Privacy Policy
We take the protection of your personal data seriously. This statement describes which data we collect, what we use it for, and the rights you have under the Swiss Data Protection Act (DSG) and, where applicable, the EU General Data Protection Regulation (GDPR).
Data Controller
| Company | Sonnegg Heiligenschwendi GmbH |
| Address | Obere Haltenstrasse 6, 3625 Heiligenschwendi, Switzerland |
| Phone | +41 33 243 03 87 |
| info@sonnegg.swiss | |
| UID | CHE-496.191.469 MWST |
What data we collect
When you visit the website: Our hosting provider automatically collects technical data — IP address, browser type, referrer URL, timestamp. This data is used only to deliver the page technically and is not combined with other data.
When you make a room or table reservation: Name, email address, phone (optional), travel dates, number of people, and any notes you choose to include. We use this data to process your request and communicate with you.
When you contact us directly (email, phone): The content of your enquiry and your contact details, to the extent you provide them voluntarily.
Cookies: We do not set tracking or advertising cookies. Cloudflare (our CDN) may set technically necessary cookies for security purposes.
How we use your data
- To handle your reservation or enquiry
- To communicate with you regarding your stay
- To comply with legal obligations (e.g. accounting, overnight-guest registration)
- To operate the website technically and securely
We do not sell your data or share it for advertising purposes.
Where your data is stored
- Web hosting: Railway, europe-west4 data centre (Amsterdam, Netherlands)
- DNS and security: Cloudflare, Inc. (global)
- Email: Hostinger (Netherlands)
- Reservation management: Sonnegg-API, also on Railway in the Netherlands
For transfers to countries outside the EEA (e.g. to Cloudflare endpoints), EU Standard Contractual Clauses or recognised adequacy decisions apply.
Retention period
Reservation and contact data are retained for as long as is necessary to fulfil your request and our legal obligations (typically 10 years for business records under Swiss Code of Obligations art. 957–958f).
Your rights
You have the right to:
- Access the data we hold about you
- Rectification of incorrect data
- Erasure of your data, unless we are legally obliged to retain it
- Restriction of processing
- Data portability (GDPR)
- Objection to processing
For such requests, please contact us at info@sonnegg.swiss.
You may also lodge a complaint with the competent supervisory authority:
- Switzerland: Federal Data Protection and Information Commissioner (FDPIC)
- EU: the data protection authority of your country of residence
Changes to this policy
We may update this privacy policy if legal requirements or our processing operations change. The current version is always available on this page.
Last updated: May 2026