Personal data

Privacy and protection policy

We attach great importance to the confidentiality and protection of the personal data we process.

Indeed, as the party responsible for processing your personal data, we do everything in our power to protect your privacy and the information you provide to us, particularly when you visit our website, book a room or subscribe to our newsletter.

Our privacy and data protection policy is part of this approach.

By reading this document, you will know in particular how we collect your personal data, what type of information is collected and for what purpose it is used, with whom we share this data and what measures are taken to protect it.

By using this site and/or our products and services, you consent to the processing of your personal data as described in this privacy policy.

In accordance with current legislation, you have the option of registering free of charge on the Bloctel telephone anti-solicitation list, in order to stop receiving calls for commercial purposes.

We may modify our Privacy and Personal Data Protection Policy from time to time. Any modification will take effect immediately upon publication on our site. We therefore invite you to refer to it each time you use our website.

Why do we collect personal data?

We collect and use your personal data in order to improve and develop our products and services, to provide you with the best possible customer service, to provide you with a personalized experience when staying at the Hotel and using our services, and to make it easier for you to navigate our website.

We collect your personal data for legitimate reasons and/or with your consent.

We use your personal data for the following purposes:

1. 1. For the purposes of entering into a contract or fulfilling contractual obligations

We collect your personal data in order to identify you, provide you with a service or make and manage your reservations.

The collection of your personal data enables us to provide you with information about your reservation, billing and the follow-up of our customer relations. This data may be used before your stay to send you information about your stay at the hotel. After you have left the hotel, we may also send you information about your stay, as well as satisfaction surveys to provide you with feedback about your experience at the hotel.

1. 2. Because of our legitimate interest in collecting your personal data

We have a legitimate interest in collecting your personal data in order to communicate with you and answer your questions.

In addition, we use personal data to monitor the activity of our users’ accounts and ensure the security of our customers, in particular by monitoring the possibilities of fraud and analyzing any activity that is suspicious, potentially illegal or in disagreement with our general terms and conditions of sale and/or use. Such processing is justified by our legitimate interest in ensuring the security of our products and services.

1. 3. With your consent

Subject to your prior consent, we may use your personal data, and mainly information relating to your stay, in order to individualize your booking experience on our site, personalize our offers and make recommendations to you concerning our services offered by third-party sites and applications that may be of interest to you.

We use personal data to facilitate our advertising and marketing campaigns and to provide you with information about services that we think may be of interest to you.

If you have given us your consent, we may send you promotional messages, marketing offers, advertisements and other information that may be of interest to you based on your holiday preferences. This includes possible competitions and other promotional activities. You will always be able to ask us not to send you promotional material or information.

1. 4. To meet legal obligations

We process your personal data in order to fulfil our legal obligations.

We reserve the right to anonymize personal data collected and to use such data.

We store your billing information and other information collected about you for as long as necessary for accounting purposes or to comply with other legal obligations to which we are subject.

We may process your personal data for purposes other than those mentioned here, but only if they are compatible with the original purpose for which the data was collected. In doing so, we will ensure that:

• the link between the purposes, the context and the nature of the personal data are suitable for further processing;
• further processing will not harm your interests and ;
• there is an appropriate backup for the treatment performed.

What type of data do we collect and how do we collect it?

The term “data” refers to any personal information that identifies you as an individual and that you provide in the course of your interactions with us.

On various occasions, we may collect information about you:

1. 1. The data you provide

We collect the socio-professional data that concerns you and that you may provide to us, such as your name, e-mail address, home and work addresses, telephone number, nationality, date of birth, preferences during your stays, which you provide to us when you book a room via our reservation system or directly at the Hotel, purchase and/or use one of our products or services, or during your stays at the Hotel, when you connect to the WI-FI service provided by the Hotel or during the various interactions you may have with our services, in particular when you register on our site, when you contact us, when you subscribe to our newsletters, to an online survey or to promotional operations, or when you use our online help section or any other function on our site.

In addition, when you make a reservation, we (or our financial service providers) collect personal data relating to that reservation, as this is necessary to process your request. The information collected includes payment details, in particular your credit/debit card number.

1. 2. The data we collect automatically

When you browse our website, we collect data relating to the follow-up of the commercial relationship with you: type of stay booked, type of room booked, special requests made to the Hotel in anticipation of your stay, product and/or service purchased in addition to the booking, service or subscription taken out, quantity, amount, periodicity, as well as any other relevant information about your stay at the Hotel, the history of your bookings and the services you have requested, correspondence and/or your telephone exchanges with our teams, etc.

We also collect data relating to the type of device you use when browsing our site or, on the occasion of your stay at the Hotel, when using the Hotel’s Wi-Fi connection (your device’s unique identifier, your device’s IP address, your operating system, the browser used, your usage, diagnostic and location data from or about your computers, the type of device from which you access our products and services). Where such data is available, we may use your GPS coordinates, IP address and other technologies to determine the approximate location of your device, with the aim of improving our products and services and providing you with a better experience as a user of our services. This also includes changes automatically stored by cookies and other similar tools used by us or our third-party service providers.

1. 3. Information from our partners

We collect information from our trusted partners subject to confirmation that they have legitimate grounds for sharing the information with us. This is either information you have provided to them directly or information they have collected about you for other valid legal reasons.

This is the case, for example, when you book your stay at the hotel via a travel agency or when your information is provided directly to one of our franchisees.

1. 4. Public information

We may collect information about you that is publicly available.

We voluntarily do not collect sensitive information, such as racial or ethnic origins, political opinions, religious or philosophical beliefs, health details or sexual orientation.

How long do we keep data?

We will only retain your personal data for as long as is necessary for the purposes set out in this privacy policy or as required by applicable law. The length of time we retain your personal data depends on the nature of the data and the purposes for which we collect it.

Your personal data concerning information relating to your browsing on the site and promotional announcements sent to you are kept, on an active basis, for a period of three (3) years from your last activity on the site or on an electronic communication medium (in particular an e-mail). At the end of this period, your profile is considered “inactive” and is automatically deactivated.

Your personal data relating to a reservation on the site (surname, first name, product or service, billing address, preferences relating to your stay at the Hotel, etc.) are kept for a period of three (3) years from the date of the reservation.

However, at the end of the aforementioned periods, including after your request for deletion, your personal data may be archived intermediately in order to meet our legal, accounting and tax obligations and/or any limitation periods attached to our relationship.

Where is your personal data stored?

We may use the services of various third-party providers to assist us in providing services related to our website. Our service providers may be located inside or outside the European Economic Area (“EEA”). Where applicable, transfers of your personal data will be carried out in accordance with the applicable laws.

Our service providers have limited access to your personal data in order to carry out the tasks they perform on our behalf, and are contractually bound to protect and use it only for the purposes for which it was provided and in accordance with this Privacy Policy. Before sharing your personal data with third parties, we have put in place the necessary measures to ensure that there is a sufficient level of data protection with these third parties.

With whom do we share personal data?

If you book a room on our website, we may share your personal data with the Hotel where you have chosen to stay in order to finalize your reservation. Please note that if your personal data is transferred to a country outside the European Union, we will take the necessary measures to maintain the highest level of protection for the confidentiality of your personal data.

However, we undertake not to sell or pass on your details to third parties for their own commercial activities.

Subject to your consent, we may share certain data with strategic partners such as mailing houses, courier service providers and customer satisfaction research companies for the sole purpose of sending and distributing promotional material.

Nous pourrons également être amenés à transférer de manière temporaire et sécurisée à des tiers certaines données personnelles qui sont nécessaires pour l’exploitation, l’animation, la maintenance de notre site internet, pour assurer notamment l’envoi des emails que vous avez choisi de recevoir, et/ou l’accomplissement de tâches nécessaires à l’exécution des services, de votre réservation, pour assurer la réalisation de prestations.

We may also be required to disclose personal information when required to do so in connection with a judicial proceeding, court order, subpoena, warrant or legal process, or when required by law, to protect human life; to maintain the safety of our products; and to protect our rights and our customers, as well as in connection with a compelling investigation and strictly to the extent required by applicable law.

How do we protect your personal data?

We take appropriate technical and organizational measures, in accordance with applicable legal provisions, to protect your personal data against unlawful or accidental destruction, loss or alteration, or unauthorized disclosure or access.

We are constantly adapting our security measures to keep abreast of technological advances and developments. To make card payments as secure as possible, all data is transmitted in encrypted form. This means that your data is transmitted via a secure connection and that external parties cannot read your personal data. For card reservations and purchases, we work with payment service providers that comply with the PCP protocol and help us to verify directly with your bank that the card allows you to make purchases. Our payment service providers process your card data in accordance with the PCI DSS international security standards developed by the VISA, MasterCard, Diners, American Express, JCB and other credit card companies. This means that your card details are processed with a very high level of security. When you pay by card, we reserve the right to carry out an identity check. You can also contribute to the security of your data by taking the following security measures:

• Change your password regularly using a combination of letters and numbers;
• Make sure you use a secure Internet browser.

What about cookies and other technologies?

A “cookie” is a text file that may be stored, subject to your choices, in a dedicated space on your terminal’s hard disk when you consult the site. A cookie file enables its issuer to identify the terminal in which it is stored for the duration of the cookie’s validity or storage, and must therefore be considered as personal data.

We (and third-party service providers acting on our behalf) use cookies and similar technologies to process your personal data when you visit our website.

This enables us to connect you, to provide you with advertising based on your preferences and interests, to fight fraud, to analyze the performance of our products and services, and to fulfill other legitimate objectives, such as knowing which pages of our site are the most visited, as well as the activity and time spent by visitors on our site. These technological tools also enable us to assess the effectiveness of our marketing and, consequently, the attractiveness of our products and services to our customers.

As with most similar websites, certain information is automatically recorded via a protocol. This information includes protocol addresses (IP addresses), type of browser used, Internet service provider, reference and end pages, operating system, date, time and Clickstream data.

Cookies do not record information provided by users when booking online or registering a customer account. Cookies identify your browser (rather than you) and cannot by themselves reveal your identity.

You can set your browser to block these cookies, although this may affect your ability to perform certain operations, use certain functions and access certain content on our website. If you have consented to the use of cookies on our website, these cookies have a lifespan of thirteen (13) months.

In addition to the cookies used to identify browsing history and feed statistical tools, we also use our partners’ technologies, which are subject to their own personal data protection policies. We inform you of the purpose of the Cookies we are aware of, and of the means available to you to make choices with regard to these Cookies.

What are your rights and, in particular, your rights of recourse?

• Right to information: This enables you to find out whether your personal data is being processed; what data is collected, where it comes from, why and by whom it is processed.
• Right of access: You have the right to access the data collected concerning you. This includes your right to request and obtain a copy of your collected personal data.
• Right of rectification: You have the right to request the rectification or deletion of your personal data that is inaccurate or incomplete.
• Right to erasure: Under certain circumstances, you may request that your personal data be deleted from our archives.
• Right to restrict processing: You have the right to restrict the processing of your personal data.
• Right to object to processing: In certain cases, you have the right to object to the processing of your personal data, for example in the case of direct marketing.
• Right to object to automated processing: You have the right to object to automated processing, including profiling. You can exercise this right when the use of profiling produces legal effects that significantly affect you.
• Right to data portability: You have the right to obtain your personal data in a machine-readable format or, if feasible, by direct transfer from one processor to another.
• Right to withdraw your consent: You have the right to withdraw any consent given for the processing of your personal data.
• Right to give instructions on what to do with your personal data after your death: You have the right, at any time, to give us instructions on how you wish the personal data we process about you to be managed after your death.
• Right to lodge a complaint with the supervisory authority: You may, at any time, lodge any complaint with the competent supervisory authority, i.e. the CNIL.

All requests will be processed as quickly as possible and in accordance with applicable law.

If you request the deletion or erasure of your data, we inform you that we may, if necessary, archive your data for the period permitted by the applicable legal provisions in order to comply with our legal obligations or if we deem it necessary to prevent fraud or any other type of abuse, as well as for legitimate purposes such as the analysis of non-personal data, debt collection or the respect of our/your rights in the event of a claim or recourse.

Concerning commercial messages, you can manage your preferences and select the commercial messages you wish to receive from us by contacting us using the contact form by clicking here.

You may also object to the collection of your personal information for targeted advertising. Please contact us using the details below:

Tiara Miramar Beach Resort – 6 Boulevard de l’Esquillon – 06 590 Théoule sur Mer France // Tel: +33 (0) 4 92 28 60 30 // Email: ncetm.reservations@ihg.com

What about third-party websites and services?

Our websites, products and services may contain links to, or give you the opportunity to access, third-party websites, products and services. We are not responsible for the privacy practices of such third parties, nor for the information or content of their products and services. This privacy statement applies solely to data collected by us through browsing and transactions relating to our products and services.

What about information on minors?

Our products and services are intended exclusively for adults. Therefore, we do not knowingly collect, use or disclose data from minors under the age of 16. If we learn that we have collected personal data from a minor under the age of 16, we will take the necessary steps to delete this data as soon as possible. If you learn that a minor under the age of 16 has provided us with personal data, please inform us immediately.