Basic terms and definitions used in this Policy
Hotel – ROYAL SAPPHIRE Hotel, located at the address: Baku city, Badamdar highway 1
Website - the official website of the hotel http://royalsapphirehotel.com/.
Guest (Guests) - visitors to the website http://royalsapphirehotel.com/ who have performed the actions of booking a room stock in order to receive hotel services.
Policy - this Policy regarding the privacy and processing of personal data of visitors to the official website of the hotel who used the services provided by the hotel.
Personal data - any information relating to a directly or indirectly identified or identifiable individual (personal data subject, Guest).
Processing of personal data - any action (operation) or a set of actions (operations) performed using automation tools with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, changing), extraction, use, transfer (distribution , provision, access), depersonalization, blocking, deletion, destruction of personal data.
Automated processing of personal data - processing of personal data using computer technology.
Providing personal data - actions aimed at disclosing personal data to a certain person or a certain circle of persons.
Blocking of personal data is a temporary suspension of the processing of personal data (unless the processing is necessary to clarify personal data).
Destruction of personal data - actions, as a result of which it becomes impossible to restore the content of personal data in the information system of personal data and (or) as a result of which material carriers of personal data are destroyed.
Depersonalization of personal data - actions, as a result of which it becomes impossible to determine the ownership of personal data by a specific subject of personal data without the use of additional information.
The subjects of personal data are directly the Guests.
The operator for the processing of personal data of the Guests is the ROYAL SAPPHIRE Hotel.
1. General Provisions
This document defines the policy of the ROYAL SAPPHIRE Hotel (hereinafter referred to as the Hotel) regarding the processing and protection of personal data of visitors to the site http://royalsapphirehotel.com/ (hereinafter referred to as the Guest, Guests) who have taken actions to book a room fund in order to receive hotel services or have carried out the necessary actions in order to receive other services provided by the hotel.
The policy for the processing of personal data in the Hotel (hereinafter referred to as the “Policy”) has been developed in accordance with the Constitution of the Republic of Azerbaijan, the Law of the Republic of Azerbaijan dated 11.05.2010 No. 998-IIIQ “Personal Data Processing”, and other regulatory legal acts of the Republic of Azerbaijan ), in the field of protection (protection) of personal data.
This Policy has been developed in order to implement the requirements of the legislation of the Republic of Azerbaijan in the field of personal data processing and is aimed at ensuring the protection of the rights and freedoms of a person and citizen in the processing of his personal data, including protection against unauthorized access to personal data of Guests.
This Policy applies to all personal data of Guests and to information processed by the Hotel automatically.
2. Purposes of personal data processing
2.1. When making a reservation on the site http://royalsapphirehotel.com/ (hereinafter referred to as the "Site"), the Guest provides the following information:
- Full Name;
- E-mail address;
- Contact phone number;
– Information that is necessary directly for booking (passport data, date of birth, registration address (place of residence, etc.),
– Other information that the Guest deems necessary to provide about himself.
When paying with a bank card, the Guest independently enters the bank card details necessary for making and processing the payment. Please note that this data is not technically available to the Hotel, and the Hotel does not have access to, does not store and in no way uses the details of the guests' bank cards. The confidentiality of the reported personal information is ensured by the bank that provided the payment system (platform).
The Guest is notified that when visiting the Hotel Site, certain information may be collected, such as the browser used, the IP address number, the type of operating system, its location, the pages viewed and other data. The information received is not associated with the data that the Guest leaves on the Site, and it is impossible to identify the user (Guest) from automatically received data.
2.2. The Hotel processes the personal data of the Guests for the following purposes:
Booking. The Hotel collects and uses personal data to process the Guest's requests, make a reservation, for quick and high-quality advice on clarifying or changing the reservation, for other actions directly related to the reservation and the realization of the Guest's right to the Hotel's services.
3. Principles and conditions for the processing of personal data
The Hotel processes the personal data of the Guests on the basis of the following principles:
the processing of personal data is carried out on a legal basis;
the processing of personal data is limited to the achievement of a specific, predetermined and legitimate purpose. Only those personal data that meet the purposes of their processing are subject to processing. Processing of personal data that is incompatible with the purpose of collecting personal data is not allowed;
processed personal data are destroyed or depersonalized when it is no longer necessary to achieve the purpose of their processing, unless otherwise established or will be established by the legislation of the Republic of Azerbaijan.
The hotel processes personal data in the presence of at least one of the following conditions:
processing of personal data is carried out with the consent of the Guest: being a user of the site http://royalsapphirehotel.com/ the Guest provides the Hotel with his personal data and gives full and unconditional consent to their processing;
Obtaining the Guest's consent to the processing of his personal data is a necessary condition for making a booking. Booking is impossible and will not be completed without the consent of the Guest to the processing of his personal data;
the processing of personal data is necessary to achieve the goals provided for by the legislation of the Republic of Azerbaijan;
the processing of personal data is necessary to fulfill the obligations of the Hotel to the Guests, including the conclusion and execution of an agreement under which the Guest is a consumer of hotel services.
Confidentiality. The Hotel guarantees the confidentiality of the received personal data of the Guests and may transfer them to third parties solely within the framework of the legislation of the Republic of Azerbaijan (for example, law enforcement agencies, at the request of the court, etc.).
4. Rights of the subject of personal data
In accordance with the Law of the Republic of Azerbaijan dated 11.05.2010 No. 998-IIIQ “Personal Data Processing”, the Guest, whose personal data is processed by the Hotel, has the right to confirm the fact of processing his personal data.
Information can only be provided to the subject of personal data when they provide proof that the personal data in respect of which the request is sent belongs to this particular person (subject).
According to the Law of the Republic of Azerbaijan dated 11.05.2010 No. 998-IIIQ “Personal Data Processing”, the subject of personal data has the right to demand clarification of his personal data, their blocking or destruction.
If the Guest's personal data held by the Hotel is no longer relevant, the Hotel will update them at the Guest's request. Such requests for updating, as well as requests for blocking and destruction of personal data, the Guest has the right to send to the Hotel's e-mail info@royalsapphirehotel.com.
When sending a formal request, you must specify:
Full Name;
number of the main document proving the identity of the subject of personal data or his representative, information on the date of issue of the said document and the authority that issued it;
information confirming that the Guest used the site http://royalsapphirehotel.com/. The request is made with the signature of the citizen (or his legal representative). If the request is sent in electronic form, then it must be issued in the form of an electronic document in accordance with the requirements of the legislation of the Republic of Azerbaijan.
The Hotel may retain some of the personal information provided by the Guest, for example, for administrative purposes.
5. Cookies
Cookies are small files containing information about pages viewed and settings that are stored on users' computers.
In order to improve the functions of the Site, the Hotel uses different types of cookies (technical, functional, commercial, analytical, etc.).
If the Guest does not want cookies to be stored on his device, it is necessary to set the browser accordingly. However, if certain cookies are disabled, some features of the Site may not be available to the Guest.
6. Measures to protect personal data
To prevent unauthorized access, unspecified transfer of personal data to third parties, misuse of the information received, as well as other illegal actions, the Hotel uses legal, technical and other protection measures not prohibited by the legislation of the Republic of Azerbaijan.
7. Final provisions
In case of failure to comply with the provisions of this Policy, the Hotel is liable in accordance with the legislation of the Republic of Azerbaijan.