京阪ホテルズ&リゾーツ

Language

The Thousand Kyoto

Kyoto Century Hotel

Biwako Hotel

Kyoto Tower Hotel

Kyoto Tower Hotel Annex

Kyoto Tower

京阪ホテルズ&リゾーツ

GDPR Privacy Policy

for Guests accessing this website from EEA
Date of Enactment June 1, 2020
If you are accessing the website from other than EEA, please check here.

1. Basic Policy

Based on General Data Protection Regulation(hereinafter referred to as “GDPR”), Keihan Hotels & Resorts Co., Ltd. has established the handling and privacy policy for personal data of the Guest who live in EEA (hereinafter the ”Personal Information”), and shall implement establishment of the corporate structure, protection of the Personal Information, appropriate management, and appropriate utilization.

2. Acquisition of Personal Information - Utilization Purposes and Legal Grounds

When performing the contract with the Guest, the Hotel shall handle the Guest’s personal information in accordance with Article 6. 1.
(b) of GDPR in order to fulfill the utilization purposes stipulated in the following items.

  1. (1)Online Reservation/management regarding the hotel’s accommodation business and restaurant/bar
  2. (2)Reservation/management of the hotel’s restaurant/bar, operation of the hotel such as providing food and drinks and sales of related goods
  3. (3)Reservation/management of the hotel’s restaurant/bar, operation of the restaurant/bar such as providing food and drinks and sales of related goods
  4. (4)To respond to inquiries and requests/demands that the Hotel received
  5. (5)To exercise rights and perform obligations based on the laws and regulations such as creation and retention of a hotel register
  6. (6)Collection/deletion of information registered to the Hotel’s service
  7. (7)Any business operations related to the preceding items

(b) of GDPR in order to fulfill the utilization purposes stipulated in the following items.

Personal information to be collected and retained by the Hotel includes the following.

  1. (1)Basic Information
    Name, address, gender, date of birth, country / region of residence, e-mail address, phone number, etc.
  2. (2)Payment Information
    Credit card number, bank account information, billing address, etc.
  3. (3)Information to be Collected Automatically on the Hotel Website IP address, types of browser, access date, etc.
  4. (4)Request related to the Services
    Requests about the guest rooms, leisure activities, etc., and other information necessary to respond to special request.
  5. (5)Information required by instructions from The government and the laws and regulations/ordinances, etc.

4. Management of Personal Information

The Hotel shall observe “Act on the Protection of Personal Information” and other relevant laws an regulators, and manage the Guest’s Personal Information strictly and safely. The Hotel shall take necessary and appropriate measures for prevention of unauthorized access, leakage, loss, falsification, and damage.
The Hotel also has established the Audit Office as the internal audit system.

5. Personal Information Retention Period

The Hotel will retain Guest's Personal Information only for the purposes specified in paragraph 2, and will take measures to delete or anonymize the Guest's personal information in a safe manner within a reasonable period of time after the retention period elapses.

6. The rights of Guests

The Guest shall have the rights under GDPR against the Hotel as follows. The Guest may exercise the rights by using the form on the Hotel website, or by contacting Personal Information Inquiry Contact. When the Guest exercises such rights, the Hotel shall, unless otherwise it falls under any of the exceptions set forth in GDPR, etc., verify the identification, and, in principle, contact within one (1) month after receiving the request.

  1. (1)The right to access to the Personal Information (provision of purpose, type, destination, retention period, acquirer, etc.)
  2. (2)The right to request correction of Personal Information
  3. (3)The right to request deletion of Personal Information
  4. (4)The right to request restriction on processing of Personal information
  5. (5)The right to object to processing Personal Information
  6. (6)The right to request data portability

7. Appeal to Supervisory Authority

The Guest has the right to make an objection concerning the handling of the Personal Information of the Hotel to the audit institutions such as national government, reginal government, or international organizations in accordance with GDPR, etc. The Hotel would like to have an opportunity to respond to the inquiries before the Guest lodges an appeal. Accordingly, please feel free to contact the Hotel in advance via Inquiry Form here.

8. Update of This Policy

This Policy may be revised as necessary to respond to the amendment, revision, etc. of relevant laws and regulations.
In this case, the Hotel will disclose the Policy on this website without delay, and will specify the date of the last revision.

9. Contact

The Hotel has established the contact desk for inquiries and opinions from the Guests concerning the Guests' Cookie Information that the Hotel acquires and retains, and respond in good faith to the reasonable and necessary range after implementing necessary confirmation of identification of the inquirer or an agent. Please note that it may take several days to respond.

Personal Information Inquiry Contact
Keihan Hotels & Resorts Co., Ltd.
721-1 Higashishiokoji-cho, Shimogyo-ku, Kyoto 600-8216 Japan