Privacy Policy

A. Identity and Address of the Data Controller.
In accordance with the Federal Law on the Protection of Personal Data Held by Private Parties (hereinafter referred to as the “LFPD”, for its initials in the Spanish language), Hotelera Coral, S.A. de C.V. (Hereinafter, “Hotel Coral & Marina” or the “Data Controller”), with address for hearing and receiving notifications located at, Km 103 Carretera Tijuana Ensenada No. 3421, Zona Playitas, C.P. 22860, Ensenada Baja California, hereby expressly informs you of the following:

B. Personal Data Collected and Processed.
We collect the following categories of personal data for the purposes described in this Privacy Notice:

• 1) Identifiable Data.
• 2) Personal Characteristics Data.
• 3)Business Information Data.

Hotel Coral & Marina does not directly collect the personal data of minors through its web page nor through any other means, and minors must abstain from providing such data. Hotel Coral & Marina only processes the personal data of minors that has been provided by their parents and/or guardians, and always with the consent of the latter.

Parents and/or guardians that provide data regarding minors to the Data Controller, in order to comply with the purposes described in this Privacy Notice, will be informed of the content of said Privacy Notice through the means set forth by applicable law.

The parents and/or tutors may at all times exercise the ARCO rights, or revoke consent to processing the personal data of, minors that was provided in order to enjoy the services and activities available in the facilities of Hotel Coral & Marina.

C. Processing Purposes.
a. Primary and Necessary Purposes

1. Managing the corporate and institutional image of the Data Controller.
2. Communication between the Data Controller and the Holder in order to provide information regarding services, fees or promotions.
3. Business research.
4. Generation of publicity campaigns through electronic means.
5. Creation of satisfaction surveys for improving the services offered by the Data Controller. 6. Statistics and historical archiving of publicity and viral campaigns.

b. Additional Purposes.

1. None

D. Personal Data Transfers.

Hotel Coral & Marina does not transfer any data to third parties for the purposes indicated in this Privacy Notice.

E. Consent to Data Transfers.

Your personal data will not be transferred to third parties without your consent, save for the exceptions set forth in Article 37 of the LFPD, and always in compliance with the conditions established in Article 17 of the LFPD Regulations.

F. Exercise of ARCO Rights.

In all such legally valid cases, you may exercise your Access, Rectification, Cancellation and Opposition (ARCO) rights through the procedures we have implemented.

The corresponding request must comply with the requirements set forth in applicable law, through a written document sent to our Personal Data Officer, to the address indicated in item A of this Notice.

The request should contain and include the following:

I. Your name, address and other means for communicating our response to your request.

II. The documentation that confirms your identity or, if applicable, any legal representation.

III. The clear and concise description of the personal data for which you seek to exercise any of your ARCO Rights; and

IV. Any other element or document that would allow locating personal data.

The Data Controller will communicate the decision taken within a maximum time period of twenty business days, counted as of the date in which the Data Controller receives your request. If such request proves applicable, it will be valid within fifteen business days as of the date on which the Data Controller communicates a response. In case the information provided in your request proves erroneous or insufficient, or the request does not include the necessary documentation for confirming your identity or the corresponding legal representation, the Data Controller will require remedy of such deficiencies within five business days following receipt of your request, in order to process such request.

In such cases, you will have ten business days to provide such remedy, counted as of the day following receipt. The corresponding request will be null and void if you do not respond within said period.

You may obtain the requested information and personal data through simple photocopies, digital documents in conventional formats (word, PDF, etc.), through restricted and authorized access to the system which processes your personal data, or through any other legitimate means that guarantees and confirms the valid exercise of the requested right.

Alternatively, you may direct your request to the address derechosarco@hotelcoral.com, complying with all previously indicated requests, setting the subject heading as “ARCO Rights and/or Revocation of consent”. The term for the procedure will be the same as that referred to in the previous paragraph. The use of electronic means for exercising ARCO rights authorizes the Data Controller to answer the 

corresponding request through the same means, unless the rights holder expressly and clearly indicates other means.

You are responsible for updating your personal data in possession of the Data Controller. Therefore, you guarantee and are liable for the veracity, preciseness, validity and authenticity of the facilitated personal data, and agree to maintain such data duly updated, informing the Data Controller of any changes.

G. Revocation of Consent.

You may revoke your consent for processing personal data, without any retroactive effects, in all cases in which said revocation does not imply the impossibility of complying with obligations derived from a current legal relationship between yourself and the Data Controller.

The procedure for revoking consent, if applicable, will be the same as the procedure established in the preceding section for the exercise of ARCO rights.

H. Limitations to the Disclosure of Your Personal Data.

You may limit the use or disclosure of your personal data by sending the corresponding request to our Personal Data Officer. The requirements for confirming your identity as well as the procedure for processing your request will be the same as those indicated for exercising your ARCO rights.

The Data Controller has the means and procedures to ensure the inclusion of some of your personal data in proprietary exclusion lists, whenever you expressly request such inclusion in these. The Data Controller will grant holders who request registration the corresponding proof of registry.

I. Automatic Means of Collecting Personal Data.

Hotel Coral & Marina uses cookies in order to ease navigation in its website www.hotelcoral.com. Cookies constitute a tool used by web servers for saving and recuperating information. Cookies are stored in the browsers of visitors to the website and allow saving their personal preferences in order to provide a better experience when browsing.

Cookies have an expiration date, which may vary from the duration of a browsing session or visit to a website to a specific date on which they become obsolete. Most cookies used in www.hotelcoral.com are associated only to one anonymous User and their hardware. Such cookies do not provide reference that may allow for deducing the first or last name of the User and cannot read data from a User’s hard drive nor include viruses in their text.

We can also collect information using “web beacons”, “pixel tags”, “clear gifs” or similar means (generally referred to as “web beacons”) that allow us to obtain non-personal or aggregate information, such as domain names, the areas of the site you visit, your operating system, the version of the operating system you use, the version of the web browser and the URL prior to your visit. This information is used for improving your experience in the website and for understanding traffic patterns.

You may configure your browser to automatically accept or deny all cookies or to receive an on-screen notice regarding the acceptance of each cookie and therefore decide at that moment on accepting or denying each cookie into your hard drive. We suggest you consult the help section of your web browser to find out how to change the configuration settings on accepting or denying cookies. Even when you configure your bowser setting to deny all cookies, or expressly those from www.hotelcoral.com, you may 

continue to browse the website, with the only inconvenience of not being able to enjoy the functionalities of the site that require the installation of any such cookies. In any case, you may eliminate cookies from www.hotelcoral.com placed in your hard drive at any moment, by following the procedure indicated in the help section of your browser.

J. Modifications or Updates to this Comprehensive Privacy Notice.

The Data Controller may modify, update, extend or, in any way, change the content and reach of this Privacy Notice, at any time and the sole discretion of the Data Controller. In such cases, Hotel Coral & Marina will publish such changes in the website www.hotelcoral.com, in the section “Privacy Notices”.

Changes to the Privacy Notice may also be communicated through email, whenever such means has been established as a communications channel between yourself and the Data Controller, during the term of a legal relationship.

Last update: October 2, 2018.

A. Identity and Address of the Data Controller.

In accordance with the Federal Law on the Protection of Personal Data Held by Private Parties (hereinafter referred to as the “LFPD”, for its initials in the Spanish language), Hotelera Coral, S.A. de C.V. (hereinafter, “Hotel Coral & Marina” or the “Data Controller”), with address for hearing and receiving notifications located at, Km 103 Carretera Tijuana Ensenada No. 3421, Zona Playitas, C.P. 22860, Ensenada Baja California, hereby expressly informs you of the following:

B. Personal Data Collected and Processed.
We collect the following categories of personal data for the purposes described in this Privacy Notice: 1) Identifiable Data.

• 2) Personal Characteristics Data.
• 3) Economical, Financial and Insurance Data.
• 4) Transaction Data.

Hotel Coral & Marina does not directly collect the personal data of minors through its web site nor through any other means, and minors must abstain from providing such data. Hotel Coral & Marina only processes the personal data of minors given by their parents and/or guardians, in all cases with the consent of the latter, whenever the processing of such data is necessary for complying with the purposes described in this Privacy Notice.

Parents and/or guardians that provide data regarding minors to the Data Controller, in order to comply with the purposes described in this Privacy Notice, will be informed of the content of said Privacy Notice through the means set forth by applicable law.

The parents and/or tutors may at all times exercise the ARCO rights, or revoke consent to processing the personal data of, minors that was provided in order to enjoy the services and activities available in the facilities of Hotel Coral & Marina.

C. Processing of Sensitive Personal Data.

Health Data.

In certain cases, Hotel Coral & Marina must collect personal data considered as sensitive by applicable law and related to your health condition. Identified sensitive personal data will be processed in order to comply with the purposes set forth in this Privacy Notice and, in particular, to provide the services offered by the Data Controller, the nature of which requires that the adoption of specific means for ensuring the wellbeing and/or health of our guests. When such sensitive personal data are requested by Hotel Coral & Marina, the holders of such data may refuse to provide it, in which case, the Data Controller will reserve the right to provide or deny the specific requested service.

Hotel Coral & Marina may also process sensitive personal data related to your health condition, whenever these are provided by the holder for the provision of special services or assistance, as expressly required for your stay in our facilities. Therefore, and whenever it may be strictly necessary, we will require your express written consent for processing said sensitive personal data through means that inform you regarding such treatment.

D. Processing Purposes.
a. Primary and Necessary Purposes

1. To provide the expressly contracted services, in any modality, for your stay at any of the facilities of Hotel Coral & Marina.
2. Ensure the functionality and quality of hired services through the issuance of distinctive symbols that guarantee personalized attention to your needs, and the safety of guests in Hotel Coral & Marina facilities.
3. To lend assistance, deliver information and assist guests in hiring services during their stay at the facilities of Hotel Coral & Marina.
4. To notify any changes to our services.
5. To invoice provided services and products, as well as the judicial or extrajudicial collection thereof.
6. For statistical purposes and to maintain a historical registry of users.

b. Additional Purposes.

1. To send communications regarding offers and new products and/or services provided by Hotel Coral & Marina.
2. To carry out satisfaction surveys.

In addition, we inform you that third party personal data provided by you to the Data Controller in order to meet the indicated purposes (for example, data of relatives), must be provided after informing such parties of the existence such data processing and the content of this Privacy Notice.

E. Additional purposes. Denial of Processing.

I do not wish to receive communications regarding offers or services provided by Hotel Coral & Marina.

You may, at any moment, revoke your consent regarding the processing of your personal data in relation to the additional purposes indicated above, through the mechanisms provided in this Privacy Notice and in accordance with applicable law.

F. Personal Data Transfers.

Your personal data (including sensitive personal data) may be transferred and processed by person other than the Data Controller. The receivers of such transfers (whether national or international) belong to the following categories:

1. Holding companies, subsidiaries or affiliates of Hotel Coral & Marina, for the purposes of centralized safeguarding of the information, additions and removals, changes to service reservations, as well as for performing statistics on users of the Data Controller, in order to evaluate, improve and design new services for such users.
2. Unaffiliated Third Parties (service providers), for the sole and exclusive purpose of assisting Hotel Coral & Marina with the execution of the services related to its reservation of services and the hiring of necessary or additional services expressly requested by the Holder during their stay (complying with the legal relation between the Data Controller and the Holder and/or any agreements entered into, or to be entered into, between the Data Controller and a third party, in the interest of the Holder).
3. Persons subject to Doctor-Patient confidentiality, or other similar obligations, in such cases where the transfer of sensitive personal data, related to your present or future health condition, to any legally permitted third party, is indispensable for medical attention, prevention, or diagnostics; for providing sanitary assistance; medical treatment or managing sanitary services, while the Holder is not able to grant consent, pursuant to the General Health Law and other applicable legal provisions.

G. Consent to Data Transfers.

Such personal data transfers referred to in numbers 1 to 3 of the preceding item, do not require your consent in order to be performed, in accordance with article 37 of the LFPD.

H. Exercise of ARCO Rights.

In all such legally valid cases, you may exercise your Access, Rectification, Cancellation and Opposition (ARCO) rights through the procedures we have implemented.

The corresponding request must comply with the requirements set forth in applicable law, through a written document sent to our Personal Data Officer, to the address indicated in item A of this Notice.

The request should contain and include the following:

I. Your name, address and other means for communicating our response to your request.

II. The documentation that confirms your identity or, if applicable, any legal representation.

III. The clear and concise description of the personal data for which you seek to exercise any of your ARCO Rights; and

IV. Any other element or document that would allow locating personal data.

The Data Controller will communicate the decision taken within a maximum time period of twenty business days, counted as of the date in which the Data Controller receives your request. If such request proves applicable, it will be valid within fifteen business days as of the date on which the Data Controller communicates a response. In case the information provided in your request proves erroneous or insufficient, or the request does not include the necessary documentation for confirming your identity or the corresponding legal representation, the Data Controller will require remedy of such deficiencies within five business days following receipt of your request, in order to process such request.

In all other cases, your personal data will not be transferred to third parties without your consent, save for the exceptions set forth in article 37 of the LFPD, and always in compliance with the conditions established in article 17 of the LFPD Regulations.

You may obtain the requested information and personal data through simple photocopies, digital documents in conventional formats (word, PDF, etc.), through restricted and authorized access to the system which processes your personal data, or through any other legitimate means that guarantees and confirms the valid exercise of the requested right.

Alternatively, you may direct your request to the address derechosarco@hotelcoral.com, complying with all previously indicated requests, setting the subject heading as “ARCO Rights and/or Revocation of consent”. The term for the procedure will be the same as that referred to in the previous paragraph. The use of electronic means for exercising ARCO rights authorizes the Data Controller to answer the corresponding request through the same means, unless the rights holder expressly and clearly indicates other means.

You are responsible for updating your personal data in possession of the Data Controller. Therefore, you guarantee and are liable for the veracity, preciseness, validity and authenticity of the facilitated personal data, and agree to maintain such data duly updated, informing the Data Controller of any changes.

I. Revocation of Consent.

You may revoke your consent for processing personal data, without any retroactive effects, in all cases in which said revocation does not imply the impossibility of complying with obligations derived from a current legal relationship between yourself and the Data Controller.

The procedure for revoking consent, if applicable, will be the same as the procedure established in the preceding section for the exercise of ARCO rights.

J. Limitations to the Disclosure of Your Personal Data.

You may limit the use or disclosure of your personal data by sending the corresponding request to our Personal Data Officer. The requirements for confirming your identity as well as the procedure for processing your request will be the same as those indicated for exercising your ARCO rights.

The Data Controller has the means and procedures to ensure the inclusion of some of your personal data in proprietary exclusion lists, whenever you expressly request such inclusion in these. The Data Controller will grant holders who request registration the corresponding proof of registry.

K. Automatic Means of Collecting Personal Data.

Hotel Coral & Marina uses cookies in order to ease navigation in its website www.hotelcoral.com. Cookies constitute a tool used by web servers for saving and recuperating information. Cookies are stored in the browsers of visitors to the website and allow saving their personal preferences in order to provide a better experience when browsing.

Cookies have an expiration date, which may vary from the duration of a browsing session or visit to a website to a specific date on which they become obsolete. Most cookies used in www.hotelcoral.com are associated only to one anonymous User and their hardware. Such cookies do not provide reference that may allow for deducing the first or last name of the User and cannot read data from a User’s hard drive nor include viruses in their text.

We can also collect information using “web beacons”, “pixel tags”, “clear gifs” or similar means (generally referred to as “web beacons”) that allow us to obtain non-personal or aggregate information, such as domain names, the areas of the site you visit, your operating system, the version of the operating system you use, the version of the web browser and the URL prior to your visit. This information is used for improving your experience in the website and for understanding traffic patterns.

You may configure your browser to automatically accept or deny all cookies or to receive an on-screen notice regarding the acceptance of each cookie and therefore decide at that moment on accepting or denying each cookie into your hard drive. We suggest you consult the help section of your web browser to find out how to change the configuration settings on accepting or denying cookies. Even when you configure your bowser setting to deny all cookies, or expressly those from www.hotelcoral.com, you may continue to browse the website, with the only inconvenience of not being able to enjoy the functionalities of the site that require the installation of any such cookies. In any case, you may eliminate cookies from www.hotelcoral.com placed in your hard drive at any moment, by following the procedure indicated in the help section of your browser.

L. Modifications or Updates to this Comprehensive Privacy Notice.

The Data Controller may modify, update, extend or, in any way, change the content and reach of this Privacy Notice, at any time and the sole discretion of the Data Controller. In such cases, Hotel Coral & Marina will publish such changes in the website www.hotelcoral.com, in the section “Privacy Notices”.

Changes to the Privacy Notice may also be communicated through email, whenever such means has been established as a communications channel between yourself and the Data Controller, during the term of a legal relationship.

Last update: October 2, 2018.

A. Identity and Address of the Data Controller.

In accordance with the Federal Law on the Protection of Personal Data Held by Private Parties (hereinafter referred to as the “LFPD”, for its initials in the Spanish language), Hotelera Coral, S.A. de C.V. (hereinafter, “Hotel Coral & Marina” or the “Data Controller”), with address for hearing and receiving notifications located at, Km 103 Carretera Tijuana Ensenada No. 3421, Zona Playitas, C.P. 22860, Ensenada Baja California, hereby expressly informs you of the following:

B. Personal Data Collected and Processed.
We collect the following categories of personal data for the purposes described in this Privacy Notice: 1) Identifiable Data;

• 2) Personal Characteristics Data;
• 3) Economical, Financial and Insurance Data;
• 4) Social Circumstance Data;
• 5) Transaction Data.

Hotel Coral & Marina does not directly collect the personal data of minors through its web site nor through any other means, and minors must abstain from providing such data. Hotel Coral & Marina only processes the personal data of minors given by their parents and/or guardians, in all cases with the consent of the latter, whenever the processing of such data is necessary for complying with the purposes described in this Privacy Notice.

Parents and/or guardians that provide data regarding minors to the Data Controller, in order to comply with the purposes described in this Privacy Notice, will be informed of the content of said Privacy Notice through the means set forth by applicable law.

The parents and/or tutors may at all times exercise the ARCO rights, or revoke consent to processing the personal data of, minors that was provided in order to enjoy the services and activities available in the facilities of Hotel Coral & Marina.

C. Processing of Sensitive Personal Data.

Health Data.

In certain cases, Hotel Coral & Marina must collect personal data considered as sensitive by applicable law and related to your health condition. Identified sensitive personal data will be processed in order to comply with the purposes set forth in this Privacy Notice and, in particular, to provide the services offered by the Data Controller, the nature of which requires that the adoption of specific means for ensuring the wellbeing and/or health of our guests. When such sensitive personal data are requested by Hotel Coral & Marina, the holders of such data may refuse to provide it, in which case, the Data Controller will reserve the right to provide or deny the specific requested service.

Hotel Coral & Marina may also process sensitive personal data related to your health condition, whenever these are provided by the holder for the provision of special services or assistance, as expressly required for your stay in our facilities. Therefore, and whenever it may be strictly necessary, we will require your express written consent for processing said sensitive personal data through means that inform you regarding such treatment.

D. Processing Purposes.
a. Primary and Necessary Purposes

1. To provide the expressly contracted services, in any modality, for your stay at any of the facilities of Hotel Coral & Marina.
2. Ensure the functionality and quality of hired services through the issuance of distinctive symbols that guarantee personalized attention to your needs, and the safety of crews in Hotel Coral & Marina facilities.
3. To lend assistance, deliver information and assist users in hiring service during their stay at the facilities of Hotel Coral & Marina.
4. To process, before the corresponding authorities, any temporary import and migration procedures for vessels.
5. To coordinate the arrival of vessels.
6. To notify any changes to our services.
7. To invoice provided services and products, as well as the judicial or extrajudicial collection thereof.
8. For statistical purposes and to maintain a historical registry of users.

b. Additional Purposes.

1. To send communications regarding offers and new products and/or services provided by Hotel Coral & Marina.
2. To carry out satisfaction surveys.

In addition, we inform you that third party personal data provided by you to the Data Controller in order to meet the indicated purposes (for example, data of relatives), must be provided after informing such parties of the existence such data processing and the content of this Privacy Notice.

E. Additional purposes. Denial of Processing.

I do not wish to receive communications regarding offers or services provided by Hotel Coral & Marina.

You may, at any moment, revoke your consent regarding the processing of your personal data in relation to the additional purposes indicated above, through the mechanisms provided in this Privacy Notice and in accordance with applicable law.

F. Personal Data Transfers.

Your personal data (including sensitive personal data) may be transferred and processed by person other than the Data Controller. The receivers of such transfers (whether national or international) belong to the following categories:

1. Holding companies, subsidiaries or affiliates of Hotel Coral & Marina, for the purposes of centralized safeguarding of the information, additions and removals, changes to service reservations, as well as for performing statistics on users of the Data Controller, in order to evaluate, improve and design new services for such users.
2. Unaffiliated Third Parties (service providers), for the sole and exclusive purpose of assisting Hotel Coral & Marina with the execution of the services related to its reservation of services and the hiring of necessary or additional services expressly requested by the Holder during their stay (complying with the legal relation between the Data Controller and the Holder and/or any agreements entered into, or to be entered into, between the Data Controller and a third party, in the interest of the Holder).
3. Persons subject to Doctor-Patient confidentiality, or other similar obligations, in such cases where the transfer of sensitive personal data, related to your present or future health condition, to any legally permitted third party, is indispensable for medical attention, prevention, or diagnostics; for providing sanitary assistance; medical treatment or managing sanitary services, while the Holder is not able to grant consent, pursuant to the General Health Law and other applicable legal provisions.
4. To the corresponding authorities for the purpose of complying with several obligations related to the entrance of foreign citizens, as well as to request authorization for imported vessels that will remain a determinate amount of time within national territory.

G. Consent to Data Transfers.

Such personal data transfers referred to in numbers 1 through 4 of the preceding item, do not require your consent in order to be performed, in accordance with article 37 of the LFPD.

In all other cases, your personal data will not be transferred to third parties without your consent, save for the exceptions set forth in article 37 of the LFPD, and always in compliance with the conditions established in article 17 of the LFPD Regulations.

H. Exercise of ARCO Rights.

In all such legally valid cases, you may exercise your Access, Rectification, Cancellation and Opposition (ARCO) rights through the procedures we have implemented.

The corresponding request must comply with the requirements set forth in applicable law, through a written document sent to our Personal Data Officer, to the address indicated in item A of this Notice.

The request should contain and include the following:

I. Your name, address and other means for communicating our response to your request.

II. The documentation that confirms your identity or, if applicable, any legal representation.

III. The clear and concise description of the personal data for which you seek to exercise any of your ARCO Rights; and

IV. Any other element or document that would allow locating personal data.

The Data Controller will communicate the decision taken within a maximum time period of twenty business days, counted as of the date in which the Data Controller receives your request. If such request proves applicable, it will be valid within fifteen business days as of the date on which the Data Controller communicates a response. In case the information provided in your request proves erroneous or insufficient, or the request does not include the necessary documentation for confirming your identity or the corresponding legal representation, the Data Controller will require remedy of such deficiencies within five business days following receipt of your request, in order to process such request.

In such cases, you will have ten business days to provide such remedy, counted as of the day following receipt. The corresponding request will be null and void if you do not respond within said period.

You may obtain the requested information and personal data through simple photocopies, digital documents in conventional formats (word, PDF, etc.), through restricted and authorized access to the system which processes your personal data, or through any other legitimate means that guarantees and confirms the valid exercise of the requested right.

Alternatively, you may direct your request to the address derechosarco@hotelcoral.com, complying with all previously indicated requests, setting the subject heading as “ARCO Rights and/or Revocation of consent”. The term for the procedure will be the same as that referred to in the previous paragraph. The use of electronic means for exercising ARCO rights authorizes the Data Controller to answer the corresponding request through the same means, unless the rights holder expressly and clearly indicates other means.

You are responsible for updating your personal data in possession of the Data Controller. Therefore, you guarantee and are liable for the veracity, preciseness, validity and authenticity of the facilitated personal data, and agree to maintain such data duly updated, informing the Data Controller of any changes.

I. Revocation of Consent.

You may revoke your consent for processing personal data, without any retroactive effects, in all cases in which said revocation does not imply the impossibility of complying with obligations derived from a current legal relationship between yourself and the Data Controller.

The procedure for revoking consent, if applicable, will be the same as the procedure established in the preceding section for the exercise of ARCO rights.

J. Limitations to the Disclosure of Your Personal Data.

You may limit the use or disclosure of your personal data by sending the corresponding request to our Personal Data Officer. The requirements for confirming your identity as well as the procedure for processing your request will be the same as those indicated for exercising your ARCO rights.

The Data Controller has the means and procedures to ensure the inclusion of some of your personal data in proprietary exclusion lists, whenever you expressly request such inclusion in these. The Data Controller will grant holders who request registration the corresponding proof of registry.

K. Automatic Means of Collecting Personal Data.

Hotel Coral & Marina uses cookies in order to ease navigation in its website www.hotelcoral.com. Cookies constitute a tool used by web servers for saving and recuperating information. Cookies are stored in the browsers of visitors to the website and allow saving their personal preferences in order to provide a better experience when browsing.

Cookies have an expiration date, which may vary from the duration of a browsing session or visit to a website to a specific date on which they become obsolete. Most cookies used in www.hotelcoral.com are associated only to one anonymous User and their hardware. Such cookies do not provide reference that may allow for deducing the first or last name of the User and cannot read data from a User’s hard drive nor include viruses in their text.

We can also collect information using “web beacons”, “pixel tags”, “clear gifs” or similar means (generally referred to as “web beacons”) that allow us to obtain non-personal or aggregate information, such as domain names, the areas of the site you visit, your operating system, the version of the operating system you use, the version of the web browser and the URL prior to your visit. This information is used for improving your experience in the website and for understanding traffic patterns.

You may configure your browser to automatically accept or deny all cookies or to receive an on-screen notice regarding the acceptance of each cookie and therefore decide at that moment on accepting or denying each cookie into your hard drive. We suggest you consult the help section of your web browser to find out how to change the configuration settings on accepting or denying cookies. Even when you configure your bowser setting to deny all cookies, or expressly those from www.hotelcoral.com, you may continue to browse the website, with the only inconvenience of not being able to enjoy the functionalities of the site that require the installation of any such cookies. In any case, you may eliminate cookies from www.hotelcoral.com placed in your hard drive at any moment, by following the procedure indicated in the help section of your browser.

L. Modifications or Updates to this Comprehensive Privacy Notice.

The Data Controller may modify, update, extend or, in any way, change the content and reach of this Privacy Notice, at any time and the sole discretion of the Data Controller. In such cases, Hotel Coral & Marina will publish such changes in the website www.hotelcoral.com, in the section “Privacy Notices”.

Changes to the Privacy Notice may also be communicated through email, whenever such means has been established as a communications channel between yourself and the Data Controller, during the term of a legal relationship.

Last update: October 2, 2018.

A. Identity and Address of the Data Controller.

In accordance with the Federal Law on the Protection of Personal Data Held by Private Parties (hereinafter referred to as the “LFPD”, for its initials in the Spanish language), Hotelera Coral, S.A. de C.V. (hereinafter, “Hotel Coral & Marina” or the “Data Controller”), with address for hearing and receiving notifications located at, Km 103 Carretera Tijuana Ensenada No. 3421, Zona Playitas, C.P. 22860, Ensenada Baja California, hereby expressly informs you of the following:

B. Personal Data Collected and Processed.
The Data Controller collects the following personal data for the purposes described in this Notice:

1. 1. Image.
2. Sound.

C. Processing of Sensitive Personal Data.

The Data Controller does not collect sensitive personal data, for the fulfillment of the purposes indicated in the following item.

D. Processing Purposes.
a) Primary and Necessary Purposes:

1. Security and surveillance of the Data Controller’s facilities.
2. Security of employees, clients and visitors.
3. Control of access to such facilities.

b) Additional purposes
None.

E. Personal Data Transfers.

The Data Controller does not transfer sensitive personal data for the fulfillment of the purposes indicated in this Privacy Notice.

Your personal data will not be transferred to third parties without your consent, save for the exceptions set forth in article 37 of the LFPD, and always in compliance with the conditions established in article 17 of the LFPD Regulations.

F. Exercise of ARCO Rights.

In all such legally valid cases, you may exercise your Access, Rectification, Cancellation and Opposition (ARCO) rights through the procedures we have implemented.

The corresponding request must comply with the requirements set forth in applicable law, through a written document sent to our Personal Data Officer, to the address indicated in item A of this Notice.

The request should contain and include the following:

I. Your name, address and other means for communicating our response to your request.

II. The documentation that confirms your identity or, if applicable, any legal representation.

III. The clear and concise description of the personal data for which you seek to exercise any of your ARCO Rights; and

IV. Any other element or document that would allow locating personal data.

The Data Controller will communicate the decision taken within a maximum time period of twenty business days, counted as of the date in which the Data Controller receives your request. If such request proves applicable, it will be valid within fifteen business days as of the date on which the Data Controller communicates a response. In case the information provided in your request proves erroneous or insufficient, or the request does not include the necessary documentation for confirming your identity or the corresponding legal representation, the Data Controller will require remedy of such deficiencies within five business days following receipt of your request, in order to process such request.

In such cases, you will have ten business days to provide such remedy, counted as of the day following receipt. The corresponding request will be null and void if you do not respond within said period.

You may obtain the requested information and personal data through simple photocopies, digital documents in conventional formats (word, PDF, etc.), through restricted and authorized access to the system which processes your personal data, or through any other legitimate means that guarantees and confirms the valid exercise of the requested right.

Alternatively, you may direct your request to the address derechosarco@hotelcoral.com, complying with all previously indicated requests, setting the subject heading as “ARCO Rights and/or Revocation of consent”. The term for the procedure will be the same as that referred to in the previous paragraph. The use of electronic means for exercising ARCO rights authorizes the Data Controller to answer the corresponding request through the same means, unless the rights holder expressly and clearly indicates other means.

You are responsible for updating your personal data in possession of the Data Controller. Therefore, you guarantee and are liable for the veracity, preciseness, validity and authenticity of the facilitated personal data, and agree to maintain such data duly updated, informing the Data Controller of any changes.

G. Revocation of Consent.

The Holder is hereby informed that it may revoke consent to the processing of any personal data provided to Hotel Coral &Marina, as long as such revocation does not derive from an impossibility to comply with the legal relationship that, in such case, may occur.

Therefore, the Holder may request such revocation, in accordance with the procedure indicated in the item related to the exercising of ARCO Rights.

H. Options and means for limiting the use and disclosure of personal data.

You may limit the use or disclosure of your personal data by sending the corresponding request to our Personal Data Officer. The requirements for confirming your identity as well as the procedure for processing your request will be the same as those indicated for exercising your ARCO rights.

The Data Controller has the means and procedures to ensure the inclusion of some of your personal data in proprietary exclusion lists, whenever you expressly request such inclusion in these. The Data Controller will grant holders who request registration the corresponding proof of registry.

I. The procedure through which Hotel Coral & Marina will communicate to you any changes to the Privacy Notice.

The Data Controller may modify, update, extend or, in any way, change the content and reach of this Privacy Notice, at any time and the sole discretion of the Data Controller.

In such cases, Hotel Coral & Marina will publish such changes in the website www.hotelcoral.com, in the section “Privacy Notices”.

Last update: Monday, October 1, 2018.

A. Identity and Address of the Data Controller.

In accordance with the Federal Law on the Protection of Personal Data Held by Private Parties (hereinafter referred to as the “LFPD”, for its initials in the Spanish language), Hotelera Coral, S.A. de C.V. (hereinafter, “Hotel Coral & Marina” or the “Data Controller”), with address for hearing and receiving notifications located at, Km 103 Carretera Tijuana Ensenada No. 3421, Zona Playitas, C.P. 22860, Ensenada Baja California, hereby expressly informs you of the following:

B. Personal Data Collected and Processed.

Hotel Coral & Marina processes the following categories of personal data for the purposes described in this Privacy Notice:

a) Identifiable data;
b) Personal characteristics data; c) Social circumstance data;
d) occupational data.

Hotel Coral & Marina does not directly collect the personal data of minors through its web page, social networks (Facebook, Twitter, Instagram, etc.) nor through any other means, and minors must abstain from providing such data. Hotel Coral & Marina only processes the personal data of minors that has been provided by their parents and/or guardians, and always with the consent of the latter.

Parents and/or guardians that provide data regarding minors to the Data Controller, in order to comply with the purposes described in this Privacy Notice, will be informed of the content of said Privacy Notice through the means set forth by applicable law.

The parents and/or tutors may at all times exercise the ARCO rights, or revoke consent to processing the personal data of, minors that was provided in order to enjoy the services and activities available in the facilities of Hotel Coral & Marina.

C. Processing of Sensitive Personal Data.

Hotel Coral & Marina does not collect sensitive personal data for the purposes numbered in the following item and the Holders-Users of social networks must abstain from sending this type of data through the channels available through such networks.

D. Responsibility of Hotel Coral & Marina, of the Holders-Users of Social Networks and of the Social Network Service Providers.

Hotel Coral & Marina treats personal data of the holders-users of social networks by accessing and managing the information that said holders-users publish or disseminate through the profiles they have created in each of the social networks they use to link with the Data Controller. This treatment also includes the use of personal data for purposes of disclosure of activities of the Data Controller. Hotel Coral & Marina accesses, manages and takes advantage of the personal data of the holders-users of social networks only during the period in which the holders-users remain linked to the profiles that the Data Controller manages in each of the social networks involved. The users-holders are responsible for the accuracy, veracity and updating of the personal data they publish in their social network profiles, as well as the degree of dissemination of their information and access to it that they allow or authorize third parties through said profiles. Hotel Coral & Marina recommends all holders-users of social networks to continuously review the privacy settings of their profiles in each of the websites used to link to the Data Controller. The providers of social network services are responsible for the databases created with the personal data of the users of these networks. Such service providers are in turn responsible for the security measures they adopt to safeguard the personal data of their users. In accordance with the foregoing, the Hotel Coral & Marina undertakes to provide adequate access, management and use of the personal data of the holders-users that are linked to the profiles that the Data Controller manages in various social networks. No new databases are created by Hotel Coral & Marina with the information and/or personal data of the holders-users of social networks.

E. Processing Purposes.
a. Primary and Necessary Purposes

1. Management of social network followers (Facebook, Twitter, YouTube, Foursquare, Google+, Linkedin, etc.) and management of subscribers of Hotel Coral & Marina news bulletins.
2. Communication of Data Controller activities.
3. Statistics on social network followers.
4. Evaluation of holder-user opinions regarding the services provided by Hotel Coral & Marina.
5. Management of reservations or service request by referring the Holder to the corresponding area.
6. Publishing and offering promotions of the services offered by the Data Controller.

b. Additional Purposes.
None.

F. Personal Data Transfers.

Hotel Coral & Marina does not transfer any data to third parties for the purposes indicated in this Privacy Notice.

G. Consent to Data Transfers.

Your personal data will not be transferred to third parties without your consent, save for the exceptions set forth in article 37 of the LFPD, and always in compliance with the conditions established in article 17 of the LFPD Regulations.

H. Exercise of ARCO Rights.

In all such legally valid cases, you may exercise your Access, Rectification, Cancellation and Opposition (ARCO) rights through the procedures we have implemented.

The corresponding request must comply with the requirements set forth in applicable law, through a written document sent to our Personal Data Officer, to the address indicated in item A of this Notice.

The request should contain and include the following:

I. Your name, address and other means for communicating our response to your request.

II. The documentation that confirms your identity or, if applicable, any legal representation.

III. The clear and concise description of the personal data for which you seek to exercise any of your ARCO Rights; and

IV. Any other element or document that would allow locating personal data.

The Data Controller will communicate the decision taken within a maximum time period of twenty business days, counted as of the date in which the Data Controller receives your request. If such request proves applicable, it will be valid within fifteen business days as of the date on which the Data Controller communicates a response. In case the information provided in your request proves erroneous or insufficient, or the request does not include the necessary documentation for confirming your identity or the corresponding legal representation, the Data Controller will require remedy of such deficiencies within five business days following receipt of your request, in order to process such request.

In such cases, you will have ten business days to provide such remedy, counted as of the day following receipt. The corresponding request will be null and void if you do not respond within said period.

You may obtain the requested information and personal data through simple photocopies, digital documents in conventional formats (word, PDF, etc.), through restricted and authorized access to the system which processes your personal data, or through any other legitimate means that guarantees and confirms the valid exercise of the requested right.

Alternatively, you may direct your request to the address derechosarco@hotelcoral.com, complying with all previously indicated requests, setting the subject heading as “ARCO Rights and/or Revocation of consent”. The term for the procedure will be the same as that referred to in the previous paragraph. The use of electronic means for exercising ARCO rights authorizes the Data Controller to answer the corresponding request through the same means, unless the rights holder expressly and clearly indicates other means.

You are responsible for updating your personal data in possession of the Data Controller. Therefore, you guarantee and are liable for the veracity, preciseness, validity and authenticity of the facilitated personal data, and agree to maintain such data duly updated, informing the Data Controller of any changes.

I. Exercise of ARCO rights before social network service providers.

The exercise of ARCO rights against social network service providers in which the holders-users of said networks have created a profile will be governed by the applicable legislation and the terms and conditions established in the Privacy Notices, Privacy Policies and/or Legal Notices that each service provider has arranged in the social networks that they operate and manage.

J. Revocation of Consent

You may revoke your consent for processing personal data, without any retroactive effects, in all cases in which said revocation does not imply the impossibility of complying with obligations derived from a current legal relationship between yourself and the Data Controller.

The procedure for revoking consent, if applicable, will be the same as the procedure established in the preceding section for the exercise of ARCO rights.

K. Limitations to the Disclosure of Your Personal Data.

You may limit the use or disclosure of your personal data by sending the corresponding request to our Personal Data Officer. The requirements for confirming your identity as well as the procedure for processing your request will be the same as those indicated for exercising your ARCO rights.

The Data Controller has the means and procedures to ensure the inclusion of some of your personal data in proprietary exclusion lists, whenever you expressly request such inclusion in these. The Data Controller will grant holders who request registration the corresponding proof of registry.

L. Automatic Means of Collecting Personal Data.

Hotel Coral & Marina uses cookies in order to ease navigation in its website www.hotelcoral.com. Cookies constitute a tool used by web servers for saving and recuperating information. Cookies are stored in the browsers of visitors to the website and allow saving their personal preferences in order to provide a better experience when browsing.

Cookies have an expiration date, which may vary from the duration of a browsing session or visit to a website to a specific date on which they become obsolete. Most cookies used in www.hotelcoral.com are associated only to one anonymous User and their hardware. Such cookies do not provide reference that may allow for deducing the first or last name of the User and cannot read data from a User’s hard drive nor include viruses in their text.

We can also collect information using “web beacons”, “pixel tags”, “clear gifs” or similar means (generally referred to as “web beacons”) that allow us to obtain non-personal or aggregate information, such as domain names, the areas of the site you visit, your operating system, the version of the operating system you use, the version of the web browser and the URL prior to your visit. This information is used for improving your experience in the website and for understanding traffic patterns.

You may configure your browser to automatically accept or deny all cookies or to receive an on-screen notice regarding the acceptance of each cookie and therefore decide on that moment on accepting or denying each cookie into your hard drive. We suggest you consult the help section of your web browser to find out how to change the configuration settings on accepting or denying cookies. Even when you configure your bowser setting to deny all cookies, or expressly those from www.hotelcoral.com, you may continue to browse the website, with the only inconvenience of not being able to enjoy the functionalities of the site that require the installation of any such cookies. In any case, you may eliminate cookies from www.hotelcoral.com placed in your hard drive at any moment, by following the procedure indicated in the help section of your browser.

M. Modifications or Updates to this Comprehensive Privacy Notice.

The Data Controller may modify, update, extend or, in any way, change the content and reach of this Privacy Notice, at any time and the sole discretion of the Data Controller. In such cases, Hotel Coral & Marina will publish such changes in the website www.hotelcoral.com, in the section “Privacy Notices”.

Changes to the Privacy Notice may also be communicated through email, whenever such means has been established as a communications channel between yourself and the Data Controller, during the term of a legal relationship.

Last update: October 1, 2018.