At Notiz Hotel, we are committed to maintaining the trust and confidence of our guests. Most importantly, we like to express that Notiz Hotel is not in the business of selling data. We have strict rules and reasons on why we collect the personal data that we do, how we use this data, the limited conditions under which we may disclose it to others, and how we keep it secure.
The data we collect
When you book a room directly on our website you will be asked for your last name, email address, ID or passport number, and credit card details which we require in order to make the booking valid. Additionally you will have the option to provide extra information like the first name, nationality and any other requests or remarks you may have which helps us to provide a more personalized experience to you.
When choosing to be part of our mailing list, we gather statistics around email opening and clicks using industry standard technologies that help us monitor and improve our content of these mails. Unsubscribing to our mailings can be done at any time by clicking the unsubscribe link at the bottom of our emails, or by emailing email@example.com.
Internal Catering Request Data
When making an internal catering request you will have to make an account. The account made stores previous made orders, your email-address in case there is an update or change with regards to a request made, and the company related to the request. The creation of this account and the data related to this, is purely stored for your convenience as it will ease the process of making a request. If you wish to have this data removed at any point, please send a mail to firstname.lastname@example.org.
We have always taken reasonable action to protect all our stored personal data, and of course we want to continue this practice. That is why all of the companies we work with have state-of-the-art security measures in place to protect the personal data from loss, alteration or any other form of unlawful use. We administer which company stores what data, and restrict the access to this data to a limited amount of people.
Reason and legal basis
For your convenience, we have created an overview of our purposes and activities with regards to your data, and the legal basis we have for collecting and or processing this data:
Purpose / Activity
We store personal data disclosed by you to us in our systems for administrative purposes, and we require this data in order for you to make use of our services and facilities
We are legally obliged to ask you to provide us with certain information when you arrive at Notiz Hotel. This may include information such as date of birth, place of residence, date of arrival, and nationality.
Compliance to authorities / legal Obligation
When you arrive at Notiz Hotel, we will have to verify your identity in which case we will ask for an identification document, be it a passport or otherwise. We will not store a copy of your passport or other document, unless to the extent permitted by law.
Your personal data will be stored in our database(s), also after your transaction has been completed and after your stay in Notiz Hotel, in order to comply with data retention obligations by law and to be able to contact and welcome you again in the future.
We create a profile specifically based on the information disclosed by you.
We offer and provide services you request from us or which we may think you are interested in, via email, telephone or other media. You can subscribe to our mailing list, which contains commercial offers and other Notiz Hotel related news. We use the email address you provide to send the newsletter to. If this is no longer wished, an unsubscribe button is provided in the bottom of every mail.
We use credit card data or other payment data for invoicing purposes.
We collect statistical information through cookies for research purposes
We strive to provide a high level of security for both the information we store as well as our facilities, systems and premises, by means of encryption, physical security measures, passwords, company procedures and policies and professional IT support. Personal data may be processed in this context by Notiz Hotel.
We engage in activities required for compliance with legal obligations, third party claims or requests from public authorities, such as the mandatory storage/containment of certain information because of a criminal investigation, requests from third parties for access to information, and instructions from supervisory authorities, that involve data processing.
Naturally, with all this stored personal information about you there are several rights that you have. Underneath you will find the rights along with a brief explanation of it, and how this is applied in Notiz Hotel.
The right to be informed
The right of access
If you want to know what personal data we have collected or what we process from you, you are entitled to request a copy of this data by sending an email to email@example.com. Self-evidently, you will be asked to identify yourself.
The right of rectification & erasure
You have to right to request us to change or remove personal data or restrict certain processing activities if you believe the processing of this data is incorrect, incomplete, not relevant, inaccurate, unlawful, or if you think the data is stored longer than necessary. To do this, send a mail to firstname.lastname@example.org.
The right to data portability
You have the right to receive your personal data which you have provided to us in a structured, commonly used and machine readable format, in accordance with section 20 of the General Data Protection Regulation.
The right to object
You have the legal right to object, on grounds relating to your particular personal situation, at any time to processing of your personal data which is based on the legal basis of either point (e) or (f) of section 6(1) of the General Data Protection Regulation (i.e. the performance of a task carried out in the public interest; the purposes of our, or a third party's, legitimate interests) including profiling based on those provisions [see the Schedule under clause 4 of this Privacy Statement]. We will only cease the processing if so required under section 21(1) of the General Data Protection Regulation. Furthermore, you have the right to object at any time to our processing of your personal data for direct marketing purposes by either (i) opting out by using the option we provide in the relevant direct marketing message (e.g. an email newsletter), or (ii) by sending an email to email@example.com. For the sake of clarity: without prejudice to the foregoing we are at all times entitled to send you messages that do not constitute direct marketing.