Royal Resort

Privacy Policy

Privacy Policy and Data Protection Policy of Grzechowiak Górskie Apartamenty

I. General information

From this document you will learn how and under what conditions we process your personal data when you contact us or use our services.

1. PERSONAL DATA CONTROLLER OF GUESTS OF GRZECHOWIAK GÓRSKIE APARTAMENTY

The Personal Data Controller of the Guests of Grzechowiak Górskie Apartamenty as well as the data of other persons staying on the premises of the building and around the building in the area covered by the monitoring is GRZECHOWIAK GÓRSKIE APARTAMENTY SPÓŁKA Z OGRANICZONĄ

ODPOWIEDZIALNOŚCIĄ, Oberconiówka 13E / 1, 34-500 Zakopane, registered in the National Court Register, under the KRS number: 0001018849, NIP: 7361743393, REGON No. 524514785.

2. DATA PROTECTION OFFICER

The Data Protection Officer can be reached by e-mail at iodo@grzechowiakgorskieapartamenty.pl.

3. PURPOSES OF PROCESSING PERSONAL DATA OF HOTEL GUESTS

The purpose for which we process your personal data is to provide hotel services. In addition, the purpose of processing personal data by Grzechowiak Górskie Apartamenty Spółka z Ograniczoną Odpowiedzialnością is:

  • performing a contract or taking action at the request of the data subject prior to entering into a contract (legal basis: Article 6(1)(b) of the GDPR),
  • handling of inquiries (Article 6(1)(f) of the GDPR),
  • handling complaints and claims (Article 6(1)(b) of the GDPR),
  • Maintaining records and fulfilling legal obligations incumbent on the Controller (Article 6(1)(c) of the GDPR),
  • sending newsletters (Article 6(1)(a) of the GDPR),
  • Monitoring and improving the quality of the services provided - asking you to complete a survey or answer a few questions about the quality of the services provided (Article 6(1)(f) of the GDPR),
  • displaying personalized commercial information on social networks (Article 6(1)(a) of the GDPR),
  • for the purpose of providing spa & wellness services based on express consent (Article 6(1)(a) of the GDPR),
  • pursuing possible claims by the owner of the facility in connection with the damage caused by the Guest or defending against the Guest's claims against the facility,
  • providing the highest quality of service to guests using our services.

If the Guest has consented to the processing of personal data for marketing purposes, we process personal data in order to target the Guest with marketing information and offers about their products and services.

Provision of data is voluntary, but necessary to use the services.

 

4. MONITORING ON THE PREMISES

Video surveillance by means of surveillance cameras is used in selected locations of the facility, including the parking lot, and in the area around the building. Information about the processing of Personal Data through monitoring is available in front of the entrance to the facility, at the entrance to the facility and at the Reception Desk of the facility. The monitoring area is additionally marked with a graphic sign along with written information. We process Guests' personal data collected by the facility's video surveillance to ensure the safety of Guests and others in the complex.

5. LEGAL BASIS FOR PROCESSING PERSONAL DATA

The legal basis for the processing of the Guest's personal data obtained by Grzechowiak Górskie Apartamenty Spółka z Ograniczoną Odpowiedzialnością is the realization of the accommodation service and ensuring the highest quality of services for the Guests of the facility.

Information about the obligation or lack of obligation to provide Personal Data, as well as about the consequences of not providing Personal Data, can be found in each case in the information obligation, with which the Guest should get acquainted before performing a certain action related to the provision of Personal Data. Providing Personal Information when making a Reservation is voluntary, but is necessary in order to make a Reservation and be able to use the facility's services. If the Guest wishes to receive a VAT invoice, the obligation to provide personal data for the VAT invoice and the scope of the invoice is based on the provisions of the Law on Value Added Tax. Failure to provide personal data will prevent the issuance of a VAT invoice.

6. EXTERNAL PORTALS AND GROUP BOOKINGS

If a Guest participates in a group stay or has made a Reservation for a stay through a third-party booking portal, the Personal Information necessary to complete the stay is provided to the Controller by either the organizer of the group stay or the operator of the third-party booking portal. This usually includes identification and contact information, as well as information about the service purchased or booked.

7. ENTITIES TO WHICH PERSONAL DATA MAY BE TRANSFERRED

The Controller entrusts the performance of certain services to its service providers. Therefore, it may be necessary to disclose personal data to the extent necessary for a given service to entities cooperating in the provision of accommodation services, entities providing postal, courier, IT (including System maintenance), hosting, mailing, security, legal, payment or marketing services. Personal Data may be disclosed to the Controller's insurer if necessary for the settlement of a claim. Grzechowiak Górskie Apartamenty Zakopane Spółka z Ograniczoną Odpowiedzialnością transfers personal data to the following categories of entities:

  • companies providing IT support services to the facility and providing IT software,
  • transportation and cab companies in the event that the Guest orders transportation or courier service,
  • law firms providing legal advice and representation.

8. PERSONAL DATA PROCESSING PERIODS

Acquired in connection with a contract for the provision of hotel services will be processed for the period of the statute of limitations for tax claims or civil law claims, whichever is later. Obtained based on consent for marketing purposes will be processed for the validity period of the consent for marketing purposes.

 

Personal Data processed on the basis of consent will be processed until the consent is withdrawn. Personal Data recorded by the surveillance cameras will be kept for a maximum of 30 days, except that if the surveillance recordings constitute evidence in a proceeding under the law or may constitute evidence in a proceeding, the recordings will be kept until the proceeding is legally concluded.

The legal basis for processing the Guest's personal data used for marketing purposes is the Guest's consent. The Controller informs that consent can be withdrawn at any time. Withdrawal of consent does not affect the validity of processing that took place before the withdrawal of consent. In order to revoke your consent, please contact us at the contact information provided in point. 2.

9. GUEST'S RIGHTS IN CONNECTION WITH THE PROCESSING OF PERSONAL DATA

Each Guest has the right to access personal data rectification, deletion or restriction of processing. In addition, each Guest has the right to object to the processing.

10. THE POSSIBILITY TO LODGE A COMPLAINT IN RELATION TO THE PROCESSING OF PERSONAL DATA

Each Guest has the right to lodge a complaint in connection with the processing of his/her personal data to the supervisory authority, which is the President of the Data Protection Office, ul. Stawki 2 00-193 Warsaw.

11. REQUIREMENT TO PROVIDE PERSONAL DATA

Provision of personal data in terms of name, address, email address, car registration number in case of online bookings and telephone contact number is a requirement for entering into a contract for hotel services. Failure to provide personal data will prevent the Controller from providing the hotel service.

The data will be processed for the purpose of entering into and performing a contract for the provision of hospitality services (if you will be a party to that contract), for the purpose of fulfilling the legal obligations incumbent on the Controller (arising from tax, financial and reporting laws) and for the purpose of carrying out the Controller's legitimate interests, which are: checking into the room of a guest of the facility who is not a party to the contract for hotel services (e.g., an employee for whom the reservation is made by an employer, a family member for whom the reservation is made by the organizer of a celebration), improving the quality of services and satisfaction surveys, the The Controller's archival and statistical purposes, the defence or assertion of potential claims, including the handling of complaints and claims.

12. COOKIES

The facility's website uses cookies. These are small text files sent by the web server and stored by the browser's computer software. When the browser reconnects to the site, the site recognizes the type of device the user is connecting from. The parameters of these files allow only the server that created them to read the information contained in them. Cookies thus facilitate the use of previously visited sites.

The information collected relates to IP address, type of browser used, language, type of operating system, ISP, time and date information, location, and information sent to the site through the booking form. The data collected is used to monitor and see how users are using our sites in order to improve the site by providing a more efficient and seamless navigation experience. We monitor user information using the Google Analytics tool, which records user behaviour on the site. Cookies identify the user, allowing the content of the site they use to be tailored to their needs. We use cookies to guarantee the highest standard of convenience on our website, and the collected data are used only internally by our company to optimize operations.