In order to adapt to the new data protection regulations, RGPD (EU) 2016/679 of 27 April and L.O. 3/2018 of 5 December, on the Protection of Personal Data and guarantee of digital rights, we have modified our data protection policy and below we inform you in a clear and simple way about the most relevant aspects of the same.
We are committed to your privacy, it is very important for us to be transparent, giving the user control of their personal data through clear and simple options.
However, if you have any questions after reading this information, please do not hesitate to contact us.
Who is the Data Controller?
Data Controller: JAIME GARCÍA-CALZADA BARRENA S.L. (hereinafter, HOTEL MARQUÉS DE VALLEJO), whose N.I.F. Nº: B26319277 Postal address: calle Marqués de Vallejo nº 8, 26001 – Logroño, Telephone: 941248333, E-mail: firstname.lastname@example.org;
The personal data you provide us with will be processed in accordance with current European Union and Spanish legislation on the protection of personal data.
At the time of collecting the data, the voluntary or compulsory nature of the data to be collected will be indicated. Refusal to provide data classified as obligatory will mean that the service for which they were requested will not be provided or will be impossible to access. Likewise, data may be provided on a voluntary basis with the aim of providing the services and/or products offered in a more optimal manner.
The data provided by the user must be accurate and respond truthfully to the current situation of the person concerned. The user who enters the data is solely and ultimately responsible for the accuracy of the information provided on our website.
Why do we need to process your personal data?
The main purposes of the processing of your personal data are as follows:
- We process the data you provide us with through our website in order to contact you and respond to your request (information sent to interested parties will not be considered commercial communication, provided that its purpose is to maintain the existing relationship between the user and our organisation).
- When you request a product and/or service from us, we process the data you provide for the provision of the product and/or service requested and for administrative and accounting management and to send you information of interest about our products and/or services.
- If you authorise us to do so, we will process the contact details you provide us with in order to send you information of interest about the products and/or services we offer. This information may be sent by any means, including electronic means.
- No automated decision-making or profiling is foreseen. There are no plans to transfer data to third countries.
What is the legitimation for the processing of personal data?
The execution of pre-contractual measures in response to your request.
The execution of a contract to manage the products and services you have, order or contract with us.
Legitimate interest in sending you information about products and/or services similar to those you have, request or have contracted with us.
Consent to send you information of interest by any means, including electronic means.
How long will we keep personal data?
The data provided will be kept for the time necessary to respond to your request, manage the products and services you have requested or have contracted from us, without prejudice to your right to exercise your right to the deletion of your personal data, which will entail the blocking of the data for as long as the legal obligations persist, or until you object to continue receiving information about our products and/or services.
We may retain personal data after the end of any relationship with the data subject in order to comply with legal obligations. In any case, they will be kept for the minimum necessary period, which may be up to:
Accounting and tax documentation for commercial purposes must be kept for a period of 6 years (Article 1964 of the Commercial Code) and for tax purposes for a period of 4 years (Articles 66 et seq. of the General Tax Law). And for the purposes of Article 25 of the Law on the Prevention of Money Laundering and Financing of Terrorism, for a period of 10 years.
To whom can we communicate your data?
To service providers acting as data processors.
To third parties such as public administrations, courts and tribunals for the fulfilment of legal obligations.
To banks: to collect payment for the services provided.
Who are our Data Processors?
In order to provide you with an adequate service and to manage the contractual relationship, we have contracted the following categories of data processors who will process your data on behalf of the HOTEL MARQUÉS DE VALLEJO: accounting, tax and labour advisory services, auditing and consultancy services, physical security services, computer maintenance services, database management, hosting services, backup services, other business support activities.
Place of provision of services: Spain and in some cases the European Union.
What are your rights?
You have the right to obtain information about whether the HOTEL MARQUÉS DE VALLEJO is processing your personal data (right of access), to request the rectification of inaccurate data (right of rectification) or its deletion when the data is no longer necessary for the performance of the contract (right of deletion), to the limitation, in certain circumstances, of its processing (right to limitation of processing), to receive the personal data provided concerning you or to request that we send it to another data controller of your choice, in a structured, commonly used and machine-readable format (right to data portability), as well as to withdraw at any time the consent given to receive information of interest by any means (right to object). You may exercise your rights by writing to the postal or e-mail address of the Data Controller, in accordance with the provisions of Articles 15 to 22 of the GDPR 2016/679. To exercise your rights, please attach a copy of your ID card or equivalent document proving your identity to your request.
If you consider that the processing of your data infringes the applicable personal data protection regulations, you may lodge a complaint with the competent supervisory authority, in Spain, the Spanish Data Protection Agency (Agencia Española de Protección de Datos).
Up-to-dateness and modification of information.
The information that appears on this website is current as of the date of its last update. HOTEL MARQUÉS DE VALLEJO reserves the right to make, at any time, as many changes and modifications as it deems appropriate, especially to adapt to any regulatory changes in data protection in the European Union and Spain, and may make use of this right at any time and without prior notice.