Privacy Police – EN

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

Online Reservations, Prepaid Menus & Credit Card Guarantees (Austria)

1. General Information

The protection of your personal data is very important to us.
This privacy notice informs you, in accordance with the General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (DSG), about the processing of personal data in connection with online reservations, prepaid menus, and credit card guarantees.

2. Personal Data Processed

During the reservation and booking process, we process in particular:

  • First and last name

  • Email address and phone number

  • Date, time, and number of guests

  • Menu selection (e.g. meat or vegan)

  • Payment information (e.g. payment status, transaction ID, amount)

  • Credit card data (processed exclusively in encrypted form via the payment provider)

3. Purpose of Data Processing

Personal data is processed for the following purposes:

  • Handling and managing reservations

  • Processing prepaid menu bookings

  • Securing reservations via credit card guarantees

  • Charging no-show or late cancellation fees in accordance with our Terms & Conditions

  • Communication related to the reservation

4. Payment Processing via Stripe

Payment processing for prepaid menus and potential no-show fees is carried out via the external payment service provider:

Stripe Payments Europe Ltd.
1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland

Credit card details are entered and processed exclusively via Stripe.
We do not receive or store full credit card details.

Stripe processes personal data in accordance with applicable security standards (in particular PCI DSS) and may transfer data to the United States. Such transfers are carried out based on appropriate safeguards pursuant to Art. 46 GDPR (e.g. Standard Contractual Clauses).

Further information on Stripe’s data processing can be found at:
https://stripe.com/at/privacy

5. Legal Basis for Processing

Personal data is processed on the basis of:

  • Art. 6(1)(b) GDPR (performance of a contract or pre-contractual measures)

  • Art. 6(1)(f) GDPR (legitimate interest in securing reservations and preventing economic losses due to no-shows)

6. Data Disclosure

Personal data is only disclosed to third parties where this is necessary for the performance of the contract, in particular to:

  • the provider of the reservation system

  • Stripe Payments Europe Ltd. for payment processing

No further disclosure to third parties takes place.

7. Data Retention

Personal data is stored only for as long as necessary to process the reservation, comply with statutory retention obligations, or assert or defend legal claims.

8. Data Subject Rights

You have the right at any time to:

  • access your personal data

  • rectification of inaccurate data

  • erasure or restriction of processing

  • object to processing

  • data portability

You may exercise these rights using the contact details provided in our legal notice.

WordPress Cookie Notice by Real Cookie Banner