Last Updated: February 13, 2020

Granada Hotel & Bistro  (“Granada Hotel & Bistro”, “we”, “us” and “our”) takes the issue of safeguarding your privacy seriously. Our Privacy Notice describes what information we collect from hotel and restaurant guests (collectively referred to as "Guests") as well as visitors to the Granada Hotel & Bistro website, and the way in which Granada Hotel & Bistro uses this information to better serve your needs.

WHAT IS PERSONAL INFORMATION?
Personal information is any information about you as an identifiable individual. The personal information that we process includes:

  • Basic information – such as name, age, gender, passport information and publicly available photographs; 

  • Contact information – such as your home address, zip/postal code, email address and phone number; 

  • Financial information – such as your credit card details, itemized spending and transaction history; 

  • Health information where disclosed and relevant to the provision of services; 

  • Preferences – such as special requests, service issues and other preferences for your stay; 

  • Technical information – such as information about the device you use to interact with us (including the unique device identifier, hardware model, operating system and version, and mobile network information, in the case of our mobile App); and 

  • Correspondence – when you contact us, such as to send an inquiry or make a request, any correspondence or application may be kept and added to your personal information.
     

HOW DO WE USE YOUR PERSONAL INFORMATION?
We use your personal information for the following purposes:

  • to enable you to use our website and our mobile site;

  • to help us identify you and any accounts you hold with us;

  • to provide personalized customer service to you;

  • to assist us in making your reservation and providing the services you request at any of our properties;

  • to process transactions through our website (including taking payment for purchases you may make through our website) and to assist in any inquiries about your transaction;

  • for billing purposes in relation to your stay with us;

  • to confirm prior transactions and reconcile statements or invoices;

  • to contact you in relation to matters that arise from your stay with us;

  • to send you newsletters regarding our properties and to advise you of promotions or to inform you of offers or other information that may be of interest to you (if, where required, you separately provide your consent for us to do so);

  • to conduct surveys or focus groups to receive your views of our properties and service delivery (if, where required, you separately provide your consent to this);

  • to respond to a specific "Information Request" from you about one of our hotels, resorts or residential properties and deal with any other enquiries, correspondence, concerns or complaints you have raised;

  • for you to participate in one of our on-line promotions;

  • to operate our business, including for internal purposes such as auditing, data analysis, statistical and research purposes and troubleshooting to help us improve our services.

Occasionally we will combine information from a number of Guests to better understand trends and your expectations. When this occurs, all identifiers are removed and the aggregate, anonymized information cannot be linked to any specific individual.


ON WHAT BASIS DO WE USE YOUR PERSONAL INFORMATION?
We use your personal information on the following basis:

  • to comply with legal and regulatory obligations, including financial reporting requirements imposed by government regulators and our auditors;

  • to enter into agreements with you, and to perform our agreement to provide services to you when you stay with us;

  • for legitimate business purposes – using your personal information helps us to operate and improve our business and minimize any disruption to the services that we may offer to you. It also allows us to make our communications with you more relevant and personalized to you, and to make your experience of our services more efficient and effective;

  • because you have given your consent – at times we may ask for your consent to allow us to use your personal information for one or more purposes. (See Your Rights) section for more information about the rights that you have if we process your information on the basis of your consent; or

  • for the establishment, exercise or defense of legal claims or proceedings.


HOW IS PERSONAL INFORMATION COLLECTED?
We collect your personal information while monitoring our technology tools and services, including comment cards and email communications sent to and from Granada Hotel & Bistro.

Otherwise, we gather information when you provide it to us, or interact with us directly, for example:

  • when you create a profile or sign in to access an existing profile on our website;

  • when you make a purchase through our website;

  • when you make a reservation online, by calling our Reservation Office or by contacting our hotel directly

  • when you check-in to the hotel a registration card is used to collect personal data;

  • when you follow us on social media;

  • when you apply for a job and fill out an application or submit a resume to our Human Resources Department;

  • when you book a reservation through a Third Party;

  • when you post reviews on a Third Party site;

  • when you visit our spa or gym or pool facilities as an outside guests not staying in the hotel;

We also receive information about you from other sources, such as our business partners and publicly available sources. We combine information that we have about you from various sources, including the information that you have provided to us.

We may also collect information from you through the use of cookies, when you visit our website. Finally, we may collect your photograph from public, available sources so that we can recognize you in order to provide you with superior customer service.

THE PURPOSES FOR WHICH WE USE COOKIES IN THE SERVICE INCLUDE: 

PROCESSES
Intended to make the Service work in the way you expect. For example, we use a Cookie that tells us whether you have already signed up for an account.

AUTHENTICATION, SECURITY & COMPLIANCE
Intended to prevent fraud, protect your data from unauthorized parties, and comply with legal requirements. For example, we use Cookies to determine if you are logged in.

PREFERENCES
Intended to remember information about how you prefer the Service to behave and look. For example, we use a Cookie that tells us whether you have declined to allow us to send push notifications to your phone.

NOTIFICATIONS
Intended to allow or prevent notices of information or options that we think could improve your use of the Service. For example, we use a Cookie that stops us from showing you the signup notification if you have already seen it.

ADVERTISING
Intended to make advertising more relevant to users and more valuable to advertisers. For example, we may use Cookies to serve you interest-based ads, such as ads that are displayed to you based on your visits to other websites, or to tell us if you have recently clicked on an ad.

ANALYTICS
Intended to help us understand how visitors use the Service. For example, we use a Cookie that tells us how our search suggestions correlate to your interactions with the search page.
 

HOW DO WE PROTECT PERSONAL INFORMATION?
We use a variety of security measures and technologies to help protect your personal information from unauthorized access, use, disclosure, alteration or destruction, consistent with applicable data protection and privacy laws. For example, we allow only encrypted communications from all of our web forms, including when you provide your credit card information through our website.


WHAT INFORMATION IS NOT SECURE?

We endeavor to protect the privacy of your account and other personal information that we hold in our records, but unfortunately, we cannot guarantee complete security. Unauthorized entry or use, hardware or software failure, and other factors, may compromise the security of user information.  Also, while we endeavor to put adequate contractual protections in place, we cannot guarantee the security of any personal information in databases hosted by third parties.

It is important to note that any e-mail communication is not secure. This is a risk inherent in the use of e-mail. Please be aware of this when requesting information or sending forms to us by e-mail (for example, from the “Contact Us” section of our website). We recommend that you do not include any confidential information (i.e. credit card information) when using e-mail. For your protection, our e-mail responses to you will not include any confidential information.

Finally, to be prudent, please be sure to always close your browsers when you are done using a form or the reservation site. Although the session will terminate after a short period of inactivity, it is best to close your browsers immediately upon completion, especially when using a public computer.


WHAT PERSONAL INFORMATION MAY BE PROVIDED TO THIRD PARTIES?
We may share certain of your personal information with:

  • analytics and search engine providers that assist Granada Hotel & Bistro in the improvement and optimization of the website; 

  • our professional advisors and auditors; and 

  • local or foreign regulators, governments, courts, law enforcement and national security authorities. 

You may advise the hotel if you do not want personal preferences shared.

Where a third party is engaged by Granada Hotel & Bistro to provide services on our behalf, Granada Hotel & Bistro ensures these parties protect your Personal Information in a manner consistent with the principles articulated in this Privacy Notice.

If you have chosen to join a subscription list, please note that they are only used for internal purposes and we do not sell or rent our subscription lists to anyone.

If Granada Hotel & Bistro suspects any unlawful activity is taking place, it may investigate and/or report its findings or suspicions to the police or other relevant law enforcement agency.


YOUR RIGHTS

ACCESSING YOUR PERSONAL INFORMATION
We understand that you may like to know what personal information we hold about you. We are happy to assist you with your request. To protect your personal information, however, we require that you prove your identity to us at the time your request is made.

When you make a request in person, we will require you to produce some form of photo identification such as a passport or a driver's license and you will be asked to sign a request form.

Where you make a request by other means, we request you contact us in writing via email, fax or letter including a copy of a government issued identification and signature. We require home and business addresses and phone numbers so we can check them with our files and satisfy ourselves as to your identity.

The above information is required to create an audit trail of how the request has been handled.

Granada Hotel & Bistro reserves the right to decline access to your personal information under certain circumstances as permitted by law. If your personal information is not disclosed to you, you will be provided with the reasons for this non-disclosure.

OTHER RIGHTS
You may also be entitled to:

  • request the correction and/or deletion of your personal information;

  • request the restriction of the processing of your personal information, or object to that processing;

  • opt out from processing of your personal information for direct marketing purposes;

  • withdraw your consent to the processing of your personal information (where Granada Hotel & Bistro is processing your personal information based on your consent); and

  • request the receipt or transmission to another organization, in machine-readable form, of the personal information you have provided to Granada Hotel & Bistro.

Where you are given the option to share personal information with Granada Hotel & Bistro, you can always choose not to do so.

If you do not wish to receive marketing information Granada Hotel & Bistro, you may indicate your wishes on your registration card when you stay with us or send an e-mail to: info@granadahotelandbistro.com. You will always have the ability to accept or decline any form of communication from the Granada Hotel & Bistro. You may unsubscribe from electronic marketing communications at any time by selecting the “unsubscribe” link included in such communications.

If you object to the processing of your personal information, or if you have provided your consent to processing and you later choose to withdraw it, we will respect that choice in accordance with our legal obligations.

This could mean that we are unable to perform the actions necessary to achieve the purposes of processing described above (see ‘How do we use your personal information?’) or that you are unable to make use of the services offered by us.

After you have chosen to withdraw your consent Granada Hotel & Bistro may be able to continue to process your personal information to the extent required or otherwise permitted by law.

If at any time you wish to exercise any of these rights, you can do so by:

Contacting our Reservations Manager:

  • via e-mail at info@granadahotelandbistro.com

  • via letter to:

General Manager
Granada Hotel & Bistro
1130 Morro Street
San Luis Obispo, CA 93401

HOW LONG IS MY PERSONAL INFORMATION RETAINED? 

Your personal information will be stored for the period of time required by law in the jurisdiction of any hotel holding the information. This may involve retaining information following your stay. We will delete your personal information once it is no longer required for any of the purposes described above.

We will also keep your personal information where we need to do so in connection with a legal action or an investigation involving Granada Hotel & Bistro.

Any financial information Granada Hotel & Bistro retains will be protected under the terms of this Privacy Notice and, where financing is arranged in the United States, under the Financial Services Modernization Act.  

CALIFORNIA PRIVACY RIGHTS

Under California’s “Shine the Light” law, California residents have the right to request in writing from businesses with whom they have an established business relationship: (i) a list of the categories of Personal Information, such as name, address, e‐mail address, and the type of services provided to that customer, that a business has disclosed to third parties (including affiliates that are separate legal entities) during the immediately preceding calendar year for the third parties’ direct marketing purposes, and (ii) the names and addresses of all such third parties. To request the above information, California residents can email us at info@granadahotelandbistro.com.

CONTACT US

If you have any questions or concerns regarding this Privacy Notice, please contact our Manager by writing to the following address:

  • via e-mail at info@granadahotelandbistro.com

  • via letter ;

General Manager
Granada Hotel & Bistro
1130 Morro Street
San Luis Obispo, CA 93401