PRIVACY POLICY

Heritage Hotel Lucia is committed to protecting and respecting your privacy. This policy sets out the basis on which any personal data we collect from you, or that you provide to us, directly or indirectly, is used.

For the purposes of the European Union (EU) data protection law called the General Data Protection Regulation (GDPR) the data controller is Dante Hospitality d.o.o., Branitelja Dubrovnika 12, 20000 Dubrovnik.

Registered office: Dante Hospitality d.o.o., Branitelja Dubrovnika 12, 20000 Dubrovnik, Croatia

Company registered number: 04200179
Operating address: Heritage Hotel Lucia, Branitelja Dubrovnika 12, 20000 Dubrovnik, Croatia.

Our regulator is AZOP, Croatian Personal Data Protection Agency, Fra Grge Martica 14, HR-10000 Zagreb, Croatia.
Tel: +385 1460 9000
Fax: +385 1460 9099
E-mail: azop@azop.hr
Website: http://www.azop.hr

Personal data is collected solely to facilitate the provision of our services to potential guests and guests of Heritage Hotel Lucia and to satisfy our obligations under applicable Croatian laws and regulations.

We process personal data based on one or more of the following legal bases in accordance with Article 6 of the General Data Protection Regulation (GDPR):

• performance of a contract (processing reservations and providing accommodation services)
• compliance with legal obligations (for example reporting guest data through the Croatian eVisitor system)
• legitimate interests in operating and improving our services
• consent (for example when you agree to receive marketing communications).

We collect personal information from visitors to our websites through enquiry and booking forms and every time you email us your details.

Through the use of cookies and analytics tools we may automatically collect certain technical information such as IP address, browser type, device type, pages visited and the date and time of your visit. This information may be used for statistical purposes and to improve website performance and user experience.

You are able to refuse non-essential cookies by withholding consent through the cookie banner or by adjusting the settings of your browser. You may also delete cookies at any time.

Personal information about you may also be supplied to us by third parties such as travel agents or travel websites that make enquiries or bookings on your behalf. You should make yourself aware of their privacy policies, over which we have no control.

Online reservations made through our website may be processed through third‑party booking software providers including Web Booking Pro or other reservation management systems used to manage reservations and availability.

In certain cases, reservations may require advance payment or a deposit as a guarantee of the booking. This may include non‑refundable reservations or reservations requiring a partial prepayment. In such cases, guests may receive a secure online payment link from an authorised payment service provider in order to complete the payment. Payment data is processed securely by the payment provider in accordance with their own privacy and security policies. Heritage Hotel Lucia does not store full credit card details when payments are processed through external payment service providers.

We do not gather or store sensitive personal data about you, such as racial or ethnic origin, political opinions, health or sexual orientation. We may store information about dietary or religious preferences only if provided voluntarily and only for the purpose of fulfilling guest service requests.

The personal information that you provide to us will not be used for marketing purposes except with your express permission. E-mail communications are stored on our secure server.

We may provide limited amounts of personal information, such as your name and telephone number, to service providers who assist us in delivering services you have requested (for example transport providers, restaurants, wineries or excursion partners).

We are required by law to provide certain personal information about arriving guests, including information contained in passports and identity cards, to the Police and the Croatian Tourist Board through the eVisitor system.

We are required by law to retain electronic copies of this information for two years, after which time it is erased.

Accounting regulations require us to retain certain accounting records for ten years. This information includes the names of our guests but does not include contact details, bank account details or credit card details.

Electronic copies of personal information are stored on secure password‑protected systems. Access to this information is restricted to authorised staff including reception, reservations and management.

We implement appropriate technical and organisational security measures designed to protect personal data against unauthorised access, alteration, disclosure or destruction.

Under the GDPR you have the right to access your personal data, request correction, request deletion where legally permitted, restrict or object to processing, request data portability where applicable and lodge a complaint with the Croatian Personal Data Protection Agency (AZOP).

If you would like to access, correct or delete your personal information, please contact us at:
info@heritagehotellucia.com