Age Verification Required

You must be 18 years or older to access Star Luxury Resorts website. Please confirm your age to continue.

GDPR Compliance

Your Data Protection Rights Under EU Law

Last updated: March 15, 2025

Star Luxury Resorts is committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR). This policy explains your rights under GDPR and how we process your personal data.

Your Rights Under GDPR

Right to Access

You have the right to request copies of your personal data. We will provide this information within 30 days of your request.

Right to Rectification

You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.

Right to Erasure

Also known as 'the right to be forgotten', you can request that we delete your personal data in certain circumstances.

Right to Restrict Processing

You have the right to request that we limit how we use your personal data.

Right to Data Portability

You can request that we transfer your data to another organization or directly to you in a machine-readable format.

Right to Object

You have the right to object to certain types of processing, including processing for direct marketing.

Legal Basis for Processing

We process personal data under the following legal bases:

  • Consent: When you explicitly agree to the processing
  • Contract: To fulfill our contractual obligations to you
  • Legal Obligation: To comply with the law
  • Legitimate Interests: When processing is necessary for our legitimate business interests

Data Protection Measures

We implement appropriate technical and organizational measures including:

  • Encryption of personal data
  • Regular security assessments
  • Staff training on data protection
  • Access controls and authentication
  • Data backup and recovery procedures
  • Regular policy reviews and updates

International Data Transfers

When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place through:

  • Standard contractual clauses
  • Adequacy decisions by the European Commission
  • Binding corporate rules for transfers within our group

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements.

Data Breaches

In the event of a personal data breach, we will notify affected individuals and relevant supervisory authorities within 72 hours of becoming aware of the breach, where feasible.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who can be contacted for any GDPR-related queries:

  • Email: dpo@starluxuryresorts.com
  • Phone: +48 22 555 1236
  • Address: Nowy Świat 15, 00-029 Warsaw, Poland

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority. In Poland, this is:

Personal Data Protection Office (UODO)
ul. Stawki 2, 00-193 Warsaw
Website: https://uodo.gov.pl/

Changes to This Policy

We may update this GDPR policy from time to time. Any changes will be posted on this page with an updated revision date.

Contact Us

For any GDPR-related requests or questions, please contact our Data Protection Officer using the details provided above.

We use cookies to enhance your experience on our website. By continuing to browse, you agree to our Cookie Policy.