Guest Privacy & Data Protection Policy
The following information serves as a notice according to article 13 of the GDPR. When we mention GDPR we refer to regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
Information Collection, Use, and Sharing
Maxbooking (further referred to as Max) is a service provider which acts on behalf of those companies (accommodation properties) who use our technical services for receiving online bookings via their website, Facebook page or elsewhere they choose to list their booking engine. Booking agreements are made directly between the guest and the property. Personal details are required in order for a guest to complete a booking, including but not limited to the guests name, address, email, phone number and credit card details. These details are intended for the sole use of the property to effectively fulfill the agreement for accommodation and other booked services. These details should be used in accordance with the properties terms & conditions for booking. Please refer to the privacy & data protection policy of the property booked for further information on their policies.
As an intermediary, Max and its team including contractors will have access to guests booking and personal details with exception of their credit card details. We will not use or share personal details with any company or person outside of the property which the booking agreement has been made with. While Max have access, we will not view guest details unless requested to by the guest or property in relation to the booking. Max will not use guest details in any other way.
Max also co-operates with other technical companies offering services to the accommodation industry:
- In some cases, Max receives booking information from a 3rd party (otherwise known as a booking website) on behalf of the property.
- In some cases, Max transfers booking information via 3rd parties (otherwise known as Channel Managers and Property Management Systems) on behalf of the property, to allow data to be efficiently imported into the systems used by that property.
If you have used Max to make a booking, we will store your data securely. We implement a variety of security measures, including strong encryption, to maintain the safety of your personal information. Credit card details are deleted from our system 7 days after your booking departure date. Your personal details remain active in Max for 5 years after which they are deleted. Your booking data (non personal information) remain active indefinitely, but cannot be linked to your own person or personal details in any way.
Your Access to and Control Over Information
Your personal details are your personal details. All persons have the right to request a copy of the data which is stored about them, and to the erasure of their personal details. Note that personal details are required for the fulfillment of an accommodation booking, to request their deletion before the booking period may result in cancellation of the booking.
Please contact Max if you wish to request a copy of your data or have it erased – firstname.lastname@example.org.
In case you wish to file a complaint about how we handled your personal details, you can file a complaint with the German Office for Personal Data Protection.
We may change our Privacy & Data Protection Policy at any time. Updated information will be listed on this page. Max will however never use your personal data in any manner that is inconsistent with the above policy.
This document was last modified on May 25th, 2018.