PRIVACY POLICY

1. IDENTITY AND CONTACT DETAILS OF THE CONTROLLER

Espai Team 5.000, SL, Domiciled at Calle Angli 33, 4º 1ª, 08017, Barcelona, holding employer identification number B66410127, with telephone number +34 636540462 (“Espai Team" or the “Company”) is the controller of your personal data. This privacy policy provides information on the use to be made by the Company of your personal data as a web user ("the website").

The purpose of this Privacy Policy is to provide information on your rights under the General Data Protection Regulation (“GDPR”). Should you have any questions regarding the processing of your data, please contact the Company at the following address: info@bybachotels.com

2. NECESSARY, UP-TO-DATE INFORMATION

Completion of all the fields marked with an asterisk (*) on the website forms is compulsory. Failure to fill out any of these fields could prevent the provision of the services or information requested.

You must provide truthful information; in order to ensure that the information provided is always up to date and does not contain errors, you should inform the Company as soon as possible of any amendments to or changes in your personal data by sending an email to: info@bybachotels.com 

By clicking on the “Accept” button (or similar) on such forms, you state that the information and data provided are accurate and true.

3. 3. GENERAL INFORMATION: DESCRIPTION OF THE INFORMATION CONTAINED IN THE PRIVACY POLICY

In this privacy policy you will find a table containing the following information for each of the different types of data processing carried out by the Company:

  1. The purposes of the processing of your data, that is, the reason why the Company is processing your personal data.

  2. The legal basis that enables the Company to process your data for each of the purposes indicated.

  3. The possible disclosure of your data to third parties, as well as the ground for the disclosure. For these purposes, we inform you that we do not disclose your personal data to third parties unless there is a legal obligation to do so. Your personal data may be accessed by the Company’s data processors, that is, the service providers who need to access your personal data in order to perform their functions. The service providers accessing your personal data generally operate in the information systems and technology sectors. The following table will indicate, as applicable, any other sectors in which other possible service providers of the Company who need to access your personal data may operate.

     

    You may request more detailed information on the recipients of your data by sending an email to info@bybachotels.com, indicating the specific recipients in relation to which you require information.

  4. The existence of potential international data transfers. Should you require a copy of the contractual clauses referred to in the table below, please contact the Company at the following email: info@bybachotels.com

  5. The storage period of the data provided by you. Your data will remain blocked, for the purposes of handling legal, administrative or tax claims, for the periods stipulated in the applicable legislation.

 

4. DETAILED INFORMATION ON THE PROCESSING CARRIED OUT BY ESPAI TEAM
 

PURPOSE OF THE PROCESSING

Management of the queries raised through the query form

 

LEGAL BASIS

 

The Company’s legitimate interest in attending to requests for information via the website.

 

RECIPIENTS

 

Your data may be disclosed to the Espai Team Group companies (the “Group”), based on Espai Team’s legitimate interest in attending to your request for information. Additional service providers to those indicated in section 3.c will not access your personal data.

INTERNATIONAL TRANSFERS

Your data may be transferred to Group companies, for the purposes indicated in the “Recipients” column in relation to Group companies located outside of the European Economic Area (“EEA”) as set out in this link. These transfers are carried out based on the adherence of these companies to the Privacy Shield, if they are US companies, or based on signature by these companies located outside the EEA of standard data protection clauses adopted by the European Commission for international transfers.

 

STORAGE PERIOD

 

Until your request for information has been resolved.

 

5. EXERCISE OF YOUR RIGHTS

You may exercise the following rights:

  1. right of access to your personal data to know which data are being processed and the processing operations that are being performed with that data;

  2. right to rectification of any inaccurate data;

  3. right to erasure of your personal data, where possible;

  4. right to request the restriction of the processing of your personal data where the accuracy, legality or need to process the data is doubtful, in which case we may store your data for the exercise or defense of claims;

  5. right to data portability, when the legal basis that enables us to process them, of those indicated in the above table, is the contractual relationship or your consent;

  6. right to object to the processing of your personal data, when the legal basis that enables us to process them, of those indicated in the above table, is legitimate interest. For such purposes, we will cease to process your data unless we have a compelling legitimate interest or it is for the establishment, exercise or defense of legal claims.

  7. right to withdraw your consent at any time.

 

You may exercise your rights at any time, without charge, by sending an email to info@bybachotels.com indicating the right you wish to exercise and your personal particulars.

If you consider that we have not adequately processed your personal data, you can contact us at info@bybachotels.com. You may also lodge a complaint with the Spanish Data Protection Agency if you consider that data protection legislation has been breached in the processing of your personal data.

6. COOKIES

The Company will only use data storage and recovery devices (“Cookies”) where the user has granted its prior consent in such connection in line with what is indicated in the pop-up window on the user’s web browser when the user accesses the website for the first time and in the other terms and conditions indicated in the Company´s Cookies Policy, which all users should be familiar with.

7. SECURITY MEASURES

The Company will adopt the security measures required by the GDPR in line with the nature of the data processed from time to time. This notwithstanding, the technical security of a medium such as the Internet is not impregnable and there may be willful misconduct on the part of third parties, although the Company has put in place all measures within its power to prevent such misconduct.

8. MINORS

Minors may not use the services available via the website without prior authorization from their parents, guardians or legal representatives. Such parents, guardians or legal representatives are the only parties responsible for all the acts performed via the website by the minors in their care, including completing forms with the personal data of such minors and ticking the accompanying boxes.