UK GDPR Compliant – Hospitality Rewards Platform

This policy is designed to comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

 

1. Information We Collect

• Identification Data: Name, email address, and contact details provided during registration.

• Booking Data: Information regarding your hotel reservations made through our platform.

• Behavioral Data (The Score): Numerical ratings (1-10) and internal qualitative feedback provided by hotels regarding your conduct as a guest.

 

2. How We Use Your Information

• To calculate your Overall Guest Score.

• To determine eligibility for rewards (e.g., upgrades, late check-outs).

• To provide hotels with a summary of your guest profile before your arrival.

 

3. Data Sharing & Disclosure

• Active Bookings: Only the specific hotel where you have a confirmed booking will see your Overall Score.

• No General Access: Other hotels on our platform cannot search for or view your historical data or scores.

• Service Providers: We may share data with technical partners who are contractually bound to confidentiality.

 

4. Data Security & Retention

We implement industry-standard encryption to protect your scoring data.

Retention Policy: Behavioral data (ratings) is retained for 6 months from the date of stay. Ratings older than 6 months are automatically and permanently deleted from our active scoring database.

 

5. Your Rights (UK GDPR)

• Right of Access: View your Overall Score at any time.

• Right to Object: Challenge an inaccurate rating.

• Right to Erasure: Request account deletion at any time.

 

6. Cookies

We use essential cookies for sessions and functional cookies for preferences.

 

7. Contact Us

Contact our Data Protection Lead at: admin@winwinhotels.net