Children of the 80's - Hard Rock Hotel Ibiza & Tenerife

The personal data protection policy of Ushuaïa Entertainment SL is based on the following principles:

1. Data Protection by Design

Ushuaïa Entertainment SL applies, both at the time of determining the means of treatment and at the time of treatment itself, appropriate technical and organisational measures, such as pseudonymisation, designed to effectively apply data protection principles, such as data minimisation, and to integrate the necessary safeguards in the treatment, in order to comply with the requirements of the Regulation and protect the rights of the interested parties.

2. Data Protection by Default

Ushuaïa Entertainment SL applies the appropriate technical and organisational measures in order to guarantee that, by default, only the personal data that is necessary for each of the specific purposes of the processing is processed. This obligation applies to the amount of personal data collected, the scope of its processing, its retention period and its accessibility. In particular, such measures shall ensure that, by default, personal data is not made accessible, without the intervention of the individual, to an indefinite number of natural persons.

3. Data Protection Life Cycle

The measures that guarantee the protection of personal data are applicable throughout the full life cycle of the data treatment.

4. Lawfulness of Processing

The processing of personal data is lawful if it meets any of the following conditions:

The interested party has given his/her consent to the processing of his/her personal data for one or more specific purposes.
The processing is necessary for the performance of a contract to which the data subject is a party, or for the application at the request of the data subject of pre-contractual measures.
The processing is necessary for compliance with a legal obligation applicable to the data controller.
The processing is necessary to protect the vital interests of the data subject or of another natural person.
The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Treatment is necessary for the satisfaction of legitimate interests pursued by the person responsible for the treatment or by a third party, provided that the interests or fundamental rights and freedoms of the interested party requiring the protection of personal data do not prevail over those interests, in particular when the interested party is a child.

5. Purpose Limitation

Personal data is collected for specified, explicit and legitimate purposes and is not further processed in a manner incompatible with those purposes. The further processing of personal data for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes shall not be considered incompatible with the original purposes.

6. Data Minimisation

Personal data is adequate, relevant and limited to what is necessary in relation to the purposes for which it is processed.

7. Accuracy

Personal data is accurate and, where necessary, kept up to date; all reasonable steps shall be taken to ensure that personal data that is inaccurate, having regard to the purposes for which it is processed, is erased or rectified without delay.

8. Storage Limitation

Personal data is kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data is processed. Personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes, subject to the implementation of the appropriate technical and organisational measures required by the Regulation to safeguard the rights and freedoms of the data subject.

9. Integrity and Confidentiality

Personal data is processed in a manner that ensures adequate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, by applying appropriate technical or organisational measures.

10. Information and Training

One of the keys to ensuring the protection of personal data is the training and information provided to staff involved in data processing. Throughout the life cycle of the data, the staff is informed and trained about their obligations in relation to compliance with the current data protection legislation.

Regulatory Framework

Ushuaïa Entertainment SL processes personal data in accordance with the following regulatory framework:

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation, GDPR).
Organic Law 3/2018, of 5 December, on the Protection of Personal Data and guarantee of digital rights (LOPDGDD).
Any other applicable regulation or legislation in the field of personal data protection.

Data Protection Officer

If you have any questions regarding this policy, or about data protection at Ushuaïa Entertainment SL, please contact our Data Protection department:

Email: data.protection@thenightleague.com

Phone: +34 971 313 811

Address: Avda. Bartolomé Roselló 18, 07800 Ibiza, Balearic Islands, Spain

DATA PROTECTION POLICY