Last update June 2018
We appreciate your interest in our website and in our company (hereafter Asco or we). We highly value your trust in us, and recognize both the significance and the obligation to treat your data with care, and protect that data from misuse or abuse.
We take the protection of your private data very seriously, and strictly adhere to relevant data protection legislation. In particular, as a Data Controller, we have taken all the measurements needed to be complied with the new EU GDPR 2016/679 Regulation (EU) 2016/679 on the protection of natural persons.
Personal data is collected on this website e during the exercise of our services only to the extent necessary.
This privacy statement will inform you how we handle your data.
This policy forms part of the terms and conditions that govern our services.
By accepting these terms and conditions, you expressly accept the provisions of this charter.
The following definitions of terms used in this policy are drawn from Article 4 of the GDPR.
Personal Data: Any information relating to an identified or identifiable natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Data Controller: The natural or legal person, public authority, agency or any other body, which alone or jointly with others, determines the purposes and means of the processing of personal data.
Data Processor: A natural or legal person, public authority, agency or any other body which processes personal data on behalf of a Data Controller.
Processing: An operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction of the data
The seven principles below are applicable in our business:
Personal data is collected, processed, or used by us only when you provide it to us voluntarily or with consent, and where it is within the scope of the law.
Our website collects and stores data and they will not be used to identify visitors to this website and will not be aggregated with other information about the bearer of the pseudonym. You can, at any time, revoke consent to this processing of your data by our website.
As a matter of practice, we will only collect such data as required for the provision of services, for example the answering your questions or the execution of contracts between us. These information will be stored, encrypted on secure servers
At various times, we will be obliged to ask you for information about you such as:
The information collected in relation to persons under 18 years of age can only be supplied to us by an adult.
We do not deliberately collect sensitive information, such as information concerning race, ethnicity, political opinions, religious and philosophical beliefs, union membership, or details of health or sexual orientation.
Personal data may be collected on a variety of occasions, including:
We collect your personal data for the purposes of:
As we work with many partners in many countries (Data Processors), we endeavor to provide you with the same services throughout the world.
Thus, to guarantee that, we have to share your personal data with internal and external recipients subject to the following conditions:
a. in order to offer you the best service, we can share your personal data and give access to authorized personnel, including:
b. With service providers and partners (Data Processors): your personal data may be sent to a third party for the purposes of supplying you with services and improving our service, for example:
For the reasons explained above, our website may contain links to other sites operated by third parties.
We will act to ensure that all of our partners are in compliance with the General Data Protection Regulation (GDPR) but in any ways, we are not responsible for the privacy practices or the content of such third-party web sites.
For the data collection purposes, we may transfer your personal data to internal or external recipients who may be in countries offering different levels of personal data protection.
Consequently, in addition to implementation of this policy, we employ appropriate measures to ensure secure transfer of your personal data to an another entity or to an external recipient located in a country offering a different level of privacy from that proposed in the country where the personal data is collected.
Asco takes appropriate technical and organizational measures, in accordance with applicable legal provisions, to protect your personal data against illicit or accidental destruction, accidental alteration or loss, and unauthorized access or disclosure. To this end, we have taken technical measures and organizational measures.
When you submit credit card data when making a reservation, encryption technology is used to guarantee a secure transaction.
We may modify this policy from time to time. Consequently, we recommend that you consult it regularly, particularly when making further reservation on our website.
© Copy right 2011 ASCO LOTUS. All rights reserved