Privacy Policy for ouis-guesthouse.com

At Ouis Guesthouse (“we,” “our,” or “us”), accessible via ouis-guesthouse.com, we are firmly committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy outlines how we collect, use, protect, and share your information in accordance with the European Union General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. By accessing or using our website, you agree to the practices described in this Privacy Policy.

1. Commitment to Privacy and Data Protection
We are committed to maintaining the confidentiality, integrity, and availability of your personal information. Our data practices are designed to ensure lawful, fair, and transparent processing, and to uphold your rights and freedoms as a data subject.

2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through your interaction with ouis-guesthouse.com, whether you are a guest, client, inquiry submitter, or just visiting our website. For purposes of applicable data protection laws, Ouis Guesthouse acts as the “data controller” for the personal data we process, determining the means and purposes of processing.

3. Categories of Data Processed

We may collect and process the following categories of personal data:

a. Usage Data
Includes information about how you use our website and services, such as browser type, IP address, device identifiers, geographic location, access times, page views, and referring websites.

b. Account Data
When you make reservations or register with us, we may collect your name, home or billing address, telephone number, email address, and other identifying contact information.

c. Profile Data
Includes your preferences, interests, previous stays, feedback, and other profiling information that helps us personalize your experience.

d. Communication Data
Includes the contents of emails, messages submitted through the contact form, support tickets, and chat or phone communications with our staff.

e. Technical Data
Includes information about your device type, operating system, screen resolution, language settings, system time zone, and other technical identifiers.

f. Transaction Data
Includes booking details, payment card metadata (processed securely via third-party providers), billing information, and delivery or service fulfillment data.

g. Preference Data
Includes records of your marketing consents, communication preferences, and expressed interests in our services or promotions.

4. Legal Bases for Processing

We process your personal data under one or more of the following legal bases:

– Contractual Necessity: Processing necessary to fulfill a booking, reservation, or service request.
– Legitimate Interests: Processing based on our legitimate business interests, including ensuring website security, improving our services, and sending relevant offers, provided your rights do not override our interests.
– Consent: Where you have given specific consent, particularly for marketing communications or use of non-essential cookies.
– Legal Obligation: Where processing is required for compliance with applicable laws and regulations.

5. Your Rights

Under applicable data protection laws, you have the following rights:

– Right of Access: To obtain confirmation and access to your personal data we hold.
– Right of Rectification: To request correction of incomplete or inaccurate data.
– Right to Erasure: To request deletion of your data, where legally permissive.
– Right to Restrict Processing: To request limits on how your data is used.
– Right to Data Portability: To receive your data in a structured, commonly-used format and have it transferred to another controller.
– Right to Object: To object to processing based on legitimate interest or direct marketing.
– Right to Withdraw Consent: To withdraw your consent at any time where processing is based on consent.

To exercise any of the above rights, please contact us at [email protected].

6. Security Measures

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, unlawful processing, accidental loss, destruction, or damage. These measures include, but are not limited to:

– SSL encryption for data transmission
– Access controls with role-based authentication
– Secure data backup and disaster recovery processes
– Regular audits and employee training in data privacy and security

7. International Transfers

In cases where your personal data is transferred outside the European Economic Area (EEA) or your jurisdiction, including to third-party service providers, we ensure adequate protection through Standard Contractual Clauses (SCCs) or other approved mechanisms, as required by applicable law. We strive to ensure that your data receives the same level of protection as it would within your jurisdiction.

8. Data Retention

We retain personal data only as long as necessary for the purposes we collected it for, including the fulfillment of any legal, accounting, or reporting requirements. Retention periods may vary based on the data category:

– Booking and Transaction Data: Retained for up to 5 years
– Account and Communication Data: Retained for up to 3 years after last contact
– Usage and Technical Data: Retained for up to 12 months
– Marketing and Preference Data: Retained until consent is withdrawn or updated

Once the retention period expires, the personal data is securely deleted or anonymized.

9. Cookie Policy

Our website uses cookies and similar technologies to enhance user experience, optimize performance, and track analytics. Cookies are categorized as follows:

– Essential Cookies: Required for website operation, such as session management.
– Functional Cookies: Enable enhanced features like remembering selected preferences.
– Analytics Cookies: Help us understand how users interact with our website (e.g., Google Analytics).
– Performance Cookies: Monitor page load times and other performance metrics.

10. Cookie Management and Compliance

You can manage or disable cookies through your browser settings or use the cookie consent tools made available via ouis-guesthouse.com. Upon your first visit, you will be prompted to grant or deny consent for non-essential cookies in compliance with GDPR and CCPA requirements. You may withdraw or modify your consent at any time from the cookie settings menu on our website.

Residents of California may also exercise the right to “opt-out” of the sale of personal information, although we do not sell your personal information in the conventional sense.

11. Special Protections for Children Under 13

Our website is not directed to children under the age of 13. We do not knowingly collect personal data from anyone under 13 years of age. If we become aware that a child has provided us with personal information, we will delete such information immediately. If you believe that we may have collected information from a child, please contact us at [email protected].

12. Policy Updates and User Notifications

We reserve the right to amend, modify, or update this Privacy Policy at any time in response to legal, technical, or operational changes. Substantive changes will be communicated by notice on ouis-guesthouse.com, and continued use of the website constitutes your acceptance of the updated terms.

13. Contact Us

For questions about this Privacy Policy or to exercise your data protection rights, please contact us at:

Email: [email protected]
Website: https://ouis-guesthouse.com

We are committed to ensuring your privacy, and we will make every effort to respond promptly to your concerns or requests.

We comply fully with GDPR, CCPA, and other applicable privacy regulations. If you have concerns about how your personal data is handled, please do not hesitate to reach out to us.