Data protection
All matters relating to data protection are very close to our hearts. Here you will find information on your personal data protection:
Cross-channel notices
Person responsible and content of this data protection declaration
The Hotel ODELYA AG is the operator of the Hotel ODELYA as well as the website www.odelya.ch (hereinafter referred to as "website") and is responsible for the data processing listed in this data protection declaration, unless otherwise stated.
In order for you to know what personal data we collect from you and for what purposes we use it, please take note of the information below. When it comes to data protection, we are guided primarily by the legal requirements of Swiss data protection law, in particular the Swiss Federal Data Protection Act (DSG).
Please note that the following information is reviewed and amended from time to time. We therefore recommend that you consult this data protection declaration regularly. Furthermore, other companies are responsible under data protection law for individual data processing operations listed below or are jointly responsible with us, so that in these cases the information provided by these providers is also authoritative.
Contact person for data protection
If you have any questions about data protection or would like to exercise your rights, please contact our Managing Director - he is our data protection contact - by sending an email to the following address: hotel@odelya.ch
Your rights
Provided the legal requirements are met, you have the following rights as a person affected by data processing:
Right of access: you have the right to request access to your personal data stored by us at any time and free of charge (provided we process it). This gives you the opportunity to check what personal data we are processing about you and that we are using it in accordance with the applicable data protection regulations.
Right to rectification: You have the right to have inaccurate or incomplete personal data rectified and to be informed of the rectification. In this case, we will inform the recipients of the data concerned of the adjustments made, unless this is impossible or involves disproportionate effort.
Right to deletion: You have the right to have your personal data deleted under certain circumstances. In individual cases, particularly in the case of legal retention obligations, the right to delete may be excluded. In this case, the deletion may be replaced by a blocking of the data if the conditions are met.
Right to restriction of processing: You have the right to request that the processing of your personal data be restricted.
Right to data transfer: You have the right to receive from us, free of charge, the personal data you have provided to us in a readable format.
Right to object: You can object to data processing at any time, in particular for data processing in connection with direct advertising (e.g. advertising e-mails).
Right of withdrawal: In principle, you have the right to withdraw your consent at any time. However, processing activities based on your consent in the past will not become unlawful as a result of your revocation.
To exercise these rights, please send an email to the attention of our managing director to the following address: hotel@odelya.ch.
Right of complaint: You have the right to lodge a complaint with a competent supervisory authority, e.g. against the way in which your personal data is processed,
Data security
We use appropriate technical and organisational security measures to protect your personal data stored with us against loss and unlawful processing, namely unauthorised access by third parties. Our employees and the service companies commissioned by us are obliged by us to maintain confidentiality and data protection. Furthermore, these persons are only granted access to personal data to the extent necessary for the fulfilment of their tasks.
Our security measures are continuously adapted in line with technological developments. However, the transmission of information via the Internet and electronic means of communication always involves certain security risks and even we cannot provide an absolute guarantee for the security of information transmitted in this way.
Contacting us
If you contact us via our contact addresses and channels (e.g. by e-mail, telephone or contact form), your personal data will be processed. The data you have provided us with, e.g. the name of your company, your name, your function, your e-mail address or telephone number and your request will be processed. In addition, the time of receipt of the request is documented. Mandatory data are marked with an asterisk (*) in contact forms.
We process this data exclusively in order to implement your request (e.g. providing information about our hotel, support in the processing of contracts such as questions about your booking, incorporating your feedback into the improvement of our service, etc.).
Use of your data for marketing purposes
Central data storage and analysis in the CRM system
Insofar as a clear assignment to your person is possible, we will store and link the data described in this data protection declaration, i.e. in particular your personal details, your contact details, your contract details and your surfing behaviour on our websites, in a central database. This serves the efficient administration of customer data and allows us to adequately respond to your requests and enables the efficient provision of the services you have requested and the processing of the associated contracts.
We evaluate this data in order to further develop our offers in a needs-oriented manner and to display and suggest the most relevant information and offers to you. We also use methods that predict possible interests and future orders based on your website usage.
Anchor eMail Marketing and Newsletter
When you register for our email newsletter (whether on our website or elsewhere) the following data is collected. Mandatory data is marked with an asterisk (*) in the registration form:
eMail address
First and last name
By registering, you consent to the processing of this data in order to receive news from us about our hotel and related information on products and services. This may include requests to evaluate any of the aforementioned products and services. The collection of the salutation and name allows us to verify the association of the registration with any existing customer account and to personalise the content of the mails. The link to a customer account helps us to make the offers and content contained in the newsletter more relevant to you and better tailored to your potential needs. Furthermore, you also consent to the statistical evaluation of user behaviour for the purpose of optimising and adapting the newsletter.
We will use your data for email distribution until you revoke your consent. Revocation is possible at any time, in particular via the unsubscribe link in all our marketing emails.
Our marketing emails may contain a so-called web beacon or 1x1 pixel (tracking pixel) or similar technical aids. A web beacon is an invisible graphic that is linked to the user ID of the respective newsletter subscriber. For each marketing email sent, we receive information on which addresses have not yet received the email, to which addresses it was sent and for which addresses the sending failed. We also see which addresses have opened the email, for how long and which links they have clicked on. Finally, we also receive information about which addresses have unsubscribed. We use this data for statistical purposes and to optimise the advertising emails in terms of frequency, timing, structure and content of the emails. This allows us to better tailor the information and offers in our emails to the individual interests of the recipients.
The web beacon is deleted when you delete the email. To prevent the use of the web beacon in our marketing emails, please set the parameters of your email programme so that HTML is not displayed in messages if this is not already the case by default. In the help sections of your eMail software you will find information on how to configure this setting, e.g. here for Microsoft Outlook.
Disclosure to third parties and access by third parties
Without the support of other companies, we would not be able to provide our services in the desired form. In order for us to be able to use the services of these companies, it is also necessary to pass on your personal data to a certain extent. Such disclosure is made to the extent necessary to fulfil the contract you have requested, i.e. e.g. to other hotels, restaurants or other third parties for which you have made a booking or placed an order (e.g. flower arrangements for a banquet).
We also share information with selected service providers only to the extent necessary to provide the service. Various third party service providers are also explicitly mentioned in this privacy policy, e.g. in the sections on marketing. These are, for example, IT service providers (e.g. providers of software solutions), advertising agencies and consultancies.
In addition, your data may be passed on in particular to authorities, legal advisors or collection agencies if we are legally obliged to do so or if this is necessary to protect our rights, in particular to enforce claims arising from our relationship with you. Data may also be disclosed if another company intends to acquire our company or parts thereof and such disclosure is necessary to carry out due diligence or to complete the transaction
Anchor Transfer of personal data abroad
We are also entitled to transfer your personal data to third parties abroad if this is necessary to carry out the data processing mentioned in this data protection declaration (see in particular sections 12-15). In doing so, we will, of course, comply with the legal provisions on the disclosure of personal data to third parties. If the country in question does not have an adequate level of data protection, we guarantee through contractual arrangements that your data is adequately protected at these companies.
Anchor retention periods
We only store personal data for as long as is necessary to carry out the processing explained in this data protection declaration within the scope of our legitimate interest. In the case of contractual data, storage is required by statutory retention obligations. Requirements that oblige us to retain data result from the provisions on accounting and from tax law regulations. According to these regulations, business communication, concluded contracts and accounting vouchers must be stored for up to 10 years. As far as we no longer need this data to perform the services for you, the data will be blocked. This means that the data may then only be used if this is necessary to fulfil the retention obligations or to defend and enforce our legal interests. The data will be deleted as soon as there is no longer any obligation to retain the data and no longer any legitimate interest in retaining it.
Log file data
When you visit our website, the servers of our hosting provider (Hofmänner New Media AG, Switzerland) temporarily store every access in a log file. The following data is collected without your intervention and stored until it is automatically deleted by us:
the IP address of the requesting computer
the date and time of access
the name and URL of the file accessed
the website from which the access was made, if applicable with the search word used
the operating system of your computer and the browser you are using (including type, version and language setting)
device type in the case of access by mobile phones
the city or region from which the access was made
the name of your internet access provider
This data is collected and processed for the purpose of enabling the use of our website (connection establishment), to ensure system security and stability on a permanent basis, as well as for error and performance analysis and enables us to optimise our website (see also section 13 for the last points).
In the event of an attack on the network infrastructure of the website or a suspicion of other unauthorised or abusive website use, the IP address and the other data are evaluated for the purpose of clarification and defence and, if necessary, used in the context of criminal proceedings to identify and take civil and criminal action against the users concerned.
Finally, when visiting our website, we use cookies as well as applications and tools which are based on the use of cookies. In this context, the data described here may also be processed. You will find more details on this in the other subsequent sections of this data protection declaration, in particular section 11.
AnkerAnkerCookies
Cookies are information files that your web browser stores on your computer's hard drive or memory when you visit our website. Cookies are assigned identification numbers that identify your browser and allow the information contained in the cookie to be read.
Among other things, cookies help to make your visit to our website easier, more pleasant and more meaningful. We use cookies for various purposes that are necessary, i.e. "technically necessary", for your desired use of the website. For example, we use cookies to be able to identify you as a registered user after logging in, without you having to log in again each time when navigating the various sub-pages. The provision of the "book directly" function is also based on the use of cookies. Furthermore, cookies also perform other technical functions required for the operation of the website, such as so-called load balancing, i.e. the distribution of the performance load of the site to different web servers in order to relieve the servers. Cookies are also used for security purposes, for example to prevent the unauthorised posting of content. Finally, we also use cookies as part of the design and programming of our website, e.g. to enable the uploading of scripts or codes.
Most internet browsers automatically accept cookies. However, when you access our website, we ask you to consent to the cookies we use that are not technically necessary. You can use the corresponding buttons in the cookie banner to make your desired settings. Details of the services and data processing associated with each cookie can be found within the cookie banner and in the following sections of this privacy policy.
You may also be able to configure your browser so that no cookies are stored on your computer or so that a message always appears when you receive a new cookie. On the following pages you will find explanations of how you can configure the processing of cookies in selected browsers.
Google Chrome
Apple Safari
Disabling cookies may prevent you from using all the features of our website.
You can find more detailed information about the cookies used on our website and their providers at www.odelya.ch.
Google SiteSearch / Google Custom Search Engine
This website uses the Google SiteSearch/Google Custom Search Engine of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). This enables us to provide you with an efficient search function on our website.
When using our search fields, your browser may transmit the log file data listed in section 10 (incl. IP address) as well as the search term you entered to Google, provided you have installed JavaScript in your browser. If you would like to prevent the transmission of data, you can deactivate Java Script in the browser settings (usually in the "Privacy" menu). Please note that the search function and other functions of the website may be impaired in this case.
For further processing of data by Google, please refer to Google's privacy policy: www.google.com/intl/de_de/policies/privacy.
Tracking and web analysis tools
General information on tracking
For the purpose of demand-oriented design and continuous optimisation of our website, we use the web analysis services listed below. In this context, pseudonymised usage profiles are created and cookies are used (please also refer to section 11). The information generated by the cookie about your use of this website is usually transmitted together with the log file data listed in section 10 to a server of the service provider, where it is stored and processed. This may also involve transmission to servers abroad, e.g. in the USA (see section 8, in particular on the guarantees provided).
By processing the data, we obtain the following information, among others:
Navigation path followed by a visitor on the site (incl. content viewed and products selected or purchased or services booked)
the length of time spent on the website or sub-page
the sub-page on which the website is left
the country, region or city from which access is made
end device (type, version, colour depth, resolution, width and height of the browser window)
returning or new visitors
On our behalf, the provider will use this information to evaluate the use of the website, to compile reports on website activity for us and to provide other services related to website and internet use for the purposes of market research and demand-oriented design of these internet pages. For these processing operations, we and the providers may be considered joint data controllers up to a certain extent.
You can refuse processing by rejecting or deactivating the relevant cookies in your web browser settings (see section 11) or by making use of the service-specific options described below.
For the further processing of the data by the respective provider as data protection
For the further processing of the data by the respective provider as the (sole) responsible party under data protection law, in particular also any forwarding of this information to third parties such as authorities on the basis of national legal regulations, please refer to the respective data protection information of the provider.
Google Analytics
We use the web analysis service Google Analytics from Google Ireland Limited (Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland) or Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) ("Google").
In the process, the data described about the use of the website may be transmitted to the servers of Google LLC. in the USA for the processing purposes explained (see section 13.1). The IP address is shortened by activating IP anonymisation ("anonymizeIP") on this website before transmission within the Member States of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.
Users can prevent the collection of the data generated by the cookie and related to the website use by the user concerned (incl. the IP address) to Google as well as the processing of this data by Google by downloading and installing the browser plugin under the following link:
http://tools.google.com/dlpage/gaoptout?hl=de. Further information on data protection at Google can be found here.
Social Media
Social Media Profiles
On our website, we have included links to our profiles on the social networks of the following providers:
Meta Platforms Inc, 1601 S California Ave, Palo Alto, CA 94304, USA;
Instagram Inc. 1601 Willow Road, Menlo Park, CA 94025, USA;
Twitter Inc. located at 1355 Market Street, Suite 900, San Francisco, CA 94103, USA;
Linkedin Unlimited Company, Wilton Place, Dublin 2, Ireland.
When you click on the icons of the social networks, you are automatically redirected to our profile in the respective network. This establishes a direct connection between your browser and the server of the respective social network. This provides the network with the information that you have visited our website with your IP address and clicked on the link.
If you click on a link to a network while you are logged into your user account with the network in question, the content of our website may be linked to your profile so that the network can assign your visit to our website directly to your account. If you want to prevent this, you should log out before clicking on the relevant links. A connection between your access to our website and your user account takes place in any case if you log in to the respective network after clicking on the link. The respective provider is responsible under data protection law for the associated data processing. Please therefore note the information on the website of the network.
Social Media Plugins
On our website you can use social plugins from the providers listed below:
Meta Platforms Inc, 1601 S California Ave, Palo Alto, CA 94304, USA, privacy notice;
Instagram Inc, 1601 Willow Road, Menlo Park, CA 94025, USA, privacy notice;
Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, Privacy Notice;
Linkedin Unlimited Company, Wilton Place, Dublin 2, Ireland, Privacy Notice.
We use the social plugins to make it easier for you to share content from our website. The social plugins help us to increase the visibility of our content on social networks and in this respect contribute to better marketing.
The plugins are deactivated by default on our website and therefore do not send any data to the social networks when you simply call up our website. To increase data protection, we have integrated the plugins in such a way that a connection is not automatically established with the networks' servers. Only when you activate the plugins and thus give your consent to data transmission and further processing by the providers of the social networks, does your browser establish a direct connection to the servers of the respective social network.
The content of the plugin is transmitted directly to your browser by the social network and integrated into the website by it. This provides the respective provider with the information that your browser has accessed the corresponding page of our website, even if you do not have an account with this social network or are not currently logged in to it. This information (including your IP address) is transmitted from your browser directly to a server of the provider (usually in the USA) and stored there. We have no influence on the scope of the data that the provider collects with the plugin, although from a data protection perspective we can be considered jointly responsible with the providers up to a certain extent.
If you are logged in to the social network, it can assign your visit to our website directly to your user account. If you interact with the plugins, the corresponding information is also transmitted directly to a server of the provider and stored there. The information (e.g. that you like a product or service from us) may also be published on the social network and possibly displayed to other users of the social network. The provider of the social network may use this information for the purpose of placing advertisements and designing the respective offer in line with requirements. For this purpose, usage, interest and relationship profiles could be created, e.g. to evaluate your use of our website with regard to the advertisements displayed to you on the social network, to inform other users about your activities on our website and to provide other services associated with the use of the social network. The purpose and scope of the data collection and the further processing and use of the data by the providers of the social networks, as well as your rights in this regard and setting options for protecting your privacy, can be found directly in the data protection information of the respective provider.
If you do not want the provider of the social network to assign the data collected via our website to your user account, you must log out of the social network before activating the plugins. You can revoke your consent at any time by declaring your revocation to the provider of the plugin in accordance with the information in their data protection information.
Online advertising and targeting
No online third-party advertising
We do not use the services of other companies to display online advertising tailored to your individual needs.
Consequently, neither tracking of your user behaviour ("tracking") nor the targeted display of advertising ("targeting") by other companies is possible.
Google Ads
This website uses the services of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google") for online advertising. Google uses cookies for this purpose, such as the so-called DoubleClick cookie, which enable your browser to be recognised when you visit other websites. The information generated by the cookies about your visit to these websites (including your IP address) will be transmitted to and stored by Google on servers in the United States (please also refer to section 8). Further information on data protection at Google can be found here.
You can revoke your consent at any time by rejecting or switching off the relevant cookies in your web browser settings (see section 11). Further options for blocking advertising can be found here.
booking on our website, by correspondence or
by telephone call
If you make bookings or order vouchers either via our website (simplebooking, see also point 18), by correspondence (email or letter post) or by telephone call, we collect the following data, whereby mandatory data are marked with an asterisk (*) in the corresponding form:
Salutation
First name
Surname
Street and house number
Postcode Postal code
City
Country
Date of birth
eMail address
Telephone number
Language
Credit card information
We will only use this data and other information voluntarily provided by you (e.g. expected arrival time, motor vehicle registration plate, preferences, comments) for the purpose of processing the contract, unless otherwise stated in this data protection declaration or you have given your separate consent. We will process the data by name in order to record your booking as requested, to provide the services booked, to contact you in the event of any uncertainties or problems and to ensure correct payment. Your credit card details will be automatically deleted after your departure.
Online payment processing
If you make chargeable bookings or add products on our website, depending on the product or service and the desired method of payment - in addition to the information mentioned in section 16 - the provision of further data is required, such as your credit card information or the login to your payment service provider. This information, as well as the fact that you have purchased a service from us for the amount and at the time in question, will be forwarded to the respective payment service providers (e.g. payment solution providers, credit card issuers and credit card acquirers). Please always observe the information provided by the respective company, in particular the data protection declaration and the general terms and conditions.
Bookings via booking platforms
If you make bookings via a third-party platform (e.g. via simplebooking, booking.com, Hotel, Escapio, Expedia, Holidaycheck, Hotel Tonight, HRS, Kayak, Mr. & Mrs. Smith, Splendia, Tablet Hotels, Tripadvisor, Trivago, Weekend4Two or similar), we receive various personal information from the respective platform operator in connection with the booking made. As a rule, this is the data listed in section 16 of this data protection declaration.
In addition, we may receive enquiries about your booking. We will process this data by name in order to record your booking as requested and to provide the booked services.
Finally, we may be informed by the platform operators about disputes in connection with a booking. In doing so, we may also receive data relating to the booking process, which may include a copy of the booking confirmation as evidence of the actual completion of the booking. We process this data to protect and enforce our claims.
Submitting ratings
In order to help other users with their purchase decision and to support our quality management (in particular the processing of negative feedback), you have the opportunity to rate your stay with us via our online questionnaire at www.trustyou.com. The data that is processed and published on the website is the data that you have made available to us, i.e. in addition to your evaluation and its time, possibly also a comment that you have added to your evaluation or the name that you have given.
We reserve the right to delete or have deleted unlawful evaluations and to contact you in the event of suspicion and request a statement.
Application for a vacancy
You have the option of applying to us spontaneously, in person or via a corresponding e-mail address, for a specific job advertisement. For this purpose we collect the following
data, whereby mandatory data (if in form form) are marked with an asterisk (*):
First name
Name
eMail address
Application documents (e.g. CV, letter of motivation, certificates, etc.)
We will use these and other data voluntarily provided by you to check your application. Application documents of unsuccessful applicants will be deleted at the end of the application process, unless you explicitly agree to a longer retention period or we are not legally obliged to retain them for a longer period.
Data processing in connection with your Residence
Data processing for the fulfilment of legal registration obligations
Upon arrival at our hotel, we may require the following information from you and your companions (mandatory *):
First and last name
Postal address and canton
Date of birth
Nationality
Official identification card and number
Date of arrival and departure
We collect this information in order to fulfil legal reporting obligations, which arise in particular from hospitality or police law. Insofar as we are obliged to do so under the applicable regulations, we forward this information to the competent police authority.
Recording of services received
If you purchase additional services during your stay (e.g. wellness, restaurant, activities), we will record the subject of the service and the time of purchase for billing purposes.
Guest feedback
If you have provided us with your email address in connection with your booking, you will receive a so-called post-stay email after departure. In it, we thank you for your stay and ask you to rate your hotel experience via our online questionnaire (see section 19) or on online platforms such as Google. In our questionnaire, we collect the following data, with mandatory data marked with an asterisk (*) in the corresponding form:
Name
eMail*
Type of trip*
Country of origin*
Month and year of travel*
Guest feedback is completely voluntary. However, it helps us to continuously improve our offer and services and to adapt them to your needs. We will use the information provided to us exclusively for statistical purposes, unless otherwise stated in this data protection declaration or you have given your separate consent. We will process the data by name in order to contact you in the event of any uncertainties.
Video surveillance
In order to prevent misuse and to take action against illegal behaviour (in particular theft and damage to property), the entrance area and the publicly accessible areas of our hotel are monitored by cameras. The image data is only viewed if there is a suspicion of illegal behaviour. Otherwise, the image recordings are automatically deleted after 14 days.
For the provision of the video surveillance system, we rely on a service provider who may have access to the data insofar as this is necessary for the provision of the system. Should the suspicion of illegal behaviour be substantiated, the data may then be passed on to consulting companies (in particular our law firm) and authorities to the extent necessary to enforce claims or file charges.
Use of our WiFi network
In our hotel you have the opportunity to use the WiFi network operated by Init7 AG, Winterthur, free of charge. Init7 AG, Winterthur, must comply with the legal obligations of the Federal Act on the Monitoring of Post and Telecommunications Traffic (BÜPF) and the associated ordinance. If the legal requirements are met, the operator of the WiFi must monitor the use of the Internet and data traffic on behalf of the responsible authority. The operator of the WiFi can also be obliged to disclose the customer's contact, usage and marginal data to the authorized authorities. The contact, usage and marginal data will be kept for 6 months and then deleted. payment processing If you purchase products or services or pay for your stay in our hotel using electronic means of payment, the processing of personal data is necessary. By using the payment terminals, you transmit the information stored in your means of payment, such as the name of the cardholder and the card number, to the payment service providers involved (e.g. payment solution providers, credit card issuers and credit card acquirers). They also receive the information that the means of payment was used in our hotel, the amount and the time of the transaction. Conversely, we only receive the credit of the amount of the payment made at the appropriate time, which we can assign to the relevant document number, or information that the transaction was not possible or was canceled. Always observe the information of the respective company, in particular the data protection declaration and the general terms and conditions. Still have questions or are you unsure? Your trust is very important to us. Therefore, we would like to be at your disposal regarding the processing of your personal data.
If you have any questions that this data protection declaration could not answer, please contact us via email at hotel@odelya.ch.
Hotel ODELYA I Missionsstrasse 21a CH-4055 Basel hotel@odelya.ch Phone +41 61 260 21 21