Privacy Policy
This Privacy Policy regulates the use of the Internet portal service with the person responsible for identification purposes being:
• Responsible: Hotel Maisonnave, SL
• NIF: B31188238
• Address: Calle Nueva, 20 – 31001 Pamplona (Navarra)
• Telephone: (+34) 948222600
• Mail: informacion@hotelmaisonnave.es
• Data from the Commercial Registry of Navarra, volume 579, folio 9, page NA3569
The Controller guarantees compliance with current regulations on the protection of personal data, reflected in Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 regarding the protection of natural persons (RGPD). and in Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD). It also complies with Law 34/2002, of July 11, on Information Society Services and Electronic Commerce (LSSI-CE).
Principles, which do we apply in data processing? In the processing of your personal data, the Controller will apply the following principles that comply with the requirements of the RGPD:
• Principle of legality, loyalty and transparency: The Controller will always require consent for the processing of personal data, which may be for one or more specific purposes about which the Controller will inform the User in advance with absolute transparency.
• Principle of data minimization: The Controller will request only the data strictly necessary for the purpose or purposes for which it is requested.
• Principle of limitation of the conservation period: The Controller will keep the personal data collected for the time strictly necessary for the purpose or purposes of the processing.
• Principle of integrity and confidentiality: The personal data collected will be treated in such a way that its security, confidentiality and integrity is guaranteed. The Controller takes the necessary precautions to avoid unauthorized access or improper use of its users' data by third parties.
Purpose, why do we process your data? The personal data and the purpose of processing by the Controller are different depending on the information capture system:
• Contact forms: The Controller requests personal data which may include: name and surname, email address, telephone number and website address in order to respond to user queries.
• Newsletter form: Through your registration you authorize the Controller to send you commercial communications about the products and services related to the activity of the website managed by the Controller.
• Reservation form: To make the reservation, the Controller requests personal data which may include: name and surname, email address, telephone number, address, financial data in order to process your order.
ROOM RESERVATION | Category of data we collect | Purpose | Legal basis | Collection of your data |
| Name, surname, email, telephone number, country, day of birth, bank details. | We process your data to manage requested reservations, modifications and cancellations. Likewise, for the management of queries raised to HOTEL MAISONNAVE, SL in relation to the modification or cancellation of reservations. | Art. 6.1.b) of the RGPD which establishes that it will be lawful whenever it is necessary for the execution of a contract in which the interested party is a party or for the application of pre-contractual measures.
Art 6.1.b) of the RGPD which establishes that it is lawful when the treatment is necessary for compliance with a legal obligation applicable to the person responsible. | We collect data directly from you |
Email
| We process your data to send commercial communications that will be sent by HOTEL MAISONNAVE, SL about the services offered. | Art. 6.1a) of the RGPD which establishes that through the consent of the interested party, personal data can be processed for one or more specific purposes. | We collect data directly from you |
| Name, email, phone | We process your data provided in the contact forms to manage user requests. | Art. 6.1a) of the RGPD which establishes that through the consent of the interested party, personal data can be processed for one or more specific purposes. | We collect data directly from you |
Recipients of your data Only HOTEL MAISONNAVE, SL
Completing the registration form will be mandatory to access and enjoy certain services offered on the website. Failure to provide the requested personal data or failure to accept this data privacy policy means the impossibility of registering, subscribing or participating in any of the promotions in which personal data is requested.
Data provenance Where do we get your data from? The personal data collected comes directly from the information offered by the interested parties through the Controller's website. To navigate the Website it is not necessary to provide any personal data.
The Controller obtains your data:
• By contacting us through the contact forms, reservation form or sending an email.
• By subscribing to the newsletter.
Legitimation, What is the legitimacy for the processing of your data? The legal basis for the processing of your data will be based on:
• The consent of the interested party, for the processing of their data, in accordance with article 6. 1. a) of the European General Data Protection Regulation. It is understood that the user accepts this privacy policy by enabling the
“I have read and accept the privacy policy” box found on the data collection forms, or if a message is sent by email to the contact addresses indicated. They appear on the website.
• The necessary execution of a contract in which the interested party is a party or for the application at his request of pre-contractual measures, in accordance with article 6. 1. b) of the European General Data Protection Regulation.
You may revoke your consent in accordance with article 13.2. c) of the RGPD 679/2016. It is an order given by the owner of the data to the Data Controller notifying him/her that he/she is withdrawing the consent granted.
Recipients To whom do we communicate your data? Personal data will not be transferred except in compliance with legally established obligations or to support the services linked to this processing.
Cookies policy For this website to function correctly it needs to use cookies, which is information that is stored in your web browser.
You can consult all the information related to the policy for collecting and processing cookies on the Privacy Policy page.
Rights, what are your rights when you provide us with your data? As a consequence of the processing of your personal data by the Controller, current legislation grants you a series of rights. Below, we offer you a summarized explanation of each right, to facilitate your exercise:
Right of access : You will have the right to know the personal data that we process about you and the purposes for which we process it. Regulated in article 15 of RGPD 679/2016.
Right to rectification : Your data will always be yours, and as such, you can ask us to rectify it at any time if the information in our records is erroneous. Regulated in article 16 of RGPD 679/2016.
Right of deletion : It consists of asking the data controller to delete any information about the person of the data owner. Deletion implies blocking all data and keeping it available to public administrations during the period established for the right to take legal action to expire. Regulated in article 17 of RGPD 679/2016.
Right to object : You may object to the processing of your data in relation to any of the purposes for which we process your data, in accordance with the privacy policies applicable in each case. Regulated in article 21 of RGPD 679/2016.
Right to limit processing : Regulated in article 18 of RGPD 679/2016. You may request the limitation of treatment in the following cases:
• If you believe that the data we hold about you is not correct or accurate.
• Yes, in the event that you consider that we are not processing your data legitimately, but you prefer that we limit its processing to its deletion.
• If the data we maintain is no longer necessary for us according to the purpose for which we collected it, but you need us to retain it to file legal claims.
• If, having exercised the right to object to any processing, a response is pending from us.
Right to portability of your data : You will have the right, whenever technically possible and reasonable, to request that the personal data that you have provided to us directly be communicated to another person responsible for the processing. If possible, we will provide your data directly to said other controller, but if this is not possible, we will provide it to you in a standard format. Regulated in article 20 of RGPD 679/2016.
The exercise of the rights held may be made effective by contacting the Controller through any of the following means:
1. By email addressed to the corresponding Data Controller, contemplated in the heading of the document.
2. Postal mail addressed to the corresponding Data Controller, contemplated in the heading of the document.
If you do not want to exercise a specific right, but have the need to make a query or suggestion regarding the processing of your personal data, you may also contact the corresponding Data Controller.
Claim before the Control Authority If you understand that your rights have been neglected by our entity, you can file a claim with the Spanish Data Protection Agency, through any of the following means:
• Electronic office: www.agpd.es
• Postal address: C/ Jorge Juan, 6, 28001, Madrid
• By telephone: Tel: 901 100 099/ 912663517
Filing a claim with the Spanish Data Protection Agency does not entail any cost and the assistance of a lawyer or attorney is not necessary.
Minor consents, what happens if you are a minor? In the event that some of our services are specifically aimed at children under fourteen years of age, we will request the consent of parents or guardians for the collection of personal data or, where appropriate, for the automated processing of data in accordance with article 7 of the LOPDGDD.
Accuracy, veracity and security of data, how do we process your data? The User is solely responsible for the veracity and correctness of the data included, exonerating us from any responsibility in this regard. Users guarantee and are responsible, in any case, for the accuracy, validity and authenticity of the personal data provided, and undertake to keep it duly updated. The user agrees to provide complete and correct information in the registration or subscription forms. We will not be responsible for the veracity of information that is not our own creation and for which another source is indicated, so we do not assume any responsibility for hypothetical damages that may arise from the use of said information.
We will also reserve the right to update, modify or delete the information contained on the website and may even limit or not allow access to said information.
We will not be responsible for any damage or harm that the User may suffer as a result of errors, defects or omissions, in the information provided by the person responsible, provided that it comes from outside sources.
The data will be treated confidentially and subject to appropriate technical and organizational security measures to prevent its alteration, loss, processing or unauthorized access.