1. SCOPE OF POLICY
1.1 This policy together with the General Terms of Service apply to your use of our website at bidroom.com (the "Site")
1.2 This policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed and used by us.
We are the data controller responsible for your personal data.
1.4 Data Protection Officer
We have appointed a data protection officer ("DPO"). Our DPO has a number of important responsibilities including:
- • monitoring Bidroom's compliance with the GDPR and other data protection laws;
- • raising awareness of data protection issues, training Bidroom staff and conducting internal audits;
If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact us at firstname.lastname@example.org or our DPO at DPO@bidroom.com
You have the right to make a complaint at any time to applying authorities for data protection issues. We would, however, appreciate the chance to deal with your concerns before you approach third parties so please contact us in the first instance.
1.6 How we handle your personal data
- • We always keep your data safe and private.
- • We never sell your data.
- • We allow you to manage and review your marketing choices at any time.
3. INFORMATION WE COLLECT ABOUT YOU
When you register at Bidroom page for VISA cardholders, we ask you to fill in your name, email address and create a Bidroom password.
Once you are registered, we allow you to edit the above information. These are the only personal details of yours that we store.
3.1 We will collect and process the following data about you (Submitted information). This information is submitted by you in process of registration and activation of your Bidroom membership:
- • User IP address
- • Name
- • Password that you select
3.2 External, secured services are responsible for storing your credit card details (Stripe)
- • credit card (in stripe)
3.3 We collect this information:
- • During registration process
- • During activation process
- • During search process
- • During booking process
4. USES MADE OF THE INFORMATION
Use of information
The most important way we use your contact information is to complete your hotel booking. In addition to this, we use your information to provide you confirmation and updates about your booking; to manage your personal account; to send you notifications and newsletters; to notify you of special promotions and/or individual deals; to provide customer support; to ask you to review the hotels you have stayed at; to improve our own services by asking you to take part in market research or give us feedback; and to communicate with you in general.
As a standard, we do not sell your private information and we do not share your personal details with third parties other than the hotels you are booking with. We share your personal information with hotels when you make a booking on our website in order for them to contact you and process your booking.
With your consent we may also share your information with third party vendors, service providers and business partners. Please note that we reserve the right to disclose your information in the case of law, regulation or fraud matters to the required authorities.
During booking process, you are required to provide credit card details in order to guarantee your booking. Only accommodation provider can access your credit card details, which are securely stored in an encrypted system solution provided by PayPal.
4.1 Below is a summary of the key types of data that we make use of as part of the Bidroom service.
- • User IP address
- • Name
- • Phone number
- • Password
- • credit card (Stripe)
4.2 The above data is used to allow you to use your membership and search for accommodation that you book.
4.3 We pass your information only to hotels / accommodation properties during process of reservation. In the reservation process the following data is given to hotels / accommodation properties:
- • Name
- • Credit card details for booking guarantee (stored in independent, secured servers)
4.4 The above information is passed to hotels / accommodation properties to allow the booking / reservation process.
5. PROMOTIONAL OFFERS FROM US
5.1 We may use your personal data (such as your Submitted Information or Location Information)t o form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which services, destinations or offers may be relevant for you.
5.2 You will receive marketing communications from us if you have signed up to and/or utilise the Bidroom membership and, in each case, you have not opted out of receiving marketing notifications.
5.5 We will obtain your express opt-in consent before we share your personal data with any company outside Bidroom for marketing or promotional purposes.
6. OPTING OUT
You can ask us or third parties to stop sending you marketing messages at any time by adjusting your marketing preferences via 'Privacy' section found within the 'Profile' tab of the App or by following the unsubscribe links on any marketing message sent to you.
7. DATA PROCESSING PARTNERS
7.1 We will disclose the data we collect from you to certain third parties who use personal data in delivering their services to us, they use data securely and confidentially and under strict contractual controls in accordance with data protection laws and enforced by Bidroom.
7.2 We send personal data to the following sets of data processors in order to perform booking / reservation processes on Bidroom:
- • Stripe: secured service to process credit cards
- • Channel managers: services responsible for sending bookings / reservations between Bidroom and particular hotels / accommodation providers
7.3 Your consent is needed to perform booking / reservation process using Bidroom membership
8. STORAGE SECURITY & INTERNATIONAL TRANSFERS
8.2 All information you provide to us is stored on our secure servers. Any payment transactions carried out during booking / reservation process, will be encrypted using Secured Sockets Layer technology or a secure virtual private network.
9. YOUR LEGAL RIGHTS
You need to be 18 years and older to use Bidroom.
The use of our services by children under the age of 18 years is not allowed without valid consent from a parent or guardian. Should we receive personal information from a minor without parental consent, we reserve the right to delete it.
You have rights under data protection laws in relation to your personal data. Please see below to find out more about these rights:
You have the right to:
9.1. Request access to your personal data (commonly known as a "data subject access request"). This enables you to receive a copy of the personal data we hold about you. If you require this, then please reach out to us via: DPO@bidroom.com
9.2. Request correction of the personal data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us. If you require this, then please reach out to us via: DPO@bidroom.com
9.3. Request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your personal data to comply with local law.
Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
9.4. Request the transfer of your personal data to you or to a third party. We will provide to you, your personal data in a structured, commonly used, machine-readable format, which you can then transfer to an applicable third party. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you. If you require this, then please reach out to us via: DPO@bidroom.com
9.5 Withdraw consent at any time where we are relying on consent to process your personal data. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide the Bidroom services and membership to you. We will advise you if this is the case at the time you withdraw your consent.
9.6 What we may need from you?
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
9.7 Time limit to respond
We try to respond to all legitimate requests within two weeks. Occasionally it may take us longer if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
9.8 What if you fail to provide personal data
Where we need to collect personal data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (Bidroom membership). In this case, we may have to cancel your use of Bidroom but we will notify you if this is the case at the time.