Privacy Policy

PERSONAL DATA PROTECTION POLICY

COSTA CANARIA S.L. is an organization that collects personal data by the different means at its disposal, which gives it an important responsibility in the design and organization of procedures, so that they are aligned with legal compliance in data protection. Therefore, COSTA CANARIA S.L. will adopt all necessary security measures to ensure the protection of the data collected.

In the exercise of these responsibilities, and in order to establish the general principles that should govern the processing of personal data in the Organization, COSTA CANARIA S.L. approves this Personal Data Protection Policy, which notifies and makes available to all its stakeholders, also respecting the following rules:

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).
The Organic Law 3/2018, of December 5, 2018, on the Protection of Personal Data and guarantee of digital rights (LOPD-GDD).
Law 34/2002, of July 11, 2002, on Information Society Services and Electronic Commerce (LSSI-CE).

SCOPE OF APPLICATION

This Personal Data Protection Policy shall apply to COSTA CANARIA S.L., its administrative bodies, management and staff, as well as to all persons related to the Organization, expressly including service providers with access to data ("Data Processors").

The person responsible for the processing of personal data collected in the Organization is: COSTA CANARIA S.L., with Tax Identification Number: B35007533, whose representative is: RUTH GONZÁLEZ GONZÁLEZ (hereinafter, Data Controller). Her contact details are as follows:

Address: URBANIZACIÓN PUERTO CALERO - HOTEL COSATA CALERO, BARRANCO DE LA CALERA (MACHER), PALMAS, LAS, 35570.

Contact telephone: 928849570

Contact email: rgonzalez@hotelcostacalero.es

INFORMATION ABOUT THE PERSON IN CHARGE AND PERSONAL DATA PROCESSING IN COSTA CANARIA S.L.

The additional information on data processing is a set of more specific and extended details that the entities must provide to the interested persons on how their personal data are managed. This concept derives from the principle of transparency of the General Data Protection Regulation (GDPR) and complements the basic information initially provided, providing a greater level of detail about the processing.

Below, COSTA CANARIA S.L. provides additional information on the data processing it carries out:

Additional information on Data Protection
INFORMATION ABOUT THE DATA CONTROLLER
Identity	COSTA CANARIA S.L.
Address	PUERTO CALERO URBANIZATION - HOTEL COSATA CALERO, BARRANCO DE LA CALERA (MACHER), PALMAS, LAS, 35570
Contact telephone number	928849570
E-mail address	rgonzalez@hotelcostacalero.es
CONTACT DETAILS OF THE DATA PROTECTION OFFICER
Identity	ADEPLUS CONSULTANTS
Address	Av. del Parque Científico y Tecnológico, 3, BADAJOZ, BADAJOZ - 06006
E-mail address	p.lorenzo@adeplusconsultores.com
PURPOSES OF THE PROCESSING OF PERSONAL DATA
Data processing	Purpose of processing	Conservation period
NEWSLETTER	PROFESSIONAL CONTACT, ADVERTISING AND COMMERCIAL PROSPECTING	Advertising and commercial prospecting: Data may be kept for the time necessary to fulfill the purpose for which they were collected. In the case of data used for advertising purposes, a maximum retention period is suggested as long as the consent for such purposes is not revoked.
SUPPLIERS	CUSTOMER, ACCOUNTING, TAX AND ADMINISTRATIVE MANAGEMENT.	5 years for customer management. 6 years for accounting, fiscal and administrative.
CURRICULUMS	CLIENT MANAGEMENT, ACCOUNTING, FISCAL AND ADMINISTRATIVE, HUMAN RESOURCES.	Client management: A retention period of up to 5 years is recommended, unless there are legal obligations that require a different term. Accounting, fiscal and administrative: Data should be retained for a period of 4 years, in accordance with tax obligations. Human resources: Documentation relating to the employment relationship must be kept for at least 4 years.
WEB FORM	CUSTOMER, ACCOUNTING, TAX AND ADMINISTRATIVE MANAGEMENT.	Customer management: 5 years from the end of the commercial relationship Accounting: 6 years according to tax obligations (General Tax Law). Tax: 4 years according to tax obligation of conservation for inspections. Administrative: 5 years from the end of the activity or related relationship.
HUMAN RESOURCES	PAYROLL MANAGEMENT , PREVENTION OF LABOR RISKS , HUMAN RESOURCES	PAYROLL MANAGEMENT: 4 years OCCUPATIONAL RISK PREVENTION: 5 years HUMAN RESOURCES: 3 months, if the data corresponds to an internal complaints system.
HOSPITALS	CUSTOMER, ACCOUNTING, TAX AND ADMINISTRATIVE MANAGEMENT.	Customer management: 6 years. Accounting, fiscal and administrative: 4 years.
VIDEO SURVEILLANCE	VIDEO SURVEILLANCE	One month.
LEGITIMACY OF THE PROCESSING OF PERSONAL DATA
Data processing	Legitimation
NEWSLETTER	Express consent of the person concerned
SUPPLIERS	Execution of a contract of sale and/or provision of services.
CURRICULUMS	Express consent of the person concerned
WEB FORM	Express consent of the person concerned
HUMAN RESOURCES	Execution of an employment contract
HOSPITALS	Execution of a service contract
VIDEO SURVEILLANCE	Public interest video surveillance
RECIPIENTS OF YOUR PERSONAL DATA
Data processing	Planned transfers	International transfers
NEWSLETTER	No transfers are foreseen	No
SUPPLIERS	PUBLIC ADMINISTRATION WITH COMPETENCE IN THE MATTER, BANKS OR FINANCIAL INSTITUTIONS	No
CURRICULUMS	No assignments are foreseen	No
WEB FORM	No assignment foreseen	No
HUMAN RESOURCES	PUBLIC ADMINISTRATION WITH COMPETENCE IN THE MATTER, BANKING OR FINANCIAL INSTITUTIONS	No
HUESPEDES	PUBLIC ADMINISTRATION WITH COMPETENCE IN THE SUBJECT MATTER, BANKING OR FINANCIAL INSTITUTIONS	No
VIDEO SURVEILLANCE	PUBLIC ADMINISTRATION WITH COMPETENCE IN THE MATTER	No
RIGHTS THAT CORRESPOND TO THEM AND MEANS AT THEIR DISPOSAL
Any person has the right to obtain confirmation as to whether COSTA CANARIA S.L. is processing personal data concerning him/her. Interested parties have the right to access their personal data, as well as to request the rectification of inaccurate data, or if necessary, request its deletion when, among other reasons, the data is no longer necessary for the purposes for which it was collected. In certain circumstances, interested parties may request the limitation of the processing of their data, in which case we will only keep them for the exercise or defense of claims, as well as to meet the legally established retention periods. Likewise, interested parties may object to the processing of their personal data. Therefore, COSTA CANARIA S.L. will stop processing your data, except for legitimate and compelling reasons, or in the exercise of possible claims. In the same sense, when certain circumstances arise and it is technically possible, the interested parties will have the right to have their personal data transmitted directly to another data controller or data processor, upon request. In order to exercise the aforementioned rights, you should contact us by writing to: COSTA CANARIA S.L. URBANIZACIÓN PUERTO CALERO - HOTEL COSATA CALERO, BARRANCO DE LA CALERA (MACHER), PALMAS, LAS, 35570, or by e-mail to rgonzalez@hotelcostacalero.es. We recommend accompanying your request with a copy of your ID card.

PRINCIPLES APPLICABLE TO THE PROCESSING OF PERSONAL DATA

The Personal Data Protection Policy is a measure of proactive responsibility, which aims to ensure compliance with applicable legislation in this area and in relation to this, respect for the right to honor and privacy in the processing of personal data of all persons who are related to COSTA CANARIA S.L..

In development of the provisions of this Policy, the Principles governing the processing of data in the organization are established and consequently, the procedures and organizational and security measures that the persons affected by this Policy undertake to implement in their area of responsibility.

In relation to the above, COSTA CANARIA S.L. shall ensure compliance with the following principles:

Lawfulness, loyalty, transparency and purpose limitation .

The processing of data must always be informed to the affected person, through established clauses and procedures; and will only be considered legitimate if there is consent for the processing of data (with special attention to that provided by minors), or has other valid legitimacy, and the purpose of the same is in accordance with the applicable regulations.

Data minimization .

The data processed must be adequate, relevant and limited to what is necessary in relation to the different purposes of the processing.

Accuracy.

The data shall be accurate and, if necessary, updated. In this regard, the necessary measures shall be taken to ensure that personal data that are inaccurate with respect to the purposes of the processing are deleted or rectified without delay.

Limitation of the storage period.

The data will be kept in a form that allows the identification of the persons concerned for no longer than is necessary for the purpose of the processing in question.

Integrity and Confidentiality.

Personal data shall be processed in such a way as to ensure appropriate security, including protection against unauthorized or unlawful processing, and against accidental loss, destruction or damage, by implementing appropriate technical or organizational measures.

Data transfers.

It is forbidden to purchase or obtain personal data, whose origin comes from illegitimate sources, or in those cases in which such data have been collected or transferred in contravention of the law or not sufficiently guarantee its legitimate origin.

Hiring of suppliers with access to data .

Only suppliers that offer sufficient guarantees to apply appropriate technical and security measures in the processing of data shall be chosen for contracting. With these, the appropriate contract shall be documented in this regard.

International data transfers.

Any processing of personal data subject to European Union regulations that involves a transfer of data outside the European Economic Area shall be carried out in strict compliance with the requirements established in the applicable law.

Rights of data subjects.

The Organization will facilitate the exercise of the rights of access, rectification, suppression, limitation of processing, opposition and portability to the affected persons, establishing for this purpose the internal procedures, and in particular, the models that are necessary and appropriate for its exercise, which must satisfy, at least, the legal requirements applicable in each case.

COSTA CANARIA S.L. will promote that the principles contained in this Personal Data Protection Policy are taken into account:

In the design and implementation of all work procedures.
In the products and services offered
In all contracts and obligations formalized or assumed, and
In the implementation of all systems and platforms that allow access to their plan workers / as or third parties and / or the collection or processing of personal data.

PERSONAL DATA OF MINORS

Respecting the provisions of Articles 8 of the RGPD and 7 of the Organic Law 3/2018 of 5 December, on the Protection of Personal Data and guarantee of digital rights, only those over 14 years of age may give their consent to the processing of their personal data in a lawful manner by COSTA CANARIA S.L.. In the case of a minor under 14 years of age, the consent of the parents or guardians will be necessary for the processing, and this will only be considered lawful to the extent that they have authorized it.

SECRECY AND SECURITY OF PERSONAL DATA

COSTA CANARIA S.L. undertakes to notify the user, without undue delay, when there is a breach of security of personal data that is likely to involve a high risk to their rights and freedoms. In accordance with Article 4 of the GDPR, a breach of security of personal data means any breach of security resulting in the accidental or unlawful destruction, loss or alteration of personal data transmitted, stored or otherwise processed, or the unauthorized disclosure of or access to such data.

Personal data will be treated as confidential by the Data Controller, who undertakes to inform and ensure by means of a legal or contractual obligation that such confidentiality is respected by its employees, associates, and any other person to whom the information is made accessible.

COMMITMENT OF THE PERSONNEL OF COSTA CANARIA S.L.

In view of the above, we hereby state that the employees of COSTA CANARIA S.L. are informed of this Policy, and declare that they are aware that personal information is an asset of COSTA CANARIA S.L., and in this respect they adhere to it, committing themselves to the following:

Undertake the data protection awareness training that COSTA CANARIA S.L. makes available to them.
To apply the security measures at user level that apply to their job position, without prejudice to the responsibilities in their design and implementation that may be attributed to them depending on their role within COSTA CANARIA S.L.
Use the formats established for the exercise of rights by the affected users, and inform COSTA CANARIA S.L. immediately, so that the response can be effective.
Inform COSTA CANARIA S.L., as soon as they become aware of deviations from the provisions of this Policy, in particular "Personal Data Security Violations", using the format established for this purpose.

CONTROL AND EVALUATION

COSTA CANARIA S.L. will carry out an annual verification, evaluation and assessment, as well as every time there are significant changes in the data processing, of the effectiveness of the technical and organizational measures to guarantee the security of the processing.

COSTA CANARIA S.L.

Legal Notice

In compliance with Law 34/2002, of July 11, 2002, on information society services and electronic commerce (LSSI), we inform you that:

COSTA CANARIA S.L., with NIF B35007533, has its registered office in URBANIZACIÓN PUERTO CALERO - HOTEL COSATA CALERO BARRANCO DE LA CALERA (MACHER) PALMAS, LAS - 35570.

Contact details:

Phone: 928849570

E-mail: rgonzalez@hotelcostacalero.es

General conditions of use of the web site of COSTA CANARIA S.L.

The domain name www.hotelcostacalero.com is owned by COSTA CANARIA S.L. and its exclusive use is reserved to it.

The official portal www.hotelcostacalero.com, aims to provide the general public, knowledge of the activities we do, as well as the products and services we provide.

The use of this website implies the express and full acceptance of the conditions set forth herein, without prejudice to any particular conditions that may apply to some of the specific products or services offered through the website.

COSTA CANARIA S.L. reserves the right to modify and update the information contained in its website or in its configuration and presentation at any time and without prior notice.

In order to keep the information published on the portal up to date, the contents of the portal may be modified, corrected, eliminated or added at any time, so it is advisable to check the validity or accuracy of the same by going to official sources.

Intellectual and industrial property and frames

All the elements that make up the website, as well as its structure, design, source code, logos, trademarks and other distinctive signs that appear on it, are owned by COSTA CANARIA S.L. or its collaborators, and are protected by the corresponding intellectual and industrial property rights.

Likewise, the images and other graphic elements contained in the portals are protected by the corresponding intellectual and industrial property rights.

We expressly prohibit the realization of "framings" or the use by third parties of any other mechanisms that alter the design, original configuration or contents of our portals.

The use of the contents must respect its particular licensing. Therefore, its use, reproduction, distribution, public communication, transformation or any other similar or analogous activity is strictly prohibited unless prior and express authorization from COSTA CANARIA S.L. is obtained.

With respect to quotations of news, products and services of third parties that may appear on the Web, COSTA CANARIA S.L. recognizes in favor of their owners the corresponding industrial and intellectual property rights, and their mere mention or appearance on the Web does not imply the existence of any rights or responsibility for them, nor any endorsement, sponsorship or recommendation.

Likewise, we declare our respect for the intellectual and industrial property rights of third parties; therefore, if you consider that our portals may be violating their rights, please contact us.

Responsibility

We do not guarantee the non-existence of errors in the access to the Web, in its content, nor that it is updated, although COSTA CANARIA S.L. will make its best efforts to avoid, correct or update them, as the case may be.

Both access to COSTA CANARIA S.L. portals and the use that may be made of the information contained therein is the sole responsibility of the user.

We are not responsible for any possible security errors that may occur or for any possible damage that may be caused to the User's computer system ( hardware and software ), files or documents stored therein as a result of the presence of a virus in the User's computer used to connect to the services and contents of the Web, a malfunction of the browser or the use of non-updated versions of the same.

Likewise, we are not responsible for the information and contents stored, including but not limited to, in forums, chats, blogs, comments, social networks or any other means that allow third parties to publish content independently on our website.

However, and in compliance with the provisions of the LSSI, we make available to all users, authorities and security forces, and actively collaborating in the removal or, where appropriate, blocking of all content that could affect or contravene national or international law, the rights of third parties, or morality and public order. In the event that the user considers that there is any content on the website that could be susceptible to this classification, please contact us.

Links or hyperlinks

The Web may contain links to content that directs to third party content. The purpose of these links is solely to facilitate the search for resources that may be of interest to you on the Internet. However, these pages do not belong to COSTA CANARIA S.L., nor do we review their contents, and we are not responsible for the content, information or services that may appear on these sites, which are for information purposes only and in no case imply any relationship between us and the persons or entities that own such content, or the owners of the sites where it is found.

COSTA CANARIA S.L. cannot be held responsible for the operation of the linked page or for any possible damages that may arise from accessing or using it.

Links to the COSTA CANARIA S.L. website must respect the following conditions:

The establishment of the link shall not imply per se any type of agreement, contract, sponsorship or recommendation by COSTA CANARIA S.L., of the page that makes the link.
The web page on which the hyperlink is established shall not contain information with contents that are illicit, discriminatory, contrary to commonly accepted ethical principles or against public order, nor shall it contain contents contrary to any third party rights.
COSTA CANARIA S.L. may request the removal of a link to its website, without the need to allege any cause whatsoever. In such a case, the page that has made the link must proceed to its immediate removal, as soon as it receives the notification.
We are not responsible or guarantee, in any way, the quality, accuracy, reliability, correctness or morality of content or services that the establishment of the hyperlink may offer. The user assumes sole responsibility for any consequences, damages or actions that may arise from accessing the hyperlinked website.

Protection of Personal Data

COSTA CANARIA S.L. is deeply committed to complying with personal data protection regulations, and we guarantee full compliance with the obligations set forth, as well as the implementation of appropriate security measures, in order to ensure a level of security appropriate to the risk.

Therefore, we make available to users our Privacy Policy, offering in this text the extended information of the data processing we perform.

Applicable law and jurisdiction

The applicable law in case of dispute or conflict of interpretation of the terms that make up this Legal Notice, as well as any matter related to the services of this Portal, will be Spanish law.

For the resolution of any conflict that may arise from the visit to the Portal or the use of the services offered therein, COSTA CANARIA S.L. and the user agree to submit to the Courts and Tribunals of COSTA CANARIA S.L.'s domicile.