Перейти к содержимому

DDR – Desert Dunes Resort

Logo

Jutello Eventos
Меню

Privacy Policy

 

 

1. Introduction

 

DDR – Desert Dunes Resort («we,» «us,» or «our») is the data controller responsible for the processing of your personal data. We are committed to protecting your privacy and handling your data transparently and securely. This Privacy Policy outlines how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679.

 

2. What Data We Collect

 

We collect and process various types of personal data, which can include:

  • Identity Data: Your first name, last name, date of birth, gender, and nationality. We also collect passport or national ID details upon check-in as required by law.

  • Contact Data: Your email address, phone number, and residential address.

  • Financial Data: Your credit card or debit card details for payment purposes. We use a secure third-party payment processor and do not store your full card details on our servers.

  • Reservation Data: Details about your booking, including dates of stay, room preferences, and special requests.

  • Technical Data: Your Internet Protocol (IP) address, browser type and version, time zone setting, location, and operating system.

  • Usage Data: Information about how you use our website, including the pages you view, links you click, and the time and duration of your visit.

 

3. How and Why We Use Your Data

 

We process your data for the following purposes and on the stated legal bases under GDPR:

  • To Manage Reservations and Provide Services (Contractual Necessity): We use your Identity, Contact, and Reservation Data to process your booking, manage your stay, and provide the services you have requested, such as check-in, check-out, and room service.

  • To Process Payments (Contractual Necessity): We use your Financial Data to process payments for your reservations and any other services you purchase from us.

  • For Communication (Legitimate Interest): We use your Contact Data to communicate with you about your reservation, send booking confirmations, and respond to your inquiries.

  • For Marketing Communications (Consent): If you have opted in, we will use your email address to send you our newsletter and special offers. You have the right to withdraw your consent at any time by clicking the unsubscribe link in our emails.

  • To Improve Our Website (Legitimate Interest): We use Technical and Usage Data to analyze website performance, understand user behavior, and improve the user experience.

  • For Legal and Regulatory Compliance (Legal Obligation): We may process your data to comply with legal obligations, such as for guest registration with government authorities or for accounting and tax purposes.

 

4. How We Share Your Data

 

We do not sell, rent, or trade your personal data. We only share your data with trusted third parties under specific circumstances:

  • Service Providers: We share data with third-party service providers who help us operate our business, such as payment processors, IT service providers, and booking engine platforms. These providers are contractually obligated to protect your data and are not permitted to use it for their own purposes.

  • Third-Party Analytics: We use Google Analytics to collect anonymous data about website usage to help us improve our services.

  • Legal Requirements: We may disclose your data if required by law or to respond to a valid legal request from a government or law enforcement authority.

 

5. Your Data Rights

 

Under the GDPR, you have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you.

  • Right to Rectification: You can request that we correct any inaccurate or incomplete data.

  • Right to Erasure («Right to Be Forgotten»): You can ask us to delete your personal data in certain circumstances.

  • Right to Restrict Processing: You can ask us to limit how we use your data.

  • Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format.

  • Right to Object: You can object to the processing of your data for specific purposes, such as direct marketing.

To exercise any of these rights, please contact us using the details below.

 

6. Data Security

 

We implement robust technical and organizational measures to protect your personal data from unauthorized access, loss, or alteration. These measures include data encryption, firewalls, and secure access controls. Despite these efforts, no method of transmission over the internet is 100% secure.

 

7. Data Retention

 

We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected. Data related to reservations is typically kept for a period required by legal and accounting obligations. Once data is no longer needed, it is securely deleted.

 

8. Contact Information

 

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us: