Who is the administrator of personal data guests?
The Data Controller of the guests is Tomasz Broszkiewicz conducting business under the name Hotel Batory Tomasz i Justyna Broszkiewicz based in Krakow [31-529] Street. Soltyka 19 (hereinafter referred to as the Hotel). In matters related to personal data, please contact the Administrator, e-mail: email@example.com, phone number +48 12 294 30 30, postal address above.
Is the provision of personal data a contractual or legal requirement?
Provide personal information regarding your name, address and number of identity document is a necessary requirement for the conclusion of the hotel services. The lack of personal data prevents the Hotel from concluding a contract for hotel services.
What are the purposes of the processing of personal guests?
The data will be processed in order to conclude and implement agreements for the provision of hotel services. Furthermore the processing of personal data is:
to provide the highest quality of hotel services to guests,
documenting the service for tax purposes,
the investigation of possible civil claims by the hotel.
In the case of the expression by the guest consent to the processing of personal data for marketing purposes, Hotel processes personal data for this purpose.
In addition, hotel guests processes personal data collected by the monitoring of the hotel in order to ensure the safety of guests and other persons in the hotel premises.
The hotel also processes only after prior consent by the guest transmission data necessary to provide access services to the Internet, including your IP address / MAC, the date and time using the IP address, information about the package online, data on the number of sent and received data and network port number used to prevent fraud and abuse and to ensure safety for guests using the Hotel's online network.
What is the legal basis for processing personal data?
The legal basis for the processing of personal data:
acquired by hotel is contract for the provision of hotel services.
used for marketing purposes is guest consent. Marketing consent may be withdrawn by the guest at any time. The withdrawal of consent does not affect the validity of the process, which took place before the withdrawal of consent.
by monitoring and data transmission is to protect hotel and others vital interests, as well as the legitimate interests administrator.
to ensure the highest quality of service is legitimate interests administrator.
Where can the personal data be transferred by the Hotel?
Personal data may be transferred to the following categories of entities:
companies providing IT support services of the hotel,
accounting firms and law firms,
transport companies in an order by guests or transport shipments.
If Hotel is required by a provision of law, we provide personal data to authorized entities, including the relevant judicial authorities.
How long will the personal data be processed?
Personal data obtained:
in connection with the execution of the agreement for the provision of hotel service will be processed by the limitation period of tax claims or claims of civil law according to which of these claims expires later,
for marketing purposes will be processed by the validity of consent given,
in connection with the monitoring will be processed for 30 days and then are permanently deleted,
therefore the realization of internet access services will be processed for a period of two years, and then will be permanently deleted.
What are the rights of visitors in regard to the processing of personal data?
Every guest has the right of access to personal data, rectification, erasure or restriction of processing. In addition, every guest has the right to object to the processing. Access to the data is possible in the hotel. Moreover, the hotel providesvaddress firstname.lastname@example.org through which you can contact in matters of personal data.
Does the hotel transfer personal data to countries outside the EEA?
Your personal data will be transferred outside the European Economic Area to Google LLC based on appropriate legal safeguards, which are standard clauses of personal data protection, approved by the European Commission.
The supervisory authority of personal data protection.
You have the right to lodge a complaint regarding the processing of your personal data by us to the supervisory body, which is the Inspector General for Personal Data Protection.
Do we process your personal data automatically (including through profiling) in a way that affects your rights?
The hotel does not take automated decisions based on personal data, including profiling.
In matters not regulated by the Rules and Regulations, the provisions of the Civil Code and relevant laws of Poland, as well as the laws of the European Union, in particular the RODO (Regulation of the European Parliament and of the Council (EU) 2016/679 of April 27, 2016 on the protection of natural persons in relation to the processing of personal data and on the free flow of such data and repealing Directive 95/46/EC) shall apply.