Privacy Policy

1. Information We Collect

We collect several types of information from and about users of our services:

• Personal Identification Information: Name, email address, phone number, postal address, passport details (when required by law), payment information
• Booking Information: Dates of stay, room preferences, special requests, guest names
• Technical Information: IP address, browser type, operating system, referring URLs, device information
• Usage Information: Pages visited, time spent on pages, booking patterns, preferences
• Stay Information: Services used during your stay, preferences, feedback

2. How We Use Your Information

We use the information we collect for various purposes:

• To process and manage your reservations and stays
• To provide customer service and support
• To send booking confirmations, updates, and pre-arrival information
• To personalize your experience and tailor our services to your preferences
• To improve our website, services, and guest experience
• To send marketing communications (with your consent)
• To comply with legal obligations and regulatory requirements

3. Legal Basis for Processing (GDPR)

For guests from the European Economic Area (EEA), we process your personal information based on:

• Contractual Necessity: To fulfill our obligations under the booking agreement
• Legal Obligations: To comply with applicable laws and regulations (e.g., tax, immigration)
• Legitimate Interests: To improve our services, prevent fraud, and ensure security
• Consent: For marketing communications and certain data processing activities

4. Information Sharing and Disclosure

We may share your information with:

• Service providers who assist in our operations (payment processors, IT services)
• Legal authorities when required by law or to protect our rights
• Third parties with your explicit consent
• Other entities within the Mofastav Hospitality Group for operational purposes

We do not sell your personal information to third parties for marketing purposes.

5. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, and regular security assessments.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting requirements.

• Booking information: 7 years (to comply with Norwegian accounting laws)
• Marketing information: Until consent is withdrawn
• Guest preferences: 3 years from last stay (unless deleted upon request)

7. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

• Right to Access: Request a copy of your personal information
• Right to Rectification: Request correction of inaccurate information
• Right to Erasure: Request deletion of your personal information
• Right to Restrict Processing: Request limitation of how we use your information
• Right to Data Portability: Request transfer of your information to another organization
• Right to Object: Object to certain processing activities
• Right to Withdraw Consent: Withdraw consent at any time (where applicable)

To exercise these rights, please contact us using the information in Section 10.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. You can control cookies through your browser settings, but disabling cookies may affect the functionality of our website.

9. International Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers in accordance with applicable data protection laws.

10. Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact our Data Protection Officer:

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.