Privacy Statement and Consent (DSGVO)
Hotel Garni Matterhorn FOCUS AG
Tel. +41 27 966 24 24
Fax +41 27 966 24 25
An overview of data protection
Matterhorn Focus processes all datas within the Swiss Federal Act on Data Protection (FADP) and the EU General Data Protection Regulation (GDPR).
General information and mandatory information
Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.
Notice concerning the party responsible for this website
The party responsible for processing data on this website is:
Hotel Garni Matterhorn Focus AG
Tel. +41 27 966 24 24
Fax +41 27 966 24 25
The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (names, email addresses, etc.).
Revocation of your consent to the processing of your data
Many data processing operations are only possible with your express consent. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
Right to file complaints with regulatory authorities
If there has been a breach of data protection legislation, the person affected may file a complaint with the competent regulatory authorities. The competent regulatory authority for matters related to data protection legislation is the data protection officer of the German state in which our company is headquartered. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
Right to data portability
You have the right to have data which we process based on your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a standard, machine-readable format. If you require the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.
SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser's address line when it changes from "http://" to "https://" and the lock icon is displayed in your browser's address bar.
If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.
Encrypted payments and Online Payment Processing
If you enter into a contract which requires you to send us your payment information (e.g. account number for direct debits), we will require this data to process your payment.
Payment transactions using common means of payment (Visa/MasterCard, direct debit) are only made via encrypted SSL or TLS connections. You can recognize an encrypted connection in your browser's address line when it changes from "http://" to "https://" and the lock icon in your browser line is visible.
In the case of encrypted communication, any payment details you submit to us cannot be read by third parties.
The legal basis for this data processing is the performance of a contract within the meaning of Article 6(1)(b) of the GDPR.
Information, blocking, deletion
As permitted by law, you have the right to be provided at any time with information free of charge about any of your personal data that is stored as well as its origin, the recipient and the purpose for which it has been processed. You also have the right to have this data corrected. You have the right to obtain the erasure of your personal data under certain circumstances. In individual cases, particularly in the case of statutory retention obligations, the right to erasure may be excluded. In this case, the erasure may be replaced by a blocking of the data if the requirements are met. You can contact us at any time using the address given in our legal notice if you have further questions on the topic of personal data.
Opposition to promotional emails
We hereby expressly prohibit the use of contact data published in the context of website legal notice requirements with regard to sending promotional and informational materials not expressly requested. The website operator reserves the right to take specific legal action if unsolicited advertising material, such as email spam, is received.
Data Processing when contacting us
If you contact us through our contact addresses and channels (e.g., by e-mail, phone, or contact form), your personal data is processed. We process the data you provide us with, such as your name, email address, phone number, and your request, your Job Applications. Additionally, the time of receipt of the request will be documented. Mandatory fields are marked in contact forms with an asterisk (*). We process this data to address your request (e.g., providing information about our Hotel, assisting with contract processing such as questions about your booking, incorporating your feedback to improve our services, etc.).
The legal basis for this data processing is our legitimate interest under Article 6(1)(f) of the GDPR in addressing your request or, if your request is aimed at the conclusion or performance of a contract, in the implementation of the necessary measures within the meaning of Article 6(1)(b) of the GDPR.
Data Processing for Fulfilling Legal Reporting Obligations
Upon arrival at our hotel, we may require the following information from you and your accompanying persons; First and last name, Home address, Date of birth, Nationality, Identity card or passport, Date of arrival and departure
We collect this information to fulfil legal reporting obligations, which arise in particular from hospitality or police regulations. To the extent required by applicable laws, we forward this information to the competent authority.
The legal basis for the data processing is our legitimate interest within the meaning of Article 6(1)(c) of the GDPR in complying with our legal obligations.
Data collection on our website
Who is responsible for the data collection on this website?
The data collected on this website are processed by the website operator. The operator's contact details can be found in the website's required legal notice.
How do we collect your data?
Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form.
Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site. Data can also be used to correctly process additional services to the accommodation contract (transfer, ski passes, ski school, restaurant reservations, etc.).
What rights do you have regarding your data?
You always have the right to request information about your stored data, its origin, its recipients, and the purpose of its collection at no charge. You also have the right to request that it be corrected, blocked, or deleted. You can contact us at any time using the address given in the legal notice if you have further questions about the issue of privacy and data protection. You may also, of course, file a complaint with the competent regulatory authorities.
Analytics and third-party tools
You can object to this analysis. We will inform you below about how to exercise your options in this regard.
Most of the cookies we use are so-called "session cookies." They are automatically deleted after your visit. Other cookies remain in your device's memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.
Server log files
The website provider automatically collects and stores information that your browser automatically transmits to us in "server log files". These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
These data will not be combined with data from other sources.
The basis for data processing is Art. 6 (1) (b) DSGVO, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.
Should you send us questions via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your question and any follow-up questions. We do not share this information without your permission.
We will, therefore, process any data you enter onto the contact form only with your consent per Art. 6 (1)(a) DSGVO. You may revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory statutory provisions, especially those regarding mandatory data retention periods, remain unaffected by this provision.
This website uses the services of dodeley® for sending newsletters. Provider is the indual GmbH, Sebastiansplatz 4, PO Box 377, 3900 Brig
Processing of data (customer and contract data)
We collect, process, and use personal data only insofar as it is necessary to establish, or modify legal relationships with us (master data). This is done based on Art. 6 (1) (b) DSGVO, which allows the processing of data to fulfill a contract or for measures preliminary to a contract. We collect, process and use your personal data when accessing our website (usage data) only to the extent required to enable you to access our service or to bill you for the same.
Data transmitted when entering into a contract
We transmit personally identifiable data to third parties only to the extent required to fulfill the terms of your contract and for your requests, for example, to companies entrusted to organize the Transfer (Air Zermatt, taxi/transfer companies) or banks entrusted to process your payments or booking requests for restaurants, ski instructor, etc or ticket purchase at Zermatt Bergbahnen, etc. or forwarding the compulsory registration form to the Police. In addition to this data protection declaration, you must therefore observe any data protection provisions of the company concerned, which you can usually find on its website.
Your data will not be transmitted for any other purpose unless you have given your express permission to do so. Your data will not be disclosed to third parties for advertising purposes without your express consent.
The basis for data processing is Art. 6 (1) (b) DSGVO, which allows the processing of data to fulfill the hospitality contract or for measures preliminary to a contract.
Booking through a booking Platform
If you make bookings through a third-party platform (e.g., SimpleBooking, Booking.com, Hotel, Escapio, Expedia, Holidaycheck, HRS, Kayak, Tripadvisor, Trivago, etc.), we receive various personal data related to the booking from the respective platform operator. Additionally, any inquiries regarding your booking may be forwarded to us. We will process this data by name to accurately record your booking and provide the booked services as requested.
The legal basis for the data processing for this purpose is the implementation of pre-contractual measures and the performance of a contract withinallergien the meaning of Article 6(1)(b) of the GDPR.
Our Hotelsoftware company: gastrodat GmbH, Friedensstrasse 8, 5082 Gröding, Austria Legal Notice
Data processing when using our chat / guest dialogue function and the WebConcierge
If you contact us through our WebConcierge chat or the guest dialogue function, your personal data will be processed. We process the data you provide us with, such as your name, your request, etc. Additionally, the time of receipt of the request will be documented. Mandatory fields are marked with an asterisk (*). We process this data exclusively to address your request (e.g., providing information about our Hotel, assisting with contract processing such as questions about your booking, incorporating your feedback to improve our services, your preferences and special request such as allergies, anniversaries etc.). For handling communication through the chat and guest dialogue function, we use a software application provided by DiALOGiFY AG, Grienbachstrasse 11, 6300 Zug, Schweiz („DiALOGiFY“) . Therefore, your data may be stored in a database of DiALOGiFY AG, which may allow DiALOGiFY AG to access your data if this is necessary for providing the software and supporting its use.
The legal basis for this data processing is our legitimate interest under Article 6(1)(f) of the GDPR in using up-to-date communication technologies or, if your request is aimed at the conclusion or performance of a contract, in the implementation of the necessary measures within the meaning of Article 6(1)(b) of the GDPR. It may be that DiALOGiFY AG wishes to use some of this data for its own purposes (e.g., conducting statistical analysis). For these data processing operations, DiALOGiFY AG is the controller and must ensure compliance with data protection laws in connection with these data processing operations. Information about data processing by DiALOGiFY AG can be found at https://www.dialogify.io/datenschutzerklarung/
Data Processing in connection with Video Surveillance
To ensure the safety of our guests, employees, and our property, as well as to prevent and address unlawful behaviour (in particular, theft and property damage), the entrance area and the publicly accessible areas of our hotel, excluding sanitary facilities and hotel rooms, may be monitored by cameras. The image data will only be viewed if there is a suspicion of unlawful behaviour. Otherwise, the recorded images will be automatically deleted. To provide the video surveillance system, we rely on a service provider WND AG, Bachstrasse 72, 3920 Zermatt, Switzerland. This company has access to the data insofar as this is necessary for the provision of the system. If suspicions of unlawful behaviour are confirmed, the data may be disclosed to the extent necessary for the enforcement of claims or for reporting to consulting firms (in particular, to a law firm) and authorities.
The legal basis is our legitimate interest within the meaning of Article 6(1)(f) of the GDPR in pro-tecting our guests, employees, and property, as well as safeguarding and enforcing our rights.
We have integrated the social media buttons of the following companies on our website. The plugins can be recognized by the fact that they are marked with the appropriate logo.
- Facebook und Instagram (Meta Platforms Inc., 1601 S California Ave, Palo Alto, CA 94304, USA)
- LinkedIn (Unlimited Company, Wilton Place, Dublin 2, Irland)
- Google Plus/Google Inc. (1600 Amphitheatre Parkway - Mountain View - CA 94043 - USA)
- Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)
- TripAdvisor Inc. (400 1st Avenue, Needham, MA 02494 USA)
- TrustYou (Agnes-Pockels-Bogen 1, 80992 München)
- Tweebie (ipeak Infosystems GmbH, Hinterbergstrasse 32, CH-6312 Steinhausen)
Instagram, Facebook, Facebook Pixel
Our website measures conversions using visitor action pixels from Facebook, Meta Platforms Inc., 1601 S California Ave, Palo Alto, CA 94304, USA.
These allow the behavior of site visitors to be tracked after they click on a Facebook ad to reach the provider's website. This allows an analysis of the effectiveness of Facebook advertisements for statistical and market research purposes and their future optimization.
Analytics and advertising
We use the web analytics service Google Analytics provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland, or Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google). Contrary to the description in Section 6.4.1, IP addresses are not logged or stored in Google Analytics (in the version used here, "Google Analytics 4"). For accesses originating from the EU, IP address data is only used to derive location data and is immediately deleted thereafter. When collecting measurement data in Google Analytics, all IP searches take place on EU-based serv-ers before the traffic is forwarded to Analytics servers for processing. Google Analytics utilises regional data centres. When connecting to the nearest available Google data centre in Google Analytics, the measurement data is sent to Analytics via an encrypted HTTPS connection. In these centres, the data is further encrypted before being forwarded to Analytics' processing servers and made available on the platform. The most suitable local data centre is determined based on the IP addresses. This may also result in a transfer of data to servers abroad, eg., the USA (for information on the absence of an adequate level of data protection and the proposed safeguards, see Sections 5.2 and 5.3).
We also use the technical extension called "Google Signals", which enables cross-device track-ing. This makes it possible to associate a single website visitor with different devices. However, this only happens if the visitor is logged into a Google service during the website visits and has activated the "personalised advertising" option in their Google account settings. Even in such cases, we do not have access to any personal data or user profiles; they remain anonymous to us. If you do not wish to use "Google Signals," you can deactivate the "personalised advertising" option in your Google account settings.
Users can prevent the collection of data related to their Website usage (including IP address) generated by the cookie as well as the processing of this data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en-GB.
As an alternative to the browser plugin, users can click on this link to prevent Google Analytics from collecting data on the website in the future. This will place an opt-out cookie on the user's device. If users delete cookies (see Section 6.2 on Cookies), they will need to click the link again.
This website uses Google Analytics, a web analytics service. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google Analytics uses so-called "cookies". These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.
Google Analytics cookies are stored based on Art. 6 (1) (f) DSGVO. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising.
Objecting to the collection of data
You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site: Disable Google Analytics.
Outsourced data processing
We have entered into an agreement with Google for the outsourcing of our data processing and fully implement the strict requirements of the Swiss and European data protection authorities when using Google Analytics.
Demographic data collection by Google Analytics
This website uses Google Analytics' demographic features. This allows reports to be generated containing statements about the age, gender, and interests of site visitors. This data comes from interest-based advertising from Google and third-party visitor data. This collected data cannot be attributed to any specific individual person. You can disable this feature at any time by adjusting the ads settings in your Google account or you can forbid the collection of your data by Google Analytics as described in the section "Refusal of data collection".
Plugins and tools
Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.
If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited.
If you're logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.
YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.
Further information about handling user data, can be found in the data protection declaration of YouTube under https://www.google.de/intl/de/policies/privacy.
Google Web Fonts
For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.
For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our website. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.
If your browser does not support web fonts, a standard font is used by your computer.
This site uses the Google Maps map service via an API. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use Google Maps, it is necessary to save your IP address. This information is generally transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.
The use of Google Maps is in the interest of making our website appealing and to facilitate the location of places specified by us on the website. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.
Further information about handling user data, can be found in the data protection declaration of Google at https://www.google.de/intl/de/policies/privacy/.