Privacy Policy

 

Thank you for your interest in our service. The protection of your personal data during the collection, processing, and use during your visit to our website is important to us. We collect, process and use your personal data only in accordance with the provisions of the data protection regulations, in particular, the German Telemedia Act (TMG), the General Data Protection Regulation (GDPR) and other data protection standards.

Below you will find information about which data is collected during your visit to the website and how it is used.

I. Name and address of those responsible
The person responsible within the meaning of the Basic Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations:

Seatris AI GmbH
CEO: Vivien Richter (same contact details as the person responsible)
Kantstrasse 34
10625 Berlin (Germany)
Phone: (+49) 030 81 45 40 400
E-mail: contact@seatris.com
Internet: https://seatris.com

II. contact data of our data protection officer
Mr. Jan Wandrey, Motzener Straße 25, 12277 Berlin, kontakt@agidat.de

III. Provision of the website
1. The scope of the processing of personal data
Every access to our website and every retrieval of a file stored on the website is logged. The storage serves internal system-related and statistical purposes. To be logged: Name of the retrieved file, date and time of the retrieval, transferred data volume, notification of successful retrieval, web browser, the operating system used and requesting domain. In addition, the IP addresses of the requesting computer are logged as well. The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.

Further personal data is only collected if you provide this information voluntarily, for example as part of an inquiry. We adhere to the principle of data avoidance. As far as possible, no personal data is collected.

2. legal basis for the processing of personal data
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.

3. Purpose of data processing
The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this, the IP address of the user must remain stored for the duration of the session. The data is stored in log files to ensure the functionality of the website. In addition, the data serves us to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.
Our legitimate interest in data processing pursuant to Art. 6 para. 1 lit. f GDPR also lies in these purposes.

4. Duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.
If the data is stored in log files, this is the case after seven days at the latest. Further storage is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

5. possibility of opposition and elimination
The collection of the data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the guest booking. Consequently, there is no possibility of objection on the part of the user.

IV. Use of the contact form

1. scope of the processing of personal data
If you send us data via the contact form, the following personal data will be processed: First name, surname, name of the hotel/restaurant, the country in which the restaurant is located, your e-mail address and the reason for your contact.
The data is transferred to our CRM. The external service provider whose CRM we use is Teamleader GmbH c/o WeWork, Kurfürstendamm 11, 10719 Berlin. The above-mentioned service provider has been carefully selected and commissioned by us, is bound by our instructions and is regularly checked.

2. legal basis for the processing of personal data
The legal basis for the processing of data is Art. 6 para. 1 lit. b GDPR. The legal basis for the use of external service providers is an order processing contract in accordance with Art. 28 Para. 3 S. 1 GDPR.

3. Purpose of data processing
The processing of the data is necessary for the fulfillment of a contract with the user or for the implementation of pre-contractual measures.

4. Duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. Stored personal data will be deleted up to the purpose for which they were entrusted to us if you revoke your consent to their storage or if their storage is inadmissible for other legal reasons. If retention and tax retention periods are observed, the duration of the storage of certain data can be up to 10 years.

5. Possibility of opposition and elimination
As a user, you have the possibility to cancel the use of the contact form at any time. If you no longer agree to the storage of your personal data or if it has become incorrect, we will, upon your instruction, arrange for your data to be deleted, corrected or blocked in accordance with the statutory provisions. Upon request, you will receive information free of charge about all personal data that we have stored about you.
If the data is required to fulfill a contract or to carry out pre-contractual measures, premature deletion of the data is only possible insofar as there are no contractual or statutory obligations to the contrary.

V. Rights of the data subject
If personal data are processed by you, you are affected within the meaning of the DSGVO and you have the following rights vis-à-vis the person responsible:

1. right to information
You can ask the person in charge to confirm whether personal data concerning you will be processed by us.
If such processing has taken place, you can request the following information from the person responsible:

(1) the purposes for which the personal data are processed;
(2) the categories of personal data being processed;
(3) the recipients or categories of recipients to whom the personal data concerning you have been or are still being disclosed;
(4) the planned duration of the storage of the personal data concerning you or, if specific information on this is not possible, criteria for determining the storage period;
(5) the existence of a right to rectification or deletion of personal data concerning you, a right to limitation of processing by the controller or a right to object to such processing;
(6) the existence of a right of appeal to a supervisory authority;
(7) any available information on the origin of the data if the personal data are not collected from the data subject;
(8) the existence of automated decision-making including profiling in accordance with Art. 22 para. 1 and 4 DSGVO and - at least in these cases - meaningful information on the logic involved and the scope and intended effects of such processing for the data subject.

You have the right to request information as to whether the personal data concerning you is transferred to a third country or to an international organisation. In this context, you may request to be informed of the appropriate guarantees pursuant to Art. 46 DSGVO in connection with the transmission.

2. the right to correction
You have a right of rectification and/or completion vis-à-vis the data controller if the personal data processed concerning you are incorrect or incomplete. The person responsible shall make the correction without delay.

3. right to limitation of processing
Under the following conditions, you may request that the processing of personal data concerning you be restricted:

(1) if you dispute the accuracy of the personal data concerning you for a period that enables the data controller to verify the accuracy of the personal data;
(2) the processing is unlawful and you refuse to delete the personal data and instead request that the use of the personal data be restricted;
(3) the data controller no longer needs the personal data for the purposes of the processing, but you do need them to assert, exercise or defend legal claims, or
(4) if you have filed an objection to the processing pursuant to Art. 21 para. 1 DSGVO and it has not yet been determined whether the legitimate reasons of the person responsible outweigh your reasons.

If the processing of personal data concerning you has been restricted, such data may only be processed - apart from being stored - with your consent or for the purpose of asserting, exercising or defending rights or protecting the rights of another natural or legal person or on grounds of an important public interest of the Union or a Member State.

If the processing restriction has been restricted according to the above conditions, you will be informed by the person responsible before the restriction is lifted.

4. right to cancellation

a) Duty to delete
You may request the data controller to delete the personal data relating to you without delay and the controller is obliged to delete this data without delay if one of the following reasons applies:

(1) The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
(2) You revoke your consent, on which the processing was based pursuant to Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a DSGVO, and there is no other legal basis for the processing.


If you have any questions regarding the collection, processing or use of your personal data, information, correction, blocking or deletion of data, please contact us:

Seatris AI GmbH, Kantstr. 34, 10625 Berlin, Germany, e-mail: privacy@seatris.com
Berlin, May 2018