Book now
Book now

Privacy Statement and Consent (DSGVO)

Editor

Hotel Garni Matterhorn FOCUS AG
Schluhmattstrasse 131
CH-3920 Zermatt

Tel. +41 27 966 24 24
Fax +41 27 966 24 25
info@matterhorn-focus.ch

 

An overview of data protection

General

The following gives a simple overview of what happens to your personal information when you are contacting us. Personal information is any data with which you could be personally identified. Detailed information on the subject of data protection can be found in our privacy policy found below.
Matterhorn Focus processes all datas within the Swiss Federal Act on Data Protection (FADP) and the EU General Data Protection Regulation (GDPR).

Please note that the following information may be reviewed and amended from time to time. Therefore, we recommend regularly checking this privacy policy for any updates. you view this privacy policy regularly. Furthermore, for individual data processing listed below, other compa-nies are responsible under data protection law or jointly responsible with us, so that in these cases, the information provided by those companies is also relevant.

 

General information and mandatory information

Data protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with the statutory data protection regulations and this privacy policy.

If you use this website, various pieces of personal data will be collected. Personal information is any data with which you could be personally identified. This privacy policy explains what information we collect and what we use it for. It also explains how and for what purpose this happens.

Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.

Notice concerning the party responsible for this website

The party responsible for processing data on this website is:

Hotel Garni Matterhorn Focus AG
Schluhmattstrasse 131
CH-3920 Zermatt

Tel. +41 27 966 24 24
Fax +41 27 966 24 25
info@matterhorn-focus.ch

The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (names, email addresses, etc.).

Revocation of your consent to the processing of your data

Many data processing operations are only possible with your express consent. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.

Right to file complaints with regulatory authorities

If there has been a breach of data protection legislation, the person affected may file a complaint with the competent regulatory authorities. The competent regulatory authority for matters related to data protection legislation is the data protection officer of the German state in which our company is headquartered. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right to data portability

You have the right to have data which we process based on your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a standard, machine-readable format. If you require the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser's address line when it changes from "http://" to "https://" and the lock icon is displayed in your browser's address bar.

If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.

Encrypted payments and Online Payment Processing

If you enter into a contract which requires you to send us your payment information (e.g. account number for direct debits), we will require this data to process your payment.

Payment transactions using common means of payment (Visa/MasterCard, direct debit) are only made via encrypted SSL or TLS connections. You can recognize an encrypted connection in your browser's address line when it changes from "http://" to "https://" and the lock icon in your browser line is visible.

In the case of encrypted communication, any payment details you submit to us cannot be read by third parties.

If you make chargeable bookings, order services, products or hotel vouchers, depending on the product, service, and preferred payment method (for example our payment link), it may be necessary to provide additional details such as your credit card information. This information, as well as the fact that you have purchased a service from us at the respective amount and time, will be forwarded to the respective payment service providers (e.g. payment solution providers, credit card issuers, or credit card acquirers). In this regard, please always take into account the information provided by the respective company, in particular in the privacy policy and the general terms and conditions. We reserve the right to retain a copy of the credit card information as a security measure.

The legal basis for this data processing is the performance of a contract within the meaning of Article 6(1)(b) of the GDPR.

Information, blocking, deletion

As permitted by law, you have the right to be provided at any time with information free of charge about any of your personal data that is stored as well as its origin, the recipient and the purpose for which it has been processed. You also have the right to have this data corrected. You have the right to obtain the erasure of your personal data under certain circumstances. In individual cases, particularly in the case of statutory retention obligations, the right to erasure may be excluded. In this case, the erasure may be replaced by a blocking of the data if the requirements are met. You can contact us at any time using the address given in our legal notice if you have further questions on the topic of personal data.

Opposition to promotional emails

We hereby expressly prohibit the use of contact data published in the context of website legal notice requirements with regard to sending promotional and informational materials not expressly requested. The website operator reserves the right to take specific legal action if unsolicited advertising material, such as email spam, is received.

 

Data Processing when contacting us

If you contact us through our contact addresses and channels (e.g., by e-mail, phone, or contact form), your personal data is processed. We process the data you provide us with, such as your name, email address, phone number, and your request, your Job Applications. Additionally, the time of receipt of the request will be documented. Mandatory fields are marked in contact forms with an asterisk (*). We process this data to address your request (e.g., providing information about our Hotel, assisting with contract processing such as questions about your booking, incorporating your feedback to improve our services, etc.).

The legal basis for this data processing is our legitimate interest under Article 6(1)(f) of the GDPR in addressing your request or, if your request is aimed at the conclusion or performance of a contract, in the implementation of the necessary measures within the meaning of Article 6(1)(b) of the GDPR.

Data Processing for Fulfilling Legal Reporting Obligations

Upon arrival at our hotel, we may require the following information from you and your accompanying persons; First and last name, Home address, Date of birth, Nationality, Identity card or passport, Date of arrival and departure

We collect this information to fulfil legal reporting obligations, which arise in particular from hospitality or police regulations. To the extent required by applicable laws, we forward this information to the competent authority.

The legal basis for the data processing is our legitimate interest within the meaning of Article 6(1)(c) of the GDPR in complying with our legal obligations.

 

Data collection on our website

Who is responsible for the data collection on this website?
The data collected on this website are processed by the website operator. The operator's contact details can be found in the website's required legal notice.

How do we collect your data?
Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form.

Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website.

What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site. Data can also be used to correctly process additional services to the accommodation contract (transfer, ski passes, ski school, restaurant reservations, etc.).

What rights do you have regarding your data?
You always have the right to request information about your stored data, its origin, its recipients, and the purpose of its collection at no charge. You also have the right to request that it be corrected, blocked, or deleted. You can contact us at any time using the address given in the legal notice if you have further questions about the issue of privacy and data protection. You may also, of course, file a complaint with the competent regulatory authorities.

Analytics and third-party tools

When visiting our website, statistical analyses may be made of your surfing behavior. This happens primarily using cookies and analytics. The analysis of your surfing behavior is usually anonymous, i.e. we will not be able to identify you from this data. You can object to this analysis or prevent it by not using certain tools. Detailed information can be found in the following privacy policy.

You can object to this analysis. We will inform you below about how to exercise your options in this regard.

Cookies

Some of our web pages use cookies. Cookies do not harm your computer and do not contain any viruses. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called "session cookies." They are automatically deleted after your visit. Other cookies remain in your device's memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.

You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.

Cookies which are necessary to allow electronic communications or to provide certain functions you wish to use (such as the shopping cart) are stored pursuant to Art. 6 paragraph 1, letter f of DSGVO. The website operator has a legitimate interest in the storage of cookies to ensure an optimized service provided free of technical errors. If other cookies (such as those used to analyze your surfing behavior) are also stored, they will be treated separately in this privacy policy.

Server log files

The website provider automatically collects and stores information that your browser automatically transmits to us in "server log files". These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

These data will not be combined with data from other sources.

The basis for data processing is Art. 6 (1) (b) DSGVO, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.

Contact form

Should you send us questions via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your question and any follow-up questions. We do not share this information without your permission.

We will, therefore, process any data you enter onto the contact form only with your consent per Art. 6 (1)(a) DSGVO. You may revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.

We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory statutory provisions, especially those regarding mandatory data retention periods, remain unaffected by this provision.

Newsletter

This website uses the services of dodeley® for sending newsletters. Provider is the indual GmbH, Sebastiansplatz 4, PO Box 377, 3900 Brig

dodeley® is a service with which the dispatch of newsletters can be organized and analyzed. If you enter data for the purpose of receiving the newsletter (eg e-mail address), these will be stored on the servers of dodeley® in Switzerland. If you do not want analysis by dodeley®, you have to unsubscribe from the newsletter. For this purpose, we provide a link in every newsletter message. Privacy Policy: https://www.dodeley.com/impressum?language=en

 

Processing of data (customer and contract data)

We collect, process, and use personal data only insofar as it is necessary to establish, or modify legal relationships with us (master data). This is done based on Art. 6 (1) (b) DSGVO, which allows the processing of data to fulfill a contract or for measures preliminary to a contract. We collect, process and use your personal data when accessing our website (usage data) only to the extent required to enable you to access our service or to bill you for the same.

Data transmitted when entering into a contract

We transmit personally identifiable data to third parties only to the extent required to fulfill the terms of your contract and for your requests, for example, to companies entrusted to organize the Transfer (Air Zermatt, taxi/transfer companies) or banks entrusted to process your payments or booking requests for restaurants, ski instructor, etc or ticket purchase at Zermatt Bergbahnen, etc. or forwarding the compulsory registration form to the Police. In addition to this data protection declaration, you must therefore observe any data protection provisions of the company concerned, which you can usually find on its website.

Your data will not be transmitted for any other purpose unless you have given your express permission to do so. Your data will not be disclosed to third parties for advertising purposes without your express consent.

The basis for data processing is Art. 6 (1) (b) DSGVO, which allows the processing of data to fulfill the hospitality contract or for measures preliminary to a contract.

Booking through a booking Platform

If you make bookings through a third-party platform (e.g., SimpleBooking, Booking.com, Hotel, Escapio, Expedia, Holidaycheck, HRS, Kayak, Tripadvisor, Trivago, etc.), we receive various personal data related to the booking from the respective platform operator. Additionally, any inquiries regarding your booking may be forwarded to us. We will process this data by name to accurately record your booking and provide the booked services as requested.

The legal basis for the data processing for this purpose is the implementation of pre-contractual measures and the performance of a contract withinallergien the meaning of Article 6(1)(b) of the GDPR.

Our Hotelsoftware company: gastrodat GmbH, Friedensstrasse 8, 5082 Gröding, Austria Legal Notice

 

Data processing when using our chat / guest dialogue function and the WebConcierge

If you contact us through our WebConcierge chat or the guest dialogue function, your personal data will be processed. We process the data you provide us with, such as your name, your request, etc. Additionally, the time of receipt of the request will be documented. Mandatory fields are marked with an asterisk (*). We process this data exclusively to address your request (e.g., providing information about our Hotel, assisting with contract processing such as questions about your booking, incorporating your feedback to improve our services, your preferences and special request such as allergies, anniversaries etc.). For handling communication through the chat and guest dialogue function, we use a software application provided by DiALOGiFY AG, Grienbachstrasse 11, 6300 Zug, Schweiz („DiALOGiFY“) . Therefore, your data may be stored in a database of DiALOGiFY AG, which may allow DiALOGiFY AG to access your data if this is necessary for providing the software and supporting its use.

The legal basis for this data processing is our legitimate interest under Article 6(1)(f) of the GDPR in using up-to-date communication technologies or, if your request is aimed at the conclusion or performance of a contract, in the implementation of the necessary measures within the meaning of Article 6(1)(b) of the GDPR. It may be that DiALOGiFY AG wishes to use some of this data for its own purposes (e.g., conducting statistical analysis). For these data processing operations, DiALOGiFY AG is the controller and must ensure compliance with data protection laws in connection with these data processing operations. Information about data processing by DiALOGiFY AG can be found at https://www.dialogify.io/datenschutzerklarung/

 

Data Processing in connection with Video Surveillance

To ensure the safety of our guests, employees, and our property, as well as to prevent and address unlawful behaviour (in particular, theft and property damage), the entrance area and the publicly accessible areas of our hotel, excluding sanitary facilities and hotel rooms, may be monitored by cameras. The image data will only be viewed if there is a suspicion of unlawful behaviour. Otherwise, the recorded images will be automatically deleted. To provide the video surveillance system, we rely on a service provider WND AG, Bachstrasse 72, 3920 Zermatt, Switzerland. This company has access to the data insofar as this is necessary for the provision of the system. If suspicions of unlawful behaviour are confirmed, the data may be disclosed to the extent necessary for the enforcement of claims or for reporting to consulting firms (in particular, to a law firm) and authorities.

The legal basis is our legitimate interest within the meaning of Article 6(1)(f) of the GDPR in pro-tecting our guests, employees, and property, as well as safeguarding and enforcing our rights.

 

Social-Media Plugins

We have integrated the social media buttons of the following companies on our website. The plugins can be recognized by the fact that they are marked with the appropriate logo.

  • Facebook und Instagram (Meta Platforms Inc., 1601 S California Ave, Palo Alto, CA 94304, USA)
  • LinkedIn (Unlimited Company, Wilton Place, Dublin 2, Irland)
  • Google Plus/Google Inc. (1600 Amphitheatre Parkway - Mountain View - CA 94043 - USA)
  • Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)
  • TripAdvisor Inc. (400 1st Avenue, Needham, MA 02494 USA)
  • TrustYou (Agnes-Pockels-Bogen 1, 80992 München)
  • Tweebie (ipeak Infosystems GmbH, Hinterbergstrasse 32, CH-6312 Steinhausen)

AddThis

This website includes “Addthis” plug-ins that allow you to set bookmarks or to jointly use interesting website content. The use of “Addthis” involves the use of cookies as well. The data thus produced (such as time of use or browser language) are transmitted to Add This LLC in the USA and processed there. You can find further details on data processing by Add This LLC and the data protection practiced by Add This LLC under www.addthis.com/privacy. This website includes, in particular, information on the type of data processed as well as their purpose. We do not carry out any processing of this data. Through the use of the “Addthis” field, you state that you agree to the data processing by Add This LLC, in the scope shown on the www.addthis.com website. You may at any time oppose the use of your data by use of an “opt out cookie”. Further details on this, too, may be found at the Add This LLC website noted above.

Pinterest

Features and content of the Pinterest service offered by Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA, may be incorporated into our online offering. For this, e.g. content such as images, videos, or text and buttons that users use to promote their content, subscribe to content creators, or subscribe to our posts. If the users are members of the platform Pinterest, Pinterest can call the o.g. assign contents and functions to the profiles of the users there. Privacy Policy Instgram: https://about.pinterest.com/en/privacy-policy

TripAdvisor

We use a social media plugin on our website from TripAdvisor Inc., 400 1st Avenue, Needham, MA 02494 USA. TripAdvisor collects reviews from its users about tourist deals and is an online business. These reviews are combined with booking recommendations. We use the TripAdvisor widget to neutralize customer opinions about us. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. TripAdvisor places a cookie on your machine as soon as you open a page with the widget. TripAdvisor Privacy Policy: https://tripadvisor.mediaroom.com/CHDE-privacy-policy

TrustYou

This website uses the Trustscore Widget, an online reputation management tool to display cumulative guest reviews for the accommodations offered on this site. Provider of Trustscore Widget is TrustYou, Agnes-Pockels-Bogen 1, 80992 Munich. Use of the Trustcore Widget is intended as a guide to help users choose the right accommodation from our online offering. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. For more information on the Trust Score Widget, please refer to the TrustYou Privacy Policy https://www.trustyou.com/wp-content/uploads/2018/05/2017-01-19-TY-Privacy-Policy.pdf

Instagram, Facebook, Facebook Pixel

Our website measures conversions using visitor action pixels from Facebook, Meta Platforms Inc., 1601 S California Ave, Palo Alto, CA 94304, USA.

These allow the behavior of site visitors to be tracked after they click on a Facebook ad to reach the provider's website. This allows an analysis of the effectiveness of Facebook advertisements for statistical and market research purposes and their future optimization.

The data collected is anonymous to us as operators of this website and we cannot use it to draw any conclusions about our users' identities. However, the data are stored and processed by Facebook and Instagram, which may make a connection to your Facebook and Instagram profile and which may use the data for its own advertising purposes, as stipulated in the Facebook and Instagram privacy policy. This will allow Facebook and Instagram to display ads both on Facebook and on third-party sites. We have no control over how this data is used.

Check out Meta Platforms Inc. privacy policy https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0

 

Analytics and advertising

Google Analytics

We use the web analytics service Google Analytics provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland, or Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Google). Contrary to the description in Section 6.4.1, IP addresses are not logged or stored in Google Analytics (in the version used here, "Google Analytics 4"). For accesses originating from the EU, IP address data is only used to derive location data and is immediately deleted thereafter. When collecting measurement data in Google Analytics, all IP searches take place on EU-based serv-ers before the traffic is forwarded to Analytics servers for processing. Google Analytics utilises regional data centres. When connecting to the nearest available Google data centre in Google Analytics, the measurement data is sent to Analytics via an encrypted HTTPS connection. In these centres, the data is further encrypted before being forwarded to Analytics' processing servers and made available on the platform. The most suitable local data centre is determined based on the IP addresses. This may also result in a transfer of data to servers abroad, eg., the USA (for information on the absence of an adequate level of data protection and the proposed safeguards, see Sections 5.2 and 5.3).

We also use the technical extension called "Google Signals", which enables cross-device track-ing. This makes it possible to associate a single website visitor with different devices. However, this only happens if the visitor is logged into a Google service during the website visits and has activated the "personalised advertising" option in their Google account settings. Even in such cases, we do not have access to any personal data or user profiles; they remain anonymous to us. If you do not wish to use "Google Signals," you can deactivate the "personalised advertising" option in your Google account settings.

Users can prevent the collection of data related to their Website usage (including IP address) generated by the cookie as well as the processing of this data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en-GB.

As an alternative to the browser plugin, users can click on this link to prevent Google Analytics from collecting data on the website in the future. This will place an opt-out cookie on the user's device. If users delete cookies (see Section 6.2 on Cookies), they will need to click the link again.

This website uses Google Analytics, a web analytics service. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses so-called "cookies". These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

Google Analytics cookies are stored based on Art. 6 (1) (f) DSGVO. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising.

Objecting to the collection of data

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site: Disable Google Analytics.

For more information about how Google Analytics handles user data, see Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.

Outsourced data processing
We have entered into an agreement with Google for the outsourcing of our data processing and fully implement the strict requirements of the Swiss and European data protection authorities when using Google Analytics.

Demographic data collection by Google Analytics
This website uses Google Analytics' demographic features. This allows reports to be generated containing statements about the age, gender, and interests of site visitors. This data comes from interest-based advertising from Google and third-party visitor data. This collected data cannot be attributed to any specific individual person. You can disable this feature at any time by adjusting the ads settings in your Google account or you can forbid the collection of your data by Google Analytics as described in the section "Refusal of data collection".

Plugins and tools

YouTube

Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited.

If you're logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

Further information about handling user data, can be found in the data protection declaration of YouTube under https://www.google.de/intl/de/policies/privacy.

Google Web Fonts

For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.

For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our website. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

If your browser does not support web fonts, a standard font is used by your computer.

Further information about handling user data, can be found at https://developers.google.com/fonts/faq and in Google's privacy policy at https://www.google.com/policies/privacy/.

Google Maps

This site uses the Google Maps map service via an API. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

To use Google Maps, it is necessary to save your IP address. This information is generally transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.

The use of Google Maps is in the interest of making our website appealing and to facilitate the location of places specified by us on the website. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

Further information about handling user data, can be found in the data protection declaration of Google at https://www.google.de/intl/de/policies/privacy/.