1. Object This policy covers: -The processing of personal information present within the Hôtel Levesque; -The life cycle of this information (collection, processing, sharing, storage, destruction) with its systems, employees and subcontractors; 2. Legal considerations Hôtel Levesque is headquartered in Rivière-du-Loup, Canada. Its customers mainly come from North America and some in Europe. The organization MUST consider provincial and federal laws as part of its privacy program. The General Data Protection Regulation (GDPR) was used as the basis for the company's privacy program, adjusting the privacy policy program to the strictest legal requirements to which the processing of personal data is subject.
3. Data controller and data processor
Company customers are the “Data Controllers” for most of the information that is entered into the Opera web application, website and reservation systems or that is shared periodically with employees in order to provide services. This positions the company as the “Data Processor” for most of the information stored and processed by the organization. Some information is collected directly by the company to assist with security, logging, and application performance. These elements include information such as IP address and behavior within the organization's platform. For this information, the company acts as controller and processor. Additionally, the organization employs a variety of technologies and partners who periodically act as sub-processors. If users have any questions or concerns regarding the processing and management of their personal information, they can contact the Privacy Officer directly.
Appropriate technical and organizational measures to protect your information have been put in place to ensure that we will process and protect your information in accordance with the principles of personal data protection: They MUST be: -Processed fairly and lawfully; -Obtained only for one or more specified and lawful purposes and will not be processed in a manner incompatible with such purpose(s); -Adequate, relevant and not excessive with regard to the purpose(s) for which they are processed; -Accurate and updated as necessary; Processed in accordance with the rights of the data subject as defined in the following privacy regulations: “GDPR”, “PIPEDA” and “CCPA”; They MUST NOT be: -Kept for longer than necessary; -Transferred to a country or territory other than Canada, unless we can be assured that there is an adequate level of protection of the rights and freedoms of the persons concerned; -Appropriate technical and organizational measures MUST be put in place to protect personal data against unauthorized or unlawful processing and against accidental loss, damage or destruction; -Any changes, updates or controls in place to protect your personal information will be communicated in writing to users of the system who process personal information.
4. Personal Information Inventory
To protect data, the Company maintains an accurate inventory of all personal information collected, processed or stored and transferred by the Company.
5. “Cookie” banner
“Cookies” are small pieces of data that a website stores on your computer that allow the website to remember a user by the device they are using. This can allow a website to remember the state the user left when they closed their browser or to track information about the user's experience with the website. Some "cookies" are used to track other analytics about a user's experience on the website, such as which pages they viewed, which links they clicked or how long they spent on the website. a certain page. The company uses "cookies" to track various information about your use and personal experience with their websites and does so only with obtaining your consent using a "cookie" banner. We may track, with your consent, the following details about your experience with our website: Tracking preferences; Authentication and security; Session status; Various analyses.
6. Access your personal information
You have the right to request a copy of the personal information we hold about you and to have any inaccuracies in your personal information corrected. When you submit a request for personal information, you have the right to:
-Know the personal information that the company processes or has processed;
-Know the reason(s) and purpose(s) of processing their personal information;
-Know whether their personal information has been shared and if so with whom and for what purposes.
7. Process for requesting access to your personal information
The process for submitting a request for access to personal information is as follows:
-Requests for personal information are submitted to your organization by email.
8. How to give, refuse or withdraw consent or file complaints
Implied consent is given to the company if:
-The user uses the services offered once the “cookie” banner has been displayed;
-The user has read and accepted the privacy policy on the website which is publicly available.
Explicit consent is denied to the company if:
-The privacy policy is not read and accepted;
-The customer uses his contact details to request the withdrawal of his consent.
Note : The company will never assume or imply consent from anyone under the age of 16.
Explicit consent can only be given freely if the person concerned is aged 16 or over.
Children between the ages of 13 and 16 MUST explicitly opt-in before their information is processed or stored for use and we first ask the parent or guardian to provide consent.
Children under the age of 13 will not have their personal information processed or stored for use by the company.
Privacy complaints can be directed to the following email address: guillaume.lavoie@hotellevesque.com
9. Correct inaccuracies in your personal information
You have the right to have any inaccuracies identified in your personal information that we collect corrected.
The company offers you the opportunity to correct inaccuracies in your personal information.
10. Right to be forgotten
You have the right to request that your information be deleted and that you be completely removed from our records, unless there is a legal basis for record keeping, such as financial transactions and for tax purposes.
11. Leak and Breach Notification Any person whose personal information has been disclosed or is included in a breach has the right to be informed within a reasonable time, once the leak or breach has been discovered and the personal information disclosed has been disclosed under a unencrypted form. Notification will be expedited if the lost personal information poses a real risk of harm to the individual. This type of personal information is called sensitive information. The person whose personal information has been disclosed will be informed of the possible consequences that could result from the leak. Sensitive information that could present a real risk of significant harm to an individual in the event of a leak. These impacts include, but are not limited to, the following: -Bodily injury; -Humiliation; -Damage to reputation or relationships; -Job Loss ; -Loss of commercial or professional opportunities; -Financial loss ; -Identity theft ; -Negative effects on the credit file; Damage or loss of property.
This policy is approved by the person responsible for the protection of personal information at Hôtel Levesque, whose business contact details are as follows: Guillaume Lavoie, General Manager guillaume.lavoie@hotellevesque.com For any requests, questions or comments regarding this policy, please contact the person in charge by email.
171 rue Fraser
Rivière-du-Loup (Québec)
G5R 1E2
CITQ : 1629
© 2024 All rights reserved. Hôtel Levesque in Rivière-du-Loup. Website by HD Marketing