At Reservio, we prioritize your privacy and data security. Our platform complies with the General Data Protection Regulation (GDPR), ensuring that all data collected, processed, and stored is handled securely and transparently. This guide explains GDPR compliance, its impact on your business, and how Reservio helps you stay compliant.
What is GDPR?
The GDPR is a regulation enforced by the European Union to protect personal data and privacy. It applies to businesses that process personal data of individuals within the EU, regardless of where the business is located.
Key GDPR principles include:
Transparency: Inform users about how their data is collected and used.
Data Minimization: Only collect data necessary for the intended purpose.
Consent: Obtain explicit consent before collecting personal data.
Security: Protect data against unauthorized access or breaches.
How GDPR Affects Your Business
Responsibilities Under GDPR:
Obtain Explicit Consent: Ensure that clients consent to their data being collected and processed. This includes adding clear consent forms on your booking website.
Data Access and Portability: Allow clients to view, edit, or request deletion of their personal data.
Data Breach Notification: Inform affected users and relevant authorities within 72 hours of identifying a data breach.
Maintain Transparency: Clearly communicate how client data is collected, stored, and used.
Rights of Your Clients:
Clients have several rights under GDPR, such as:
Right to Access: They can request a copy of their personal data.
Right to Rectification: They can ask for corrections to their data.
Right to Erasure: They can request data deletion, also known as the “Right to be Forgotten.”
This document serves purely as a general reference and is not intended to provide legal counsel. To ensure your business adheres to GDPR regulations, it’s essential to seek advice from a qualified legal expert.
How Reservio Helps You Stay Compliant
Reservio’s platform is designed to support your GDPR compliance efforts. Here’s how we help:
Transparent Data Collection
Reservio provides customizable consent forms for your booking website to ensure explicit client agreement.
We clearly outline data usage in our Privacy Policy.
Secure Data Management
Client data is stored securely with encryption protocols.
Access to data is restricted and monitored.
Client Data Requests
The Reservio dashboard allows you to access, edit, or delete client data upon request.
Clients can directly contact you or Reservio for data-related queries.
Regular Updates
We monitor changes in GDPR requirements and update our practices and policies accordingly.
Notifications are sent for major updates impacting your business.
Steps to Enhance GDPR Compliance with Reservio
Set Up Consent Forms: Add clear and simple consent options on your booking website.
Train Your Team: Educate your staff about GDPR principles and how to handle client data requests.
Regularly Review Policies: Familiarize yourself with Reservio’s privacy policies:
If your business operates in Brazil or processes data of Brazilian individuals, compliance with the Lei Geral de Proteção de Dados (LGPD) is also required. While this guide focuses on GDPR, please refer to our LGPD Compliance Guidefor specific requirements and recommendations to align with Brazilian data protection laws.