GDPR Terms & Conditions

1. Introduction

This Privacy Policy explains how Jahorina-STAY.com collects, uses, stores, and protects personal data when you use our website, contact us, or make a booking.

We respect your privacy and aim to process your personal data lawfully, fairly, transparently, and only for clearly defined purposes. These principles reflect the GDPR’s core rules for personal data processing, including lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, security, and accountability.

2. Who Controls Your Data

For the purpose of this Privacy Policy, the data controller is:

Jahorina-STAY.com
Website: jahorina-stay.com
Email: [insert contact email]
Business details: [insert company/legal entity details]

The data controller determines why and how personal data is processed.

3. What Personal Data We Collect

We may collect the following personal data:

• Full name
• Email address
• Phone number
• Country or city of residence
• Booking dates
• Number of guests
• Accommodation preferences
• Special requests
• Payment confirmation or deposit-related information
• Communication history
• IP address and website usage data
• Cookie and analytics data, depending on your consent settings

We do not intentionally collect more personal data than necessary for the booking, communication, security, and website functionality purposes described in this policy.

4. Why We Collect Personal Data

We collect and process personal data for the following purposes:

• To respond to your inquiries
• To process booking requests
• To confirm reservations
• To arrange accommodation details
• To communicate important information before arrival
• To process deposit/payment-related confirmations
• To provide customer support
• To arrange optional services, such as transport or food delivery
• To improve website performance and user experience
• To comply with legal, accounting, tax, or security obligations
• To prevent misuse, fraud, or unauthorized website activity

5. Legal Basis for Processing

Depending on the situation, we process your personal data based on one or more of the following legal bases:

• Contractual necessity — when data is needed to process or manage your booking.
• Legitimate interest — when data is needed to operate, protect, and improve the website and booking service.
• Legal obligation — when we must keep or share certain information according to applicable laws.
• Consent — when you agree to cookies, marketing communication, or optional data processing.

GDPR requires personal data processing to have a lawful basis, and consent is one of several possible bases depending on the purpose of processing.

6. Payment and Credit Card Data

A valid credit card may be required to guarantee your reservation and pay the deposit.

Credit card details should be processed through secure payment systems or secure booking channels. Jahorina-STAY.com does not intentionally store full credit card numbers unless this is necessary and handled through a secure, compliant payment provider.

Booking and personal data should be transmitted through secure connections. SSL technology is commonly used as a standard method for encrypted online communication.

7. Sharing Personal Data

We may share necessary personal data with:

• The selected accommodation provider
• Payment service providers
• IT, hosting, and website maintenance providers
• Email and communication service providers
• Local transport or food delivery providers, only when requested by the guest
• Legal, tax, accounting, or government authorities when required by law

We do not sell your personal data.

8. International Data Transfers

Some technical service providers, such as hosting, analytics, email, or payment providers, may process data outside your country.

When this happens, we aim to use service providers that apply appropriate safeguards for personal data protection.

9. Data Retention

We keep personal data only as long as necessary for the purposes for which it was collected.

Booking and payment-related information may be kept longer when required for legal, accounting, tax, dispute resolution, or fraud prevention purposes.

When personal data is no longer needed, it will be deleted, anonymized, or securely archived.

10. Cookies and Tracking Technologies

Jahorina-STAY.com may use cookies and similar technologies to:

• Make the website function properly
• Remember user preferences
• Improve website performance
• Analyze website traffic
• Support security
• Enable marketing or remarketing, only where applicable and based on consent

Where required, non-essential cookies are used only after you provide consent through the cookie banner or cookie settings.

11. Analytics and Marketing

We may use analytics tools to understand how visitors use the website and improve the user experience.

If marketing tools, tracking pixels, or remarketing systems are used, they should operate based on your cookie consent preferences where required by law.

You can change or withdraw cookie consent through the website’s cookie settings, where available.

12. Your GDPR Rights

Depending on applicable law, you may have the right to:

• Request access to your personal data
• Request correction of inaccurate data
• Request deletion of your personal data
• Request restriction of processing
• Object to certain processing
• Request data portability
• Withdraw consent where processing is based on consent
• Lodge a complaint with a competent data protection authority

The European Commission explains that GDPR protects personal data regardless of the technology used for processing, whether automated or manual.

13. How to Exercise Your Rights

To exercise your data protection rights, contact us at:

[insert contact email]

Please include enough information so we can identify your request. For security reasons, we may need to verify your identity before responding.

14. Data Security

We use reasonable technical and organizational measures to protect personal data from unauthorized access, loss, misuse, alteration, or disclosure.

However, no online system is completely risk-free. Guests are also responsible for keeping their own email accounts, devices, and passwords secure.

15. Children’s Data

Children may be included in booking details when families make accommodation reservations.

We collect only the information necessary to manage the booking and do not knowingly use children’s data for marketing purposes.

16. Contact Forms

When you send a message through a contact form, we collect the data you provide, such as name, email, phone number, message content, and any other information included in the form.

This data is used only to respond to your request, provide support, or continue communication related to your inquiry.

17. Newsletter

If Jahorina-STAY.com offers a newsletter, you may subscribe voluntarily.

You can unsubscribe at any time by using the unsubscribe link in the email or contacting us directly.

Newsletter data is processed based on your consent.

18. Updates to This Privacy Policy

We may update this Privacy Policy from time to time. Any updates will be published on this page.

The latest version applies from the date it is published.

19. Contact

For privacy-related questions, data requests, or concerns, please contact:

Jahorina-STAY.com
Email: [insert contact email]
Website: jahorina-stay.com

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.