Last updated – 10.10.2024
This privacy policy (“Privacy Policy”) and sets out how we collect, process, store, disclose and protect your personal data, as detailed below, that we collect from you or that you provide to us through this website and the related websites, social media handles and applications (collectively the “Website”).
We will refer to ourselves from now on in the Privacy Policy as “Miiro” or “we” (or by related words such as “us” or “our”). Our hotels are operated by Cycas Hospitality BV Limited.
In the heart of Europe’s most vibrant cities, Miiro is a characterful new collection of individually designed hotels. Each is inspired by the surrounding neighbourhood, from the stories they tell, to the people that live there. Our website address is www.miirohotels.com.
We are committed to ensure that your privacy and personal information is protected. We want you to trust that the information that you have provided to us is being properly managed and protected. We may update this Privacy Policy from time to time, so please do feel free to check it every so often to ensure you’re comfortable with any changes. Any changes to this Privacy Policy will become effective upon posting of the revised Privacy Policy on the Website.
PERSONAL DATA WE COLLECT
We may collect and process the following personal data about you when you visit the Website or the hotel including through certain offerings or services available at the hotel:
Personal Data | Details |
Customer Data | We collect or generate the following types of personal data from you: -Name -Gender -Postal address -Telephone number -Email address -Financial information (such as credit and debit card number or other payment data) -Language preference -Date and place of birth -Nationality, passport, visa, or other government-issued identification data -Important dates: birthdays, anniversaries, and special occasions -Membership or loyalty programme data (including co-branded payment cards, travel partner programme affiliations) -Employer details (for business-related bookings) -Travel itinerary, tour group, or activity data -Data about your family members and companionsIn more limited circumstances, we may also collect:-Generally, we do not collect sensitive or special category personal data from or about you, however, we will collect personal data that you volunteer about you relating to specific dietary, medical or health information, disabilities or personal needs to ensure your wellbeing. We may also process special category data relating to you in the event of an emergency during your stay with us. |
Business Development Data | We collect the following types of personal data from you in connection with our business development activities:
-Prior guest stays or interactions (including interactions via our chat functionalities), goods and services purchased, special service and amenity requests We may also collect information about your “Stay Preferences” that we use to make your current and future stays and experience with us more enjoyable, including information about your interests and other relevant information that we learn about you during your stay. This may also include any likes and dislikes about our services that you tell us about so that we can improve our services. We may also collect your “Personal Preferences,” that may include details of your special anniversaries (such as your birthday or wedding anniversary), what type of activities you prefer to take part in when staying with us, and your hobbies. Personal Preferences may also include details about who you usually travel with, their relationship to you, and your marital status. |
Images, Video and Audio Data | We collect the image, video and audio personal data from you from: (a) security cameras located in public areas, such as hallways and lobbies, in our properties; and (b) body-worn cameras carried by our loss prevention officers and other security personnel. |
Usage and Device Data | When you visit the Website or avail of services related to the Website, we will collect personal data relating to:
-your visits and interactions with the Website including which webpages you visit, time and date of access, what you click on, when you perform these actions; Most of this personal data is collected using cookies on the Website. Please see our Cookie Declaration further below for more information about how the Website uses cookies. |
If you submit any personal data about other people to us or our service providers (e.g., if you make a reservation for another individual), please ensure that you have the authority to do so from these individuals and provide them with a copy of this Privacy Policy.
FOR WHAT PURPOSE AND ON WHAT LEGAL BASIS DO WE PROCESS PERSONAL DATA?
We are committed to collecting and using your information in accordance with applicable data protection laws. We will only collect, use and share information where we are satisfied that we have an appropriate legal basis.
We have set out in the below table the key context upon which (“Legal Basis“) we process your personal data. We also explain how (“Nature of Processing“) and why (“Purposes“) we process your personal data.
Legal Basis | Nature of Processing and Purposes | Categories of Personal Data |
Compliance with a Legal Obligation | · Our use of your information is necessary to meet responsibilities we have to our regulators, tax officials, law enforcement and other legal, contractual and statutory obligations. It is also necessary for our everyday business purposes in accordance with the law, such as for legal, accounting, or reporting requirements, such as the obligation to maintain books and records, as well as regulatory compliance, security and fraud detection, and/or to enforce our rights. · To comply with Health and Safety regulations | Customer Data
Business Development Data Health Data |
Performance of a Contract | · For bookings, fee subscriptions, purchases, employment as well as provision and receipt of goods and services, including: – To verify your identity. – To manage your registration as a user of our Website, account setup and administration. – To process any payments towards bookings, fee subscriptions and purchases. – To process, confirm, and fulfil bookings at our hotels, restaurants, bars, programming and events. To send transactional messages (such as order confirmations and account information). – To provide and receive of goods and services. – To manage evacuation assistance and comply with Health and Safety regulations. | Customer Data
Business Development Data Health Data |
Legitimate Interest | · For the individual booking rooms at our hotels, restaurants, bars, gym classes, and events, for example, honouring his/her preferences, as well as for any individuals accompanying the primary guest (e.g., spouse, children, friends), including: – To provide you with access to the Website and to allow you to use the Website. – To personalise our communications. – To provide and improve customer service. – To send you surveys, marketing communications, promotional offers, and other information. · To manage and comply with Health and Safety regulations | Customer Data
Business Development Data Chat dialogue via Website Health Data |
Legitimate Interest, such as monitoring properties through CCTV to ensure the safety of guests and personnel | · To protect your rights and interests as well as the rights and interests of other guests. | Images, Video and Audio Data] |
Substantial Public Interest | · Collection of Health Data – To provide assistance to guests that may require it when using our services. – To ensure safety of guests when dining. | Health Data |
Consent | · Marketing Communications. We may offer you to opt-in/subscribe to newsletters and marketing emails from the hotel or hotel group. |
DATA RETENTION
We only process personal information for a specific purpose for which the data was collected and will only store and use personal information for as long as necessary for this purpose including for the purposes of satisfying any legal, accounting, or reporting requirements. You do not have to provide us with your personal information but in some cases, this means we’ll be unable to fulfill your request.
SECURE ENVIRONMENT FOR PERSONAL INFORMATION
We are committed to protecting the confidentiality and security of the information that you provide to us. To do this, security measures are put in place to protect against any unauthorised access, disclosure, damage or loss of your information. The collection and storage of information can never be guaranteed to be completely secure, however, we take all necessary steps to ensure that appropriate security safeguards are in place to protect your information.
YOUR RIGHTS UNDER EU DATA PROTECTION LAWS
You have legal rights under EU data protection laws in relation to your personal information including the following rights:
Right of access by the data subject
Right of access means, in short, that we are required to provide you a copy of your processed personal data upon request. This enables you to check that we are lawfully processing it.
Right to rectification and erasure
Because ownership of your personal information is very important, you have the right to ask us to rectify any information about you which is incorrect and ask us to erase your personal information if you think we no longer need to use it for the purpose we collected it from you. This applies also to the following situations: if you have either withdrawn your consent to us using your information (if we originally asked for or relied on your consent to use your information), or exercised your right to object to further legitimate use of your information, or where we have used it unlawfully or where we are subject to a legal obligation to erase your personal information.
Right to restriction of processing
In certain circumstances you can ask us to restrict our use of your information, for example: where you think the information is inaccurate and we need to verify it; where our use of your information is unlawful, but you do not want us to erase it; where the information is no longer required for the purposes for which it was collected but we need it to establish, exercise or defend legal claims; or where you have objected to our use of your personal information but we still need to verify if we have overriding grounds to use it.
Right to object
EU data protection laws give you the right to object to the processing of your personal information in certain circumstances if you believe your fundamental rights and freedoms to data protection outweigh our legitimate interest in using the information. If you raise an objection, we may continue to use your information if we can demonstrate that we have compelling legitimate interests to use the information. You can also ask us to stop using your data for direct marketing purposes.
Data portability
Where applicable, it is also your right to receive the personal data which you have given to us, in a structured, commonly used and machine-readable format and have the right to transmit that data to another controller without delay from the current controller if the processing is based on consent or on a contract, and the processing is carried out by automated means.
Complaints
You have a specific right to lodge a complaint with the relevant supervisory authority, in the country in which you reside, where you work or where the subject matter of the complaint took place. The supervisory authority will then tell you of the progress and outcome of your complaint. A list of supervisory authorities in the EU is available here: https://www.edpb.europa.eu/about-edpb/about-edpb/members_en#member-ie
SHARING YOUR DATA
Depending on the purpose for which we process your personal data, we may share such personal data with some or all of the following recipients to the extent necessary:
- Internal/ intra-group entities: Other companies within our group, internal departments and services (such as our hotel staff, concierge, customer service team, sales department, marketing department or IT department).
- Service providers: service providers such as operators, travel agents, insurance companies.
- If we obtain CCTV footage, we do not disclose such data except as necessary to protect our rights and interests and the rights and interests of other persons, including law enforcement.
- Third party advisors/ professionals: Professional advisors who provide professional services to us e.g. consultants, auditors, legal advisors.
- Regulatory authorities and law enforcement agencies: Where we are under a duty to disclose or share your personal data in order to comply with any legal or regulatory obligation or request.
- Third party service providers: We engage third party suppliers who may process your personal data on our behalf for the above purposes. These include the following:
- Administrative services.
- Processing of payment services.
- Marketing, Advertising and communication services.
- Website and data hosting providers.
- Corporate social responsibility services.
- Maintenance services.
- Physical security services.
- Archiving, custody, storage and digitalization services.
- Document removal and destruction services.
- IT services]Vendors and service providers who need access to such information to carry out work or provide services on our behalf or who help us provide the Site to you or who help us detect, prevent, investigate or otherwise manage crime or commercial risks (such as fraud);
- with anyone involved in the process of making your travel arrangements (e.g. travel agents, group travel organisers, your employer, our partners, foreign embassies) in order to fulfill contractual obligations;
- Promotional Activity.
We partner with third parties who may provide promotions to you, such as sweepstakes, contests, or other offers.
- Linked Accounts and Travel Insurance
We partner with certain third parties that allow you to enroll in their services or purchase their products.
COOKIE DECLARATION
This website uses cookies. We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of the website with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services or other third-party services.
Cookies are small text files that can be used by websites to make a user’s experience more efficient. The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies, we need your prior consent. This website uses different types of cookies. Some cookies are placed by third party services that appear on our pages.
You can at any time change or withdraw your consent from the Cookie Declaration on the website.
TYPES OF COOKIES ON OUR WEBSITE
Necessary
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
Preferences
Preference cookies enable a website to remember information that changes the way the website behaves or looks, like your preferred language or the region that you are in.
Statistics
Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.
Marketing
Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third-party advertisers.