Privacy Policy
This legal text gives you details of how we collect and process your personal data through the use of our website http://www.portofinomallorca.com, including any information you may provide us through the site when you contract a service , register for our newsletter or provide your data through the form enabled for that purpose.

By providing us with your data, we inform you that our services are not possible for those people who are prevented by law from giving consent, so when you send us the forms you guarantee that you have sufficient capacity to give consent.

Below we inform you about the data protection policy of: Quinto Sentido Hoteles & Resorts, SLU
1. Data controller.
Contact details of the person responsible:
Quinto Sentido Hoteles & Resorts, SLU, with CIF: B93611309 and registered office at C/ Puerta del Mar, 20-2 29005 Málaga (Málaga) and telephone: 971260464. Email: recepcion@portofinomallorca.com.

Commercial Registry of Malaga, Volume 5730, Book 4637, Folio 53, Section 8, Sheet MA145095, Entry 1 (05/08/18).

Quinto Sentido Hoteles & Resorts, SLU, is responsible for your data. (Hereinafter we or our).
2. What data do we collect?
The General Data Protection Regulation defines personal data as any information relating to an identified or identifiable natural person, i.e. any information capable of identifying a person. This would not include anonymous or percentage-based data.

The personal data that may be collected directly from the interested party will be treated confidentially and will be incorporated into the corresponding treatment activities, owned by Quinto Sentido Hoteles & Resorts, SLU

On our Website we may process certain types of personal data, which may include:
Identity data: name, surname and ID number.
Personal characteristics data: date of birth
Contact information: email and telephone.
Economic data: banking data
Marketing and communications data: preferences for receiving marketing communications from us and preferred means of communication.

We do not collect any data relating to special categories of personal data (those that reveal your racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership and information about your health, genetic or biometric data).

If we are required to collect personal data by law, or under the terms of a contract between us, and you refuse to provide that data, we may not be able to perform the contract or provide the service and you must notify us in advance.
3. How do we collect your personal data?
The means we use to collect personal data are:
Through the form on our website, through our contact email, by phone or post, when:
Request information about our services
Hire the provision of our services or products
You subscribe to any of our services or publications

To ensure the quality of our portal, we reserve the right to reject any registration request or to suspend or cancel a previously accepted registration if we believe that it does not comply with these requirements or any other law or regulation. If this occurs, we will try to explain the reasons for our decision, but we cannot commit to doing so in all cases.

Through technology or automated interactions: On our site we may automatically collect technical data about your equipment, browsing actions and usage patterns. This data is collected through cookies or similar technologies. If you would like more information, you can consult our cookie policy here .

Through third parties:
Google: Analytics data or search data. Outside the European Union.
4. Purpose and legitimacy for the use of your data.
The most common uses of your personal data are:
For the formalization of a contract between Quinto Sentido Hoteles & Resorts, SLU and you.
When you give your consent to the processing of your data.
When we need them to comply with a legal or regulatory obligation.
When necessary for our legitimate interest or that of a third party.

The User may revoke the consent given at any time by sending an email to recepcion@portofinomallorca.com or by consulting the section on exercising rights below.

Below we have attached a table in which you can consult the ways in which we are going to use your personal data and the legitimacy for its use, in addition to knowing what type of personal data we are going to process. We may process some personal data for some additional legal reason, so if you need details about it you can send an email to recepcion@portofinomallorca.com

Form Purpose Data type Legitimacy for its treatment
Contact The purpose is to manage contacts and requests for information received via the web. • Name
• Last names
• Email
• Phone
Consent of the interested party (Art. 6.1.a GDPR) Pre-contractual measures (Art. 6.1.b GDPR) Processing is necessary for the purposes of the legitimate interests pursued by the controller (Art. 6.1f GDPR)
Newsletter The purpose is to manage the data provided to send information about our services and promotions. • Email Consent of the interested party (Art. 6.1.a GDPR) Pre-contractual measures (Art. 6.1.b GDPR) Processing is necessary for the purposes of the legitimate interests pursued by the controller (Art. 6.1f GDPR)
Reservations The purpose is to manage reservations • Name
• Last names
• Email
• Phone
• DNI/NIE/Passport
• Birthdate
• Bank details
Consent of the interested party (Art. 6.1.a GDPR) Processing is necessary for compliance with a legal obligation to which the data controller is subject (Art. 6.1.c GDPR) Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the data subject's request prior to entering into a contract (Art. 6.1b GDPR) Processing is necessary for the purposes of the legitimate interests pursued by the data controller (Art. 6.1f GDPR)
My reservations The purpose is to manage reservations • Email Consent of the interested party (art. 6.1.a GDPR) Processing necessary for compliance with a legal obligation applicable to the data controller (art. 6.1.c GDPR)
Processing necessary for the performance of a contract to which the data subject is a party or in order to take steps at the data subject's request prior to entering into a contract (Article 6.1b GDPR)
Processing is necessary for the purposes of the legitimate interests pursued by the controller (Art. 6.1f GDPR)
Commercial communications: You will only receive communications if:
You requested information from us or made a contract with us for a product or service.
If you provided us with your data, by accepting the box enabled for this purpose in our form.
As long as you have not expressed your wish to stop receiving such communications.

We obtain your express consent before sending you any communication, and you may request at any time that we stop sending you communications by emailing recepcion@portofinomallorca.com.

When you choose to stop receiving our communications, your personal data will continue to be stored as a result of the contract you entered into in order to comply with legal requirements.

Purpose: We will only use your data for the purposes for which we collected it, unless we reasonably consider that we must use it for another reason, notifying you in advance so that you are aware of the legal reason for processing it and as long as the purpose is compatible with the original purpose.
5. How long will we keep your data?
They will be kept for the time necessary to fulfill the purpose for which they were collected and to determine the possible responsibilities that may arise from said purpose and the processing of the data. The provisions of the different regulations regarding the conservation period will apply, insofar as they are applicable to this treatment.

Subscriber data by email or form: From the moment the user subscribes until they unsubscribe.
6. Minors.
Quinto Sentido Hoteles & Resorts, SLU does not authorize minors under 14 years of age to provide their personal data through the means enabled on this website (completion of web forms for requesting services, contact or by sending emails). Therefore, persons who provide personal data using these means formally declare that they are over 14 years of age, and Quinto Sentido Hoteles & Resorts, SLU is exempt from any liability for failure to comply with this requirement.

If your child under the established age limit has provided personal information to Quinto Sentido Hoteles & Resorts, SLU , please contact us to request the exercise of your applicable rights.

In those cases in which the services offered by Quinto Sentido Hoteles & Resorts, SLU are intended for minors under 14 years of age, the means will be enabled to obtain the authorization of the parents or legal guardians of the minor.
7. Exercise of Data Protection Rights:
How to exercise these rights? Users may send a communication to the registered office of Quinto Sentido Hoteles & Resorts, SLU or to the email address recepcion@portofinomallorca.com, including in both cases a photocopy of their ID or other similar identification document, to request the exercise of the following rights:

Access to your personal data: You may ask Quinto Sentido Hoteles & Resorts, SLU if it is using your personal data.
To request rectification if they are not correct, or to exercise the right to be forgotten with respect to them.
If you request limitation of processing , in this case, they will only be kept by Quinto Sentido Hoteles & Resorts, SLU for the exercise or defense of claims.
To oppose its processing: Quinto Sentido Hoteles & Resorts, SLU will stop processing the data in the manner you indicate, unless for legitimate reasons or for the exercise or defense of possible claims, they must continue to be processed.
Regarding data portability : if you want your data to be processed by another company, Quinto Sentido Hoteles & Resorts, SLU will facilitate the portability of your data to the new controller.

You may use the templates made available to you by the Spanish Data Protection Agency to exercise your previous rights: Here
Filing a claim with the AEPD: If you consider that there is a problem with the way Quinto Sentido Hoteles & Resorts, SLU is processing your data, you may direct your claims to the corresponding supervisory authority, which in Spain is the Spanish Data Protection Agency.

We will ask you for specific information to help us confirm your identity and ensure your right to access your personal data (or to exercise any of the other rights set out above). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.

We will process all requests within the statutory time limit of one month. However, it may take longer than one month if your request is particularly complex. In this case, we will notify you and keep you updated.
8. Data communication: provision of services.
In the course of our work, we may need the help of third parties, who will only process the data to provide the contracted service, and with whom we have the corresponding measures in place to guarantee your rights:
Service providers that provide information technology and systems administration services.
Professional advisors including lawyers, auditors and insurers who provide banking, legal, insurance and accounting consulting services.

All data processors to whom we transfer your data will respect the security of your personal data and will treat it in accordance with the GDPR.

We only allow these managers to process your data for specific purposes and in accordance with our instructions. However, you can request a list of these companies that provide us with services, in compliance with transparency, by emailing: recepcion@portofinomallorca.com
9. Data Security.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, contractors and other third parties who have a business need to know such data. They will only process your personal data in accordance with our instructions and they are subject to a duty of confidentiality.

We have implemented procedures to deal with any suspected personal data breach and will notify you and the Supervisory Authority should a security breach occur, as regulated in the GDPR in its articles 33 and 34.