Privacy Policy

Everything you need to know about GDPR and how you can get even better service from us

Guess you've heard of GDPR? Since it can feel complicated to review what everything means, we at Smygehus Havsbad have chosen to summarize what the law means so that you, as our guest, can understand in a simple way how we take care of your personal data.
Please note that the text below is not our legal policies but a simplified summary description.

1. General information about the GDPR
From 25 May 2018, the new General Data Protection Regulation (GDPR) applies. The GDPR replaces the existing Personal Data Act (PUL) and applies to all EU countries.

2. Description of the GDPR
The GDPR has been developed to protect you as a customer and your rights regarding the handling and dissemination of your personal data. The idea is that you, as our guest, should feel secure that your registered information is not used in an inappropriate manner. The current Swedish PUL is actually the basis for the GDPR and most of the PUL can be found in the GDPR.

3. What is personal data?
Personal data is data that in some way identifies you as a person. That is, name, address, phone or email. Non-personal information about bookings, sales and activities is not included as this is considered trade secrets and is in many cases covered by accounting rules and accounting obligations.

4. Who is the Personal Data Controller?
Smygehus Havsbad AB has overall personal data responsibility. The company is responsible for and determines the purposes for handling, collection and use of the personal data that you provide to us.

5. How do we store your Personal Data?
Our booking systems handle large amounts of personal data.
It is important to distinguish between ordinary and sensitive personal data. Sensitive information is, for example, ethnic origin, political opinions, religious or philosophical beliefs and personal data relating to health. Smygehus Havsbad AB will never take in and collect data about sensitive information, however, there are free fields in the booking engine and guest surveys that can still enter our database. This information only comes to us if you as a guest choose to fill in this information in our surveys, otherwise it is nothing that Smygehus Havsbad AB actively stores.
This is how it works: Smygehus Havsbad AB urges all users of our booking systems not to enter notes of a sensitive nature into our systems. As a guest, you always have the right to receive a copy of all data that is stored about you, including that stored in free text fields in our customer register.

6. News and offers before everyone else via e-mail and SMS
If you wish to continue to stay in touch with us after your visit, you can via our website or our guest survey click that you wish to receive our newsletters. In them you always get the latest news from us, take advantage of offers before everyone else, discounts and a hope for even better service.
If you do not want us to keep in touch with each other after your visit, you do not need to do anything.
This is how it works: Smygehus Havsbad AB does not need to obtain consent from you as a guest if you book accommodation, a conference, a party or a restaurant visit as a customer agreement is entered into when a booking is made. If after your visit with us you still want news and offers, you must actively fill in yourself that you want it.

7. What happens in the event of a Personal Data incident?
If Smygehus Havabad AB receives a data breach or if an accidental loss of personal data occurs, the person in charge of personal data will document the incident and report it to the Swedish Data Protection Authority and affected customers within 72 hours.

8. What is a Register extract?
If you have booked a stay, a party, a conference or a restaurant visit, you have the right to see the information that is saved about you in our booking systems.
This is how it works: You, who have entered into a customer agreement with Smygehus Havsbad AB, have the right to receive information about what personal data has been stored about you. This refers to information that can be used to identify oneself as a person. Non-personal information about bookings, sales and activities is not included as this is considered trade secrets.

9. Can you delete me from your system?
You who have entered into a customer agreement with Smygehus Havsbad AB have the right to have all your personal data that is stored about you deleted. We think it's sad because we would like to offer you news and an even better service.
This is how it works: You who have entered into a customer agreement with Smygehus Havsbad AB have the right to have all information that can be used to identify you personally removed from 25 May 2018. This refers to information that can be used to identify you as a person. Non-personal information about bookings, sales and activities is not included as this is considered trade secrets and is in many cases covered by accounting rules and accounting obligations.

10. How does GDPR work in practice?
Smygehus Havsbad AB has implemented the necessary functions so that administrators in our booking systems can handle all GDPR inquiries and requests from you by 25 May 2018 at the latest.
Register extract
Anyone who has entered into a customer agreement with Smygehus Havsbad AB can request the stored data at any time. Personal data in fields, free text, and that can identify you as a guest are disclosed. The request is made to info@smygehushavsbad.se.

Information maintenance
To change your personal data that is stored about you, contact info@smygehushavsbad.se for help.

News and offers
You who have chosen to receive newsletters from Smygehus Havsbad AB will receive our news and offers first of all via e-mail or SMS.
Hope that we'll see each other soon!

A warm welcome to us at Smygehus Havsbad!

Do not miss

Spoil mum in a wonderful seaside setting with a luxurious brunch!