At Hotel Apartments PK, we are committed to protecting the privacy and personal data of guests. This GDPR Policy outlines how we collect, use, store, and process personal data when you visit our website. It also explains your rights and choices regarding personal data under the General Data Protection Regulation (GDPR) for guests arriving from the European Economic Area (EEA) or European Union (EU). The EEA GDPR applies to all 27 countries of the European Union (EU).

Data Control

HOTEL APARTMENTS PK (SMC-PRIVATE) LIMITED.
Email: legal@hotelapartments.pk

Data Collected

1. Name, email address, phone number, and identity validation document.

2. Dates of stay, room preferences, and special requests.

3. Your consent for receiving marketing communications.

4. Website Usage Data: IP address, browser type, device information, cookies, and similar data for analytics purposes.

Purpose of Data Collection

• Process and manage hotel reservations and services requested by guests.
• Respond to inquiries and provide customer support.
• To improve our website and services through analytics and user behavior tracking.
• To send marketing communications and special offers with your consent.
• To comply with legal and regulatory requirements for all guests originating from the European region.

Legal Basis

• We collect and process your data based on the following legal bases:
• To fulfill the hotel reservation and service agreement.
• For analytical and marketing purposes.
• For sending marketing communications, you must opt in for such communications.

Data Retention

We will retain your data only for as long as necessary to fulfill the purposes outlined in this policy, comply with applicable laws and regulations, or resolve disputes. If you leave a comment, the comment and its metadata are retained, so we can recognize and approve any follow-up comments instead of holding them in a moderation queue.

For users who register on our website (if any), we also store the personal information they provide in their user profiles. All users can see, edit, or delete their personal information at any time. Website administrators can also see and edit that information.

Data Sharing

We may share your data with the following parties if a need may arise requested by the following organizations:

• Representatives of the law enforcement agencies.
• Any other legal and regulatory authorities, when required by law.

Your Rights

If you have an account on this site or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you that does not include any data we are obliged to keep for administrative, legal, or security purposes.

Access
You can request information about the personal data we hold about you.

Rectification
You can request corrections to inaccurate or incomplete data.

Erasure
You can request the deletion of your data in certain circumstances.

Restriction
You can request that we limit the processing of your data.

Data Portability
You can request a copy of your data in a machine-readable format.

Objection
You can object to the processing of your data for specific purposes.

Withdrawal of Consent
You can withdraw your consent for marketing communications at any time.

Cookies Tracking

Our website may use cookies and similar tracking technologies to enhance user experience and collect analytical data. By using our website, you agree to the Cookie Policy.

You may opt in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when making a reservation next time.

These cookies will last a year. To understand how cookies work and how to remove them using a browser, please navigate to the Cookies Policy.

When you log in, we will set up several cookies to save your login information and website choices. Login cookies last two days, and screen options cookies last for a year. If you select the Remember Me option, your login will persist for two weeks. If you log out of your account, the login cookies are removed.

Security Measures

We implement reasonable security measures to protect your data from unauthorized access, loss, or disclosure. However, no online data transmission or storage is secure.

Updates to the GDPR Policy

We may update this GDPR Policy from time to time to reflect changes in our practices or legal requirements. The policy will be updated on our website from time to time, with the date of revision indicated.

Minors & Children

Our services are for individuals above 18 years of age. We do not knowingly collect personal information from children under 16. We do not entertain any individuals under the age of 18 years unless accompanied by a parent or a guardian with a substantial relationship with the child.

Contact Information

In case of a question regarding this GDPR Policy or how we handle your data, Contact Us.