Written by: Cristina García
So far the hotel sector had lived with the Data Protection Directive from 1995 regarding the use of personal data in the European Union. But now a new horizon of changes and obligations opens up for this and many other sectors that handle personal information of their clients.
Now the GDPR (General Data Protection Regulation) has direct implications in the management and use of data of the European Union people. And as is logical, almost all hotel brands will be affected, to not say each of them.
In our previous post, we already address what this new EU regulation consists of, what is its objective and how it affects the hotel sector, one of the most susceptible to this change, due to the considerable amount of personal data that it handles. On this occasion we want to talk more specifically about its principles and obligations.
In accordance with Article 5. of the GDPR, which summarizes the most important principles of this regulation, the personal data will be:
Based on these principles, hotel companies should take into account a series of actions regarding processing. Although they are practices that were being done with the DPD, now it will be necessary more than ever:
The GDPR takes into account a series of rights of the EU people (also known as "data subjects") that go beyond the traditional ARCO rights (access, rectification, cancellation and opposition) which intended to guarantee people control over their personal data. This change causes that the companies have a series of obligations as far as the responsibility of their contacts personal information management -the data subjects.
As you can see there are s whole series of tasks that must be taken into account with this new panorama, both at a legal level and at a strategic level for the hotel commercialization. Our recommendation is to go step by step, for which we advise you to complete this questions. And as is logical, don’t forget the consequences that the GDPR will have in the marketing of your hotel brand.