UAB “Regina Tourism Service“ AND ITS CONTROLLED WEBSITE WWW.VILNIUS.IVOLITA.LT

PRIVACY POLICY

  1. GENERAL PROVISIONS
    1. VILNIUS.IVOLITA.LT is an electronic website controlled by legal entity UAB “Regina Tourism Service“, company code: 303038564, address: Gėlių g. 5, LT-01137 Vilnius (hereinafter UAB “Regina Tourism Service“ – the Company).
    2. The Company’s Privacy Policy (hereinafter – Privacy Policy) is applicable to personal data of individual persons (hereinafter – Data subjects) processed by the Company.
    3. The goal of the Privacy Policy is to ensure the execution of legal personal data protection applicable in the Republic of Lithuania.
    4. The Privacy Policy sets out the purposes and principles of the processing of personal data of Data subjects, rights of Data subjects and basic technical and organizational measures to ensure the security of personal data.
    5. The Company values the trust of Data subjects and undertakes to protect the privacy of Data subjects, as well as use the provided information solely for the purposes set out in the present Privacy Policy.
    6. The personal data are processed and used in accordance with the purposes for which the Data subject has provided the data to the Company or for other purposes approved by the Data Subject.
    7. All employees of the Company, data processors employed by the Company or third parties who process personal data managed by the Company or become aware of them in the course of contracts with the Company are aware of and must comply with the Privacy Policy.
    8. Upon provision of his/her personal details to the Company, Data subject confirms and voluntarily agrees to the Company’s management and processing of the Data Subject’s personal data in accordance with this Privacy Policy and applicable legal regulation of personal data protection. The Privacy Policy is available at any time at VILNIUS.IVOLITA.LT electronic website. In case of any questions, please call us by +370 5264 8835 or write an email to reservation@ivolita.lt.
    9. Data subjects will always be informed of any future amendments and / or supplements to the Privacy Policy by publishing the new edition of Privacy Policy at VILNIUS.IVOLITA.LT website.
  1. PERSONAL DATA COLLECTED BY THE COMPANY
    10. The Company only collects data from the Data Subject which he/she voluntarily provides when visiting and using the website VILNIUS.IVOLITA.LT and booking Company’s services by using electronic means of communication, arriving to the hotel directly or via Company’s partners, as well as agreeing with the use of his/her personal data necessary to provide Company’s services and/or for the purposes of direct marketing.
    11. Information collected by the Company: name, surname, address, email address, phone number, personal code, image, payment card details and bank details of Data subject and (or) the person representing the Data subject. After having provided his/her personal data to the Company, the Data subject may at any time:
    a. correct and/or supplement the personal data provided to the Company. The Data subject is liable for the fairness of corrected and/or supplemented data;
    b. apply to the Company by email address reservation@ivolita.lt regarding the destruction and/or amendment of data provided to the Company.

III. DATA SUBJECTS’ PERSONAL DATA PROCESSING PURPOSES

  1. The Company processes personal data only for the purposes set out in this Policy and for the sole purpose of fulfilling the following tasks:
    a. For Data subject identification to provide Company’s services booked by Data subject. In such case, the data are used to administer the services provided, to inform about services or change of their provision terms, to maintain financial accounting and for other reasons related to the provision of services;
    b. For Data subject identification in Company’s customer management programs and database of Company’s website VILNIUS.IVOLITA.LT;
    c. To protect the Company’s property;
    d. For direct marketing purposes after having obtained a separate consent of Data subject;
    e. To perform the duties of the Company prescribed in legislation;
    f. For audit.
  1. DATA SUBJECTS’ PERSONAL DATA PROCESSING PRINCIPLES
    13. The Company processes the personal data of the Data subjects in accordance with these principles:
    a. Personal data are processed in a lawful, fair and transparent manner (principle of lawfulness, fairness and transparency);
    b. Personal data are collected for specified, explicit and legitimate purposes and not further processed in a way incompatible with those purposes (purpose limitation principle);
    c. Personal data are limited to what is necessary for the purposes for which they are processed (data minimization principle);
    d. Personal data is accurate and kept up to date, where necessary (accuracy principle);
    e. Personal data are kept in a form that permits identification for no longer than is necessary for the purposes for which the personal data are processed (storage limitation principle);
    f. Personal data are processed to ensure adequate security of personal data, including the protection against unauthorized or unlawful processing of personal data and against accidental loss, destruction or damage by appropriate technical or organizational measures (integrity and confidentiality principle).
  2. RIGHTS OF DATA SUBJECTS AND THEIR IMPLEMENTATION PROCEDURE
    14. When the Company processes the personal data of the Data subjects, they have the following rights:
    a. To obtain information on the personal data of the Data subject processed by the Company, where and by whom the personal data are collected and on what basis they are processed;
    b. To apply to the Company for rectification of personal data if they are incorrect, incomplete or inaccurate;
    c. To require deletion of the Data Subject’s personal data processed by the Company (“right to be forgotten“, except to the extent necessary to process the data in the course of the Company’s legal duties, as well as in other cases provided by legislation);
    d. To require restriction on the processing of personal data of the Data Subject;
    e. Do not consent to the processing of personal data of the Data subject (except to the extent necessary to process the data in the course of the Company’s legal duties, as well as in other cases provided by legislation);
    f. To request that the personal data of the Data subject be transferred to another data controller (right to data portability);
    g. To withdraw the consent (if personal data are processed on the basis of consent);
    h. To lodge a complaint with the supervisory authority.
    15. The Data subjects may apply to the Company with requests (hereinafter – Request) regarding their rights provided in Items a-h of Article 14 of the present Privacy Policy in writing and identify themselves properly (by submitting a copy of the person’s identity document or by other satisfactory means proving his / her identity).
    16. The Company provides a response to Data subject within the shortest possible period, but no later than within 30 (thirty) calendar days after the date of Request receipt. In exceptional cases requiring extra time and if the Company informs the Data subject in writing, it has a right to extend a period of requested data submission to 60 (sixty) calendar days after the date of Request submission. If the Request relates to a Data Subject’s demand to correct, delete, destroy or restrict the processing of his / her personal data, the response is provided and appropriate measures are taken within the shortest possible time, but no later than within 10 (ten) business days after the date of such Request receipt.
    17. The Company may reasonably refuse to satisfy the Request within the above-mentioned terms and specify the legal grounds of such refusal provided in GDPR and other legislation in writing.
  1. ASSURANCE OF PERSONAL DATA SECURITY
    18. The Company processes the personal data of Data subjects only for the purposes provided in the present Privacy Policy and only to the extent necessary to achieve these purposes. The Company stores the personal data of the Data subjects to the extent as such storage is required by law, and to the extent necessary to ensure the legitimate interests of the Company, but no more than 10 (ten) years. Such data are destroyed upon expiry of the storage period.
    19. Authorized persons of the Company may only process the personal data. Each employee of the Company who processes personal data is required to process personal data in strict accordance with GDPR, the law, other legislation and this Privacy Policy, to keep confidential any information relating to personal data which he/she has accessed in the course of his/her duties, unless such information is in the public domain in accordance with applicable legislation or regulations. This obligation remains valid after the expiration of employment relationships.
    20. The Company uses organisational (legal, procedural) and technical (security systems and other physical measures that restrict access to personal data (information systems, databases, workplaces, etc.)) measures to protect the personal data against unauthorized alteration, disclosure or destruction, identity theft or other unlawful manipulation.
    21. Data processors employed by the Company or third parties employed by the Company to provide the ordered services must guarantee the necessary technical and organizational measures for the protection of personal data and ensure that such measures are complied with.

VII. MARKETING AND CORRESPONDENCE
22. When booking and using the Services provided by the Company, the Data subject may voluntarily consent to the use of the personal data provided by the Company for the purposes of the Company’s direct marketing, by providing written consent to the use of such personal data.
23. The Data Subject may also withdraw the consent given to the Company to use its personal data for direct marketing purposes at any time and in the same manner as it was given or in any other manner convenient to the Data Subject.

VIII. VIDEO MONITORING
24. The Company’s premises and its outside areas are monitored to ensure the security of the Company’s and customer’s property.
25. The monitoring is performed 24 hours a day, 7 days a week.
26. Video monitoring equipment are installed so that considering the intended purpose of the video monitoring:
a. the monitoring is made no more than is strictly necessary;
b. no more monitoring data than necessary is collected.
c. the information boards at the entrance to the administrative and accommodation premises of the Company inform about video monitoring.
27. The video is stored for 14 days depending on storage capacity of video recorders and is destroyed (deleted) later.

  1. FINAL PROVISIONS
    28. The Data subject can read the Company’s privacy Policy at VILNIUS.IVOLITA.LT website.
    29. The Company has the right to change its Privacy Policy in whole or in part by informing about it at VILNIUS.IVOLITA.LT website.
    30. Amendments or supplements of Privacy Policy come into force after the date of their publication, i. e., after the date they are placed in VILNIUS.IVOLIA.LT website.

Booking rules

Your booking is confirmed after having paid 50% booking fee (advance payment) from the total amount. “Ivolita Vilnius“ cannot guarantee your booking without advance payment.

Booking cancellation:

You can amend your booking date or cancel the booking without any charge at least 2 days prior to your arrival date. The booking fee is not refundable less than 2 days prior to your arrival date.

Other booking rules:

  • When making a booking, you acknowledge that you have read and agree to „Regina Tourism Service“ UAB privacy policy and booking rules.
  • ADDITIONAL PEOPLE: all children under the age of 3 are accommodated free of charge. If you prefer a cot, we will provide it free of charge, if possible. It is recommended to book a cot in advance, because their quantity is limited. Children up to 16 years old can stay for an extra charge of 18 Euro and adults can stay for an extra charge of 20 Euro if there is a place to stay and an extra bed is available.
  • BREAKFAST is included into price: the breakfast price for additional adult is 7 Euro, for additional child – 5 Euro.
  • ANIMALS: the pets are not allowed in the hotel.
  • PAYMENT: the remaining payment can be made during check-out by cash or bank card.
  • CHECK-IN / CHECK-OUT TIME: check-in after 3:00 PM, check-out before 12:00 PM. In case of late check-out from a room, a half room daily rate may apply. The late check- out is possible for additional charge, if possible and with prior agreement with “Ivolita Vilnius” administration.

Settlement of disputes and disagreements:

  • In case of questions or complaints, apply to Administrator of Ivolita Vilnius (at reception).
  • If an Administrator cannot settle the dispute, apply to manager Yuriy Kulikovsky by email gm@ivolita.lt. The hotel undertakes to settle the dispute and submit a response within 14 days.
  • Disputes regarding improper execution or non-execution of the contract are handled outside the court in accordance with the procedure established by the Law on the Protection of Consumer Rights of the Republic of Lithuania at the State Consumer Rights Protection Office, address: Vilniaus st. 25, 01402 Vilnius, by e-mail tarnyba@vvtat.lt ph. (8 5) 262 67 51, website www.vvtat.lt. Also on the electronic dispute system platform EGS http://ec.europa.eu/odr/