🇧🇦BA🇬🇧EN🇩🇪DE🇪🇸ES🇮🇹IT🇫🇷FR🇵🇹PT🇹🇷TR

Privacy Policy - Hotel Ferijalac

Effective Date: March 22, 2026

Last Updated: March 22, 2026

At Hotel Ferijalac, we are committed to the principle of transparency. This Privacy Policy outlines how we collect, process, and protect your personal data in compliance with the Law on Protection of Personal Data of Bosnia and Herzegovina (Official Gazette No. 12/2025) and the General Data Protection Regulation (GDPR).

---

1. Data Controller

The entity responsible for your personal data is:

  • Hotel Name: Hotel Ferijalac
  • Address: Omera Stupca 19, Sarajevo, Bosnia and Herzegovina
  • Email: info@ferijalac.ba

---

2. Information We Collect

We collect data through three primary channels on our website:

A. Booking Information (Sirvoy)

When you make a reservation via our Sirvoy booking widget, we collect:

  • Identity data (Name, Surname).
  • Contact data (Email address, Phone number).
  • Transaction data (Credit card details—processed securely via Sirvoy and their payment partners).
  • Stay details (Dates, number of guests, special requests).

B. Analytics and Performance (Google Analytics)

We use Google Analytics to collect information about how you use our website. This includes:

  • Technical data (IP address, browser type, device information).
  • Usage data (Pages visited, time spent on site, referral sources).
  • Note: IP addresses are anonymized to protect your identity.

C. Advertising and Attribution (Google Ads & Meta Pixel)

We use Google Ads (including Google Hotel Ads) and Meta Pixel to:

  • Measure the effectiveness of our advertising campaigns.
  • Understand which advertisements lead you to book with us.
  • Show relevant advertisements to users who have previously visited our site (Remarketing).

---

3. Legal Basis for Processing

We process your data based on the following legal grounds:

  • Contractual Necessity: To fulfill your room reservation and provide hospitality services.
  • Legal Obligation: To register guests with local authorities in Sarajevo (CIPS/SPS) as required by the laws of Bosnia and Herzegovina.
  • Consent: For the use of non-essential cookies related to marketing (Google Ads and Meta Pixel).
  • Legitimate Interest: To maintain website security and improve our service offerings through anonymized analytics.

---

4. Third-Party Data Processors

We share your information with the following service providers to ensure a seamless experience:

  • Sirvoy Limited: Our booking engine provider. They maintain guest data and secure payment information.
  • Google LLC: For Google Analytics and Google Hotel Ads.
  • Meta Platforms, Inc.: For Meta Pixel tracking and advertising attribution.
  • Local Authorities: Guest data is shared with the relevant agencies in Bosnia and Herzegovina for mandatory tourism reporting.

---

5. Cookies and Your Choices

Our website uses cookies to function correctly. You have the right to control how these are used:

  • Essential Cookies: Required for the booking engine to function.
  • Advertising Cookies: Used by Google and Meta. You can opt out of Google’s use of cookies or device identifiers by visiting Google’s Ads Settings or the Network Advertising Initiative opt-out page.
  • Browser Settings: You can set your browser to refuse all or some cookies.

---

6. Data Retention

  • Guest Records: Retained for the period required by the tax and tourism laws of Bosnia and Herzegovina.
  • Payment Data: Credit card details stored in the Sirvoy system are typically deleted 30 days after check-out to minimize risk.
  • Analytics Data: Retained for 14 months before being automatically deleted.

---

7. Your Rights

Under the new 2025 Data Protection Law of BiH and the GDPR, you have the following rights:

  • Right of Access: Request a copy of the data we hold about you.
  • Right to Rectification: Correct any inaccurate information.
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your data where we have no legal obligation to keep it.
  • Right to Object: Object to your data being used for direct marketing or profiling.

To exercise these rights, please contact us at info@ferijalac.ba.

---

8. Security

We implement strict technical and organizational measures (including SSL encryption) to ensure your data is protected against unauthorized access, loss, or alteration.