DATA PROTECTION CHARTER ACCOR KEY/DIGITAL KEY
In order to enable users ("you" or "your") of the application Accor Key or Digital Key service (“Service”) to benefit from the functionalities and various advantages of the Service, such as the granting of a virtual key, Accor SA, whose registered office is located at 82, rue Henri Farman, CS 20077, 92445 ISSY-LES-MOULINEAUX, processes some of your personal data in its quality of data controller.
In order to provide you with transparent information on this processing and on your rights relating thereto, Accor SA has drawn up this Charter.
In order to provide you with transparent information on this processing and on your rights relating thereto, Accor SA has drawn up this Charter.
1. WHAT PERSONAL DATA IS COLLECTED?
When you book a hotel room and wish to be allocated a virtual key, we collect the following personal data about you:
- Your first and last name,
- Your email address
- Date and location of your stay
- Your room number
2. FOR WHAT PURPOSES IS YOUR DATA COLLECTED AND FOR HOW LONG IS IT KEPT?
We collect and process your data to create and manage the virtual key that you will use during your stay in the hotel you have chosen, as well as to offer you the history of your reservations in the various hotels where you have used a virtual key.
This processing is necessary for the execution of the service contract to which you are a party relating to the organization and execution of your stay.
As regards the data used for the management of the virtual key, this data is kept until 90 days after the end of your stay.
Your data will be deleted or anonymised at the end of these periods.
This processing is necessary for the execution of the service contract to which you are a party relating to the organization and execution of your stay.
As regards the data used for the management of the virtual key, this data is kept until 90 days after the end of your stay.
Your data will be deleted or anonymised at the end of these periods.
3. CONDITIONS OF ACCESS BY THIRD PARTIES TO YOUR PERSONAL DATA
Your personal data is intended for persons authorised to process it by virtue of their position (such as members of our IT departments), as well as for the external service provider responsible for managing the Service and generating the virtual key.
Your personal data is also transmitted to the hotels where you have booked a stay.
We may also be required, by virtue of a legal obligation, to transmit your personal data to an administrative authority or an authorised public body.
Your personal data is also transmitted to the hotels where you have booked a stay.
We may also be required, by virtue of a legal obligation, to transmit your personal data to an administrative authority or an authorised public body.
4. TRANSFER OF DATA OUTSIDE THE EUROPEAN ECONOMIC AREA (EEA)
Your personal data may be transferred to countries outside the European Economic Area (EEA) whose level of protection is not considered adequate by the European authorities.
We undertake to provide appropriate safeguards for this type of transfer in accordance with the applicable legislation, such as the standard contractual clauses adopted by the European Commission.
We undertake to provide appropriate safeguards for this type of transfer in accordance with the applicable legislation, such as the standard contractual clauses adopted by the European Commission.
5. DATA SECURITY
Accor SA takes appropriate technical and organisational measures, in accordance with applicable legal provisions, to protect your personal data against destruction, loss or alteration, misuse and unauthorised access, modification or disclosure, whether such actions are unlawful or accidental. To this end, we have put in place technical measures (such as firewalls), organisational measures (such as a login/password system and physical protection of infrastructure access) to ensure the continued confidentiality, integrity, availability and resilience of processing systems and services, as well as organisational measures to ensure the security of processing.
6. YOUR RIGHTS
You have the right to obtain information and access to your personal data collected by Accor SA, subject to the applicable legal provisions.
You also have the right to have your data corrected, deleted or to limit the processing of your data. In addition, you have the right to the portability of your data and the right to define instructions for the processing of your data after your death (so-called post-mortem right). You can also object to the processing of your data.
If you wish to exercise these rights, please contact the technical service provider directly by e-mail at loyalty.dataprivacy.digitalkey@accor.com
In the interests of confidentiality and the protection of your personal data, we will need to identify you in order to respond to your request. For this purpose, if there are reasonable doubts about your identity, you may be asked to attach a copy of an official identity document, such as an identity card or passport, to your request. In this case a black and white copy of one of these documents will suffice.
All requests will be processed as quickly as possible and in accordance with the applicable law.
Finally, you may lodge a complaint with a supervisory authority and you may contact the Accor SA Data Protection Officer by writing to accorhotels.dpo@accor.com.
You also have the right to have your data corrected, deleted or to limit the processing of your data. In addition, you have the right to the portability of your data and the right to define instructions for the processing of your data after your death (so-called post-mortem right). You can also object to the processing of your data.
If you wish to exercise these rights, please contact the technical service provider directly by e-mail at loyalty.dataprivacy.digitalkey@accor.com
In the interests of confidentiality and the protection of your personal data, we will need to identify you in order to respond to your request. For this purpose, if there are reasonable doubts about your identity, you may be asked to attach a copy of an official identity document, such as an identity card or passport, to your request. In this case a black and white copy of one of these documents will suffice.
All requests will be processed as quickly as possible and in accordance with the applicable law.
Finally, you may lodge a complaint with a supervisory authority and you may contact the Accor SA Data Protection Officer by writing to accorhotels.dpo@accor.com.
7. UPDATES
We may change this charter from time to time. Therefore, we invite you to consult this charter regularly.
Last update date: 29/03/2022