Privacy Policy (Ooostel2.be – 2025)

Compliant with GDPR & Belgian Law

 

  1. Data Controller

ICV BV (Ooostel2.be)
Kwatrechtstraat 42/2, 1030 Schaarbeek
BE 0666.795.519
Email: info@ooostel2.be

  1. Types of Data We Process

We process the following categories:

  • Identification data (name, date of birth, nationality)
  • Copy of ID or passport (required for mid-term stays & legal verification)
  • Contact information (email, phone)
  • Reservation and payment details
  • Access logs (digital code usage where applicable)
  • Camera footage from common areas
  • Communication via email or booking channels
  • Technical data (IP address, device type)
  1. Legal Basis for Processing

We process data under:

  • Performance of a contract (check-in, stay management)
  • Legal obligation (guest registration, safety regulations, accounting)
  • Legitimate interest (security, fraud prevention, access control)
  • Consent (when required for non-essential data)
  1. Why We Process Your Data

We use personal data for:

  • Managing reservations and customer accounts
  • Verifying identity during check-in
  • Issuing access keys or digital codes
  • Payment processing and invoicing
  • Security monitoring (camera footage)
  • Guest communication
  • Legal compliance (police checks, tax rules)
  1. Digital Access and Security

Some locations use digital access systems that log the time a code is used.
This is necessary for:

  • security and traceability,
  • preventing unauthorised access,
  • troubleshooting access errors.

We do not track movements within rooms.

  1. Camera Surveillance

Cameras are installed only in common areas, never inside rooms.
Footage is stored for maximum 30 days, unless required for incident investigation.

  1. Who Has Access to Your Data

Your data may be shared with:

  • our PMS provider (RoomRaccoon / Lobbi by Mancloud)
  • payment processors
  • email service providers
  • law enforcement (when legally required)
  • maintenance or IT partners under confidentiality clauses

No data is sold or sent to advertising companies.

  1. Storage Period

We retain:

  • ID documents: up to 30 days after check-in (legal check)
  • Reservation & billing data: 7 years (accounting law)
  • Camera footage: 30 days
  • Communication: 1 year
  • Access logs: 90 days
  1. Your Rights

Guests may request:

  • access to their data
  • correction
  • deletion (when legally allowed)
  • restriction of processing
  • objection
  • data portability (if applicable)

Requests: privacy@ooostel2.be

  1. International Transfers

Data held by service providers outside the EU is protected by:

  • EU adequacy decisions, or
  • standard contractual clauses (SCCs).
  1. Data Security

We apply industry-standard technical and organisational measures:

  • encrypted storage
  • access control
  • logging
  • regular audits
  • restricted employee access
  1. Changes to This Policy

We may update this policy to comply with new regulations.
Latest version is always available on our website.

 Last update: 2025

Translate »