WEBSITE PRIVACY POLICY
Article 1 – PREAMBLE
This privacy policy applies to the website www.hotel-lideal.fr and all its subdomains. The purpose of this privacy policy is to inform users of the site about:
How their personal data is collected and processed. Personal data is considered to be any data that can identify a user. This includes first and last name, email address, user location, or IP address;
What are the rights of users regarding this data;
Who is responsible for the processing of personal data collected and processed;
To whom this data is transmitted;
Possibly, the site’s policy regarding “cookies” files.
This privacy policy complements the legal notice and the General Terms of Use that users can consult on the website.
Article 2 – GENERAL PRINCIPLES ON DATA COLLECTION AND PROCESSING
In accordance with the provisions of Article 5 of European Regulation 2016/679, the collection and processing of site users’ data comply with the following principles:
Lawfulness, fairness, and transparency: data can only be collected and processed with the consent of the user who owns the data. Whenever personal data is collected, the user will be informed that their data is being collected and for what reasons their data is being collected;
Limited purposes: data collection and processing are carried out to meet one or more objectives set out in these general terms of use;
Minimization of data collection and processing: only data necessary for the proper execution of the objectives pursued by the site is collected;
Limited data retention period: data is kept for a limited period, of which the user is informed.
Integrity and confidentiality of collected and processed data: the data controller undertakes to guarantee the integrity and confidentiality of the data collected.
In order to be lawful, and in accordance with the requirements of Article 6 of European Regulation 2016/679, the collection and processing of personal data may only take place if they comply with at least one of the conditions listed below:
The user has expressly consented to the processing;
The processing is necessary to fulfill a legal obligation;
Article 3 – PERSONAL DATA COLLECTED AND PROCESSED IN THE CONTEXT OF NAVIGATION ON THE SITE
The data controller will keep in the site’s computer systems and under reasonable security conditions all the data collected for a maximum period of 3 years.
3.1 – PERSONAL DATA COLLECTED AND PROCESSED
The personal data collected on the website www.hotel-lideal.fr are as follows:
– Civil status, identity, identification data, (e.g., name, first name, address, email, etc.)
– Connection data (e.g., IP addresses, logs, device identifiers, login identifiers, timestamp information, etc.)
3.2 – METHOD OF COLLECTING PERSONAL DATA
This data is collected when the user performs one of the following operations on the website:
– Browsing the website
– Sending a message via the contact form
Article 4 – PURPOSE OF PERSONAL DATA PROCESSING
The collection and processing of data respond to the following purposes:
– Statistical monitoring of visitors.
– Management and follow-up of messages from our customers or prospects
And more generally, all activities related to the sale of services or products in connection with the information presented on the website.
Article 5 – DATA TRANSMISSION TO THIRD PARTIES
When navigating the Site, users’ personal data may be transmitted to external service providers.
We will never share your personal data with third-party companies for marketing and/or commercial purposes without obtaining your prior consent.
We may be required to disclose your personal data to administrative or judicial authorities when their disclosure is necessary for the identification, arrest, or prosecution of any individual likely to prejudice our rights, any other user, or a third party. We may finally be legally required to disclose your personal data and cannot in this case oppose it.
Article 6 – DATA HOSTING
The website www.hotel-lideal.fr is hosted by 1 & 1 Internet, whose headquarters are located at the following address:
7, place de la Gare 57201 Sarreguemines
The host can be contacted at the following phone number: 0970 808 911
The data collected and processed by the site is exclusively hosted and processed in European Union countries.
Article 7 – DATA CONTROLLER AND DATA PROTECTION OFFICER
7.1 – THE DATA CONTROLLER
The data controller for personal data is: Damien HUE. He can be contacted as follows: By phone at 02 31 22 59 70 from Monday to Friday from 09:00 to 12:00 and from 14:00 to 18:00 or by email at the following address: contact@hotel-lideal.fr
The data controller is responsible for determining the purposes and means used for the processing of personal data.
7.2 – OBLIGATIONS OF THE DATA CONTROLLER
The data controller undertakes to protect the personal data collected, not to transmit it to third parties without the user being informed, and to respect the purposes for which this data was collected.
The site has an SSL certificate to ensure that information and data transfer passing through the site are secure. An SSL (“Secure Socket Layer”) certificate aims to secure the data exchanged between the user and the site.
In addition, the data controller undertakes to notify the user in case of rectification or deletion of data, unless this would result in disproportionate formalities, costs, and steps. In the event that the integrity, confidentiality, or security of the user’s personal data is compromised, the controller undertakes to inform the user by any means.
Article 8 – USER RIGHTS
In accordance with the regulations concerning the processing of personal data, the user has the rights listed below.
In order for the data controller to comply with their request, the user is required to communicate: their first and last name as well as their email address, and if relevant, their account or personal space number or subscriber number. The data controller is obliged to respond to the user within 30 (thirty) days maximum.
8.1 – PRESENTATION OF USER RIGHTS REGARDING DATA COLLECTION AND PROCESSING
1. Right of access, rectification and right to erasure
The user can become aware of, update, modify or request the deletion of data concerning them, by following the procedure below: the user must send an email to the personal data controller, specifying the subject of their request and using the contact email address provided above. If they have one, the user has the right to request the deletion of their personal space by following this procedure: the user must send an email to the personal data controller, specifying their personal space number. The data deletion request will be processed within 30 working days.
2. Right to data portability
The user has the right to request the portability of their personal data, held by the site, to another site, by complying with the following procedure: the user must make a request for portability of their personal data to the data controller, by sending an email to the address provided above.
3. Right to limitation and opposition of data processing
The user has the right to request the limitation or to oppose the processing of their data by the site, without the site being able to refuse, except to demonstrate the existence of legitimate and compelling reasons, which may prevail over the interests and rights and freedoms of the user. In order to request the limitation of the processing of their data or to formulate an opposition to the processing of their data, the user must follow the following procedure: the user must make a request for limitation of the processing of their personal data to the data controller, by sending an email to the address provided above.
4. Right not to be subject to a decision based exclusively on automated processing
In accordance with the provisions of Regulation 2016/679, the user has the right not to be subject to a decision based exclusively on automated processing if the decision produces legal effects concerning them, or similarly significantly affects them.
5. Right to determine the fate of data after death
The user is reminded that they can organize what should become of their collected and processed data if they die, in accordance with Law No. 2016-1321 of October 7, 2016.
6. Right to refer to the competent supervisory authority
In the event that the data controller decides not to respond to the user’s request, and the user wishes to contest this decision, or, if they believe that one of the rights listed above is being infringed, they are entitled to refer to the CNIL (Commission Nationale de l’Informatique et des Libertés, https://www.cnil.fr) or any competent judge.
Article 9 – PERSONAL DATA OF MINORS
In accordance with the provisions of Article 8 of European Regulation 2016/679 and the Data Protection Act, only minors aged 15 or over can consent to the processing of their personal data.
If the user is a minor under 15 years of age, the agreement of a legal representative will be required for personal data to be collected and processed.
The site editor reserves the right to verify by any means that the user is over 15 years of age, or that they will have obtained the agreement of a legal representative before browsing the site.
Article 10 – CONDITIONS FOR MODIFYING THE PRIVACY POLICY
This privacy policy can be consulted at any time on the website.
The site editor reserves the right to modify it in order to guarantee its compliance with the law in force.
Therefore, the user is invited to regularly consult this privacy policy to keep informed of the latest changes that will be made to it.
The user is informed that the last update of this privacy policy occurred on 25/05/2018.
Article 11 – USER ACCEPTANCE OF THE PRIVACY POLICY
By browsing the site, the user attests to having read and understood this privacy policy and accepts its conditions, particularly with regard to the collection and processing of their personal data.