RESERVE A ROOM RESERVE A TABLE
Close

Book your stay

RESERVE A ROOM RESERVE A TABLE

Privacy Policy

Last updated: June 2024

This privacy policy applies to this website (hereinafter referred to as the Website). Please read it carefully. It contains important information about the processing of your personal data and the rights granted to you under current legislation. We reserve the right to update our privacy policy at any time due to business decisions or to comply with any legislative or jurisprudential changes. If you have any doubts or need clarification regarding our Privacy Policy or your rights, you can contact us through the channels indicated below.

You declare that the data you provide to us, now or in the future, is correct and truthful, and you agree to inform us of any changes to it. In case you provide personal data of third parties, you agree to obtain the prior consent of the individuals concerned and to inform them about the content of this policy. In general, the fields marked as mandatory in our forms must be filled out in order to process your requests.

Who is responsible for processing your data? The controller of the personal data collected on this website is HOTEL GECKO BEACH FORMENTERA S.L. (hereinafter, the HOTEL), located at Playa de Migjorn, Ca Marí, 07860, (Illes Balears); email: info@geckobeachclub.com; Tel (+34) 971 32 80 24. Furthermore, we inform you that the entity responsible for managing the HOTEL is MARUGAL HOTEL MANAGEMENT, S.L. (hereinafter, MARUGAL), located at carrer de Sant Feliu, 17A 2º 1ª, 07012 Palma (Illes Balears); Email: info@marugal.com; Tel.: +34 971 722 352. Detailed information on the protection of personal data can be found at: www.marugal.com.

What purposes and on what legal basis will we process your data?
2.1. Management of the customer and user relationship: We process the data provided by our customers and users in their inquiries to attend to their requests. This processing is necessary for the execution of the legal relationship with the website users or for the application of pre-contractual measures at their request.

2.2. Account management: We process the data provided by our users in the registration form on the website, as well as the data they register in their profile, to create and manage their accounts and to provide them access to the functionalities available to registered users. These processes are necessary for the application of pre-contractual measures at their request.

2.3. Management of accommodation bookings and services: The data provided in the accommodation booking forms or service contracting will be processed for the management of such bookings and the provision of requested services. The categories of data we process for these purposes include:

Identifying data (name, surname, and ID/passport) and contact details (address, email, and telephone) of the booking holder;
Data regarding the booking, voucher, or requested service;
Economic and transaction data.
The processing of this data is necessary for the provision of the requested services, the execution of the accommodation contract, or for the application of pre-contractual measures at their request. Economic and transaction data of goods and services carried out on the website will be processed for accounting and administrative purposes and to comply with our legal obligations in accounting and tax matters.
2.4. Sending commercial communications and management of distribution lists: We process the identifying and contact data provided by our customers and people who sign up for our distribution lists to send them communications regarding our products and services. These processes are based on the consent requested from you. Not providing your consent or withdrawing it does not affect the processing of your bookings or the provision of contracted services. You may request the cessation of processing for commercial purposes at any time by activating the link provided for this purpose in our communications or by sending an email to: info@geckobeachclub.com. If you have consented, your data will be communicated to MARUGAL to send you commercial information and offers about unique hotels and premium tourism services managed by MARUGAL. Further information can be found at: www.marugal.com.

2.5. Administration and management of website security: We process navigation data (IP addresses or logs) to manage and administer the security of the website and its restricted access areas. This processing is based on our legitimate interest in ensuring the security of the website, expressly recognized by Recital 49 of the GDPR. When balancing this interest against your rights and freedoms, it has been considered that this processing corresponds to common security practices and does not pose significant threats to the data subjects.

2.6. Statistical and quality management purposes: In order to assess and manage the quality of our services and products, we process identifying data and contact data provided by our customers in their requests or suggestions. We also conduct statistics based on aggregated data obtained from transaction data and navigation data on the website, e.g., IP address, weblogs, visited pages, or actions taken on the Website (+ info in our cookie policy). These processes are based on our legitimate interest in assessing and managing the quality of our services and products. When balancing this interest against your rights and freedoms, it has been determined that the processing has a limited impact on the privacy of the data subjects, corresponds to reasonable expectations of the data subjects, and does not pose significant threats.

To whom may we disclose your data? Your data will only be disclosed to third parties by legal obligation, with your consent, or when your request involves such communication. Likewise, if you have consented, your data will be communicated to MARUGAL for marketing purposes as stated in the section “Sending commercial communications and management of distribution lists” within the section “For what purposes and on what legal basis will we process your data?”.

How long will we retain your data? In general, we retain your data during the validity of the relationship you maintain with us, and in any case for the periods provided for in the applicable legal provisions, e.g., in accounting and tax matters, and for as long as necessary to meet possible liabilities arising from the processing. We will delete your data when it is no longer necessary or relevant for the purposes for which it was collected. Access logs for restricted areas of the website will be deleted one month after their creation. Navigation information will be deleted after the web connection is terminated and the statistics are completed. Data processed for commercial purposes will remain valid until you request its cessation.

What are your rights? You have the right to obtain confirmation as to whether or not we are processing your personal data and, if so, to access them. You may also request the rectification of your data when it is inaccurate or the completion of incomplete data, as well as request the deletion of your data when, among other reasons, the data are no longer necessary for the purposes for which they were collected. In certain circumstances, you may request the limitation of the processing of your data. In such a case, we will only process the affected data for the formulation, exercise, or defense of claims or for the protection of the rights of other persons. Under certain conditions and for reasons related to your particular situation, you may also object to the processing of your data. In this case, we will cease processing the data except for compelling legitimate reasons that override your interests, rights, and freedoms, or for the formulation, exercise, or defense of claims. Likewise, under certain conditions, you may request the portability of your data so that it is transmitted to another data controller. You may revoke the consent you have given for certain purposes at any time without affecting the lawfulness of the processing based on the consent prior to its withdrawal. You also have the right to lodge a complaint with a supervisory authority for data protection. We inform you that the European Regulation on the Protection of Personal Data also recognizes the right to data portability. You also have the right to object to the adoption of individual automated decisions that produce legal effects concerning you or significantly affect you in a similar way, where this right is provided for in Article 22 of Regulation (EU) 2016/679. To exercise your rights, you must send us a request accompanied by a copy of your national identity document or another valid document that identifies you by postal or electronic mail to the addresses indicated in the section “Who is responsible for processing your data?”. You can obtain more information about your rights and how to exercise them on the website of the Spanish Data Protection Agency at www.aepd.es.