Privacy Policy
Data protection
​
With this data protection declaration we inform you which personal data we process for what, how and where, in particular in connection with our pvphospitality.com website and our other services. With this data protection declaration, we also provide information about the rights of persons whose data we process.
For individual or additional offers and services, special, supplementary or additional data protection declarations as well as other legal documents such as general terms and conditions, terms of use or conditions of participation may apply.
Our offer is subject to Swiss data protection law and any applicable foreign data protection law such as that of the European Union (EU) with the General Data Protection Regulation (GDPR). The European Commission recognizes that Swiss data protection law guarantees adequate data protection.
​
​
1. Contact addresses
Responsibility for the processing of personal data:
​
PVP Hospitality GmbH
Huderstweg 10
8706 Meilen
Switzerland
​
​
We point out if there are other persons responsible for the processing of personal data in individual cases.
​
2. Processing of personal data
2.1 Terms
Personal data is all information that relates to a specific or identifiable person. A data subject is a person about whom personal data is processed. Processing includes all handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, procurement, collection, deletion, storage, modification, destruction and use of personal data.
​
The European Economic Area (EEA) comprises the European Union (EU) as well as the Principality of Liechtenstein, Iceland and Norway. The General Data Protection Regulation (GDPR) describes the processing of personal data as processing of personal data
​
2.2 Legal bases
We process personal data in accordance with Swiss data protection law, in particular the Federal Data Protection Act (DSG) and the Ordinance on the Federal Data Protection Act (VDSG).
If and to the extent that the General Data Protection Regulation (GDPR) is applicable, we process personal data in accordance with at least one of the following legal bases:
• Article 6 (1) (b) GDPR for the processing of personal data required to fulfill a contract with the person concerned and to carry out pre-contractual measures.
• Article 6 (1) (f) GDPR for the necessary processing of personal data in order to safeguard the legitimate interests of us or of third parties, provided that the fundamental freedoms and rights and interests of the data subject do not prevail. Legitimate interests are in particular our interest in making our offer permanent, user-friendly, secure and reliable and being able to advertise it if necessary, information security and protection against misuse and unauthorized use, the enforcement of our own legal claims and compliance with Swiss law.
• Article 6 (1) (c) GDPR for the processing of personal data required to fulfill a legal obligation to which we are subject in accordance with any applicable law of member states in the European Economic Area (EEA).
• Article 6 (1) (e) GDPR for the processing of personal data required to perform a task that is in the public interest.
• Article 6 (1) (a) GDPR for the processing of personal data with the consent of the person concerned.
• Article 6 (1) (d) GDPR for the necessary processing of personal data in order to protect the vital interests of the data subject or another natural person.
​
2.3 Type, scope and purpose
We process the personal data that is required to provide our offer in a permanent, user-friendly, secure and reliable manner. Such personal data can fall into the categories of inventory and contact data, browser and device data, content data, metadata or marginal data and usage data, location data, sales, contract and payment data.
​
We process personal data for the duration that is required for the respective purpose or the respective purposes or by law. Personal data that are no longer required to be processed are anonymized or deleted. Persons whose data we process generally have a right to deletion.
​
In principle, we only process personal data with the consent of the person concerned, unless the processing is permitted for other legal reasons, for example to fulfill a contract with the person concerned and for corresponding pre-contractual measures in order to safeguard our overriding legitimate interests because the processing is evident from the circumstances or after prior information.
​
In this context, we process information that a data subject voluntarily transmits to us when contacting us - for example by post, email, contact form, social media or telephone - or when registering for a user account. We can save such information, for example, in an address book, in a customer relationship management system (CRM system) or with comparable tools. If you transmit data about other persons to us, you are obliged to guarantee data protection for such persons as well as to ensure the accuracy of such personal data.
​
We also process personal data that we receive from third parties, obtain from publicly accessible sources or collect when making our offer available, insofar as and to the extent that such processing is permitted for legal reasons.
​
Personal data from applications will only be processed insofar as they are necessary for assessing suitability for an employment relationship or for the subsequent implementation of an employment contract. The personal data required to carry out an application process result from the information requested or communicated, for example in the context of a job advertisement. Applicants have the option of voluntarily providing further information for their respective applications.
​
2.4 Processing of personal data by third parties, including abroad
We can have personal data processed by commissioned third parties or process it together with third parties or with the help of third parties or transmit them to third parties. Such third parties are in particular providers whose services we make use of. We also guarantee adequate data protection for such third parties.
​
Such third parties are generally located in Switzerland and in the European Economic Area (EEA). Such third parties can also be located in other states and territories on earth as well as elsewhere in the universe, provided that their data protection law is assessed by the Federal Data Protection and Information Commissioner (FDPIC) and - if and insofar as the General Data Protection Regulation (GDPR) is applicable - according to Assessment of the European Commission - adequate data protection guaranteed, or if adequate data protection is guaranteed for other reasons, such as a corresponding contractual agreement, in particular on the basis of standard contractual clauses, or a corresponding certification. As an exception, such a third party can be located in a country without adequate data protection, provided that the data protection requirements, such as the express consent of the person concerned, are met.
​
3. Data Subject Rights
Affected persons, whose personal data we process, have the rights under Swiss data protection law. This includes the right to information and the right to correct, delete or block the personal data processed.
​
Affected persons whose personal data we process can - if and insofar as the General Data Protection Regulation (GDPR) is applicable - a free confirmation as to whether we are processing their personal data and, if so, request information about the processing of their personal data, restrict the processing of their personal data exercise your right to data portability and have your personal data corrected, deleted (“right to be forgotten”), blocked or completed.
​
Affected persons whose personal data we process can - if and insofar as the GDPR is applicable - revoke their consent at any time with effect for the future and object to the processing of their personal data at any time.
​
Affected persons, whose personal data we process, have the right to lodge a complaint with a competent supervisory authority. The supervisory authority for data protection in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).
​
4. Data security
We take appropriate and suitable technical and organizational measures to ensure data protection and, in particular, data security. However, the processing of personal data on the Internet can always have security gaps despite such measures. We cannot therefore guarantee absolute data security.
​
Our online offer is accessed using transport encryption (SSL / TLS, in particular with the Hypertext Transfer Protocol Secure, abbreviated HTTPS). Most browsers indicate transport encryption with a padlock in the address bar.
​
Access to our online offer is subject - as is fundamentally the case with all Internet use - to mass surveillance without cause or suspicion, as well as other surveillance by security authorities in Switzerland, the European Union (EU), the United States of America (USA) and others States. We cannot exert any direct influence on the processing of personal data by secret services, police stations and other security authorities.
​
5. Use of the website
5.1 Cookies
We can use cookies for our website. Cookies - our own cookies (first-party cookies) as well as cookies from third parties whose services we use (cookies from third parties or third-party cookies) - are data that are stored in your browser. Such stored data need not be limited to traditional cookies in text form. Cookies cannot run programs or transmit malware such as Trojans and viruses.
​
When you visit our website, cookies can be temporarily stored in your browser as "session cookies" or for a certain period of time as so-called permanent cookies. "Session cookies" are automatically deleted when you close your browser. Permanent cookies have a certain storage period. In particular, they enable your browser to be recognized the next time you visit our website and thus, for example, to measure the reach of our website. However, permanent cookies can also be used for online marketing, for example.
​
You can deactivate or delete cookies in whole or in part at any time in your browser settings. Our website may no longer be fully available without cookies. If and to the extent necessary, we actively request your express consent to the use of cookies.
​
In the case of cookies that are used to measure success and reach or for advertising, a general objection ("opt-out") via the Network Advertising Initiative (NAI), YourAdChoices (Digital Advertising Alliance) or Your Online Choices ( European Interactive Digital Advertising Alliance, EDAA).
​
5.2 Server log files
We can collect the following information for every access to our website, provided this is transmitted from your browser to our server infrastructure or can be determined by our web server: Date and time including time zone, Internet Protocol (IP) address, access status (HTTP- Status code), operating system including user interface and version, browser including language and version, accessed individual sub-pages of our website including the amount of data transferred, last website accessed in the same browser window (referer or referrer).
​
We store such information, which can also represent personal data, in server log files. The information is required to make our online offer permanent, user-friendly and reliable, and to ensure data security and, in particular, the protection of personal data - also by third parties or with the help of third parties.
​
5.3 Tracking pixels
We can use tracking pixels on our website. Tracking pixels are also known as web beacons. Tracking pixels - also from third parties whose services we use - are small, usually invisible images that are automatically retrieved when you visit our website. The same information can be recorded with tracking pixels as in server log files.
​
6. Notifications and communications
We send notifications and communications such as newsletters by email and other communication channels such as instant messaging.
​
6.1 Success measurement and reach measurement
Notifications and messages can contain web links or tracking pixels that record whether an individual message has been opened and which web links have been clicked. Such web links and tracking pixels can also record the use of notifications and messages on a personal basis. We need this statistical recording of the usage for the success and reach measurement in order to be able to offer notifications and messages based on the needs and reading habits of the recipients effectively and user-friendly as well as permanently, securely and reliably.
​
6.2 Consent and objection
In principle, you must expressly consent to the use of your e-mail address and your other contact addresses, unless the use is permitted for other legal reasons. We use the “double opt-in” procedure for any consent to receive e-mails if possible, which means that you will receive an e-mail with a web link that you have to click to confirm, so that there is no misuse by unauthorized third parties can be done. We can log such consents including the Internet Protocol (IP) address as well as the date and time for reasons of evidence and security.
​
In principle, you can unsubscribe from notifications and communications such as newsletters at any time. Notifications and messages that are absolutely necessary for our offer are reserved. By unsubscribing, you can, in particular, object to the statistical recording of usage for measuring success and reach.
​
7. Social media
We are present on social media platforms and other online platforms in order to be able to communicate with interested people and to provide information about our offer. Personal data can also be processed outside of Switzerland and the European Economic Area (EEA).
The general terms and conditions (GTC) and terms of use as well as data protection declarations and other provisions of the individual operators of such online platforms also apply. These provisions inform in particular about the rights of data subjects, including in particular the right to information.
​
8. Success and reach measurement
8.1 Google Analytics
We use Google Analytics to analyze how our website is used, whereby we can also measure, for example, the reach of our website and the success of third-party links to our website. It is a service provided by the American Google LLC. The Irish Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland.
​
Google also tries to record individual visitors to our website when they use different browsers or devices (cross-device tracking). Cookies are also used for this. Your Internet Protocol (IP) address is required for Google Analytics, but it will not be merged with other Google data.
​
In any case, we will have your Internet Protocol (IP) address anonymized by Google before analysis. As a result, your full IP address is generally not transmitted to Google in the USA.
​
Further information on the type, scope and purpose of data processing can be found in the principles for data protection and security and in the data protection declaration from Google, in the guidelines on data protection in Google products (including Google Analytics), in the information on how Google data from websites used on which Google services are used and in the information about cookies at Google. There is also the option of using the “browser add-on to deactivate Google Analytics” and objecting to personalized advertising.
​
8.2 Google Tag Manager
We use Google Tag Manager to integrate and manage services for analytics or advertising from Google and third parties in our website. It is a service provided by the American Google LLC. The Irish Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland. No cookies are used, but cookies can be used in the context of the services integrated and managed with them. We provide information on the processing of personal data by such services in this data protection declaration.
​
9. Third Party Services
We use services from third parties in order to be able to provide our offer in a permanent, user-friendly, secure and reliable manner. Such services also serve to be able to embed content in our website. Such services - for example hosting and storage services, video services and payment services - require your Internet Protocol (IP) address, since such services cannot otherwise transmit the corresponding content. Such services can be located outside Switzerland and the European Economic Area (EEA), provided that adequate data protection is guaranteed.
For their own security-relevant, statistical and technical purposes, third parties whose services we use can also process data in connection with our offer and from other sources - including cookies, log files and tracking pixels - in an aggregated, anonymised or pseudonymised manner.
​
9.1 Digital infrastructure
We use services from third parties in order to be able to use the digital infrastructure required for our offer. These include, for example, hosting and storage services from specialized providers.
In particular, we use:
• Wix.com: website builder and other infrastructure; Provider: Wix.com (USA) / Ltd. Wix.com Inc. (USA) / Wix.com Ltd. (Israel) / Wix.com Luxembourg S.a.r.l. (Luxembourg); Data protection information: Data protection policy, “Data protection” help center, including “cookies”.
​
9.2 Audio and Video Conferences
We use audio and video conferencing services in order to be able to communicate with our customers and other people. We can use it to conduct audio and video conferences, virtual meetings and training courses such as webinars, for example. In addition to this data protection declaration, any conditions of the services used, such as conditions of use or data protection declarations, also apply.
In particular, we use Zoom, a service of the American Zoom Video Communications Inc. The rights under the European General Data Protection Regulation (GDPR) are also granted to users in Switzerland by Zoom. Further information on the type, scope and purpose of data processing can be found in the data protection guidelines and on the “Legal provisions and data protection” page from Zoom.
​
9.3 Social media functions and social media content
For our website, we use the option of embedding functions and contents of LinkedIn with the help of plugins. For example, we can enable you to use the LinkedIn “share” function on our website. Cookies are also used for this. For more information, see the LinkedIn plugins page.
​
The plugins are an offer from LinkedIn Ireland Unlimited Company in Ireland or the American LinkedIn Corporation. If you are logged into LinkedIn as a user, LinkedIn can assign the use of our online offer to your profile. Further information on the type, scope and purpose of data processing can be found in the data protection guideline, in the cookie guideline and on the data protection portal of LinkedIn. It is also possible to object to personalized advertising.
​
9.4 Advertising
9.4.1 Google Ads
We use Google Ads (formerly AdWords) in order to be able to advertise our offer on the Google search engine and elsewhere on the Internet, for example on other websites, based on search queries, among other things. Google Ads is an offer from the American Google LLC. The Irish Google Ireland Limited is responsible for users in the European Economic Area (EEA) and Switzerland. Google Ads also uses cookies. Google uses different domain names - in particular doubleclick.net, googleadservices.com and googlesyndication.com - for Google Ads.
​
With such advertising, we would particularly like to reach people who are interested in our online offer or who already use our online offer. For this purpose, we transmit corresponding - possibly also personal - information to Google (remarketing). We can also determine whether our advertising is successful, i.e. whether it leads to visits to our website (conversion tracking).
​
Further information on the type, scope and purpose of data processing can be found in the principles for data protection and security and in the data protection declaration from Google, in the information on how Google uses data from websites on which Google services are used and in the information about Google cookies. It is also possible to object to personalized advertising.
​
9.4.2 Instagram Ads
We use Instagram Ads in order to be able to advertise our offerings on Instagram. Instagram Ads is an offer from Facebook Ireland Limited in Ireland or the American Facebook Inc. Cookies can also be used.
​
With such advertising, we would particularly like to reach people who are interested in our online offer or who already use our online offer. For this purpose, we transmit corresponding - possibly also personal - information to Facebook (custom audiences including lookalike audiences), in particular with the so-called Facebook pixel. We can also determine whether our advertising is successful, i.e. whether it leads to visits to our website (conversion tracking).
​
Further information on the type, scope and purpose of data processing can be found in Instagram's data protection guidelines and in Facebook's data protection guidelines (“data guidelines”). In addition, users can use Instagram's advertising preferences to check which interests the advertising relates to, and use Facebook's advertising preferences to influence which advertising is displayed to them.
​
9.4.3 LinkedIn Ads
We use LinkedIn Marketing Solutions to advertise our offerings on LinkedIn (LinkedIn Ads). It is an offer from LinkedIn Ireland Unlimited Company in Ireland or the American LinkedIn Corporation. Cookies are also used for this.
​
With such advertising, we would particularly like to reach people who are interested in our online offer or who already use our online offer. For this purpose, we transmit corresponding - possibly also personal - information to LinkedIn, in particular with the so-called LinkedIn Insight Tag (retargeting). We can also determine whether our advertising is successful, i.e. whether it leads to visits to our website (conversion tracking). If you are logged into LinkedIn as a user, LinkedIn can assign the use of our online offer to your profile.
​
Further information on the type, scope and purpose of data processing can be found in the data protection guideline, in the cookie guideline and on the data protection portal of LinkedIn. It is also possible to object to personalized advertising.
​
10. closing remarks
We have created this data protection declaration with the data protection generator from data protection partners.
​
We can adapt and supplement this data protection declaration at any time. We will inform you about such adjustments and additions in a suitable form, in particular by publishing the current data protection declaration on our website.
​
This data protection declaration is an unofficial translation from the German-language original.
​