Privacy policy
Privacy policy
- This Privacy Policy sets out the principles for processing and protecting personal data provided by users in connection with their use of services offered by the website Hotel Bristol Tradition & Luxury (hereinafter: the Service).
- The administrator of personal data contained in the Service is "FASADA-INVESTMENT" Spółka z o. o., Rzeszów 35-001, ul. Piłsudskiego 32, registered in the business register under the number NIP: 8130334761 (hereinafter: ADO).
- In order to ensure the security of the entrusted personal data, ADO operates based on internal procedures and recommendations, in accordance with applicable legal acts regarding the protection of personal data, and in particular with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
- ADO takes special care to protect the interests of data subjects, and in particular ensures that personal data is:
- processed lawfully,
- collected for specified, lawful purposes, and not further processed in a manner incompatible with those purposes,
- factually correct and adequate in relation to the purposes for which they are processed,
- stored in a form that permits identification of the data subjects for no longer than is necessary to achieve the purpose of processing.
- ADO performs functions related to obtaining information about users and their behavior through voluntarily submitted information in forms, for the purpose of:
- responding to user inquiries submitted via the contact form based on Article 6(1)(f) of the GDPR,
- processing reservations made using the online reservation system based on Article 6(1)(b) of the GDPR,
- providing services rendered by ADO based on Article 6(1)(b) of the GDPR,
- marketing, including sending commercial information to the email address if the Client has consented to it by ticking the appropriate box in the reservation process based on Article 6(1)(a) of the GDPR. Consent to data processing for marketing purposes and sending commercial information can be withdrawn by clicking the appropriate link in the received message or by sending such a request to ADO's email address,
- pursuing the legitimate interests of ADO in special cases based on Article 6(1)(f) of the GDPR, e.g., debt collection,
- Upon the first visit to the Hotel Bristol Tradition & Luxury website, the user is informed about the use of cookies. By staying on the site, the user accepts the use of cookies on the website. Failure to change browser settings by the user is tantamount to consenting to the use of "cookies".
- The change of cookie settings will take effect after restarting or refreshing the session on the ADO website.
- The installation of "cookies necessary for the basic functionality of the Service" is essential for the correct operation, particularly required for authentication.
- Necessary cookies for the operation of the website can be modified by changing the browser settings, but it should be noted that changing the settings may cause the website to malfunction.
- More information about cookies is available in the "Help" section of the user's web browser menu.
- Users who, after reading the information available on the Service, do not want cookies to be retained in the browser of their device, should delete them from their browser after finishing their visit to the Service. The following types of cookies are used within the Service:
- session cookies - remain in the browser until it is turned off or logged out of the Service,
- persistent cookies - remain in the device's web browser until they are deleted by the user or for a predetermined time specified in the cookie parameters.
- In terms of functionality, each cookie can be categorized as:
- analytical cookies, which help improve the user experience by understanding how users interact with and convert on the site,
- marketing cookies, used to personalize advertising content, target ads appropriately, and analyze the performance of marketing and sales channels,
- necessary cookies, which are fundamental to the basic functionality of the Service.
- The cookies we use allow us to develop our website.
- Some cookies may be placed by the provider of the Online Reservation System solely for the purpose of:
- improving and supporting the reservation process,
- analyzing and collecting statistical data regarding the use of the website and the online reservation system to improve them,
- the provider of the Online Reservation System informs about the installed cookies in the user interface of this system.
- ADO may use automated decision-making, including profiling, for marketing purposes (including automated matching of ads to your interests and measuring their effectiveness), and tailoring offers based on Article 6(1)(a) of the GDPR.
- The recipients of personal data may be authorities, institutions, and entities authorized by law, as well as entities providing services to ADO (e.g., legal, IT, marketing, accounting services, and other entities involved in the execution of the ordered service).
- We use the following analytical tools: Google Analytics.
- We use the following marketing tools: Facebook Pixel.
- The user of the Service has the right to access their personal data processed by ADO. The user also has the right to modify this data, request its deletion, and limit or stop the processing of their personal data at any time. The user can also request the deletion of their personal data from the Service at any time. The right to data portability does not apply, as no standard for the exchange of such data between hotel facilities has been established.
- To exercise the above-mentioned rights, the user of the Service should contact ADO using the same email address or phone number provided to the Service, by contacting at the following address: rodo@bristol-rzeszow.pl
- The user of the Service has the right to withdraw consent at any time without affecting the lawfulness of the processing carried out based on consent before its withdrawal, by directly contacting ADO or, in the case of technology, by changing cookie settings.
- Every user of the Service has the right to lodge a complaint with the Data Protection Authority.
- The Service may contain links to other websites that operate independently of the Service and are not supervised by the Service in any way. These sites may have their own privacy policies and regulations, which we recommend reading carefully.
- ADO reserves the right to change the privacy policy of the Service, which may be caused by the development of internet technology, possible changes in data protection law, and the development of the Service. We will inform users about any changes in a visible and understandable manner.
General Data Protection Regulation
- PERSONAL DATA ADMINISTRATOR OF HOTEL GUESTS
The personal data administrator is "FASADA-INVESTMENT" Spółka z o. o., Rzeszów 35-001, ul. Piłsudskiego 32, registered in the business register under the number NIP: 8130334761. - REQUIREMENT TO PROVIDE PERSONAL DATA
Providing personal data such as name and surname, ID document number, residential address, email address (in case of online reservations), contact phone number, child's age (if staying at the hotel with a child), and vehicle registration number (if parking on hotel premises) is a requirement for entering into a hotel service agreement. The hotel employee is obliged to verify the data provided by the guest with the ID document. Failure to provide personal data will prevent the Hotel from entering into a hotel service agreement. - PURPOSES OF PROCESSING HOTEL GUESTS' PERSONAL DATA
Personal data is processed for the following purposes:
a. booking accommodation and providing hotel services;
b. ensuring the highest quality of services for hotel guests;
c. documenting the provision of services for tax purposes;
d. own marketing;
e. ensuring the security of property and persons (monitoring, parking services);
f. pursuing potential claims or defending against them; - LEGAL BASIS FOR PROCESSING PERSONAL DATA
According to the GDPR, the legal basis for processing the Guest's personal data obtained by the Hotel is:
a. Article 6 GDPR point 1(b) "processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract";
b. Article 6 GDPR point 1(f) "processing is necessary for the purposes of the legitimate interests pursued by the controller...";
c. Article 6 GDPR point 1(c) "processing is necessary for compliance with a legal obligation to which the controller is subject";
d. Article 6 GDPR points 1(a) and (f) "the data subject has given consent to the processing of their personal data for one or more specific purposes";
e. Article 6 GDPR point 1(f) "processing is necessary for the purposes of the legitimate interests pursued by the controller...";
f. Article 6 GDPR point 1(f) "processing is necessary for the purposes of the legitimate interests pursued by the controller..."; - ENTITIES TO WHICH PERSONAL DATA MAY BE DISCLOSED
The Hotel discloses personal data to the following categories of entities:
- Companies providing IT support services for the hotel and supplying software;
- Accounting firms providing accounting services;
- Transport and taxi companies in case the Guest orders transportation or delivery;
- Law firms providing legal advisory and representation services;
- Companies providing marketing services for the hotel. - PERIOD OF PERSONAL DATA PROCESSING
Personal data:
obtained in connection with the concluded hotel service agreement will be processed for the period of limitation of tax claims or civil claims by the Hotel or the Guest, depending on which event occurs later,
obtained based on consent for marketing purposes will be processed for the validity period of the consent for marketing purposes, and data obtained in connection with monitoring will be processed for 14 days from the date of recording and then will be permanently deleted. - GUEST'S RIGHTS RELATED TO THE PROCESSING OF PERSONAL DATA
The Guest has the right to access the data, correct it, the right to data portability, and the right to receive a copy of the personal data processed by the hotel. Additionally, the Guest has the right to withdraw consent at any time, request to restrict its processing, deletion, and the right to be forgotten in case of processing personal data for marketing purposes. - POSSIBILITY TO FILE A COMPLAINT RELATED TO THE PROCESSING OF PERSONAL DATA
Every Guest has the right to file a complaint regarding the processing of their personal data to the supervisory authority, which is the President of the Office for Personal Data Protection, located at ul. Stawki 2, 00-193 Warsaw. - AUTOMATED DECISIONS BASED ON PERSONAL DATA, INCLUDING PROFILING
The Hotel does not make automated decisions based on personal data, including profiling. - CONTACT WITH THE PERSONAL DATA ADMINISTRATOR
Contact with the Data Administrator, or the person designated by the administrator, is possible through the hotel reception or by email at rodo@bristol-rzeszow.pl