PRIVACY POLICY
In compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data ( GDPR ), as well as in compliance with Organic Law 3/2018 of 5 December on the Protection of Personal Data and Guarantee of Digital Rights ( LOPDGDD ), we inform you below about the following aspects related to the processing of personal data through this environment:
1.- WHO IS RESPONSIBLE FOR THE PROCESSING OF PERSONAL DATA?
The personal data collected from CLIENTS who contract the use of the Platform will be processed by Check-In Scan , SL, (hereinafter, “ Check-In Scan Tax Identification Number (NIF): B-93578862, registered in the Mercantile Registry of Malaga, Volume 5673, Folio 180, Book 4580, Page MA-142322; registered office: Bulevar de la Cala, Local 1, La Cala de Mijas, CP 29649, Mijas (Malaga); telephone : +34 951 82 98 60; Email: info@checkinscan.com . For the purposes of this Privacy Policy, “CLIENT” means the legal entity and/or professional who contracts the services of the Platform as a host, in order to manage reservations and the Check-In process at their accommodations.
Likewise, Check-In Scan will act as the Data Controller in cases where the User subscribes to our newsletter, publishes a review and/or uses our contact channels to send us an inquiry or request for information.
For its part, the personal data of Guests will be processed by Check-In Scan Data Processor , on behalf of and for the account of the Client (host), who acts as the Data Controller. Check-In Scan only processes Guests' personal data for the management of the following processes, on behalf of and for the account of the Client and following the Client's instructions within the framework of providing the following services:
In relation to these services, Check-In Scan assumes compliance with its obligations as Data Processor, based on the provisions of Article 28 GDPR and regulates these obligations with the Client in the corresponding Data Access Agreement.
2.- WHAT IS THE PURPOSE OF PROCESSING THE COLLECTED PERSONAL DATA?
Depending on the different forms, services or content you access, Check-In Scan may process personal data for the following purposes:
The personal data you provide through the contact form or other communication channels will be used solely to address your inquiry or request for information. Regarding the use of instant messaging services (WhatsApp), we recommend using it for general information exchange. For sending any documents containing personal information, please use our Platform and our corporate email address. Check-In Scan is deeply committed to your privacy and wants to ensure maximum confidentiality in the processing of your information. Therefore, we have established specific channels for collecting and processing personal data, which are subject to rigorous privacy controls.
The information you provide during the registration and service contracting process will be used to manage clients and registered users, allowing you to access your profile and manage the services provided through our Platform. By accessing the registered user area, you can manage your properties, access your bookings, and view/download, if applicable, your guest registration book. Additionally, you can add the details of your agents (trusted individuals who can check guests into your properties). Once added, they will receive an email with instructions on how to use the application. You must ensure you have a legal basis for adding these agents' personal data to the platform.
Additionally, we may use your information for the following purposes:
Check-In Scan 's legitimate interest in improving our internal processes and tailoring our services to customer experience and satisfaction. However, if you prefer that we do not process your information for these purposes, simply let us know at info@checkinscan.com .
In cases where you have expressly authorized us, or if we have a contractual relationship (Clients) and you have not objected, we will use your identification and contact information to send you personalized information about our services and products related to technology management in the tourism accommodation sector. However, in each communication we send you, we will give you the option to unsubscribe through a quick, easy, and free process.
In cases where you, as a Client, have directly submitted a review of our services, that review may be published on our website and corporate platforms to provide information about customer satisfaction with the service provided. Additionally, we may publish reviews submitted through third-party platforms (e.g., Google). In such cases, we simply reproduce the information provided by the user in those platforms, and these reviews are not verified by Check-In Scan .
3.- WHAT IS THE BASIS THAT LEGITIMIZES THE TREATMENT?
The legal basis for the processing of personal data collected by Check-In Scan is based on different legal precepts, depending on the context of the collection and processing:
The legal basis for processing your data when you contact us to request information or submit a query may be, in the case of clients, the execution of the contractual relationship between the parties or, in the case that we do not maintain a contractual relationship, the legitimate interest in effectively addressing the requests received.
The basis that legitimizes the processing is the execution of the contractual relationship between the parties.
In the case of registered users/customers, the legal basis for processing data for sending commercial communications is the legitimate interest of Check-In Scan to offer information related to services that have been the subject of an initial contract, as recognized in Article 21.2 of the LSSICE (Spanish Law on Information Society Services and Electronic Commerce). However, if you do not wish to receive these types of communications, you can let us know by sending an email to info@checkinscan.com . Furthermore, in each marketing communication we send, we will provide you with the option to unsubscribe quickly, easily, and free of charge.
In cases where there is no contractual relationship between the parties, commercial communications will only be sent if the interested party has given their explicit consent (for example, if you expressly subscribe to our newsletter). As in the previous case, we will give you the option to withdraw your consent at any time by providing an unsubscribe option in each commercial communication.
Reviews submitted directly by our customers will be processed based on their consent for publication. Customers may withdraw their consent at any time, without affecting the lawfulness of processing prior to withdrawal. For reviews obtained from third parties (e.g., Google), the legal basis for processing is Check-In Scan in providing information about customer opinions regarding the services offered. In any case, customers may request the removal of their review from our website at any time by sending an email to info@checkinscan.com .
4.- SOURCE OF THE DATA
Below, we explain the different ways of obtaining personal information and some examples of how that information is used.
Information that you provide to us directly
We collect personal information that you provide to us through our website, by email, by telephone, when you request information, ask for a quote, hire a service, when you fill out a form or complete a satisfaction survey.
Information we collect from your visits to our website
In cases where the User has expressly accepted the use of cookies not essential for browsing, we may collect the User ID and anonymous aggregate statistics of visits to our website. The information we collect includes the Internet Protocol (IP) address of the device being used, the browser being used, the operating system, the date and time of access, the Internet address of the website from which the User accessed our website, and how the User interacts with our website to understand website loading times, the number of visits to different sections, and the type of information that most attracts visitors. This also helps us identify whether the website is functioning correctly, and if we detect any malfunctions or errors, to correct them and improve the performance of our website, so that we can offer a better service to all users. This information is collected through cookies; for more information, please see our cookie policy.
Social networks
Check-In Scan is available on most social media platforms and is another way we can interact with you. However, the information you provide through social media will not be used outside of this context unless we have obtained your explicit consent. These social media platforms likely have their own privacy policies, which explain how they use and share your personal information. We recommend carefully reviewing these privacy policies before using these social media platforms to ensure you are comfortable with how your personal information is collected and shared.
5.- WHAT DATA COMMUNICATIONS CAN OCCUR?
The processing of personal information collected as Data Controller does not involve transfers of data to third parties, except in cases where it is necessary by legal imperative to make it available to public administrations, judges and courts, within the framework of the powers that these bodies have legally attributed.
Additionally, we collaborate with suppliers who provide us with support in certain processes, such as programming, technical support, data storage, financial services, and/or auditing, among others. These entities only access the information necessary to provide these services and are legally obligated to maintain the strictest confidentiality regarding your personal data, prohibiting its use for any other purpose. In all cases, we require the companies/collaborators with whom we share your personal information to apply the same level of data protection as we do.
We also want to inform you that no international data transfers take place, except for information obtained through certain analytical and advertising cookies. For more information, please see our Cookie Policy .
6. HOW LONG IS THE INFORMATION KEPT?
The retention period for the information may vary depending on the type of processing:
The information will be processed for the time necessary to address the User's inquiry/request. Afterward, the information will be blocked for the duration of the statute of limitations for legal action, and once that period has expired, it will be deleted.
The information will be kept for the time necessary to manage the provision of services. Afterwards, the data will be securely stored for the duration of the statute of limitations for legal actions, and once this period has expired, the data will be deleted.
In the case of Clients, information will be processed for marketing purposes as long as the contractual relationship remains in effect and provided the Client does not object to the processing of their data for these purposes. In cases where we do not have a contractual relationship with you, we will only use your data for marketing purposes as long as you have given us your explicit consent and until you request to unsubscribe from receiving further communications. In that case, we will delete your data and add you to our exclusion list to ensure that no further marketing communications are sent.
Reviews will remain published on the website until the user requests their removal. Check-In Scan also reserves the right to remove any content that may be illegal or that may infringe upon the rights of third parties.
7. HOW DO WE PROTECT YOUR DATA?
Check-In Scan uses state-of-the-art technologies to protect your data and personal information. Our website is stored on secure servers protected against the most common types of attacks. Check-In Scan has adopted technical and organizational measures to guarantee the security of personal data and prevent its alteration, loss, unauthorized processing, or access, taking into account the current state of technology, the nature of the data stored, and the risks to which it is exposed.
When you register on our Platform, please remember that your username and password must remain private and non-transferable. If you suspect any unauthorized access to the restricted area, please notify us immediately at info@checkinscan.com so that we can take the necessary steps to ensure the confidentiality, security, and integrity of your personal data .
8.- WHAT ARE YOUR DATA PROTECTION RIGHTS?
The General Data Protection Regulation (GDPR) recognizes various rights for data subjects regarding the processing of their personal data. Below, we inform you about each of these rights and indicate the channels through which you can submit the corresponding request, if applicable:
| TYPE OF RIGHT | DESCRIPTION |
| ACCESS | You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and access to the following information: the purposes of the processing; the categories of data being processed; the recipients or categories of recipients to whom the personal data have been or will be disclosed; where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period |
| RECTIFICATION | You have the right to obtain the rectification of inaccurate personal data concerning you. Furthermore, taking into account the purposes of the processing, you have the right to have incomplete personal data completed, including by means of providing a supplementary statement. To do so, you must indicate in your request which data you are referring to and the correction that should be made; you must also include, where necessary, supporting documentation demonstrating the inaccuracy or incompleteness of the data being processed. |
| LIMITATION
|
You have the right to obtain the restriction of the processing of your data when any of the following conditions are met:
|
| PORTABILITY | You have the right to receive the personal data concerning you, which you have provided to the Company, in a structured, commonly used, and machine-readable format, and to transmit those data to another controller without hindrance from the Company, where the processing is based on consent and is carried out by automated means. When exercising your right to data portability, you have the right to have your personal data transmitted directly from one controller to another, where technically feasible. This right to data portability does not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority. The right to data portability does not extend to data that the Company has inferred from data derived directly from the use of the services provided. |
| OPPOSITION
|
You have the right to object to the processing of your personal data at any time, including profiling. If you exercise this right, the Company will cease processing your personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defense of legal claims. |
| AUTOMATED DECISIONS | The data subject shall have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects him or her. |
| CHANNELS TO EXERCISE THESE RIGHTS: | |
| To exercise any of the rights indicated in the previous sections, the User may send an email to privacy@checkinscan.com or send a letter to the following address: Bulevar de la Cala, Local 1, La Cala de Mijas, CP 29649, Mijas (Málaga).
In cases where you believe that your data protection rights have been violated, especially when you have not obtained satisfaction in the exercise of your rights, you can file a complaint with the Spanish Data Protection Agency ( www.aepd.es ) or, where appropriate, with the competent Data Protection Supervisory Authority. |
|
Likewise, Check-In Scan will assist the Client in providing responses to Guests regarding the exercise of rights of access, rectification, erasure, opposition, limitation of processing, data portability, and the right not to be subject to automated individual decisions (including profiling), when the information necessary to make these rights effective is in the possession of Check-In Scan, but in any case, the Client is responsible for directly addressing any requests that Check-In Scan may receive from Guests.
9.- TRUTHFULNESS AND UPDATING OF THE INFORMATION PROVIDED
All information provided by the User must be truthful and accurate. To this end, the User must ensure the authenticity of all data provided when completing the corresponding forms. To register and/or complete any form, the User must provide all data marked as mandatory, guaranteeing that the data provided is accurate and truthful. Any changes to the User's data must be reported to Check-In Scanas soon as possible. In any case, the User will be solely responsible for any false or inaccurate statements made and for any damages caused to Check-In Scanor third parties as a result of the information provided.
10. CHANGES TO THIS PRIVACY POLICY
Check-In Scan reserves the right to modify this Privacy Policy to adapt it to new legislation or case law, as well as industry practices or changes in the processing of personal data. In such cases, Check-In Scan will announce the changes on this page a reasonable time before they take effect.
Date of last update: May 2, 2025
