en
Español Español English English
Booking
Choose your experience
Stay
Booking
Taste
Booking

PRIVACY POLICY

DATA CONTROLLER

PALLADIUM HOTEL GROUP (a group of companies owning hotels under the management of PALLADIUM GESTIÓN, S.L.U. or using the systems owned by PALLADIUM GESTIÓN, S.L.U.) is particularly committed to the protection of personal data of Users of the website services and its clients. Through this Privacy Policy (or Data Protection Policy), the owner of this site, PALLADIUM GESTION, S.L.U., informs Users about the uses of the personal data collected so that they can freely and voluntarily decide whether to provide the requested information.

PALLADIUM GESTION, S.L.U. reserves the right to modify this Policy in order to adapt it to legislative updates, jurisprudential criteria, industry practices, or the company’s interests. Any modifications will be announced in advance so that Users are fully informed of its content.

The data controller is PALLADIUM GESTION, S.L.U., with registered address at: Avenida Bartolomé Roselló, 18, 07800 Ibiza (Balearic Islands). The processing activities carried out on our websites and during clients’ stays in our hotels involve the processing of personal data by the group of entities linked to PALLADIUM GESTIÓN, S.L.U. More information about all these entities can be found at the following link.

PURPOSES

The data controllers may process your personal data for the following purposes:

  1. Management of accommodation reservations at any of the hotels managed by PALLADIUM GESTION, S.L.U., which includes:
  • Attending to your reservation request made via our website, Call Center, or through a third party.
  • Handling your special requests and preferences associated with the reservation entered in the observation field of our online form.
  • Sending confirmation of the guaranteed reservation with a credit card.
  • Responding to your contact requests to manage, cancel, or modify your reservation via the “Reservation Contact” form or our Call Center.
  1. Management of the stay at all our hotels to provide the best service and attention possible. For this purpose, the data controllers may:
  • Attend to your needs, special requests, and preferences expressed during your stay at the hotel.
  • Take into account products and services you have booked and used to offer products and services that may be of interest to you, based on statistical data we have generated.
  • Analyze data on personal preferences, interests, and requests made to hotel staff, based on information collected during your stay, to make your current and future stays in PALLADIUM HOTEL GROUP hotels optimal through personalized service.
  • Send communications via electronic means—including email and messaging applications—to offer a personalized stay.
  1. Management of “Online Check-in”: the data controllers may send an email allowing the User to voluntarily complete initial check-in procedures online.
  2. Management of information and contact requests through the channels and/or specific forms provided, which includes:
  • Handling your contact requests with PALLADIUM HOTEL GROUP.
  • Responding to your inquiries about PALLADIUM HOTEL GROUP activities.
  • Managing subscription and, if applicable, unsubscription from the PALLADIUM COMMUNITY Newsletter to send you updated information about PALLADIUM HOTEL GROUP activities, products, and services, as well as exclusive promotions.
  • Sending commercial communications by any means (including electronic) to inform you about news, offers, events, and our products or services that may be of interest to you.
  1. PALLADIUM GESTION S.L.U. manages the “Palladium Rewards” loyalty program. This includes:
  • Managing subscription and, if applicable, unsubscription in the “Palladium Rewards” program, as well as administering the accumulation and redemption of points within the program.
  • Managing reservations made through the “Palladium Rewards” program website at any of our hotels.
  • Providing information and, if applicable, registration in raffles organized by or involving the data controller.
  • Sending communications related to your account, including points balance, card category or level, notifications, and other relevant information about your account status.
  1. Gathering customer feedback through satisfaction surveys.
  2. Providing information and, if applicable, registration in congresses or events organized by or involving the data controller.
  3. Managing employment applications, including collecting CVs to contact applicants and carry out a selection process.
  4. Sending “abandoned cart” reminders: the data controller may send communications to remind Users of unfinished bookings or reservations, considering the information entered on the website. This will only occur if the User has expressly consented.
  5. PALLADIUM GESTIÓN S.L.U. is responsible for managing the “Palladium Hotel Group” app, which implies processing Users’ personal data resulting from its use and interaction. Through the app, Users can:
  • Obtain information to facilitate their stay, including services, contact information, dining options, hotel features, and facilities.
  • Make and manage accommodation reservations at Palladium Hotel Group hotels.
  • Book services offered directly by the hotel.
  • Book services provided by external companies.
  • Manage their Palladium Rewards account if they choose to log in using their loyalty program credentials. The Palladium Rewards Privacy Policy can be consulted here: https://www.palladiumhotelgroup.com/es/loyalty/politica-de-privacidad-palladium-rewards.

LEGAL BASIS

The data controller is authorized to process your personal data based on:

  • Execution of a service contract under Article 6.1.b) of the General Data Protection Regulation (GDPR) for formalizing and executing accommodation bookings, hotel services or third-party services linked to the stay, as well as contacting via electronic means—including email and messaging applications—to facilitate your stay at our hotels.
  • Explicit consent provided by you in the “Palladium Rewards” Program, pursuant to Article 6.1.a) GDPR, as well as execution of a service contract under Article 6.1.b) GDPR.
  • The legitimate interest of PALLADIUM GESTION, S.L.U. and other hotel-owning companies under its management, pursuant to Article 6.1.f) GDPR, regarding data related to stays and experiences. Proportionality and relevance of this interest have been evaluated against users’ rights.
  • Explicit consent given by you where requested for one or more specific purposes, as per Article 6.1.a) GDPR. Users can withdraw consent at any time without affecting the legality of processing based on prior consent.
  • Compliance with a legal obligation imposed on the data controller under Article 6.1.c) GDPR, when applicable legislation requires specific personal data processing.

DATA ORIGIN

Personal data come from reservations made by the User, forms completed and provided by the data controller, or from user experience collected during stays in hotels managed by PALLADIUM GESTION, S.L.U.

If data do not come directly from the User, they originate from reservations made via a third party (e.g., travel agency or booking platform).

RETENTION PERIOD

Personal data provided will be retained for the period necessary to comply with legal obligations or respond to possible claims within the statute of limitations for civil actions.

Additionally, to improve your experience during future stays, we will retain historical visit data for seven years, unless you request otherwise, in which case legally required retention periods will apply. For full retention details, contact our Data Protection Officer.

SECURITY MEASURES

PALLADIUM HOTEL GROUP has implemented organizational and technical measures to protect confidentiality, integrity, and availability of information. Measures include:

  1. a) Data blocking procedures per Article 32 of the Organic Law 3/2018 on Data Protection and Digital Rights.
  2. b) Security breach management procedures to detect, resolve, and notify incidents affecting data processing.
  3. c) Pseudonymization and encryption procedures to maintain maximum confidentiality of Users’ data.
  4. d) Procedures to restore availability and access to personal data in case of technical or physical incidents.

PALLADIUM HOTEL GROUP regularly evaluates the effectiveness of technical and organizational measures to ensure processing security.

DATA RECIPIENTS

Personal data may be shared with:

  • Third parties legally required to receive information, such as public authorities, to comply with legal requirements (art. 6.1.c GDPR).
  • Owners of hotels within PALLADIUM HOTEL GROUP to execute reservations based on contracts or pre-contractual measures (art. 6.1.b GDPR), show past preferences, and provide personalized services based on legitimate interest (art. 6.1.f GDPR), and, if applicable, consent under the “Palladium Rewards” program.

Data controllers do not sell or commercialize personal data; service providers with data access act as data processors. Some may be outside the European Economic Area, in which case international transfers comply with Articles 44 and following GDPR. For transfers to US providers, standard contractual clauses approved by the European Commission are used.

DATA SUBJECT RIGHTS

Data subjects may exercise the following rights under GDPR:

  • Access
  • Rectification of inaccurate or incomplete data
  • Erasure
  • Restriction of processing
  • Objection to processing
  • Data portability
  • Withdraw consent, if applicable

Rights may be exercised by sending a written request to: Avenida Bartolomé Roselló, 18, 07800 Ibiza (Balearic Islands) or via email rgpd@palladiumhotelgroup.com. Identity verification may be required.

If you believe your data protection rights have been violated, contact our Data Protection Officer at dpo@palladiumhotelgroup.com, or file a complaint with the relevant authority, in Spain with the Spanish Data Protection Agency (www.aepd.es).

Updated: April 14, 2025
 

About our use of Utiq technology

Utiq technology is provided by Utiq SA/NV, a European advertising technology company working with partner telecom operators (see the list here). Utiq allows websites like ours to perform digital marketing activities.

We use Utiq technology on this website. If you consent, we will use it to recognize you as the same user and collect information on your website usage to offer personalized content and ads or analyze your interests based on granted consent. If you consent to Utiq on other websites (list here), we may collect information across those websites.

Utiq is not enabled by default and activates only upon your consent. It is also only available to customers of partner telecom operators.

We act as joint controllers with Utiq for certain processing operations. As part of this agreement:

  • We collect your consent regarding Utiq technology, including processing by Utiq and your telecom operator.
  • We provide access to a dedicated link at the bottom of our website to give information on Utiq and manage it.
  • Utiq provides a privacy portal (“consenthub”) to exercise your data protection rights and manage your Utiq consents in one place.
  • Utiq acts as a common contact point for questions or requests regarding Utiq technology.

You can view and withdraw all Utiq consents given to any participating website through the Utiq privacy portal (“consenthub”).

You can also withdraw your Utiq consent for this specific website here.

For more information about Utiq technology, see the Utiq privacy policy.