As part of its activities, BOOKING BETTER (hereinafter "the Service Provider") collects and processes the personal data of natural persons (hereinafter the "Person(s) Concerned").
A personal data is defined as any information relating to an identified or identifiable natural person.
The Service Provider reserves the right to make any changes to this Policy.
The Service Provider is the Controller of the personal data it collects and processes. It determines the modalities and purposes of processing these data.
BOOKING BETTER is a simplified joint-stock company registered in the Strasbourg Trade and Companies Register under number 899 368 971, with its registered office at 5 rue de la Wantzenau, 67116 Reichstett, in the person of its chairman, Mr. Jean-François MAES.
The Persons Concerned may contact her at the following coordinates:
Tel. +33 (0)3 67 10 42 54
The Service Provider complies with the applicable regulations on the protection of personal data, issued by Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, on the protection of individuals with regard to the processing of personal data and the free movement of such data, and on Law No. 78-17 of 6 January 1978 on data processing, files and freedoms.
It therefore ensures that the personal data of the Data Subjects are:
treated lawfully, fairly and transparently;
collected for specific, explicit and legitimate purposes;
relevant and limited to what is necessary for the purposes for which they are processed;
as far as possible accurate and up-to-date;
stored securely and only for as long as necessary for the intended purposes.
stored securely and only for as long as necessary for the intended purposes.
To ensure that the Service Provider has up-to-date information, the Persons Concerned may inform it of any change in their contact details or any other data, by contacting him at the contact details indicated in Article 1 and enclosing a copy of a proof of identity.
PERSONAL DATA COLLECTED AND PROCESSED
The Service Provider collects and processes personal data as part of the implementation of its services, when the Data Subjects contact it, subscribe to its services, browse its website accessible at https://www.booking-better.com/ (hereinafter the “Website”) and create an account on this site.
These personal data mainly concern:
identification data (surname, first name)
contact details (email address, phone number, country of residence)
This data is processed in particular when the Data Subjects contact the Service Provider directly, in particular through the contact form available at https://www.booking-better.com/en/contact or create an account on its site, and book accommodation via the Website.
connection data: this information is processed when the Persons concerned browse the Website.
The Service Provider processes more generally any personal data that is transmitted to it and is necessary for the performance of its services or the pursuit of its legitimate interests.
PURPOSES OF THE PERSONAL DATA PROCESSED
The Service Provider processes the data necessary to pursue the following purposes:
provide any information regarding the services it offers;
create accounts on its website at the request of clients or hosting professionals;
provide the services subscribed by the clients and the hosting professionals;
connect customers and hosting professionals;
billing for its services;
provide assistance to clients and hosting professionals and more generally meet their needs;
process requests sent via the contact form on the Website;
conduct commercial actions and satisfaction surveys;
send to interested persons newsletters on the products and services offered by the Service Provider and by hosting professionals;
manage the Website and ensure that its presentation and that of its contents is optimal for visitors;
establish statistics on the use of its services, in order to provide Data Subjects with content adapted to their needs and to improve its services;
manage and respond to requests for the exercise of rights in the processing of personal data;
meet its legal and regulatory obligations.
Processing of personal data is carried out in accordance with the following legal bases:
the consent of the Persons Concerned;
the performance of the services ordered by the clients (contractual basis),
the pursuit of the Service Provider’s legitimate interests, while respecting the rights of the Data Subjects.
RECIPIENTS AND SUBCONTRACTORS
The personal data of the customers are transmitted to the professional hosting companies during a booking made via the Service Provider’s website. The hosting professionals then process this data for their own account and are considered responsible for the processing of the data whose purposes and means they determine. Hosting professionals collect and process personal data for the purposes of managing bookings and customers, for billing and payment purposes, and possibly for conducting business actions and satisfaction surveys. The Service Provider assumes no responsibility for the processing of personal data by professional hosting providers.
Personal data shall also be transmitted, to the extent necessary, (i) to any person acting on behalf of the Service Provider and (ii) to its own service providers, in particular its IT service provider and its public accountant. These persons are subject to an obligation of confidentiality prohibiting them from transferring the data to third parties or using it for purposes other than those for which it was transmitted to them.
If necessary, this data will be shared with the competent authorities or jurisdictions, particularly so that the Service Provider can meet its legal and regulatory obligations. In this case, it will take all useful measures to inform the Persons Concerned beforehand, unless the regulations prohibit it.
Apart from these specific cases, personal data is not transmitted to third parties, whether for free or for a fee.
SECURITY OF PERSONAL DATA
The Service Provider implements appropriate organisational, technical and software measures in terms of physical and IT security to protect personal data against accidental or unlawful loss, unauthorized access, disclosure or alteration.
The Service Provider uses encryption to protect personal data transmitted online. It also protects offline data.
Access to personal data is restricted and computers and servers used to store data are stored in a secure environment and hosted by OVH FRANCE.
DATA RETENTION PERIOD
The personal data processed by the Service Provider is kept for the period strictly necessary to achieve the purposes for which it is collected.
The Service Provider shall keep the personal data of customers who have created an account on the Website until the account is deactivated or for one year from the moment the account becomes inactive.
The Service Provider shall keep the personal data of the contact person of the professional hosting provider until the account of this professional is deactivated.
RIGHTS OF PERSONS CONCERNED
The Data Subjects are informed that they have, under the conditions laid down by law, the rights listed in the table below.
They may exercise these rights, free of charge, with the Service Provider by contacting the Service Provider at the contact details indicated in Article 1 and by enclosing with their request a copy of a proof of identity.
right of access
The Data Subjects have the right to obtain from the Service Provider confirmation that their personal data are or are not processed and, where they are, access to said data, as well as information relating to the purposes of the processing.
Manifestly unfounded, excessive or repeated requests are likely to go unanswered.
right to rectification
The Data Subjects have the right to obtain from the Service Provider, as soon as possible, the rectification of their personal data that they deem inaccurate or more up to date.
right to be forgotten
The Data Subjects have the right to obtain from the Service Provider the erasure of their personal data, when:
- (i) such data are no longer necessary for the purposes for which they were collected or processed;
- (ii) they decide to withdraw their consent (where treatment is based on consent);
- (iii) they object to the processing of their personal data using automated processes using technical specifications;
- (iv) their personal data has been illegally processed;
- (v) their personal data must be deleted to comply with a legal obligation;
- (vi) such erasure is mandatory to ensure compliance with applicable legislation.
RIGHT TO LIMITATION OF TREATMENT
Data Subjects may obtain from the Service Provider a limitation on the processing of their personal data when:
- (i) they dispute the accuracy of their personal data;
- (ii) the Service Provider no longer needs their personal data for the purposes of processing;
- (iii) they objected to the processing for legitimate reasons.
right to withdraw the consent
Data Subjects have the right to withdraw their consent to the processing of their data if it is based on consent. The withdrawal of this consent does not affect the lawfulness of the processing based on the consent made before the withdrawal of it.
RIGHT TO DATA PORTABILITY
The Data Subjects have the right to receive the personal data concerning them that they have provided to the Service Provider, in a structured format, commonly used and machine readable, when:
- the processing is based on their consent or on an existing contractual relationship; and
- the processing is done using automated processes.
Data Subjects also have the right to have their personal data transmitted directly to a third party of their choice (where technically possible).
RIGHT TO OBJECT TO PROCESSING IN THE CONTEXT OF DIRECT PROSPECTING
Data Subjects have the right to object to the processing of their personal data, in particular to profiling or commercial communications.
RIGHT NOT TO BE SUBJECT TO AUTOMATED DECISIONS
The Data Subjects have the right not to be the subject of a decision based exclusively on automated processing, including profiling, producing legal effects affecting them or significantly affecting them.
RIGHT TO ISSUE DIRECTIVES
ANTICIPATIONS ON THE PROCESSING OF PERSONAL DATA AFTER THEIR DEATH
In application of Law No. 78-17 of 6 January 1978, the Data Subjects may define directives relating to the retention, erasure and disclosure of their personal data after their death or designate a person responsible for the exercise of these rights.
RIGHT TO LODGE A COMPLAINT WITH THE COMPETENT SUPERVISORY AUTHORITY
Without prejudice to any other administrative or judicial remedy, the Data Subjects have the right to lodge a complaint with the CNIL, if they consider that the processing of their personal data constitutes a violation of the applicable regulations.
CNIL - 3 Place de Fontenoy, 75007 Paris - http://www.cnil.fr
Last updated on 21.03.2023