Personal Data Protection and Cookie Management Charter
This Personal Data Protection and Cookie Management Charter sets out the policy of ACE HOTEL HOLDING with regard to the protection of privacy, the collection of personal data and cookies.
It applies to data collected on the ace-hotel.com web site.
To facilitate access to his charter,it is available both on our home page and anywhere else where you are required to provide personal information.
This charter informs you:
- of our arrangements for collecting your personal data, in strict compliance with your rights,
- of the data liable to be collected on our Site,
- on the use that may be made of the collected data and of your rights to the said data.
In this charter and/or whenever you are requested to provide personal data, ACE HOTEL HOLDING explains to what end such data is processed and the means used to collect, record or modify it.
ACE HOTEL HOLDING undertakes to:
- abide by the principles of protection of personal data,
- inform data subjects of their right to access, rectify and object to the use thereof,
- accomplish all the requisite legal and/or regulatory formalities.
You are hereby advised that in collecting your personal data we comply with the law no. 78-17 of 6 January 1978 on information technology, databases and civil liberties, amended and in its current version, with the General Data Protection Regulation adopted on 27 April 2016 by the European Parliament and with the resulting laws and regulations.
1. Definition and nature of personal data
When you use our web site we may be led to collect the personal data you provide:
- in an information form,
- when signing up for a loyalty programme,
- when signing up for a newsletter
- when entering a competition
By “personal data” is meant any data that identifies you directly or indirectly (by aggregating information) such as first and last names, pseudonyms, date of birth, photograph, postal and e-mail addresses, telephone numbers, etc.
2. Rights of access to and rectification or erasure of personal data, the right to data portability and the right to object
Pursuant to the French data protectionlaw (loi informatique et libertés) no. 78-17 of 6 January 1978 and the provisions of the General Data Protection Regulation adopted by the European Parliament on 27 April 2016, you have a right to access and rectify or erase personal data, the right to data portability and the right to object to the processing of your personal data. You can also object to the processing of your personal data for canvassing and marketing purposes.
You can exercise your right to access your personal data and have it rectified by contacting ACE HOTEL HOLDING – The Data Protection Officer – 6 Allée Evariste Galois, 63000 Clermont Ferrand..
By e-mail at firstname.lastname@example.org
To that end, please send a letter or e-mail signed by the author of the request together with proof of identity (national identity card or passport) bearing the signature of the person exercising his or her rights.
3. Management of personal data by ACE HOTEL HOLDING
3.1 Personal data collection methods
When you navigate on the ace-hotel.com web site, we may be led to collect your personal data in order to be able to offer you the services proposed on the site. Before we collect any personal data, we ask you to give your consent by ticking the relevant box after reading this data protection charter.
3.2 Purpose of data collection
Your personal data is collected for any of the following purposes:
- Sending you newsletters and special offers, and keeping you informed of new products and services;
- Managing your subscriptions and non-renewals of newsletters and satisfaction surveys;
- Preparing reports, marketing statistics, market and behavioural surveys, more particularly with a view to improving our products and better meeting your requirements by offering you products matching your needs;
- Creating customer accounts to record your applications for joining different loyalty programmes;
- Tracking the customer relationship, more particularly to handle your complaints and enquiries;
- Managing your right to access and rectify or object to the processing of your data;
- Keep your data in legal documents in accordance with accounting standards for the requisite legal retention period, with a view to responding to enquires from the tax authorities and welfare agencies if necessary;
- For job applications filed online, in order to examine your application and contact you if a vacancy arises in our company.
We undertake to collect only data that is strictly necessary for the processing in question, in order to be able to handle your enquiries and offer you services proposed on our web site.
3.3 Data retention
The personal data we collect is retained only for the period needed to the purpose in question and in any event for no longer than:
3 years from the end of the business relationship for partners or customers, and 3 years from collection of the data or the last contact for prospective customers, and in either case solely for marketing purposes
After which time, if the collected data is no longer needed for the purpose for which it was collected:
- we undertake to contact you to ask you whether or not you wish to continue receiving special offers;
- failing which, the data will be archived and anonymized or destroyed.
You can object to the processing of your personal data at any time, as you have the right to access and rectify or erase it and the right to object to its processing, as explained earlier.
3.4 Recipient of the data
Your personal data is collected for ACE HOTEL HOLDING.
In order to be able to perform the processes enumerated earlier, we share your data with authorized staff duly empowered for the purpose, namely:
- Our internal departments: Human Resources, Payroll, Accounts, Internal Communication
- Our processors: Debussac Multimédia/Winner Web Hôtel
Your personal data collected by us is not intended to be transferred outside the European Union. However, should your data be transferred abroad, more particularly outside the European Union, we guarantee that we take all appropriate measures to guarantee an adequate level of protection of your data, such as:
- Moving towards countries said to be “safe”, that is, offering a high level of protection of your data;
- Obtaining the necessary approvals from the supervisory authority before any data is collected if this is required by the authority in the country in question;
- Obtain guarantees of data security and confidentiality from the processors, for instance by imposing strict contract clauses, reserving the right to control it regularly and to conduct audits.
4. Security and confidentiality of personal data collected
The security and confidentiality of the personal data you entrust to us is a priority for us.
We take all appropriate technical and organizational measures with regard to the nature of your personal data and the risks arising in the processing thereof.
We do this to preserve the security of your personal data, and not least to prevent it being distorted, destroyed, damaged, or accessed by unauthorized third parties.
To that end we have implemented technical and organizational measures such as protecting access to your customer area with a password and personal user ID
The security and confidentiality of personal data also depends on everyone's good practices. We would therefore urge you never to disclose your user ID and password to anyone else, to always log out of your profile and customer account (more particularly in case of linked accounts), to close your browser window after your session, especially if you access the Internet from a workstation shared with others, and not to save your user ID and password in your browser. You will thus avoid other users accessing your personal information.
Cookies management policy
The term “cookies” covers all the trackers generated when you visit a web site, read your e-mail, use a software program or a mobile application in particular. It is a text file that the site you visit saves on your hard drive or in the memory of your browser. A cookie lets your computer memorize technical data that controls public access to our sites (number of visits, advertising banner viewing frequency, connection to other sites, etc.) or that customizes the pages displayed for when you next interact with this site.
When you browse on our Site, your browsing details may be saved in “cookie” files on your computer, tablet or smartphone.
Cookies are important for the serviceability of a site. Cookies memorize connection details and ensure a secure connection, they store statistics with a view to enhancing the site's functionality and to adapting its content to your centres of interest.
1. Types of cookies
There are several types of cookies, and it you accept them they offer you a number of features.
Cookies generated by ACE HOTEL HOLDING on its Site:
These cookies generated by ACE HOTEL HOLDINGare saved on your computer, tablet or smartphone more particularly to enhance your browsing experience on our Site.
When you browse on our Site, your computer dialogues with a server, which provides it with all the requisite resources by automatically saving each operation in a dedicated file in which your computer is identified by its IP address. Your browser thus automatically transmits certain standard data to us: the IP address, the type of browser you use, its functions, your operating system, any third-party sites (Facebook, Twitter, etc.) from which you log on, as well as the dates and times at which you access our sites.
This data, in particular your IP address, cannot identify you personally.
The cookies we generate help us:
- monitor the general activity of our Site, detect errors and ensure that our Site's hardware resources are fit for purpose;
- generate statistics on site traffic and use of various parts on our Site;
- adapt the presentation of our Site to your device's display preferences (language, operating system, etc.)
- enhance your use of the Site by not presenting the same information whenever you visit the site or by customizing its content according to any preferences or centres of interest you may have indicated;
- improve browsing ergonomics and identify the centres of interest of web users in their entirety.
Cookies generated on our Site by third parties:
Third-party cookies are subject to the privacy protection policies of these third parties. We inform you of the purpose of cookies we are aware of, and of the means at your disposal to make decisions with regard to these cookies.
- Facebook Pixel
Web analytics cookies:
We use Google Analytics to collect data on your use of our Site, in order to:
- help us measure and study the effectiveness of our Site's content,
- monitor the analytics data on our sites and on the use thereof by Users,
- improve the services offered on our sites.
Google Analytics collects information on the pages you visit and the time you spend on them. We never collect your personal data.
We do not allow such data to be shared or used.
In the settings you can disable the transmission of information to the Google Analytics service.
2. Persistence of cookies
In accordance with current regulations, the cookies collected on our web site expire after 13 months maximum.
3. Managing cookie preferences
You can manage cookies in a number of ways. Your browser may also be configured to alert you of cookies saved on your computer, tablet or smartphone and ask you whether or not you want to accept them.
The configuration of each browser is different. It is described in the help menu of your browser, which explains how you can modify your cookie preferences.
You can disable cookies by following the instructions below:
Updating the charter
We reserve the right to modify this Charter at any time, in full or in part, on account of changes in our uses and internal procedures. The latter always aim to be in compliance with any modifications in French and European statutory and regulatory requirements. Please consult this Charter at regular intervals before your personal data is collected, for a better knowledge and understanding of how your personal data is used. At regular intervals we may ask you to confirm your knowledge of this charter.
This Charter was last updated on: 3 July 2018