Data protection

Data Protection

Flamboyan Caribe Hotel & SPA

As a result of browsing the website and completing its forms, the user agrees that the personal data provided or that may be provided in the future through this service will be processed in the establishment's personal data files, including the collection of access data and the use of cookies and functions provided by third parties.

Data Protection

As a result of browsing the website...

The user agrees that the personal data provided...

Purpose of processing, legal basis, and recipients

Enable the website's functionality
Register and respond to requests submitted by users through website forms
Provide and manage hotel services, reservation processing, and payment collection
Create web analytics and statistics
Include functions provided by third parties (Google Maps, etc.)

Website browsing and access to areas for registered users

Purpose: Necessary data for online services provision, including IP address logging, visited pages, access date, and user terminal information. Data is also processed for security and website improvement purposes.

Legitimacy: Data processing is necessary for online services provision; consent expressed through website usage.

Recipients and transfers: Establishment, web hosting companies

Use of website forms

Purpose: Address requests made through website forms.

Legitimacy: Consent expressed upon using and submitting the form.

Recipients and transfers: Establishment and companies involved in providing requested services

Service provision

Purpose: Provide services including hotel reservation and payment management. Send information about the establishment's services via electronic means. Quality surveys.

Legitimacy: Execution of the contract or service provision.

Recipients and transfers: Establishment and companies involved in providing requested services

Web analytics

Purpose: Understand how the website is searched, accessed, and used by the public. May involve collecting personal data such as IP address, connection location, browsing software or hardware information, etc.

Legitimacy: Consent expressed through website usage.

Recipients and transfers: Establishment

Functions provided by third parties

Purpose: Integrate third-party functions, such as maps, analytics, social buttons, Zendesk chat widgets, etc.

Legitimacy: Consent expressed through website usage.

Recipients and transfers: Third-party functions establish a direct connection between the user's browser and third-party domains, enabling the download and execution of the function, even from pages outside the European Economic Area.

Google: This website integrates functions from Google Inc., such as Google Analytics and Google Maps. By using this website, the user authorizes Google to process their data in accordance with its privacy policy: https://policies.google.com/privacy

Data accuracy

The user must fill in forms with true, accurate, complete, and current data. The user must not enter data pertaining to another person; it is presumed that the data has been provided by its owner. The user is solely responsible for any damage or harm, direct or indirect, that may be caused to any person due to completing the form with data related to another person.

Rights of access, rectification, deletion...

The data subject has the right to access, rectify, and delete their data at any time, as well as to object to the processing of their data under the terms specified in data protection legislation. They also have the right to request: data portability, withdrawal of consent provided where applicable, and limitation of processing. The data subject may exercise these rights by sending a written request by postal mail to the establishment. The requester must include this request, signed, indicating the action requested, and attach a copy of their ID or passport. The data subject may also object to receiving commercial emails by simply requesting it via an email sent from the address they wish to unsubscribe and addressed to the establishment. If the data subject believes their data processing violates data protection legislation, they may file a complaint with data protection supervisory authorities.

Minors

Website services are prohibited for persons under 18 years of age.

Data security

This website has one of the most secure technologies for protecting credit card data. It also complies with all international regulations governing the matter. All sections where sensitive information is requested use SSL communication protocol. This means that the information traveling over the Internet from your computer to our server is encrypted, making it undecipherable to any unauthorized person. This technology ensures and guarantees that your data cannot be intercepted, manipulated, or impersonated in any way. Thus, payment via the Internet today is as secure as direct purchases.

What does SSL mean?

SSL (Secure Socket Layer) is a standard Internet security technology. It applies an encryption system that provides the highest confidentiality of the data transmitted to us. This prevents illegal entry or interception into a system while the data circulates on the Internet. For added security, this data is stored on a secure server protected by a continuously monitored "firewall".