Flower Hotel respects your privacy, and is committed to protecting the privacy, confidentiality and security of the personal data you provide to us or that we collect about you when you use our website hotel-flower.com or our mobile application and other online products and services (“Site“), when you contact guest services, or when you otherwise interact with us. We are aware of our responsibilities to protect your personal data, to keep it secure and comply with applicable privacy and data protection laws.
Types of Personal Data We Collect
Information you provide to us: we collect personal data (including where applicable sensitive personal data) you provide directly to us. This includes:
Information We Collect Automatically When You Use the Site: when you access or use the Site, we automatically collect personal data about you, including:
Information We Collect From Other Sources: we may also obtain personal data from our hotels and from our third party service providers (such as information relating to the credit of guests) and from public sources and combine that with information we collect through our Site where we believe that it is necessary to help manage our relationship with you.
How We Use Your Personal Data
We may use your personal data for the purposes set out below.
For the performance of our agreement with you, in order to:
For our legitimate commercial interests, in order to:
To comply with legal obligations to which we are subject:
Use of information based on your consent:
In order to register with our mobile application, make an online hotel reservation, or if you make an enquiry, you must provide us with the personal data marked with an asterisk or otherwise indicated as mandatory, otherwise we may not be able to process your request or comply with our legal obligations.
Disclosures of Your Personal Data
We may share your personal data:
We may also disclose aggregate or de-identified data that is not personally identifiable with third parties, including our commercial and strategic partners.
Overseas Transfers of Your Personal Data
Your personal data will be transferred to, and stored in the location of the hotel in which you stay or visit. It will also be accessed and processed by our personnel and the personnel of our partners, affiliates and third party service providers, who operate outside of Albania. Your personal data will only be transferred to locations outside of Albania where we are satisfied that adequate or comparable levels of protection are in place to protect personal data held in that jurisdiction, and (where we are required to do so) with your consent.
When personal data is transferred from the EU to outside the EU, we use Model Clauses, so ensuring that such data transfers are compliant with applicable privacy legislation.
From time to time, we would like to use your name, email address, mobile phone number, and other relevant contact information to send you either via emails, SMS messages, telephone calls, push notifications, post, or social media (e.g. WhatsApp and Facebook) information that we think may be of interest to you, including about our hotels, products and services, news about our membership programmes, satisfaction surveys, events, offers and promotions, but we can only do so with your consent.
We would also like to share (for gain) such data with the operator of the hotel or hub of hotels in which you stay or visit and with selected third party entities, so that they may send you information, news updates, special events, offers and promotions as regards their products and services, including travel, transportation, retail, food and beverage, hotel accommodation, credit cards, financial and investment services, real estate, entertainment, publications, fashion and jewellery, leisure and sports, health and wellness, non-profit and charitable activities, telecommunications, social networking, media and public relations, but we will not use your personal data for direct marketing without your consent.
Retention of Personal Data
Our Commitment to Data Security
We have in place reasonable technical and organisational measures to prevent unauthorised or accidental access, processing, erasure, loss or use of your personal data and to keep your personal data confidential. These measures are subject to ongoing review and monitoring. To protect your personal data, we also require our third party service providers to take reasonable precautions to keep your personal data confidential and to prevent unauthorised or accidental access, processing, erasure, loss or use of personal data, and to act at all times in compliance with applicable data protection laws.
We cannot guarantee that our Site will function faultless and without any interruptions. We shall not be liable for damages that may result from the use of electronic means of communication, including, but not limited to, damages resulting from the failure or delay in delivery of electronic communications, interception or manipulation of electronic communications by third parties or by computer programs used for electronic communications and transmission of viruses.
Children and Minors
Except where required by local laws, we do not knowingly collect personal data from minors. If you are a minor, you may only use our Site and services with the permission of your parent or guardian.
If you are in the EU, our online services are not directed at children under the age of 13. If you believe we have collected information about a child under the age of 13, please contact us so that we may take appropriate steps to delete such information. If you are at least 13 but under the age of 16, please get the consent of your parent or legal guardian before giving us any personal data about yourself.
Third Party Sites
Your Rights and Contact Us
You are entitled to the following rights: right of access to the personal data we hold about you, right of rectification, right to erasure, right to restrict data processing, right to object against profiling and your personal right to data portability. Whenever reasonably possible and required, we will strive to grant these rights within one (1) month. You may also withdraw your consent to receiving direct marketing communications, or more generally to our processing of your personal data, at any time, and you may in certain circumstances ask us to delete your personal data. However, we may not be able to continue providing services to you if you entirely withdraw your consent or ask us to delete your personal data entirely. To make these requests, or if you have any questions or complaints about how we handle your personal data, or would like us to update the data we maintain about you and your preferences, please contact our data protection officer by email at firstname.lastname@example.org
Flower Hotel Luxury
Rruga e Detit