PRIVACY POLICY – NEOMASA
Effective date: 05.11.2025
1. Controller/Contact Information
Neomasa
Schrankgasse 10
1070 ViennA
+43 676 955 959949
[email protected]
(Hereinafter “we”, “us”, “our”)
2. Scope & Purpose
This Privacy Policy applies to personal data we collect when you visit or contact us, make reservations, eat at the restaurant, subscribe to newsletters, visit our website or interact with us in other ways.
We collect and process personal data:
• to manage reservations, guest services and customer relationships;
• to fulfil legal obligations (for example tax/finance);
• to send you our newsletter or promotional offers (if you consent);
• to monitor and improve the quality of our services;
• to comply with hygiene/security/legal requirements for restaurants in Austria/European Union.
3. Categories of Personal Data
We may collect the following types of personal data:
• Contact data (name, address, email address, telephone number)
• Reservation information (date/time of booking, number of guests, special requests)
• Payment or billing data (if applicable)
• Website usage data, technical data (IP address, device type, browser, cookies)
• Marketing consent data (whether you have agreed to receive newsletters or offers)
• Other data you voluntarily provide (e.g., dietary preferences, feedback, comments).
4. Legal Basis for Processing
• For reservation and service fulfilment: performance of a contract or taking steps at your request prior to a contract.
• For legal compliance: we may process data to comply with fulfilment of statutory obligations.
• For marketing: only if you have given your express consent. You may withdraw consent at any time.
• For legitimate interests: e.g., improving our services, record-keeping, fraud prevention – unless your interests override ours.
5. Recipients / Third Parties
Your personal data may be shared with:
• Our employees and staff who need the information for reservations and guest services.
• Payment processing providers or other service providers engaged by us under contract.
• IT/hosting providers for website and booking system maintenance.
• Where required by law, tax or regulatory authorities.
We do not sell your personal data to third parties.
6. Data Transfers Outside the EU/EEA
If we transfer personal data outside the EU/EEA (for example to a service provider in a third country), we will ensure appropriate safeguards are in place (e.g., standard contractual clauses, EU Commission adequacy decisions) as required by applicable law.
7. Data Retention
We retain your personal data only as long as necessary for the purposes set out in this Policy and as required by law (for example accounting records may be kept for a minimum period under Austrian law). After that, we either delete or anonymize your data.
8. Your Rights
Under the EU General Data Protection Regulation (GDPR) and Austrian data protection law you have the right to:
• Request access to your personal data (right of access)
• Request correction of inaccurate data (right to rectification)
• Request deletion of your personal data (right to erasure) when (among other grounds) data is no longer necessary, you withdraw consent, or data was processed unlawfully
• Request restriction of processing (right to restriction)
• Object to processing in certain circumstances (right to object)
• Receive your data in a structured, machine-readable form or transmit it to another controller (right to data portability)
• Withdraw consent at any time (for processing based on consent) without affecting the lawfulness of processing before withdrawal
• Lodge a complaint with the Austrian Data Protection Authority (Datenschutzbehörde) if you believe your data protection rights have been violated.
9. Cookies & Website Tracking
When you visit our website we may use cookies or other tracking technologies to enhance your experience, analyse usage and for marketing purposes.
You will be informed via our cookie banner when you first visit, and you may manage/disable cookies through your browser settings.
10. Changes to this Policy
We may update this Policy from time to time (for example due to changes in data processing or legal requirements). We will publish the updated version on our website with a new “Effective date” and notify you where appropriate.
11. Contact & Supervisory Authority
If you have any questions or wish to exercise your rights, please contact us at the address above.
If you believe your rights under data protection law have been infringed, you may lodge a complaint with the Austrian Data Protection Authority:
Datenschutzbehörde
Wickenburggasse 8
1080 Vienna
Austria
www.dsb.gv.at