Privacy policy Käringön
Adopted 2019-06-21, version: 1.0
This privacy policy describes how Skeppersholme Hotell & Restaurang AB (reg. no. 556982-1613), hereinafter "SHR AB", processes personal data within the scope of the business. "Personal data" refers to all information that can be directly or indirectly linked to a living natural person. Please read this Privacy Policy carefully to understand how and for what purposes we process personal data.
We process personal data when our services are used, e.g. when booking rooms at the hotel or hostel, tables at restaurants or when booking activities. We protect the individual's privacy and at all times comply with applicable legislation that aims to protect the individual's rights.
SHR AB is responsible for personal data
SHR AB is the personal data controller for the processing that takes place regarding personal data within the framework of the business's services and is responsible for such processing taking place in accordance with applicable legislation.
Who does the policy apply to?
This Privacy Policy is primarily applicable to individuals who live at the hotel or hostel and whose personal data we process. Different parts of this Privacy Policy may also be relevant to you with a different relationship to SHR AB. In summary, it can be said that this policy applies to people who:
-
are guests of our hotel or hostel
-
book a stay at our restaurant
-
arrange meetings or events in our premises
-
visits our website or interacts with us on social media
-
communicates with us in other ways, for example with our booking department
What personal data is handled?
In the case of a booking made by or for a private person, saved; name, phone number and email address. In cases where a person books as an employee of a company, the company name and, in some cases, also the postal address of the company are also saved. As long as the guest remains in the booking register, previous bookings linked to the guest will also remain. By law, we must retain certain information in order to report what and to whom we have sold a service.
Why is the data saved?
The reason why we receive and process personal data is that the data is needed for necessary communication with guests who have completed a booking. In order for it to be permitted to process personal data, there must always be a support in the GDPR, a so-called legal basis. Such a legal basis is e.g.
• a consent of the data subject.
• that the processing of personal data is necessary to fulfill an agreement with the data subject, for example an agreement on the use of services.
• to fulfill a legal obligation, for example regarding saving data due to accounting obligations.
• to make the assessment after a balance of interests that SHR AB's interest in processing a personal data is greater than the data subject's interest in protection for it.
How long is the personal data saved?
Personal data is only saved for a limited time during which there is a need to fulfill the purposes for which the data was collected. After the guest has visited us, we retain the data for a limited time to provide the opportunity for follow-up. Normally, the data is saved for twelve months. Skeppersholme Hotell & Restaurang may save the data longer if necessary to comply with legal requirements or to protect legal interests.
Measures for the protection of personal data
We at SHR AB have ensured that we have taken appropriate technical and organizational measures to protect your personal data against, among other things, loss, misuse and unauthorized access. In order to technically ensure that personal data is processed in a secure and confidential manner, we use digital networks that are protected from intrusion using, for example, encryption, firewalls and password protection. In the event that a breach takes place, routines for identification, damage minimization and reporting have been laid down. Finally, SHR AB has also developed a functioning routine to satisfy the rights of the registered, including the right to be removed from the register. In order to ensure a good level of knowledge regarding the processing of personal data, ongoing training is arranged within GDPR.
The data subject's rights
The guest has the right to request information about which data is registered, to have their data deleted and to correct any inaccuracies. SHR AB is the personal data controller for the handling of the guest's personal data. If the guest wants additional information about how the personal data is handled, SHR AB is contacted by means of a written, personally signed request sent to:
Skeppersholme Hotel & Restaurant AB
BOX 4135
474 04 Käringön
In the letter, name, address, e-mail, telephone number and social security number are stated in addition to the current case. A copy of valid identification must also be attached. Answers will be sent to the last registered address.