1. General - what is this privacy policy for?

1.1. The website available at the address c-hotels.be (hereinafter referred to as the "Website") is operated by and is the property of Flow Hospitality Group, with company number BE0641.997.666 and with registered office at Van Iseghemlaan 105, 8400 Ostend (hereinafter also referred to as the "Controller", "we" or "us").

1.2. The purpose of this privacy policy is to inform you about the processing of your personal data on or through the Website. This privacy policy is intended to ensure a proper and transparent processing of your personal data.

We strongly recommend that you read this privacy policy carefully.

1.3. This privacy policy only applies to the processing of your personal data on or through the Website by the Controller and/or by processors (e.g. external service providers or subcontractors) who process your personal data on our behalf and have entered into a processing agreement with us to that end.

Furthermore, this privacy policy does not in any way cover the privacy policy of other websites or applications referred to through (even permitted) hyperlinks on the Website or of companies or entities that advertise our services.

1.4. We are responsible for the processing of your personal data. As the controller, we take all appropriate technical and organisational measures to ensure that the processing complies with Regulation (EU) 2016/679 of 27 April 2016 (hereinafter "GDPR"). Our appointees or employees who have access to your personal data are equally obliged to comply with the GDPR.

1.5. This privacy policy is made available to you electronically and can be consulted at any time under the heading 'Privacy Policy' on the Website. In case of requests or additional questions you can always send an e-mail to: privacy@flowhg.com. We will inform you within one month after receipt of your request or question about the action taken.

1.6. Controller reserves the right to amend this privacy policy at any time. This privacy policy was last amended on 19 October 2021.

1.7. Please note that the uploading or posting on the Website of information relating to other persons is always subject to the express consent of the person(s) concerned.

2. Who are we and how can you contact us?

Legal form: NV

Company name: Flow Hospitality Group

Trade name: C-Hotels

Registered office: Van Iseghemlaan 105, 8400 Oostende

VAT number: BE 0641997666

Phone number: 059 80 66 11

E-mail address: privacy@flowhg.com

Hyperlink(s) Website: c-hotels.be

3. Contact details Data Protection Officer

Tomas S. -privacy@flowhg.com - 059 80 66 11

4. For what purposes do we process your personal data?

We process your personal data provided by you on or through the Website only for the purposes of:

Direct marketing.

Statistical purposes.

5. What is the legal basis for processing your personal data?

5.1. We process your personal data if: the data subject has consented to the processing of their personal data for one or more specific purposes.

5.2. In any event, from the moment you have agreed to our privacy policy - by clicking the ok button prior to using the Website and/or processing personal data on or through the Website - you give us your free, specific, informed and unambiguous consent to process your personal data and you expressly agree to the manner in which these are processed as set out in this privacy policy.

6. What personal data do we process?

6.1. On or through the Website, we only process the following personal data to the extent that you provide it: Identification data .

6.2. We also process, inter alia, the following data: device data, log file data such as IP address, browser and operating system, the external website that referred you and the pages you visited on the Website (and the date and time of the pages you visited). This data is processed automatically (even without any registration) solely for statistical purposes and with a view to further improving the Website.

7. Who else receives and/or processes your personal data (besides the Processing Manager)?

Your personal data are also processed on our behalf by our IT supplier SKINN. This processing is regulated by a processor's agreement that we have concluded with them.

The mailing system Revinate also uses your mail address to send mailings.

8. Do we transfer your personal data to (companies or entities in) non-EU countries ?

No

9. Where, how and how long do we keep your personal data?

9.1. Your personal data is stored on a secure server of Combell and Revinate.

9.2. We will not keep your personal data longer than necessary to achieve the purposes set out in article 4. In this respect, we may keep your personal data for some time. In any case, we will not keep your personal data longer than the retention period.

10. What are your rights?

10.1. You have the right to request us to:

- access to your personal data;

- correction (rectification) or deletion (erasure) of your personal data;

- restriction of processing relating to you.

10.2. You have the right to object to the processing of your personal data. You may object, at any time and free of charge, to the processing of your personal data for direct marketing purposes.

10.3. You have the right to have your personal data transferred to another controller.

10.4. If the processing of your personal data is based on your consent, you have the right to withdraw your consent at any time. However, the withdrawal of your consent shall not have retroactive effect and shall not affect the lawfulness of the processing based on your consent before its withdrawal.

10.5. You have the right to lodge a complaint with the Privacy Commission / Data Protection Authority.

10.6. The exercise of the above rights is subject to the requirements and conditions set out in the GDPR.

10.7. To exercise the above rights, you may simply send us a request at

privacy@flowhg.com where you must provide adequate identification.

11 What are our obligations?

11.1. We will take all appropriate measures to ensure a level of security appropriate to the risks for and in protecting your personal data.

11.2. We keep a processing register which also describes the (category of) processing of your personal data.

11.3. [If applicable - We have appointed a Data Protection Officer who informs and advises us on our obligations under the GDPR, monitors compliance with the GDPR and is the point of contact with the competent privacy authorities].

11.4. We cooperate with the competent privacy authorities (upon their request).

11.5. We will, where necessary and/or required, report security incidents or data breaches (including unlawful processing, loss, unavailability, destruction, damage or unauthorised dissemination of your personal data) immediately to the Privacy Commission / Data Protection Authority and no later than 72 hours after becoming aware of them.

In case such breach is likely to cause a high risk to your rights, and under the conditions set out in the GDPR, we will also notify you.

In case you should become aware in any way of such breach in relation to your personal data or those of others, please contact us at the e-mail address privacy@flowhg.com.

11.6. If we were to use certain new technologies or applications to process your personal data, which would be likely to pose high data protection risks to you, we will, under the conditions stipulated in the GDPR, carry out a so-called "Data Protection Impact Assessment" (DPIA) and, if required, consult the Privacy Commission / Data Protection Authority in advance in this regard.

12. Cookies

12.1. The Website uses "cookies" in order to improve the user experience and for the collection of statistics among the visitors to the Website. Cookies are small data files stored by the browser on your computer when you consult a website and facilitate the interaction between the visitor and the Website. Cookies do not contain any personal data.

12.2. From the moment you have agreed to our privacy policy, including cookie policy, by ticking the box description prior to using the Website, you give us free, specific, informed and unambiguous permission to use cookies on the Website.

The following types of cookies are used on the Website:

i. Temporary cookies: these cookies are deleted as soon as you close your browser and are indispensable for navigating the Website.

ii. Permanent cookies: these cookies are used to pass information to Combell's web server each time you visit the Website and are stored on your computer for a longer period of time. These cookies are activated each time you visit the Website.

iii. Functional cookies: these cookies are used in order to allow the Website to function properly.

iv. Non-functional cookies: these cookies may be used for, among other things, statistical purposes.

12.3. You have the right, upon request and free of charge, to oppose the previously permitted use of the abovementioned cookies. You can send this request at any time to privacy@flowhg.com.

12.4. The Website uses Google Analytics, a web analysis service provided by Google Inc. ("Google"). Google Analytics uses cookies to help the Website analyse how users use the site. The information generated by the cookie about your use of the Website (including your IP address) will be transmitted to and stored by Google on servers in the United States . Google will use this information to track how you use the Website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. Google will not associate your IP address with any other data held by Google.

12.5. The use of cookies can be disabled through your computer or other device (settings of your web browser). However, it is possible that the Website will no longer function correctly as a result.

Questions? Feel free to contact us: privacy@flowhg.com