This information is provided in accordance with Article 13 of the GDPR 679/2016 “General Data Protection Regulation“, containing provisions on the processing of personal data.
This information is provided in accordance with Article 13 of the GDPR 679/2016 “General Data Protection Regulation“, containing provisions on the processing of personal data.
This Privacy Policy describes the privacy procedures adopted by the Baglioni Group for the collection of data:
collectively, we refer to our Websites, Apps and Social Pages as “Online Services“.
For the processing purposes indicated in point 3 (excluding point 3V), the Data Controller is Baglioni Hotels S.p.A. with registered office in Milan, Via Pontaccio, 10
Limited to the processing purposes indicated in point 3.V (My Baglioni Programme), the Data Controller is Baglioni UK Ltd. with registered office at 60 Hyde Park Gate – London SW7 5BB, Company no. 4659208;
The Data Protection Officer (DPO) can be contacted at dpo@baglionihotels.com.
Navigation data
The computer systems and software procedures used to operate this website, in the course of normal operation, acquire certain personal data, the transmission of which is implied in the use of Internet communication protocols. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the addresses in URI (Uniform Resource Identifier) form for the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.This data is also used with the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning.
a. Personal data we may collect
When contacting or interacting with you, we may collect personal data that may include: personal and contact details; nationality, gender, passport or ID card number with date and place of issue; information relating to a booking and stay at one of our facilities; information relating to the purchase of a service; payment details, such as credit card number and other information on the same; preferences regarding marketing, consumption choices and habits; information on packages booked, including hotel, flight and car rental; information relating to participation in a programme (e.g. My Baglioni) in a competition, promotion or survey relating to the programme.
In particular:
b. Data collected at our properties and/or through online pre-registration/check in:
During the registration/check-in process at our properties, in addition to the above information, we may also use CCTV cameras, viewing or recording images of guests and visitors in common areas in order to ensure the safety of guests, our staff and properties. We may also collect personal information related to the services available at the properties, such as concierge service, spas, activities, babysitting service, equipment rental, car rental, the use of “electronic money” (monetics); with the guest’s consent, including in relation to children under 18 years of age staying at our properties (with the consent of the parent and/or legal guardian) we may also process special data, e.g. related to specific allergies, food intolerances in order to provide a better service and meet the guest’s particular needs.
c. Participation in “My Baglioni” Loyalty Programme:
By signing up to the My Baglioni Hotels Loyalty Programme (“Programme”) via the Website, the dedicated App, or in one of our hotels, you will be able to provide us with information about yourself when you are registered in the Programme, when you take part in a competition, promotion or survey linked to the Programme, when you use your My Baglioni Card. The information we process may include your first and last name, country of residence, address, email address and telephone number, your personal opinion about our services or your requests. As a Programme participant, each time you visit one of our hotels, we may collect the following information: general information about your stay, the hotels you stayed at, the date of your arrival and departure, the products and services you purchased, special requests you made, and notes about your preferences (including rooms, holiday preferences, type of services you requested, equipment and other services used). We also collect and process the name and email address of people suggested by Programme participants through the use of the “Suggest to a Friend” option. If your email was provided to us by a participant in our Programme through the use of the “Suggest to a Friend” option, we will retain the email address provided, your name and the number of emails sent to you. Please read the regulations of the My Baglioni Loyalty Programme available at https://my.baglionihotels.com/my-baglioni-loyalty-terms-of-use/
d. Data collected at events, cocktail parties, meetings:
In the case of organising an event, information such as the date, number of guests, details of guest rooms, and information on the organisation will be recorded (data on guests under a) and b) above may only be collected in the case of their stay). Should there be any need for third parties offering specific services for the event, information on the organisation may also be communicated to these third-party service providers (e.g. wedding planners, etc).
e. Links to third-party websites and services:
Our site may contain links to third-party websites. Baglioni Hotel S.p.a. is not responsible for the processing of personal data and information by these third parties. If you provide information on third-party sites, the data protection provisions and terms of use of services on third-party sites will apply, which we encourage you to read.
Therefore, this Privacy Policy does not apply to, and we assume no responsibility or liability for the privacy, data, or practices of entities not belonging to the Baglioni Group, including Owners, strategic business partners, or third parties who operate sites or services connected with the Baglioni Group Services.
We also assume no responsibility or liability for the collection, use, disclosure, or security policies and data procedures from other companies such as Facebook, Apple, Google, Microsoft, or any other application developer, application provider, social media platform provider, operating system provider, service provider, or wireless device, including with respect to Personal Data you provide to other companies through the Apps or our social media pages.
f. Personal data we collect from client service/email/telephone bookings and third parties:
We use your information in a variety of ways, as specified below:
I. In order to comply with legal, administrative, accounting and tax obligations to which Baglioni Hotels S.p.a. is legally obliged;
II. To manage online, telephone and email bookings in order to follow up on your requests;
III. For the management of reception and accommodation services: managing check-in and check-out; processing payments; providing personalised on-site services (spa, babysitting, etc.); providing concierge services, luggage storage and parking; making arrangements with third-party suppliers on behalf of guests (e.g. organising taxi services, car rental, restaurant reservations, etc.); managing access to WI-FI (including through social logins), TV and other connectivity and entertainment services; providing room service; taking into account guests’ dietary restrictions, food intolerances and disabilities; managing housekeeping and dry cleaning services (taking into account clients’ preferences and special requirements); handling any client complaints; making clients’ presence at the hotel known to third parties, allowing operators to forward communications/messages and phone calls during their stay.
IV. To manage conferences and events;
V. To manage loyalty programmes (e.g. My Baglioni): to register, manage and respond to your request to participate in the Programme; to credit you with Programme points and enable you to use them in accordance with the Terms of the Programme;
VI. To gather residence information and carry out statistical processing of the data in aggregated form;
VII. To identify and assess your preferences, tastes, consumption choices and habits in order to offer you more targeted products and services that meet your needs; we may take note of anniversaries or birthdays so that we can offer you a gift or promotion on these special dates; we may keep track of your preferences about the types of activities you like to participate in or the services you usually request, to make sure that we can offer you similar experiences during any upcoming visit;
VIII. To send advertising, direct sales, market research and commercial communication material through traditional means (paper mail, telephone calls with operator) or through automated means (sms, mms, automated telephone calls, newsletters) – direct marketing;
IX. To communicate your contact details to businesses and/or companies that are partners of Baglioni Hotels Spa, which may process this data exclusively to send commercial and/or promotional communications about their products and services, as well as to carry out market research – third party marketing
X. On the basis of the regulations in force, Baglioni Hotels may use the email details you provide when purchasing one of our services and/or benefits to offer you services and benefits similar to those you have purchased. However, should you not wish to receive such communications, you may notify Baglioni Hotels at any time, using the link on the email communications you receive. In such a case, Baglioni Hotel will discontinue the aforementioned activity without delay.
XI. Handle requests, questions and any complaints from clients.
Your data will only be processed for the purposes mentioned above under point 3, by personnel formally authorised to process personal data who have undertaken an obligation of confidentiality.
Each processing of your personal data is justified by one of the following legal prerequisites:
Pre-contractual/Contractual: Processing is necessary to execute a contract between the parties.
Legal obligation: Processing is necessary to fulfil a legal obligation.
Legitimate interest: Processing is necessary for the pursuit of the legitimate interest of the Data Controller, provided that the interests or fundamental rights and freedoms of the User, which require the protection of personal data, do not prevail.
Consent: Processing is only possible if you have given consent for specific purposes. In this case, you may revoke your prior consent at any time by contacting the Data Controller as indicated in article 7.
Your personal data are processed following the implementation and continuous updating of appropriate technical and organisational security measures aimed at preventing their accidental loss, unauthorised use or access, alteration or disclosure.
Your personal data are kept only as long as necessary to fulfil the purposes for which we collected them, including to meet any legal, accounting or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of the personal data, the purposes for which we process the personal data and whether we can achieve those purposes by other means, and applicable legal requirements.
All personal data are stored in electronic form on servers located in Europe.
If necessary, the Data Controller may also transfer the data outside the EU. In this case, the Data Controller hereby ensures that the extra-EU data transfer will be in compliance with the applicable legal provisions.
Transparency towards the User: through the booking engine, or by using the web-based reservation system provided by our suppliers, Processors, we may transfer some personal information to countries that according to the European Commission do not provide adequate data protection; these countries include the United States of America. Such providers may also be subject by law to surveillance by US intelligence agencies, even if the servers are located in Europe. By proceeding with the reservation and entering the personal data requested via the booking engine or using the web-based reservation system, the User therefore accepts that his or her personal data may be transferred to the United States of America and is aware of the risks he or she may incur as set out above.
In relation to the processing indicated in points 2 and 3, you may at any time request confirmation as to whether or not your personal data is being processed, and in relation to this you have the right to:
To request further information on the processing of your personal data or to exercise your rights, in relation to personal data processed for the purposes set out in Section 3 (excluding Section 3V) you may:
To request further information on the processing of your personal data or to exercise your rights, in relation to personal data processed for the purposes referred to in Section 3 V you may:
In any case, you can contact the Data Protection Officer (DPO) directly by writing to dpo@baglionihotels.com
For information regarding the use of cookies on this site, please read the Cookie Policy.
The Data Controller reserves the right to amend or simply update the content of this Privacy Policy, in part or in full, including as a result of changes in applicable legislation. Such changes will be binding as soon as they are published on the Site. If you continue to access or use the service after such publication, it is assumed that you have consented to these changes. Accordingly, the Data Controller invites you to visit this section regularly to acquaint yourself with the most recent and up-to-date version of the Privacy Policy so that you are always informed of the data collected and how it is used by the Data Controller.