In relation to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of personal data of natural persons and the obligations of data controllers to implement appropriate technical and organizational measures ensuring data processing in accordance with this regulation Hotel Riva takes the necessary measures and actions to comply with the regulation.

TYPES OF PERSONAL DATA WE COLLECT AND PROCESS

For the purposes of accommodation and according to Art. 116(1) of the Tourism Law, we are obliged to keep a register with the following information – date, name, social security number, date of birth, gender, citizenship, number of a valid identity document, country that issued the document for identity, floor. Room, arrived date, departed date, number of nights, use of travel package.

Video surveillance is used on the territory of the object

Three names, phone number are required in the booking process. By providing them, you agree to their use in connection with the reservation and subsequent check-in.

According to our reservation policy, you need to provide credit/debit card details – type, number, cardholder, validity. The information you provide is encrypted and protected from access by unauthorized persons.

WHAT WE USE THE PERSONAL DATA FOR AND WHO WE PROVIDE IT TO

We collect and process personal data only and only in connection with legal requirements

We are preparing a register according to Art. 116(1) of the Tourism Act

We prepare invoices by filling in the necessary details according to the Accounting Act

We use the video surveillance to guarantee the security and tranquility of the guests

The collected personal data are provided to state authorities, duly legitimized with relevant documents – written orders stating the reason, the names of the persons to whom it is necessary to provide access to the personal data

Personal data is destroyed after the legally established storage period