Who are we?
Zannier Hotels Vietnam Company Ltd
Company established in Phu Yen (Vietnam), Company established in Ho Chi Minh City (Vietnam), also referred to as “Zannier Hotels”, “Bãi San Hô”, “the resort”, “we” or “us” in the below paragraphs.
Registered Office: L10-6, 10th Floor, Vincom Centre, 72 Le Thanh Ton, Ben Nghe Ward, District 1, Ho Chi Minh City, Vietnam
Owner, CEO & Publishing Manager: Arnaud Zannier
Summary of how we use your data
- What do we do with your information and what is the legal basis for this use? Zannier Hotels Bãi San Hô Company Ltd as well as its affiliates, subsidiaries and related entities (also refer to as “Zannier Hotels”, “Bãi San Hô”, “the resort” “we” or “us”), uses your personal data to process and facilitate bookings, provide you with highly-individualized service at our hotels or for delivery to your chosen location, respond to your requests for information, inform you of our products and services and other purposes as set out in this notice.
- Disclosure: Data is shared only with Zannier Hotels properties, selected third party service providers and professional advisers, that are mainly located in Vietnam, Belgium, France, UK, Germany, Switzerland and USA.
- Your rights: As per the applicable laws (notably the General Data Protection Regulation 2016/697 from 25 May 218 known as GDPR law), you have certain rights to your personal data, including a right to object to some of the processing which Zannier Hotels carries out.
What does this notice cover?
This is the Privacy Notice of Zannier Hotels. It describes how we will make use of data which you provide to us or any of our properties.
Please read this page carefully before you start to use this site. Our site may include links to other websites over which we have no control. Zannier Hotels is not responsible for the privacy policies or practices of other websites. We may also link to other websites operated by the Zannier family which operate under separate privacy policies. If you access these websites via our site, you should review the privacy policies of those websites so you can understand how they collect, use and share your information.
If you have any queries regarding this Privacy Notice or complaints about our use of your information please contact us at email@example.com and we will do our best to deal with your complaint or query as soon as possible.
Information which we may obtain about you
The site, as well as all software used necessarily in relation with the website may contain confidential data that is protected by the law of intellectual property rights in force or any other law.
The types of information we may collect and process from you include:
- Your contact information (e.g. salutation, name, telephone number, email address, postal address, organisation, country of origin);
- Your financial information (e.g. credit card number, security code, expiration date);
- Information related to your travel profile (e.g. accommodation and travel preferences, booking history, special health accommodations, any comment your note to us);
- Information related to your client profile (e.g. delivery address, country of residence, favourite currency);
- Your marketing preferences, including any consents you have given us;
- If you contact us or our agents, we may keep a record of that communication and any communications and correspondence with you; and
- Information related to the browser or device you use to access our sites, including where available, your IP address, operating system and browser type, for system administration and security reasons and to collect aggregate information.
What information about you do we receive from third parties?
Sometimes, we receive information about you from third parties. In particular, we may receive information about you from travel agents, tour operators and destination management companies, corporate companies whom you have direct contact. The information we collect from such third parties include your contact information and information related to your travel profile.
- When you interact with us on social media platforms such as Facebook, Instagram and YouTube (depending on your privacy preferences on those platforms);
What do we do with your information & what is the legal basis for this use?
We may use the personal data you supply to us via our site for the following purposes:
To fulfil a contract, or take steps linked to a contract: this is relevant where you make bookings or place an order with us. This includes, for example:
- Processing and facilitating bookings, including verifying your identity, taking payments and communicating with you;
- Providing customer services;
As required by Zannier Hotels to conduct our business and pursue our legitimate interests, in particular:
- Responding to requests which you have submitted via our site and to deal with on-going matters relating to such requests;
- Presenting content from our site in the way that we consider most effective.
- Providing you with highly-individualized service at our hotels and presenting you with information relating to Zannier Hotels;
- If you provide a credit or debit card as payment, we use third parties to check the validity of the sort code, account number and card number you submit in order to prevent fraud (see data sharing below);
- Monitoring customer accounts to prevent, investigate and/or report fraud, terrorism, misrepresentation, security incidents or crime, in accordance with applicable law;
- Using information you provide to investigate any complaints received from you or from others, about our website or our products or services;
- Using data in connection with legal claims, compliance, regulatory and investigative purposes as necessary (including disclosure of such information in connection with legal process or litigation);
Where you give us consent:
- Providing you with travel-related information, information relating to Zannier Hotels or promotional details about products and services that may be of interest to you, as well as personalised mailings (electronic or otherwise) or other communications;
- Invite you to join our e-newsletter distribution;
- On other occasions where we ask you for consent, we will use the data for the purpose which we explain at the time.
WITHDRAWING CONSENT OR OTHERWISE OBJECTING TO DIRECT MARKETING
Wherever we rely on your consent, you will always be able to withdraw that consent, although we may have other legal grounds for processing your data for other purposes, such as those set out above. In some cases, we are able to send you direct marketing without your consent, where we rely on our legitimate interests. You have an absolute right to opt-out of direct marketing, or profiling we carry out for direct marketing, at any time. You can do this by following the instructions in the communication where this is an electronic message, or by contacting us using the details set out below.
WHO WILL WE SHARE THIS DATA WITH, WHERE AND WHEN?
Zannier Hotels may disclose your personal data to the following categories of recipients (in all cases, only when necessary to fulfill their functions):
- Our staff (including employees and external consultants), professional advisors and agents;
- Third party service providers which process your personal data on behalf of Zannier Hotels and who are bound by contractual obligations to keep your personal data confidential and appropriately secure. In particular, we use third party providers of website hosting, backend service provider, analytics, crash reporting, and email marketing;
- Government authorities, regulatory agencies and law enforcement officials, if required for the purposes specified above, if mandated by law, or if required for the legal protection of our legitimate interests in compliance with applicable laws;
- If there is a corporate sale, merger, reorganisation, insolvency event or other similar event.
Our office headquarters are based in Belgium, and our main data centre is located in Ghent (Belgium). Therefore, where required to perform our contract with you or for our wider business purposes, the information that we hold about you will be transferred to, and stored at, a destination in Belgium. By making a reservation, visiting or staying at a Zannier Hotels branded property or using any Zannier Hotels branded service, you understand that we may transfer your personal data.
In certain circumstances, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries will be entitled to access your personal data.
At Zannier Hotels, we are using the following cookies:
- strictly necessary cookies
- functionality cookies
- performance cookies
- social media cookies
If you are using our content via a web browser, you can change your cookie preferences and withdraw your consent at any time. Information are generally saved maximum 2 years.
You may also set your browser to block all cookies or to indicate when a cookie is being set, although our services may not function properly if your cookies are disabled. Further information about the procedure to follow in order to disable cookies can be found on your browser provider’s website, or you may wish to refer to http://www.allaboutcookies.org/manage-cookies/index.html for information on commonly used browsers.
Please be aware that if cookies are disabled, not all features of the services may operate as intended.
What rights do I have ?
Subject to applicable laws, you may have rights in relation to your personal data. Such rights include:
You have the right to ask us for a copy of your personal data; to correct, delete or restrict (stop any active) processing of your personal data; and to obtain the personal data you provide to us for a contract or with your consent in a structured, machine readable format, and to ask us to share (port) this data to another controller.
In addition, you can object to the processing of your personal data in some circumstances (in particular, where we don’t have to process the data to meet a contractual or other legal requirement, or where we are using the data for direct marketing).
These rights may be limited, for example if fulfilling your request would reveal personal data about another person, where they would infringe the rights of a third party (including our rights) or if you ask us to delete information which we are required by law to keep or have compelling legitimate interests in keeping. We will inform you of relevant exemptions we rely upon when responding to any request you make.
To exercise any of these rights, or to obtain other information, such as a copy of a legitimate interests balancing test, you can get in touch with us using the details set out below. If you are an EEA resident and you have unresolved concerns, you have the right to complain to an EEA data protection authority where you live, work or where you believe a breach may have occurred.
We will aim to respond to all legitimate requests as soon as we reasonably can and in any event within 30 days. If we think that it will take us longer than 30 days, we’ll let you know why and keep you updated. Where you make any requests, we might ask for specific information to confirm your identity as a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. This might include asking for further information in relation to your request to be able to speed up our response.
How to get in touch with us?
We hope that we can satisfy queries you may have about the way we process your data. If you have any concerns about how we process your data, or would like to opt out of direct marketing, you can get in touch at firstname.lastname@example.org.
How long will you retain my data?
Where we process personal data for marketing purposes or with your consent, we process the data until you ask us to stop and for a short period after this (to allow us to implement your requests). We also keep a record of the fact that you have asked us not to send you direct marketing or to process your data so that we can respect your request in future.
Where we process your financial information, we will only keep the information for as long as necessary for the purpose/s for which it is collected and up to 3 months thereafter.
Where we process personal data in connection with performing a contract, we keep the data for 2 years from your last interaction with us.