Privacy policy for Hotel Kryb i Ly Kro
One of Hotel Kryb i Ly Kro's overall goals is to maintain the highest level of security for our guests, customers, suppliers, job applicants and employees. This also applies when it comes to the protection of personal data. With this policy, Hotel Kryb i Ly Kro wants to map out in a clear and comprehensible manner how Hotel Kryb i Ly Kro handles your personal data.
Data controller
Hotel Kryb i Ly Kro is the data controller.
Contact details are:
Hotel Kryb i Ly Kro
Kolding Landevej 160, Taulov
DK-7000 Fredericia
Phone: + 45 7556 2555
Email: krybily@krybily.dk
Management/contact person:
Julie Larsen
Phone: + 45 5060 0158
Email: gdpr@danske-hoteller.dk
Hotel Kryb i Ly Kro handles all personal information in accordance with current personal data legislation.
Hotel Kryb i Ly Kro enters into agreements with guests, customers and suppliers on the delivery – purchase and sale – of various services and products.
When a guest/customer orders and buys one or more of Hotel Kryb i Ly Kro's services and as part of this submits his personal data to Hotel Kryb i Ly Kro, he also gives his consent for the guest's/customer's/supplier's personal data to be processed by the Hotel Creep in Ly Kro.
The same applies with regard to any personal data that suppliers to Hotel Kryb i Ly Kro provide to Hotel Kryb i Ly Kro in connection with making offers or entering into agreements with Hotel Kryb i Ly Kro.
Hotel Kryb i Ly Kro's collection of personal data
Personal information is collected by Hotel Kryb i Ly Kro in the following way:
- When a guest/customer - or a representative of this - chooses to obtain an offer for and/or buy one of Hotel Kryb i Ly Kro's services/products, or when a supplier makes an offer or sells products or services to Hotel Kryb i Ly Kro.
- From B2B market. For example, in a sales situation where a quote is requested for one of Hotel Kryb i Ly Kro's services and/or a cooperation agreement is requested.
- Through browser cookies and web beacons.
- In connection with the use of Hotel Kryb i Ly Kro's digital services.
- By participating in Danske Hoteller's bonus/advantage program and by subscribing to Danske Hoteller's newsletter.
- From social media, advertising and analysis providers as well as public records.
- Via video and TV surveillance.
Collection and processing of personal data, cf. the above, will always take place in accordance with applicable personal data laws.
Video surveillance, which is set up in various places where there is a sign stating that there is surveillance, takes place as part of crime prevention and also functions as a safety-creating measure for employees and guests.
Information that Hotel Kryb i Ly Kro collects
Hotel Kryb i Ly Kro collects the following personal data:
- Name, address, telephone number, e-mail address, date of birth and other general non-personally sensitive personal data.
- Payment card details - typically as a guarantee of a reservation and for payment of stay.
- Demographic information.
- Purchase history, including the use of the Hotel Kryb i Ly Kros app and/or other digital services.
- The use of Danske Hoteller's bonus/advantage program.
- Information from Hotel Kryb i Ly Kro's customer surveys.
- Information from any tendered competitions
- Information from Hotel Kryb i Ly Kro's social media and other digital platforms belonging to Hotel Kryb i Ly Kro.
- Browser Information.
- Information about the guest's / customer's business and relevant contacts.
- Information about the suppliers' business and information about relevant contacts and key persons including key accounts.
A guest/customer/supplier may voluntarily and at his own choice provide Hotel Kryb i Ly Kro with additional personal data that he believes may be important for Hotel Kryb i Ly Kro's operation/servicing of the guest/customer/supplier, or that the person concerned believes, should be given for safety reasons.
This can e.g. be information about:
- Handicap
- Allergy
- Special food preferences
- Other health or medicine information
- Political/religious beliefs
If a guest/customer/supplier voluntarily chooses to provide such information, Hotel Kryb i Ly Kro perceives this as consent to be able to register and store this sensitive information about the person concerned.
In addition to the information that Hotel Kryb i Ly Kro receives directly from guests/customers/suppliers, Hotel Kryb i Ly Kro will in some cases obtain or process additional information that Hotel Kryb i Ly Kro has received from third parties, e.g. a travel agency, another intermediary or an employee of the company where the data subject is employed.
Where this is the case, the relevant third party is obliged to inform the relevant guests/customers/suppliers about Hotel Kryb i Ly Kro's terms and conditions as well as Hotel Kryb i Ly Kro's personal data policy. It is also the responsibility of the third party in question to ensure that there is the necessary legal basis for the collection and processing of the information in question, including obtaining any necessary consent for the processing of any sensitive information.
Payment by payment card
Hotel Kryb i Ly Kro uses Netaxept (Nets) for redeeming payments with debit and credit cards. Netaxept and Hotel Kryb i Ly Kro are approved and certified by the Financial Institutions Payment System (www.pbs.dk).
For orders and bookings, Hotel Kryb i Ly Kro stores the information that the guest/customer/supplier has provided for as long as it is deemed relevant, after which the information is deleted.
In addition to handling the order, the information provided is only used if a guest/customer/supplier e.g. contact with questions or if there is an error in the order.
What is the purpose of the collection and processing?
Hotel Kryb i Ly Kro only collects personal data that is necessary to fulfill the agreements entered into with guests/customers/suppliers regarding the provision of services, e.g. an overnight stay, or purchase/sale of products or services.
It is the content of the individual agreement/the nature of the service that determines which personal data Hotel Kryb i Ly Kro collects and processes, and which determines the purpose of the collection.
The purpose of collecting and processing personal data will primarily be:
- Processing of guests/customers' booking and purchase of Hotel Kryb i Ly Kro's services.
- Processing suppliers' offers for - and sales - of products and services.
- Contact to the guest / customer before, during or after their stay.
- Fulfillment of the guest's / customer's request for offers or purchases of services.
- Improvement and development of Hotel Kryb i Ly Kro's services.
- Adaptation of Hotel Kryb i Ly Kro's marketing and other communications.
- Analysis of guests/customers/suppliers' user behavior and marketing towards them.
- Adaptation of Hotel Kryb i Ly Kro's business partners' communication and marketing to guests/customers/suppliers.
- Administration of guests/customers/suppliers' relationship with Hotel Kryb i Ly Kro, including possible participation in Danske Hoteller's bonus/advantage program.
- Compliance with legal requirements, eg. requirement to register overnight guests according to the Aliens Act and the Passport Order.
Authorization – the legal basis – for the processing
Hotel Kryb i Ly Kro will most often process personal data because it is necessary to fulfill an agreement with Hotel Kryb i Ly Kro, to which a guest/customer or a supplier is a party. This may, for example, be in connection with hotel stays, meeting arrangements and /or handling and fulfillment of cooperation and supplier agreements.
In addition, Hotel Kryb i Ly Kro will process personal data in connection with booking prior to an overnight stay, handling of meetings, companies, conferences, etc. and prior to entering into supplier agreements.
In some cases, Hotel Kryb i Ly Kro's processing of personal data will take place as part of Hotel Kryb i Ly Kro's pursuit of a legitimate/fair interest that precedes the interests of the guest/customer/supplier (the data subject).
Such a legitimate interest can for example be the preparation of statistics, customer surveys, marketing and analysis of general guest/customer behaviour, which is intended to generally improve the experience at Hotel Kryb i Ly Kro and the quality of Hotel Kryb i Ly Kro's services and products.
If a guest/customer in connection with their stay/visit at Hotel Kryb i Ly Kro discloses special personal preferences or considerations, including e.g. health information, disability, religious beliefs or the like, Hotel Kryb i Ly Kro only uses the information to ensure that the guest's/customer's personal preferences, health etc. are taken into account.
In some situations, Hotel Kryb i Ly Kro receives personal data from third parties, e.g. a travel agency, an agent or the like, i.a. in connection with group bookings. When this happens, the relevant third party is required to inform the relevant guests/customers/suppliers about Hotel Kryb i Ly Kro's terms and conditions and the content of this personal data policy.
Hotel Kryb i Ly Kro is additionally according to law, cf. above under section 5, obliged to register various information about overnight guests. This information must be stored for a minimum of one year and a maximum of two years.
The data subject's rights
According to the rules in the Personal Data Regulation, the registered (customers/guests/suppliers) have different rights.
- A registered person has the right at any time to gain insight into what personal data Hotel Kryb i Ly Kro processes about the registered person.
- A registered person has the right at any time to have the personal data that Hotel Kryb i Ly Kro has about the registered person corrected and updated.
- A registered person has the right at any time to have the personal data that Hotel Kryb i Ly Kro has about the registered person deleted. If a registered user requests deletion, all information that Hotel Kryb i Ly Kro is not legally required to store will be deleted. A deletion of the registered person's information may in some cases mean that Hotel Kryb i Ly Kro cannot fulfill any concluded agreements or provide certain services to the data subject.
If some of the information that Hotel Kryb i Ly Kro has about the data subject is given on the basis of the data subject's consent, the data subject has the right to withdraw consent at any time, which means that the information is deleted or no longer used by the Hotel Creep in Ly Kro. This does not apply to information, cf. above, which Hotel Kryb i Ly Kro is legally obliged to store.
The possibility to request deletion etc. may, however, be limited for reasons of the protection of other people's privacy, trade secrets and intellectual property rights, as well as e.g. for the sake of the possibility of enforcing potential legal claims.
The registered person can at any time ask Hotel Kryb i Ly Kro in writing to get an overview of and a copy of the personal data about the registered person that Hotel Kryb i Ly Kro holds.
A written request for this must be signed by the data subject and contain his name, address, telephone number, e-mail address.
The data subject can also contact Hotel Kryb i Ly Kro if the data subject believes that his personal data is being processed in violation of the law or in violation of other legal obligations, e.g. the agreement/contract that the data subject has with Hotel Kryb i Ly Kro.
Written request is sent to Hotel Kryb in Ly Kro, see contact information above under section 1.
Hotel Kryb i Ly Kro will, as far as possible, send it to the registered person's postal address within 1 month of receiving the registered person's written request.
If the data subject requests correction and/or deletion of his personal data, Hotel Kryb i Ly Kro will assess whether the conditions for the request are met, and Hotel Kryb i Ly Kro will, in that case, carry out changes or deletion as soon as possible.
Hotel Kryb i Ly Kro reserves the right to reject requests that have the character of harassing repetition or that require disproportionate technical measures (e.g. development of a new IT system) or that affect the protection of other data subjects' personal data or in other situations, where it will be disproportionately resource-intensive or very complicated to meet the request.
If you are applying for a position at Hotel Kryb i Ly Kro
Hotel Kryb i Ly Kro is the data controller for the processing of the information that is contained in applications or that appears as part of an employment process.
As part of Hotel Kryb i Ly Kro's recruitment, Hotel Kryb i Ly Kro processes the information that applicants provide in their applications, including information such as name, address, education, work experience, etc., i.e. basically only general information. It is not recommended to provide personally sensitive information, such as health information, race, religion, trade union affiliation, criminal record, etc. in the application. If Hotel Kryb i Ly Kro needs to obtain and process sensitive information, e.g. criminal record, if an applicant, this will only be done with the prior consent of the applicant in question.
The personal information comes partly from the applicant, but possibly also from publicly available sources (such as Facebook and LinkedIn). Hotel Kryb i Ly Kro does not use personal profiling to make automatic decisions that can significantly affect the applicant's rights and freedoms.
The authority to process the applicant's information is found in Article 6 of the Personal Data Regulation, letter a (consent), letter b (measures prior to entering into a contract) and letter f (protection of interests).
Hotel Kryb i Ly Kro can in certain cases pass on applicants' personal data if this is required by applicable legislation or a court decision. Information can also be passed on to external recipients, including possible recruitment agencies/headhunters, accountants and data processors. Some of Hotel Kryb i Ly Kro's data processors may be located outside the EU/EEA, but all with a legal basis for transfer.
If an applicant is rejected for the job applied for, Hotel Kryb i Ly Kro stores the applicant's application and information for up to six months after the rejection, and if other positions that match the applicant's profile become available, Hotel Kryb i Ly Kro can contact the applicant in question with a view to filling this position. Applications are thus deleted after 6 months, unless the applicant in question gives permission for Hotel Kryb i Ly Kro to save the application for a longer period of time.
Applicants always have the right to be informed of what information Hotel Kryb i Ly Kro has about the applicant. Applicants also have the right to have their information corrected if it is not correct, just as applicants have the right to object to or request deletion or restriction of the processing of the applicant's information.
If the applicant is offered employment at Hotel Kryb i Ly Kro, the information obtained in connection with the employment procedure is stored. Information about employees is processed in accordance with Hotel Kryb i Ly Kro's personal data policy for employees, which can be found in Danske Hoteller's Staff Guide.
Hotel Kryb i Ly Kro has taken a number of technological and organizational security measures to protect applicants' personal data against manipulation, loss, etc., as well as against others gaining unauthorized access to applicants' information. Only the employees at Hotel Kryb i Ly Kro, who as part of their work need to know applicants' personal data, have access to this. Hotel Kryb i Ly Kro's security procedures are continuously revised based on the latest technological developments.
Security and sharing of personal data
Hotel Kryb i Ly Kro protects the data subject's personal data and has established guidelines that protect the data subject's personal data from unauthorized disclosure and from unauthorized persons gaining access or knowledge of it.
Only the persons/employees at Hotel Kryb i Ly Kro who, by virtue of their job function, need the personal data of the registered persons, have access to this.
Hotel Kryb i Ly Kro continuously checks that there is no unauthorized access to the registered person's personal data.
Hotel Kryb i Ly Kro regularly backs up the registered personal data.
All customer cards with personal data are anonymised in Hotel Kryb i Ly Kro's booking system after 1 year of inactivity.
In the event of a security breach, where there is a high risk of misuse of the registered person's personal data, including e.g. identity theft, financial loss, loss of reputation or other form of abuse, Hotel Kryb i Ly Kro will notify the data subjects of the security breach as soon as possible.
Hotel Kryb i Ly Kro's security procedures are continuously reassessed and updated in relation to technological developments.
Hotel Kryb i Ly Kro uses a number of external suppliers of IT services, IT systems, payment solutions, etc.
Hotel Kryb i Ly Kro enters into ongoing data processing agreements with all of Hotel Kryb i Ly Kro's suppliers, whereby it is also ensured in relation to external data processors that these maintain a necessary and high level of protection, as far as the personal data of the registered is concerned. Some of Hotel Kryb i Ly Kro's data processors may be located outside the EU/EEA, but all with a legal basis for transfer.
In order to fulfill agreements with those registered and to meet the needs of guests, customers and suppliers, Hotel Kryb i Ly Kro shares selected personal data with external suppliers such as banks, accountants, restaurants, hotels etc.
Hotel Kryb i Ly Kro is part of a group. Therefore, the personal data of the registered may also be shared and passed on internally within the group. The purpose of this sharing is to be able to provide the guest/customer/supplier with the best handling and service, regardless of which hotel or which department in the group the guest/customer/supplier uses.
Hotel Kryb i Ly Kro is in some cases legally obliged to pass on personal data or obliged to do so as a result of a decision by a public authority.
Hotel Kryb i Ly Kro deletes your personal data when Hotel Kryb i Ly Kro's legal obligation ends or when the purpose for collecting and processing the information is no longer present.
Cookies
Hotel Kryb i Ly Kro uses cookies. Further information about Hotel Kryb i Ly Kro's cookie policy can be obtained on the company's website.
Lawsuit
Complaints about Hotel Kryb i Ly Kro's processing of personal data can be made to the Danish Data Protection Authority, Carl Jacobsens Vej 35, 2500 Valby, telephone + 45 3319 3200 – e-mail dt@datatilsynet.dk.
Updated June 22, 2023