Privacy Policy

1. Introduction

Evenue GmbH ("we", "our", or "us") respects your privacy and is committed to protecting personal data in our business relationships. This privacy policy explains how we collect, use, and protect personal data when you use our digital guest journey platform, visit our website, or engage with our business services as a hotel partner, employee, or business contact.

2. Important Information and Who We Are

Purpose of this Privacy Policy

This privacy policy explains how Evenue GmbH processes personal data in our business operations, including data from hotel partners using our platform, business contacts, website visitors, and employees or representatives of our business partners.

Controller

Evenue GmbH is the controller and responsible for your personal data (collectively referred to as "Evenue", "we", "us" or "our" in this privacy policy).

Contact Details

If you have any questions about this privacy policy or our privacy practices, please contact us at:

Email: legal@evenue.ai
Postal Address: Evenue GmbH, Hauptstraße 26, 10827 Berlin, Germany

3. The Data We Collect in Our Business Operations

In our business relationships, we may collect, use, store and transfer different categories of personal data:

  • Business Contact Data includes name, job title, company name, business email address, business phone number, and business address of hotel staff and business contacts.
  • Account Data includes username, login credentials, company account settings, and authorized user information for our platform.
  • Technical Data includes IP address, login data, browser type, device information, and platform usage data when accessing our services.
  • Usage Data includes information about how your hotel uses our platform, feature utilization, content created, and service performance data.
  • Transaction Data includes details about payments, billing information, subscription plans, and commercial agreements.
  • Communication Data includes correspondence with our sales, support, and account management teams, meeting records, and business communications.
  • Hotel Operations Data includes property information, guest journey content, booking data insights, and performance analytics related to our services.

4. How We Collect Business Data

We collect personal data in our business operations through:

  • Direct business interactions: When you register for our services, request demos, attend meetings, or communicate with our sales and support teams.
  • Platform usage: When hotel staff use our platform, we automatically collect usage data, technical information, and service performance metrics.
  • Business partnerships: From hotel booking systems, property management systems, and other business integrations.
  • Third-party business sources: Industry databases, business directories, and professional networking platforms for business development purposes.

5. How We Use Business Data

We process personal data for the following business purposes:

  • Service delivery: To provide our digital guest journey platform, manage hotel accounts, and deliver contracted services.
  • Platform operation: To maintain platform functionality, provide technical support, and ensure service quality.
  • Business communications: To communicate with hotel partners about services, account management, and business developments.
  • Performance analytics: To analyze platform usage, generate business insights, and improve our services.
  • Billing and payments: To process invoices, manage subscriptions, and handle commercial transactions.
  • Compliance and legal: To meet regulatory requirements, resolve disputes, and protect our business interests.
  • Business development: To identify potential partners, maintain industry relationships, and develop new business opportunities.

Our legal bases for processing include: performance of contracts, legitimate business interests, legal compliance, and consent where specifically obtained.

6. Data Sharing in Business Operations

We may share business data with:

  • Service providers: Cloud hosting providers, payment processors, analytics services, and technical support vendors who assist in platform operations.
  • Business partners: Hotel technology integrators, industry platforms, and strategic partners as needed for service delivery.
  • Professional advisors: Lawyers, accountants, consultants, and other professional service providers for business and legal matters.
  • Regulatory authorities: Government agencies, tax authorities, and regulatory bodies when required by law.
  • Corporate transactions: Potential buyers, investors, or successors in the event of a merger, acquisition, or business transfer.

We ensure appropriate data protection agreements are in place with all third parties who process data on our behalf.

7. International Data Transfers

As a global hospitality technology platform, we may transfer personal data outside the European Economic Area (EEA) to our service providers, business partners, and cloud infrastructure providers. All international transfers are protected by appropriate safeguards including Standard Contractual Clauses (SCCs), adequacy decisions, or other legally recognized transfer mechanisms.

8. Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know.

9. Business Data Retention

We retain business data based on the following principles:

  • Active contracts: Data is retained for the duration of our business relationship plus any warranty or support periods.
  • Financial records: Billing and transaction data retained for 10 years for tax and accounting purposes.
  • Communications: Business correspondence retained for 7 years unless longer retention is required for legal purposes.
  • Platform usage data: Aggregated analytics retained indefinitely; individual usage logs retained for 2 years.
  • Legal requirements: Some data may be retained longer to comply with regulatory obligations or for litigation purposes.

10. Your Legal Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data:

  • Request access to your personal data (commonly known as a "data subject access request").
  • Request correction of the personal data that we hold about you.
  • Request erasure of your personal data.
  • Object to processing of your personal data where we are relying on a legitimate interest.
  • Request restriction of processing of your personal data.
  • Request transfer of your personal data to you or to a third party.
  • Withdraw consent at any time where we are relying on consent to process your personal data.

11. Cookies

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.

12. Changes to the Privacy Policy

We may update our privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the "Last updated" date at the top of this privacy policy.

13. Contact Us

If you have any questions about this privacy policy or our privacy practices, please contact us at:

Email: legal@evenue.ai
Address: Evenue GmbH, Hauptstraße 26, 10827 Berlin, Germany

Last updated: August 21, 2025