BOOK

Privacy Policy

 

Hotel Opco is glad to inform you that the personal data provided and acquired at the time of booking, registration and provision of the requested service will be treated in a pertinent and transparent manner and in compliance with the principles of lawfulness and necessity according to the provisions in force on the matter.

The customer's personal data are used by Hotel Opco which is the Data Controller for the processing, in compliance with the principles of protection of personal data established by the GDPR 2016/679 Regulation and the national legislation in force.

 

 

METHOD AND PURPOSE OF DATA PROCESSING

We inform you that the processing of personal data will take place for institutional and contractual purposes to ensure the provisioning of the service, to implement the hotel reception service and to:

  • Acquire and confirm your booking of accommodation and ancillary services
  • Customer management (reservations, services, customer care and complaints)
  • Fulfil the obligations related to the communication of guests in the structure to the Public Safety authorities
  • Fulfil administrative, accounting and tax obligations

The processing of personal data is carried out using IT and / or telematic tools and will take place with appropriate technical and organizational security measures to guarantee the security and confidentiality of your personal data.

Hotel Opco ensures the adoption of scrupulous procedures to protect the navigation data on the site and the use of security measures to protect the credit card data provided when making online reservations.

 

 

SOURCE OF PERSONAL DATA AND LEGAL BASIS FOR THE PROCESSING

The data is collected directly from the interested parties at the time of booking or through third-party companies or partners (travel agencies, tour operators, booking sites ..).

Hotel Opco uses the data provided to process the reservation and to send specific information such as confirmation and conditions of stay.

Processing is necessary to comply with a legal obligation to which the Data Controller is subject and for the performance of a task carried out in the public interest or for the exercise of public authority vested in the Data Controller.

Failure to provide the data required to provide the service may make it impossible to respond to your request and the subsequent provision of the services.

 

PERSONAL DATA COLLECTED

The Data Controller collects and processes the following personal data of the interested parties:

  • Identification data (e.g. names and personal data of those who use the services, their residential address, telephone number, e-mail, billing data, etc.). The data of your underage child/children or minors on whom parental authority is exercised may be processed in order to be able to carry out the booking and registration service at the hotel
  • Banking and financial data (e.g. credit and/or debit cards, bank details, etc.)
  • Particular data (formerly sensitive) such as e.g. food allergies or intolerances, medication or disability
  • Personal Data from Social Media: the Users may share with the Application Data communicated to social media.

 

PERIOD OF STORAGE OF DATA

The Data Controller shall store Personal Data for the time necessary to perform the purposes connected with the performance of the agreement in force between the Data Controller and the User and for the period defined by specific industry regulations.

The data will in any case be deleted in case of a specific request from the interested party, except for further storage obligations required by law.

 

COMMUNICATION AND DIFFUSION OF DATA.

All data collected and processed may be disclosed exclusively for the purposes specified above to employees and consultants of Hotel Opco, such as authorized persons and/or external managers, Police Headquarters and Public Security Authorities, Banks and credit institutions.

Your data will not otherwise be disclosed, sold free of charge and / or for a fee or shared with third parties and will be used only and exclusively for the purposes indicated above.

The data may be transferred outside the national territory to countries located in the European Union, but they could also be transferred outside the European Union. Any transfer of data to countries located outside the European Union will take place, in any case, in compliance with the appropriate guarantees for the purpose of the transfer in accordance with the applicable legislation and in particular articles 45 and 46 of the Privacy Regulation.

 

RIGHTS OF THE USER

The Users may exercise specific rights with respect to Personal Data processed by the Data Controller. In particular, the User has the right to:

 

  • Withdraw its consent at any time;
  • Object the processing of its data;
  • Access its data;
  • Monitor and request the rectification of data;
  • Obtain a restriction of processing;
  • Obtain the erasure or remotion of its personal data;
  • Receive its data or obtain the transfer to a different data controller;
  • Lodge a complaint before the supervisory authority for the protection of personal data or start legal proceedings.

 

 

We remind you that at any time you can exercise your rights under Articles. 15 and ss. of EU Regulation 2016/679, modify the data or request more information by writing to Hotel Opco srl Piazza Eleonora Duse 2 - 20122 Milan (MI) or by sending an email to belstaygroup@belstayhotels.it or PEC (certified email) bcopcosrl@legalmail.it. The data controller is Hotel Opco srl, VAT number 11285190960 Tel. +393351379432 E-mail belstaygroup@belstayhotels.it.

 

The Data Controller may make changes and/or additions to this information, also as a consequence of any subsequent regulatory changes to the Privacy Regulation. The changes will in any case be notified in advance and may be made available on the Controller's communication channels.