INFORMATION ON THE PROCESSING AND PROTECTION OF PERSONAL DATA
With effect from 25. May 2018, the processing of personal data of clients of the Golden Lion Hotel is subject to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27. April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), called. GDPR. In this context, we provide you with the following information on the processing and protection of personal data.
Personal data controller
The controller of the personal data of the clients of the Golden Lion Hotel, at the address Havlíčkovo náměstí 176, 580 01 Havlíčkův Brod (hereinafter referred to as the Hotel) is the company Petrkov, s.r.o., ID No.: 07213107, with its registered office at Havlíčkovo náměstí 176, 580 01 Havlíčkův Brod, registered in the Commercial Register of the Regional Court in Hradec Králové, Section C, Insert 41945 (hereinafter referred to as the Controller), which is the operator of the Hotel.
What personal data we process
The personal data that we process about the Hotel’s clients, the scope of which varies according to the type and scope of services provided, includes:
-
-
- name and surname, title
- date of birth
- nationality
- residential address
- travel document number
- visa number, if indicated on the travel document
- length of stay
- purpose of stay in the Czech Republic
- phone number
- type, number and expiry date of the payment card
- the registration number of the motor vehicle
- CCTV footage
- other data if necessary in connection with the provision of services by the Controller.
-
We obtain personal data directly from clients or accommodation agents when concluding the accommodation reservation contract, respectively. accommodation contract and during the contractual relationship. The provision of personal data is voluntary. If the client chooses not to provide us with personal data, it will not be possible to conclude a contract for the reservation of accommodation, respectively. accommodation contract.
There is no automated decision-making in the processing of personal data of the Hotel’s clients.
In order to ensure the security and confidentiality of personal data, which is extremely important to us, we use technical and organizational measures to protect against unauthorized access to and misuse of personal data, including ensuring sufficient security of IT systems. All measures are regularly evaluated and updated.
Purpose of processing and legal basis for processing personal data
We process the personal data of the Hotel’s clients for the purposes of:
-
-
- provision of services on the basis of a concluded accommodation reservation contract, resp. contracts for accommodation in the Hotel, i.e. in particular for the purposes of concluding the contract, managing the contractual relationship and communicating with the client. In this case, the legal basis that allows us to process the personal data of clients is that the processing of personal data is necessary for the purposes of concluding or performing a contract with clients.
- the fulfilment of legal obligations, i.e. in particular for the purposes of keeping the house register and notifying the accommodation of a foreigner within the meaning of the legislation governing the residence of foreigners in the Czech Republic. The legal basis that allows us to process personal data in this case is due to the fact that the processing of clients’ personal data is necessary to comply with a legal obligation to which we are subject as a data controller.
- protection of the legitimate interests of the Administrator and the Hotel, i.e. in particular for the purpose of assessing, exercising and enforcing legal claims, protecting the rights, property or safety of the Administrator, the Hotel, their other clients or other persons. The legal basis that allows us to process personal data is in this case due to the fact that the processing of personal data is necessary for the purposes of protecting the legitimate interests of the Controller as the controller of personal data.
- marketing and sending marketing communications and commercial offers or service improvement questionnaires – if the client has given his/her consent to direct marketing. The legal basis that allows us to process personal data in this case is due to the fact that the client has given us revocable consent to process personal data for this purpose.
-
Recipients to whom we may disclose clients’ personal data
To ensure the proper operation of the Hotel, in providing services and fulfilling our contractual obligations, we use the professional and specialized services of other entities, e.g. providers of catering services, IT services, accountants, auditors and other entities that provide their services to ensure the operation of the Hotel. Insofar as these entities process personal data of the Hotel’s clients provided to them by the Controller, they have the status of personal data processors and process it only within the framework of the Controller’s instructions and cannot use it otherwise. Each such entity has strict obligations to protect and secure personal data.
The period for which we will process personal data
We only retain clients’ personal data for the period of time that any of the above processing purposes lasts, i.e. in particular for the duration of the contract and for the duration of the client’s consent to the processing of personal data. After termination of the contract or after withdrawal of the client’s consent, we only retain personal data for the period and under the conditions required by law in accordance with the general limitation, archiving and shredding periods.
Use of cookies
Cookies are text files containing small amounts of information that are downloaded to your device when you visit our website. Cookies are then sent back to the website or another website that recognises them on each subsequent visit.
Cookies perform a variety of tasks, such as enabling you to navigate between websites efficiently, remembering your preferences and generally improving the user experience. They can also ensure that the ads you see online are better tailored to your personality and interests.
We use the following cookies on the website:
-
Necessary cookies: these are required for the operation of the website, for example, to allow you to log into secure areas of the site and other basic functionality of the site. This category of cookies cannot be disabled.
Further information about cookies and the current list of cookies can be found via the individual web browsers, most often under Developer Tools.
Consent can be expressed by means of a checkbox contained in the so-called “consent form”. cookie bar. You can also refuse cookies in your browser settings or set to use only some of them.
For more information on managing cookies in individual browsers, please visit the following links:
- Internet Explorer – https://support.microsoft.com/cs-cz/help/17442/windows-internet-explorer-delete-manage-cookies
- Google Chrome – https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=cs
- Firefox – https://support.mozilla.org/cs/kb/povoleni-zakazani-cookies
- Safari – https://support.apple.com/cs-cz/guide/safari/sfri11471/mac
- Opera – https://help.opera.com/cs/latest/security-and-privacy/
-
Microsoft Edge – https://docs.microsoft.com/cs-cz/sccm/compliance/deploy-use/browser-profiles
Client rights related to the processing of personal data
In connection with the processing of personal data, the client has:
-
-
- the right to be informed in a concise, clear, transparent and comprehensible manner about how his or her personal data is handled and what his or her rights are in relation to the processing of personal data;
- the right of access to personal data, including the right to obtain confirmation as to whether or not his or her personal data is being processed and the right to request information on what personal data is being processed;
- the right to rectification of inaccurate and incomplete personal data
- the right to erasure of personal data (the so-called “right to be forgotten”) if:
-
– the personal data is no longer necessary for the purposes for which it was collected or processed;
– the client has withdrawn their consent to the processing of personal data;
– the client has objected to the processing of his/her personal data and the legitimate interest of the Controller in the further processing of his/her personal data does not prevail in this case or you have objected to the processing of his/her personal data for direct marketing purposes;
– the personal data has been unlawfully processed or if the personal data must be erased on the basis of applicable law;
-
-
- the right to restrict the processing of personal data if:
-
– denies the accuracy of the personal data until its accuracy is verified;
– the processing of the personal data is unlawful and the client requests only the restriction of the use of the personal data instead of its deletion;
– The controller no longer needs the client’s personal data, but the client requires it to assert his or her legal claims;
– the client has objected to the processing of personal data for a period of time until it is verified that the legitimate interests of the Controller outweigh the interests of the client.
-
-
- the right to data portability, including the client’s right to obtain his or her personal data and the client’s right to decide to transfer it to another service provider
(to another data controller) - the right to object to the processing of personal data if it is processed for the purposes of protecting the legitimate interests of the Controller or for direct marketing purposes
- the right to lodge a complaint with the supervisory authority, which is the Office for Personal Data Protection, Pplk. Sochora 27, 170 00 Prague 7; www.uoou.cz
- the right to data portability, including the client’s right to obtain his or her personal data and the client’s right to decide to transfer it to another service provider
-
In case of questions or comments on the processing of personal data or if the client wishes to exercise his/her rights referred to in point VI., he/she may do so in writing at the address of the Administrator, i.e. Petrkov, s.r.o., ID No.: 07213107, with registered office at Havlíčkovo náměstí 176, 580 01 Havlíčkův Brod, or electronically at the e-mail address: hotel@uzlateholva.cz.