Privacy and policy
ON THE COMPANY’S PROCESSING OF DATA BY NATURAL PERSONS AND THE RIGHTS OF THE PERSON CONCERNED
CHAPTER I – NAME OF THE DATA CONTROLLER
II. CHAPTER I – NAMES OF DATA PROCESSORS
III. CHAPTER I – INFORMATION ON DATA SECURITY MEASURES
ARC. CHAPTER I – DATA PROCESSES RELATED TO ACCOMMODATION SERVICES
CHAPTER V – DATA PROCESSES RELATED TO THE ORGANIZATION OF OWN EVENTS
VI. CHAPTER I – DATA MANAGEMENT OF ELECTRONIC MONITORING IN THE HOTEL
VII. CHAPTER I – DATA MANAGEMENT ON THE COMPANY WEBSITE
VIII. CHAPTER II DATA MANAGEMENT OF CONTRACTING PARTNERS AND CONTACT PERSONS – REGISTER OF CUSTOMERS AND SUPPLIERS
IX. CHAPTER I – DATA PROCESSING FOR ADMINISTRATIVE PURPOSES
CHAPTER X EMPLOYMENT DATA PROCESSES
XI. CHAPTER I – DATA PROCESSES BASED ON THE CONSENT’S CONSENT
XII. CHAPTER I – INFORMATION ON THE RIGHTS OF THE PERSON CONCERNED
REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL (hereinafter “the Regulation”) on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Regulation (EC) No 95/46 that the Data Controller takes appropriate measures to provide the data subject with all information concerning the processing of personal data in a concise, transparent, comprehensible and easily accessible form, in a clear and comprehensible manner, and that the Data Controller facilitates the exercise of the data subject’s rights.
The prior information obligation of the data subject on the right to information self-determination and freedom of information is set out in Act CXII of 2011. also required by law.
By complying with the information below, we are fulfilling this legal obligation.
The information must be published on the company’s website or posted on the notice board at the Data Controller’s headquarters.
NAME OF DATA CONTROLLER
NAME OF DATA PROCESSORS
Data processor: any natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller; (Article 4 (8) of the Regulation) The use of a data processor does not require the prior consent of the data subject, but requires his or her information.
The names of the data processors are contained in Part I of the Data Protection Regulations.
INFORMATION ON DATA SECURITY MEASURES
The Data Controller has taken the technical and organizational measures and established the procedural rules necessary for the enforcement of the Decree and the Infotv. The Data Controller shall take appropriate measures to protect the data against accidental or unlawful destruction, loss, alteration, damage, unauthorized disclosure or unauthorized access.
DATA TREATMENTS RELATED TO ACCOMMODATION SERVICES
Data processing of hotel guests – Report form
10.1. In order to identify the contracting party and provide the service, the Company manages the name, address, telephone number, e-mail address, car registration number, citizenship, arrival and departure time of the natural person using the accommodation service (representative in case of a legal entity, contact person). it also manages the identity card number of the natural person in order to fulfill its obligations. The guest must be informed on the notification form that the purpose and title of the data processing is to fulfill the service and the contract, to fulfill the legal obligation in relation to taxes, and to obtain and view additional information on the data processing and information on the rights of the data subject.
10.2. Title of data management: performance of contract.
If the Company wishes to use the provided data for other purposes, such as telephone numbers and e-mail addresses for advertising, sending newsletters, it must request the consent of the data subject using the form in Annex 4.
10.3. With regard to bookings and orders communicated by e-mail, telephone, the performance of the contract is also the subject of data processing, taking into account that data processing is necessary to take steps at the request of the data subject before concluding the contract (Article 6 (1) b. /).
10.4. Recipients of personal data: employees, contact persons, employees performing accounting and tax tasks, and data processors of the executive, performing tasks related to guest service.
10.5. The storage period of the data – with the exception of the data recorded on the accounting documents – is 5 years after the termination of the related contract.
10.6. The personal data required for the invoicing of the services are issued by the Company, invoices and tax liabilities are fulfilled