Cookie Notice

Version dated 03/2024

This cookie notice supplements the Motel One privacy policy. We use cookies (i.e. text files) or web beacons (i.e. graphics files), which are stored on the user’s device. These files are used to collect certain user-specific settings and technical information that can be used to identify users. This information shows us when and how our websites www.motel-one.com and www.the-cloud-one.com (‘websites’) are used by users and enables us to continuously improve them. We also use tracking and analysis tools to ensure the ongoing optimisation and needs-based design of our websites.

Tracking also enables us to collect statistics regarding the use of our websites, which helps us to enhance our online presence using the resulting findings. Various types of cookies and tracking/analysis tools are used. Cookies can be used by Motel One itself or by other third-party providers.

For cookies from third-party providers (such as Google Maps), the provider in question may also incorporate cookies and analysis tools into the websites of Motel One. Motel One has no influence over the cookies or tools used by the third-party provider. By giving your consent, you authorise the third-party provider to use cookies and process data. This may result in data being transmitted outside the EU/EEA, for example to the USA. It may not be possible to guarantee that these countries afford a level of data protection comparable to that ensured by the GDPR. If you do not agree to this, you can revoke your one-off consent to technically unnecessary cookies by unticking the box at any time. This shall not affect the legality of the data processing that occurs until your consent is withdrawn.

A. Chatbot and live chat

Our website offers you the option to use the chat feature to contact us regarding a hotel booking. This is a live chat tool. By using this chat feature, you are automatically using the services of DialogShift GmbH, Rheinsberger Strasse 76/77, 10115 Berlin, Germany. Personal data that you enter in the chat window is transmitted to DialogShift GmbH and stored.

I. Type and purpose of data processing

We use this personal data to effectively and directly assist our customers and prospective customers.

In addition to the personal data that you disclose during the chat, the following personal data is collected when you use the chat tool:

• IP address
• If necessary, personal data from the chat record, such as name, contact details and other information.

If you enter personal data in the chat window (e.g. name, address, email address, booking number), your personal data will be processed using artificial intelligence.

DialogShift also uses performance cookies for statistical purposes. These will process your IP address.

II. Particular risks when using artificial intelligence

When using the chat tool, data is processed using artificial intelligence (AI) to a limited extent. The tool is designed to autonomously answer your questions before you are handed over to a member of staff. Information is entered into the system as input, processed using algorithms and then displayed as output.

Often, the data protection principle of transparency in accordance with Article 5(1)(a) GDPR, which requires the transparent processing of personal data, is not respected due to the machine learning functionality of AI systems. This is because AI-based systems continually modify and optimise their weightings and use the data entered for their ongoing development. In addition, it cannot be entirely ruled out that personal data will be transferred to third countries, e.g. the USA, due to this lack of data processing transparency.

DialogShift GmbH undertakes to use your data solely for the purpose of facilitating the chat. When providing artificial intelligence, DialogShift relies on service providers that use servers within the EU. There are no plans to transfer data to third countries. Nevertheless, a residual risk cannot currently be eliminated with regard to the lack of data processing transparency and transfers to a third country when using AI.

If you are not prepared to accept the risks described, you should refrain from using the chat tool.

III. Legal basis

When using the chat tool, data is processed on the basis of your consent in accordance with Article 6(1)(a) GDPR. We use the personal data you may provide to effectively and directly assist our customers and prospective customers. You grant your consent by ticking the box in the chat window. You can withdraw your consent at any time by unticking the box. This shall not affect the legality of the data processing that occurs until your consent is withdrawn.

If DialogShift collects personal data for statistical purposes using performance cookies, the data is processed on the basis of your consent in the cookie banner in accordance with Article 6(1)(1)(a) GDPR as a result of you ticking the box and/or agreeing to the use of cookies in general. You can withdraw your consent at any time by unticking the box. This shall not affect the legality of the data processing that occurs until your consent is withdrawn.

You can also prevent the storage of cookies by configuring your browser settings accordingly. If you do this, you may not be able to fully use the live chat feature or other website features. DialogShift will not share this personal data with third parties. The data will be used by DialogShift exclusively for the purposes of protection and internal statistics.

The purpose and scope of data collection and the further processing and use of the personal data by DialogShift, as well as the relevant rights and setting options to protect privacy, can be found in the DialogShift GmbH privacy policy:

https://www.dialogshift.com/en/data-privacy

IV. Duration of storage

Personal data is stored for the time required to fulfil the purpose for which it was collected. This purpose is generally fulfilled as soon as the chat session is terminated, but your personal data will be deleted within 90 days at the latest. We also delete your personal data when you withdraw your consent or object to the processing of personal data. A statutory retention period may prevent deletion.

V. Categories of data recipients

When data is processed by service providers, the personal data is passed on to the service provider. DialogShift acts on behalf of Motel One to ensure that consent is collected and documented in accordance with data protection regulations. DialogShift thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with GDPR requirements. Your personal data will only be processed in accordance with our instructions.

VI. Place of processing and transfer to third countries

There are no plans to transfer your personal data to a third country outside the EU and the European Economic Area. In addition, we will not transfer your personal data to an international organisation. When providing artificial intelligence, DialogShift relies on service providers that use servers within the EU. Nevertheless, it cannot be entirely ruled out that personal data will be transferred to third countries, e.g. the USA, due to the data being processed using AI.

VII. Automated data processing

There is no automated data processing within the context of Article 13(22) GDPR. Automated processing takes place to the extent described using AI.

B. Essential cookies

This technology is necessary in order to activate the core functionality of the websites. The key services cannot be provided without essential cookies. The user cannot deactivate essential cookies.

I. Usercentrics consent management platform

Usercentrics is a consent management platform via which the declaration of consent of the user to data processing is obtained, administrated and documented in accordance with data protection regulations.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Usercentrics GmbH

Rosental 4, 80331 Munich, Germany

3) Purposes of data processing

• Compliance with legal obligations
• Consent storage

4) Technology used

• Cookies
• Local storage

5) Data attributes

• Consent ‘Yes’ or ‘No’
• Log file data (anonymised IP)

6) Data collected

• Date and time of the visit
• Device information
• Browser information
• Anonymised IP address
• Opt-in and opt-out data

7) Legal basis

The legal basis for the processing of personal data is the legitimate interest of Motel One in maintaining its websites pursuant to Article 6(1)(f) GDPR, as well as obtaining users’ consent in a legally sound and documented manner pursuant to Section 25 TTDSG.

8) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider. Usercentrics acts on behalf of Motel One to ensure that consent is collected and documented in accordance with data protection regulations. Usercentrics thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions.

9) Place of processing

European Union

10) Storage period

The information stored by Usercentrics is erased after seven days at the latest.

You can find more information about Usercentrics at: https://usercentrics.com/privacy-policy/

II. reCAPTCHA

reCAPTCHA can be used to verify whether the data entered on a page has been entered by a human or an automated program (e.g. a bot). This service is necessary in order to ensure that the websites can be used properly.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

3) Purposes of data processing

• To ensure that our websites are being used by a human and not a bot.
• To operate the website correctly
• To protect us from automated spam and DDoS attacks

4) Technology used

• Cookies

5) Data attributes

• User input

6) Data collected

This list contains all (personal) data collected from or through the use of this service.

• IP address
• Click path
• Time spent on the page
• User behaviour on the website
• Browser language
• User input
• JavaScript object
• Browser plugins

7) Legal basis

The legal basis for the processing of personal data is the legitimate interest of Motel One in maintaining its website pursuant to Article 6(1)(f) GDPR.

8) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider. Google Ireland Limited acts on behalf of Motel One to ensure that the website operates properly. Google Ireland Limited thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions.

9) Place of processing

European Union, United States of America.

As part of this, personal data is transmitted to a third country (outside the EU/EEA).

As part of this, personal data is transmitted to a third country (outside the EU/EEA). Google LLC (USA) is registered within the EU-US Data Privacy Framework; this means that transmission to third countries occurs on the basis of EU Commission’s adequacy decision under Article 45(1) GDPR.

10) Storage period

The information stored by Google is managed in your Google account, for example, where you can also delete the reCAPTCHA data yourself.

You can find more information at: https://safety.google/privacy/privacy-controls/

Click here to read the processor’s privacy policy: https://policies.google.com/privacy?hl=en

Cookie policy URL https://policies.google.com/technologies/cookies?hl=en

III. OWAPro Service Management

OWAPro Service Management manages services on our website. It adjusts these services on the basis of your interactions, specific time frames and your consent. You decide how these services work. OWAPro manages/oversees web analytics and tracking services via the rule-based triggering of tags and logs activities on our website to ensure our services are able to function.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Service provider:

Hurra Communications GmbH, Lautenschlagerstraße 23a, 70173 Stuttgart, Germany

3) Purposes of data processing

• Compliance with legal obligations under data protection law
• Provision and management of online services
• Querying and checking the existence of authorisations
• Troubleshooting and technical support

4) Technology used

• Consent cookie
• Page tag
• First-party HTTP cookies
• First-party JavaScript cookies
• S2S
• APIs
• JavaScript

5) Data collected

• Anonymised IP addresses
• Device characteristics
• First-party device identifiers
• Third-party device identifiers
• Fingerprint identifiers
• Salted deterministic identifiers
• Cross-platform deterministic identifiers
• Browser and interaction data
• Interaction identifiers
• Demographic data
• Target group data
• Privacy settings: consent status

6) Legal basis

The legal basis for the processing of personal data is the legitimate interest of Motel One in performing additional services and processes on the basis of its users’ consent pursuant to Article 6(1)(f) GDPR, and, by extension, in complying with legal requirements (GDPR, Section 25 TTDSG).

7) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider. Hurra Communications acts on behalf of Motel One to ensure that consent is collected and documented in accordance with data protection regulations. Hurra Communications thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions.

8) Place of processing

European Union

9) Storage period

The information stored by Hurra Communications is erased after one year at the latest. The cookie for processing the consent status remains active as long as Hurra Communications is a service provider for Motel One.

You can find more information about Hurra Communications at: https://privacy.hurra.com/

IV. OWAPro Essential Measurement

OWAPro Essential Measurement measures users’ interactions with advertising for 24 hours after they have clicked on an ad; this serves to measure the ads’ relevance and accuracy. Cookies are not used to do this.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Service provider:

Hurra Communications GmbH, Lautenschlagerstraße 23a, 70173 Stuttgart, Germany

3) Purposes of data processing

• Ensuring the proper functioning and delivery of ads
• Ad relevance and accuracy
• Troubleshooting and technical support
• Ensuring compliance with the internal data protection system

4) Technology used

• Page tag
• JavaScript
• Passive fingerprinting
• Click
• URL redirect

5) Data collected

• IP address
• Third-party device identifiers
• Fingerprint identifiers
• Browser and interaction data
• Interaction identifiers
• Demographic data
• Target group data

6) Legal basis

The legal basis for the processing of personal data is the legitimate interest of Motel One in measuring the reach and performance of ads on the website pursuant to Article 6(1)(f) GDPR. As part of this, data is only processed on EU servers and not across browsers or websites. Users’ click data is only measured in pseudonymised form.

7) Categories of data recipients

When data is processed by a service provider, the personal data is passed on to the service provider. Hurra Communications acts on behalf of Motel One to undertake conversion measurements. Hurra Communications thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions.

8) Place of processing

European Union

9) Storage period

The information stored by Hurra Communications is erased after 12 months at the latest. Pseudonymised and aggregated reporting data is stored for as long as Hurra Communications is a Motel One service provider.

You can find more information about Hurra Communications at: https://privacy.hurra.com/

C. Technical cookies

Technical cookies facilitate navigation on our websites and the use of essential features. Using technical cookies ensures that, for example, after logging in with a user name and password, the user remains logged in during his or her visit to the site. Additionally, technical cookies make it possible to retain user-specific configurations and settings (e.g. language settings).

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

3) Purposes of data processing

To support the fundamental functions of our websites

4) Technology used

• Cookies
• Pixel

5) Data collected

• Basket ID
• Session ID
• Language preferences
• Account authentication information
• Log-in status information

6) Legal basis

The legal basis for the processing of personal data is the legitimate interest of Motel One in maintaining its websites pursuant to Article 6(1)(f) GDPR.

7) Categories of data recipients

Motel One uses the following service providers to process personal data using technical cookies:

• Computop Wirtschaftsinformatik GmbH
• Emarsys eMarketing Systems GmbH

They act as the contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing agreement with our service providers in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions.

8) Place of processing

Germany, European Union

9) Storage period

You can find more information at: https://www.motel-one.com/en/data-privacy/ and https://www.the-cloud-one.com/en/data-privacy/

D. Functional cookies

These cookies are necessary in order to activate the enhanced functionality of the websites. If these cookies are not active, certain features of our websites will not be available.

I. One Click Book

This cookie facilitates booking with just one click, provided that this feature has been activated in the user profile.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

3) Purposes of data processing

• To improve user-friendliness

4) Technology used

• Cookies

5) Data collected

• Information on whether this feature has been added by the user

6) Legal basis

The legal basis for the above processing of data is your consent pursuant to Article 6(1)(a) GDPR, which you have granted us either through the banner on the website or by ticking a box further up. You can withdraw your consent at any time by unticking the box. This shall not affect the legality of the data processing that occurs until your consent is withdrawn.

7) Categories of data recipients

Your personal data will not be passed onto third parties.

8) Place of processing

Germany

9) Storage period

You can find more information at: https://www.motel-one.com/en/data-privacy and https://www.the-cloud-one.com/en/data-privacy/

II. Search history (search request)

This cookie makes it easier to enter search strings by pre-filling the search box with the information from your last search.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

3) Purposes of data processing

• To improve user-friendliness

4) Technology used

• Cookies

5) Data collected

• Dates of arrival and departure
• Purpose of trip
• Number of travellers

6) Legal basis

Pursuant to Article 6(1)(a) GDPR, the legal basis for the above processing of data is your consent, which you have granted us either through the banner on the website or by ticking a box further up. You can withdraw your consent at any time by unticking the box. This shall not affect the legality of the data processing that occurs until your consent is withdrawn.

7) Categories of data recipients

Your personal data will not be passed onto third parties.

8) Place of processing

Germany

9) Storage period

You can find more information at: https://www.motel-one.com/en/data-privacy and https://www.the-cloud-one.com/en/data-privacy/

E. Analysis and tracking cookies

Tracking and analysis tools are used to ensure the ongoing optimisation and needs-based design of our websites. Tracking also enables us to collect statistics regarding the use of our websites, which helps us to enhance our online presence using the resulting findings.

I. Google Analytics, Google BigQuery and Google Consent

Google Analytics is a web analytics service. Google Analytics enables the controller to analyse user behaviour and create customer segments and profiles by using other Google services, such as Google Firebase and the Google Tag Manager.

Google BigQuery is a data management service. Through the use of the Google Cloud infrastructure, Google BigQuery enables the controller to store and manage the data collected. Raw data (GA4 tracking data) is exported in the form of tables that contain user IDs, which are assigned by Google Analytics and Google Firebase.

The basic technical setting of consent mode determines whether you have consented to the use of individual Google marketing cookies. If you have given your consent, only those Google marking cookies to which you have explicitly agreed will be enabled.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookies set by

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Google Cloud EMEA Limited

70 Sir John Rogerson’s Quay, Dublin, D02 R296, Ireland

3) Purposes of data processing

• Marketing/remarketing
• Advertising
• Web analytics
• Analysis of website use in order to optimise the website and adapt its design to meet user requirements
• Reports on website activity
• Cross-device tracking in order to optimise the website and adapt its design to meet user requirements
• Data storage
• Personalised adverts
• Conversion tracking to determine the success of advertising
• Creation of data models to determine the success of advertising

4) Technology used

• Cookies
• Pixel tags
• Cross-device tracking with deterministic linking (makes it possible to evaluate the use of online services with various electronic devices by the same person after he or she has logged in)

5) Data attributes

• IP address (anonymised)
• User and log-in ID (pseudonymised)
• Browser information (browser type, referrer/exit pages, the files displayed on our website, operating system, date/time stamp and/or clickstream data)
• Usage data (views, clicks, duration of use, frequency of use)

6) Data collected

• IP address
• User and log-in ID
• Date and time of the visit
• Usage data
• Click path
• App updates
• Browser information
• Device information
• JavaScript support
• Pages visited
• Referrer URL
• Downloads
• Flash version
• Location information
• Purchasing activities
• Widget interactions
• Online identifiers: GCLID (Google Ads Click Identifier), DCLID (DoubleClick Click Identifier), User ID, AUID (Advertiser ID)
• App Instance ID
• Approval status
• Aggregated ad clicks and conversions
• Country level location
• Device type
• Browser type
• Time of day

7) Legal basis

8) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider. Google Analytics acts on behalf of Motel One for marketing and publicity purposes, for example. Google thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions.

Google processes your data within the context of ‘Google consent’ as an independent controller in line with the GDPR.

You can find more information at: How Google retains the data we collect – privacy policy and terms of use – Google

https://safety.google/privacy/privacy-controls/

Click here to read the processor’s privacy policy: https://policies.google.com/privacy?hl=en

Cookie policy URL https://policies.google.com/technologies/cookies?hl=en

9) Place of processing

European Union, United States of America.

10) Storage period

The data collected is erased after 36 months. The data storage location is Frankfurt am Main, Germany.

The information stored by Google is managed in your Google account, for example, where you can also delete the data yourself.

You can find more information at: https://safety.google/privacy/privacy-controls/

Click here to read the processor’s privacy policy: https://policies.google.com/privacy?hl=en

Cookie policy URL https://policies.google.com/technologies/cookies?hl=en

II. Google TagManager

This is a tag management system for managing JavaScript and HTML tags which are used to implement tracking and analysis tools (such as Google Analytics). Using tracking and analysis tools, the controller can analyse the behaviour of users and generate customer segments and profiles. No data is stored in Google Tag Manager itself. Google Tag Manager is merely used to transmit data to other data processing systems, such as Google Analytics, which will process your IP address.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

3) Purposes of data processing

• Management of website tags

4) Data collected

Tag Manager processes your IP address. Apart from that, Google Tag Manager can only activate other tags which might collect and process personal data.

5) Legal basis

6) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider. Google acts on behalf of Motel One to pursue marketing and publicity purposes, for example. Google thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions.

7) Place of processing

European Union, United States of America. As part of this, personal data is transmitted to a third country (outside the EU/EEA). Google LLC (USA) is registered within the EU-US Data Privacy Framework; this means that transmission to third countries occurs on the basis of EU Commission’s adequacy decision under Article 45(1) GDPR.

8) Storage period

The information stored by Google is managed in your Google account, for example, where you can also delete the data yourself.

You can find more information at: https://safety.google/privacy/privacy-controls/

Click here to read the processor’s privacy policy: https://policies.google.com/privacy?hl=en

Cookie policy URL https://policies.google.com/technologies/cookies?hl=en

Cookie policy URL https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/

III. Google Firebase

Google Firebase is a development platform for mobile and web applications which is used to help develop apps and generate and collect analytical data. Google Firebase uses Google resources and technology such as Google Analytics. Using Google Analytics for Firebase, the controller can analyse the behaviour of users and generate customer segments and profiles.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

3) Purposes of data processing

• To develop and optimise apps

• Marketing

4) Technology used

• Cookies

• Pixel tags

5) Data attributes

• User and log-in ID (pseudonymised)

6) Data collected

• Device ID and time stamp

7) Legal basis

8) Categories of data recipients

9) Place of processing

10) Storage period

The information stored by Google is managed in your Google account, for example, where you can also delete the data yourself.

You can find more information at: https://safety.google/privacy/privacy-controls/

Click here to read the processor’s privacy policy: https://policies.google.com/privacy?hl=en

Cookie policy URL https://policies.google.com/technologies/cookies?hl=en

IV. Google Maps

This is an online mapping service.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

3) Purposes of data processing

• To display maps

4) Technology used

• Cookies

5) Data attributes

• Cookies
• Usage data

6) Data collected

• IP address
• Location information

7) Legal basis

8) Categories of data recipients

When the cookie is incorporated, personal data is disclosed to Google Ireland Limited. Google uses your data for its own purposes and for our purposes. In the event that data is processed jointly on our homepage, Motel One and Google are jointly controllers under Article 26 GDPR. Google and Motel One have concluded a joint controller contract pursuant to Article 26 GDPR regarding the processing of your data.

9) Place of processing

10) Storage period

The information stored by Google is managed in your Google account, for example, where you can also delete the data yourself.

You can find more information at: https://safety.google/privacy/privacy-controls/

Click here to read the processor’s privacy policy: https://policies.google.com/privacy?hl=en

Cookie policy URL https://policies.google.com/technologies/cookies?hl=en

V. OWAPro Enhanced Attribution

OWAPro Enhanced Attribution measures the performance and interaction of ads; it does not share your data with third parties. This service improves your browsing experience and enables us to manage our ads more efficiently.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Service provider:

Hurra Communications GmbH, Lautenschlagerstraße 23a, 70173 Stuttgart, Germany

3) Purposes of data processing

• Measurement of ad performance
• Troubleshooting and technical support
• Ensuring compliance with the internal data protection system

4) Technology used

• Cookies
• Page tag
• First-party HTTP cookies
• First-party JavaScript cookies
• S2S
• JavaScript

5) Data collected

• Device characteristics
• First-party device identifiers
• Third-party device identifiers
• Salted deterministic identifiers
• Probabilistic identifiers
• Browser and interaction data
• Interaction identifiers

6) Legal basis

7) Categories of data recipients

8) Place of processing

European Union

9) Storage period

The personal data collected is erased or anonymised after 12 months, at most. Anonymised or pseudonymised data is stored for the term of the contract between us (Motel One GmbH) and Hurra Communications GmbH as well as after its expiry.

Click here for more information and to view hurra’s data protection settings:

https://privacy.hurra.com/

https://www.motel-one.com/hurra_tracking/opt-out?cid=600&ln=en

F. Marketing cookies

This technology is used by advertisers to display adverts that are relevant to your interests.

I. OWAPro Audience Linking

When you click on an ad, OWAPro Audience Linking tracks this interaction and shares the analytics data with advertising platforms like Google. If you are logged into our website and the advertising platform, your activities across various devices can be linked to each other via encrypted data. This process involves sharing encrypted information with well-known advertising platforms. You can manage your approval of this via our consent management system. Our goal is to make ads more relevant based on your online behaviour.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by

Hurra Communications GmbH, Lautenschlagerstraße 23a, 70173 Stuttgart, Germany

3) Purposes of data processing

• Marketing optimisation and personalisation
• Troubleshooting and technical support
• Ensuring compliance with the internal data protection system

4) Technology used

• Cookies
• Page tags
• First-party HTTP cookies
• First-party JavaScript cookies
• S2S
• APIs
• JavaScript

5) Data collected

• Third-party device identifiers
• Cross-platform deterministic identifiers

6) Legal basis

7) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider. Hurra Communications acts on behalf of Motel One to pursue marketing and publicity purposes, for example. Hurra Communications thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions. For a list of other Hurra Communications contractors, please refer to: https://privacy.hurra.com/

8) Place of processing

European Union

If Hurra Communications contractors provide a service outside the EU/EEA, Hurra Communications takes appropriate measures to ensure the legitimacy of the processing.

9) Storage period

The personal data collected is erased or anonymised after 12 months, at most. Anonymised data is stored for the term of the contract between us (Motel One GmbH) and Hurra Communications GmbH as well as after its expiry.

Click here for more information and to view hurra’s data protection settings:

https://privacy.hurra.com/

https://www.motel-one.com/hurra_tracking/opt-out?cid=600&ln=en

II. Google Ads and Google Consent

Google Ads is Google’s online advertising program. We use this to display ads and measure the success of our adverts so we can improve them on an ongoing basis.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Google Ireland Limited

Google Building Gordon House, 4 Barrow Street, Dublin D04 E5W5, Ireland

3) Purposes of data processing

• Advertising
• Marketing/remarketing
• Personalised adverts
• Web analysis
• Conversion tracking to determine the success of advertising
• Creation of data models to determine the success of advertising

4) Technology used

• Cookies
• Pixel tags

5) Data attributes

• User agent
• Conversions
• Usage data (clicks, views, referrer, URL visits)
• Google Ad cookie
• Potential income
• Points of contact with advertising media

6) Data collected

• IP address
• Browser information
• Usage data
• Date and time of the visit/time of day
• Location information
• Cookie ID
• Online identifiers: GCLID (Google Ads Click Identifier), DCLID (DoubleClick Click Identifier), User ID, AUID (Advertiser ID)
• App Instance ID
• Approval status
• Aggregated ad clicks and conversions
• Device type
• Browser type

7) Legal basis

8) Categories of data recipients

When a cookie is set by Google, the personal data is passed on to Google. Google processes your data as an independent controller in line with the GDPR.

You can find more information at: https://policies.google.com/technologies/retention?hl=en-US

https://safety.google/privacy/privacy-controls/

Click here to read the processor’s privacy policy: https://policies.google.com/privacy?hl=en

Cookie policy URL https://policies.google.com/technologies/cookies?hl=en

9) Place of processing

European Union, United States of America.

It cannot be excluded that Google Ads may transfer data to the USA for the purpose of storage and further processing. As part of this, personal data is transmitted to a third country (outside the EU/EEA). Google LLC (USA) is registered within the EU-US Data Privacy Framework; this means that transmission to third countries occurs on the basis of EU Commission’s adequacy decision under Article 45(1) GDPR.

10) Storage period

The collected log data is anonymised after nine months and the cookie information is anonymised after 18 months.

The information stored by Google is managed in your Google account, for example, where you can also delete the data yourself.

Click here for more information and to view Google’s data protection settings: https://safety.google/privacy/privacy-controls/

Click here to read the processor’s privacy policy: https://policies.google.com/privacy?hl=en policies.google.com/privacy

Cookie policy URL https://policies.google.com/technologies/cookies?hl=en

III. Pinterest cookie

This is an online pin board service for images and photos with an optional social network with a visual search engine.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland (‘Pinterest’)

2) Cookie set by:

Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland (‘Pinterest’)

3) Purposes of data processing

• Advertising

• Marketing

• Retargeting

• Analysis

4) Technology used

• Cookies

5) Data collected

• IP address

• Browser information

• Website visited

• Date and time of the visit

• Device information

• Usage data

6) Legal basis

7) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider, for example, to pursue marketing and advertising purposes. Pinterest and Motel One have concluded a joint controller contract pursuant to Article 26 GDPR regarding the processing of your data.

You can find additional information about the processing of personal data in the context of joint controllership at https://business.pinterest.com/en-gb/pinterest-advertising-services-agreement/germany/.

8) Place of processing

European Union, United States of America. It cannot be excluded that Pinterest may transfer data to the USA for the purpose of storage and further processing.

As part of this, personal data is transmitted to a third country (outside the EU/EEA). Data is transmitted to third countries on the basis of your consent pursuant to Article 6(1)(a) GDPR in conjunction with Article 49(1)(a) GDPR, which you have granted us either through the banner on the website or by ticking a box further up. You can withdraw your consent at any time by unticking the box. This shall not affect the legality of the data processing that occurs until your consent is withdrawn.

9) Storage period

You can find further information at:

https://help.pinterest.com/en/data-protection-officer-contact-form

https://policy.pinterest.com/en/privacy-policy

Cookie policy URL https://policy.pinterest.com/en/cookies

IV. Pinterest tag

This is an online pin board service for images and photos with an optional social network with a visual search engine.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland (‘Pinterest’)

2) Cookie set by:

Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland

3) Purposes of data processing

• Advertising

• Marketing

• Retargeting

• Analysis

• Tracking

4) Technologies used: tag/pixel

A direct connection is made between your browser and the Pinterest server via tags. As a result, Pinterest receives information that you have visited our site with your IP address. In turn, Pinterest can link your visit to our website with your user account, provided you have a user account with Pinterest. We can use the information we obtain in this way for displaying Pinterest ads. Data is only collected if you have consented to this, and data is not used for purposes other than those stated.

5) Data collected

• IP address

• Browser information such as user agent and cookie ID, and optional unique identifiers

• Website visited

• Date and time of the visit

• Device information

• Usage data

6) Legal basis

Pursuant to Article 6(1)(a) GDPR, the legal basis for the above processing of data is your consent, which you have granted us either through the banner on one of the websites or by ticking a box further up. You can withdraw your consent at any time by unticking the box. This shall not affect the legality of the data processing that occurs until your consent is withdrawn.

7) Categories of data recipients

8) Place of processing

European Union and United States of America. It cannot be excluded that Pinterest may transfer data to the USA for the purpose of storage and further processing.

9) Storage period

You can find the email address of the data protection officer of the processor below.

https://help.pinterest.com/en/data-protection-officer-contact-form

You can find more information at:

https://policy.pinterest.com/en-gb/privacy-policy

Personalisation and data | Pinterest help

Cookie policy URL https://policy.pinterest.com/en-gb/cookies

V. squarelovin

This service integrates user-generated content into the website (with your consent, e.g. integrated Instagram images with #MotelOne). These images (user-generated content) can be used to book hotel rooms on the website. The squarelovin cookie tracks the booking activity behind each image.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by

squarelovin Anchor Media GmbH, Budapester Strasse 45, 20253 Hamburg, Germany

3) Purposes of data processing

4) Technology used

• Cookies

5) Data collected

• Browser information

• IP address

• Operating system

• Internet service provider

• Date and time of the visit

• Click path

• Search queries

• Referrer URL

6) Legal basis

7) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider. squarelovin acts on behalf of Motel One to pursue marketing and publicity purposes, for example. squarelovin thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions.

8) Place of processing

Germany.

9) Storage period

You can find more information at:

https://squarelovin.com/privacy/

VI. Google Ads Remarketing and Google Consent

Google Ads Remarketing enables us to target visitors to our website and users of our app with repeated advertising.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

3) Purposes of data processing

• Marketing
• Advertising
• Personalised adverts
• Web analysis
• Conversion tracking to determine the success of advertising
• Creation of data models to determine the success of advertising

4) Technology used

• Cookies

5) Data collected includes

• IP address
• Other cookie information
• User agent (browser information)
• Online identifiers: GCLID (Google Ads Click Identifier), DCLID (DoubleClick Click Identifier), User ID, AUID (Advertiser ID)
• App Instance ID
• Approval status
• Aggregated ad clicks and conversions
• Country level location
• Device type
• Browser type
• Time of day

6) Legal basis

7) Categories of data recipients

When a cookie is set by Google, the personal data is passed on to Google. Google processes your data as an independent controller in line with the GDPR.

8) Place of processing

European Union, United States of America

9) Storage period

The data collected (see above) is generally erased after nine to 18 months.

The information stored by Google is managed in your Google account, for example, where you can also delete the data yourself.

You can find more information at: https://safety.google/privacy/privacy-controls/

Click here to read the processor’s privacy policy: https://policies.google.com/privacy?hl=en

Cookie policy URL https://policies.google.com/technologies/cookies?hl=en

VII. SurveySparrow

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

SurveySparrow Inc., 2345 Yale St. FL 1, Palo Alto, CA 94306, USA

3) Purposes of data processing

• Marketing
• Analyses

4) Technology used

• Cookies

5) Data collected

• Click-through rates
• IP address
• Location data
• Device type
• Operating system
• Survey responses

6) Legal basis

Pursuant to Article 6(1)(a) GDPR, the legal basis for the above processing of data is your consent, which you have granted us through the banner by ticking a box. You can withdraw your consent at any time by unticking the box. This shall not affect the legality of the data processing that occurs until your consent is withdrawn.

7) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider. SurveySparrow acts on behalf of Motel One to pursue marketing and publicity purposes, for example. SurveySparrow thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions.

8) Place of processing

European Union, United States of America

9) Storage period

VIII. Meta/Facebook Pixel

Facebook Pixel allows the website visitors’ behaviour to be tracked once they have been redirected to the provider’s website by clicking on a Facebook ad. This allows the efficacy of Facebook ads to be evaluated for statistical and market research purposes and future advertising measures to be optimised.

A randomly generated user ID and the time of the first visit are also recorded. This ID allows Facebook to recognise returning users on this website and compile data from previous visits.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (‘Meta’)

2) Cookie set by

Meta Platforms Ireland Ltd.

4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland

3) Purposes of data processing

• Marketing
• Advertising
• Web analytics
• Analysis of website use in order to optimise the website and adapt its design to meet user requirements

4) Technology used

• Cookies

5) Data collected includes

• IP address
• User ID
• Browser information
• Usage data

6) Legal basis

7) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider. Meta and Motel One have concluded a joint controller contract pursuant to Article 26 GDPR regarding the processing of your data.

You can find additional information about the processing of personal data in the context of joint controllership at www.facebook.com/legal/terms/businesstools_jointprocessing.

8) Place of processing

European Union. It cannot be excluded that Meta may transfer data to the USA for the purpose of storage and further processing.

Any such data transfer to the USA is based on the EU Commission’s standard contractual clauses www.facebook.com/legal/EU_data_transfer_addendum, https://www.facebook.com/help/566994660333381/.

9) Storage period

The data collected is erased after 90 days.

You can find more information at: www.facebook.com/privacy/policy.

IX. Microsoft Advertising/Bing Ads

Microsoft Advertising, formerly Bing Ads, enables us to display targeted advertising on search engines such as Bing and Yahoo! and to measure the success of our advertising.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Microsoft Ireland Operations Limited
One Microsoft Place, South County Business Park, Leopardstown, Dublin, Ireland 18, D18 P521

3) Purposes of data processing

• Marketing
• Improvement of advertising campaigns
• Retargeting

4) Technology used

• Cookies
• Tags
• JavaScript

5) Data collected includes

• IP address
• Device type
• Browser type and language
• Date and time of the request
• Microsoft Cookies that unequivocally identify your browser
• Pseudonymised user ID in the event of simultaneous authentication of your Microsoft account
• Anonymised visitor ID
• Other cookie information

6) Legal basis

7) Categories of data recipients

When Microsoft Advertising is used, personal data is disclosed to Microsoft and its corporate entities worldwide. Microsoft processes your data as an independent controller in line with the GDPR.

Click here to read Microsoft’s privacy policy: Microsoft’s privacy policy – data protection

You can adjust your settings for interest-based ads here: Microsoft account | data protection

8) Place of processing

European Union, United States of America, global.

As part of this, personal data is transmitted to a third country (outside the EU/EEA). Microsoft Corporation (USA) is registered within the EU-US Data Privacy Framework; this means that transmission to third countries occurs on the basis of EU Commission’s adequacy decision under Article 45(1) GDPR. It is not possible to guarantee that data will not be disclosed to other third countries around the world. This is based on your consent pursuant to Article 6(1)(a) GDPR in conjunction with Article 49(1)(a) GDPR, which you have granted us either through the banner on the website or by ticking a box further up. You can withdraw your consent at any time by unticking the box. This shall not affect the legality of the data processing that occurs until your consent is withdrawn.

9) Storage period

Your personal data is erased as soon as the purpose for which it was stored has been achieved. Data can only be stored beyond this point if provided for by European or national laws, regulations or other ordinance. If data is processed on the basis of your consent, we will erase your personal data once you have withdrawn this consent.

The data collected here (see above) will be erased after 30 days (cookies) or after 13 months, at most (log data).

X. Double Click/Google Ad Manager

Double Click (also: Google Ad Manager, DV 360) uses cookies to display relevant ads to you, to measure and enhance the success of our advertising and to prevent you from seeing the same ads multiple times.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookie set by:

Google Ireland Limited

Google Building Gordon House, 4 Barrow Street, Dublin D04 E5W5, Ireland

3) Purposes of data processing

• Advertising
• Marketing/remarketing
• Personalised adverts
• Web analysis
• Conversion tracking to determine the success of advertising

4) Technology used

5) Data collected

• Secure signals
• Dynamic ad provision
• IP address
• Cookie ID

When DoubleClick is incorporated, Google is informed that the relevant part of the online presence has been accessed or the ad has been clicked on. If you are registered with a Google service, Google can assign the visit to your account. The provider may also record and store your IP address, even if you are not registered with or logged into Google.

6) Legal basis

7) Categories of data recipients

When a cookie is set by Google, the personal data is passed on to Google. Google Ireland Ltd. thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR.

You can prevent this tracking from occurring by managing or fully disabling third-party cookies in your browser settings (https://adssettings.google.com).

8) Place of processing

European Union, United States of America.

It cannot be excluded that Google may transmit data to the USA for the purpose of storage and further processing. As part of this, personal data is transmitted to a third country (outside the EU/EEA). Google LLC (USA) is registered within the EU-US Data Privacy Framework; this means that transmission to third countries occurs on the basis of EU Commission’s adequacy decision under Article 45(1) GDPR.

9) Storage period

Your personal data is erased or blocked as soon as the purpose for which it was stored has been achieved. Data can only be stored beyond this point if provided for by European or national laws, regulations or other ordinance. If data is processed on the basis of your consent, we will erase your personal data once you have withdrawn this consent. The data collected is usually anonymised after nine months (IP address) and the cookie information is anonymised after 18 months. The information stored by Google is managed in your Google account, for example, where you can also delete the data yourself.

You can find more information at: https://safety.google/privacy/privacy-controls/

Click here to read the processor’s privacy policy: https://policies.google.com/privacy?hl=en

Cookie policy URL https://policies.google.com/technologies/cookies?hl=en

XI. AdUp Technology

We use the AdUp pixel to optimise, personalise, track and measure the success of our advertising campaigns. To this end, we measure your interactions with our ads and products, subsequent actions and number of website accesses.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

Axel Springer Teaser Ad GmbH, Axel-Springer-Str. 65, 10969 Berlin, Germany

2) Pixel/cookies set by:

Axel Springer Teaser Ad GmbH, Axel-Springer-Str. 65, 10969 Berlin, Germany

3) Purposes of data processing

• Provision of personalised advertising
• Improvement of advertising campaigns
• Measurement of advertising efficacy
• Compliance with regulations (advertising and data protection)

4) Technology used

• Pixel
• Cookies

5) Data collected

• Browser ID
• Type (type of interaction such as page_view ‘page call’, ad_impression ‘advertising insertion’)
• Time of the interaction
• User ID (interaction ID)
• Campaign ID (ID of the relevant advertising campaign)
• Creative ID (ID of the advertising medium)
• Request ID (ID of the page request)
• User_Agent (information about the browser type, device and operating system)
• Event_Data (if available, meta information about the page, e.g. page name)

6) Legal basis

7) Categories of data recipients

When the AdUp pixel is incorporated, personal data is disclosed to Axel Springer Teaser Ad GmbH. Axel Springer Teaser Ad GmbH operates online marketing for its own purposes and for our purposes. In the event that data is processed jointly on our homepage, Motel One and Axel Springer Teaser Ad GmbH are jointly controllers under Article 26 GDPR. Your data may also be received by contractual partners of Axel Springer Teaser Ad GmbH. However, data is only transmitted if this data is required for the performance of a contract and you have consented to this.

You can find more information at: Data privacy – AdUp Technology (adup-tech.com)

8) Place of processing

European Union, United States of America.

Axel Springer Teaser Ad GmbH transmits data to the USA. As part of this, personal data is transmitted to a third country (outside the EU/EEA). Axel Springer Teaser Ad GmbH uses the European Commission’s standard contractual clauses under Article 46(2)(c) GDPR to ensure an appropriate level of data protection when services in third countries are used, provided that there is no European Commission adequacy decision regarding the service provider or third country in question.

9) Storage period

XII. Criteo

We use Criteo to optimise, personalise, track and measure the success of our advertising campaigns. To this end, we measure your interactions with our ads and products, as well as subsequent actions.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

Criteo Ltd., 32 rue Blanche, 75009 Paris, France

2) Cookies set by:

Criteo Ltd., 32 rue Blanche, 75009 Paris, France

3) Purposes of data processing

• Provision of personalised and context-based advertising
• Measurement of advertising efficacy (sales comparison/allocation)
• Fraud prevention
• Data model training

4) Technology used

• Pixel
• Cookies

5) Data collected

• Browser ID and use of an advertising blocker
• User ID (interaction ID)
• In the event of smartphone use: your provider’s advertising ID, e.g. Apple’s IDFA ID or Google’s AAID
• If applicable: an exchange platform cookie ID
• Cross-device ID
• IP address
• Region
• Usage data (website/app)
• CRM identifier
• Additional data used by advertisers (e.g. date of travel, price)
• Pseudonymised email addresses

6) Legal basis

7) Categories of data recipients

When the cookie is incorporated, personal data is disclosed to Criteo Ltd. Criteo Ltd. operates online marketing for its own purposes and for our purposes. In the event that data is processed jointly on our homepage, Motel One and Criteo Ltd. are jointly controllers under Article 26 GDPR. Your data may also be received by Criteo Ltd.’s contractual partners. You can find out who they are via: Our partners | EN – Criteo.com

You can find more information at: How we use your data | Criteo

You can disable cookies set by Criteo here: Disable Criteo services on internet browsers | Criteo

8) Place of processing

European Union, United States of America.

Criteo Ltd. may transmit personal data to a third country (outside the EU/EEA) by transmitting it to subsidiaries or partners. Criteo Ltd. uses the European Commission’s standard contractual clauses under Article 46(2)(c) GDPR and other measures to ensure an appropriate level of data protection when services in third countries are used, provided that there is no European Commission adequacy decision regarding the service provider or third country in question.

9) Storage period

XIII. X/Twitter

We use a pixel provided by X (formerly Twitter) to optimise, personalise, track and measure the success of our advertising campaigns. To this end, we measure your interactions with our ads on X, as well as subsequent actions.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

Twitter International Company, 1 Cumberland Place, Fenian Street, Dublin 2, Dublin, Ireland

2) Cookies set by:

Twitter International Company, 1 Cumberland Place, Fenian Street, Dublin 2, Dublin, Ireland

3) Purposes of data processing

• Provision of personalised advertising
• Measurement of advertising efficacy
• Optimisation of advertising campaigns
• Measurement of advertising performance

4) Technology used

• Pixel
• Cookies

5) Data collected

• Browser cookie IDs
• Identifiers generated by X
• Mobile device IDs
• Hashed user information, such as email addresses, demographic data or interest-related data, and content viewed or actions performed on a website or app
• Information that X receives from advertising partners and affiliates, or that it collects itself, can be combined with other information that you provide to X and that X receives, generates or derives regarding you. Further information can be found in X’s privacy policy at X Privacy Policy (twitter.com).

6) Legal basis

7) Categories of data recipients

When the cookie or pixel is incorporated, personal data is disclosed to Twitter International Company. Twitter International Company processes your data for its own purposes; we have no influence over this. Alongside this, as a controller independent of X, we use X’s services to pursue our advertising objectives. Your data may also be received by contractual partners of Twitter International Company.

You can find more information at: X Privacy Policy (twitter.com), Frequently asked questions (FAQ) (x.com)

8) Place of processing

European Union, United States of America.

Twitter International Company transmits personal data to its parent company Twitter, Inc. in the USA and, if applicable, other partners in a third country outside the EU/EEA. Twitter International Company has concluded a data transmission and data processing agreement with Twitter, Inc.

9) Storage period

XIV. Amadeus

We use a pixel (Amadeus) provided by TravelAudience GmbH/TravelClick Inc. so that we can display personalised advertising to you.

1) Data controller

Motel One GmbH, Tegernseer Landstrasse 165, 81539 Munich, Germany

2) Cookies set by:

Travel Audience GmbH, Elsenstraße 106, 12435, Berlin, Germany

3) Purposes of data processing

Display of personalised advertising

4) Technology used

Pixel

5) Data collected

Travel-related, pseudonymised information, such as search queries and booking information on our partners’ websites: place of departure, place of arrival, number of passengers, hotel star rating, duration, booking values
Exclusively in pseudonymised form: email addresses, mobile phone numbers, frequent flier card numbers, passenger name data records and data record localisers
Device and browser information, such as information relating to a mobile device or a browser (e.g. browser version, hardware model, operating system version and mobile network information)
Approximate location information
IP address
Browser history, e.g. information on which websites or mobile applications users have visited or used

6) Legal basis

7) Categories of data recipients

When a cookie is set by service providers, the personal data is passed on to the service provider. Travel Audience GmbH acts on behalf of Motel One to pursue marketing and publicity purposes, for example. TravelClick thereby functions as a contractual processor in accordance with Article 28 GDPR. For this purpose, we have concluded a contractual processing contract with our service provider in accordance with the requirements of the GDPR. Your personal data will only be processed in accordance with our instructions.

8) Place of processing

European Union, United States of America.

Travel Audience GmbH transmits personal data to its parent company TravelClick Inc. in the USA and, if applicable, other partners in a third country outside the EU/EEA. The transmission of data to third countries is protected by the European Commission’s standard contractual clauses under Article 46(2)(c) GDPR and, if applicable, additional measures to ensure a suitable level of data protection.

9) Storage period

G. Data protection officer of the controller (Motel One)

The controller’s external data protection officer is:

Dr Karsten Kinast, LL.M.
KINAST Rechtsanwaltsgesellschaft mbH
Hohenzollernring 54
50672 Cologne
Germany
Tel.: +49 (0)221 222 183 0
Email: dsb-motelone@kinast.eu
Website: https://www.kinast.eu

The data protection officer is a non-legal adviser who performs their work independently.

H. Data subject rights

The GDPR provides you, as the data subject of personal data processing, with the following rights:

Right of access: Article 15 GDPR
According to Article 15 GDPR, you can request information about your personal data which we process.

Right to rectification: Article 16 GDPR
According to Article 16 GDPR, you have the right to request the immediate rectification of any inaccurate personal data that we store or to have incomplete personal data that we store completed.

Right to erasure (‘right to be forgotten’): Article 17 GDPR
According to Article 17 GDPR, you can request the erasure of your personal data that we store if the processing is no longer necessary to exercise the right to freedom of opinion and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend against legal claims.

Right to restrict processing: Article 18 GDPR
According to Article 18 GDPR, you have the right to request the restriction of your personal data while the accuracy of this data is being verified or in the event of unlawful data processing.

Right to data portability: Article 20 GDPR

According to Article 20 GDPR, you have the right to portability for your personal data.

Right to object: 21 GDPR

In the case of the processing of your personal data on the basis of legitimate interests pursuant to Article 6(1)(f) GDPR, you have the right pursuant to Article 21 GDPR to object to the processing of your personal data if there are grounds for doing so based on your personal situation or if you object to direct advertising. In the case of direct advertising, you have a general right to object that must be adhered to by us without the need to specify a particular situation.

Complaint to a supervisory authority: Article 77 GDPR
According to Article 77 GDPR, you have the right to lodge a complaint with a supervisory authority. In general, you can contact the supervisory authority in your usual place of residence, your place of work or our corporate domicile for this purpose.

Revoking consent pursuant to Article 7 GDPR
According to Article 7(3) GDPR, you can revoke the consent you have granted us at any time. Please note that revoking consent does not affect the lawfulness of the processing carried out based on consent until its revocation.

Further information can be found in our privacy policy at Data protection (motel-one.com).