Privacy Policy

Basic information on data protection

Data controller: FINCA GAYETA, S.L.

Purposes: Provision of online services. Management of website users. Marketing communications relating to our services. Booking management. Newsletter subscription.

Legal basis: Express consent and legitimate interest

Recipients: Data may be disclosed to third parties for the purpose of arranging cancellation insurance and managing the booking. No other data will be disclosed, unless required by law.

Rights: You have the right to access, rectify and erase your data, as well as other rights, as explained in the additional information.

Further information: You can find further detailed information on data protection in the attached clauses available at https://www.thelodgemallorca.com/es/proteccion-de-datos/

At FINCA GAYETA, S.L., we strive to provide you with the best possible experience through our products and services. In some cases, we need to collect information to achieve this. We care about your privacy and believe we should be transparent about this.

Consequently, and for the purposes of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 (hereinafter, the “GDPR”) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and LAW 34/2002 of 11 July on Information Society Services and Electronic Commerce (hereinafter “LSSI”), FINCA GAYETA, S.L. informs the user that, as the data controller, it will incorporate the personal data provided by users into an automated data file.

Our commitment starts with explaining the following to you:

• Your data is collected to improve your user experience by tailoring it to your interests and needs.
• We are transparent about the data we collect about you and why we do so.
• Our aim is to provide you with the best possible experience. Therefore, whenever we use your personal data, we will always do so in accordance with the law, and where necessary, we will ask for your consent.
• We understand that your data belongs to you. Therefore, if you decide not to authorise us to process it, you can ask us to stop doing so.
• Our priority is to ensure your safety and to process your data in accordance with European regulations.

If you would like more information about how your data is processed, please refer to the various sections of the privacy policy below:

Who is responsible for processing your personal data?

Company name: FINCA GAYETA, S.L.

Registered office: Pg. de Gràcia, 112, 3rd floor, 08008, Barcelona, Spain

Tax Identification Number: B87639761

Email: rgpd@unicohotels.com

FINCA GAYETA, S.L. has appointed a Data Protection Officer or an internal contact person within its organisation. If you have any queries regarding the processing of your personal data, you can contact them by emailing rgpd@unicohotels.com

What personal data do we collect?

Personal data that the user may provide:

• Name, address and date of birth.
• Telephone number and email address.
• Location.
• Information regarding payments and refunds.
• Your IP address, the date and time you accessed our services, the web browser you use, and details about your device’s operating system.
• Any other information or data you choose to share with us.
• In some cases, you must complete the registration form in order to access and use certain services offered on the website; furthermore, failure to provide the personal data requested or to accept this data protection policy will make it impossible to subscribe, register or take part in any of the promotions for which personal data is required.

Why and for what purpose do we process your data?

At FINCA GAYETA, S.L., we process the information provided to us by data subjects for the following purposes:

• Manage orders or book one of our services, either online or in-store.
• To process the information requested of us.
• To carry out commercial activities and manage and maintain customer relationships, as well as to manage the services offered via the website and provide information; this may involve carrying out automated assessments, profiling and customer segmentation in order to personalise the service according to customers’ characteristics and needs and to improve the customer’s online experience.
• To organise and manage any competitions, prize draws or other promotional activities that may be held.
• In some cases, it will be necessary to provide information to the authorities or third-party companies for auditing purposes, as well as to process personal data from invoices, contracts and documents in order to respond to complaints from customers or public authorities
• Please be advised that the personal data collected as a result of your registration as a user will be included in the Register of Processing Activities and Operations (RAT), which will be updated periodically in accordance with the provisions of the GDPR.

What is the legal basis for processing your data?

The processing of your data may be based on the following legal grounds:

• Consent from the data subject for the purchase of services and products, for contact forms, requests for information or subscription to e-newsletters.
• Legitimate interest in processing our customers’ data for direct marketing purposes, and the data subject’s explicit consent for all matters relating to automated decision-making and profiling.
• Compliance with legal obligations regarding fraud prevention, communication with public authorities and third-party claims.

How long do we keep your data?

Data will be processed for the purposes described for as long as is necessary to fulfil the purpose for which it was collected (for example, for the duration of the business relationship), as well as to comply with any legal obligations arising from the processing of the data.

Who do we share your data with?

In certain cases, and only where necessary, FINCA GAYETA, S.L. will provide user data to third parties. However, data will never be sold to third parties. External service providers (e.g. payment providers or delivery companies) with whom FINCA GAYETA, S.L. works may use the data to provide the relevant services; however, they will not use such information for their own purposes or for disclosure to third parties:

The booking system is managed by INTEDOCS SOLUCIONES DIGITALES S.L., which guarantees the protection and confidentiality of any personal data provided by users, in accordance with the provisions of the General Data Protection Regulation.
The data will be included in an automated personal data file created and maintained under the responsibility of INTEDOCS SOLUCIONES DIGITALES S.L., which is essential for providing the services requested by users.

The data provided will be processed in accordance with the provisions of the General Data Protection Regulation. In this regard, INTEDOCS SOLUCIONES DIGITALES S.L.L. has implemented the legally required levels of protection and has put in place all technical measures within its power to prevent loss, misuse, alteration or unauthorised access by third parties.

However, users should be aware that online security measures are not impregnable. Should it be deemed appropriate to disclose their personal data to other organisations, users will be informed of the data being disclosed, the purpose of the data file, and the name and address of the recipient, so that they may give their unambiguous consent in this regard.

In accordance with the provisions of the GDPR, users may exercise their rights of access, rectification, erasure, objection, restriction or data portability. To do so, please contact INTEDOCS SOLUCIONES DIGITALES S.L. at c/ Dr. August Pi i Sunyer 9-11, Bajos, 08034, Barcelona, telephone number 930013880 and email address info@witbooking.com.

FINCA GAYETA, S.L. endeavours to ensure the security of personal data when it is transferred outside the company and ensures that third-party service providers respect confidentiality and have appropriate measures in place to protect personal data. These third parties are obliged to ensure that the information is processed in accordance with data privacy regulations.

In some cases, the law may require personal data to be disclosed to public bodies or other parties; only the data strictly necessary to comply with such
legal obligations will be disclosed. Personal data collected may also be shared with other companies within the group.

Where is your data stored?

Generally speaking, data is stored within the EU. Where data is transferred to third parties outside the EU, we will ensure that they provide an adequate level of protection, as they have Binding Corporate Rules (BCR) in place.

What rights do you have and how can you exercise them?

You can contact us and exercise your rights by sending an email to the following address: rgpd@unicohotels.com

Under the provisions of the GDPR, you may request:

• Right of access: you can request information about the personal data we hold about you.
• Right to rectification: you may notify us of any changes to your personal data.
• Right to erasure and the right to be forgotten: you may request the deletion of your personal data, following its blocking.
• Right to restriction of processing: this involves restricting the processing of personal data.
• Right to object: you may withdraw your consent to the processing of your data and object to its continued processing.
• Right to data portability: in some cases, you may request a copy of your personal data in a structured, commonly used and machine-readable format for transmission to another controller.
• Right not to be subject to individualised decisions: you may request that no decisions be made based solely on automated processing, including profiling, which produce legal effects or significantly affect the data subject.
• In some cases, your request may be refused if you ask for data to be deleted that is necessary for compliance with legal obligations.

Furthermore, if you have any concerns regarding the processing of your data, you may lodge a complaint with the data protection authority.

Who is responsible for the accuracy and truthfulness of the information provided?

The user is solely responsible for the accuracy and correctness of the information provided, and FINCA GAYETA, S.L. shall not be held liable in this regard.

Users warrant and are responsible, in all circumstances, for the accuracy, validity and authenticity of the personal data provided, and undertake to keep such data duly up to date.

The user agrees to provide complete and accurate information on the registration or subscription form. FINCA GAYETA, S.L. reserves the right to terminate any services contracted with users if the information provided is false, incomplete, inaccurate or out of date.

FINCA GAYETA, S.L. accepts no responsibility for the accuracy of information that has not been produced by the company itself and for which another source is cited; consequently, it accepts no liability whatsoever for any potential losses that may arise from the use of such information.

FINCA GAYETA, S.L. reserves the right to update, modify or remove the information contained on its websites and may even restrict or deny access to such information. FINCA GAYETA, S.L. is exempt from liability for any damage or loss that the user may suffer as a result of errors, defects or omissions in the information provided by FINCA GAYETA, S.L., provided that such information originates from sources external to the company.

Furthermore, the user confirms that they are over 14 years of age and that they have the legal capacity required to give consent to the processing of their personal data.

How do we handle the personal data of minors?

In principle, our services are not specifically aimed at minors. However, in the event that any of them are directed at children under the age of fourteen, in accordance with Article 8 of the GDPR and Article 7 of Law 3/2018 of 5 December (LOPDGDD), FINCA GAYETA, S.L. will require the valid, free, unambiguous, specific and informed consent of their legal guardians to process the personal data of minors. In this case, the national identity card or another form of identification of the person giving consent will be required.

In the case of individuals aged fourteen or over, data may be processed with the user’s consent, except in cases where the law requires the involvement of parents or guardians.

What security measures do we put in place to protect your personal data?

FINCA GAYETA, S.L. has implemented the legally required security measures for the protection of personal data and endeavours to put in place any additional technical measures and safeguards within its power to prevent the loss, misuse, alteration, unauthorised access and theft of personal data provided to FINCA GAYETA, S.L..

FINCA GAYETA, S.L. shall not be liable for any damages that may arise from interference, omissions, interruptions, computer viruses, telephone faults or disconnections in the operation of this electronic system, caused by factors beyond the control of FINCA GAYETA, S.L.; delays or blockages in the use of this electronic system caused by deficiencies or overloads in telephone lines or overloads in the Data Processing Centre, the Internet system or other electronic systems, as well as any damage that may be caused by third parties through unlawful interference beyond the control of FINCA GAYETA, S.L.. Nevertheless, the user must be aware that security measures on the Internet are not impregnable.

Links to other websites

The website www.thelodgemallorca.com may contain links to other websites. If you click on one of these links and access an external website, your visit will be subject to that website’s privacy policy, and FINCA GAYETA, S.L. accepts no liability whatsoever regarding its privacy policy.

How do we use cookies?

The FINCA GAYETA, S.L. website and social media accounts use cookies to optimise and personalise your browsing experience. Cookies are small text files stored on the user’s device; the information collected via cookies is used to facilitate the user’s navigation of the website and to optimise the browsing experience. The data collected via cookies may be shared with the creators of the cookies, but under no circumstances will the information obtained through them be linked to personal data or to data that could identify the user.

However, if you do not wish to have cookies stored on your hard drive, you can configure your browser to prevent these files from being stored. For further information, please see our Cookie Policy at https://www.thelodgemallorca.com/es/politica-de-cookies/

Information on the use of this website

We use third-party technologies such as Consent Mode Advanced, a Google feature that allows minimal technical browsing signals (e.g. browser type, screen resolution) to be sent even before the user interacts with the cookie banner. This processing is based on the legitimate interest of the data controller and does not include directly identifiable personal information, but may involve the use of pseudonymised technical identifiers.

We also use Enhanced Conversions, a Google technology which, only if the user has consented to the use of advertising cookies, allows data such as email addresses, telephone numbers or names to be sent to these platforms in encrypted form (hashed using SHA256). The purpose of this is to improve conversion tracking and create lookalike audiences for personalised advertising campaigns. This processing is based on the user’s explicit consent.

Can the privacy policy be amended?

This privacy policy is subject to change. We recommend that you review the privacy policy from time to time.