Privacy Statement
This is the Data Processing Notice (also known as a Privacy Policy) of La Piette Hotel. It is issued in compliance with the Data Protection (Bailiwick of Guernsey) Law, 2017 “the Law”
We care about your personal data and ensuring you are informed about how we use it. We promise to protect your data, and to manage any information you share with us in line with data protection law.
This Notice sets out how and why we collect and use your personal data and our legal basis for doing so.
Who are we?
We are La Piette Hotel, we are registered with the Guernsey Registry no.2320. We are also registered with The Office of the Data Protection Authority registration number DPA5051.
What do we do?
We are an establishment that provides paid lodging on a short term basis, meals, and other services to guests, travellers and tourists.
What data we collect
We only hold contact, payment and any special requirement details of our Guests. This not only enables us to contact our guests but also enables us to carry out our core business services and comply with a contract, but also to comply with statutory requirements and our legal obligations
Where does this data come from?
The personal data we process is given to us directly by you, our guests or from the organisation you work with or someone who may arrange accommodation and other requirements for you. We do not collect any personal data from any other sources.
How we use your personal data
We use your data to keep records of your reservations with us, we only use your data for our business records. We also use your data to ensure that we can provide the best service for you.
Our lawful basis for processing your personal data
In order to be able to provide you with the services you require, we use our legal contractual basis for processing your personal data and rely on our legitimate business interests.
Consent
In instances where we are not relying on a contractual or legitimate business interests’ basis, we rely on consent to lawfully process your personal data. This can be obtained orally, by email or by an online process – through booking sites or companies. You have the right to withdraw your consent at any time, however, it must be highlighted that by withdrawing your consent we may not be able to provide you with our core business services
Types of personal data we collect
- Your contact details, such as name, postal address, email address and contact number
- Bank details
- A record of our communications with you
- Your communication preferences
- We also collect brief data from our staff to ensure their safety and well being at work.
Special category data
Defined in the Law as – “Personal data revealing an individual’s racial or ethnic origin, political opinion, religious or philosophical belief, trade union membership, genetic data, biometric data, health data, data concerning an individual’s sex life or orientation, & criminal data.” The Law requires this data to be processed with additional protection.
We collect a small amount of data from our employees including a brief medical record, it is important that we collect this data to ensure the safety of our staff. Our staff members provide this information on a signed document at the start of their working period.
Sharing of your personal data
We do not share your personal data with any third party.
Direct marketing
We do not use any form of direct marketing.
Retention of data
All data is retained securely and only used for the purposes for which it was collected under the Law. Data is only retained for as long as is required to comply with our statutory obligations, in order for us to provide you with the services forming part a contract or with your consent. In any event, data is reviewed and weeded accordingly after 7 years.
Your rights
The Law provides you with a number of rights, but specifically and of relevance, you have the right to:
- request confirmation of the personal data that we hold about you and what we are doing with your data
- request correction of your personal data if incorrect, out of date or incomplete
- request that we stop any consent-based processing of your personal data after you have withdrawn that consent
Social media
This notice does not cover any third-party websites or social media sites used in conjunction with La Piette Hotel. We are not responsible for the actions or activities of third-party website/social media outlets. You are advised to read the data collection and privacy statements on other websites and social media outlets you visit.
Cookies
Cookies are small text files that a website stores on your computer so it can remember details about you. These can be first-party or third-party cookies. These are used to improve your user experience on our site.
Contacting us
We are defined as a Controller according to the Law. If you have any questions or queries regarding how your personal data is being managed, please contact our Management team by writing to:
Management
La Piette Hotel
St Georges Esplanade
Guernsey GY1 2BQ
Or email us: stay@lapiettehotel.co
Contacting the regulator
If you feel that your personal data has been handled incorrectly or you are unhappy with our response to any requests you have made to us regarding the use of your personal data, you have the right to lodge a complaint with
the data protection regulator – The Office of the Data Protection Authority (ODPA). You can contact them for advice by writing to:
The Office of the Data Protection Authority
Block A
Le Febvre Court
Le Febvre Street
St Peter Port
GY1 2JP
by telephoning (01481) 742074 or by email to enquiries@opda.gg or you can submit a complaint online at www.odpa.gg and complete the ‘make a complaint’ section.
Some images courtesy of VisitGuerney | Site by Bazil Media