Personal data protection policy

PREAMBLE

NAOS HÔTEL GROUPE ensures compliance with European Regulation No. 2016/679 on the protection of individuals with regard to the processing of personal data (RGPD) and Law No. 78-17 of 6 January 1978 on information technology, files and freedoms, the provisions of which were rewritten by Ordinance No. 2018-1125 of 12 December 2018.

This personal data protection policy (hereinafter referred to as the Policy) applies to the data processing carried out by NAOS HÔTEL GROUPE via the sheraton-bordeaux.naoshotel.comwebsite. It informs you about the purposes of the processing carried out, their legal basis, the recipients of the data as well as their retention period, the security measures (general description), the possible existence of data transfers outside the European Union or of automated decision-making, the use and management of cookies, your IT rights and freedoms and how to exercise them.

Who is responsible for processing your data?

NAOS HÔTEL GROUPE (Avenue du Futuroscope – Téléport 1 – Bat. Arobase 3 – 4th floor – 86360 Chasseneuil du Poitou, France) is the controller and the main recipient of your data. This means that NAOS HÔTEL GROUPE (hereinafter referred to as the Data Controller) determines the purposes and means by which your data is processed.

What data do we collect about you?

By personal data we mean any information that allows you to be identified either directly or indirectly, within the meaning of Article 4.1 of the GDPR. NAOS HÔTEL GROUPE collects personal data about you via the cookies and tracers that we use on the website. We guarantee the transparency of the processing of your data by informing you in a clear and precise manner before placing cookies on your terminals and collecting data about you. Where necessary, we will seek and obtain your free, informed and unambiguous consent.

The data collected about you is adequate, useful, necessary and limited to the strict minimum. This includes browsing data via cookies and tracers.

What is the purpose of collecting your data?

The personal data collected about you is used for the following purposes:

Obtaining your consent and remembering your preferences regarding the cookies used;
To monitor the performance of the pages consulted by the users of the site;
To analyse how visitors use the site;
To optimise your experience and facilitate your navigation on our website, in particular by determining “technical routes” for navigation;
To carry out statistics and analyses of traffic and use, browsing, and audience measurement of the site and its various areas, particularly with a view to improving it;
Distinguish between users of the site;
Optimise the user experience according to your preferences;

What are the legal bases for processing your data?

Your personal data is processed in accordance with Article 6 of the GDPR. In particular, it is based on :

Or on your consent when you accept the cookies and tracers we use. In this case, your consent is obtained in a clear, free, informed and transparent manner via a cookie banner that is displayed when you visit our website. Your consent can of course be withdrawn at any time;
Or on the pursuit of a legitimate interest, particularly in the management of technical and functional cookies.

Who will receive your data?

Your personal data is intended for NAOS HÔTEL GROUPE, publisher of the site and data controller. They are processed only by the staff of our various departments such as the departments in charge of communication and marketing. They are processed solely for the purposes indicated above.

The personal data collected about you may be transferred to our technical subcontractors (within the meaning of Article 4.8 of the GDPR) in a strictly controlled manner. In the event of a transfer, we ensure that data processors comply with the GDPR and take technical and organisational measures to guarantee data protection (Art. 28 GDPR).

Is your data transferred outside the European Union?

We use the Google Analytics application on our website to measure the audience. This service is published and managed by Google LLC, a company based in the United States of America. As a result, the navigational data collected about you may be transferred to the United States. This transfer is governed by the Google Workspace user policy and by the Privacy Shield to which Google is a party.

How is your personal data secured?

NAOS HÔTEL GROUPE is committed to protecting your data in accordance with the RGPD and in compliance with the state of the art. For example, all pages of our website are under the https protocol and protected by the SSL certificate. We also provide secure hosting for our website. These and other measures help to ensure the security of your navigation on our website.

How long will your data be kept?

Through the website, we only process navigation and audience measurement data. The duration of conservation of the cookies allowing this processing can be limited to the duration of your navigation or up to 13 months in accordance with the recommendations of the CNIL. Analytical cookies are kept for 20 months.

Can you object to the cookies we use?

If you do not want our website to place cookies on your computer, you can block them:

By using a browser that, by default, refuses cookies;
By configuring your browser appropriately or by installing an additional component on your browser specifically designed for cookie management;
By deleting the cookies used from your browser at any time (see your browser’s help section for instructions on how to do this).
By configuring your browser to tell the website that you do not wish to be “tracked” (“Do not track”).

In any case we will respect your choice.

What are your rights and how can you exercise them?

In accordance with the General Regulation on the Protection of Personal Data (RGPD) which came into force on 25 May 2018 and by LAW No. 2018-493 of 20 June 2018 relating to the protection of personal data, known as LIL3, and Ordinance No. 2018-1125 of 12 December 2018 taken in application of Article 32 of Law No. 2018-493 of 20 June 2018 relating to the protection of personal data and amending Law No. 78-17 of 6 January 1978 relating to information technology, files and freedoms, you have the right to access, rectify, delete, limit, oppose as well as the right to data portability.

Your applications must always be accompanied by an identity document in order to check your identity. This control is necessary to protect your personal data. It would be a breach of your data to pass it on to a third party, or to correct or delete it at the request of someone other than you.

You can exercise your rights by writing to contact@naoshotelgroupe.com or by sending a registered letter to the following address NAOS HÔTEL GROUPE, Avenue du Futuroscope – Téléport 1 – Bat. Arobase 3 – 4ème étage – 86360 Chasseneuil du Poitou, France.

NAOS HÔTEL GROUPE may require payment of a reasonable fee based on administrative costs for any additional copies requested (Article 15.3 of the GDPR).

In the case of manifestly unfounded or excessive requests, we may charge a reasonable fee which takes into account the administrative costs incurred in providing the information or refuse to comply with such requests (Article 12.5 GDPR).

Where NAOS HÔTEL GROUPE is entitled to refuse to grant your request, this refusal and the reasons for it will be communicated to you within the time allowed.

If you wish to contact the hotel for any other request, please contact us directly: sheraton-bordeaux@naoshotel.com

Have we appointed a DPO?

In order to comply with the RGPD, we are accompanied by the RGPD Agency (22 rue de Bignoux, 86000 Poitiers), an organisation specialising in the protection of personal data and compliance with the General Data Protection Regulation (RGPD).

For any further questions related to the General Data Protection Regulation (GDPR) and our compliance approach, you can contact the GDPR Agency at any time at the following address: dpo@agencergpd.eu

Updated on 12 January 2023.