🇬🇧 Privacy Policy for Clients users of the MyDigitalHotel Web Application

Last revised: 10/05/2022

The purpose of this Privacy Policy is to inform and present to customers and users of the MyDigitalHotel solution how GUEST TRAVEL EXPERIENCE processes personal data collected as part of the conclusion of the contract with the customer and for the use of the Web Application, as data controller.
The use of the solution also implies the processing by GUEST TRAVEL EXPERIENCE of the personal data of the client's employees (hotel managers) using the web application

Description of processing: what processing of personal data and why?

  • Personal data concerning the customer collected during the conclusion and execution of the contract:

GUEST TRAVEL EXPERIENCE collects and processes personal data concerning the legal representative and his interlocutors within the client (hotel or hotel chain) for the conclusion and execution of the contract as follows:

FOR THE CONCLUSION AND EXECUTION OF THE CONTRACT

  • Personal data collected:

Gender, surname and first name; function ; professional contact details (address, email address, telephone number); payment data; exchanges within the framework of the conclusion of the contract and its execution, registration of the company.

  • Purposes of processing:

Pre-contractual exchanges, conclusion of the contract, details of the service subscribed, management of invoicing and payment, communications with the customer for the execution of the contract, monitoring of the customer relationship, management of any complaints.

Retention of data for the purpose of meeting accounting obligations

Retention of data for evidential purposes (for the exercise or defense of legal rights.

  • Legal basis:

Legitimate interests of GUEST TRAVEL EXPERIENCE for the exercise of its commercial and prospecting activity.

  • Storage and archiving period:

Storage for the duration of the contract.

Archiving for a period of 5 years from the end of the relationship and 10 years for invoices.

FOR PROSPECTING PURPOSES

  • Personal data collected:

Gender, surname and first name; function ; business contact.

  • Purposes of processing:

Sending information or promotional emails, recontacting the customer after the end of the contract, carrying out statistical studies.

  • Legal basis:

Performance of the contract. Invoices: legal obligations (accounting).

Other data kept for evidentiary purposes: Legitimate interests of GUEST TRAVAL EXPERIENCE for the defense of its rights.

  • Storage and archiving period:

Storage for the duration of the contract then 3 years from the date of termination of the contract or the last contact from the customer unless the customer objects.

The data listed above is mandatory because it is necessary for GUEST TRAVEL EXPERIENCE to implement the purposes specified above.

  • Use of the solution:

GUEST TRAVEL EXPERIENCE collects and processes personal data concerning the customer's employees (hotel managers in particular) having an account on the MyDigitalHotel web application:

FOR THE CREATION AND MANAGEMENT OF THE ACCOUNT

  • Personal data collected:

Last name, first name, login credentials.

  • Purposes of processing:

Pre-contractual Manage access and use of the MyDigitalHotel solution by users and the provision of services, in accordance with the contract signed by the customer with GUEST TRAVEL EXPERIENCE.

  • Legal basis:

Performance of the contract.

  • Storage and archiving period:

Duration of the contract + 1 year from the date of termination (unless requested for early termination) in order to allow the Customer to restore this Data in the event of a new Order within this period.

FOR LOGIN TO THE APPLICATION

  • Personal data collected: Connection logs.

  • Purposes of processing:

Monitor and analyze web application traffic for improvement. Manage technical incidents.

  • Legal basis: Legitimate interests of GUEST TRAVEL EXPERIENCE.

  • Storage and archiving period: 6 months.

The mandatory or optional nature of data entry is specified during collection. The mandatory communication of certain personal data is necessary for GUEST TRAVEL EXPERIENCE to implement the purposes specified above.

Recipients of personal data:

Data controller: the controller of this data is the company GUEST TRAVEL EXPERIENCE, whose full contact details appear in the legal notices of the application.

Recipients: in compliance with the purposes set out above, the user's personal data may be communicated to the staff of GUEST TRAVEL EXPERIENCE and to the technical suppliers of GUEST TRAVEL EXPERIENCE and (host, developer, payment provider, email provider ) acting as subcontractors, as well as to the payment service provider and the banking establishment managing the payments and, where applicable, to its advisers.

Certain GUEST TRAVEL EXPERIENCE service providers may transfer data outside the European Union on the basis of the standard contractual clauses of the European Union (copy available on request).

  • Rights of the customer or user on his personal data:

Customer interlocutors and users whose data is collected by GUEST TRAVEL EXPERIENCE have the following rights over their personal data at all times:

Right of access: obtain confirmation of the processing of his personal data as well as a certain amount of information on the processing, it being understood that this information is in any case given in this personal data protection policy;

Right of rectification: obtain the rectification of personal data when they are inaccurate or incomplete;

Right to erasure (“right to be forgotten”): obtain the erasure of personal data when they are no longer necessary with regard to the purposes for which they were collected or in the event of opposition to the processing of their personal data.

The right to erasure is not enforceable in the cases provided for in Article 17.3 of the GDPR. In particular, this right is not open as long as the user or the customer wishes to use the solution and benefit from the subscribed services, this personal data being necessary for GUEST TRAVEL EXPERIENCE for the management of the contract and the provision of the service.

Right to limitation of processing: obtain the limitation of the processing of his personal data, in particular in the event of dispute of the accuracy of the data, when the period of conservation of the data has come to an end but the person whose data is processed still needs to retain this personal data for the establishment, exercise or defense of legal claims;

Right to portability: obtain the communication of the personal data communicated to GUEST TRAVEL EXPERIENCE in a readable format, or ask GUEST TRAVEL EXPERIENCE to transmit the personal data communicated to another data controller;

Right of opposition: to object at any time, for reasons relating to his personal situation, to the processing of his personal data based on the legitimate interest of GUEST TRAVEL EXPERIENCE, in particular in the case where this opposition concerns prospecting commercial, unless there is a compelling reason for GUEST TRAVEL EXPERIENCE

Right to lodge a complaint: lodge a complaint with the National Commission for Computing and Liberties if the person whose data is processed considers that the processing carried out by GUEST TRAVEL EXPERIENCE constitutes a violation of his personal data.

Right to define the directives relating to the fate of his personal data after his death.

These rights can be exercised at any time with GUEST TRAVEL EXPERIENCE:

By email at the following address: guesttravelexperience@gmail.com

By post to the following address: App C02 - 18 rue Joseph Clerissy, 13012 MARSEILLE