Privacy and Data Policy
General Regulation on Data Protection (RGDP) - May 2018.
We inform you that personal data provided by our Customers will be treated in accordance with the principles of transparency, limitation of purpose, data minimization, accuracy, integrity and confidentiality, also respecting the other obligations and guarantees established in Regulation (EU) 2016 / 679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data.
Purposes of Treatment
The personal data collected will be used to send, via email , newsletters inserted in communication, marketing and advertising actions of Golden Halcyon.
The data provided will not be transferred to third parties, except in cases where there is a legal obligation.
Term of Preservation of Personal Data
The data will be kept as long as the Card Holder keeps the subscription active and up to 30 days after the cancellation request.
Client and / or User owns the following rights over their personal data:
- Right to request access to personal data
- Right to request rectification or deletion
- Right to request limitation or to oppose its treatment
- Right to data portability
- Withdrawal of consent
To exercise these rights, you must send us a written communication to the email address email@example.com, specifying the right that you wish to exercise.
Cookies are files that are installed on your computer from the site you are accessing for the purpose described in the previous paragraph.
All the applications they use come from statistical companies and under no circumstances are the names or nicknames of users or mailing address from which they connect. The information obtained is related, for example, to the types of products you searched for, the language used to navigate our site, spent more time in one product over another, the total number of users, the type of browser used, and more.
You can pay, learn, block or remove cookies using your browser settings. To do so, you can use the link that corresponds to your browser:
Google Chrome: https://support.google.com/chrome/answer/95647?hl=en
Apple Safari: http://support.apple.com/kb/index?page=search&src=support_site.kbase.search&q=cookies&locale=en_US
Privacy and Personal Data Policy - applicable to Users of this Hospitality Business when making a reservation
Data Controller (we): The Hospitality Business which will provide to you, the user, the requested service. Our identification and contact details are available on the website you used to make your reservation / to pose your questions to us. They will also appear on our invoice which we'll send to you.
Data Compliance Officer: Not applicable to Data Controllers' activities.
User: You, who filled-in the reservation form or any other documentation related to it.
Purpose: The purpose of processing the data provided through this form is to manage the reservations made by you, user and/or to answer to the questions / requests you posed.
- Either the need to perform our contract with you, user / the need to take steps at your request prior to entering into a contract.
- Or the consent of you, the user, by ticking in the box of acceptance of the Terms and Conditions of which this Privacy and Personal Data Policy is an integral part.
Duration: We will store the data provided by you, the user, during the time necessary for the management of the reservation you made, as well as of the accommodation services you requested. Once the management is finished, your data will be kept for six (6) months. If you consent to receive marketing and/or commercial information, your data will be stored until you revoke your consent.
Processor: We engage our partner Guestcentric Group (www.guestcentric.com ) for carrying out the reservations engine of our business. Guestcentric acts under our authority and we have signed a contract with Guestcentric Group for the provision of their services. We have instructed Guestcentric Group in written as per how the processing should be done.
Data subjects different from the users: Where you, user, provide us with personal data pertaining to a different data subject from yourself, you are responsible for such acts as well as for obtaining the respective consent of such data subjects for the provisioning of their data.
Transfer of Data: We shall not transfer personal data to a third country outside the EEA (European Economic Area).
Data Subject Rights: Data Subjects can exercise their rights of access, rectification, cancellation and opposition by sending an email or through the postal service to the contact details on our reservation website and on our invoices.
Supervisory Authority: If a data subject considers their rights affected, they can also appeal to the competent supervisory authority of the Member State concerned. More info at: https://ec.europa.eu/info/law/law-topic/data-protection/data-protection-eu_en