NOU HOSTAL SA TUNA, SL, informs website users about its policy regarding the processing and protection of personal data of users and customers.
And it guarantees at all times the full and complete compliance with the obligations set out by the regulations on data protection and information society services: Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR), Organic Law 3/2018 of 5 December on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD) and Law 34/2002 of 11 July on Information Society Services and Electronic Commerce (LSSice).
DATA CONTROLLER
NOU HOSTAL SA TUNA, SL
CIF: B55314900
Address: PASSEIG DE L'ANCORA, 8 PLATJA SA TUNA – 17255 – BEGUR (GIRONA)
COMMERCIAL REGISTRY: VOLUME 3192, BOOK 0, FOLIO 65, SHEET GI-63717, ENTRY 1
Telephone: 972622229
Email: administracion@hostalsatuna.com
DATA RECIPIENTS
To fulfill the purposes indicated in this Privacy Policy, it is necessary for us to grant access to your personal data to third parties who support us in the services we offer you (Data Processors), namely: – Financial entities – Technology service providers – Logistics, transport, and delivery service providers and partners – Marketing and advertising service providers and partners. The Data Processors process your data for the execution of a contract or the provision of a service to the Data Controller, following its instructions at all times and ensuring the same levels of security.
COOKIES
Regarding the use of cookies and other tracking technologies, please refer to this website's Cookie Policy. In this case, the legal basis for processing your data is the consent you give by accepting the installation of cookies in your browser.
USER RIGHTS
The user has the right to:
Request access to your personal data that is being processed and receive this information in writing through the requested means.
Request the rectification of inaccurate personal data or, where appropriate, request its deletion when, among other reasons, the data is no longer necessary for the purpose for which it was collected.
Request the limitation of the processing of your data.
To object to the processing of your personal data where appropriate, in which case your data will no longer be processed except for legitimate reasons.
Right to data portability of your personal data when the processing is based on consent and is carried out by automated means. The data will be delivered in a structured, commonly used and machine-readable format.
Right to withdraw consent given.
Right to file a complaint with the Spanish Data Protection Agency.
The User may exercise the aforementioned rights by sending a postal or electronic email address to the Responsible party, proving their identity with a scanned copy of their ID card or equivalent document, and specifying the right they wish to exercise.
DATA SOURCE
Personal data will be provided by the data subject entirely voluntarily. Failure to provide certain data or answer questions that may be asked during the registration process or on the various electronic forms presented to the User may prevent access to certain services for which the provision of personal data is essential. In such cases, the Data Controller will inform the User of the mandatory and/or necessary nature of providing personal data for the service to function. The Data Controller assures the confidentiality of your personal data and guarantees its security, adopting the necessary measures to prevent its alteration, loss, unauthorized processing, or access.
INFORMATION PROVIDED BY THE USER
Individuals under 18 years of age may not provide their personal data without the prior consent of their parent(s) and/or legal guardian(s). By entering their data in the contact forms or download forms, Users expressly, freely, and unequivocally accept that their data is necessary for the Data Controller to process their request. Providing data in the remaining fields is voluntary. The User guarantees that the personal data provided is truthful and is responsible for communicating any changes to it. All data requested through the website is necessary to provide the User with optimal service. If all the data is not provided, the Data Controller cannot guarantee that the information and services provided will be fully tailored to the User's needs.
SECURITY MEASURES
In accordance with current regulations on the protection of personal data, the Data Controller is complying with all provisions of the GDPR and the LOPDGDD regulations for the processing of personal data under its responsibility, which is processed lawfully, fairly and transparently in relation to the data subject and is adequate, relevant and limited to what is necessary in relation to the purposes for which it is processed. The Data Controller guarantees that it has implemented appropriate technical and organizational policies to apply the security measures established by the GDPR and the LOPDGDD in order to protect the rights and freedoms of Users and has provided them with the appropriate information so that they can exercise those rights.
SECURITY GAPS
The Data Controller will report any security breach affecting the database used by this website, or affecting any of our third-party services, to each and every person whose data may have been affected, and to the relevant authorities, within 72 hours of detecting the breach.
APPLICABLE LAW AND JURISDICTION
The right is reserved to take any civil or criminal action deemed necessary for the misuse of the Website and Content.
The relationship between the User and the Data Controller shall be governed by the laws in force and applicable in Spain. Any dispute arising in connection with the interpretation and/or application of these laws shall be submitted to the ordinary courts of law, subject to the jurisdiction of the competent courts and tribunals.