Introduction
Hotel Riviera is committed to protecting and respecting your privacy. This form asks for your consent to process your personal data, including health information, for our Spa services.
Data Controller: Hotel Riviera is the data controller who is responsible for your information under the General Data Protection Regulation (GDPR).
Purpose of Processing:
The specific purposes for processing your personal data are:
Types of Data Collected:
The personal data collected may include:
Legal Basis for Processing:
The processing of your personal health data is based on your explicit consent as required pursuant to the General Data protection Regulation.
Who Will Access Your Data:
Access to your personal health data will be limited to:
Data Protection Rights:
You have the right to withdraw your consent at any time, request access to, rectification, or erasure of your personal health data, restrict processing, object to processing, and the right to data portability. To exercise these rights, please contact pw@riviera.no
Data Retention:
Your personal data and health data will be retained only as long as they are necessary to fulfill the purposes outlined above.