Privacy Policy

Our Commitment to Data Security

Boutique Reservations is committed to protecting the privacy and security of all personal data we process. As a specialist provider of remote reservation services, we operate primarily as a Data Processor on behalf of our hotel partners. We ensure that all guest information is handled with the highest level of professionalism and in full compliance with GDPR and relevant data protection laws.

How We Handle Guest Information

To provide a seamless "arrival-ready" experience, we access guest data exclusively through our clients' secured Property Management Systems (PMS).

System-Direct Processing: We do not export, store, or maintain independent databases of guest personal information. All data remains within the hotel's own encrypted environment.

Purpose of Processing: Data is accessed solely for the purpose of managing bookings, verifying payments, and confirming guest preferences to enhance the stay experience.

Minimal Data Access: We follow the principle of "least privilege," accessing only the specific information required to complete a reservation or guest inquiry.

Our Team & Standards

Specialist Training: Every member of the Boutique Reservations team undergoes rigorous, mandatory GDPR and data privacy training.

Confidentiality: Our team operates under strict non-disclosure agreements (NDAs) to ensure that all property and guest information remains entirely confidential.

Security Protocols: We utilize secure, encrypted connections and multi-factor authentication to access client systems, providing an extra layer of protection against unauthorized access.

Data Subjects' Rights

As we process data on behalf of our hotel partners, any requests regarding data access, rectification, or erasure (the "Right to be Forgotten") should be directed to the relevant hotel’s Data Protection Officer. We will fully cooperate with our clients to fulfill these requests promptly.