The entity ‘Casa do Marqués.’ (hereinafter, CASA DO MARQUÉS) provides its services through the website casadomarques.es (hereinafter, the Website).
To this effect, and in accordance with that established in the GDPR, the following section provides details on how CASA DO MARQUÉS processes your data.
Who is responsible for the processing of your data?
CASA DO MARQUÉS
Noelia Martínez Peña
Rúa das Areas nº13, 36393 Baiona. Pontevedra
Telephone: (+34) 986353150
What is the purpose of processing your data?
Depending on the User’s requests, the purpose of processing your personal data is as follows:
-Managing reservations, including managing payments (where relevant) and managing your requests and preferences
-Managing your subscription to our Newsletter for periodically sending information
-Managing the commercial communications that are sent containing offers and promotions from CASA DO MARQUÉS by electronic and/or conventional means, if the User has expressly consented to this
-Managing your requests for information and contact from CASA DO MARQUÉS through the means established for this
-Managing the accommodation service and/or other possible contracted services
-Managing the surveys and/or evaluations conducted in relation to the quality of the service provided by CASA DO MARQUÉS
-If you send us your CV, we will process your data in order to evaluate and manage your employment request, and if applicable, make the necessary updates for participating in the various staff selection processes in the chain’s different hotels
What are the legal grounds for processing your data?
The legal basis for processing your data is your consent. Your data will be processed on the basis of the various purposes detailed in the previous section, and based on the consent which is requested of you.
In addition, if it is necessary to process the User’s data to comply with a legal obligation or to implement the existing contractual relationship between CASA DO MARQUÉS and the User, this processing will be legitimised due to being necessary for carrying out these purposes.
To which recipients will your data be sent?
For organisational and operational reasons and out of necessity, Rafael Hoteles SAU may engage the services of advisers, professionals, or similar to carry out the processing of your personal data on behalf of Rafael Hoteles SAU. This processing on behalf of third parties is regulated in a written agreement or in any other way that can certify it being performed and its content, expressly specifying that the data controller will process the data according to the instructions of Rafael Hoteles SAU and shall not apply them or use them for purposes other than those provided in said agreement, nor shall they communicate them, even for their conservation, to other persons.
There will be no cession, transmission or transfer of personal data except if required by law or at the request of the Public Administration or the Autonomous Institutions and it is carried out within the scope of the functions that the law expressly attributes to them.
If there is a cession, transmission or transfer of personal data outside of the cases determined, the owner of personal data will be informed in advance by giving his/her consent if appropriate.
What are your rights when you provide us with your data?
Any person has the right to obtain confirmation of whether CASA DO MARQUÉS is processing personal data which concerns them.
You may also exercise your rights under the legislation in force: the rights of access, rectification, erasure and objection, restriction, data portability and to not be the subject of automated individual decision-making.
You also have the right to withdraw your consent at any time.
You can exercise your rights by any means which allow the dispatch and reception of your request to be proven. The request must be addressed to CASA DO MARQUÉS, using the details included in the ‘Data Controller’ section, and displaying the reference ‘Data Protection’. The request must include: Your name, surname(s) and a photocopy of your national identity document, written details of your specific request and an address to which notifications may be sent.
If you are not satisfied with how CASA DO MARQUÉS responds to the exercise of your rights, you have the right to file a rights protection claim before the Supervisory Authority.
How did we collect your data?
The personal data subject to processing by CASA DO MARQUÉS was provided by you by completing a reservation request, sending your CV through the “work with us” section, registering for the newsletter through our website, or by signing the relevant contract for Accommodation or other types of Services.
CASA DO MARQUÉS hereby informs you of processing the following types of data:
-Identification data (Name and Surname/s)
-Contact data (Postal and e-mail addresses and movile telephone number)
-Personal data (Nacionality, date of birth and sex)
-Credit card information, necessary for the payment of the reservation or as a guarantee of the same
-In the section Work with us: academic and professional data (work experience)
We never process specially protected data.
For how long do we store your data?
The User’s data will be stored while it is necessary for completing the purpose for which it was collected or until the User requests its removal from CASA DO MARQUÉS, opposes or withdraws their consent.
CVs that we receive will be stored for a maximum period of 6 months from when we receive them.
We also retain your data to comply with the requirements of the applicable law, to prevent unlawful actions, resolve disputes, solve problems and other actions permitted by the law. Once it is no longer necessary to process your data, we will delete and/ or block them, in accordance with our data retention and erasure policy and the statutory limitation period under the legislation in force.
At CASA DO MARQUÉS we are concerned about security and guaranteeing and protecting your privacy. That is why we guarantee that your data will be processed with a high level of security.
In accordance with standards for the sector, we maintain technical and organisational safeguards against accidental or illegal destruction, accidental loss or alteration, unauthorised disclosure or access and other illegal acts or procedures.