Reservations online

Privacy policy

Information on data processing

We are pleased that you are visiting our homepage and thank you for your interest in our hotels & restaurants. The handling of the data of our guests, customers and interested parties but also applicants is a matter of trust for us. The trust placed in us is very important to us and therefore the importance and obligation to handle your data carefully and to protect it from misuse and unauthorized use.

In order that you feel safe and comfortable when visiting our websites, but also in our hotels & restaurants, we take the protection of your personal data and its confidential treatment very seriously. Therefore, we act in accordance with the applicable legal regulations for the protection of personal data and data security. With the following notes on data protection, we would like to inform you about when we store which data and how we use it - naturally in compliance with the applicable legislation.

The ARCOTEL Hotels & Resorts are specifically based on the EU General Data Protection Regulation (GDPR) as well as on the current national data protection laws. When using the internet, we follow the Telecommunications Act (TKG) of the Republic of Austria to protect your personal data. In the following we explain what information we collect during your visit to our website and how this information is used.


Name and address of the person responsible

The person responsible within the meaning of the GDPR and other national data protection laws of the member states and other data protection regulations is the:

ARCOTEL Hotels & Resorts GmbH, Konstantingasse 6-8, A-1160 Vienna, Austria
43 (1) 485 5000
Fax: +43 (1) 485 5000-12
Mail: office@arcotel.com


Name and address of the Data Protection Officer

The data protection officer of the controller is:

Mr. Andreas Thurmann
DataSolution LUD GmbH, Isarstr. 13, D-14974 Ludwigsfelde, Germany
Phone: +49 (0) 3378 202513
Mail: mail@hoteldatenschutz.de


General information on data processing

Scope of the processing of personal data

As a matter of principle, we collect and use personal data of our users only to the extent necessary to provide a functional website and our contents and services. The collection and use of personal data of our users is regularly only carried out with the consent of the user. An exception is made in cases where prior consent cannot be obtained for factual reasons and the processing of the data is permitted by law.

Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing of personal data, Artt. 6 para. 1 lit. a; 7 GDPR serves as the legal basis. When processing personal data which is necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations which are necessary to carry out pre-contractual measures. Insofar as the processing of personal data is necessary to fulfil legal obligations to which our hotels are subject (e.g. national registration laws), Art. 6 para. 1 lit. c GDPR serves as the legal basis. If the processing is necessary to safeguard a legitimate interest of our hotel group or a third party and the interests, fundamental rights and freedoms of the person concerned do not outweigh the former interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for the processing.

Data erasure and storage duration

The personal data of the person concerned will be deleted or blocked as soon as the purpose of the storage no longer applies. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other regulations to which the person responsible is subject. Data will also be blocked or deleted when a storage period prescribed by the above-mentioned standards expires, unless there is a need to continue storing the data for the purpose of concluding or fulfilling a contract.


Contact form/e-mail contact

Description and scope of data processing

There is a contact facility on our website, which can be used for electronic contact. If you use this possibility, you can contact the respective contact person via the provided e-mail addresses. In this case, the user's personal data transmitted with the e-mail will be stored in the e-mail system.

Alternatively, you have the possibility to send us your request via the contact form. These data are: Name, e-mail address and the request.

The data will not be passed on to third parties.

Legal basis for the data processing

The legal basis for the processing of the data is first of all our legitimate interest in the data processing in the context of the establishment of contact on the part of the inquirer. If the purpose of the contact is the conclusion of a contract, the additional legal basis for the processing within the scope of a pre-contractual relationship.

Purpose of the data processing

The processing of the personal data from the input mask or from an e-mail serves us only for the processing of the establishment of contact.

The other personal data processed during the sending process serves to prevent misuse of the contact form and to ensure the security of our information technology systems.

Duration of storage

The data will be deleted as soon as they are no longer necessary for the purpose for which they were collected. For personal data sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is terminated when it can be concluded from the circumstances that the matter in question has been finally clarified.

If the contact is a pre-contractual relationship (offer or reservation request), the transmitted data will also be stored in our hotel software and used for the execution of the contract. If there is no contractual relationship, we delete the data after one year at the end of the year.

Possibility of objection and removal

You have the possibility to object to the processing of your data at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com. We would like to point out that in the event of an objection, the conversation cannot be continued or we cannot provide offers etc.


Online booking via the website

Description and scope of data processing

On our website you have the possibility to book rooms and arrangements for every ARCOTEL hotel. If you take advantage of this possibility, the data entered in the input mask will be transmitted to us and stored. These data are: First name, surname, e-mail address, address, number of fellow travellers, booking data, estimated time of arrival, wishes, payment data (credit card), date, time.

If you make an online booking from our website, this is done by the online reservation system bookassist of Automatic Netware Ltd. 35 Fitzwilliam Place, Dublin 2, Ireland. All booking data entered by you is transmitted in encrypted form. Automatic Netware Ltd. has committed itself to the data protection-fair handling of your conveyed data. It takes all organizational and technical measures to protect your data.

The data will be used exclusively for processing the booking and for communication.

Legal basis for the data processing

The legal basis for processing the data is the conclusion of an accommodation contract. The transmitted data will be stored in our hotel software and used for the execution of the contract.

To increase our services, we manage all data received in our central hotel software within ARCOTEL Hotels & Resorts. The hotel in which the booking is made is responsible for this. The respective booking data can only be viewed by the responsible office. Together, the access to the master data of a guest is used, e.g. to make a reservation for another hotel at a later date, to rebook or to carry out marketing activities centrally. Central services such as reservation and marketing access this data. The legal basis for the processing of the data is our legitimate interest in data processing within the framework of central administration and use of the data of our guests, customers and business partners within the hotel group.

Purpose of the data processing

The processing of the personal data from the input mask serves us solely for the processing of the booking request and for the handling of payment transactions.

Duration of storage

The data will be deleted or made anonymous as soon as they are no longer necessary for the purpose of their collection. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual retention requirements are fulfilled.

If there is no contractual relationship, we delete the data after one year at the end of the year.

Possibility of objection and removal

You have the possibility to object to the processing of your data at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com. We would like to point out that in case of an objection the booking cannot be completed or the conversation cannot be continued.


Online booking via other websites

Description and scope of data processing

ARCOTEL Hotels & Resorts gives interested parties and customers (guests) the opportunity to book rooms and arrangements for any ARCOTEL hotel via hotel reservation portals (third party providers). If you take advantage of this possibility, the data entered in the input mask will be transmitted to us and stored to the extent permitted by the respective hotel reservation portal in accordance with its own data protection regulations. Data can be: first name, surname, e-mail address, telephone, address, number of fellow travellers, booking data, estimated time of arrival, requests, payment data (credit card).

The data provided is transferred to our hotel software via a so-called channel manager. All received booking data is transmitted encrypted. The HotelNetSolutions GmbH, Genthiner Str. 8, D-10785 Berlin, Germany as provider of the Channel Manager has committed itself to the data protection compliant handling of the transmitted personal data. It takes all organizational and technical measures to protect your data.

In this context, the data will not be passed on to third parties. The data will be used exclusively for processing the booking and, if necessary, for communication.

Legal basis for the data processing

The legal basis for processing the data is the conclusion of an accommodation contract. The transmitted data will be stored in our hotel software and used for the execution of the contract.

To increase our services, we manage all data received in our central hotel software within ARCOTEL Hotels & Resorts. The hotel in which the booking is made is responsible for this. The respective booking data can only be viewed by the responsible office. Together, the access to the master data of a guest is used, e.g. to make a reservation for another hotel at a later date, to rebook or to carry out marketing activities centrally. Central services such as reservation and marketing access this data. The legal basis for the processing of the data is our legitimate interest in data processing within the framework of central administration and use of the data of our guests, customers and business partners within the hotel group.

Purpose of the data processing

The processing of the personal data from the input mask serves us solely for the processing of the booking request and for the handling of payment transactions.

Duration of storage

The data will be deleted or made anonymous as soon as they are no longer necessary for the purpose of their collection. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual retention requirements are fulfilled.

If there is no contractual relationship, we delete the data after one year at the end of the year.

ARCOTEL has no influence on the storage periods of the respective hotel reservation portal.

Possibility of objection and removal

You have the possibility to object to the processing of your data at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com. We would like to point out that in case of an objection the booking cannot be completed or the conversation cannot be continued.


Table reservation

Description and scope of data processing

On our website you have the possibility to reserve a table for our restaurants. If a user takes advantage of this possibility, the data entered in the input mask will be transmitted to us. These data are: First name, surname, e-mail address, telephone number, table reservation details (day, time, number of persons, restaurant).

If you make a table reservation, this is also done for selected restaurants in our hotels through the online reservation system of Quandoo GmbH, Sonnenburger Str. 73, 10437 Berlin, Germany. All order data entered by you will be transmitted in encrypted form. Quandoo has committed itself to handling your transmitted data in accordance with data protection laws. Quandoo takes all organisational and technical measures to protect your data.

Legal basis for the data processing

The legal basis for processing the data is first of all our legitimate interest in data processing and the existence of the user's consent by accepting Quandoo's data protection and usage conditions for data processing.

Purpose of the data processing

The processing of personal data serves only to make table reservations.

Duration of storage

The data will be deleted in our restaurants as soon as they are no longer necessary for the purpose of their collection. Please refer to the data protection regulations of Quandoo for the storage periods.

Possibility of objection and removal

You have the possibility to object to the processing of your data at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com.


Online service for corporate clients

Description and scope of data processing

On our website, corporate customers have the possibility to register in a protected corporate customer area via "Fastlane" in order to make bookings. If a corporate customer takes advantage of this possibility, the: Company, title, first name, surname, e-mail address, telephone, company or billing address and login data are stored in the customer profile. When a booking is made, the salutation, first name, surname, e-mail address and requests for the employee are stored with the general booking data on the website.

If you make an online booking from our websites via "Login Fastlane", this is done by the protel Web Booking Engine of protel hotelsoftware GmbH, Europaplatz 8, D-44269 Dortmund. All booking data entered by you will be transmitted encrypted. Protel has committed itself to handling your transmitted data in a data protection-compliant manner and takes all organizational and technical measures to protect your data.

Legal basis for the data processing

The legal basis for processing the data is the conclusion of a sales contract with the corporate client. The transmitted data will be stored in our hotel software and used for the execution of the contract.

Purpose of the data processing

The processing of the personal data from the user account and the associated orders serve us solely for the processing of the bookings and for the handling of payment transactions.

Duration of storage

The data will be deleted as soon as they are no longer necessary for the purpose for which they were collected. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual retention requirements are fulfilled.

Possibility of objection and removal

You have the possibility to object to the processing of your data at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com.


Purchase of a voucher via the website

Description and scope of data processing

On our website there is the possibility to buy vouchers. If you take this opportunity, the data entered in the input mask will be transmitted to us and stored. These data are: Salutation/company, first name, surname, date of birth, e-mail address, address, telephone/fax, voucher value, wishes, payment data, password for individual user account.

If you make a voucher purchase from our websites, this is done through the online ordering platform of INCERT eTourismus GmbH & Co KG, Leonfeldner Straße 328, A-4040 Linz, Austria. All order data entered by you will be transmitted encrypted. INCERT has committed itself to handling your transmitted data in a manner compatible with data protection. INCERT takes all organizational and technical measures to protect your data.

Legal basis for the data processing

The legal basis for processing the data is the conclusion of a sales contract.

Purpose of the data processing

The processing of the personal data from the input mask serves us solely for the processing of the voucher purchase and for the handling of payment transactions.

Duration of storage

The data will be deleted as soon as they are no longer necessary for the purpose for which they were collected. In the case of a contractual relationship, we will delete the data received as soon as national, commercial, statutory or contractual retention requirements are fulfilled.

Possibility of objection and removal

You have the possibility to object to the processing of your data at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com.


Sending e-mails before arrival

Description and scope of data processing

Before our guests arrive, we would like to send a welcome email to those from whom we have received an email address in the course of the booking or where we can contact the guest via a hotel reservation portal. A few days before arrival, the guest will receive an e-mail with a reservation overview and information about the reservation and available additional services.

When we send these e-mails, we do so through the Revinate platform of Revinate Inc, 1 Letterman Drive Building C, Suite CM 100, San Francisco, California 94129, USA. Revinate has committed itself to handling your transmitted data in accordance with data protection laws. Revinate takes all organizational and technical measures to protect your data. Further information on data protection can be found on the website.

Legal basis for the data processing

The legal basis for the processing of the data is our legitimate interest in the data processing in the context of the booking in connection with § 107 paragraph 2 and 3 TKG (in Austria); § 7 paragraph 3 No. 1 to No. 4 UWG (in Germany).

Purpose of the data processing

By contacting us, we would like to give you the opportunity to check your booking details and, if necessary, to book additional services quickly and conveniently.

Duration of storage

The data will be deleted as soon as they are no longer required for the achievement of the purpose, i.e. as soon as national, commercial, statutory or contractual retention requirements are fulfilled.

Possibility of objection and removal

You have the possibility to object to the processing of your data at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com.


Advice and support for company contacts

Description and scope of data processing

For the purpose of advising and supporting corporate customers, we collect and use the contact person, telephone number, e-mail address and postal address in addition to the business partner or potential business partner. We obtain the information from various sources, either through an inquiry (e-mail or telephone), but also through events, trade fairs, business cards received by our sales staff, etc.

In this context, the data will not be passed on to third parties.

Legal basis for the data processing

The legal basis for processing the data is our legitimate interest in data processing. If the purpose of the contact is the conclusion of a contract, an additional legal basis for the processing is the pre-contractual relationship or the conclusion of the contract.

To increase our services, we manage all data received in the CRM module of our central hotel software within ARCOTEL Hotels & Resorts. The responsible party is the hotel with which a business contact exists. Central services such as sales, banquet, reservation and marketing access this data. The legal basis for the processing of the data is our legitimate interest in data processing within the framework of central administration and use of the data of our customers and business partners within the hotel group.

Purpose of the data processing

We use these contact details exclusively for our own purposes and for the needs-based design of our own sales activities.

Duration of storage

In principle, no deletion period is provided for. However, if our sales department has not had contact with the company contact within 3 years, the sales department will decide whether the contact person of the company contact will be deleted.

If the contact is a pre-contractual relationship (offer or reservation request), the transmitted data will also be stored in our hotel software and used for the execution of the contract. If there is no contractual relationship, we delete the data after one year at the end of the year.

Possibility of objection and removal

As a company contact, you have the possibility to object to the processing of your data at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com. In this case, all personal data relating to the contact person that has been saved for the business partner will be deleted.


Newsletter service

Description and scope of data processing

On our website you have the possibility to register for our newsletter service in different ways. If you take this opportunity, the data entered in the input mask will be transmitted to us and stored. These data are: e-mail address as well as voluntary details such as title, first name, surname, language, desired destination or topics.

If you make a newsletter registration from our web pages, the data will be saved in our newsletter tool of Revinate Inc, 1 Letterman Drive Building C, Suite CM 100, San Francisco, California 94129, USA. Revinate has committed itself to handling your transmitted data in accordance with data protection laws. It takes all organizational and technical measures to protect your data. Further information on data protection can be found on the website.

If we receive an e-mail address elsewhere where the recipient clearly informs us that he/she would like to receive our newsletter, we will collect his/her data via the input mask on our website or also transfer it to the Revinate platform (see also "Sending e-mails before arrival").

Legal basis for the data processing

The legal basis for the processing of the data is the existence of the consent of the recipient. This is ensured by a double-opt-in procedure.

Purpose of the data processing

The processing of personal data serves us only to send individual newsletters.

Duration of storage

The data will be deleted or, if necessary, blocked as soon as the newsletter service is unsubscribed.

Possibility of objection and removal

As a recipient of newsletters, you have the opportunity to object to the processing of your data at any time. With every newsletter you can unsubscribe from the newsletter service at any time via a link. In addition, we have set up the e-mail address datenschutz@arcotel.com. Please provide us with the e-mail address here.


Online evaluation

Description and scope of data processing

Former guests can submit a rating for their hotel stay after check-out. For this purpose we would like to send you an e-mail within 14 days after departure to ask you to submit a hotel evaluation. In addition, there is the possibility to submit the evaluation on a paper questionnaire. In this case we will record the submitted opinion in the online rating system. Each rating can be published anonymously on request. Should you not feel comfortable in one of our hotels, we would like to take the opportunity to contact you.

When we send these e-mails for online evaluation, we do so via the Revinate platform of Revinate Inc, 1 Letterman Drive Building C, Suite CM 100, San Francisco, California 94129, USA. Revinate has committed itself to handling your transmitted data in accordance with data protection laws. Revinate takes all organizational and technical measures to protect your data. Further information on data protection can be found on the website.

If you submit an online evaluation on our website, the data will be stored in the evaluation tool of TrustYou GmbH, Agnes-Pockels-Bogen 1, D-80992 Munich, Germany. The TrustYou GmbH has committed itself to handling your transmitted data in a data protection compliant manner. It takes all organizational and technical measures to protect your data.

If you, as a former guest, take advantage of this possibility of online evaluation, your data will be saved in the evaluation mask. These data are: E-mail address as well as voluntary details such as first name, surname, language and the details of the evaluation.

In this context, the data will not be passed on to third parties.

Legal basis for the data processing

The legal basis for the processing of data is the legitimate interest of ARCOTEL Hotels & Resorts.

Purpose of the data processing

The purpose of the hotel evaluation is to communicate and summarize the opinions of hotel guests about our website so that interested parties can form their own opinion about our services and performance. In addition, the results serve our internal quality management. The data will be used exclusively for the publication of the rating and for arbitration in case of bad ratings.

Duration of storage

The data will not be deleted.

Possibility of objection and removal

There is always the possibility to have the publication of the rating deleted (right to forget). For this purpose we have set up the e-mail address datenschutz@arcotel.com. Please let us know which rating is concerned.


Conducting competitions and surveys

Description and scope of data processing

In order to enable you to participate in the competition, we collect personal data (surname, first name, e-mail address, address if applicable).

If we combine surveys with competitions, we will send e-mails via our newsletter tool platform Revinate (see newsletter). The online survey is carried out by the service provider QuestionPro GmbH, Friedrichstraße 171, D-10117 Berlin, Germany. During the online survey you can register with your first name, last name and e-mail address so that we can contact you in case you win. Participation in the competition is voluntary. If you do not wish to take part in the competition, you can also complete the survey anonymously. QuestionPro GmbH has committed itself to handling the data you provide in a manner compatible with data protection. It takes all organizational and technical measures to protect your data.

Legal basis for the data processing

The legal basis for the processing of data is the existence of consent when we use our contacts in the newsletter tool. We use this data, for example, when we link surveys with competitions. The legal basis for the collection and processing of the data of participants in competitions is our legitimate interest in conducting competitions.

Purpose of the data processing

Your data will only be used to carry out the competition or to evaluate our survey and will not be used for any other purposes unless you have additionally decided to receive a newsletter and have expressly agreed to this purpose of use. Your data will only be transferred to third parties if this is necessary for the execution of the competition (e.g. system operator for online surveys). Your data will not be transferred to other third parties.

Duration of storage

As soon as the business purpose of conducting the competition has been fulfilled and you have not been determined as the winner, we will delete your data within one month after the competition has ended. If you were determined as the winner, there are national, tax and commercial law retention periods.

Possibility of objection and removal

As a participant you have the possibility to object to the processing of your data at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com.


Online application for a job advertisement

Description and scope of data processing

If you provide us with personal data as part of the application process, this data is divided into the following data types and data categories for collection, processing and/or use:

  • Personal data (first and last name, date of birth, address, school-leaving certificate)
  • Communication data (telephone number, mobile phone number, e-mail address)
  • Data on assessment and evaluation in the application procedure
  • Data on education (school, vocational training, civil/ military service, studies, doctorate)
  • Data on previous professional career, training and work certificates
  • Information on other qualifications (e.g. language skills, PC skills, voluntary work)
  • Application photo
  • Application history

If you make an online application from our web pages, this is done through the online application system of d.vinci HR-Systems GmbH, Nagelsweg 37-39, D- 20097 Hamburg, Germany. All application data entered by you will be transmitted in encrypted form. d.vinci is committed to handling your transmitted data in a manner compatible with data protection. It takes all organisational and technical measures to protect your data.

We use the personal data you provide exclusively for processing your application for the advertised position. Only persons involved in the application process will be informed of your personal data. All employees entrusted with data processing are obliged to maintain the confidentiality of your data. We do not pass on your personal data to third parties unless you have consented to the passing on of data or we are obliged to pass on data due to legal regulations and/or official or court orders.

If your application fits the profile of another job advertisement published by one of our affiliated companies, we will gladly forward your application documents. We will obtain your prior consent for this. The data will otherwise be used exclusively for the processing of the application by the specialist department and for communication purposes.

Legal basis for the data processing

The legal basis for processing the data is the pre-contractual relationship or the conclusion of a contract with the applicant. For the forwarding of the application documents to an affiliated company, we will obtain prior consent.

Purpose of the data processing

The processing of the personal data from the input mask and the transmitted documents serves us solely to process the application.

Duration of storage

Your data will be automatically deleted within six months after completion of the specific application procedure. This does not apply if legal provisions oppose deletion, if they require further storage for the purpose of providing evidence or if you have expressly consented to longer storage. There will be no notification about the deletion of the data.

Possibility of objection and removal

You have the possibility to object to the processing of your data at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com. We would like to point out that in case of an objection, the application cannot be completed or the conversation cannot be continued.


Provision of the website and creation of log files

Description and scope of data processing

Whenever our website is called up, our system automatically collects data and information from the computer system of the calling computer. The following data is collected:

  • Information about the browser type and version used
  • The user's operating system
  • The IP address of the user
  • Date and time of access
  • Websites from which the user's system accesses our website
  • Web pages that are called up by the user's system via our website

The data is also stored in the log files of our system. These data are not stored together with other personal data of the user. Personal user profiles cannot be created. The stored data is only evaluated for statistical purposes.

Legal basis for the data processing

The legal basis for the temporary storage of data and log files is our legitimate interest in data processing for the specified purpose.

Purpose of the data processing

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session.

The storage in log files is done to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

Duration of storage

The data will be deleted as soon as they are no longer necessary for the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session is ended.

In the case of data storage in log files, this is the case after seven days at the latest. Storage beyond this period is possible, as far as legal requirements force us to do so. In this case, the IP addresses of the users are deleted or alienated so that an assignment of the calling client is no longer possible.

Possibility of objection and removal

The collection of data for the provision of the website and the storage of the data in log files is mandatory for the operation of the website. There is therefore no possibility of objection on the part of the user.


Use of cookies and scripts

Description and scope of data processing
Cookies are small files that enable us to store on your PC specific information relating to you, the user, while you are visiting one of our websites. Cookies help us to determine the frequency of use and the number of users of our website, as well as to make our services as convenient and efficient as possible for you.

Depending on the type of script, DOS and Visual Basic Scripts (VB) can support processes on Windows, Apple scripts can automate tasks on Macintosh computers, scripts on Active Server Pages (ASP) or Java scripts can be used to generate dynamic web pages, and Unix scripts record all input and output of a terminal.

For further information please refer to our cookie declaration.

We use cookies on our website, which enable an analysis of the surfing behaviour of the users. In this way the following data can be transmitted: Entered search terms, frequency of page views, use of website functions. The user data collected in this way is pseudonymised by technical precautions. It is therefore no longer possible to assign the data to the calling user. The data is not stored together with other personal data of the users. When accessing our websites, the user is informed about the use of cookies for analysis purposes and his consent to the processing of the personal data used in this context is obtained. In this context, reference is also made to this data protection declaration.

Legal basis for the data processing

The legal basis for the use of technically necessary cookies is our legitimate interest in the proper operation of our website.

The legal basis for the processing of personal data using cookies for analysis purposes is if the user has given his consent to this.

Purpose of the data processing

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For these it is necessary that the browser is recognized even after a change of page. The user data collected by technically necessary cookies is not used to create user profiles.

The analysis cookies are used for the purpose of improving the quality of our website and its contents. The analysis cookies tell us how the website is used and enable us to constantly optimise our offer.

Duration of storage, possibility of objection and removal

Cookies are stored on the user's computer and transmitted by the user to our site. Therefore you as a user have full control over the use of cookies. By changing the settings in your Internet browser, you can deactivate or restrict the transmission of cookies. Already stored cookies can be deleted at any time. This can also be done automatically. If cookies for our website are deactivated, it may not be possible to use all the functions of the website to their full extent.

Use of a cookie banner

On our website the Consent Manager of the company Cybot A/S, Havnegade 39, 1058 Copenhagen (hereinafter: cookiebot.com) is loaded. We use this service in order to ensure the full functionality of our website on the one hand and the use of marketing and tracking tools on our website in accordance with data protection regulations on the other. In this context, your browser may transmit personal data to cookiebot.com.

The legal basis for data processing is Art. 6 Para. 1 letter f GDPR. The legitimate interest lies in an error-free functioning of the website. The data will be deleted as soon as the purpose for which they were collected has been fulfilled. Further information on the handling of the transferred data can be found in the privacy policy of cookiebot.com. You can prevent the collection and processing of your data by cookiebot.com by deactivating the execution of script code in your browser or by installing a script blocker in your browser.

The following information is stored in our cookiebot account:

  • The IP address of the user in anonymous form (the last three digits are set to "0").
  • Date and time of consent.
  • Browser of the user.
  • The URL from which the consent was sent.
  • An anonymous, random and encrypted key value.
  • The state of consent of the user, which serves as proof of consent.

The key and consent status are also stored in the user's browser in the cookie "CookieConsent", so that the website can automatically read and respect the user's consent for up to 12 months in all subsequent page requests and future user sessions. You can view and change your level of consent at any time. You will find this further down on this page.

By law, we may store cookies on your device if they are absolutely necessary for the operation of this site. For all other cookie types we need your permission. This site uses different types of cookies. Some cookies are placed by third parties that appear on our pages. You can change or withdraw your consent at any time from the cookie statement on our website.

Change your consent here | Revoke your consent

Script blocker in your browser

A use of our offers is also possible without cookies and scripts. You can deactivate the storage of cookies and scripts in your browser, restrict it to certain websites or set your browser to notify you as soon as a cookie is sent. You can also delete cookies from your computer's hard drive at any time.

You can install browser add-ons to block scripts. NoScript for Firefox and ScriptSafe for Google Chrome are such browser add-ons. These not only block any kind of JavaScript, they also block selected trackers, Java, Flash and other plugins on web pages.

If you are concerned about third-party cookies, you can only reject them and still receive the cookies that make our site work properly.

This allows you to refuse cookies in any of the main browsers:

Mozilla Firefox: Link

Google Chrome: Link

Internet Explorer: Link

Safari: Link

Please note, however, that in these cases you must reckon with a restricted display of the page and with a restricted user guidance.


Use of analysis tools

Use of Google Analytics, Google Convers Tracking and Google Remarketing

Our website uses Google Analytics, Google Convers Tracking and Google Remarketing. These are services of Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States ("Google").

This offer uses Google Analytics, a web analysis service of Google Inc. ("Google"). Google Analytics uses cookies and scripts that are stored on users' computers and which enable an analysis of their use of the website. The information generated by the cookie about the use of the website by the user is usually transferred to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, the IP address of Google's users within member states of the European Union or in other signatory states to the Agreement on the European Economic Area will be shortened beforehand. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there.

IP anonymization is active on this website. On behalf of the operator of this website, Google will use this information to evaluate the use of the website by the users, to compile reports on the website activities and to provide further services to the website operator in connection with the use of the website and the internet. The IP address transmitted by your browser within the scope of Google Analytics is not combined with other data from Google.

Users can prevent the storage of cookies by means of a corresponding setting in their browser software; however, this offer points out to the users that in this case they may not be able to use all functions of this website to their full extent. Users can also prevent the collection of data generated by the cookie and related to their use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available under the link.

Google Tag Manager

This website uses the Google Tag Manager to use the above mentioned cookies. The Google Tag Manager is a solution that allows marketers to manage website tags through a single interface. The tool itself (which implements the tags) is a cookie-free domain and does not collect any personal information. The tool triggers other tags, which in turn may collect data. The Google Tag Manager does not access this data. If disabled at the domain or cookie level, it will remain disabled for all tracking tags implemented with Google Tag Manager.

Use of tracking pixels

Cookies are set by Adform A/S Wildersgade 10B, 1, 1408 Copenhagen K, Denmark, to serve interest-based advertising. For this purpose, information on the operating system, browser version, IP addresses, geographical location and number of clicks or views is stored in pseudonymous user profiles. This data is used for the following purposes:

  • Registration of the number of visitors to our website.
  • Defining the order in which a visitor visits the various pages of our website.
  • Assess which parts of our website need to be adapted.
  • Optimization of the website.

Your deactivation option: By clicking on this link, you can have an opt-out cookie set that prevents any further data collection.


Use of Social Media Plugins

The use of social media plugins is in the interest of an attractive presentation and expansion of our online offers. This represents a legitimate interest.

Use of Facebook

Our pages integrate plugins from the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA. You can recognize the plugins by the logo on our site. You can find an overview of the plugins here.

We have no influence on the data collection and further processing by Facebook. Furthermore, it is not apparent to us to what extent, where and for how long the data will be stored, to what extent Facebook will comply with existing deletion obligations, what evaluations and links will be made with the data and to whom the data will be passed on. If you would like to avoid Facebook processing personal data that you have submitted to us, please contact us by other means.

You can find more information on this in the Facebook privacy policy. If you do not want Facebook to be able to assign visits to our pages to your user account, please log out of your respective user account!

Facebook fan page

On our Facebook fan page at: https://www.facebook.com/ARCOTELHotels we use plugins of the provider Facebook.com, which are provided by the company Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94304 in the USA.

By using the fan page, data is forwarded to the Facebook servers, which contain information about your visits to our fan page. For logged-in users, this means that the usage data is assigned to their personal Facebook account. As soon as you as a logged in Facebook user actively use the Facebook plugin, e.g. by clicking on the "Facebook" logo or using the comment function, this data is transferred to your Facebook account and published. You can only avoid this by logging out of your Facebook account first.

We do not know exactly what data Facebook stores and uses. As a user of the fan page, you must therefore expect that Facebook will also store your actions on the fan page without any gaps.

In all other respects, the General Terms of Use of Facebook Ireland Limited, Hanover Reach, 5-7 Hanover Quay, Dublin 2, Ireland shall apply.

The legal basis for this data processing is Art. 6 para. 1 lit. a, f) GDPR.

Every person depicted as well as other third parties have the possibility to object to the publication of their personal data (photos) at any time. For this purpose we have set up the e-mail address datenschutz@arcotel.com. The right of objection applies in particular to the publication of pictures for the future.

It can always happen that we inadvertently publish pictures of people where no consent has been given. If publication is not desired, we will immediately do everything possible to comply with your right. For group pictures we reserve the right to falsify faces.

Use of YouTube

Our website uses social plugins ("plugins") from the YouTube site operated by Google. The operator of the pages is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

The plugin is marked with a YouTube logo and can be activated directly by you. When you activate it, a connection to the YouTube servers is established and the page: https://www.youtube.com/channel/UCOf-wJulZZl1dI_yEdqw2Ng is called. This tells the YouTube server which of our pages you have visited.

Furthermore, YouTube can store various cookies on your end device. These cookies allow YouTube to obtain information about visitors to our website. This information is used, among other things, to gather video statistics, improve the user experience and prevent fraud. The cookies remain on your device until you delete them.

If you are logged in to your YouTube account, you allow YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

A data transmission from our website to Google does not take place when you visit our website. Further information on the handling of user data can be found in Google's privacy policy.

Use of Pinterest

Our website may use social plugins ("Plugins") from the social network Pinterest Inc. 635 High Street, Palo Alto, CA, 94301, USA ("Pinterest"). The Pinterest button takes the user to our Pinterest site via a link. No data is transferred from our website to Pinterest when you visit our website.

The plugin is marked with a Pinterest logo and can be activated directly by you. If you activate it and are logged in to your Pinterest account, you can link the contents of our pages on your Pinterest profile. This allows Pinterest to associate visits to our pages with your user account, if the plugin is activated. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Pinterest.

For more information on the purpose, scope and further processing and use of the data by Pinterest, as well as your rights and options for protecting your privacy, please refer to Pinterest's Privacy Policy.

Use of Instagram

On this website the "Instagram Button" is used. When you access our website: https://www.instagram.com/arcotelhotels/, your browser will connect to servers of the Instagram social network, offered by Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA.

When you visit our pages, the plugin establishes a direct connection between your browser and the Instagram server. This tells Instagram that you have used your IP address to visit our site. If you click the Instagram button while logged into your Instagram account, you can link the contents of our pages to your Instagram profile. This allows Instagram to associate your visit to our sites with your account. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Instagram.

No data is transmitted from our web site to Instagram when you visit our web site.

For more information, please refer to the Instagram Privacy Policy.

Use of Twitter

Our website uses social plugins ("plugins") from the social network of Twitter Inc. 795 Folsom St., Suite 600, San Francisco, CA 94107, USA. The Twitter button takes the user via a link to our Twitter page: https://twitter.com/arcotelhotels. No data is transferred from our website to Twitter when you visit our website.

The plugin is marked with a Twitter logo and can be activated directly by the user. If you activate it and are logged in to your Twitter account, you can link the contents of our pages on your Twitter profile. This allows Twitter to assign visits to our pages to your user account if the plugin is activated. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Twitter.

Further information on this can be found in the Twitter privacy policy.

Use of LinkedIn

Our website uses social plugins ("plugins") from the social network LinkedIn or LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA (hereinafter referred to as "LinkedIn").

The plugin is marked with a LinkedIn logo and can be activated directly by you. If you activate it, the plugin will create a direct link to our website: https://www.linkedin.com/company/arcotel-hotels. LinkedIn thereby receives the information that you have visited our site with your IP address when the plugin is activated. If you click the LinkedIn button while logged into your LinkedIn account, you can link the content of our pages on your LinkedIn profile. This allows LinkedIn to associate visits to our pages with your account.

We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by LinkedIn. For further information, please refer to the LinkedIn privacy policy.

Using Vimeo

Our website uses plugins from the video portal Vimeo. Provider is Vimeo Inc. 555 West 18th Street, New York, New York 10011, USA.

When you visit one of our sites equipped with a Vimeo plugin, a connection to the Vimeo servers is established. This tells the Vimeo server which of our pages you have visited. Vimeo also obtains your IP address. This also applies if you are not logged in to Vimeo or do not have an account with Vimeo. The information collected by Vimeo is transferred to the Vimeo server in the USA.

If you are logged in to your Vimeo account, you allow Vimeo to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your Vimeo account.

For more information on how we handle user data, please see the Vimeo privacy policy.


Use of Google Maps

Description and scope of data processing

This website uses Google Maps API, a map service of Google Inc. ("Google"), to display an interactive map and to create directions to the site. Google Maps is operated by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

By using Google Maps, information about your use of this website (including your IP address) can be transmitted to a Google server in the USA and stored there. Google may transfer the information obtained through Maps to third parties if this is required by law or if third parties process this data on behalf of Google.

Under no circumstances will Google link your IP address to other Google data. It is nevertheless technically possible that Google could identify at least individual users on the basis of the data received. It would be possible that personal data and personality profiles of users of the website could be processed by Google for other purposes over which we have and can have no influence.

Legal basis for the data processing

The legal basis for the use of Google Maps is our legitimate interest in data processing.

Purpose of the data processing

The purpose of using Google Maps is to show the user our location on the website and to give him the possibility to find different ways to reach us via the services of Google Maps.

Duration of storage, possibility of objection and removal

You have the possibility to deactivate the service of Google Maps and thus prevent the data transfer to Google by deactivating JavaScript in your browser. However, we would like to point out that in this case you will not be able to use the map display on our website.


Use of Google Web Fonts

Description and scope of data processing

This website uses so-called web fonts, which are provided by Google, for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly. For this purpose, the browser you use must connect to Google's servers. This enables Google to know that our website has been accessed via your IP address.

Legal basis for the data processing

The legal basis for the use of Google Web Fonds is our legitimate interest in data processing.

Purpose of the data processing

The use of Google Web Fonts is in the interest of a uniform and attractive presentation of our online offers. If your browser does not support Web Fonts, a standard font from your computer will be used.

Duration of storage, possibility of objection and removal

To avoid tracking based on the installed fonts, you can for example disable the options "Allow websites to use their own fonts" and the CSS Font Loading API in Firefox. This means that websites are no longer displayed in the format created by the operator.

For more information about Google Web Fonts, please visit https://developers.google.com/fonts/faq and read Google's privacy policy.


Protection of minors

Our service is mainly aimed at adults. We do not currently market special areas for children. Accordingly, we do not knowingly collect age verification information, nor do we knowingly collect personal information from children under the age of 16. However, we remind all visitors to our website under the age of 16 not to disclose or provide personal information through our service. In the event that we discover that a child under the age of 16 has provided us with personal information, we will, in accordance with the Children's Online Privacy Protection Act (see the Federal Trade Commission's website at www.ftc.gov/kidzprivacy for more information about this Act), delete the child's personal information from our files to the extent technically feasible.


Your rights, which you can exercise against us

If we process your personal data, you are a data subject in the sense of the GDPR and you are entitled to the following rights against the person responsible:

  • You have a right to information about the personal data stored about you, about the purposes of processing, about possible transmissions to other bodies and about the duration of storage.
  • If data is incorrect or no longer necessary for the purposes for which it was collected, you can request that it be corrected, deleted or limited. If provided for in the processing procedures, you can also inspect your data yourself and correct them if necessary.
  • Should your particular personal situation give grounds against processing of your personal data, you can object to this if the processing is based on a legitimate interest. The controller shall no longer process the personal data concerning you unless he can demonstrate compelling legitimate reasons for processing which outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims.
  • If the personal data concerning you are processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing, including profiling, insofar as it relates to such direct marketing. If you object to processing for the purposes of direct marketing or profiling, the personal data concerning you will no longer be processed for those purposes.

You have the right to revoke your declaration of consent under data protection law at any time via our e-mail address datenschutz@arcotel.com. The revocation of consent does not affect the legality of the processing that has taken place on the basis of the consent until the revocation.

If you have any questions regarding your rights and the exercise of your rights, please contact the responsible office (the respective hotel or head office) or our data protection officers.


Right of appeal to a supervisory authority

As a data subject, and without prejudice to any other administrative or judicial remedy, you have the right to complain to a data protection supervisory authority, in particular in the Member State in which you are resident or in which the alleged breach occurred, if you consider that the processing of personal data relating to you is being carried out in breach of data protection legislation.

The supervisory authority to which the complaint is made will keep you informed of the status and outcome of your complaint, including the possibility of legal recourse.

You can find more information on the website of the Federal Data Protection Authority.

For Austria please follow this link.

For Germany please follow this link.


Security

ARCOTEL Hotels & Resorts uses technical and organisational security measures in accordance with Art. 32 GDPR to protect your data administered by us against accidental or deliberate manipulation, loss, destruction or access by unauthorised persons. Our security measures are continuously improved in accordance with technological developments. Access to this data is only possible for a few authorized persons who are obliged to special data protection and who are involved in the technical, administrative or editorial management of data.

For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses SSL or TLS encryption. This means that data that you transmit via this website cannot be read by third parties. You can recognise an encrypted connection by the "https://" address line of your browser and the lock symbol in the browser line.


Status | June 2020
 


Special offers