GDPR

The General Data Protection Regulation (GDPR) is a new EU regulation that will come into effect on the 25th of May 2018. The new regulation will be directly applicable to the whole European Union and unify all prior national regulations, including Switzerland. The regulation is designed to give people more control over how their personal data is used, and any business operating in the EU is required to be compliant with the GDPR’s rules.

On this page Positioner provides information to fulfil basic GDPR requirements for your website. IMPORTANT: The following notes and recommendations are based on our best understanding of GDPR. However, we feel it important to add a caveat that we are not authorities in Privacy Law and we would recommend you seek further legal advice if you are concerned about how your organisation handles personal data. As the GDPR affects each hotel individually and Positioner is not able to give legal advice, we strongly suggest you contact your lawyer and inform us of which actions should be undertaken on your website and which information you need from our side to complete your requirements for the GDPR.


Overview of recommended changes on your website

  1. Add check-box for all contact forms and e-mail newsletter sign-in fields & specify the process and usage of the data
  2. Switch the sign-in process of your e-mail marketing to double opt-in
  3. Add a cookie banner and a Cookie Policy
  4. Update your Privacy Policy and/or Terms & Conditions

The above integrations can be ordered with the form below.


E-Mail Marketing, Newsletter & Contact forms

Under GDPR, customers must explicitly opt-in to having their details stored and understand what they are being used for. Under the new regulations, consent is now also defined to require an obvious and positive action to opt-in. Please note that information from contact forms and e-mail subscriptions is stored and saved on your Umbraco CMS. 

Screen Shot 2018-05-04 at 16.02.49.png
 

Cookie Banner

Positioner suggests adding a cookie notification bar upon entrance to your website. There are three different options for types of consent.

Please consult this link for more information: https://cookieconsent.insites.com/documentation/compliance

Screen Shot 2018-05-04 at 16.12.34.png

 

Privacy Policy Updates

The Privacy Policy on any website should provide information about what data you are collecting about website users (either through cookies, freely provided by the user, or through other means) and be transparent in explaining what is being done with this information.

We would always advise that the Privacy Policy of your website be reviewed by legal counsel to ensure this meets with new regulations.

Positioner suggests checking which tracking tools are activated on your website, as these have to be mentioned in your Privacy Policy.


To find out which tools are activated on your website we suggest using the following tool: https://www.cookiebot.com/

Please note that Positioner cannot guarantee that the tool provides the accurate information and therefore rejects any legal liability. 


 

Additional notes

CMS Umbraco
Please note that, for all contact forms filled out on the website as well as when signing in for the newsletter, all entered information is stored and saved on your Umbraco CMS.

CDN
If you use CDN, please find all relevant information here: https://www.cloudflare.com/gdpr/introduction/. Positioner will send you a new agreement for the use of CDN within the next weeks.

Web-booking Engine, Voucher Tools & Co
If you use other web services like a web-booking engine, voucher tools, table reservation services, online shops, HR solutions or similar, please contact your partner directly as Positioner cannot take any action or offer any support on 3rd party services.