1. General data protection
The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data is any data by which you can be personally identified. For detailed information on the subject of data protection, please refer to our data protection declaration listed below this text.
Data collection on this website
Who is responsible for data collection on this website? Data processing on this website is carried out by the website operator.
Business Center 1, M Floor
The Meydan Hotel,
Nad Al Sheba
How do we collect your data?
On the one hand, your data is collected by you providing it to us. This can be, for example, data that you enter in a contact form. Other data is collected automatically or after your consent when you visit the website by our IT systems. This is mainly technical data (e.g. Internet browser, operating system or time of page view). The collection of this data takes place automatically as soon as you enter this website.
What do we use your data for?
Part of the data is collected to ensure error-free provision of the website. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have a right to demand the correction, blocking or deletion of this data. For this purpose, as well as for further questions on the subject of data protection, you can contact us at any time.
Business Center 1, M Floor
The Meydan Hotel,
Nad Al Sheba
Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
Analysis tools and tools from third-party providers
2. General notes and obligatory information
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.
We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
Note regarding the responsible authority
The responsible authority for data processing is:
Business Center 1, M Floor
The Meydan Hotel,
Nad Al Sheba
The responsible authority is the natural or legal person who alone or jointly with others decides on the purposes and means of the processing of personal data (e.g. names, e-mail addresses or similar).
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke an already given consent at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right of appeal to the competent supervisory authority
In the event of violations of the GDPR, data subjects shall have a right of appeal to a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation. The right of appeal is without prejudice to any other administrative or judicial remedy.
Right to data transferability
You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Encrypted payment transactions on this website
If, after the conclusion of a contract with costs, there is an obligation to transmit your payment data to us (e.g. account number in the case of direct debit authorization), this data is required for payment processing. Payment transactions via the common means of payment (Visa/MasterCard, direct debit) are made exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. With encrypted communication, your payment data that you transmit to us cannot be read by third parties.
Information, blocking, deletion
Right to restriction of processing
- If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
- If the processing of your personal data has happened / is happening unlawfully, you can request the restriction of data processing instead of deletion.
- If we no longer need your personal data, but you need it to exercise, defend or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of erasure.
- If you have lodged an objection pursuant to Art. 21 (1) of the GDPR, a balance must be struck between your interests and ours. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, this data may – apart from being stored – only be processed with your consent or for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the European Union or a Member State.
Note on data transfer to the USA and other third countries
Among other things, we use tools from companies based in the USA or other third countries that are not secure under data protection law. If these tools are active, your personal data may be transferred to these third countries and processed there. We would like to point out that no level of data protection comparable to that in the EU can be guaranteed in these countries. For example, US companies are obliged to hand over personal data to security authorities without you as a data subject being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. intelligence services) process, evaluate and permanently store your data located on US servers for monitoring purposes. We have no influence on these processing activities.
Objection to advertising mails
3. Data collection on our website
Our websites use so-called “cookies.” Cookies are small text files that do not cause any damage to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your device.
Session cookies are automatically deleted after your visit ends. Persistent cookies remain stored on your device until you delete them yourself or they are automatically deleted by your web browser. In some cases, cookies from third-party companies may also be stored on your device when you enter our site (third-party cookies). These enable us or you to use certain services provided by the third-party company (e.g., cookies for processing payment services).
Cookies have various functions. Many cookies are technically necessary because certain website functions would not work without them (e.g., the shopping cart function or the display of videos). Other cookies are used to analyze user behavior or display advertisements. Cookies that are necessary for the electronic communication process (necessary cookies) or for providing certain functions desired by you (functional cookies, e.g., for the shopping cart function) or for optimizing the website (e.g., cookies for measuring web audiences) are stored based on Art. 6(1)(f) of the GDPR, unless another legal basis is specified.
The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. If consent for the storage of cookies has been requested, the storage of the respective cookies is based exclusively on this consent (Art. 6(1)(a) of the GDPR); the consent can be revoked at any time.
You can configure your browser to inform you about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for specific cases or in general, and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.
Consent with Real Cookie Banner
To manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents, we use the consent tool “Real Cookie Banner”. Details on how “Real Cookie Banner” works can be found at https://devowl.io/rcb/data-processing/.
The legal basis for the processing of personal data in this context are Art. 6 (1) lit. c GDPR and Art. 6 (1) lit. f GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.
The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.
Server Log Files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- browser type and browser version
- Operating system used
- referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
This data is not merged with other data sources.
The collection of this data is based on Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website, for which the server log files need to be recorded.
If you submit inquiries to us via a contact form, your information from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not disclose this data without your consent.
The processing of the data entered into the contact form is therefore based exclusively on your consent (Art. 6(1)(a) of the GDPR). You can revoke this consent at any time. An informal notification by email to us is sufficient for revoking your consent. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
The data you enter in the contact form will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after completing the processing of your inquiry). Mandatory statutory provisions, especially retention periods, remain unaffected.
Inquiry via Email or Telephone
If you contact us via email or telephone, your inquiry, including any resulting personal data (name, inquiry), will be stored and processed by us for the purpose of handling your request. We will not disclose this data without your consent.
The processing of this data is based on Art. 6(1)(b) of the GDPR if your inquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on your consent (Art. 6(1)(a) of the GDPR) and/or our legitimate interests (Art. 6(1)(f) of the GDPR) as we have a legitimate interest in effectively processing the inquiries directed to us.
The data you send us via contact inquiries will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after completing the processing of your request). Mandatory statutory provisions, especially statutory retention periods, remain unaffected.
4. Analysis Tools and Advertising
Google Tag Manager
We use Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Tag Manager is a tool that allows us to integrate tracking or analytics tools and other technologies on our website. Google Tag Manager itself does not create user profiles, store cookies, or conduct independent analysis. It is solely used for managing and deploying the tools integrated through it. However, Google Tag Manager does collect your IP address, which may be transferred to Google’s parent company in the United States.
The use of Google Tag Manager is based on Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in quickly and easily integrating and managing various tools on their website. If appropriate consent has been obtained, the processing is based solely on Art. 6(1)(a) of the GDPR; consent can be revoked at any time.
This website uses features of the web analytics service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google Analytics uses “cookies,” which are text files placed on your computer, to help analyze how users use the website. The information generated by the cookie about your use of the website will generally be transmitted to and stored by Google on servers in the United States.
The storage of Google Analytics cookies and the use of this analytics tool are based on Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both their website offering and advertising.
We have enabled IP anonymization on this website. This means that your IP address will be truncated by Google within member states of the European Union or other contracting parties to the Agreement on the European Economic Area before being transmitted to the United States. Only in exceptional cases will the full IP address be sent to a Google server in the US and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, compile reports on website activity, and provide other services related to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google.
You can prevent the storage of cookies by adjusting your browser software settings; however, please note that if you do this, you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
Objection to Data Collection
You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set, which will prevent the future collection of your data when visiting this website: Disable Google Analytics.
Demographic Features in Google Analytics
This website uses the “demographic features” function of Google Analytics. This allows reports to be generated that contain information about the age, gender, and interests of the site visitors. This data is derived from Google’s interest-based advertising and visitor data from third-party providers. This data cannot be attributed to any specific individual. You can disable this feature at any time through the ad settings in your Google account or by generally prohibiting the collection of your data by Google Analytics as described in the “Objection to Data Collection” section.
Our website uses the Facebook visitor action pixel for conversion tracking, which is provided by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”).
This allows us to track the actions of users after they have been redirected to our website by clicking on a Facebook ad. This enables us to evaluate the effectiveness of Facebook ads for statistical and market research purposes and optimize future advertising campaigns.
The data collected is anonymous to us as the operator of this website and we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Facebook, which may associate it with the respective user’s Facebook profile and use it for its own advertising purposes in accordance with Facebook’s Data Policy. This allows Facebook to display ads on Facebook pages as well as outside of Facebook. As the website operator, we have no influence on this use of the data.
The use of the Facebook Pixel is based on Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in effective advertising, including social media.
You can also disable the “Custom Audiences” remarketing feature in the Ad Settings section of your Facebook account at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. You must be logged in to Facebook to do this.
5. Plugins and Tools
Google Web Fonts
This site uses web fonts provided by Google for the uniform representation of fonts. When you access a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.
For this purpose, your browser needs to establish a connection to Google’s servers. As a result, Google becomes aware that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a consistent and attractive presentation of our online services. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) of the GDPR.
If your browser does not support web fonts, a default font will be used by your computer.
We use “Google reCAPTCHA” (hereinafter referred to as “reCAPTCHA”) on this website. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
reCAPTCHA is used to check whether the data entered on this website (e.g., in a contact form) is done by a human or an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the website. During the analysis, reCAPTCHA evaluates various information (e.g., IP address, duration of the website visit, or mouse movements made by the user). The data collected during the analysis is forwarded to Google.
The reCAPTCHA analyses run entirely in the background. Website visitors are not notified that an analysis is taking place.
The storage and analysis of the data are based on Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in protecting their web offerings from abusive automated spying and spam. If appropriate consent has been obtained, the processing is based solely on Art. 6(1)(a) of the GDPR; consent can be revoked at any time.
6. Own Products
- Processed data types: Master data (e.g., names, addresses), payment data (e.g., bank details, invoices, payment history), contact data (e.g., email, telephone numbers), contract data (e.g., subject matter of the contract, duration, customer category), usage data (e.g., visited websites, interest in content, access times), meta/communication data (e.g., device information, IP addresses).
- Affected individuals: Customers.
- Purposes of processing: Contractual services and support.
- Legal bases: Contract performance and pre-contractual inquiries (Art. 6(1)(b) of the GDPR), Legitimate interests (Art. 6(1)(f) of the GDPR).
Used services and service providers:
The data protection declaration is occasionally adapted in order to be able to correspond to changes in the business process and the legal side. You will always find the current status on the website.
Status: May 2023