Privacy policy
1. INFORMATION TO THE USER
TIRDAK S.L., hereinafter referred to as the CONTROLLER, is responsible for the processing of the User’s personal data and informs you that such data will be processed in accordance with Regulation (EU) 2016/679 of 27 April (GDPR) and Spanish Organic Law 3/2018 of 5 December (LOPDGDD). The following information regarding data processing is therefore provided:
Purpose of processing: to maintain a commercial relationship with the User. The processing operations envisaged include:
Sending commercial advertising communications by email, fax, SMS, MMS, social media, or any other electronic or physical means, present or future, that enables commercial communications. These communications will be carried out by the CONTROLLER and will relate to its products and services, or those of its collaborators or suppliers with whom promotional agreements have been established. In such cases, third parties will never have access to personal data.
Conducting statistical analyses.
Processing orders, requests, or any type of enquiry made by the User through any of the contact methods made available.
Sending the website’s newsletter.
Legal basis for processing: the data subject’s consent.
Data retention criteria: data will be retained no longer than necessary to fulfil the purpose of processing and, when no longer required for such purpose, will be deleted using appropriate security measures to ensure pseudonymisation or complete destruction.
Disclosure of data: data will not be disclosed to third parties unless required by law.
User rights:
The right to withdraw consent at any time.
The right of access, rectification, portability, and erasure of data, and the right to restriction of or objection to its processing.
The right to lodge a complaint with the supervisory authority (www.aepd.es) if you consider that the processing does not comply with applicable regulations.
Contact details to exercise your rights:
TIRDAK S.L., Avda. Juan Carlos I, 50420 Cadrete, Zaragoza, Spain. Email: gerencia@kadrithotel.com
2. MANDATORY OR OPTIONAL NATURE OF THE INFORMATION PROVIDED BY THE USER
By ticking the corresponding boxes and entering data in the fields marked with an asterisk (*) in the contact form or presented in download forms, Users expressly and freely accept that their data is necessary for the provider to process their request. The inclusion of data in the remaining fields is voluntary. The User guarantees that the personal data provided to the CONTROLLER is accurate and undertakes to notify any modification thereof.
The CONTROLLER expressly informs and guarantees Users that their personal data will under no circumstances be transferred to third parties and that, should any transfer of personal data be carried out, prior express, informed, and unequivocal consent will always be requested from the Users. All data requested through the website is mandatory, as it is necessary to provide optimal service to the User. If all required data is not provided, it cannot be guaranteed that the information and services offered will fully meet your needs.
3. SECURITY MEASURES
In accordance with current personal data protection regulations, the CONTROLLER complies with all GDPR provisions regarding the processing of personal data under its responsibility, and expressly with the principles described in Article 5 of the GDPR, whereby data is processed lawfully, fairly, and transparently in relation to the data subject, and is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed.
The CONTROLLER guarantees that appropriate technical and organisational policies have been implemented to apply the security measures established by the GDPR in order to protect the rights and freedoms of Users and that the relevant information has been provided to enable them to exercise those rights.