Data Protection

  1. IDENTIFICATION
  • ID – Ales Lone Star Investments Ltd – Niederlassung Osterreich
  • VAT number: ATU 65075116
  • Address: Mallnitz 17 A, Mallnitz, A-9822.
  • Data Protection Delegate (DPD): you can contact our DPD through the following means:E-mail: dpo@edelweissgroup.com
  1. INFORMATION AND CONSENT

By accepting this Privacy Policy, the user is informed and gives their free, informed, specific and unequivocal consent for the personal data they provide through the website and check-in terminals under the umbrella of www.edelweissgroup.com  , to be processed by Ales Lone Star Investment Ltd  (Edelweiss Group)

 

  1. OBLIGATIONS TO PROVIDE DATA

The data requested in the forms on the Website and on the Check in Terminals are, in general, obligatory (unless otherwise specified in the required field) in order to comply with the established purposes and legal requirements).

 

  1. FOR WHAT PURPOSE WILL NH HOTEL GROUP PROCESS THE USER’S PERSONAL DATA AND FOR WHICH PERIOD OF TIME?

The personal data provided through the Website will be processed by Edelweiss Group for the following purposes:

4.1. Data provided for the booking of rooms – Manage the completion of the bookings requested by the user and Check in procedures.

4.2. Management of the  service:

  • Management of the online check-in process so that customers can carry out the check-in process by telematic means.
  • Management of the preferences given by the customer in the check-in process.
  • Management of the online check-out process in order to allow customers to carry out the check-out process through telematic means.
  1. WHAT USER DATA WILL Edelweissgroup GROUP PROCESS?

Edelweiss Group will process the following categories of user data:

5.1. Data provided for the booking of rooms and rooms for the organisation of events in some of the different hotels of the  chain without registering as a user on the Website, either through this Website or through the contact centre service (call centre, email or chat) for individual or group bookings:

  • Identification data: name, surname, nationality.
  • Contact data: email address, telephone number.
  • Transaction data of goods and services.
  • Economic, financial and insurance data.
  • Preferences of stay.
  • Data relating to best prices or data provided by the interested parties themselves in the open fields of the forms provided on the Website or in the attached documents.

5.2. Data provided for modification and cancellation of bookings:

  • Identification data: name, surname, nationality and address.
  • Contact data: e-mail address.
  • Data relating to transactions of goods and services.
  • Economic, financial and insurance data.
  1. RETENTION OF DATA

Your data will be retained for the following periods:

6.1. Data provided for/with the booking of rooms and rooms for the organisation of events in some of the different hotels of the chain shall be retained for the duration of the contractual relationship and, after the end of the contractual relationship, for the period of limitation of any legal action that shall arise from it an/or as long as the user does not revoke the consent given. However, in the event of withdrawal of consent, this shall not affect the lawfulness of any processing previously carried out.

  1. EXERCISE OF RIGHTS

The user shall send a letter to the address indicated in the heading of this Policy, or by e-mail to the address dpo@edelweissgroup.com, attaching a photocopy of his/her identity document, at any time and free of charge, in order to

  • To revoke the consents granted.
  • Access their personal data.
  • Rectify inaccurate or incomplete data.
  • Request the deletion of their data when, among other reasons, the data are no longer necessary for the purposes for which they were collected.
  1. SECURITY MEASURES

Edelweiss Group shall process the user’s data at all times in an absolutely confidential manner and shall maintain the mandatory duty of secrecy with regard to the same, in accordance with the provisions of the applicable regulations, adopting for this purpose the necessary technical and organisational measures to guarantee the security of your data and prevent its alteration, loss, processing or unauthorised access, taking into account the state of the technology, the nature of the data stored and the risks to which they are exposed.

Updated August 2023