Privacy

Information on Personal Data Processing Confidentiality and the protection of personal data are of utmost importance to P.P.U.H Dekom Sp. z o.o. (hereinafter: DEKOM, the Company), which operates Hotel DAL in Kielce. We want every person whose data we process to know that we apply appropriate data protection measures. Therefore, in connection with the implementation of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons concerning the processing of personal data and the free movement of such data (General Data Protection Regulation or GDPR), the Company has, among other things:
  • Appointed a Data Protection Officer (DPO) in accordance with Article 37 of the GDPR, who oversees compliance with data protection regulations.
  • Implemented documentation on data protection under Article 24(1) and (2) of the GDPR, including a Data Protection Policy and procedures for managing the IT system.
  • Applied data security measures mentioned in Article 5(1)(f) of the GDPR.
The purpose of these measures is to ensure the proper protection of personal data processed by DEKOM as the data controller, relating to Guests, Clients, Contractors, Employees, Collaborators, and other individuals communicating with the Company. Personal data is processed in connection with:
  • Providing hotel, catering, and cultural or entertainment services.
  • Renting premises.
  • Conducting recruitment processes.
  • Concluding, performing, and monitoring contracts with contractors.
  • Direct marketing of the Company's services.
  • Managing the Company's social media profiles on Facebook and Instagram.
  • Correspondence management.
  • Utilizing video surveillance systems to protect individuals and property.
Collected personal data is stored exclusively within the European Economic Area (EEA). If it becomes necessary to transfer personal data outside the EEA, Standard Contractual Clauses or the Privacy Shield will be applied as safeguards in relation to countries where the European Commission has not determined an adequate level of data protection. DEKOM processes personal data only for the period specified by law or as long as necessary to achieve the processing purpose. Each individual whose data is processed has the right to:
  • Access their personal data and receive a copy of the data being processed.
  • Rectify inaccurate data.
  • Request the erasure of data ("right to be forgotten") under the conditions specified in Article 17 of the GDPR.
  • Request restriction of data processing in the cases specified in Article 18 of the GDPR.
  • Object to the processing of data in the cases specified in Article 21 of the GDPR.
  • Transfer their data, where processed in an automated manner.
Anyone who believes that their personal data is being processed unlawfully has the right to lodge a complaint with the supervisory authority (Office for Personal Data Protection, ul. Stawki 2, Warsaw, Poland). If you need additional information about data protection or wish to exercise your rights, please contact our Data Protection Officer via email: Łukasz Onysyk, email address: iod@auraco.pl.