Data protection information
Status: September 2020
Data protection is a very important topic for us. When you register, we process your personal data. Personal data can also be recorded by using the website or the Android applications.
The processing of personal data is necessary to ensure the operation of the website with information on the topic of restaurants and the presentation and offer of services on these topics. The processing of personal data is necessary to finance our offers and services and to make them better for the user. However, we do this responsibly and only insofar as it is permitted in accordance with the provisions of the applicable data protection laws, especially the EU General Data Protection Regulation (GDPR).
The use of data for advertising purposes makes it possible to operate free offers and services. We also want to keep getting better and tailor offers and services specifically to the user, i.e. personalize them. We can only do this if we observe and evaluate the use of the offers and services more closely.
We will not do this and everything else that happens to your data in secret, but only with the necessary transparency. Therefore, at this point we provide you with comprehensive information about the what, how and why of such processing. We have also put together for you all the relevant mandatory information that we have to provide in accordance with the EU General Data Protection Regulation.
This data protection notice applies to all online offers and services that can be accessed via www.restaurant-advisor.com. They also apply to other apps and other digital offers from Restaurant Advisor that link here.
These are in particular:
- The smartphone application "RestaurantAdvisor" for Android.
- The tablet application "VisualMenu" for Android.
- The web application "RestaurantAdvisor".
The corresponding platforms, sites, apps or services and offers are simply called "SERVICES" below.
Responsible for the protection of your personal data and compliance with the EU General Data Protection Regulation (GDPR) is Restaurant Advisor UG (limited liability), hereinafter referred to as Restaurant Advisor UG. The Restaurant Advisor UG operates the above-mentioned offers and services. You can find further contact details, contact persons and mandatory information about the Restaurant Advisor UG in our Legal Notice.
If you have any questions about data protection for Restaurant Advisor UG or if you would like to exercise your rights in terms of data protection (see under “Your rights as a data subject”), please contact our data protection officer. You can reach him at the e-mail address
The most important things at a glance:
I. What data is collected when you use our services?
Direct entry of plain data. If you register with us or create an account or use services such as the contact form for support inquiries, we will use the corresponding forms to request personal data from you that are recognizable and directly related to you or your identity (so-called clear data).
These clear data include, in particular, your email address, username and password and, in the case of chargeable services, other contact details (name, postal address, telephone number), order, delivery and payment data. In addition, you can voluntarily provide further personal information about yourself, which of course will also be saved for you, for example in your user profile. Information on restaurants, reviews or pictures that you enter or upload and contain personal details about you will of course also be saved and published.
We never ask for data that is particularly sensitive under data protection law (so-called special categories of data according to Article 9 GDPR - such as health status, ethnicity, ideology, genetics, intimacy).
Data enrichment. We sometimes enrich your data record with our own observations, but only with regard to suspected interests and only to the extent that this is described in more detail below in this data protection notice.
Pseudonym data. In addition, data is also processed that has no directly identifiable reference to you as a person (so-called pseudonymised data). Pseudonymized means that you or your computer or browser could be recognized under an ID (“pseudonym”), but it is not possible to find out exactly who you are or how you can be contacted using conventional means. Pseudonyms are not merged with clear data such as name or email address, simply because in this case we don't need to know more than necessary.
This applies, for example, if we want to find out which pages of our service are clicked particularly frequently and which are not clicked at all, or if we do not want to show a user the same things all the time.
Using pseudonyms, usage profiles of third-party providers or advertising partners (so-called third parties) are also created, which are integrated into the advertising banners within this service. Some of them also work beyond our service on other applications or websites.
If you would like to know more about individual things, we have put together the details for you below.
II. Why is this data processed?
The processing of personal data takes place primarily for the following purposes or based on the following legitimate interests:
- for individualization: so that you do not constantly propose or display the same posts and banners, and if possible only those that are probably of interest to you;
- to fulfill legal requirements, in particular commercial and tax retention obligations, and any information obligations to authorities as well as for criminal prosecution, to defend or enforce claims including the exercise and enforcement of our ‘digital domiciliary rights’.
- for fraud prevention, for verification of a specified delivery address and for credit checks, the outcome of which we may make dependent on which payment options we offer you;
- to maintain the customer relationship and for direct marketing on our own behalf as well as for our sponsors, cooperation partners or other third parties, both by ourselves and partially independently by the respective third parties;
- to carry out and bill your order, to offer things like newsletters and competitions or to implement functions such as uploading or commenting on content in a user-friendly manner;
- to ensure operation: to identify and defend against attack patterns and to uncover errors in the system in order to prevent you from receiving e-mails from us against your will;
- for optimization: to find out what statistically particularly inspires our users and what not and what else can possibly be improved when using our services;
- for financing: to place banners for advertisers according to their orders and to use the advertising proceeds to pay our editorial staff, photographers, technicians, etc. and to keep our offer largely free of charge for you;
- for personalization: to be able to address you by name in the newsletter or on other occasions, to congratulate you on your birthday or to include other topics, content and banners specifically tailored to you in the services. The processing of your personal data takes place lawfully on the basis of the EU General Data Protection Regulation, namely - depending on the case - specifically on the basis of your consent (e.g. when sending the newsletter), a contract with you (e.g. when agreeing to our terms and conditions) or pre-contractual to fulfill legal or official requirements and / or after weighing up legitimate interests in individual cases (e.g. when using our platform) (see GDPR Article 6 Paragraph 1 Letters a), b), c) and f) or Section 15 Paragraph 3 TMG).
Insofar as we process personal data on the basis of consent or on the basis of weighing up legitimate interests, we will only do this as long as you do not object or revoke your consent. Since we cannot technically merge clear data with pseudonyms and are not legally allowed to do so, a uniform overall objection to all processing is not possible. We explain more details on revocation and objection below in the details of the respective processing.
III. Do data also go to third parties or to other EU countries?
RestaurantAdvisor does not pass on your data commercially (sale, rental) to third parties and does not conduct address trading.
However, there are things that others can do better than us. That is why we have brought in some service providers. As a company, we are part of a group of companies with some, with others we are only connected in business terms. Some service providers will need or at least be able to have access to personal data. This applies in particular to the IT technology with which we keep our services or individual functionalities and offers running, monitor and analyze them. In addition, this concerns u. a. Billing and dispatch of orders as well as the collection of outstanding invoices.
We commission all of our service providers in writing in accordance with the requirements of the EU General Data Protection Regulation and, for example, explain technical and organizational measures that the service providers use to protect the personal data entrusted to them from misuse.
Restaurant Advisor UG only operates servers in Germany. Some of the IT service providers commissioned by us are not based in the EU or the European Economic Area (EEA) or store and process personal data there. If, in the opinion of the EU Commission, the same data protection level does not exist in these areas as in Germany, we always insist on the guarantees required under data protection law for such a transfer abroad. As a rule, this is the conclusion of a data protection contract specified by the EU Commission (so-called EU standard contractual clauses), especially in the case of transfers to the USA, the participation of the service provider in the so-called EU-US.Privacy Shield.
In some cases, in compliance with data protection regulations, we also pass on data to third parties who then process the data on their own responsibility.
Your rights as a data subject
According to the EU General Data Protection Regulation, you have the right to request information about your personal data (Article 15 GDPR), as well as a correction (Article 16 GDPR), deletion (Article 17 GDPR) or at least the restriction of processing (Article GDPR ) To request your personal data. You also have the right to data portability (Article 20 GDPR). You also have the right, of course, to revoke your consent to the processing of personal data at any time (Article 7 (3)) and to object to processing that is based on the weighing of legitimate interests (Article 21 (4) GDPR). You can use your data e.g. for newsletters (e.g. newsletters) or advertising and market research purposes. Please use the opt-out links that are provided by us in the respective newsletters or contact our customer service. Please note that for organizational reasons, there may be an overlap between your revocation and the use of your data in the context of an ongoing campaign. In accordance with Art. 77 GDPR, you can complain to a supervisory authority if you are of the opinion that your personal data is being processed unlawfully. Please contact the data protection authority responsible for your place of residence or your state or the data protection authority responsible for us. This is:
State Commissioner for Data Protection and Freedom of Information Bavaria
PO Box 22 12 19
80502 Munich
Tel .: 089 / 212672-0
E-Mail :
If you have any questions about this or about data protection in general, please contact us via email to