Accommodation & Bookings - Privacy Policy
Introduction
At Le Clos de la Rose we take your privacy seriously and only use your personal information to provide the services you have requested from us. We never pass on your details to any third party for marketing purposes.
The European regulation No. 2016/679 of 27 April 2016, or General Data Protection Regulation (GDPR), came into force on 25 May 2018. This new law replaced the Data Protection Act and is a European wide law which affects how we use and store information we receive from our guests and enquirers. It covers all data, whether electronic or paper based.
What information we collect from you
When you make a booking with us we collect the names of all the guests who will be staying, the home address, email address and telephone number of the person making the booking. If you contact us (by phone, email, text or otherwise), we may keep a record of our correspondence with you for our records, to improve the quality of our offering and to prevent and detect fraud. We also work closely with third parties and may receive information about you from them. (See details below)
How we use the information you give us
We use your email address to communicate with you, to send you a booking form and/or invoice, terms and conditions, confirmation and to answer any queries you may email us with. We will often use your telephone number to contact you before your stay to check if you need any additional information or if we cannot reach you by email. We may also send you a follow up email after your stay to request feedback from you so that we can improve our services further. When you book direct with us, please be assured that your details are kept secure on our system and are not used for any other purpose or shared with any other person or business.
Sensitive personal data
We do not collect sensitive personal data (such as racial or ethnic origin, nationality, political opinions, religious beliefs, etc.) unless it is volunteered by you. In order to best meet your individual needs, we may sometimes ask for additional information about a disability that you have chosen to disclose to us (for example, to ascertain whether there are any issues around accessibility to gites). As with all data, it is entirely up to you to decide whether or not you are happy to provide this information. Sensitive personal data will only be used in order for us to fulfil our contract with you to provide the services that you have requested. You do not need to provide us with personal information simply to browse our website.
Children
Please note that we do not collect any personal information from children under 16 years of age and no child under 16 should submit any personal information to us. We may ask the age of children in your party to determine if a cot or other equipment will be needed during your holiday and to ensure we pay the appropriate level of Taxe de Sejour which is only applicable to those over 18.
Non-disclosure to third parties
We may share your data with agencies such as law enforcement or governmental organisations where we are required to make such disclosures by any applicable law. We may also share your data with banks and payment providers, to authorise and complete payments. We may pass your information to our third-party service providers for the purposes of completing tasks and providing services to you (for example to process payments and send you emails). However, when we use third party service providers, we disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and not to use it for their own direct marketing purposes. We will not release your information to third parties for them to use for their own purposes, unless we are required to do so by law, for example, by a court order or for the purposes of prevention of fraud or other crime.
If you book via one of our booking partners, for example Chez Nous, they also have to comply with GDPR regulations and have their own safeguards and policies in place. When you enquire about, or book with, these third parties, the relevant third-party product provider will use your details to provide you with information and carry out their obligations arising from any contracts you have entered into with them. They will be acting as a data controller of your information and therefore we advise you to read their Privacy Policy. These third-party product providers will share required information about you with us (e.g. gite rented and dates of stay) which we will use in accordance with this Privacy Policy. If you provide information on and use third-party sites, the privacy policy and terms of service on those sites are applicable. We encourage you to read the privacy policies of websites that you visit before submitting personal information.
Similarly, if you choose to follow us on social media (eg Facebook), we don’t need consent as you have already accepted the terms & conditions on that platform. Again, we will not ask you for your email address in order to send you newsletters etc.
Marketing
We use Facebook to market our gites and our own website and we will never pass your details onto any third party for marketing purposes.
Access to your Information
You have the right to request a copy of the information we hold about you. If you would like a copy of this, please email us at info@leclosdelarose.com
Retaining personal information
We retain personal information about you for the period necessary to fulfil the purposes outlined in this Policy, unless a longer retention period is required or permitted by applicable law. We are required by law to keep financial records for 10 years, (Article L123-22 paragraph 2 French Commercial Code) any information which may be shared with the tax office on request. Where your information is no longer required, we will ensure it is disposed of in a secure manner. We review our retention periods for personal information on a regular basis. We will hold your personal information on our systems for as long as is necessary for the relevant activity, or as long as is set out in any relevant contract you hold with us.
Right to be Forgotten
All guests have the right to ask us to remove their details from our records. However, this does not override other legislative requirements such as the legal requirement to maintain financial records.
Use of cookies
We don’t use cookies to track individuals or store sensitive information such as your name or address.
Like many websites, our website uses “cookies” (which are harmless small text files that are placed on your machine)
to help the website provide a better user experience.
In general, cookies are used to retain user preferences and provide anonymised tracking data to third party applications like
Google Analytics. As a rule, cookies will make your browsing experience better.
However, you may prefer to disable cookies in your browser on this site and on others.
Please note, if cookies are disabled, the online browsing experience may be limited.
IP addresses
We may collect non-personal information about your computer, including, where available, your IP address,
operating system and browser type, for system administration. This is statistical data about our users’
browsing actions and patterns and does not identify any individual.
(The IP address is a number that your Internet Service Provider automatically assigns to the computer
that you are using to access the Site. This number is identified and logged automatically in our server
log files whenever users visit the Site, along with the time of each visit and the page(s) that were visited).
Collecting IP addresses is standard practice on the Internet and is done automatically by many websites.
We use IP addresses for purposes such as calculating Site usage levels, helping diagnose server problems and
administering the Site. Please note that we treat IP addresses, server log files, and related information as
Non-Personal Information, except when we are required to do otherwise under applicable law.
Notification of Data Breaches
The GDPR will require us to notify the Information Commissioners’ Office within 72 hours of first having become aware of the breach where that breach is likely to “result in a risk for the rights and freedoms of individuals”. For any breach, we are required to notify the “guests without undue delay” after first becoming aware of a data breach.
Getting in contact
If you would like to review, access, amend or update your information please contact:-
M. Bill TILLEY,
Le Clos de la Rose,
7 rue de la Basse Paleine,
49260,
Le Puy Notre Dame,
FRANCE.
Or use our contact form here.