Privacy

Privacy Policy – Grace St. Moritz GmbH

Grace St. Moritz GmbH, Via Serlas 5, 7500 St. Moritz (hereinafter “we”), operates the website www.gracestmoritz.ch (hereinafter “Technology”) and is therefore responsible for the collection, processing and use of your personal data.


Legal Notices

Copyright and Trademark Rights
All content of the website www.gracestmoritz.ch is protected by copyright. All rights belong to Grace St. Moritz GmbH or to third parties. The elements of the website www.gracestmoritz.ch are freely accessible for browsing purposes only.

The reproduction of material or parts thereof in any written or electronic form is permitted only with express reference to www.gracestmoritz.ch. Reproduction, transmission, modification, linking or use of the website www.gracestmoritz.ch for public or commercial purposes is prohibited without prior written consent. Please contact info@gracestmoritz.ch.

Names and logos displayed on the website are generally registered and protected trademarks. No element of the website www.gracestmoritz.ch is designed to grant a license or right to use an image, a registered trademark, or a logo. By downloading or copying the website www.gracestmoritz.ch, no rights of any kind are transferred. We reserve all rights with respect to all elements of the website, except for rights belonging to third parties.


No Warranty
Although we have taken all reasonable care to ensure the accuracy of the information on www.gracestmoritz.ch at the time of publication, neither we nor our contractual partners provide an explicit or implicit warranty (including to third parties) with regard to accuracy, reliability, or completeness.

Opinions and other information on the website may be changed at any time without notice. We assume no responsibility and do not guarantee that the functions on the website will be uninterrupted or error-free, or that the website or the server are free of viruses or other harmful components.


Privacy Policy

Responsible Entity:
Grace St. Moritz GmbH
Via Serlas 5
7500 St. Moritz
Switzerland

welcome@gracestmoritz.ch

General Principles
All personal data collected during registration or while using our services, protected by the Swiss Federal Data Protection Act (DSG) and the EU General Data Protection Regulation (GDPR), is used solely for the purpose of fulfilling our contractual obligations, unless you have given express consent for further use or applicable law permits such use.

Our employees are obliged to treat personal data as confidential.


Scope and Purpose of Data Collection
We may collect, among other things:

  • Master data (name, address, email, phone, company details if applicable)
  • Contract and booking details, payment information
  • Online preferences, feedback
  • Creditworthiness data
  • Browsing and usage data (IP address, device, browser, operating system, source of access, usage patterns)

We use this data to communicate with you, manage and fulfill bookings, ensure correct payments, improve security, optimize our services and offers, conduct marketing and analytics, and manage loyalty programs (such as CLUB5).


Visiting Our Website
Our servers automatically record each access to our website, temporarily storing:

  • IP address of the requesting device
  • Date and time of access
  • Name and URL of accessed file
  • Referring website
  • Browser type and version, operating system
  • Country and browser language settings

These data are collected for system security, optimization, statistical purposes, and proper display of our website. We also use cookies, pixels, and tracking tools (see below).


Contact Forms
When using our contact forms, the following details are mandatory: salutation, name, address, phone number, email address. Other information is optional. We use this data exclusively to process your inquiry.


Newsletter
To receive our newsletter, only your email address is required. Providing salutation and name is optional but allows for personalized communication. By registering, you consent to the use of your data for newsletter distribution, statistical evaluations, and optimization. You may unsubscribe at any time via the link in the newsletter.


Room Bookings
When booking via our website, by email, post, or telephone, we require:

  • Salutation, name, address, date of birth, preferred language
  • Phone number, email address
  • Payment information
  • Voluntary information (e.g. arrival time, license plate, preferences)

We use this data to process and confirm bookings, provide services, contact you in case of issues, and ensure proper payment. If you book via third-party platforms (e.g. OTAs), we receive your booking information from the platform operator.


Data Processing During Your Stay
In compliance with legal registration requirements, we may collect information such as name, address, date of birth, nationality, ID/passport number, and arrival/departure dates.

We also record any additional services used (e.g. restaurants, minibar) for billing purposes.


Cookies & Tracking Tools
We use cookies and tracking technologies such as Google Analytics, Google Tag Manager, DoubleClick, and remarketing pixels for personalized advertising. You may disable cookies in your browser settings, but doing so may limit website functionality.

We also integrate third-party services such as TrustYou, HolidayCheck, TripAdvisor, Google Maps, YouTube, Facebook, X (Twitter), Vimeo, SevenRooms. When activated, these providers may collect and process personal data in accordance with their own privacy policies.


Data Transfer and International Transmission
We transfer personal data only when necessary to provide services, when required by law, or when you have consented.

Your data may be transferred abroad, including to countries without an equivalent level of data protection. In such cases, we contractually ensure adequate protection consistent with Swiss and EU standards.

Note: In the USA, government surveillance measures may allow authorities to access personal data without effective legal remedies for affected individuals.


Data Security
We implement appropriate technical and organizational measures to protect personal data against loss, misuse, unauthorized access, or disclosure. Our security measures are continuously adapted to technological developments.


Your Rights
You have the right to:

  • Request confirmation and access to your data
  • Rectify incorrect data
  • Erase your data (“right to be forgotten”)
  • Restrict processing
  • Data portability in a machine-readable format
  • Withdraw consent for processing
  • Object to processing based on legitimate interests

Requests should be addressed to welcome@gracestmoritz.ch. You also have the right to lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC) or the competent authority in your country of residence.


Data Retention
We store personal data only as long as necessary for the purposes described or as required by law.
Contract and booking data are archived according to statutory retention obligations (generally 10 years).


Final Provisions
This Privacy Policy may be updated at any time without prior notice. The current version published on www.gracestmoritz.ch applies.