ohma hotel

Privacy Policy

Thank you for your interest in the ohma Poiana Brasov Hotel and our products and services. When you enter into a relationship of any kind with us, you entrust us with personal data. The information contained in this document (hereinafter referred to as "Privacy Policy") is important. We encourage you to read it carefully.

  • Home
  • Privacy Policy

Privacy Policy

Our identification data are: CASA VIOREL SRL, based in jud. Poiana Brașov 500001, Str. Poiana lui Stechil nr. 20, registered in the Trade Register under no. J08/3132/2007, Unique Identification Code RO 22763879. The company is responsible for the processing of your personal data that we collect directly or indirectly from you or from other sources. For the management and processing of personal data, Casa Viorel SRL has appointed the company WINSEDSWISS SRL as the Data Processor. WINSEDSWISS SRL has its registered office at 164A Barbu Văcărescu Street, Bucharest, sector 2, registered at the Trade Register Office under number J40/4928/2020, with CUI RO42487190.

According to the law, our company is a personal data controller. To ensure that your data is processed securely, we have made every effort to implement reasonable and appropriate technical and organisational measures to protect your personal information.

The purpose of this Privacy Policy is to explain to you what data we process (collect, use, share), why we process it, how we process it and what rights you have under the GDPR and how you can exercise those rights. In collecting this information, we act as a controller and are required by law to provide this information to you.

According to the law, you, the natural person benefiting from our products and/or services, the representative or contact person of a company, the visitor of the website or the person in any kind of relationship with our company, are a "data subject", i.e. an identified or identifiable natural person. In order to comply with the principle of transparency in our data processing relationships and to allow you to easily exercise your rights at any time, we have implemented measures to facilitate this information.

The personal data you submit to us is very important to us, so with this privacy policy we are committed to comply with European and national legislation on the protection of personal data, in particular Regulation (EU) 679/2016, also known as GDPR, and also all data processed will take into account the following principles:

  1. processed lawfully, fairly and transparently in relation to the data subject ("lawfulness, fairness and transparency");
  2. collected for specified, explicit and legitimate purposes and not further processed in a way incompatible with those purposes; further processing for archiving purposes in the public interest, for scientific or historical research purposes or for statistical purposes shall not be considered incompatible with the original purposes in accordance with Article 89(1) ('purpose limitation');
  3. adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed ("data minimisation");
  4. accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data which are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay ("accuracy");
  5. kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the data are processed; personal data may be stored for longer periods in so far as they will be processed solely for archiving purposes in the public interest, for scientific or historical research purposes or for statistical purposes in accordance with Article 89(1), subject to the implementation of appropriate technical and organisational measures provided for in this Regulation to safeguard the rights and freedoms of the data subject ("storage restrictions");
  6. processed in a way that ensures appropriate security of personal data, including protection against unauthorised or unlawful processing and accidental loss, destruction or damage, by taking appropriate technical or organisational measures ("integrity and confidentiality").

This Privacy Policy applies to information and data collected by us as an operator, including information collected on our website (www.hotelohma.com) or through other channels described below. This Privacy Notice describes how we collect, receive, use, store, distribute, transfer and process your personal information. It also describes your choices regarding use, and your rights to access and correct your personal information. If you do not agree with the data practices described in this Privacy Policy, you should not use the www.hotelohma.com website.

We periodically update this Privacy Policy. We will post any changes to the Privacy Policy on this page and, if the updates are significant, we will provide a dedicated notice by sending you an informative email.

Although we will inform you of any significant changes to this Privacy Policy before the changes become effective, we encourage you to periodically review this Privacy Policy.

If you have any questions about this Privacy Policy or our treatment of the information you provide to us, please email us at [email protected] - contacting Alex Baicoană, our Data Protection Officer, directly.

 

1. What information we collect about you

We collect personal data in communication with you. Some of this data is provided to us directly: for example, by sending a message to us. Others come to us indirectly, such as identification data stored in your IP address. You have the right to request the removal of your IP address from our records.

In principle, the personal data collected by us are: name and surname - used for identification; email address, telephone - for communication. This personal data we receive in the communication process is used exclusively to be able to respond to your requests. You may be asked for data required by your tax code for billing purposes, if you request a reservation. Involuntarily transmitted data are: IP address -when you visit our website; operating system, browser type, browsing activity and other information related to browsing the website. This information is collected through cookies or similar technologies.

 

Information we collect from third parties

From time to time, we may receive personal information about you from third party sources, including partners with whom we provide services under the same brand or with whom we are involved in joint marketing activities, as well as sources such as social media sites.

2. How we use the information we collect

We use the information we collect only in accordance with this Privacy Policy.

 

We never sell personal data

We will never sell your personal information to third parties.

 

Use of personal data

In addition to the uses identified elsewhere in this Privacy Policy, we may use your personal information to:

  • improving the browsing experience by customising websites;
  • to send information or content that we think you may find of interest, by post, email or other means and to send marketing communications related to our business;
  • promoting the use of our services to you and sharing promotional and informational content with you in accordance with your communication preferences;
  • to contact you about billing and other administrative matters;
  • to send you information about changes to the Customer Terms of Service, Privacy Policy (including Cookie Policy) or other legal agreements;
  • investigate and help prevent security problems and abuse;
  • meet legal requirements.

 

Legal basis for processing personal information (for EEA visitors only)

Our legal basis for collecting and using the personal information described above will depend on the personal information in question and the specific context in which we collect it. However, we will normally only collect personal information from you where we have your consent to do so (via cookies, forms confirming choices (double opt-in) or signed forms and agreements), where we need personal information to enter into a contract with you, or where the processing is in our legitimate interest and does not conflict with your data protection interests or fundamental rights and freedoms.

In some cases we are also legally required to collect personal information from you

If we ask you to provide personal information in order to comply with a legal requirement or to perform a contract with you, we will clarify this at the time and let you know whether or not providing your personal information is mandatory (and the possible consequences if you do not provide your personal information). Similarly, if we collect and use your personal information based on our legitimate interests (or those of any third party), we will clarify to you at the relevant time what those legitimate interests are.

 

Using navigation information

We use Navigational Information to operate and improve the site and to provide you with a better experience when you interact with our site. We may also use Navigational Information separately or in combination with personal data to provide you with personalized content. Navigational Information, such as your IP address, is used to approximate your location. For example, we may use approximate location to deliver content that has been translated or send emails at certain times using your local time zone.

You can disable the collection and use of location data via browser, operating system or device settings.

Consent for location data can be withdrawn at any time by email to [email protected] - by contacting Alex Baicoană - Data Protection Officer.

We also inform you that the withdrawal will operate only from that moment, so that the processing of data on the basis of consent is valid for the period during which consent was given.

 

Customer comments and testimonials

We post customer testimonials and reviews on our website, which may contain personal information. We obtain each customer's consent by email before posting their name and testimonial.

 

Use of payment information

If you provide us with payment information, we use it only in accordance with this Privacy Policy to enable us to use our Services, including to verify your creditworthiness and to collect payments from you. We use a third party service provider to handle credit/debit card processing. This service provider is not permitted to store, retain or use the information you provide except for the sole purpose of credit card processing on our behalf or if required to do so by national law.

 

Security of your personal data

We use a variety of security technologies and procedures to protect your personal information from unauthorized access, use or disclosure. We secure the personal information you provide on computer servers in a controlled, secure environment protected from unauthorized access, use or disclosure. All personal information is protected by appropriate physical, technical and organizational measures.

 

Social media features

Our sites include social media features such as LinkedIn, Facebook & Instagram and YouTube buttons & widgets such as the Share button or interactive mini-programs that run on our site. These features may collect your IP address, the page you visit on our site, and may set a cookie to allow the feature to run correctly. Social Media Features and Widgets are either hosted by third parties or directly on our website. This Privacy Policy does not apply to these features. Your interactions with these features are governed by the privacy policy and other policies of the companies that provide them.

 

External sites

Our website provides links to other third party websites. We do not control and are not responsible for the content or practices of these other sites. The provision of such links does not constitute our endorsement of those sites, their content, owners or practices. This Privacy Policy does not apply to these other websites, which are subject to any privacy or other policies they may have.

 

Retention of personal data

The length of time for which we keep the information we collect about you depends on the type of information, as described in more detail below. After this period, we will delete or anonymise your information or, if this is not possible, securely store your information and isolate it from further use until it can be deleted.

We retain the personal information you provide to us if we have a legitimate interest in doing so (for example, if necessary to comply with our legal obligations, resolve disputes and enforce our agreements).

When the legal basis for processing your personal data no longer exists, we securely delete or anonymise the information or, if this is not possible, store it securely and isolate it from further processing until it can be deleted. We will delete this information at an earlier date if you request us to do so.

If you have opted to receive marketing communications from us, we retain information about your marketing preferences for a reasonable period of time from the date you last expressed interest in our content, products or services, such as when you last opened an email from us or stopped using our website. We retain information derived from cookies and other tracking technologies for a reasonable period of time from the date such information was created.

 

3. How we share the information collected

Service providers

We engage other third party service providers to provide services on our behalf to visitors to our website and customers and users of the Subscription Service and may need to transfer your data to them in order to provide you with information, products or services. Examples may include analyzing data or performing statistical analysis, providing marketing assistance, processing credit card payments, completing information you provide to us to provide you with better service, and providing customer service or support.

These service providers are prohibited from using your personal information except for these purposes and are required to maintain the confidentiality of your information In all cases where we share your information with such agents, we explicitly require the agent to acknowledge and adhere to our privacy and customer data handling policies.

 

Corporate events

If we (or our assets) are acquired by another company, whether through merger, acquisition, bankruptcy or otherwise, that company will receive all of the information collected by us on our website. In that event, you will be notified by email and/or a notice visible on our website of any change in ownership, use of your personal information, and the choices you have regarding your personal information.

 

Forced disclosure

We reserve the right to use or disclose your personal information if required to do so by law or if we reasonably believe that use or disclosure is necessary to protect our rights, to protect the safety of you or others, to investigate fraud, or to comply with a law, court order or legal process.

 

4. Rights of the data subject

  • Right to withdraw consent

You may withdraw your consent to the processing of your data at any time by sending a request to this effect to [email protected]. Please note, however, that to the extent that we have identified another lawful basis for processing your data, we will continue to process your data on the basis of that lawful basis. We have the legal possibility to use one or more grounds for processing your data.

  • The right to be informed about the processing of your data
  • Right of access to data

You have the right to obtain confirmation from us as to whether or not personal data relating to you are being processed and, if so, access to that data and to the information referred to in Article 15(1). (1) of the GDPR.

  • Right to rectify inaccurate or incomplete data

You have the right to obtain from us, without undue delay, the rectification of inaccurate personal data concerning you.

  • Right to erasure ("right to be forgotten")

In the situations set out in Article 17 of the GDPR, you have the right to request and obtain the erasure of personal data.

  • Right to restrict processing

In the cases provided for in Article 18 of the GDPR, you have the right to request and obtain restriction of processing.

  • "Right to portability" - the right to transfer data we hold about you to another controller

In the cases provided for in Article 20 of the GDPR, you have the right to request and obtain data portability.

  • Right to object to data processing

In the cases provided for in Article 21 of the GDPR, you have the right to object to the processing of your data.

  • The right not to be subject to a decision based solely on automated processing, including profiling with legal or similar significant effects on you
  • The right to take legal action to defend your rights and interests
  • The right to complain to a Surveillance Authority

To exercise any of these rights, please contact us at [email protected] - Alex Baicoană - Personal Data Protection Officer. We will respond to your request to amend, correct or delete your information within a reasonable time and inform you of the actions we have taken.

 

To unsubscribe from our communications

You can unsubscribe from our marketing communications by clicking on the "unsubscribe" link at the bottom of our emails, updating your communication preferences, or by emailing [email protected] - Alex Baicoană, Privacy Officer.


    Copyright Hotel ohma by winsedswiss
    • 20 Poiana lui Stechil Street, Braşov County, Poiana Brașov 500001
    • +40 728 913 391
    • [email protected]

    We accept payment with holiday vouchers

    This will close in 0 seconds