Log In
Request A Demo

DATA PROCESSING AGREEMENT (DPA)

The use of myHotel’s services implies the acceptance of this Data Processing Agreement, which guarantees that the processing of guest information complies with the highest legal standards (GDPR, LGPD, Law 19,628).

This Data Processing Agreement (“DPA”) forms an integral part of the Terms and Conditions of Use and the Commercial Agreement entered into between myHotel SPA (hereinafter, “myHotel” or the “Processor”) and the hotel entity or hotel group using the Services (hereinafter, the “Client” or the “Controller”).

  1. OBJECT OF THE AGREEMENT

    The Client authorizes myHotel, acting as Processor, to obtain and process guest data, reservations, and operational information for the purpose of providing the myHotel platform services. Processed data includes identification information, contact details, reservation specifics, and internal management data, as detailed in the platform’s technical integration specifications.

  2. OWNERSHIP AND LEGITIMACY OF DATA

    The parties acknowledge that personal data belongs exclusively to the guests. The Client declares and warrants that it has obtained all prior, express, and informed authorizations and consents from its guests to transfer their Personal Data to myHotel. myHotel shall act exclusively as a data processor.

  3. MYHOTEL’S RESPONSIBILITIES

    myHotel undertakes to: (i) Process data exclusively for the provision of the contracted services; (ii) Implement technical and organizational measures to ensure information security; (iii) Not transfer data to third parties for commercial purposes unrelated to the service; and (iv) Notify the Client of any detected security incidents.

  4. SUB-PROCESSING AND TRANSFERS

    The Client authorizes myHotel to engage technological sub-processors necessary for the service (hosting, messaging, databases, etc.), ensuring they comply with equivalent security standards. Processing is governed by Chilean regulations, also complying with GDPR and Brazil’s LGPD standards.

  5. TERM AND DELETION

    This DPA shall remain in effect for the duration of the commercial relationship. Upon termination of the service, if requested by the Client, myHotel will proceed to anonymize the data in accordance with its retention policy and current regulations.