Privacy Policy
Hotel Sotavento, located at Blvd. Kukulcan SM31, km 4 Pescador Street, Lot D-8-3, is responsible for the collection and use of your personal data, its use, and its protection.
In compliance with the provisions of Articles 8, 15, 16, and 36 of the FEDERAL LAW ON THE PROTECTION OF PERSONAL DATA HELD BY PRIVATE PARTIES (LFPDPPP).
The objective
is to ensure the appropriate, controlled, and legally compliant use of the personal data handled for the processes of the Hotel Sotavento Administrative System.
Your information is required for the hotel's internal processes. Among the means of obtaining it are registration forms, telephone reservations, quotes, agreements, satisfaction surveys, your comments, complaints, and/or suggestions.
The personal data requested is:
• Full name (First name, last name, and mother's name).
• Guest's signature
• Home and cell phone number.
• Credit or debit card information
• Email address.
• Origin.
• Tax Identification Number (RFC)
This information will be used for the following purposes:
• Security during the guest's stay.
• Making reservations
• Tax receipts.
• Sending promotional information about the company
To generate a customer database;
• Improving the control and execution of subsequent service processes.
Security and protection of your personal data
El Sotavento goal is to ensure that any personal and/or sensitive data collected pursuant to this Privacy Notice can be used for the proper operation and purposes of the Hotel and for any government authorities that may require it. The foregoing is so that they may be used for administrative, marketing, sales, statistical, and other purposes that may be of interest and/or benefit to the Data Subject.
Hotel Sotavento is responsible for safeguarding personal data, and will take the necessary measures to prevent the loss and/or theft of information stored in physical and digital files.
We undertake not to transfer your personal information to third parties without your consent, except for the exceptions provided for in Article 37 of the Federal Data Protection Law.
Personal Data Held by Private Parties, as well as to carry out this transfer under the terms established by that law.
Exceptions to Article 37:
1. When the transfer is provided for in a law or treaty to which Mexico is a party;
2. When the transfer is necessary for medical prevention or diagnosis, the provision of healthcare, medical treatment, or the management of healthcare services;
3. When the transfer is made to controlling companies, subsidiaries, or affiliates under common control with the controller, or to a parent company or any company in the same group as the controller that operates under the same internal processes and policies;
4. When the transfer is necessary by virtue of a contract entered into or to be entered into in the interest of the owner by the controller and a third party;
5. When the transfer is necessary or legally required to safeguard a public interest, or for the prosecution or administration of justice;
6. When the transfer is necessary for the recognition, exercise, or defense of a right in a judicial proceeding, and
7. When the transfer is necessary for the maintenance or fulfillment of a legal relationship between the controller and the data subject.
Means to exercise ARCO rights.
You have the right to: (i) access your personal data in our possession and know the details of how it is processed, (ii) rectify it if it is inaccurate or incomplete, (iii) delete it when you consider that it is no longer required for any of the purposes indicated in this privacy notice, it is being used for purposes not consented to, or the contractual or service relationship has ended, or (iv) object to the processing of your data for specific purposes, as provided by law (collectively, the "ARCO Rights").
To exercise your ARCO Rights, you must submit a request (the "ARCO Request") to the Data Controller, to the Privacy Officer, at the Contact Address, accompanied by the following information and documentation:
1. Your name, address, and email address so we can communicate the response to your ARCO Request;
2. A copy of the documents that prove your identity (copy of your Personal Identification Number (FIN), passport, or any other official identification) or, where applicable, documents that prove your legal representation, the original of which must be presented in order to receive the Data Controller's response;
3. A clear and precise description of the personal data regarding which you seek to exercise any of your ARCO Rights;
4. Any document or information that facilitates the location of your personal data; and
5. If you request a rectification of your personal data, you must also indicate the changes to be made and provide the documentation that supports your request.
ARCO Rights
The rights of access, rectification, erasure, and objection to personal data.
You have the right to access, rectify, and erase your personal data, as well as to object to its processing or revoke the consent you have given us for this purpose, through the procedures established by the Federal Law on the Protection of Personal Data Held by Private Parties.
If you believe that your right to personal data protection has been violated by any conduct by Hotel Sotavento, you may file a complaint or claim with the IFAI. For more information, visit www.ifai.org.mx.
For any questions, clarifications, and/or data correction, please contact us at 01 (998) 8494722 or at the email address reservacionesotavento@gmail.com