Privacy Policy

HOTEL ABADIA DEL PRIORAT S.L.U. works to offer you the best possible experience through our products and
services. In some cases it is necessary to collect information to do this. We care about your privacy and we believe
that we must be transparent about it.

Therefore, and for the purposes of the stipulations of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT
AND OF THE COUNCIL of 27th April 2016 (hereinafter “GDPR”) on the protection of natural persons with regard to the
processing of personal data and on the free movement of such data, and the information society services and e-
commerce act, LAW 34/2002 of 11th July 2002 (hereinafter, “LSSI”), HOTEL ABADIA DEL PRIORAT S.L.U. informs the
user that, as data controller, it will add the personal data provided by them to an automated file.

Our commitment begins by explaining the following to you:

We collect your data to improve your user experience by taking into account your interests and needs. We
are transparent about what data we collect about you and why we collect it.

Our intention is to offer you the best possible experience. Therefore, when we use your personal information, we will
always do so in accordance with regulations, and where necessary we will ask for your consent.
We understand that your information belongs to you. Therefore, if you choose not to give us permission to process it, you can ask us to stop processing it.

Our priority is to assure your security and to process your data in accordance with EU regulations.

If you would like more information on how we process your data, please see the different sections of the privacy policy
below:

Who is the controller for the processing of your personal data?

Identity:
HOTEL ABADIA DEL PRIORAT S.L.UBusiness address: C. MAJOR, 25
Tax no: B02828499
Email: info@orahotelpriorat.com

HOTEL ABADIA DEL PRIORAT S.L.U. has appointed a data protection delegate or an internal contact person within
its organisation. If you wish to enquire about the processing of your personal data, you can contact them at the email
address info@orahotelpriorat.com

What personal data do we collect?
Personal data the user may supply:
Name, address and date of birth.
Telephone number and email address.
Location.
Information concerning payments and returns.
IP address, date and time at which you access our services, the internet browser you use and data about the operating system of your device.

Any other information or data you decide to share with us.
In some cases, it is obligatory to fill in a form to access certain services offered on the website; moreover, not supplying the personal data requested or not agreeing to this data protection policy means it will be impossible to subscribe, register or take part in any of the promotions for which personal data are requested.

Why and for what purposes do we process your data?
HOTEL ABADIA DEL PRIORAT S.L.U. processes the information supplied to us by interested persons for the following
purposes:

To handle orders or contract any of our services, either online or in physical outlets.
To handle despatch of the information you request.
To carry out commercial actions and conduct maintenance and management of the user relationship, as well as management of the services offered through the website and information tasks; we may make automatic assessments,
construct profiles and perform client segmentation tasks in order to personalise processing according to their features and needs and enhance the customer’s online experience.
To run and manage any competitions, draws or other promotional activities that may be organised.
In some cases it will be necessary to supply information to the authorities or third-party companies for auditing purposes, as well as to handle personal data in invoices, contracts and documents to respond to any complaints by customers or the authorities.
You are informed that the personal data obtained as a result of your registration as a user will be part of its record of processing activities (RPA), which will be regularly updated in accordance with the stipulations of the GDPR.

What is the legitimate basis for processing your data?
Processing of your data may be based on the following legal grounds:

Consent by the data subject for contracting services and products, for contact forms, enquiries or subscription to newsletters.
Legitimate interest in processing our customers’ data for direct marketing and explicit consent by the data subject for everything connected with automatic assessments and profiling.
Compliance with legal obligations to prevent fraud, communication with public authorities and third-party claims.

How long do we keep your personal data for?
Processing of the data for the purposes described will continue for the time necessary to fulfil the purpose for which they were collected (for example, while the commercial relationship lasts), as well as for compliance with legal obligations arising from the processing of data.

To whom are your data disclosed?
In some cases, only where necessary, HOTEL ABADIA DEL PRIORAT S.L.U. will supply user data to third parties.

However, the data will never be sold to any third parties. External service providers (e.g. payment providers or delivery
companies) with which HOTEL ABADIA DEL PRIORAT S.L.U. works may use the data to provide the pertinent services; nevertheless, they will not use the information for their own purposes or transfer it to any third parties.

HOTEL ABADIA DEL PRIORAT S.L.U. makes every effort to assure the security of personal data when they are sent outside the company and ensures that third-party service providers abide by their confidentiality and have adequate measures in place to protect personal data. These third parties are under the obligation to guarantee that the information is
processed in accordance with data protection regulations.

In some cases, the law may require that personal data be disclosed to public bodies or others, in which case only what is strictly necessary to meet these legal obligations will be disclosed.
The personal data collected may also be shared with other companies in the same group.

Where are your data stored?
In general, data are stored within the EU. When data are sent to non-EU third parties, we ensure that they offer a sufficient level of protection, either because they have binding corporate rules (BCR) or because they are members of “Privacy Shield”.

What are your rights and how can you exercise them?
You may address communications and exercise your rights by applying to the following email address: info@orahotelpriorat.com

By virtue of the stipulations of the GDPR you can apply for the following:
Right of access: you can ask for information on the personal data we have about you.
Right to rectification: you can communicate any change in your personal data.
Right to erasure and to be forgotten: you can request erasure after blocking your personal data.
Right to restriction of processing: this means restricting the processing of your personal data.
Right to object: you can withdraw your consent to the processing of your data by objecting to further processing thereof.
Right to portability: in some cases you can request a copy of the personal data in a structured, commonly used machine-readable format for sending to another data controller.
The right not to be the subject of individualized decisions: you may request that decisions not be taken which are based solely on automated processing, including profiling, which produces legal effects or significantly affects the data subject.

In some cases the request may be refused if you request the erasure of data necessary to comply with legal obligations.

Furthermore, if you have a complaint about the processing of data you can lodge a complaint with the data protection authority.

Who is responsible for the accuracy and veracity of the data supplied?
The user has sole responsibility for the veracity and accuracy of the data they supply, holding HOTEL ABADIA DEL PRIORAT S.L.U. harmless of any liability in this respect. Users guarantee and are in any case liable for the exactness, currency and authenticity of the personal data they supply, and undertake to keep them duly updated. The user agrees to provide complete, correct information in the registration or subscription form. HOTEL ABADIA DEL
PRIORAT S.L.U. reserves the right to terminate the services contracted with users if the data supplied by the said users is false, incomplete, inaccurate or out of date.

HOTEL ABADIA DEL PRIORAT S.L.U. is not liable for the veracity of information it has not produced itself and for which another source is specified, and therefore takes no responsibility for any harm that might result from the use of such
information.

HOTEL ABADIA DEL PRIORAT S.L.U. reserves the right to update, modify or eliminate the information contained in its web pages and may even restrict or deny access to this information. HOTEL ABADIA DEL PRIORAT S.L.U. is to be held harmless of any liability for damages suffered by the user as a result of errors, defects or omissions in the
information provided by HOTEL ABADIA DEL PRIORAT S.L.U. where this comes from sources other than the latter.

Furthermore, the user certifies that they are over 14 years old and have the necessary legal capacity to give their consent to the processing of their personal data.

How do we process the personal data of minors?
In principle, our services are not specifically aimed at minors. However, in the event that any of them should be aimed at minors under fourteen years of age, in accordance with article 8 of the GDPR and article 7 of Organic Law 3/2018 of 5th December 2018 (LOPDGDD), HOTEL ABADIA DEL PRIORAT S.L.U. will require the valid, free, unequivocal, specific and informed consent of their legal guardians in order to process minors’ personal data. In this case, the official identity document or other form of identification of the person giving consent will be required.

In the case of persons over fourteen years of age, data may be processed with the consent of the user, except in those cases in which the law requires the assistance of the holders of parental authority or guardianship.

What security measures do we take to protect your personal data?
HOTEL ABADIA DEL PRIORAT S.L.U. has implemented the legally required levels of security for the protection of personal data, and makes every effort to install any other additional technical means and measures at its disposal to prevent the loss, misuse, alteration, unauthorized access and theft of personal data supplied to HOTEL ABADIA DEL PRIORAT S.L.U.

HOTEL ABADIA DEL PRIORAT S.L.U. is not responsible for any hypothetical damages that may arise from interference, omissions, interruptions, computer viruses, telephone breakdowns or disconnections in the operation of this electronic system, caused by reasons beyond the control of HOTEL ABADIA DEL PRIORAT S.L.U.; for any delays or blockages in the use of this electronic system caused by deficiencies or overloads of telephone lines or overloads in the data processing centre, in the Internet system or in other electronic systems, as well as any damage that may be caused by third parties through unlawful interference beyond the control of HOTEL ABADIA DEL PRIORAT S.L.U. Nevertheless, the user must be aware that Internet security measures are not impregnable.

Links to other websites
The WWW.ELXALETDELPRIORAT.COM website may contain links to other websites. By clicking on one of these
links and accessing an external website, the visit will be subject to the privacy policy of that website, and HOTEL
ABADIA DEL PRIORAT S.L.U. shall not be held responsible in any way for its privacy policy.
How do we use cookies?

The HOTEL ABADIA DEL PRIORAT S.L.U. website uses cookies in order to optimize and customize your navigation
through it. Cookies are physical information files that are hosted on the user’s own terminal; the information collected
through cookies is used to facilitate user browsing of the portal and optimize the browsing experience. The data
collected through cookies may be shared with the creators thereof but under no circumstances will the information so
obtained be associated with personal or other data that can identify the user.

However, if the user does not want cookies to be installed on their hard drive, they have the option of configuring their
browser to prevent the installation of these files. For further information, please see our cookie policy at
https://orahotelpriorat.com/cookie-policy/

Can the privacy policy change?
This privacy policy may be changed. You are advised to review the privacy policy from time to time.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.