Last updated: May 24th, 2018
This policy describes how Hotels AB LLC (“AB Properties”,
uses and discloses your personal information when you contact us,
use our services or interact with our websites,
such as www.andrebalazsproperties.com, www.chilternfirehouse.com, www.chateaumarmont.com, www.mercerhotel.com,
(together the "websites").
The term “personal information” as used in this policy shall mean any information that enables us to identify you, directly or indirectly, by reference to an identifier such as your name, identification number, location data, online identifier or one or more factors specific to you.
Hotels AB LLC is made up of different legal entities. This policy is issued on behalf of the group so when we mention “AB Properties”, "we", "us" or "our" in this policy, we are referring to the relevant company in our group responsible for your information. We will let you know which entity will be the controller for your information when you provide your information. Hotels AB LLC with an address at 56 Blandford Street, London, W1U 7JD is the controller and responsible for this website.
Your privacy is important to us and we promise to respect your personal information. Information is collected lawfully and in accordance with the applicable data protection legislation including (without limitation) the General Data Protection Regulation 2016 (the “GDPR”) and we will do our best to ensure that your details are accurate and up-to-date.
Information We Collect About You
We collect the following personal information that you choose to provide voluntarily when using our websites, when you make a call to us, when you correspond with us by e-mail or otherwise, and when you use our services:
Identity information, including first name, last name, marital status, title, date of birth and gender;
Reservation information, including guest information, such as your first and last name, email address, billing and payment information and details of your use of our services;
Profile information, including purchases or orders made by you, your interests, preferences, feedback and survey responses; and
Financial and transaction data, including bank account and payment card details and information about payments from you and other details of products and services you have purchased from us.
We may also automatically collect some limited technical information including information on your IP address, browser type and version, time zone setting, operating system and platform, page interaction information, and any phone numbers or email addresses used to correspond with us.
How We Use Your Information
We use personal information about you only where we have a legal ground for doing so under applicable data protection law. The legal ground will depend on the purpose for which we process your personal information. This means we collect and use your Personal Information only where:
We need it to provide our services under an agreement to which you are a party, or in order to take steps at your request prior to entering into an agreement;
It satisfies a legitimate interest (which is not overridden by your rights and interests), such as developing our relationship with you, to market and promote our services and to protect our legal rights and interests;
You give us consent to do so for a specific purpose; or
We need to process your personal information to comply with a legal obligation.
We will use your personal information so that we can provide you with a first class service, and in particular to:
Complete and fulfil your reservation and stay, for example: to confirm your hotel reservations, process your payment, send you emails that relate to your hotel stay, provide related customer services and assist with special requests or celebrations
Respond to your customer service inquiries or requests
To confirm, update and improve customer records
Identify and inform you of services that may be of interest
Analyze and develop a relationship with you
Conduct other marketing and commercial activities
How We Share Information With Others
We work closely with a number of trusted partners with whom we need to share personal information to help us provide our services. These include:
Our group companies
Banks and payment providers, to authorise and complete payments
Service provides who work with us to help provide our services, including data storage, maintenance services, security, hospitality providers, and marketing agencies
Companies to whom we transfer or may transfer our rights and duties under our agreement with you
We will only transfer your personal information to trusted third parties who provide sufficient guarantees in respect of the technical and organisational security measures governing the processing to be carried out and who can demonstrate a commitment to compliance with those measures.
We may also disclose your personal information to third parties:
in the event that we sell or buy any business or assets, in which case we will disclose your personal information to the prospective seller or buyer of such business or assets;
if AB Properties or substantially all of its assets are acquired by a third party, in which case personal information held by it about its customers will be one of the transferred assets; or
if we are under a duty to disclose or share your personal information in order to comply with any legal obligation, any request from law enforcement or governmental organisations, or in order to enforce or apply our terms and other agreements; or to protect the rights, property, or safety of AB Properties, our customers, or others. This includes exchanging information with other companies and organisations for fraud protection and credit risk reduction.
Personal information you supply us with and the information about your use of our services will only be used by us, to tell you by letter, telephone or email about services that may be of interest to you. We will generally ask for your consent to receive marketing communications in line with the applicable law when you first provide your personal information. Your personal information will not be disclosed to any third party for marketing purposes.
Transfers of Your Personal Information
We need to transfer the personal information referred to in this policy within our group and around the world to help operate our business efficiently. Therefore, your information may be transferred outside of the European Economic Area (EEA) and stored, or processed in other countries (including the United States of America), as part of our business operations.
We will always strive to adopt the highest standards of privacy protection, wherever your personal information is located, and adopt appropriate measures to secure an adequate level of privacy protection. Where personal information is transferred from the EEA to a country that has not received an adequacy decision by the European Commission, we rely on appropriate safeguards, such as the European Commission-approved Standard Contractual Clauses and EU-U.S. and Swiss-U.S. Privacy Shield Frameworks, to transfer your information.
If you want further information on the specific mechanism used by us when transferring your personal information out of the EEA,
please email us at email@example.com
Retaining Your Personal Information
We keep records for as long as required to manage hotel bookings and provide the other relevant services anticipated by this policy. Where your information is no longer required, we will ensure it is disposed of in a safe manner.
Your Privacy Rights
Under certain circumstances, you have rights under data protection laws in relation to the personal information we hold about you – specifically:
Request access to your personal information. You may have the right to request access to any personal information we hold about you as well as related information, including the purposes for processing the personal information, the recipients or categories of recipients with whom the personal information has been shared, where possible, the period for which the personal information will be stored, the source of the personal information, and the existence of any automated decision making.
Request correction of your personal information. You may have the right to obtain without undue delay the rectification of any inaccurate personal information we hold about you.
Request erasure of your personal information. You may have the right to request that personal information held about you be deleted.
Request restriction of processing your personal information. You may have the right to prevent or restrict processing of your personal information.
Request transfer of your personal information. You may have the right to request transfer of your personal information directly to a third party where this is technically feasible.
Also, where you believe that we have not complied with our obligations under this policy or European data protection law, you have the right to make a complaint to an EU Data Protection Authority, such as the UK Information Commissioner’s Office.
You will not have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal information (or to exercise any of your other rights). This is a security measure to ensure that personal information is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Changes To This Policy
Any changes we may make to this policy in the future will be posted on this page and, where appropriate, notified to you by email. Please check back frequently to see any updates of changes.
We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal information to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal information on our instructions and they are subject to a duty of confidentiality. We have put in place procedures to deal with any suspected personal information breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
How Can You Contact Us
If you have any questions or concerns regarding this policy, please contact us at: