Privacy Policy of Hotel Pastis

Effective Date: 15 May 2025

At Hotel Pastis, located in The Netherlands, we respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, store, and protect your information when you visit our website or use our services.

1. Who We Are

Hotel Pastis

Luikerweg 1 6212 ET Maastricht

& Notgerusweg 4 6212 BK Maastricht

[email protected]

+31 (0)43-3580110

2. What Data We Collect

When you use our website or services, we may collect the following types of personal data:

Identity Information: name, title, date of birth
Contact Information: email address, phone number, postal address
Booking Information: stay dates, preferences, special requests
Payment Information: payment card details (processed securely)
Technical Information: IP address, browser type, operating system
Usage Data: how you interact with our website, pages visited
Marketing Preferences: your choices regarding promotions and offers

3. How We Use Your Data

We use your personal data for the following purposes:

To process and manage your bookings
To communicate with you regarding your reservation
To improve our services and website functionality
To comply with legal and regulatory obligations
To send marketing emails (only with your consent)

4. Legal Bases for Processing

We process your personal data only when permitted by law. Common legal bases include:

Performance of a contract (e.g. to fulfill your booking)
Compliance with legal obligations (e.g. record keeping)
Legitimate interests (e.g. service improvement)
Consent (e.g. for newsletters or promotions)

5. Sharing Your Information

We may share your data with trusted third parties, such as:

Payment processors
IT and web hosting service providers
Government authorities (if legally required)

All third parties are required to handle your data in accordance with the GDPR and this Privacy Policy.

6. International Data Transfers

If your data is transferred outside the European Economic Area (EEA), we ensure adequate safeguards are in place, such as Standard Contractual Clauses (SCCs) or transfers to countries with adequate protection.

7. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, and reporting obligations.

8. Your Data Protection Rights

Under the GDPR, you have the right to:

Access your personal data
Correct or delete your data
Restrict or object to processing
Withdraw consent (where applicable)
Data portability
Lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens)

To exercise these rights, please contact us at: [email protected]

9. Cookies and Tracking Technologies

Our website uses cookies to enhance your user experience and collect usage data. You can manage or refuse cookies via your browser settings.

10. Security

We take appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction.

11. Updates to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website with the effective date at the top.

12. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact: