Privacy Policy

1. Introduction

Levellanch247 ("we", "our", "us") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect information about you when you use our website levellanch247.live and our hotel services.

This policy complies with the General Data Protection Regulation (GDPR) and applicable Finnish data protection laws.

2. Data Controller

Levellanch247
Mannerheimintie 1, Helsinki, Finland
Email: [email protected]
Phone: +358 40 123 4567

3. Information We Collect

We collect the following types of personal information:

3.1 Information You Provide:

• Full name, email address, phone number, and postal address
• Booking and reservation details including dates, room preferences, and special requests
• Payment information (processed securely through third-party payment processors)
• Communications you send to us via contact forms or email
• Guest preferences and loyalty programme information

3.2 Information Collected Automatically:

• IP address, browser type, and device information
• Pages visited, time spent on the website, and navigation patterns
• Cookies and similar tracking technologies (see Section 8)

4. How We Use Your Information

We use your personal data for the following purposes:

• Processing and managing your hotel reservations
• Communicating with you about your booking and stay
• Processing payments and preventing fraud
• Providing customer support and responding to enquiries
• Sending marketing communications (with your consent)
• Improving our website and services
• Complying with legal obligations
• Conducting guest satisfaction surveys

5. Legal Basis for Processing

We process your personal data on the following legal grounds:

• Contract Performance: Processing necessary to fulfil your hotel reservation
• Legitimate Interests: Improving our services and preventing fraud
• Legal Obligation: Compliance with applicable laws and regulations
• Consent: For marketing communications and non-essential cookies

6. Data Sharing

We may share your personal data with:

• Service Providers: Payment processors, email service providers, and IT support companies who process data on our behalf under strict data processing agreements
• Legal Authorities: When required by law or court order
• Business Transfers: In the event of a merger, acquisition, or sale of assets

We do not sell your personal data to third parties.

7. Data Retention

We retain your personal data for the following periods:

• Reservation and guest data: 7 years (for tax and legal compliance)
• Marketing data: Until you withdraw consent
• Website analytics data: 26 months
• Security logs: 12 months

8. Cookies

Our website uses cookies to enhance your browsing experience. Cookies we use include:

• Essential Cookies: Required for the website to function properly
• Analytics Cookies: Help us understand how visitors use our site
• Marketing Cookies: Used to deliver relevant advertisements (with consent)

You can control cookie preferences through your browser settings. Disabling certain cookies may affect the functionality of our website.

9. Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right of Access: Request a copy of the data we hold about you
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your personal data (subject to legal obligations)
• Right to Restriction: Request that we limit how we use your data
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing based on legitimate interests or direct marketing
• Right to Withdraw Consent: Withdraw consent at any time for consent-based processing

To exercise any of these rights, please contact us at [email protected].

10. Data Security

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include SSL/TLS encryption, access controls, regular security audits, and staff training.

11. International Transfers

Your data is primarily processed within the European Economic Area (EEA). Where data is transferred outside the EEA, we ensure appropriate safeguards are in place in accordance with GDPR requirements.

12. Children's Privacy

Our services are not directed to children under 18 years of age. We do not knowingly collect personal data from children.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or prominent notice on our website. The date at the top of this policy indicates when it was last revised.

14. Complaints

If you are unhappy with how we handle your personal data, you have the right to lodge a complaint with the Finnish Data Protection Ombudsman (Tietosuojavaltuutettu) at tietosuoja.fi.

15. Contact Us

For privacy-related questions or to exercise your rights, contact our Data Protection team:

Levellanch247 Data Protection
Mannerheimintie 1, Helsinki, Finland
Email: [email protected]