Privacy Policy
Contact Information
It is reported to users that this website [https://www.hotelvillalba.com/es/] (hereinafter, “Web”) is the official website of Hotel Spa Villalba.
- Data Controller: Hoteles Reverón, S.A.
- VAT Number: A38104022
- Contact Address: Camino San Roque S/N, 38613, Vilaflor, S/C de Tenerife
- Contact Email: administracion@hotelesreveron.com
Information Principle
Here below, each of the treatments collected on this website is detailed, as well as second layer information where the data controller carries out treatment in their hotel establishment:
Purpose: The personal data provided through this Website will be used for the following purposes:
- Information requests and inquiries: Managing requests, sending information and communications about inquiries made through forms, emails and contact numbers.
- Commercial communications: Managing the sending of commercial communications about news, exclusive content, communications, and special offers from Hotel Spa Villalba to the email provided in the “Subscribe to our Newsletter” or, where appropriate, by ticking the corresponding box for sending commercial communications in registration forms.
- Hotel Spa Villalba Club: Managing registered customers through the “Sign up for Reverón Legacy” form, who can enjoy discounts and benefits at Hotel Spa Villalba.
- Teide Challenge: Managing information requests, inquiries, or registration for the Teide Challenge activity.
- Reservations: Managing reservations made by users through this website for the various services provided at Hotel Spa Villalba.
- Gift vouchers: Managing gift vouchers available on this website for the services offered at Hotel Spa Villalba.
The Data Controller uses the Redsys online payment platform. The payment platform complies with legally stipulated security guarantees. Any problems or malfunctions with the payment platform should be addressed to the same https://pagosonline.redsys.es/.
*Category of data processed: The data that we may process for the purposes described in this Privacy Policy are:
- For the processing of data for information requests and inquiries:
– Name, Surname, Email, and Phone. - For the processing of data for sending commercial communications:
– Email, Name, Surname/s - For the processing of data for registering in Club Villalba:
– Name, Surname/s, Email, Date of birth, Country of residence. - For the processing of data for Teide Challenge:
– Name, Surname/s, Email, Phone, and Address. - For the processing of data for reservations:
– Name, Surname/s, Email, Phone. Billing information. - For the processing of data for gift vouchers:
– Name, Surname, ID/Passport, Email, Phone. Billing information.
Personal data provided by users must be adequate, relevant, and not excessive in relation to the scope and the specific, explicit, and legitimate purposes for which they were obtained.
The user will be solely responsible for the truthfulness and accuracy of the data provided. Users will personally respond to the Data Controller in relation to the affected or interested parties and to the Spanish Data Protection Agency in case of providing false data or data of third parties without their consent.
It is also informed that the data provided in contact and registration forms must be completed voluntarily except for those data that are marked as mandatory. If the mandatory required data is not provided, the management of the request cannot be guaranteed.
The recipient of the service undertakes to inform the Data Controller of any changes that occur in their data, so that they truthfully reflect their current situation at all times.
*Data processing of minors: Access and use of this website is prohibited to minors under 14 years of age who are not properly authorized. The personal data of such minors can only be collected and processed with the express consent of their parents or legal guardians, and to obtain that consent it is necessary to inform them clearly and in advance about the purposes of that processing. The owner of this website understands that from the moment a minor accesses this website and/or makes a reservation, they have the permission of their parents, guardian, or legal representative. Likewise, we remind adults who are responsible for minors that it will be their sole responsibility if a minor includes their data to request a reservation.
Legitimacy: The legal basis for processing your data will be:
- For the processing of information requests and inquiries:
– Express consent. - For the processing of commercial communications:
– Express consent. - For the processing of Club Villalba registration data:
– Express consent with the request to join the Club. - For the processing of Teide Challenge data:
– Express consent. In case of contracting the service, commercial relationship. - For the processing of reservations data:
– Express consent for the reservation request of the service that has been managed and pre-contractual/contractual relationship. - For the processing of gift vouchers data:
– Commercial relationship.
Consent for the processing of personal data provided in contact and/or registration forms will be understood as expressly, freely, and unequivocally given for the purposes described, by checking the boxes specified on them. Consent will be understood to have been given for the reception of emails and phone calls regarding what the user has requested.
UNSUBSCRIBE FROM COMMERCIAL COMMUNICATIONS: If you do not wish to receive information about the products and services we offer at Hotel Spa Villalba, you can request to unsubscribe by sending an email with the word “UNSUBSCRIBE FROM COMMERCIAL COMMUNICATIONS” to administracion@hotelesreveron.com.
Storage period: Your data will be stored for the following periods:
- For the processing of information requests and inquiries:
– Until consent is revoked. - For the processing of commercial communications:
– Until consent is revoked. - For the processing of signing up for Club Villalba:
– Until consent is revoked. - For the processing of Teide Challenge data:
– Until consent is revoked, however, if you contract the service during the commercial relationship, and in any case, for the periods legally applicable in accounting, tax matters, and for claims. - Reservations:
– Royal Decree 933/2021, of October 26, establishing the obligations of documentary registration and information of individuals or legal entities that carry out accommodation and vehicle rental activities, will apply. In the case of reservations for spa and restaurant services, during the legally established periods for potential claims. - For the processing of gift vouchers:
– During the commercial relationship and, once finished, during the legally established period for potential claims.
Recipients:
- For the processing of information request and inquiries:
– No data transfers are made. - For the processing of commercial communications data:
– No data transfers are made. - For the processing of sign up for Club Villalba data:
– No data transfers are made. - For the processing of Teide Challenge data:
– There are no transfers to other third parties. - For the processing of reservations data:
– Competent Authority (Royal Decree 933/2021). In case of payment to banking entities. Information about Check In and Billing is found in the Additional Information of this Privacy Policy. - For the processing of gift vouchers data:
– In case of payment to banking entities. Information about Billing is found in the Additional Information of this Privacy Policy.
No data will be transferred to other third parties except legal obligation. If in the future Hotel Spa Villalba makes other transfers of personal data, it will inform in due course.
The online reservation management of the hotel establishment that is carried out on this website is done through the service provider of reservations, a collaborating company in the online reservations management, and with whom the data controller maintains a contractual relationship that covers the requirements established in the current data protection regulations.
Data hosting and third parties with access to data
This website is hosted on a server located in the European Union. The only purpose is the hosting of our website, having the hosting modality, therefore, the management company will not have access to your personal data.
Similarly, our emails, as well as cloud backups, are managed by companies located within the territory of the European Union, as well as their hosting servers.
With all external collaborators and professionals who access personal data of our company and clients, we have formalized a contract of access to data on behalf of third parties as established in the current legislation on the protection of personal data.
Additional Information about the data processing carried out at Hotel Spa Villalba:
In compliance with current legislation on the Protection of Personal Data, this Privacy Policy informs about the data processing carried out at Hotel Spa Villalba:
- Customer Check In
When you check in at the hotel, you consent to the processing of your personal data and that of your companions for the purpose of managing the check-in and check-out of guests.
The legal basis for the processing of your personal data is the mandatory check-in of travelers, about guest registration books and entry parts of travelers in hospitality establishments and other similar (Royal Decree 933/2021), as well as the contractual relationship. The collection of this data is mandatory to carry out the check-in. In case of refusal, it will not be possible to provide you with the accommodation service you have contracted.
Your data will be kept in our database for the legally established years in this matter (Royal Decree 933/2021). We inform you that your data will be transferred to the State Security Forces and Bodies by legal obligation. This communication is necessary for the provision of our services. Your data will not be transferred to other third parties, unless there is a legal obligation. No international data transfers will be made.
- Billing
In the event that you contract our services, you are informed and expressly consent that your personal data provided to Hotel Spa Villalba will be used to manage your billing. The legal basis for the processing of your personal data is the obligation to issue invoices for the delivery of goods and services, as established in Law 58/2003, of December 17, General Taxation, for which the collection and processing of your data is mandatory and essential to provide our services. Your data will be kept in our database for the legally established years in accounting and tax matters. The competent public administrations may access your data. This communication is necessary for the provision of our services. Your data will not be transferred to other third parties, unless there is a legal obligation. No international data transfers will be made.
- Management of resumes
Our internal policy for receiving resumes establishes that they should be collected through our email address administracion@hotelesreveron.com or handed in at the hotel itself. In compliance with the principle of data quality, defined in the current data protection regulations, we will keep your personal data for 3 years in order to use them in future selection processes. Following the aforementioned principle, refrain from including unnecessary information in your resume to ensure that the included data are always appropriate and relevant. In case of any modification, please inform us promptly. Your data will not be transferred to third parties. No international transfers of your data are made.
- Use of social networks
We will use our social networks to link news, articles, or other relevant information for our clients and followers. Recognizable photographs of individuals may be included. However, if the individual wishes to remove their image, they can contact the Data Controller of the page to proceed with its removal administracion@hotelesreveron.com.
Under no circumstances will we use the contact details of our followers to include them in our advertising distribution list.
You can exercise your rights as follows:
If you have any concerns regarding the processing of your personal data, you can exercise your rights of access, rectification, erasure, and portability of your data, as well as the restriction or objection to its processing, at any time, by means of a written request accompanied by a document identifying you, addressed to Hoteles Reverón, S.A., Camino San Roque S/N, 38613, Vilaflor, S/C de Tenerife or email administracion@hotelesreveron.com.
The Data Controller must respond to the request to exercise rights within one month from your request. This period may be extended to two months taking into account the complexity and number of requests. The Data Controller will inform the data subject of any such extensions within one month of receiving the request, indicating the reasons for the delay. When the data subject submits a request electronically, the information will be provided electronically where possible, unless the data subject requests it by another means.
If you are not satisfied with the exercise of your rights, you can file a complaint with the Control Authority. You can contact the Spanish Data Protection Agency through the website www.agpd.es.
Modification of these conditions and duration
The owner of this website may modify the conditions determined here at any time, being duly published as they appear here, by their own criteria or motivated by changes in legislation or guidelines from the Spanish Data Protection Agency. The validity of these conditions will apply until they are modified by others duly published.
Legislation and jurisdiction
The applicable legislation to the content of the website will be Spanish and the jurisdiction will correspond to the competent Courts and Tribunals in Santa Cruz de Tenerife.
Last modification: November 20, 2025
