Data Policy

Data Protection Information – as of May 30, 2021

Dear customer,

The protection of your personal data is important to us. According to the EU General Data Protection Regulation (GDPR), we are obliged to inform you about the purpose for which our company collects, stores or forwards data. The information also tells you what rights you have in terms of data protection.

Who is responsible for data processing?

The entity responsible in terms of data protection law is

RegiÔtels International SàRL
2, Rue de la Chapelle
1325 Luxembourg

Email: [email protected]

Which of your data is processed by us? And for what purposes?

We process data for the purposes of customer advice and support as well as order initiation and processing. For this purpose, we process in particular your address and contact details and – depending on the order – possibly price information and information on local conditions or special features of your hotel.

The collection of this data is usually a prerequisite for your business relationship with us. If the necessary information is not provided, careful order processing may not be possible.

What is the legal basis for this?

The legal basis for processing your data is generally Article 6 (1) lit.b) GDPR. According to this, the processing of personal data is permitted to fulfill a contract or to carry out pre-contractual measures. Some of the data we process is also required to fulfill our accounting and tax obligations. In these cases, processing is based on Article 6 (1) (c) GDPR.

How long will the data be stored?

We only process your personal data for as long as is necessary for the respective purpose. Insofar as there are statutory retention requirements – e.g. in commercial law or tax law – the relevant personal data will be stored for the duration of the retention obligation. After the retention period has expired, it will be checked whether there is any further requirement for processing. If there is no longer any need, the data will be deleted. In principle, we check data towards the end of a calendar year with regard to the need for further processing. Due to the amount of data, this check is carried out with regard to specific data types or purposes of processing.

To which recipients will the data be passed on?

Your personal data will only be passed on to third parties if this is necessary for the execution of the contract with you, the passing on is permitted on the basis of a balancing of interests within the meaning of Art. 6 Paragraph 1 lit. are obliged or you have given your consent in this regard. Software that is hosted in external data centers may be used to store and process data. The data centers involved are certified according to DIN ISO 27001 and are located within the EU. Software providers outside the EU, e.g. Microsoft, guarantee EU standard contractual clauses. Accordingly, data is only stored within the EU and the USA. Of course, the transmission path to the data center is encrypted. In addition, tax and accounting data are transmitted to our accounting department.

Where is the data processed?

The data processing takes place within the EU and the USA. A transfer to third countries is not planned.

Your rights as a “data subject”

You have the right to receive information about your personal data. You can also request that incorrect data be corrected. In addition, under certain conditions, you have the right to delete data, the right to restrict data processing and the right to data portability. If we process data on the basis of a balancing of interests in order to safeguard our legitimate interests, you as the person concerned have the right to object to the processing of personal data, taking into account the requirements of Art. 21 GDPR. The processing of your data takes place on the basis of legal regulations. We only need your consent in exceptional cases. In these cases you have the right to withdraw your consent for future processing. You also have the right to complain to a competent data protection supervisory authority if you are of the opinion that your personal data is not being processed lawfully.

Our data protection officer

We are not obliged by law to appoint a data protection officer. Nevertheless, we of course take the protection of your personal data seriously. If you have any questions, suggestions or comments about the subject of data protection, please use the contact details given above.

Change of this information

The information listed above will be revised as necessary. The current version can always be found on this website.