Website Legal Notice

1. – DOMAIN OWNER IDENTIFICATION

In accordance with the provisions of Article 10 of Law 34/2002 of 11 July on Information Society Services and Electronic Commerce,

We inform you of the following:

• The owner of the website is LUTX CORPORACIÓ, S.L, with address at Consell de Cent, 357, 2N, Barcelona, CIF (Tax ID): B58-155391 registered in the Mercantile Registry of Barcelona, Volume 22037, Folio 73, Page B31890
• E-Mail: email@gruplutx.cat
• Phone: Tel. 934 671 970 Fax: 934 67197

2.- PRIVACY AND PROCESSING OF INFORMATION

2.1.- RIGHT TO BE INFORMED

In accordance with the provisions of Article 11 of Organic Law 3/2018, of 5 December, on the Protection of Personal Data and Guarantee of Digital Rights (hereinafter LOPDGDD) and Article 13 of the General Data Protection Regulation 2016/679, we inform you of:

2.1.1.- Identification of the controller:

The data controller is LUTX CORPORACIÓ, S.L., and their contact details are provided in section 1 of this notice.

2.1.2.- Purpose and legal basis for processing your information

The data that you provide in the forms you will find on the website, data you send to our e-mail address and data that may be generated while maintaining a relationship with the data controller, will be added, in the same format as you send it to us, to a database owned by the controller.

We will use the data to provide the services requested and/or to meet your requests and to send commercial information from the company and our hotels by e-mail or by post.

The purpose of processing your data regarding CVs received is to assess your candidacy for the job offers of our business group and it will be stored for a period of one year.

The legal basis of this processing is the contractual relationship you have with the data controller and the consent given by accepting this notice.

2.1.3.- Categories of recipients.

To fulfil the above purposes the following people will have access to your data:

• Personnel duly authorised by the data controller.
• Suppliers needed to meet your requests.
• Public administration within the scope of their responsibilities.

2.1.4.- International data transfer.

To perform their functions, the data controller may store data in Google systems. The data controller has signed an agreement with Google, in accordance with the decision of the Spanish Data Protection Authority of 22 June 2017. You can get more information on G-Suite’s privacy policies by visiting the following links:

https://support.google.com/a/answer/2888485?hl=en

https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI

2.1.5.- Data storage period.

The data controller will store your information until the consent given by accepting this clause is withdrawn.

2.1.6.- Rights of the affected party

You have the right to access, rectify, delete, object to your data being processed, limit the processing, request data portability, not to be subjected to automated individual decisions and to withdraw the consent you have given.

To exercise these rights, you can write to the addresses listed in point 1 of this notice.

2.1.7.- Rights to file a claim

The competent body that determines the correct application of the norms on the processing of personal information is the Spanish Data Protection Authority, with address at Jorge Juan No. 6, Madrid.

2.1.8.- Obligations of affected party

The affected party must provide truthful and up-to-date information in all data collection processes, and they shall be solely responsible for any non-compliance.

In the data collection forms, mandatory fields are marked based on the request made by the affected party. Failure to provide this data may prove participating in the activity or providing the requested service impossible.

2.1.9.- Profiling

Profiling is not carried out.

2.2. USER CONSENT

It is understood that the user accepts the conditions established by pressing the ‘ACCEPT’ button found on all data collection forms, or by sending a message via e-mail.

Personal data is stored in the company’s general administration database and, at all times, technical and organisational measures to preserve the integrity and security of the information processed are guaranteed.

2.3. SECURITY

The general database is provided with the mandatory security documentation, and all the technical means at our disposal have been established to prevent the loss, misuse, alteration, unauthorised access and theft of the data you provide. Personal data is processed in accordance with the regulations established in Organic Law 3/2018 on Data Protection and Guarantee of Digital Rights and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016.

2.4.- COOKIES AND STATISTICAL DATA COLLECTION

When a user browses this website, the IP address assigned by their Internet access provider is identified. This address will only be used for exclusively internal purposes, such as statistics on access to the Portal.

Cookies may also be used for the functioning of this website. The cookies that may be used are only associated with the browser of a specific device (an anonymous user), and do not provide in themselves any personal data of the user. This website may use the following types of cookies:

• Analytical cookies: they are used to track the number of users and thus perform measurements and statistical analysis of the use and activity users have on our website, as well as develop user navigation profiles on these pages and in our applications, with the aim of making improvements.
• Technical cookies: they enable the user to browse the website and use its different options or services, such as controlling traffic and data communication, identifying the session, accessing parts of restricted access, remembering the elements that make up a request, processing purchase requests, requests for registration or participation in an event, using security elements during navigation or storage, disseminating and/or sharing content.

The user has the option of configuring their browser to receive a notification on their screen of the reception of cookies and to prevent the installation of said cookies on their hard drive. All browsers allow changes in order to disable cookie settings to be made. These settings are located in the “options” or “preferences” menu of your browser. Below, you can find the links to disable cookies of each browser by following the instructions:

• Explorer: http://windows.microsoft.com/es-es/windows7/how-to-manage-cookies-in-internet-explorer-9
• Firefox: http://goo.gl/F5pHX
• Chrome: http://support.google.com/chrome/bin/answer.py?hl=es&answer=95647
• Safari: http://support.apple.com/kb/ph5042
• Opera: http://www.opera.com/help/tutorials/security/privacy/

We inform you that there is the possibility that disabling a cookie may prevent or hinder browsing or the provision of the services offered on this website.

2.5. – USE OF IP ADDRESSES

To facilitate the search for resources we consider to be of interest, you can find links to other websites on this website.

This privacy policy only applies to this website. The data controller does not guarantee compliance with this policy on other websites nor are they responsible for access through the links on this website.

3. CLUB HCC HOTELS CONDITIONS

Club HCC Hotels is the loyalty platform of HCC Hotels and applies to all the hotels that are part of this Group.

The promotions and their benefits included in the Club HCC Hotels loyalty program will be applicable exclusively to reservations made on the official HCC Hotels website: www.hcchotels.com.

Promotions and benefits are applicable to standard hotel rates and may not be combined with other available promotions unless otherwise specified.

Registration to the Club HCC Hotels program implies the user’s agreement with the conditions and clauses of the program.

Members of the HCC Hotels Club must be over 18 years of age.

HCC Hotels reserves the right to modify or cancel promotions, benefits and program conditions without notice.

Data Protection.

We inform you that: THE RESPONSIBLE FOR THE TREATMENT is Lutx Corporació SL with fiscal address at Calle Consell de Cent number 357, 2º de Barcelona.

PURPOSE OF THE TREATMENT. It is the management of the HCC Hotels Loyalty Club. To keep you informed of the Club’s offers and promotions, we need to send emails informing you of the offers that you can enjoy at each of our hotels.

RIGHTS. You can exercise the rights of access, rectification, opposition, deletion, limitation of treatment, data portability and revocation. To exercise the above rights, you must go to the address of the person responsible for the treatment that appears in this notice.

4. PORTAL RULES OF USE

Whoever accesses and uses this website will be considered a user. By merely using this Website, the user accepts all the conditions of use.

4.1. GENERAL RULES

It is prohibited to publish on this website, on our blogs and other participation tools any content that may undermine the following principles:

• a) The safeguarding of public order, criminal investigation, public security and national defence.
• b) The protection of public health and of the health and well-being of persons with the status of consumers and users.
• c) Respect for human dignity and the observance of non-discrimination on the basis of race, gender, nationality, disability or any other personal or social circumstance.
• d) The protection of children and young people.
• e) Respect for the autonomy of the will of the person affected.
• f) Respect for the intellectual property of the material published.
• g) In general, respect for the law.

4.2. SPECIFIC RULES

The user accepts responsibility for the use of the portal. This responsibility extends to any registration that may be necessary to access certain services or contents. The user is responsible for providing truthful and lawful information during the registration process.

The user undertakes to make appropriate use of the contents and services offered by the domain owner through the website and of the participation tools, inter alia, and also undertakes not to use them for:

• Causing damage to the physical and logical systems of the data controller, their suppliers or third parties; introducing or spreading computer viruses or any other physical or logical system that is likely to cause damage.
• Trying to access and, if necessary, use the e-mail accounts of other users and modify or tamper with their messages.
• The data controller reserves the right to withdraw all comments and contributions that violate the respect for human dignity, that are discriminatory, xenophobic, racist or pornographic, that threaten people, especially children and young people, order or public safety or that are not deemed suitable for publication at the discretion of the controller.
• In any event, the controller is not responsible for the opinions expressed by the users through the forums, chats, or other participation tools.

4.3. USE OF PASSWORDS.

To access certain content, it is necessary to enter a user code and password. If you do not have one, you can request one at informatica@gruplutx.cat

We inform you that passwords are personal and non-transferable. The user is solely responsible for any consequences that may arise from the use of their password.

For any incident regarding passwords, you can contact informatica@gruplutx.cat

5. INTELLECTUAL AND INDUSTRIAL PROPERTY

The data controller is the owner of all the intellectual and industrial property rights of their web pages, as is all of the content, so that any reproduction, distribution and total or partial public communication of their content is expressly prohibited without the express authorisation of the company.

6. LIABILITY

The data controller is not liable for any damages that may be derived from interference or telephone breakdowns, disconnections in the electronic system, presence of computer viruses, malware or any other factors beyond their control.

The data controller reserves the right to exercise the relevant legal actions against those who violate these conditions.

7. CHANGES TO THE PRESENT CONDITIONS AND THEIR VALIDITY

The data controller can modify these conditions at any time, without prior notice, publishing the modifications as they appear.

8. APPLICABLE LAW AND JURISDICTION

The relationship between the data controller and the user will be governed by current Spanish regulations and any dispute will be submitted to the Courts of Barcelona.