If you want to reserve, contact us by phone or email.

Privacy policy

Hostal Sant Miquel, informs the users of the website about its policy regarding the treatment and protection of personal data of users and customers.

And guarantees at all times the complete and full compliance with the obligations laid down by the data protection regulations and services of the information society: Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27 of 2016, relating to the protection of natural persons with regard to the processing of personal data and the free circulation of such data (RGPD), the regulation Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights (LOPDGDD) and Law 34/2002, of July 11, on Services of the Information Society and Electronic Commerce (LSSIce).

RESPONSIBLE FOR THE TREATMENT

Company owner of this website: Carme Nogues Servelló

N.I.F.: 39827210L

Domicili: Carrer Sant Miquel, 36-38 Vinebre, Tarragona, Espanya (43792)

Phone: 977 405 811

E-mail: reserva@hsm.cat

PURPOSES OF DATA PROCESSING

The data provided by the User are used for various purposes as listed below:

Purpose of treatment

  • Manage queries raised through the query form
  • Sending newsletters, commercial communications and promotions.
  • Manage the incidents and maintenance of the web.

Legal basis for treatment

  • Legitimate interest of the Company to meet the requests for information through the web.
  • Consent given expressly at the time of collection of data through the web forms.
  • Legitimate interest of the Company.

DATA RETENTION PERIOD

Purpose of treatment

  • Manage queries raised through the query form.
  • Sending newsletters, commercial communications and promotions.
  • Manage the incidents and maintenance of the web.

Conservation period

  • We will process your data for as long as it is necessary to attend your application or request.
  • We will treat your data until you unsubscribe.
  • We will treat your data for the time necessary to comply with the legal terms of prescription that apply to you.

RECIPIENTS OF THE DATA

In order to fulfill the purposes indicated in this Privacy Policy, it is necessary that we give access to your personal data to third parties that support us in the services we offer you (Data Processors).

The persons in charge of treatment for the execution of a contract or rendering of a service to the person in charge, following therefore their instructions at all times and ensuring the same levels of security.

RIGHTS OF USERS

The user has the right to:

  • • Request access to your personal data being processed and receive this information in writing by the means requested.
  • Request the rectification of inaccurate personal data or, if necessary, request its deletion when, among other reasons, the data is no longer necessary for the purpose for which it was collected.
  • Request the limitation of the processing of your data.
  • To oppose to the processing of your personal data when you are not able to do so, in which case your data will not be processed except for legitimate reasons.
  • Right to data portability. The interested party has the right to receive personal data if they have been provided in a structured, commonly used and machine-readable format, and to transfer them to another person in charge, if the following requirements are met:
  1. The treatment is based on consent or a contract.
  2. The treatment is done by automated means.
  • Right to withdraw the consent given.
  • Right to file a complaint with the Spanish Data Protection Agency.

The User may exercise the aforementioned rights to the postal or e-mail address of the Responsible, proving his identity with a scanned copy of his ID card or equivalent document, and specifying the right he wishes to exercise.

ORIGIN OF THE DATA

Personal data must be provided by the interested party on an absolutely voluntary basis. The lack of some data or the non-response to questions that may be asked to the person concerned in the registration processes or through electronic forms, may cause the impossibility of access to certain services for the provision of which it is essential to have these personal data. In this case, the Data Controller must inform of the obligatory or necessary nature of providing personal data for the functioning of the service.

The Responsible assures the confidentiality of your personal data and guarantees their security, adopting the necessary measures to avoid their alteration, loss, processing or unauthorized access.

INFORMATION PROVIDED BY THE INTERESTED

Children under 18 years of age may not disclose their personal data without the prior consent of their parents and/or legal guardians.

The interested party/interested party introducing his/her data in the contact forms or presented in download forms, expressly and freely and unequivocally accepts that his/her data are necessary for the Responsible to attend his/her request, and the inclusion of data in the remaining fields is voluntary.

The interested party guarantees that the personal data provided to the provider are true and is responsible for communicating any changes to these data.

All data requested through the website are necessary for the provision of an optimal service to the interested party. If all the data are not provided, there is no guarantee that the information and services provided by the person in charge will be completely adjusted to the needs of the interested.

SECURITY MEASURES

That in accordance with the provisions of the current regulations on personal data protection, the Responsible is complying with all the provisions of the RGPD and LOPDGDD regulations for the processing of personal data for which it is responsible, and manifestly with the principles described in article 5 of the RGPD and article 4 of the LOPDGDD, for which they are processed in a lawful, fair and transparent manner in relation to the data subject and adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.

The person responsible guarantees that he/she has implemented appropriate technical and organizational policies to apply the security measures established by the RGPD and the LOPDGDD in order to protect the rights and freedoms of the interested party/stakeholder and has provided them with the appropriate information so that they can exercise them.

SECURITY BRETXES

The Responsible will inform about any security breach that affects the database used by this website, or that affects any of our third party services, to each and every person, data of which may have been affected, and authorities, within 72 hours following the detection of the breach.

APPLICABLE LAW AND JURISDICTION

For the resolution of all disputes or questions related to this website or the activities carried out therein, Spanish legislation shall apply, to which the parties expressly submit themselves, and the Courts and Tribunals of Tarragona shall be competent to resolve all conflicts arising from or related to its use.

en_USEnglish