Villa Lettonia HOTEL
Who are we?
Limited liability company “Aurinko Jurmala”, registration number: 40203050256, registered office: Smilsu Street 6, Jurmala, LV-2015, Latvia.
Your privacy and trust is important to us
Your confidence in the security of your personal data before you disclose it to us is important to us. Your personal data is any information that can be used to identify you as an individual.
We take appropriate steps to ensure that your personal data with us are always secure and that your processing of personal data takes place in accordance with current personal data protection laws, our internal rules.
We are committed to protecting not only your personal data, but any of your personal information, and to respecting privacy in all areas of our activities. This policy allows you to know what types of personal data we may or may be obliged to receive from you, for what purposes we will use the data, as well as information about your rights as a data subject and how you can contact us.
What types of personal data are we processing and what is the purpose of processing?
Provision of hotel services
We are processing your personal data to provide you with hotel services, including lodging. If you do not provide the necessary personal data, we will not have the right to offer and you will not be able to receive our services. We are bound by the statutory hotel obligations, including the obligation to identify our client, which is that we are obliged to determine whether you are the person you are claiming to be.
We keep personal data from customer registration questionnaires for 1 year.
Types of personal data
1) Personal information (given name, surname, personal identity number or date of birth, citizenship (or nationality))
– Contact information (address, phone number)
– payment information if you make a cashless payment (payment card number and expiry date)
– other information to provide hotel services (e.g. car registration number if the hotel offers a parking service and if you use it)
2) Electronic mail address
3) Data of the personal identification document (passport or identity card)
Legal basis for data processing under the General data Protection Regulation (GDPR)
1) Receipt, provision of the service, fulfilment of the agreement – Article 6(1)(b) of the GDPR;
2) Your consent – Section 6, Clause 1, Sub-clause “a” of the GDPR;
3) Our legal obligation to identify customers as a legal obligation to us – Article 6(1)(c) GDPR.
Through our services, you certify that the personal data you provide are true, accurate and correct and that you have reached the age of at least 18 years. We cannot guarantee the provision of services if you provide inaccurate or false data.
We conduct video surveillance and process your personal data for the duration of your stay in our hotel area, for both your personal and our employees, customer safety and property protection. Video surveillance information signs are displayed in places visible to you. When you choose to visit these locations, you agree to the processing of personal data in the following order. CCTV footage is stored on our systems for up to 30 days.
Types of personal data
– biometric data (digital facial image)
Legal basis for data processing under GDPR
– legitimate interest of ours and our customers – Article 6(1)(c) GDPR;
– your consent – Article 6(1)(a) GDPR.
Advertising information material
Following your consent, we inform you of various news and updates from our and third parties that we deliver as advertising and informational materials.
Types of personal data
– personal information (given name, surname)
– Contact information (address of residence, e-mail address, mobile phone number)
Legal basis for data processing under GDPR
Your consent – Article 6(1) “a” of the GDPR.
Cookies are small text files that are created and stored on your device as an Internet user (PC, tablet, mobile phone, etc.) by visiting our website. Cookies “remember” your activities on the site, store basic information, and thus improve the ease of use of our website.
Cookies process website usage history data, diagnose problems and weaknesses in site performance, collect user habit statistics, and ensure full and easy use of site functionality.
If you don’t want to allow cookies, you can stop using cookies by changing the settings of your Internet browser, but your website may be disrupted and difficult to use. You can delete stored cookies in the Internet browser settings section of your device by deleting the saved cookie history.
Our website has cookies created by Google Analytics created by Google Inc. The purpose of using Google Analytics cookies is to improve the quality of content on our website and tailor content to users’ needs. More information about Google Analytics terms of Service can be found on the http://www.google.com/analytics/terms/us.html website.
Types of personal data
– Internet site user preferences, habit statistics
– your consent (Internet browser configuration) – Article 6(1)(a) GDPR;
– legitimate interests – Article 6(1)(f) GDPR
From what sources do we collect personal data?
We collect personal data you provide to us before we provide our service, as well as when you visit our hotel area (CCTV) or our website (cookies), as well as when you apply for advertising and informational material.
If you order our service through our partners (such as Booking.com, tour agents, operators), we will collect data from these partners to ensure our service is provided to you.
Who are we transferring your personal data to?
Service providers and collaborators
To fulfill our obligations to you (for example, to secure a lodging reservation), we transfer your personal data to companies that outsource us. We scrutinize all outsourcers (personal data controllers) who process your personal data on our behalf and on our behalf. We evaluate whether external service providers apply appropriate safeguards to ensure that your personal data are processed in accordance with our tasks, instructions, instructions, and regulatory requirements. These companies are not entitled to use your personal data for any other purpose.
Law enforcement authorities, State and local government authorities
In order to fulfil the duties of laws, we may transfer your personal data to law enforcement authorities (for example, police), as well as State and local government authorities upon request. We can also transfer your personal data to law enforcement authorities (such as courts) as well as state and local government authorities to defend our legal interests by drawing up, filing and maintaining legal claims.
Transfer of personal data outside the European Union and the European Economic area (ES/EEZ)
We always try to process your personal data in the territory of the European Union and the European Economic area (ESEEZ). Your personal data is not processed in a country outside THE ESEEZ to provide the service you have chosen.
The transfer and processing of personal data outside THE ESEEZ may take place if there are legal grounds for doing so, that is to say, for the fulfilment of a statutory obligation, for the conclusion or performance of a contract, in accordance with your consent or in other individual cases.
How long are your personal data stored?
All personal data obtained from you are stored for as long as you are using our services, or until you withdraw your consent if your personal data is processed on that basis. A longer period of retention of personal data may be allowed in order to comply with the requirements of the laws regarding the minimum period for the storage of documents or information, or in order to protect our legitimate interests.
Once your personal data has expired, we will safely delete your personal data or make it unavailable (archiving) or unidentifiable so that it can no longer be linked to you.
How do we protect your personal data?
We provide, continuously review and improve safeguards to protect your personal data from unauthorized access, accidental loss, disclosure or destruction of data. To implement this, we apply modern technologies, technical and organizational requirements, including through firewalls, anti-virus programs. Our staff are trained for secure data processing operations.
However, we recommend that you comply with the general security rules for computer and Internet use, as well as the protection and storage requirements for your private data (in particular identity documents), and we will not accept liability for unauthorised access to your personal data and loss of data if this is due to your fault or negligence. We cannot give absolute assurance to the security of personal data in situations where there is a data protection incident under the influence of an unpredictable human factor.
The regulatory framework in the field of data protection gives you several rights to influence the processing of your personal data.
Access to personal data
You have the right to request confirmation from us whether we are processing your personal data and, in such cases, to request access to the personal data we are processing about you, or to provide information about personal data if provision of direct access is not intended.
Correcting personal data
If you believe that information about you is incorrect or incomplete, you have the right to ask us to correct it.
Withdrawal of consent
To the extent that we process your personal data based on your consent, you have the right to withdraw your consent to the processing of personal data at any time. Withdrawal of consent is without prejudice to data processing activities that took place prior to your withdrawal of consent.
Opposition to data processing for advertising purposes
You have the right to object at any time to processing your personal data for advertising delivery purposes.
Opposition to processing on grounds of legitimate interest
You have the right to object to the processing of personal data that we conduct based on our legitimate interests. However, we will continue to process your data even if you oppose it, if we have compelling motivated reasons to continue processing personal data. In order to exercise the above rights, please submit a written submission to us.
Under certain circumstances, you have the right to ask us to delete your personal data, but this does not apply when the law obliges us to retain personal data for a certain period of time. In order to exercise the above rights, please submit a written submission to us.
Under certain circumstances, you have the right to restrict the processing of your personal data. Please note that if you request that your data processing be restricted, this may affect your ability to receive our services. In order to exercise the above rights, please submit a written submission to us.
Finally, you have the right to receive or transfer your personal data to another data controller. This right includes only data that you have provided to us on the basis of your consent or contract, as well as automated processing. In order to exercise the above rights, please submit a written submission to us.
Who can I contact if you have any questions about data processing?
If you have any questions regarding the processing of your personal data, please contact us.
If you are not satisfied with the response received, you have the right to lodge a complaint with the data State Inspectorate (www.dvi.gov.lv)
Contact us if your information or choice has been changed:
If you want to stop receiving information from us or change your personal settings and don’t want us to send you the information we requested, or if you have any questions about how we use your personal data, let us know by contacting us.
Data Manager Contact information
LLC “Aurinko Jurmala”
Address: Smilsu Street 6, Jurmala, LV-2015, Latvia
Phone number: +371 23378507