Privacy Policy

GDPR information for you, our guests

We guess you’ve already heard a lot about GDPR.
We want to explain in a simple way what it means for you who are guests with us
From 25 May 2018, the new Data Protection Regulation (GDPR) applies. GDPR replaces the existing Personal Data Act (PUL) and applies to all EU countries.
Your personal information will be deleted within 6 months from our booking system.
It is important to distinguish between ordinary and sensitive personal data. Sensitive information is e.g. ethnic origin, political opinions, religious or philosophical beliefs, trade union membership and personal data relating to health or sexual preferences. We will never collect and collect data on sensitive information, however, there are free fields in the booking engine and guest surveys that can still enter our database. This information will only be available to us if you as a guest choose to fill in this information in our surveys, otherwise we do not actively store it.
Here’s how it works:
We urge all holders and users of our booking systems in the service not to insert notes of a sensitive nature into our systems. As a guest, you always have the right to receive a copy of all information stored about you, including that stored in a free text field in the customer register.
Here’s how it works:
You who have made a booking with us have the right to receive information about what personal data has been stored about you.
Email your request to info@slottshotellet.se
Here’s how it works:
You can email us with information that we will delete your information.
Email your request to info@slottshotellet.se

  1. General

  2. Description

    GDPR has been developed to protect you as a customer and your rights regarding the handling and dissemination of your personal data. The idea is that you as our guest should feel secure that your registered information is not used improperly. The current Swedish PUL is actually the basis for the GDPR and most of the PUL is found in the GDPR.

  3. What is a personal information?

    A personal data is such data that in some way identifies you as a person. That is, name, address, telephone, email, etc. Non-personal information about bookings, sales and activities is not included as this is counted as trade secrets and in many cases is covered by accounting rules and accounting obligations.

  4. How do we store your Personal Information?

    Our booking systems handle relatively large amounts of personal data.

  1. What happens in a Personal Data Incident?

    If we have a data breach or if an unintentional loss of personal data occurs, the person responsible for personal data will document the incident and report it to the Data Inspectorate and affected customers within 72 hours.

  2. What is a Registry Extract?

    If you have booked a stay, spa or restaurant visit, you have the right to see the information stored about you in our booking systems.

  1. Can you delete me from your systems?

    Yes, you just let us know.

  1. How does the GDPR work in practice?

    We ensure that the necessary functions for us are available in our booking system no later than 25 May 2018 so that we can handle all GDPR inquiries and requests from you.