This page has been translated to English for your information only. Different terminologies may result from the translation. The original German version can be found here.
Information on Data Protection at Smart Host GmbH
Thank you for visiting our website. In the following we would like to inform you about the handling of your data according to Art. 13 DSGVO (GDPR).
Responsible
Responsible for the processing of personal data collected during visits to this website is:
Smart Host GmbH
Am Kupfergraben 6A
10117 Berlin
E-Post: info [at] smart-host [dot] com
Data Protection Officer
Our data protection officer will be happy to provide you with information or suggestions on the subject of data protection:
datenschutz nord GmbH
Niederlassung Berlin
Kurfürstendamm 212
10719 Berlin
E-Post : datenschutz [at] smart-host [punkt] com
Data Security
In order to protect your data from unwanted access as comprehensively as possible, we take technical and organizational measures. We use an encryption process on our websites. Your data is transferred from your computer to our server and vice versa via the Internet using TLS encryption. You can usually recognize this by the fact that the lock symbol is closed in the status bar of your browser and the address line begins with https://.
Data Processing Procedures
Usage Data
When you visit our website, we temporarily store so-called usage data on the basis of Art. 6 (1) lit. f DSGVO (GDPR). We use the usage data for statistical purposes to improve the quality of our website. We also use this information to enable you to call up our website, to control and administer our systems and to improve the design of the website. These purposes pursued by us represent at the same time the legitimate interest within the meaning of Art. 6 (1) lit. f DSGVO (GDPR). The data set consists of:
- the name and address of the requested content,
- the date and time of the request,
- the amount of data transferred,
- the access status (content transferred, content not found),
- the description of the web browser and operating system used,
- the referral link indicating the page from which you arrived at ours,
- the IP address of the requesting computer, which is deleted after seven days.
Cookie-Use
We use cookies on our website. Cookies are small text files that can be stored and read in the internet browser or by the internet browser on the user's computer system. They allow information to be retained for a certain period of time and identify the visitor's computer. This facilitates navigation and makes our website more user-friendly. Cookies also help us to identify particularly popular areas of our website. A distinction is made between session cookies, which are deleted again as soon as you close your browser, and permanent cookies, which are stored beyond the individual session.
Some cookies are required to use our website. We do not use these cookies for analysis, tracking or advertising purposes. In some cases, these cookies only contain information about certain settings and are not personal. They may also be necessary to enable user guidance, security and implementation of the site. We use these cookies on the basis of Art. 6 (1) lit. f DSGVO (GDPR), based on our legitimate interest in being able to offer basic website functions to ensure the maintenance of functionality.
You can set your browser to inform you about the placement of cookies. This makes the use of cookies transparent for you. You can also delete cookies at any time via the appropriate browser setting and prevent the setting of new cookies. Please note that our web pages may then not be displayed and some functions may no longer be technically available. In addition, we also use technically non-required cookies on our website. We will inform you separately about the use of these cookies in the following.
Application
You can apply for open positions at Smart Host by mail and e-mail. Your application data will be forwarded to the persons responsible for the application process. All parties involved will treat your application documents with due care and confidentiality. We process the data that you disclose to us as part of your application for the purpose of applicant selection.
The legal basis for this data processing is Section 26 (1) Sentence 1 Federal Data Protection Act (decision on the establishment of an employment relationship). After completion of the selection process, the information you provided for the specific selection process and the documents sent will be deleted after six months at the latest, unless we have concluded an employment contract with you. In the event that we would also like to consider your application for other or future job postings, please indicate this in your application. With your express consent, we will then process your data on the basis of Art. 6 (1) a DSGVO (GDPR) consent. You can revoke your consent at any time with effect for the future. The data processing that took place until the revocation remains lawful.
Contact
You have the possibility to contact us by mail, telephone or e-mail. You can also use the contact form provided on our website. In doing so, we process the following data as mandatory data: Your e-mail address and your message. We use this information to process your request and to respond to you. Optionally, you can also enter your name and the name of your hotel. We use this data to address you personally and to assign your request to you and your hotel.
The legal basis for the processing of the data is Art. 6 para. 1 lit. f DSGVO (GDPR). We have a legitimate interest in being in contact with the users of the website and in responding to requests addressed to us. Request demoIf you would like to get to know the functional scope of Smart Host and test it in advance, you can request a demo version via our website. In the contact form provided for this purpose, we require your e-mail address as mandatory information in order to respond to your request and explain the next steps to you. You can voluntarily provide us with your name, the name of your hotel, your telephone number and a message. We use this data to address you personally, to contact you by telephone for coordination if necessary and to assign your request, which may be described in more detail, to you and your hotel.
Registration For Online Events: Webinars / Fireside Chats / Academy
On our website you get the possibility to register for the virtual Smart Host fireside chats / trainings (events). If you would like to participate in the events, you must register in advance using a form on the website. For this purpose, we require the following mandatory personal data: first name, e-mail address. We use this data to organize the events, to register you for the events and to send you the access data to the e-mail address specified in the registration. The data processing is based on Art. 6 para. 1 lit. b DSGVO (GDPR) (organization and implementation of the online event). If you wish, you can voluntarily provide us with your last name and the name of your hotel/company. We use this data in accordance with Art. 6 para. 1 lit. f DSGVO (GDPR) on the basis of our legitimate interest to address you in full personally and to allocate your registration to you and your hotel/your company. If you wish, you can also use a pseudonym.
Newsletter Subscription
On our website you have the possibility to subscribe to our free newsletter. The newsletter informs you about news and current projects at Smart Host. In order to be able to send you the newsletter, we require your e-mail address as mandatory information, as well as your name, so that we can address you personally. Voluntarily, you can send us the name of your hotel. We use this data to address you personally and to assign your request to you and your hotel.
The legal basis for the data processing is Art. 6 para. 1 lit. a DSGVO (GDPR) consent, which you give us after the newsletter registration by clicking on the appropriate link in the confirmation email (so-called doubleWith your consent to the newsletter registration, we also measure your click and opening behavior in order to provide you with an optimal offer of our newsletter dispatch.
The registration becomes effective only after you have clicked on the link in the confirmation email. The data will be stored as long as your consent is valid. You can revoke this at any time with effect for the future. To do so, simply use the unsubscribe link at the end of each e-mail or send an e-mail to info@smart-host.com. Your e-mail address will then be deleted from the distribution system. The data processing that took place until your revocation remains lawful.
Website Analysis
We use web analytics tools for the needs-based design of our websites. The data processing is based on your consent in accordance with Art. 6 para. 1 lit. a DSGVO (GDPR) or § 15 para. 3 p. 1 Telemedia Act, if you have given your consent via our cookie banner. You can revoke your consent at any time with effect for the future. To do so, please delete the cookies in your browser.
How does the tracking work?
The web analytics tool providers used create usage profiles for us based on pseudonyms. The usage profiles created are used to analyze visitor behavior and are evaluated to improve and tailor our offer. For this purpose, permanent cookies are stored on your terminal device and read by us. In addition, it is possible that we retrieve recognition features for your browser or end device (e.g. with the help of tracking pixels or so-called browser fingerprints). In this way, we are able to recognize returning visitors and count them as such.
Which third-party providers do we use in this context?
Data processing may also take place outside the EU or EEA. Below you will find an overview of the third-party providers with whom we cooperate for analysis purposes. Insofar as we use providers from countries that do not have a recognized high level of data protection such as the European Union, we use contractual regulations or other recognized instruments to ensure that the level of data protection is secured as far as possible. With web analytics providers in third countries, we conclude the standard data protection clauses provided by the EU Commission for the processing of personal data in third countries in accordance with Art. 46 (2) lit. c DSGVO (GDPR). With regard to providers from the USA, no adequate level of data protection can be assumed due to processing in the USA. There is a risk that authorities may access the data for security and monitoring purposes without you being informed or being able to appeal. Please keep this in mind if you decide to give your consent to our use of web analytics tools.
Google (USA)Tools: Google Analytics, GA Audiences
Withdrawal of Consent:
If you wish to withdraw your consent, please delete the cookies in your browser.
You can find more information about the processing of your data here
New Relic (USA)
Tool:
New Relic
Withdrawal of Consent:If you wish to withdraw your consent, please delete the cookies in your browser.
You can find more information about the processing of your data here.
Third-party tracking technologies for advertising purposes
We use cross-device tracking technologies so that you can be shown targeted advertising on other websites based on your visit to our website and we can see how effective our advertising measures have been. The data processing is based on your consent according to Art. 6 para. 1 lit. a DSGVO (GDPR) or § 15 para. 3 p. 1 Telemedia Act, if you have given your consent via our banner. Your consent is voluntary and can be revoked at any time with effect for the future. If you wish to withdraw your consent, please delete the cookies in your browser.
How does the tracking work?
When you visit our websites, it is possible that the third-party providers mentioned below retrieve recognition features for your browser or end device (e.g. a so-called browser fingerprint), evaluate your IP address, store or read recognition features on your end device (e.g. cookies) or gain access to individual tracking pixels. The individual characteristics can be used by the third-party providers to recognize your end device on other websites. We can commission the corresponding third-party providers to display advertising based on the pages visited on our site.
Was bedeutet geräteübergreifendes Tracking?
If you log in to the third-party provider with your own user data, the respective recognition features of different browsers and end devices can be linked to each other. If, for example, the third-party provider has created a separate feature for the laptop, desktop PC or smartphone or tablet you use, these individual features can be assigned to each other as soon as you use a service of the third-party provider with your login data. In this way, the third-party provider can also target our advertising campaigns across different end devices.
Which third-party providers do we use in this context?
Below we list the third-party providers with whom we cooperate for advertising purposes. If the data is processed outside the EU or EEA in this context, please note that there is a risk that authorities may access the data for security and monitoring purposes without you being informed or having the right to appeal. If we use providers in insecure third countries, the transfer to a third country is based on Art. 46 (2) lit. c DSGVO (GDPR) standard data protection clauses.
Google (USA)Tool: Google AdWords, Conversion, Goolge Dynamic, Remarketing, Double Click
Adequate Level Of Data Protection:
No adequate level of data protection. The transfer is made on the basis of standard data protection clauses pursuant to Art. 46 (2) lit. c DSGVO (GDPR).
Withdrawal Of Consent:
If you wish to withdraw your consent, please delete the cookies in your browser.
You can find more information on data processing here.
Facebook (USA and/or Irland)Tool: Facebook Custom Audience, Facebook Connect
Adequate level of data protection:
No adequate level of data protection. The transfer is made on the basis of standard data protection clauses pursuant to Art. 46 (2) lit. c DSGVO (GDPR).
Withdrawal of consent:
If you wish to withdraw your consent, please delete the cookies in your browser.
You can find more information on data processing here.
Integration of other technical third-party content and functions:
We use the technical functions and content of third-party providers mentioned below to present our websites. A call to our pages leads to the content of the third-party provider being reloaded, which provides these functions and content. Through this, the third-party provider receives the information that you have called up our site as well as the usage data technically required in this context. We have no influence on the further data processing by the third-party provider.
The data processing is based on your consent pursuant to Art. 6 para. 1 lit. a DSGVO (GDPR), provided that you have previously given your consent via our banner solution.
Please note that the use of third-party content and features may result in your data being processed outside the EU or EEA. In some countries, there is a risk that authorities may access the data for security and monitoring purposes without informing you or allowing you to seek redress. If we use providers in unsafe third countries, the transfer to a third country is based on Art. 46 (2) c DSGVO (GDPR) (standard data protection clauses).
Google (USA)Tool: Google Fonts, Google Maps, Google Tag Manager
Adequate level of data protection:
No adequate level of data protection. The transfer is made on the basis of standard data protection clauses pursuant to Art. 46 (2) lit. c DSGVO (GDPR).
Withdrawal of consent:
If you no longer agree with the processing, please do not use our site.
You can find more information on data processing here.
Is there an obligation to provide the data
The provision of your data is not required by law and is voluntary. However, the provision of your data is required for the use of certain services. This concerns, for example, the provision of your e-mail address in the contact or newsletter registration form, without which we cannot respond to your electronic contact request or send you a newsletter. We will inform you when you enter data if the provision is required for the respective service or function. These data are marked as mandatory fields. In the case of required data, failure to provide it will result in the relevant service or function not being provided. In the case of optional data, failure to provide it may mean that we are unable to provide our services in the same form and to the same extent as usual.
Duration of data storage
Unless we have already informed you in detail about the storage period, we delete personal data when they are no longer required for the aforementioned processing purposes and no legal retention obligations prevent deletion.
Use of service providers
We pass on your data to service providers who support us in the operation of our websites and the associated processes as part of order processing pursuant to Art. 28 DSGVO (GDPR). Our service providers are strictly bound by instructions to us and are contractually obligated accordingly. These are service providers of the following categories:
- Hosting service provider/cloud service provider for the operation of our servers
- Development service provider for programming, development, maintenance and support of software applications
- Service provider for the delivery and performance measurement of our website
- Email delivery service provider for sending emails in connection with our contractual services
- Email marketing service provider for sending newsletters
- Advertising network operator for advertising campaigns and display of online advertising (remarketing and retargeting)
- Service provider for ensuring IT security- Service provider for the registration and implementation of events (webinars).
The service providers process the data exclusively on our instructions and have been obligated to comply with the applicable data protection regulations. All order processors have been carefully selected and are only given access to your data to the extent and for the period required to provide the services.
The servers of some service providers used by Smart Host are located in the USA and other countries outside the European Union. Companies in these countries are subject to data protection laws that do not generally protect personal data to the same extent as they do in the member states of the European Union. If your data is processed in a country that does not have a recognized high level of data protection like the European Union, we ensure that the level of data protection is secured as far as possible by means of contractual regulations or other recognized instruments. With data recipients in third countries, we conclude the standard data protection clauses provided by the EU Commission for the processing of personal data in third countries in accordance with Art. 46 (2) lit. c DSGVO (GDPR).
Your rights as a data subject
As a data subject, you have the right to obtain information about the personal data concerning you (Art. 15 DSGVO (GDPR)) as well as the right to have inaccurate data corrected (Art. 16 DSGVO (GDPR)) or to have it deleted if one of the reasons stated in Art. 17 DSGVO (GDPR) applies, e.g. if the data is no longer needed for the purposes pursued. There is also the right to restriction of processing if one of the conditions set out in Art. 18 DSGVO (GDPR) applies and, in the cases of Art. 20 DSGVO (GDPR), the right to data portability. If the processing of data is based on your consent, you are entitled to revoke your consent to the use of your personal data at any time in accordance with Art. 7 DSGVO (GDPR). A revocation does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. Every data subject also has the right to lodge a complaint with a supervisory authority if he or she believes that the processing of data relating to him or her violates data protection provisions (Art. 77 DSGVO (GDPR)).
Opposition right
In cases where we process your personal data on the legal basis of Art. 6(1)(e) or (f) DSGVO (GDPR), you have the right to object at any time on grounds relating to your particular situation. We will then no longer process the personal data unless there are demonstrably compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
You also have the right to object to the processing of your data for direct marketing purposes at any time. This also applies to profiling in connection with direct advertising. 
