Privacy and Personal Data Policy
We do not share any of your registration data or personal data with anyone or any other entity. Our reservation system (Rezovation Web) is a secure system that meets the US and International security requirements.
Privacy and Personal Data Policy - applicable to Users of this Hospitality Business when making a reservation
Data Controller (we): The Hospitality Business which will provide to you, the user, the requested service. Our identification and contact details are available on the website you used to make your reservation or to pose your question(s) to us. They will also appear on our Reservation Confirmation and/or invoice and on any other correspondence which we'll send to you.
Data Compliance Officer: Not applicable to Data Controllers' activities.
User: You, who filled-in the reservation form or any other documentation related to it, or who called.
Purpose: The purpose of processing the data provided, ether verbally or win writing, is to manage the reservations made by you, the user and/or to answer the question(s) or requests you posed.
- Either the need to perform our contract with you, the user, or the need to take steps at your request prior to entering into a contract.
- Or the consent of you, the user, by ticking in the box of acceptance of the Terms and Conditions of which this Privacy and Personal Data Policy is an integral part.
Duration: We will store the data provided by you, the user, during the time necessary to address the question(s) or request(s) made by you, the user, or for the management of the reservation you made, as well as of the accommodation services you requested. Once post-stay management is finished, your data will be kept for forty eight (48) months. If you consent to receive marketing and/or commercial information, your data will be stored until you revoke your consent.
Processor: We engage our partner Rezovations Group (www.guestcentric.com ) for carrying out the reservations engine of our business. Guestcentric acts under our authority and we have signed a contract with Guestcentric Group for the provision of their services. We have instructed Guestcentric Group in written as per how the processing should be done.
Data subjects different from the users: Where you, user, provide us with personal data pertaining to a different data subject from yourself, you are responsible for such acts as well as for obtaining the respective consent of such data subjects for the provisioning of their data.
Transfer of Data: We shall not transfer personal data to a third country outside the EEA (European Economic Area) USA, or Canada.
Data Subject Rights: Data Subjects can exercise their rights of access, rectification, cancellation and opposition by sending an email or through the postal service to the contact details on our reservation website and on our invoices.
Supervisory Authority: If a data subject considers their rights affected, they can also appeal to the competent supervisory authority of the Member State concerned. More info at: https://ec.europa.eu/info/law/law-topic/data-protection/data-protection-eu_en