1. Purpose of the policy
2. Description of the treatments
Halberg Hotels A/S processes your data for one or more specific purposes and in accordance with the data protection rules. We process your data if you are a customer/guest, business partner, supplier, visit our website or our social media, contact us via our contact forms, receive our newsletter or apply for a job with us. The data will generally come directly from you, and we will only process your data for as long as it is necessary for the purpose for which it was collected.
Below you can read more about the types of treatments we perform.
2.1.3. Customer relationships
Halberg Hotels A/S processes personal data in connection with visits or stays at our hotels about private customers and about the contact person for our business customers in order to enter into and fulfill an agreement GDPR art. 6(1)(b). This information includes contact details such as name, job title, company name, email, address, phone number and information about your purchase or stay, as well as payment and/or banking details.
In some cases, we also process health information, including information about disability, allergies, special food preferences and other health or medical information. We process this data on the basis of your explicit verbal consent, cf. GDPR art. 9(2)(a)
We delete the information on an ongoing basis, but no later than 5 years after the end of the customer relationship.
In some cases, we may supplement our information about you with the information you provide us with on an ongoing basis, such as information about requests for previous events or conferences, so that we can make our marketing as relevant as possible for you. This is done on the basis of our legitimate interest, cf. GDPR art. 6(1)(f), as we consider that our interest in offering you the best service outweighs your interest in not processing such general information you provide to us. Of course, you always have the right to access such information and have it deleted. Read more about your rights in section 4 below
2.1.1. Website and cookies
In connection with the general operation of our website, we collect personal data about you via cookies to improve the appearance and user experience of the website and to compile statistics. We only collect your personal data if you have given your consent. The information we collect via cookies includes your IP address, browser type, device (type, version, operating system, etc.) and user behavior, including page references.
Cookie declaration for Hotel Fredericia here > >
The data we process via our contact form is deleted on an ongoing basis and no later than 5 years after the last contact.
We also collect your information if you use our chat function. In this situation, we process information about your name, email and phone number. We process the data in accordance with GDPR art. 6(1)(f), as we have a legitimate interest in responding to your request.
The data we process in connection with our chat function is deleted on an ongoing basis, but no later than 5 years after the contact.
On our website, we also have integrated social media plugins that can collect data about you if you have given your consent. We have a joint data responsibility with each media in this regard. We use integrated plugins from Facebook, Instagram and LinkedIn.
2.1.2. Social media
We use the following social media platforms Facebook, Instagram and LinkedIn to connect with our customers and potential customers and to further our marketing efforts. If you have “liked” our fan page on social media or have been in contact with us through this, we avoid processing your personal data. For this purpose, we only process information about your name and email address, as well as any information about your purchase or stay, if it appears in the context.
If you contact us via social media, we process your personal data on the basis of our interest in being able to contact you and respond to your inquiries, cf. GDPR. GDPR Article 6(1)(f). The information will come from you and the social media through which you contact us.
We have a so-called joint data responsibility with the social media we use, as we both process your personal data for our own purposes. You can read more about social media’s processing of your personal data in the following:
Data processed in the context of social media that relates to direct communication via social media is deleted immediately. Posting on e.g. Facebook pages or public groups will not be deleted, as a post or comment on Facebook pages or public groups is considered public domain. You can read more about public areas here
We only process your personal data for marketing purposes if you have given your consent in accordance with GDPR art. 6(1)(a) to e.g. receive newsletters about events, activities and offers. The scope of our processing is stated in the specific consent.
If you have given your consent to receive marketing from Hotel Svendborg or Hotel Fredericia, we generally process information about name, email, company.
We store your data for as long as you are subscribed to the newsletter and for 3 years after unsubscribing.
You have the right to withdraw your consent at any time by clicking or using the link in the newsletters you receive.
2.1.5. Video surveillance
We have cf. TV Surveillance Act authorization to set up TV surveillance, as we are a hotel and restaurant business. TV surveillance is therefore installed in areas such as the parking lot, hallways, reception, restaurant and back entrance. The purpose of TV surveillance is to ensure the safety of guests and employees and to prevent crime, cf. art. 6 (1)(f).
Personal data is deleted 7 days after the recordings have been recorded, cf. Section 4 c, subsection 4 of the TV Surveillance Act.
Image and sound recordings containing personal data will only be disclosed if you have given your explicit consent, if it is required by law, or if the disclosure is for crime-solving purposes.
2.1.6. Job seekers
If you apply for a job at Hotel Svendborg, Hotel Fredericia or Hotel Ærø, we process your personal data in order to assess whether you are qualified for an existing or future position with us. We process the information you provide us with, including name, contact details, work and educational background, education level, photo, CV, application, references and availability date, and if applicable video presentation.
We process your data in order to enter into an employment contract with you GDPR art. 6(1)(b) and in cases where we consider that our interests in processing your personal data outweigh your interests in not processing it, for example, information collected from social media published by you or information obtained through the performance of a personality and aptitude test (GDPR art. 6(1)(f).
We share your personal data with the employees involved in the recruitment process and pass on your personal data to the companies conducting the personality and skills test and any recruitment company.
If we wish to keep your data beyond the recruitment period, we will obtain your consent.
2.1.7. Suppliers and partners
When we enter into agreements with suppliers and business partners, we process information about their contact persons. This includes information such as name, job title, phone number, email and, if necessary, payment or bank details.
The data is processed either because it is necessary for the fulfillment of the agreement with the supplier or business partner in question GDPR art. 6(1)(b) or because we have a legitimate interest in processing the contact data of the person concerned as part of the contract GDPR Art. 6(1)(f).
We keep relevant contact information throughout our collaboration. Written correspondence is deleted on an ongoing basis, and information that is necessary to fulfill our obligations under the Danish Bookkeeping Act is stored for 5 years plus the current financial year, cf. section 10(1) of the Danish Bookkeeping Act.
3. Recipients of personal data
We treat your personal data confidentially and we do not generally disclose the data to third parties. However, we may disclose your personal data if you have given your consent or we have a legitimate interest in the disclosure.
Hotel Svendborg and Hotel Fredericia are part of the hotel chain Best Western International Inc, which is why we share your information with both Best Western Scandinavia and Best Western International. As Best Western International Inc is located in the United States, there is thus a transfer of personal data to a third country where a legal basis for transfer is provided in the form of the EU Commission’s standard clauses.
We may entrust personal data to our system suppliers who process personal data on our behalf and according to our specific instructions in accordance with the data processing agreement entered into.
In some cases, we use data processors outside the EU/EEA, whereby personal data may be transferred to third countries, e.g. in connection with our use of cloud solutions. For this, we use a valid transfer basis (possibly including Standard Contractual Clauses) before transferring the personal data. The transfer only takes place in compliance with the necessary security safeguards as required by applicable data protection legislation and an individual assessment is always made regarding the need for additional measures. You can contact email@example.com for information about the specific basis for processing in this context.
4. Your rights
When we collect information about you, you have a number of basic rights under the personal data regulations that you can make use of. Your rights include the right to request access to and rectification or erasure of your personal data, restriction of and objection to our processing, and the right to receive your data in a structured, commonly used and machine-readable format (data portability).
The above rights may be subject to conditions and limitations. Whether you as a data subject can request, for example, to have your personal data deleted, will in all cases depend on a concrete assessment.
If you have given your consent to our processing of your data, you have the right to withdraw this consent at any time.
If you are dissatisfied with our processing of your personal data, you can file a complaint with the Danish Data Protection Agency via their website www.datatilsynet.dk or by calling: +45 3319 3200.
5. Our contact details
The company responsible for processing your personal data is:
Halberg Hotels A/S / Hotel Svendborg
Centrumpladsen 1, 5700 Svendborg
Phone: +45 62 21 17 00
If you have any questions regarding our processing of your personal data, please contact us at firstname.lastname@example.org or by phone +45 6221 1700.
Deltag i vores ugentlige konkurrence op til jul og vind et ophold for to personer på et af vores fire hoteller.