Privacy Policy
Privacy Policy
We at Trakiyski Hotelieri EOOD value the trust and loyalty of our guests. That is why we care about the confidentiality of the information you share with us and make every effort to protect it.
When collecting personal data, we follow the principle of minimizing the processed data, lawfulness, transparency and security.
With this policy, we aim to clarify what personal information we collect, how we use it, for what purpose we do so and what your rights are in relation to the personal data collected about you. Please also read our Cookie Statement, which will explain how we use Cookies and other similar technologies.
This policy applies to the personal data that we collect from you or about you on this site, when providing services, when you visit any of our sites, as well as from other sources (such as email contacts with the Customer Relations Department).
By submitting a reservation for one of our properties, using accommodation services and/or using this website, you demonstrate that you accept the rules regarding the collection and use of your personal data as described in this Policy.
What information do we collect?
Personal information about you or others that you provide to us
When you make a reservation through our website or use our services, we collect personal data about you, which includes your name and contact form (at least to make your reservation), postal address, billing address, information related to your stay, nationality, data from your identity document (without making a copy of it) such as identity document number, date and place of issue, permanent address, history of stays, payment information, such as bank account. If you wish, you can state your preferences and special requirements for your stay. If you share your sensitive personal data with us, for example regarding your health condition, we will process this information to provide you with the requested services and to respond to your specific needs.
We will also process the personal data that you provide to us in connection with your request for a claim, complaint or compliment about the services provided by us – for the period that we need to respond to them.
In case you use additional services on the territory of our facilities (outside of hotel accommodation services), we will process these personal data that are necessary for us or the providers of these services to provide them.
In limited cases, we collect personal data of persons under 18 years of age who accompany you, which are necessary to fill out the accommodation address cards (the information that is collected is identical to that of adults, and contact information, banking and other financial information is not collected).
In addition, we carry out video surveillance in our facilities in order to protect the security of our guests and their belongings. We do not use technologies that allow us to identify you, nor do we otherwise collect biometric data about you (e.g. recognition of your facial features). You will find out where we carry out video surveillance by the signboards placed in “Kamengrad” HOTEL & SPA, Hotel “Koral”, Sozopol Boutique Hotel “Sokol”, Borovets, Park Hotel “Asarel”
Personal information that we collect automatically:
When you use our site, we also collect information from your device (computer, phone, tablet, etc.). This information may include IP address, the browser you use and your language settings. In most cases, this data is anonymous and does not allow us to identify you.
Regarding the cookies used on our site, please read here.
Personal information that we receive from other sources:
In addition, we receive information about you from other sources – our partners such as payment service providers, as well as other independent third parties (for example, Booking.com and other booking platforms, when you make your reservation through them), travel agencies and tour operators, etc. The information collected from these sources may be combined with the information you provide. We use this information for the purposes described in this Policy.
If you attend an event or function organized at our facilities by third parties, we may receive and process your personal data for the purpose of providing access to or participation in the event, to the extent that the organizers require this from us or there is another basis for processing personal data.
Why do we collect your personal data and on what basis do we do it?
We use your personal data for several purposes:
To process your online reservation;
To provide you with services related to the reservation you made and to ensure your stay at our facilities;
To communicate with you regarding your reservation or your stay;
To maintain our records (e.g. a register of accommodated tourists, which we are obliged to keep under the Tourism Act);
To provide you with a service tailored to your needs and preferences;
To respond to your requests and complaints;
For your security and to protect our property at the facilities;
For statistical purposes;
Direct Marketing.
The grounds on which we collect your personal data are to comply with and comply with our legal obligations (under item 4), to perform our contract with you (under items 1 and 2), to protect our legitimate interests (under items 3, 5, 6, 8) or, where applicable, we will obtain your prior consent to the processing (under item 9).
When we process your data on the basis of our legitimate interests, you have the right to object to this processing by contacting us at the email or postal address specified at the end of this Policy.
How long do we store your personal data?
We store your personal data only for the minimum period necessary to achieve the purposes set out in this Policy, unless we are legally obliged or entitled to store it for a longer period.
We determine the retention period by taking into account several factors, including the duration of the provision of services (for example, whether the price of the stay is paid upon departure from the property), whether it is necessary for the purpose of establishing, exercising or defending our legal claims, or whether we have a legal obligation to store the data (for example, accounting documents for a period of 5 years or 10 years).
With whom do we share your personal data?
We provide the above data only to our trusted partners (to the extent necessary for the services we use, such as web design and website maintenance services), who we have ensured comply with the highest standards of information security and confidentiality. Providing data to our partners is necessary to improve the functioning of our website.
Other third parties that may receive part of your personal data are parties with whom we provide the services, such as financial institutions, advertisers or in some cases state authorities (for example, when we send the legally required register of accommodated tourists to the Ministry of Internal Affairs).
We will never sell your information to third parties or use it for purposes for which we have not notified you and you have not given us your prior consent.
We will not transfer your data to countries outside the EU.
How do we protect your rights?
We process your personal data only in accordance with the purposes, grounds and deadlines stated above.
When we collect personal data, we do so in a minimal amount and only for previously and clearly defined purposes and storage periods. We provide access to the data only to a limited number of persons who have been previously trained and instructed on how to work with the data.
What are your rights?
As a data subject, you have the right to receive confirmation and/or detailed information, including a copy of the personal data processed about you (right of access).
In addition, you can object to the collection and further processing of your personal data, as well as request that they be corrected (updated) or deleted (when there is no valid legal basis for us to continue processing them).
It is important to know that you can withdraw your consent to the processing of personal data at any time: Form for withdrawal of consent for the use of personal data.
If you believe that your data protection rights have been violated, you have the right to file a complaint with the Personal Data Protection Commission.
To ask questions regarding your rights or if you want to exercise any of them, please contact us at the contacts specified in this Policy: privacy@thracian-hoteliers.com or at the address: Sofia 1404, ul. 27 Okolovrasten pat.
Contact us
If you have any questions about the processing of your personal data by us, you can contact us by email at privacy@thracian-hoteliers.com or by post at 27 Okolovrasten pat Str., Sofia 1404.
Data Protection Officer: Dimka Krasteva