Privacy Policy

1.USER INFORMATION

Who is the data controller? BRACH HOTEL MADRID, S.L. is the DATA CONTROLLER responsible for processing the personal data of data subjects (USERS) and informs users that their data will be processed in accordance with Regulation (EU) 2016/679 of 27 April 2016 (GDPR) and Organic Law 3/2018, of 5 December (LOPDGDD). Why do we process your personal data? The primary purpose is to maintain a commercial relationship with users, which encompasses a range of operations, including:

Distribution of commercial advertising communications by email, fax, text message, image message, social media posts or any other current or future electronic or physical means that enable commercial communications. These communications, conducted by the DATA CONTROLLER, will pertain to its products and services or those of its partners or suppliers with whom a promotional agreement has been established. In this case, it is guaranteed that third parties will not have access to personal data.
Execution of market research and statistical analyses.
Processing of orders, requests and responses to queries or any form of request made by the USER through any of the contact methods available on the DATA CONTROLLER’s website.
Dissemination of the online newsletter detailing news, offers, and promotions for our activity.

Why do we process your personal data? The processing of your personal data is justified under Article 6 of the GDPR for the following reasons:

With the USER’s consent: the distribution of commercial communications and the newsletter.
Based on the legitimate interests of the DATA CONTROLLER: conducting market research, statistical analyses and processing orders, requests, and other interactions initiated by the USER.

How long do we retain the data? Personal data collected will be retained only for as long as necessary to fulfil the purposes for which they were processed. Compliance with legal obligations may dictate a longer retention period. Once the data are no longer required for these purposes, they will be deleted using appropriate security measures to ensure either the anonymisation of the data or their destruction. To whom do we disclose your personal data? Personal data sharing with third parties is not anticipated, except where necessary for the fulfilment and execution of the processing purposes. In such instances, personal data may be disclosed to our communication service providers with whom the DATA CONTROLLER has entered into the requisite confidentiality and data processing agreements in strict compliance with current privacy legislation. What are your rights? As a USER, you are entitled to the following rights:

The right to withdraw consent at any time.
The right to access, rectify, port and erase your data, and the right to restrict or object to its processing.
The right to lodge a complaint with the supervisory authority (aepd.es) if you believe the processing of your data does not comply with current legislation.

Contact details for exercising your rights: BRACH HOTEL MADRID, S.L.. Gran Vía, 20 – 28013 Madrid (Madrid). Email: contact@brachmadrid.com.

2.THE MANDATORY OR OPTIONAL NATURE OF THE INFORMATION PROVIDED BY THE USER

USERS, by marking the appropriate boxes and entering data into the fields marked with an asterisk (*) on the contact form or presented in download forms, expressly, freely and unequivocally agree that their data are necessary for the provider to address their request. Providing data in the other fields is optional. USERS guarantee that the personal data provided to the DATA CONTROLLER are accurate and take responsibility for notifying any modifications thereof. The DATA CONTROLLER advises that all data requested via the website is essential, as it is necessary for the optimal provision of service to the USER. Failure to provide all the required information may result in the inability to fully tailor the information and services to the USER’s needs.

3.SECURITY MEASURES

In compliance with current data protection regulations, the DATA CONTROLLER adheres to all the provisions set forth in the GDPR and LOPDGDD for the processing of personal data for which it is responsible. This adherence strictly aligns with the principles outlined in Article 5 of the GDPR, ensuring that data processing is lawful, fair and transparent in relation to the data subject. Furthermore, the data collected are adequate, relevant, and limited to what is necessary for their processing. The DATA CONTROLLER affirms that it has implemented suitable technical and organisational measures to enforce the security protocols established by the GDPR and the LOPDGDD. These measures are designed to safeguard the rights and freedoms of USERS, and adequate information has been provided to ensure they can exercise their rights effectively. For more information on privacy guarantees, please contact the DATA CONTROLLER through BRACH HOTEL MADRID, S.L.. Gran Vía, 20 – 28013 Madrid (Madrid). Email: contact@brachmadrid.com