General Data Protection Regulation (GDPR)
This is a combined registration and information description for the customers, potential customers, partners and website visitors of Tammisaaren Kaupunginhotelli Oy based on the Personal Data Act (5.12.2018/1050) and EU regulation (2016/679) of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
Tammmisaaren Kaupunginhotelli Oy
Pohjoinen Rantakatu 1
+358 (0) 19 241 3131
* * * * *
The data we are collecting
– contact details of our customers
– contact details of the potential partners
Sources of the data
We obtain the data from person/company themselves. When you visit our website or otherwise contact us, we save your contact details in our register.
The data we are processing
We only process the data you provide us.
You have the right to review the data that has been collected about you once (1) a year free of charge. For additional reviews we are entitled to charge reasonable expenses.
If you do not wish to receive cookies, you may disable them on your web browser settings. Kindly note, that disabling cookies may prevent you from using our website properly.
Why do we process your information?
– To make sure that we can offer you a smooth customership with up-to-date information
– For targeted marketing so that you will receive only relevant marketing from us.
How and how long do we store your data
We store your data according to accounting legislation. This means that your data is collected and stored through your customership. The data is mainly stored in servers located in EU. If our partners temporarily backup data to servers outside of EU, they follow European GDPR requirements. The data will be deleted e.g. five (5) or ten (10) years after the last visit on our hotel.
The data of potential business partners is stored for marketing purposes for twelve (12) months.
Your data is protected by
– securing the internet connection (https)
– using firewall
– using encryption
– limiting the access to database: only the personnel who require database in their work can access the register
You are entitled to
– audit right
– objection right
– decline direct marketing
– get your data deleted from our database
– appeal right
* * * * *