X
Back to the top

Who we are

Please be advised that Blue Fox The Bar as outlet of the Kempinski Hotel Budapest Zrt. complies with the Kempinski privacy policy and adheres to it as a controller.
Our website address is: https://bluefoxthebar.com.
Place of precessing: 1051 Budapest, Erzsébet tér 7-8.
Data protection officer: L-Tender Adatvédelmi és Információbiztonsági Szolgáltatások Zrt.
Email address: privacy.corvinus@kempinski.com 

We comply with data protection legislation such as the EU General Data Protection Regulation and the Personal Data Protection Act 2012 of Singapore, which regulates the processing of personal data relating to you and grants you various rights in respect of your personal data. The aim of this Privacy Policy is to inform you about how we will use your personal data you provide to us through this Website, in connection with hotel bookings, your stay at hotels of the Kempinski group as well as personal data provided and/or collected by us through other channels. We also inform you about your rights under applicable data protection law with respect to the handling of your Personal Data by us. Before providing us with Personal Data we recommend that you read this Privacy Policy.

 I. What is Personal Data?

For the purposes of this Privacy Policy, “Personal Data” means any information provided by you when interacting with us, for example through our Website or when calling us, or data is collected about you through your use of our Website and allowing you to be identified personally, either directly (e.g. your name) or indirectly, because the data references an identifier such as your name, an identification number, location data, an online identifier (e.g. telephone number) as an individual person. We may also collect personal data about you in other instances which relate to your stay at Kempinski.

II. When is what kind of data stored and processed for what reason?

1. Use of the Website

Whenever you navigate our Website, data is collected and processed about you. We collect the following data: Information related to the browser or device you use to access our website IP address Country you are browsing from Browsing habits, including sites visited Other demographics and statistical information The data is collected through the session cookies (with regard to cookies see also below) we use on our Website. It is anonymised, before we use it to build anonymous utilisation profiles, for marketing purposes and to optimise our Website and the services we provide. This data shall not be used in order to identify the visitor of this Website personally.

2. Interacting with us

Every time you interact with us (e.g. booking a table through our Website, by phone or via e-mail, posting a comment on our blog) we may collect and process the Personal Data you provide to us.

a. Booking a table
When you make a reservation, we collect Personal Data, which includes:
• Number of people in the reservation (adults and children)
Your full name Your e-mail address, and
Your notes/preferences (optional)

We use this Personal Data to handle your reservation and to establish and fulfill our contract with you. This includes verifying your identity, taking guarantee and/or payment information, and sending reservation-related and/or marketing communication. We take the protection of your Personal Data very seriously and therefore have kept the mandatory required fields to a minimum.

b. “Contact Us” functionality
You can get in contact with us via our Website by using the “Contact Us” functionality, or by telephone. To contact us you are required to provide the following information:
• Your (full) name
• Your e-mail address,
• Your enquiry, and
• Recaptcha, to confirm you are an actual person, and not a robot

We use your information to reply to your enquiry.

c. News/Blog
In our Blog we publish articles on bar trends, hosted bar events, achievements. The blog allows you to post public comments. If you submit a comment, it will be published with the corresponding blog post and your username. Posting comments on our blog is entirely voluntary. When you comment on a blog post, we collect and store the following Personal Data:
• Name
• Website URL
• Your Comment

We use this Personal Data to post the comment on the blog page.

III. Sharing Personal Data

Your Personal Data may be shared:
• Within the Kempinski group and with our Kempinski hotels to establish and fulfill our contract with you or to the extent you consented to such sharing of data, for example. This includes verifying your identity, taking payments getting in contact and communicating with you.
• With our commercial partners in the event that you book an event or an activity organised by such commercial partners.
• With our third party service providers who process your data on our behalf. Our third party service providers hosting providers, and providers of data analysis, IT services, and other similar services requested by us to provide the Website and other business-related services to you. Any data processing on our behalf complies with the applicable laws.

We will not transfer your personal data to third party recipients, unless you consent to such transfer of data or such transfer is permitted under applicable law.

IV. Transfer of Personal Data to a third country

Where information is transferred outside the European Economic Area or Singapore, we will ensure that appropriate safeguards are implemented. If your Personal Data is transferred to a country that is not subject to an adequacy decision by the EU Commission or the Personal Data Protection Commission of Singapore, data is adequately protected by EU Commission approved standard contractual clauses, or a third party’s Binding Corporate Rules.

V. Social Media Buttons

On our Website we use the following social media plug-ins integrated through cookies: Facebook, Google+, Instagram. The plug-ins can be identified by the social media buttons marked with the logo of the provider of the respective social media networks .
We have implemented these plug-ins using the so-called 2-click solution. This means that when you navigate on our Website, Personal Data will initially not be collected by the providers of these social media plug-ins.
Only if you click on one of the plug-ins will your Personal Data be transmitted:
By activating the plug-in, data is automatically transmitted to the respective plug-in provider and stored by them (in the case of US providers your Personal Data will be stored in the USA). We neither have influence on the collected data and data processing operations conducted by the providers, nor are we aware of the full extent of data collection, the purposes or the retention periods.
The plug-in provider stores the data collected about you as user profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (also for users who are not logged in) for the purpose of presenting need-based advertising and to inform other users of the social network about your activities on our Website. You have the right to object to the creation of these user profiles, whereby you must contact the respective plug-in provider to exercise this right. Through the plug-ins, we offer you the opportunity to interact with the social networks and other users, so that we can improve our offer and make it more interesting for you as a user.

The legal basis for the use of the plug-ins is Art. 6(1)(f) GDPR. The data is passed on regardless of whether you have an account with the plug-in provider and are logged in. If you are logged in with the plug-in provider, your data collected by us will be directly assigned to your account with the plug-in provider. We recommend that you log out regularly after using a social network, but especially before activating the button, as you can then avoid being assigned to your profile with the plug-in provider. Information on the purpose and scope of data collection and its processing by the plug-in provider can be found in the respective privacy policies of these providers, where you will also find further information on your rights and options for the protection of your personal data.

VI. Integration of YouTube videos

We have included a link to our YouTube channel on our Website. The videos are stored on http://www.YouTube.com, operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. Your Personal Data will not be transferred to YouTube unless you play the videos. We have no influence on this data transfer. You will find further information with regard to the processing of personal data under YouTube’s privacy policy available at: https://www.google.com/intl/en/policies/privacy/

VII. Cookies

This Cookie policy describes the different types of cookies and similar technologies that may be applied on the Website provided by Kempinski. 

VIII. Google Analytics

Our Website uses Google Analytics, a web analysis service of Google Inc (“Google”). When you provide us with your consent, Google Analytics uses cookies to analyse how you use our Website.

We only use Google Analytics with activated IP anonymization. This means that Your IP address will be only processed in a shortened form in order to exclude direct personal references. The legal basis for this processing is Art 6.para.1lit.a) GDPR. You can object to this processing and revoke your consent to this data collection at any time through this link. Google recommends that its users provide end-users with some specific information.

Below is a summary of Google’s statement to fulfil this recommendation:

Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.

IX. What kind of security measures for the compliance with data protection?

We strive to maintain the appropriate standards of security and we have put in place robust technical and organisational measures for the protection of your Personal Data in accordance with the current state of the art technologies, especially to protect the data against loss, falsification or access by unauthorised third persons.
However the transmission of information via the internet is not completely secure. So, whilst we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Website.
Any transmission is at your own risk.
Once we have received your personal data we will use strict procedures and security features to prevent unauthorised access. Our internal processing takes place inside a VPN which is firewalled against the open internet and inside of which any kind of communication is processed in an encrypted way.
As far as third parties (i.e. external companies) are rendering data processing services for us, we have committed them to the compliance with our data privacy regulations. The external service providers are supervised by our Global Data Protection Manager in terms of compliance with these regulations.

X. Your Rights

In respect of the collection and use of your personal data, you may: – withdraw your consent at any time for example by unsubscribing from the newsletter under “data protection”, – ask us whether we processes Personal Data about you, for which purposes, the categories of Personal Data concerned, to which categories of recipients the information has been disclosed, where possible, the envisaged period for which the personal data will be stored (or, if not possible, the criteria used to determine that period), – inquire with us about the appropriate safeguards relating to the transfer to a third party, ask us for a copy of the Personal Data undergoing processing and ask to receive your Personal Data in a structured, commonly used and machine-readable format and to transmit those data to another controller without any hindrance from us.

Via the “My Links”, you will be displayed all stored data relating to your person.We guarantee that no unauthorised persons are able to have access either to your profile or to your reservations, – have inaccurate data rectified, – object against the further processing and request erasure of your Personal Data, – request that the processing of your personal data is restricted by Kempinski, – request not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. If you have any further questions on your personal data which has been stored with us or would like to exercise your rights please refer to our Global Data Protection Manager via the contact details stated below.

XI. Retention and deletion of Personal Data

We will retain your personal data only for a limited period of time needed to fulfill the purposes of processing mentioned above. After that time your personal data will be erased. If we process your personal data based on your consent we will retain your personal data for a limited period of time needed to fulfill the purposes of processing it. Where we enter into a contract with you , we will keep your information for the duration of the contractual relationship you have with us, and, to the extent permitted, after the end of that relationship for as long as necessary to perform the purposes set out in this notice.
The criteria to determine the storage period are statutory and contractual requirements, the nature of our relationship with you, the nature of the data concerned and the technical requirements. Laws may require us to hold certain information for specific periods. Where we process personal data for marketing purposes or with your consent, we process the data until you ask us to stop and for a short period after this (to allow us to implement your requests).
We also keep a record of the fact that you have asked us not to send you direct marketing or to process your data so that we can respect your request in future. In other cases, we may retain data for an appropriate period after any relationship with you ends to protect itself from legal claims, or to administer its business.

XII. Updates

This Privacy Policy may be updated periodically. We will update the date at the top of its first page accordingly and encourage you to check for changes that we have made, which will be available in our Privacy Policy. On some occasions, we may also actively advise you of specific data handling activities or significant changes to this Privacy Policy, as required by applicable law. The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission. You can at any time change or withdraw your consent from the Cookie Declaration on our website.