Privacy Policy
Last updated: October 2021

GENERAL INFORMATION

This policy explains how your personal data is used by GHP LOUVRE (hereinafter “GHP LOUVRE” or “we”), which manages the Madame Rêve hotel (hereinafter the “Hotel”).
This policy applies to the personal data that GHP LOUVRE or the teams of the Hotel are required to collect by telephone, by email, through contact forms, during your stay in the Hotel or during your browsing on the “madamereve.com” website (hereinafter the “Website”).
The processing of your personal data is carried out in accordance with Law no. 78-17 of 6 January 1978 (the “French Data Protection Act”), (EU) Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 (hereinafter the “GDPR”), as well as French and European laws governing the protection of personal data and privacy in electronic communications, in particular Directive 2002/58/EC on the “Protection of privacy in the electronic communications sector”, as interpreted by the French Data Protection Commission (hereinafter the “CNIL”) and by the Court of Justice of the European Union.
If necessary, you can ask any questions by sending an email to contact@madamereve.com or by writing to this address:

GHP Louvre
Hôtel Madame Rêve
Rights over personal data
48 rue du Louvre
75001 Paris, France

ABOUT THE PERSONAL DATA WE COLLECT

Personal data refers to any information that identifies you directly (e.g. your name) or indirectly (e.g. your account ID, IP address or cookie ID).
About the personal data you provide to us
You may be required to provide us with your personal data in the context of:
Requests for information that you can send us via the Website, via email, by telephone or in person.
Bookings for stays in the Hotel can be made via the Website, via email, by telephone or in person.
Bookings for the Hotel’s spa or restaurant can be made via the Website, via email, telephone or in person.
In this context, we may process the following personal data:
Your surname, first name and contact details (postal address, email, telephone number, etc.) to respond to a request for information from you.
Your bank details to make a booking or a payment.
Data relating to customer relationship monitoring (history of stays, requests for information/complaints, exchanges with customer service, etc.).
Some of this data is mandatory, some is optional. The mandatory or optional nature of the personal data to be entered is indicated at the time of collection. If you refuse to provide mandatory data, we will not be able to process your request.
About the personal data we collect through automated means
We use automated technologies such as cookies to collect data from your computer or mobile device (phone or tablet) when you visit our Website.
We use cookies on the Website to collect statistics, detect browsing problems, improve the quality of our interface and provide you with content (including advertisements) tailored to your interests.
In this context, we are likely to collect the following data:
The pages visited;
The identifier of your device and connection (IP address, MAC address), dates and times of connection, information about the browser and operating system used, etc.
For more information, please see our Cookie Management Policy (link to be inserted).

FOR WHAT PURPOSES AND ON WHAT LEGAL BASIS DO WE USE YOUR PERSONAL DATA?

To perform a contract with you or to provide you with pre-contractual information
We use your personal data to:
Respond to messages you send to us and provide you with information about the hotel catering services of the Hotel.
Allow you to book stays in the Hotel.
Manage your stay at the Hotel, provide you with the requested products and services and offer you the best possible experience during your stays at the Hotel.
Proceed with invoicing and possible management of unpaid debts.
Deal with any possible complaints.
To serve our legitimate business interests of promoting our services, developing our business and defending our rights and interests
We use your personal data to:
Improve our products and services, for example, by conducting satisfaction surveys.
When you are a guest of the Hotel, send you our newsletter and promotional messages relating to the Hotel and its services, unless you object.
Combat fraud.
Ensure the security of our network and information systems.
Place cookies necessary for the proper functioning of the Website.
Defend our interests in court.
To respect your choice when we ask for your consent to a specific processing operation
In some cases, your consent is required to process your personal data, for example:
When you are a prospect, to send you our newsletter and promotional messages relating to the Hotel and its services.
To place cookies subject to the collection of consent.
To comply with our legal obligations
We process your personal data in order to comply with our legal obligations, in particular to:
Respond to official requests from public authorities, the judiciary or any third party authorised for this purpose, in accordance with the law, a regulatory provision or a court order.
Comply with the regulations applicable to our activity, for example, by carrying out the necessary formalities for check-in and check-out upon arrival at the Hotel.

WHO CAN ACCESS YOUR PERSONAL DATA?

We do not sell any of your personal data and only share it as set out in this Privacy Policy.
GHP LOUVRE communicates your personal data to the following recipients:
The Hotel and its authorised staff to provide you with the requested service or respond to your request.
Our subcontractors performing services on our behalf (for example, payment service providers, hosting, security and maintenance providers for the Website, etc.).
Public authorities, judicial authorities or any third party authorised for this purpose when such communication is required by law, a regulatory provision or a court decision, or if such communication is necessary to ensure the protection and defence of our rights.
In addition, we may decide to assign or transfer some or all of our business. In connection with such assignment or transfer, we may transmit the information we have collected and stored (including personal data) to any person or entity involved in the transaction in question, subject to the guarantee of your rights as described in this policy.

IS YOUR PERSONAL DATA TRANSFERRED OUTSIDE THE EUROPEAN UNION?

If necessary, your personal data may be transferred to a country located outside the European Union, it being specified that in the event that the recipient country does not ensure a level of protection of personal data equivalent to that of the European Union, we undertake, in the absence of an adequacy decision, to take all necessary measures to ensure the protection of your personal data on the basis of appropriate guarantees (in particular standard contractual clauses), the communication of which may be obtained directly from GHP LOUVRE by sending an email to Contact@madamereve.com.

HOW LONG IS PERSONAL DATA RETAINED?

In general, your personal data will only be kept for as long as necessary to achieve the purposes for which it was collected or to comply with any legal or regulatory requirements.
We will keep your personal data in an active database for the following periods:
For prospects: three (3) years after collection or your last contact with us (e.g. clicking on a hyperlink), unless you withdraw your consent before the expiry of the three (3) year period.
For guests: until the end of our contractual relationship and, in any event, three (3) years from the date of your last contact with us, with the exception of your banking data, which will be kept only until the actual and complete payment for the accommodation service.
For visitors to our Website: cookies and trackers are stored for thirteen (13) months. Browsing data is kept for a maximum of twenty-five (25) months.
At the end of the periods mentioned above, some of your personal data will be archived, in an intermediate archiving database with restricted access, in accordance with our legal obligations and to defend our rights and interests in court, for the following periods:
Ten (10) years from the end of the accounting year for data kept for accounting purposes, as well as for commercial documents (invoices, commercial correspondence, etc.).
Thirteen (13) months following the debit date or 15 months in the case of deferred debit payment cards for the bank card number and its validity date in order to manage any complaints from payment card holders, pursuant to Article L. 133-24 of the French Monetary and Financial Code.
In the event of pre-litigation, until the amicable settlement of the dispute or, failing that, as soon as the corresponding legal action has lapsed, it being specified that the limitation period under ordinary law in civil and commercial matters is five (5) years.
After litigation, until ordinary and extraordinary remedies are no longer available against the decision rendered.
At the end of this additional period, your remaining personal data will be permanently erased from our systems or anonymised.

HOW DO WE PROTECT YOUR PERSONAL DATA?

We implement technical and organisational measures to protect your personal data, in particular against possible violations that may lead to accidental or unlawful destruction, loss, alteration, unauthorised access to or disclosure of your personal data. These measures shall ensure an appropriate level of data security and shall take into account the state of the art, the costs of implementation in relation to the risks and the nature of the data to be protected.
We also guarantee that our staff and any person required to process your personal data comply with the internal rules and procedures relating to the processing of personal data and in particular the technical and organisational security measures put in place to protect your personal data.

WHAT ARE YOUR RIGHTS OVER YOUR PERSONAL DATA?

In accordance with applicable data protection regulations, you have the following rights over your personal data:
You may request access to, and a copy of, any personal data we have about you, including in electronic format.
You can request the correction, updating and deletion of your personal data, as well as the limitation of its processing.
You may object to the use of your personal data for reasons related to your particular situation and have the absolute right to object to the processing of your personal data for the purpose of commercial prospecting, including profiling related to such prospecting.
You can request the portability of your personal data.
You can withdraw your consent when it has been collected, without this withdrawal affecting the lawfulness of the processing previously carried out.
You can give us your “last wishes” regarding your personal data in the event of your death.
When you exercise any of your above rights, we have one (1) month after receipt of the request to respond to you. This period may be extended by two (2) months, taking into account the complexity and number of the requests. You will then be informed of the reasons for the delay within one month of receipt of your request.
These rights are not absolute: you can exercise them within the legal framework and within the limits of these rights. In some cases, we will not be able to respond favourably to your request (legal obligation, etc.). If this is the case, we will inform you of the reason(s) for this refusal.
You can exercise your rights, proving your identity if necessary, by sending an email to contact@madamereve.com or a letter to the following address:
GHP Louvre
Hôtel Madame Rêve
Rights over personal data
48 rue du Louvre
75001 Paris, France

In case of difficulty or dispute, you can lodge a complaint with the CNIL via its website or by writing to: 3, place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07, France.

WEBSITES OWNED BY THIRD PARTIES

Links on the Website may refer you to external websites.
In this regard, we draw your attention to the fact that the personal data protection policies of these websites may differ from this policy.
It is therefore recommended that you read the personal data protection policy of each of the websites concerned.
In any event, the liability of GHP LOUVRE cannot be sought in the event that the content of one of the websites contravenes the legal and regulatory provisions in force.

UPDATING THIS POLICY

This policy is subject to change from time to time. You will be deemed to have accepted the new terms of the personal data protection policy upon your first use of the services immediately following such changes. Therefore, we recommend that you check it regularly on our Website.

MISCELLANEOUS PROVISIONS

If any court or competent authority finds that any or all of the provisions of this policy are invalid or unenforceable, the provision concerned shall be deemed to be deleted to the extent required. The validity and enforceability of the remaining provisions of this policy will not be affected.
This policy shall be governed by and construed in accordance with French law. Any dispute arising out of this policy will be subject to the exclusive jurisdiction of the French courts.