Personal data protection
The means of managing the site are described in the section Our site's safety policies, which provides Information for data subjects in accordance with art. 13 of EU Reg. 679/2016, the European Regulation on the protection of personal data (hereinafter also “the Regulation"), for anyone interacting with the web services provided by the site but not also for any other websites consulted by the user through links.
In order to ensure maximum compliance with applicable privacy regulations the Company has established a specific organisation, described in the section Privacy Policies.
OUR SITE'S SAFETY POLICIES AND USER INFORMATION
This page describes the means of managing the site with regard to the processing of the personal data of the users consulting it.
Go to the section Privacy Policies to find out about the Owner, the list of Data Processors and the rights of data subjects (in accordance with arts. 15-22 of the Regulation).
Data provided voluntarily by the user
The optional, explicit and voluntary sending of emails to the addresses indicated on this site entails the subsequent acquisition of the sender's address, which is necessary to respond to requests, as well as any other personal data included in the email.
The above personal data will be processed solely in order to enable our Company, the Data Controller, to respond to questions, doubts or requests for clarification or to receive users' suggestions.
The data will not be distributed and may be known by collaborators of our Company who are specifically authorised to process them, in their capacity as Managers or Persons Responsible.
Privacy regulations (arts. 15-22 of the Regulation) guarantee you the right to access data concerning you at all times, as well as to correct and/or make additions to them, if they are inaccurate or incomplete, to delete them or to limit their processing, if the relevant conditions are present, to object to their processing for reasons linked to your particular situation, to the portability of the data provided by you, where processed in an automated manner for the contractual services requested by you, within the limits established by the Regulation (art. 20).
The Data Controller is Ottimo invest s.r.o. www.meznilouka.cz with registered office at Mezna 71, 405 02 Hrensko
The “Data Protection Officer" is at your disposal for any doubts or clarifications: to this end you can contact him at the indicated address of Hotel Mezni Louka at firstname.lastname@example.org which you can also contact, as well as to exercise your rights, to find out the updated list of categories of data recipients. This is without prejudice to your right to make a complaint to the Czech Italian Data Protection Authority where considered necessary to protect your personal data and your rights in this regard.
Specific summary information will be progressively provided or shown on the site's pages prepared for particular services at request.
The user is free to provide the personal data shown in the request forms or howsoever indicated in communications with the company Office to request the sending of informative material or other communications. Failure to provide these data could make it impossible to obtain what is requested.
The computer systems and software procedures used for the functioning of this website acquire, in the course of their normal operation, certain personal data the transmission of which is implicit in the use of internet communication protocols. These consist of information that is not collected in order to be associated with identified data subjects but that by its very nature could allow users to be identified through processing and association with data held by third parties. This category of data includes IP address or domain names of computers used by users who connect to the site, addresses in URI (Uniform Resource Identifier) notation of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the digital code indicating the status of the response given by the server (successfully completed, error, etc.) and other parameters relating to the user's operating system and computer environment. These data are used for the sole purpose of obtaining anonymous statistical information about the use of the site and for checking that it is functioning correctly and are periodically deleted. These data could be used to ascertain liability in the event of potential computer crimes.
Means of processing
Personal data are processed with automated tools for such time as is strictly necessary to achieve the objectives for which they are collected.
Specific security measures are observed to prevent the loss of data, illicit or incorrect use and unauthorised access.
Our Company processes the personal data of third parties – actual and potential clients, collaborators – always adopting all measures necessary to ensure the confidentiality and security of the data processed.
In application of application regulations with regard to the protection of personal data (Regulations), the organisation is as follows:
The Data Controller is Ottimo invest s.r.o. with registered office at Mezna 71, 405 02 Hrensko, which has nominated the managing director Sergiy Ustynov as the Delegate for the purposes of applying the regulations on privacy within the company.
In order to ensure compliance with regulations and privacy provisions, specific Process Owners have been identified for the various processing actions carried out within the internal organisational structure.
The Company also makes use of parties outside the organisation to whom it entrusts part of its production process;
Parties processing personal data are given specific instructions and receive a training plan and continuous updates;
The Company acquires only such personal data as are strictly necessary for carrying out the services requested or for the purposes for which they were collected, providing specific information;
In order to guarantee the exercising of the rights established by arts. 15-22 of the Regulation (access to information and other rights) and to provide further information with regard to the protection of personal data, each data subject may contact the Data Protection Officer at:
Ottimo invest s.r.o.
405 02 Hrensko
to obtain confirmation of the existence or otherwise of personal data concerning them, even if not yet registered, and their communication in intelligible form.
By contacting the Data Protection Officer the data subject can also:
obtain information about the origin, purposes and methods of processing of data concerning them;
obtain the deletion, transformation into an anonymous format or block of data processed in breach of the law, updating, correction and/or supplementation of data; obtain information about the parties or categories of parties to whom data are communicated or who could become aware of them in their capacity as Managers or Persons Responsible; obtain information about the parties who could become aware of the data in their capacity as Managers or Persons Responsible, including as a result of activities carried out by other companies of the Group on the basis of service contracts; request the portability of the data provided by them, where processed in an automated way for the contractual services requested by them, within the limits established by the Regulation (art. 20).
The list of information is given below
Information on the processing of data for contractual and commercial promotion purposes
INFORMATION FOR USERS ABOUT THE USE OF THEIR PERSONAL INFORMATION AND THEIR RIGHTS
Dear Sir/Madam, in order to comply with Art.13 EU Regulation n.679/2016 - General Data Protection Regulation (hereinafter also “the Regulation"), we would like to inform you that personal information regarding you and any people accompanying you that you provide by filling in the form on the back is collected and processed by our company, Ottimo invest s.r.o., in its capacity as data controller.
1. WHAT INFORMATION WE COLLECT
This information includes personal data (for example, first name, surname, home address, telephone numbers, IT addresses, date and place of birth, nationality, and information relating to identification documents) that we acquire from you when you fill in the registration form. The following categories of information may also be acquired:
• information of a sensitive nature related to health that is essential to check any of your requests (for example, illnesses or conditions relating to your state of health). Sensitive personal information includes information about a person's state of health, racial and ethnic origin, religious or philosophical beliefs, political opinions, membership of trade union organizations, as well as genetic and biometric data intended to uniquely identify a person.
In specific cases, where strictly necessary for purposes and on the basis of the above mentioned conditions, data relating to any criminal convictions or crimes may also be collected and processed by our company.
• information of a credit nature in order to assess your economic and financial solvency and related financial reliability
• behavioural information, which means information about actions taken or behaviour adopted when staying at our hotels including those involving misconduct and/or fraud (including but not limited to: customers with previous arrears with Hotel Mezni Louka, customers who are Ottimo invest s.r.o. debtors, customers who have committed acts of vandalism towards company property or who have committed other crimes, including against people, employees or guests of the hotel while staying in the hotels).
2. WHY WE REQUEST YOUR INFORMATION
A. Your information will be processed by Ottimo invest s.r.o. to manage the service you have requested and perform related obligations. This information must generally be given in order to provide the service and to manage and perform, in some cases it is required by law, regulations, or EU legislation. If this information is not provided, we may not be able to properly provide the service requested. Furthermore, your information may be processed for the purposes of checking and assessing your economic-asset solvency and related financial reliability also by consulting public databases managed by third parties (including but not limited to: Cerved, Cribis, etc.) and may be processed and stored in databases managed by Ottimo invest s.r.o. in order to:
• assess your financial/behavioural reliability by assigning specific alarm codes;
• prevent damage to property available to you and customers in assigned rooms and/or in common areas used by guests during their stay and any crimes in hotels, as well as to protect Ottimo invest s.r.o.´s legal rights in a court of law.
The data processing connected to these last two purposes is necessary for the pursuit of the legitimate interests of our Company and of the other companies in our Group to carry out the above mentioned activities.
Your information, in anonymous form, may also be used for internal statistical analysis.
3. HOW WE HANDLE YOUR INFORMATION
In pursuance of these aims, your information will not be distributed and will be processed by appropriate means, including the use of computerised and telematics procedures, and it may be known only by authorised staff in our company organisations that are responsible for providing the products and services that concern you and by external trusted parties who perform certain technical and organisational tasks for us, and who are data managers on our behalf.
Your personal information will be kept in full compliance with the security measures required by the legislation on the protection of personal data. For the purposes indicated in point A, it will be kept for the times prescribed by the legislation on the storing of documents for administrative, accounting, tax, contractual and insurance purposes (as a rule, 10 years).
4. WHAT YOUR RIGHTS ARE
Privacy laws (arts. 15-22 of the Regulation) guarantee you the right to access information concerning you at any time, to have it integrated and/or rectified, if it is inaccurate or incomplete, to cancel or limit its processing, if the conditions are met, to oppose its processing for legal reasons relating to your particular situation, and to the portability of the information you have provided, when processed using automated means for the contractual services you have requested, within the limits of the provisions of the Regulation (art. 20). You also have the right to revoke your consent to the processing of your information for the commercial purposes, by contacting the relevant manager - "Responsible for the data protection " - at email@example.com. The data controller is Ottimo invest s.r.o., with headquarters in Mezna 71, 405 02 Hresnko. The data protection manager is at your disposal if you have any doubts or require any clarification.