Bio-Hotel Schani Wienblick, Johann-Staud-Straße 32, 1160 Vienna).

By using our services and granting consents under this policy, you confirm that you are at least 14 years old and able to provide valid consent, or that valid consent from your legal guardian or representative is already in place.

Information According to Article 13 GDPR

Your personal data, which includes, in particular:

Your basic information (last name, first name, address, email address, phone number, date of birth) and language,
Data from travel documents (passport number, passport details, issuing authority, validity period, nationality),
Information related to payment methods, especially regarding EC cards, credit cards, and bank cards,
Alternative billing address of the guest and, if the booking was made by a third party, also the first name, last name, mobile number, and email address of this third party,
The duration of stay requested by you, contact persons, conditions, special services, health data, personal preferences you disclose to us,
Data on special needs and marital/partnership status,

is required for our services. These include bookings of sightseeing tours, tour guides, gastronomy, rental cars, transfers, vouchers including customer account creation, invoicing, and its verification (B2B, B2C, FIT), and ticket bookings.

These data are stored, processed, and, if necessary, transferred to third parties with whom we cooperate to provide the most efficient and best service for our customers. These third parties may include service providers in third countries acting as processors, as well as software and agency service providers.

The transmission or transfer of your personal data occurs solely to fulfill your contract. The transmission or transfer is carried out in compliance with all relevant data protection and data security aspects. Corresponding data protection agreements have been concluded with our service providers.

The legal basis for these data processing activities includes the fulfillment of our pre-contractual and contractual obligations to you, consents obtained from you, legal, contractual, or other legal obligations on our part (e.g., documentation rights and obligations under accounting, tax, and customs law, contractual requirements, registration requirements, legal disputes), as well as §96 TKG and our legitimate interests (e.g., improving our customer service, including in the area of direct marketing or the pursuit of our own legal interests).

The duration of storage depends on the duration of our business relationship, the consents granted by you, and our legal retention obligations and other legal requirements. We emphasize that in the case of regular cooperation, we strive to meet your previously communicated customer preferences to ensure your ongoing and complete satisfaction.

For services paid for through the hotel, you will automatically receive the invoice via email on the day of your departure, sent to the email address you provided. This email also contains a link for evaluating our service.

Our Website

When you visit our website, your access data is automatically collected and stored. These access data may include, in particular: The page accessed, files viewed, Date and time of access, User’s IP address, Data of the accessing device, especially the browser and operating system, The amount of data transmitted and the notification of successful access. We use this access data for internal statistical purposes to ensure the security of our services and optimize our offerings. In the case of suspected illegal activities, the access data will be evaluated for evidence.

By entering your personal data into one of our contact forms, you consent to the transmission, storage, and processing of this data by us for the duration of handling your specific request. We need this data to process your inquiry and, in these cases, also store your IP address for evidentiary purposes. Storage takes place as long as it is necessary for handling any additional or subsequent questions from you or us.

Our website uses the chat application from Dialogshift GmbH, Rheinsberger Str. 76/77, 10115 Berlin (https://www.dialogshift.com/datenschutz). This application processes and stores anonymized data for the purposes of web analytics, operating the chat application, and responding to inquiries (IP address and Google Analytics). A pseudonymized usage profile is created from this data and stored for 30 days. For the operation of the chat function, chat texts are stored, and a cookie with a unique ID is set to recognize you as a customer. A cookie is a small text file stored locally in your device’s memory. With this cookie, our application recognizes the device and can recall previous chat logs. This cookie is stored for 3 months from the last use. You can deactivate cookie storage in your browser settings; however, without cookies, the chat function cannot operate.

The legal basis for data processing is Article 6(1)(f) GDPR, based on our legitimate interest in effective customer support, statistical analysis of usage behavior, and optimization of our services. You may object to data storage for pseudonymized usage profile purposes at any time with future effect by emailing support@dialogshift.com.

We have integrated THE HOTELS NETWORK, a service provided by THE HOTELS NETWORK, S.L., Av. Diagonal, 439, 3º-1ª, 08036 Barcelona, Spain, into our website. We use THE HOTELS NETWORK to manage reservations and measure their success.

THE HOTELS NETWORK uses cookies and other browser technologies to evaluate user behavior, recognize users, and increase direct bookings.

This information is also used to compile reports on website activity.

The use of THE HOTELS NETWORK is based on your consent in accordance with Article 6(1)(a) GDPR.

For more information about the data processing duration, see the privacy policy of THE HOTELS NETWORK: https://www.thehotelsnetwork.com/de/privacy-policy.

We have integrated YouTube Video, a component of the YouTube platform provided by YouTube, LLC, which allows users to upload, share, and access detailed statistics about content over the Internet.

YouTube Video enables us to embed platform content into our website. It uses cookies and other browser technologies to analyze user behavior, recognize users, and create user profiles. This information is used, among other things, to analyze the activity of viewed content and compile reports. If a user is registered with YouTube, LLC, the viewed videos can be linked to their profile.

By accessing these contents, a connection to YouTube servers is established via Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, during which your IP address and, if applicable, browser data, such as your user agent, are transmitted.

The service is used based on your consent under Article 6(1)(a) GDPR.

We may transfer personal data to third countries outside the European Economic Area, particularly the USA. Data transfers to the USA occur based on Article 45(1) GDPR under the adequacy decision of the European Commission. The involved US companies and/or their subcontractors are certified under the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

In cases where no adequacy decision by the European Commission exists (including US companies not certified under EU-U.S. DPF), we have established appropriate guarantees with the data recipients as per Articles 44 et seq. GDPR. Unless stated otherwise, these are standard contractual clauses issued by the European Commission according to Implementing Decision (EU) 2021/914 of June 4, 2021. You can view a copy of these standard contractual clauses here: https://eur-lex.europa.eu/legal-content/EN/TXT/HTML/?uri=CELEX:32021D0914.

Additionally, we obtain your consent before such data transfers to third countries, as required under Article 49(1)(a) GDPR, through the Consent Manager or other forms (registrations, etc.). Please note that such transfers to third countries may involve unknown risks (e.g., data processing by security authorities in those countries, the scope and consequences of which we do not know, cannot influence, and may not be disclosed to you).

The specific retention period of the processed data is determined by YouTube, LLC. For more details, refer to YouTube’s privacy policy: https://policies.google.com/privacy.

We use Google Tag Manager by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager manages website tags via an interface and allows us to control the precise integration of services on our website.

This enables us to flexibly integrate additional services to evaluate user access to our website.

The use of Google Tag Manager is based on your consent under Article 6(1)(a) GDPR.

We intend to transfer personal data to third countries outside the European Economic Area, particularly the USA. Data transfers to the USA occur based on Article 45(1) GDPR under the adequacy decision of the European Commission. The involved US companies and/or their subcontractors are certified under the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

The specific retention period of the processed data is determined by Google Ireland Limited. For more details, refer to Google Tag Manager’s privacy policy: https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/.

We use Meta Pixel from Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, to create "Custom Audiences" (segmented visitor groups of our online services), measure conversion rates, and subsequently optimize these. This is particularly relevant when you interact with advertisements we place via Meta Platforms Ireland Limited.

The use of Meta Pixel is based on your consent in accordance with Article 6(1)(a) GDPR.

The specific retention period of the processed data is determined by Meta Platforms Ireland Limited. For more details, refer to Meta Pixel’s privacy policy: https://www.facebook.com/privacy/explanation.

We use Juicer by saas.group LLC, 1700 Westlake Ave N, #200, Seattle, WA 98109, USA, to display social media content from various platforms such as Facebook, Instagram, Twitter, and TikTok on our website in a unified feed. By using Juicer, we can present social media activities in an engaging way and optimize our online presence.

The use of Juicer is based on your consent in accordance with Article 6(1)(a) GDPR.

The specific retention period of the processed data is determined by saas.group LLC. For more details, refer to Juicer’s privacy policy: https://www.juicer.io/privacy.

We use the Consent Management Platform (CMP) provided by Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, to obtain, manage, and document the consent of our website visitors in compliance with the requirements of the General Data Protection Regulation (GDPR). Usercentrics allows us to transparently and lawfully handle user consent for the use of cookies and other tracking technologies.

The use of Usercentrics is based on your consent in accordance with Article 6(1)(a) GDPR.

The retention period of the processed data is determined by the legal retention periods and is generally three years. For more information, refer to Usercentrics’ privacy policy: https://usercentrics.com/de/datenschutzerklaerung/.

We use Revinate, a tool provided by Revinate LLC, 2345 Yale St., First Floor, Palo Alto, CA 94306, USA, to optimize our email marketing, efficiently manage guest feedback, and improve communication with our guests. Revinate enables us to target our guests individually, analyze interactions, and enhance customer relationships.

The use of Revinate is based on your consent in accordance with Article 6(1)(a) GDPR.

The specific retention period of the processed data is determined by Revinate LLC. For more details, refer to Revinate’s privacy policy: https://www.revinate.com/privacy/.

The content of our website has been carefully created and thoroughly reviewed. However, we assume no liability for the accuracy, completeness, or timeliness of the information provided. Claims for damages due to the use or non-use of the information or the use of incorrect or incomplete information are excluded. All offers are subject to change and non-binding. We reserve the right to change, supplement, delete parts of the website or the entire content without separate announcement, or to discontinue publication temporarily or permanently.

The content and programming of our website are protected by copyright and related performance rights. Any reproduction, even in extracts, and public dissemination, particularly copying of texts, graphics, and photos, is prohibited without prior written consent.

Online Room Booking

It is possible to book a room on our website. All booking data entered by you is transmitted in encrypted form. In this context, no data is shared with third parties. The data is used solely for processing the booking and for communication.

Schani App

When staying at our hotels, you have the option to install an app for mobile check-in, mobile key access, and information about the hotel and Vienna. This is provided by our service provider (likeMagic, Wallisellenstraße 57, 8600 Dübendorf, Switzerland), which is committed to handling your data in compliance with data protection regulations. They implement all necessary organizational and technical measures to protect your data.

Cookies

We use cookies, which are small text elements used to store information in web browsers. Cookies are recognized during your next visit to our website and significantly contribute to faster loading times and a more convenient user experience. The information recognized and stored by cookies is used for identification purposes and for analyzing user behavior. These are stored on the server of the respective provider, who, as a processor, is obligated to comply with applicable data protection standards.

After visiting our website, cookies remain stored on your device unless you refuse them from the outset or actively delete them. Deactivating cookies may impair the functionality of our website for you. You can also prevent cookies from being stored by adjusting your browser settings. However, please note that, in this case, you may not be able to use all features of our website.

Additionally, you can prevent the transmission of data generated by the cookie related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plug-in available on Google's website. However, the plug-in is only available for certain browser programs.

Third-Party-Content

We also use third-party content on our website to make it as informative and user-friendly as possible. This includes, for example, Google Maps or RSS feeds. These third-party providers may receive your IP address for technical reasons. We have no control over how these third-party providers use your data. We refer you to the privacy policies of the respective providers in this regard.

Google Analytics

We use Google Analytics, a web analytics service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). Google Analytics uses cookies. The information generated by the cookie about your use of the website is usually transmitted to and stored on a Google server in the USA. Your IP address is anonymized or pseudonymized before transmission within the European Union. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and then anonymized.

Google uses this information to evaluate your use of the website, compile reports on website activity, and provide additional services related to website and internet usage to the website operator. The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data. Please refer to Google's privacy policy for more details, available at the following links:

Facebook Remarketing

This website uses Facebook Inc.'s ("Facebook") remarketing function "Custom Audiences." This function serves to present interest-based advertisements ("Facebook Ads") to visitors of this website when they visit the social network Facebook. For this purpose, the Facebook remarketing tag is implemented on this website. When visiting the website, a direct connection to the Facebook servers is established via this tag. Facebook is informed that you have visited this website, and Facebook assigns this information to your personal Facebook user account. For more information about Facebook's data collection and usage, as well as your rights and privacy protection options, refer to Facebook’s privacy notice:
https://www.facebook.com/about/privacy/

Alternatively, you can disable the remarketing function "Custom Audiences" at https://www.facebook.com/settings/?tab=ads#=. You need to be logged in to Facebook to do this.

Newsletter

You have the option to subscribe to a newsletter via our website, where you will be informed about offers and news from Schani Hotels. For this, we require your email address and your consent to receive the newsletter.

Once you register for the newsletter, we will send you a confirmation email with a link to confirm your subscription.

You can unsubscribe from the newsletter at any time free of charge. Please send your cancellation request to the following email address: presse@schanihotels.com. Alternatively, you can also unsubscribe using the link provided in the last newsletter. Once you unsubscribe, your data related to the newsletter distribution will be deleted immediately.

Applicant Management

The process the personal data of applicants required for organizing the application process. Processing may also occur electronically, for example, if we receive your application documents via email. If no employment contract is concluded with the applicant, the application documents will be deleted no later than 12 months after the decision, unless deletion conflicts with other legitimate interests on our part.

Other information

We have implemented organizational and technical security measures, which we continuously evaluate and adapt as needed, to protect your personal data stored and processed by us.

We reserve the right to change this privacy policy at any time and adapt it to new developments. The updated version is effective as soon as it is made available on our website. The current version of the privacy policy is always accessible on our website at:
https://www.schanihotels.com/en/legal/privacy-policy, and our legal notice is available at:
https://www.schanihotels.com/en/legal/imprint.

Your rights

You can request information about your personal data stored by us at any time, free of charge. As a data subject, you also have the right to withdraw consent, access, correct, delete, restrict, or transfer your personal data, provided that no legal retention obligation on our part opposes this. Please contact us at presse@schanihotels.com for such requests.

For complaints, the responsible supervisory authority is the Austrian Data Protection Authority, located at Barichgasse 40-42, 1030 Vienna.

Effective Date: December 2024

Hotels

Philosophy

Meetings & Events

Coworking

Privacy Policy

Statement on the Duty to Inform