COOKIE POLICY

COOKIE POLICY

Who is the controller of your personal data?
  1. The controller of your personal data is the company that manages the Via Hotels chain, which owns the hotel at which you are staying or in whose membership application process you are taking part (“Via Hotels”).
  2. If you have logged on as a member of our Via Hotels Club, the data controller is:
    Data controller: IT Hotels Sh.p.k.
    Postal address: Kompleksi Usluga, 1001, Tirana
    Telephone no.: +335 67 696 0869
    Email for matters related to data  contracting@vh-hotels.com
  3. Should you request information about our products and services, corporate expansion, corporate social responsibility or our latest press releases, the data controller is:
    Data controller: IT Hotels Sh.p.k.
    Postal address: Kompleksi Usluga, 1001, Tirana
    Telephone no.: +355 69 382 0797
    Email for matters related to data protection: klea.cuko@vh-hotels.com
Why do we process your personal data?
  1. Pursuant to the provisions, we hereby inform you that VIA processes the data you provide for the following purposes:
    • To handle and respond to requests about the products and services provided by our hotels posted at www.vh-hotels.com , including:
      1. Storing and processing your personal data in order to handle your booking.
      2. Managing our services, including reminders, technical notices and updates of services requested, amongst others.
      3. Recording and handling online troubleshooting, including our customer services that process your request.
    • Sending you marketing messages and advertisements, in addition to informing you of leisure and travel services and promotions provided by the hotels in the chain, provided you have not objected to this. Via Hotels may send you marketing messages by electronic means such as email or text messages.
    • Drawing up a marketing profile in order to show you advertising adapted to your tastes based on the information you provide to us and your stays at our hotels. No automated decisions shall be taken on the basis of your profile that have a legal or significant impact on you.
      You should be aware that the study of your consumer behaviour allows us to enhance your experience at VIA hotels.
    • Preventing abuse and fraud in the use of our services (e.g., fraudulent activities, denial-of-service attacks and sending of spam, amongst others).
    • Assigning data to public organisations and authorities, provided they are required pursuant to legal and regulatory provisions.
    • Handling staff selection processes.
  2. Via Rewards may process your personal data for the following purposes should you have signed up:
    • Handling your consent to and monitoring your compliance with the Privacy Policy and the General Terms and Conditions of Use of the Website, the Terms and Conditions of Membership of the Via Rewards loyalty programme, as well as any matters related to your membership of Via Rewards including, amongst other matters, handling and confirming your bookings through Via Rewards, sending all of the details about your booking to the hotel in the Via Hotels chain with which you have made a booking, streamlining the confirmation of your future bookings by keeping your personal data on record, informing you of your membership status and the amount of Travel Cash you have accumulated, in addition to responding to you questions and requests that you send to Via Rewards.
    • Sending you marketing messages and advertisements by electronic means (such as email or text messages) about: (a) offers, news and new features related to the hotel in which you are staying; and/or (b) offers, promotions and competitions run by Via Rewards or in which it is involved.
    • Carrying out automated segmentation and profiling processes based on the information provided by you and your stays at our hotels in order to send you personalised information and enhance our services.
    • Preventing abuse and fraud in the use of our services (e.g., fraudulent activities).
    • Assigning data to public organisations and authorities, provided they are required pursuant to legal and regulatory provisions.
  3. IT Hotels Sh.p.k. may process your personal data for the following purposes:
    • Handling any requests for information without obligation related to our products and services.
    • Handling any information requests related to expansion projects.
    • Sending the latest news updates from the press room.
    • Handling any information requests related to our commitment to social responsibility.
    • Carrying out automated segmentation and profiling processes based on the information provided by you and your stays at our hotels in order to send you personalised information and enhance our services.
    • Preventing abuse and fraud in the use of our services (e.g., fraudulent activities).
    • Assigning data to public organisations and authorities, provided they are required pursuant to legal and regulatory provisions.
How long will we keep your personal data on record?
Your data shall be kept on record while the contractual and/or commercial relationship lasts, or until you request its erasure, as well as for the time required to comply with legal obligations.
What is the legal basis for processing your data?
  1. The legal basis for processing your data lies in:
    • The performance of an agreement with VIA, in relation to section 2 A), point 1 above.
    • The legitimate interest of VIA to send marketing messages about similar products and services contracted in relation to section 2 A), point 2 above.
    • The legitimate interest of VIA in relation to section 2 A), point 3 above, which lies in showing you services, offers and promotions that we consider may be of interest to you because they are “similar” to other services you have contracted, all based on the preparation of a marketing profile. Your marketing profile shall be drawn up using the propitiatory information collected by VIA from your stays at our hotels.
    • The legitimate interest of VIA in relation to section 2 A), point 4 above, in order to protect VIA and/or its customers through the prevention of abuse and fraud in the use of our services.
    • Pursuant to the legal obligations applicable to VIA, for the purpose set out in section 2 A), point 5 above.
    • The explicit, Viambiguous consent given to VIA, in relation to section 2 A), point 6 above.
  2. The legal basis for processing your data by Via Rewards lies in:
    • The performance of an agreement with Via Rewards, in relation to section 2 B), point 1 above.
    • The legitimate interest of Via Rewards to send marketing messages about similar products and services contracted in relation to section 2 B), point 2 above.
    • The legitimate interest of Via Rewards in relation to section 2 B), point 3 above, which lies in showing you services, offers and promotions that we consider may be of interest to you because they are “similar” to other services you have contracted, all based on the preparation of a marketing profile and internal statistical reports. For these purposes, Via Rewards shall track your behaviour in order to ascertain whether you could benefit from other Via Rewards offers and services. Your marketing profile shall be drawn up using Via Rewards proprietary information.
    • The legitimate interest of Via Rewards in relation to section 2 B), point 4 above, in order to protect Via Rewards and/or its customers through the prevention of abuse and fraud in the use of our services.
    • Pursuant to the legal obligations applicable to Via Rewards, for the purpose set out in section 2 B), point 5 above.
  3. The legal basis for processing your data by Duques de Bergara S.L. lies in:
    • The explicit, Viambiguous consent given to IT Hotels Sh.p.k., in relation to section 2 C), point 1 above.
    • The explicit, Viambiguous consent given to IT Hotels Sh.p.k., in relation to section 2 C), point 2 above.
    • The explicit, Viambiguous consent given to IT Hotels Sh.p.k., in relation to section 2 C), point 3 above.
    • The explicit, Viambiguous consent given to IT Hotels Sh.p.k., in relation to section 2 C), point 4 above.
    • The legitimate interest of IT Hotels Sh.p.k. in relation to section 2 C), point 5 above, which lies in showing you services, offers and promotions that we consider may be of interest to you because they are “similar” to other services you have contracted, all based on the preparation of a marketing profile and internal statistical reports. For these purposes, IT Hotels Sh.p.k. shall track your behaviour in order to ascertain whether you could benefit from other Via Rewards offers and services. Your marketing profile shall be drawn up using IT Hotels Sh.p.k. proprietary information.
    • The legitimate interest of IT Hotels Sh.p.k. in relation to section 2 C), point 6 above, in order to protect IT Hotels Sh.p.k. and/or its customers through the prevention of abuse and fraud in the use of our services. · Pursuant to the legal obligations applicable to IT Hotels Sh.p.k., for the purpose set out in section 2 C), point 7 above.
To which recipients can your data be disclosed?
Your data may be disclosed to third parties in the following circumstances:
  1. The processing of your data by suppliers that belong to the Via Hotels & Resorts group, as well as other third-party suppliers that act as data processors as a result of rendering a service to VIA.
  2. The data processing carried out by some of our suppliers may involve the international transfer of data. In such cases, the agreement that VIA has entered into with these suppliers contain appropriate safeguards in compliance with the GDPR in order to ensure that your personal data are duly protected.
  3. Your personal data may also be assigned to public organisations and authorities (such as Albania’s Law Enforcement Forces and Agencies, amongst others) whenever there is a legal obligation to do so.
What rights do you have when you provide us with personal data?
You are entitled to obtain confirmation about whether or not the data controller is processing your personal data.
You also have the right to access your personal data and to seek the rectification of imprecise data or, where applicable, request their erasure whenever, among other reasons, the data are no longer needed for the purposes for which they were collected.
In certain circumstances, you may request that processing of your data be restricted, in which case we shall only store them to lodge or defend ourselves against complaints. Furthermore, under certain circumstances on grounds related to your personal situation, you may object to the processing of your data. The data controller shall no longer process your data, unless there are compelling legitimate grounds for doing so, or to lodge or defend itself against potential complaints.
You may likewise exercise your right to data portability in accordance with the regulations in force.
Should you wish to exercise any of your rights, you may contact us by sending an email to contracting@vh-hotels.com. Alternatively, you can write to us at the following address: Rruga Jordan Misja, Kompleksi Usluga, 1001, Tirana and writing “Protection of Datas” on the envelope. Remember to supply as much information as possible about your request: your full name, email address used for your account and the website your request concerns.
Finally, we hereby inform you that you may address the Albanian Data Protection Agency or any other competent public bodies for any claim arising from the processing of your personal data.