Privacy
Privacy policy
This Privacy Policy aims to inform guests and clients of Hotel “Dani Beach”, Sozopol, how their personal data is collected, used and protected.
Data Controller
Hotel “Dani Beach”
Address: Sozopol, Bulgaria
Contact email:
Phone:
Types of personal data we collect
The hotel may collect and process the following personal data:
- First and last name
- Personal identification number when required by law
- ID card or passport details
- Phone number
-Email address
- Reservation details such as stay dates number of guests preferences
- Payment information without storing full bank card details
Purposes of data processing
- Personal data is processed for the following purposes:
- Guest registration and accommodation
- Reservation management
- Issuing invoices and accounting documents
- Compliance with legal obligations under tourism and accounting legislation
- Communication with guests regarding their stay
- Improving the quality of services offered
- Legal basis for processing
Personal data is processed on the following legal grounds:
- Performance of a contract for accommodation services
- Legal obligations
- Explicit consent of the data subject where applicable
- Legitimate interest of the hotel
- Data retention period
- Personal data is stored only for the period necessary to fulfill the purposes for which it was collected
- Data is also stored in accordance with the retention periods required by applicable legislation
Disclosure of personal data to third parties
- Personal data may be disclosed to state or municipal authorities when required by law
- Data may be provided to accounting and IT service providers in compliance with data protection requirements
- Personal data is not disclosed to third parties for marketing purposes without explicit consent
Rights of data subjects
Each guest has the right:
- To access their personal data
- To request correction of inaccurate or incomplete data
- To request erasure of personal data when legal grounds apply
- To request restriction of processing
- To object to processing
- To data portability
- To lodge a complaint with the competent data protection authority
Security measures
- The hotel applies appropriate technical and organizational measures to protect personal data
- These measures aim to prevent unauthorized access loss alteration or disclosure of data
Changes to the privacy policy
This Privacy Policy may be updated in case of changes in legislation or hotel activities
The current version is available at the hotel premises and on the hotel website
Data Controller
Hotel “Dani Beach”
Address: Sozopol, Bulgaria
Contact email:
Phone:
Types of personal data we collect
The hotel may collect and process the following personal data:
- First and last name
- Personal identification number when required by law
- ID card or passport details
- Phone number
-Email address
- Reservation details such as stay dates number of guests preferences
- Payment information without storing full bank card details
Purposes of data processing
- Personal data is processed for the following purposes:
- Guest registration and accommodation
- Reservation management
- Issuing invoices and accounting documents
- Compliance with legal obligations under tourism and accounting legislation
- Communication with guests regarding their stay
- Improving the quality of services offered
- Legal basis for processing
Personal data is processed on the following legal grounds:
- Performance of a contract for accommodation services
- Legal obligations
- Explicit consent of the data subject where applicable
- Legitimate interest of the hotel
- Data retention period
- Personal data is stored only for the period necessary to fulfill the purposes for which it was collected
- Data is also stored in accordance with the retention periods required by applicable legislation
Disclosure of personal data to third parties
- Personal data may be disclosed to state or municipal authorities when required by law
- Data may be provided to accounting and IT service providers in compliance with data protection requirements
- Personal data is not disclosed to third parties for marketing purposes without explicit consent
Rights of data subjects
Each guest has the right:
- To access their personal data
- To request correction of inaccurate or incomplete data
- To request erasure of personal data when legal grounds apply
- To request restriction of processing
- To object to processing
- To data portability
- To lodge a complaint with the competent data protection authority
Security measures
- The hotel applies appropriate technical and organizational measures to protect personal data
- These measures aim to prevent unauthorized access loss alteration or disclosure of data
Changes to the privacy policy
This Privacy Policy may be updated in case of changes in legislation or hotel activities
The current version is available at the hotel premises and on the hotel website