Privacy Policy

We are very pleased about your interest in our company. Data protection is of particular importance to the management of NG Interior Design GmbH. The use of the NG Interior Design GmbH website is possible without the provision of personal data. However, if a data subject wishes to make use of special services provided by our company via the website, the processing of personal data may become necessary. If the processing of personal data is required and there is no legal basis for such processing, we will generally obtain the consent of the data subject.

The processing of personal data, such as the name, address, email address, or telephone number of a data subject, will always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to NG Interior Design GmbH. Through this privacy policy, our company aims to inform the general public of the nature, scope, and purpose of the personal data we collect, use, and process. Furthermore, data subjects are informed of their rights under this privacy policy.

As the data controller, NG Interior Design GmbH has implemented various technical and organizational measures to ensure the most comprehensive protection of personal data processed through this website. However, Internet-based data transmissions may have security vulnerabilities, so absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us via alternative means, such as by telephone.

  1. Definitions

The privacy policy of NG Interior Design GmbH is based on the terminology used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our privacy policy should be easy to read and understand for both the public and our customers and business partners. To ensure this, we would like to explain the terms used in advance.

We use the following terms, among others, in this privacy policy:

  1. a) Personal Data
    Personal data means any information relating to an identified or identifiable natural person (the “data subject”). An identifiable natural person is one who can be identified, directly or indirectly, by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
  2. b) Data Subject
    A data subject is any identified or identifiable natural person whose personal data is processed by the data controller.
  3. c) Processing
    Processing refers to any operation or set of operations which is performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.
  4. d) Restriction of Processing
    Restriction of processing means the marking of stored personal data with the aim of limiting its processing in the future.
  5. e) Profiling
    Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular, to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.
  6. f) Pseudonymization
    Pseudonymization is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.
  7. g) Controller or Data Controller
    The controller or data controller is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
  8. h) Processor
    The processor is a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.
  9. i) Recipient
    The recipient is a natural or legal person, public authority, agency, or another body to which the personal data are disclosed, whether or not a third party. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients.
  10. j) Third Party
    A third party is a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
  11. k) Consent
    Consent of the data subject means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
  12. Name and Address of the Controller

The controller for the purposes of the General Data Protection Regulation, other data protection laws applicable in Member States of the European Union, and other provisions related to data protection is:

NG Interior Design GmbH
Dorfstraße 51
6561 Ischgl
Austria
Phone: +43 5445 61200
Email: info@zherohotelgroup.com
Website: www.zherohotelgroup.com

  1. Cookies

The website of NG Interior Design GmbH uses cookies. Cookies are text files that are stored on a computer system via an internet browser.

Many websites and servers use cookies. Many cookies contain a cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a character string through which websites and servers can be assigned to the specific internet browser in which the cookie was stored. This allows visited websites and servers to differentiate the individual browser of the data subject from other internet browsers that contain different cookies. A specific internet browser can be recognized and identified using the unique cookie ID.

By using cookies, NG Interior Design GmbH can provide the users of this website with more user-friendly services that would not be possible without the cookie setting.

Cookies allow us to optimize the information and offers on our website for the user. As mentioned, cookies allow us to recognize our website users. The purpose of this recognition is to make it easier for users to utilize our website. For example, the user of a website that uses cookies does not have to enter their login data again each time they visit the website because this is handled by the website and the cookie stored on the user’s computer system.

The data subject may prevent the setting of cookies through our website at any time by adjusting the settings of the internet browser used and may thus permanently deny the setting of cookies. Additionally, cookies that have already been set can be deleted at any time via an internet browser or other software programs. This is possible in all popular internet browsers.

  1. Collection of General Data and Information

The website of NG Interior Design GmbH collects a series of general data and information when a data subject or an automated system accesses the website. This general data and information is stored in the server log files. The data that may be collected includes (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrers), (4) the sub-websites, (5) the date and time of access to the website, (6) an Internet Protocol (IP) address, (7) the internet service provider of the accessing system, and (8) any other similar data and information that may be used in the event of attacks on our information technology systems.

When using this general data and information, NG Interior Design GmbH does not draw any conclusions about the data subject. This information is needed to (1) deliver the content of our website correctly, (2) optimize the content of our website as well as its advertising, (3) ensure the long-term functionality of our IT systems and website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyberattack. Therefore, NG Interior Design GmbH analyzes anonymously collected data and information statistically, with the aim of increasing data protection and data security in our company, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from any personal data provided by a data subject.

  1. Contact Possibility via the Website

The NG Interior Design GmbH website contains information that enables quick electronic contact to our company, as well as direct communication with us, including a general address for electronic mail (email address). If a data subject contacts the controller by email or via a contact form, the personal data transmitted by the data subject are automatically stored. Such personal data transmitted on a voluntary basis by a data subject to the controller are stored for the purpose of processing or contacting the data subject. This personal data is not passed on to third parties.

  1. Routine Erasure and Blocking of Personal Data

The controller shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject.

If the storage purpose is not applicable, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data will be routinely blocked or erased in accordance with legal requirements.

  1. Rights of the Data Subject

Users of this website have the following rights:

  • Right of access
  • Right to rectification
  • Right to erasure (“Right to be forgotten”)
  • Right to restriction of processing
  • Right to data portability
  • Right to withdraw consent

If your personal data is processed based on Article 6(1)(f) GDPR, you have the right to object to the processing, provided there are reasons for doing so that arise from your particular situation, or the objection is directed against direct marketing (Article 21 GDPR). If you object to direct marketing, the operator will cease sending you marketing communications.

  1. Data Protection in Applications and the Application Process

The data controller collects and processes the personal data of applicants for the purpose of handling the application process. The processing may also be conducted electronically. This is particularly the case if an applicant submits corresponding application documents via email or via a web form on the website. If the data controller concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If no employment contract is concluded with the applicant, the application documents will be automatically deleted two months after notification of the rejection decision, provided that no other legitimate interests of the controller prevent deletion. A legitimate interest in this sense could be, for example, an obligation to provide evidence in a case under the General Equal Treatment Act (AGG).

  1. Tracking and Tracing Services

The data controller has integrated various tracking and tracing services on this website:

  • Matomo Analytics

Like most website operators, Matomo.org collects non-personally-identifying information of the sort that web browsers and servers typically make available, such as the browser type, language preference, referring site, and the date and time of each visitor request. Matomo.org’s purpose in collecting non-personally identifying information is to better understand how Matomo.org’s visitors use its website. From time to time, Matomo.org may release non-personally-identifying information in the aggregate, e.g., by publishing a report on trends in the usage of its website. Matomo.org also collects potentially personally-identifying information like Internet Protocol (IP) addresses. Matomo.org does not use such information to identify its visitors, however, and does not disclose such information, other than under the same circumstances that it uses and discloses personally-identifying information, as described.

  • Google Analytics:
    The operator uses the web analysis service Google Analytics 4 from Google LLC (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). This service collects data such as your operating system, browser, IP address, and date and time of website visits, through the use of cookies.
  • Google Ads Conversion Tracking:
    The operator uses Google Ads Conversion Tracking from Google Ireland Limited, which stores cookies on your computer and provides an analysis of website usage based on advertisements.
  1. Booking and Reservations

We use a booking system from The Fork, which is hosted on its own platform. La Fourchette SAS is the data controller for the personal data collected by TheFork, with representatives appointed in the European Union and the United Kingdom in accordance with applicable data protection laws. The contact details of The Fork representative in the European Union are:

La Fourchette SAS
70 rue Saint-Lazare
75009 Paris
France
Att.:Privacy Officer

14. Legal Basis for Processing

Art. 6(1)(a) GDPR serves as the legal basis for processing operations where we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract, such as for the delivery of goods or the provision of services, the processing is based on Art. 6(1)(b) GDPR. The same applies to pre-contractual measures. If the processing is required for compliance with a legal obligation, such as tax obligations, the processing is based on Art. 6(1)(c) GDPR.

  1. Legitimate Interests Pursued by the Controller or by a Third Party

If the processing of personal data is based on Article 6(1)(f) GDPR, the legitimate interest is the execution of our business activities in favor of the well-being of all our employees and shareholders.

  1. Duration of Personal Data Storage

The criterion used to determine the duration of storage of personal data is the respective statutory retention period. After the expiration of that period, the corresponding data will be routinely deleted, as long as it is no longer necessary for the fulfillment of a contract or the initiation of a contract.

  1. Legal or Contractual Requirements for the Provision of Personal Data

We inform you that the provision of personal data is partly required by law (e.g., tax regulations) or may also result from contractual provisions (e.g., details of the contract partner). In some cases, it may be necessary to provide personal data for the conclusion of a contract, which must then be processed by us. The data subject is required to provide personal data when our company signs a contract with them. Non-provision of personal data would result in the contract not being concluded.