Privacy Policy
This Privacy Policy applies to our entire online offering: Part A for visiting the discontinue.dev website, Part B for using the logged-in “Discontinue” platform. Part C contains the provisions applicable to both parts (your rights, complaints, amendments). The specific cookies set and their retention periods can be found in the cookie declaration provided via Cookiebot (available at any time via the “Cookie settings” link).
Last updated: 7 July 2026
1Controller
- General enquiries: office@discontinue.dev
- Contact for data protection enquiries: datenschutz@discontinue.dev
There is no statutory requirement to appoint a data protection officer; for all data protection matters you can reach us at datenschutz@discontinue.dev.
Part A – Visiting the discontinue.dev website
A1Data When Visiting the Website
When you access our website, our hosting provider processes technically necessary server log files:
- truncated IP address
- date and time of access
- page accessed / referrer URL
- browser type and operating system
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in the stable and secure operation of the website). Retention period: 30 days, thereafter automatic deletion.
A3Contact and Demo/Waiting-List Requests
If you contact us via the contact form, by email, via a demo request or the waiting list, we process the data you provide (name, email, company, message content) to handle your request and, where applicable, to initiate a contractual relationship.
Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interest in responding to enquiries). Retention period: until your request has been finally processed, at most 24 months, unless a contractual or statutory retention obligation exists.
A4Recipients and Hosting
Our website is hosted in Frankfurt (Germany) on the Oracle Cloud Infrastructure (region eu-frankfurt-1). Recipients of data are also the consent management platform Cookiebot (Usercentrics/Cybot A/S, Denmark, EU) for consent management, – subject to your consent – Google (analytics), and our email service provider when responding to enquiries. Cookiebot processes data exclusively in the EU; a transfer to third countries only takes place in the cases described above (Google) on the legal basis stated.
Part B – Using the “Discontinue” platform
B1Overview and Allocation of Roles
This part informs you about how Discontinue processes personal data when you use the Platform. We comply with the General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (DSG).
The Platform is an AI-supported operations platform for hotels that builds on the connected source systems. Hotel operators independently configure reports and agents that access their own data from the connected systems. This results in a dual role:
- Processing
- Hotel data (data from the connected systems and guest data) on behalf of the hotel
- Discontinue’s role
- Processor (Art. 4(8) GDPR) – the hotel is the controller
- Governing document
- Data Processing Agreement (DPA)
- Processing
- Account, usage and billing data of platform users and product analytics
- Discontinue’s role
- Controller (Art. 4(7) GDPR)
- Governing document
- this Privacy Policy
For the data processed on behalf of the hotel, data subjects (e.g. guests) generally direct their requests to the respective hotel as the controller.
B2What Data We Process
B2.1Account data of platform users (Discontinue = controller)
- Name and email address of the platform user (hotel staff)
- Password (stored exclusively as a cryptographic hash; bcrypt/Argon2)
- Role and permissions within the Platform
- Login times and IP address at the time of login (for security purposes)
B2.2Hotel data from the connected systems (Discontinue = processor)
Access takes place via the connection of the source system established by the hotel itself (OAuth), which the hotel can revoke at any time. On behalf of the respective hotel, we process the following data categories:
- Reservation data (booking number, check-in/-out, status)
- Guest master data (salutation, first and last name)
- Contact data of guests, where stored in the source system (in particular email address)
- Room/unit data, length of stay, rate, special requests
- Folios, refunds, invoices, revenue information
The legal basis in relation to the hotel is Art. 6(1)(b) GDPR in conjunction with Art. 28 GDPR (processing on behalf).
B2.3Usage data of the Platform (Discontinue = controller)
- Login times and IP address
- Platform usage (which reports created, which agents configured)
- Browser and device information (user agent)
B2.4Product analytics with Google Analytics 4 / Google Tag Manager (Discontinue = controller)
To improve and stabilise the Platform, we analyse product usage with the help of Google Analytics 4 (GA4), integrated via Google Tag Manager (GTM). The usage behaviour of the platform users (hotel staff) is recorded, e.g. functions accessed, click and navigation events, approximate location (based on the truncated IP), device and browser information, and pseudonymous identifiers (client/session IDs). Important limitations:
- Data is collected exclusively after your consent via the consent banner (consent mechanism as in Part A: Cookiebot, Google Consent Mode v2, default “denied”). Without consent, no analytics cookies are set and no analytics data is transmitted to Google.
- No data from the connected systems and no guest data is transmitted to Google. The product analytics relate solely to the behaviour of the logged-in staff users in operating the Platform, not to content from the connected systems.
- GA4 uses IP addresses only temporarily (including for rough location determination) and does not store them; IP anonymisation is effective by default in GA4.
- There is no cross-device profiling for advertising purposes and no linking with Google advertising services; the “Google Signals” function is disabled.
Legal basis: your consent pursuant to Art. 6(1)(a) GDPR and – for the storage of and access to information on the terminal device – Section 165(3) TKG 2021. You can withdraw your consent at any time with effect for the future via the consent settings.
Recipients / third-country transfer: the provider is Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland); processing by Google LLC (USA) is possible. Google LLC is certified under the EU-US Data Privacy Framework (DPF) (adequacy decision (EU) 2023/1795); in addition, EU Standard Contractual Clauses apply within the Google data processing terms.
Retention period: the retention period for user and event data in GA4 is limited to 14 months; after this, automatic deletion/aggregation takes place. Consent records (consent logs) are stored in the EU via Cookiebot and retained for up to 12 months.
B2.5AI processing
To provide the platform service, hotel data is transmitted to the AI model (Claude API by Anthropic PBC) insofar as this is necessary for the report or agent configured by the controller. Depending on the configuration, the transmitted content may include personal guest data including salutation, first and last name as well as contact, reservation and stay data. The following protective measures apply:
- AI models are used exclusively via API.
- The transmitted data is not used to train the AI models (no-training guarantee).
- The model provider stores the transmitted content only for a limited period (no more than 30 days, exclusively for abuse detection) and deletes it automatically thereafter (limited retention period).
- Multi-layered data minimisation: only the scopes released in the source system (read-only by default), granular and configurable tools with an allowlist per agent and tool/scope minimisation per task, tenant/integration scoping, and a run budget (€ cap).
- Tenant isolation: each API call is restricted to the respective hotel tenant; no consolidated data sets of multiple hotels.
- Transfer to the USA: on the basis of the EU Standard Contractual Clauses (SCCs, Module 2) pursuant to Art. 46(2)(c) GDPR together with a Transfer Impact Assessment (see Section B6).
- For each agent run, a complete internal AI trace is created and retained for 12 months.
- Write operations to the connected systems by default pass through an approval queue with human approval; only with explicit per-agent opt-in without individual approval. The proposal, approver, decision and result are logged.
Note on pseudonymisation: in operational use, Discontinue deliberately refrains from fully pseudonymising guest names, since operational hotel workflows (e.g. a “VIP arrivals briefing”) lose their function if the specific guest name is replaced by an anonymous identifier. Data minimisation is instead achieved through the multi-layered protective measures described above. Classic pseudonymisation is used where it is possible without loss of function (e.g. in aggregated statistical reports).
B2.6Billing data (Discontinue = controller)
For contract and payment processing, we process company/invoice data, subscription and usage scope (plan/tier, agent slots, balance top-ups), and payment information via the payment service provider Stripe. No data from the connected systems and no guest data is processed in this context.
B3Legal Bases
- Processing
- Legal basis
- Account administration
- Art. 6(1)(b) GDPR – performance of contract
- Hotel data (from the connected systems)
- Art. 6(1)(b) in conjunction with Art. 28 GDPR – processing on behalf
- Platform operation / security
- Art. 6(1)(f) GDPR – legitimate interest
- Product analytics (Google Analytics 4 / GTM)
- Art. 6(1)(a) GDPR – consent; Section 165(3) TKG 2021
- AI processing
- Art. 6(1)(b) GDPR – performance of contract
- Billing
- Art. 6(1)(b) and (c) GDPR
- Statutory obligations (e.g. retention)
- Art. 6(1)(c) GDPR
B4Retention Period
- Type of data
- Retention period
- Account data
- As long as the account is active; thereafter deletion within 30 days
- Hotel data (from the connected systems)
- Only during active processing; no permanent mirroring of the connected system’s database
- Report artefacts (rendered reports)
- 90 days; thereafter automatic deletion
- AI traces
- 12 months
- Usage and log data
- 12 months
- Google Analytics data (GA4)
- 14 months
- Consent records (consent logs, via Cookiebot/EU)
- up to 12 months
- Invoice data
- 7 years (statutory retention obligation pursuant to Section 132 BAO – Austria)
B5Recipients and Sub-Processors
A complete sub-processor list with data categories and transfer basis is Annex 1 to the DPA and available on request at datenschutz@discontinue.dev.
- Recipient
- Oracle Cloud Infrastructure
- Purpose
- Hosting of the Platform, database, backup, object storage
- Location
- Frankfurt, Germany (EU)
- Role / transfer basis
- Processor; processing in the EU, no ongoing third-country transfer; SCCs pursuant to the Oracle DPA for any support access
- Recipient
- Anthropic PBC
- Purpose
- AI model (Claude API) for processing hotel content
- Location
- USA
- Role / transfer basis
- Processor; SCCs (Module 2) + TIA, no training, storage max. 30 days
- Recipient
- Mailgun Technologies (Sinch Group)
- Purpose
- Delivery of reports and notifications by email
- Location
- EU region (Frankfurt)
- Role / transfer basis
- Processor; EU region pinning
- Recipient
- Langfuse GmbH (Langfuse Cloud, EU)
- Purpose
- Internal AI/run tracing of agent runs
- Location
- EU (hosting in Ireland)
- Role / transfer basis
- Processor; processing in the EU
- Recipient
- Stripe Payments Europe Ltd.
- Purpose
- Billing and payment processing (no hotel/guest data)
- Location
- Dublin, Ireland (EU); group access USA via SCCs
- Role / transfer basis
- Processor
- Recipient
- Google Ireland Ltd. / Google LLC
- Purpose
- Product analytics (Google Analytics 4 / Tag Manager) – only after consent, no guest data
- Location
- Ireland (EU) / USA
- Role / transfer basis
- Processor for product analytics; EU-US DPF + SCCs
- Recipient
- Cookiebot (Usercentrics / Cybot A/S)
- Purpose
- Consent management (consent banner and record) – no guest data
- Location
- Denmark / EU
- Role / transfer basis
- Processor; processing in the EU, no third-country transfer
B6Data Transfer to Third Countries
- 1. AI processing (Anthropic, USA): the ongoing transfer of hotel data takes place on the basis of the EU Standard Contractual Clauses (SCCs, Module 2) pursuant to Art. 46(2)(c) GDPR – supplemented by a no-training guarantee and a contractually limited retention period (max. 30 days), transport encryption (TLS 1.2+), multi-layered data minimisation and tenant isolation. For this transfer, a Transfer Impact Assessment (TIA) pursuant to “Schrems II” (CJEU C-311/18) is additionally available, which can be requested at datenschutz@discontinue.dev.
- 2. Product analytics (Google): processing by Google LLC in the USA may take place. Google LLC is certified under the EU-US Data Privacy Framework (adequacy decision (EU) 2023/1795); in addition, SCCs apply. The transfer only takes place after your consent.
- 3. Stripe (billing): primary processing by Stripe Payments Europe Ltd. (Dublin); any group access to the USA is secured via SCCs.
B7Cookies and Tracking (Platform)
On the Platform we use:
- Technically necessary cookies for session management, authentication and CSRF protection. These are required for operation and cannot be deselected (Section 165(3) TKG 2021 – no consent required).
- Analytics cookies/technologies (Google Analytics 4 / Tag Manager) – exclusively after your consent via the consent banner (see B2.4). The specific cookies set can be found in the cookie declaration provided via Cookiebot (“Cookie settings”).
- Consent management (Cookiebot): the consent banner and the documentation of consent take place via Cookiebot (Usercentrics/Cybot A/S, Denmark, EU). The CookieConsent cookie set for this purpose is technically necessary.
Automated decision-making within the meaning of Art. 22 GDPR does not take place. No marketing/advertising cookies and no cross-device advertising profiling are used.
B8Security of Processing
We take appropriate technical and organisational measures pursuant to Art. 32 GDPR (including encryption at rest with AES-256-GCM for sensitive data, TLS 1.2+ in transit, role-based authorisation concept, multi-tenant isolation, daily backups, audit trail of AI processing). Details are set out in the document TOMs (Art. 32).
Part C – Provisions applicable to both Part A and Part B
C1Your Rights
As a data subject, you have the following rights:
- Right of access (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restriction of processing (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object (Art. 21 GDPR)
- Right to withdraw consent given (Art. 7(3) GDPR), e.g. for product analytics – with effect for the future
Please direct requests to datenschutz@discontinue.dev; we respond within one month (Art. 12(3) GDPR). Insofar as Discontinue processes data as a processor (Part B, hotel data), we forward the request without undue delay to the respective hotel operator (controller).
C2Right to Lodge a Complaint
You have the right to lodge a complaint with the Austrian Data Protection Authority (DSB): Barichgasse 40–42, 1030 Vienna, dsb@dsb.gv.at, https://www.dsb.gv.at/.
C3Amendments to this Privacy Policy
We reserve the right to adapt this Privacy Policy as required. The current version is available on the website and in the Platform. We inform platform users of material changes to Part B (Platform) by email.
discontinue.dev MAS GmbH · datenschutz@discontinue.dev · Last updated: 7 July 2026