Privacy Policy

Last update: April 8, 2025

1. Introduction

This Privacy Policy explains how Hotel’s Future, operated and managed by Zdenek Kures, a self-employed freelancer (“we,” “us,” or “our”), collects, uses, shares, and protects your personal information when you visit our website, use our mobile application, or interact with our services, including our membership platform offering hospitality industry courses and resources. This policy applies to all users of our services, regardless of membership tier (Explorer or Innovator).

By accessing or using our services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our policies and practices, please do not use our services.

2. Data Controller

For the purposes of applicable data protection laws, including the European Union General Data Protection Regulation (GDPR), Hotel’s Future is the data controller responsible for your personal information.

3. Personal Information We Collect

3.1 Information You Provide to Us

• Account and Profile Information: When you register, subscribe, or modify your account, we collect data including your name, email address, password, profile photo, professional information, hospitality sector, job title, and preferences.
• Subscription and Payment Data: When you subscribe to our paid membership tiers, we collect payment information, billing details, subscription history, and transaction records.
• Learning Activity: We collect data about your course enrollments, progress, completion status, certifications earned, quiz results, assignments, and engagement with learning materials.
• Learn&Earn Program Data: We track participation in our loyalty program, including “Tips” earned, redemption history, eligible activities completed, and reward preferences.
• Communications: When you contact us, participate in surveys, or engage with our support team, we collect the content of those communications and associated metadata.

3.2 Information Collected Automatically

• Usage Data: We automatically collect information about your interactions with our platform, including:
  Pages and courses viewed
  Time spent on pages and features
  Click patterns and navigation paths
  Search queries
  Frequency and duration of visits
• Device Information: We collect technical data about your device, including:
  IP address
  Browser type and version
  Operating system
  Device identifiers
  Connection information
  Time zone settings
• Cookies and Similar Technologies: We use cookies, web beacons, pixels, and similar technologies to collect information about your browsing behavior and preferences. For more information, please see Section 8 (Cookies and Similar Technologies).
• To manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents, we use the consent tool “Real Cookie Banner”. Details on how “Real Cookie Banner” works can be found at https://devowl.io/rcb/data-processing/. The legal basis for the processing of personal data in this context are Art. 6 (1) (c) GDPR and Art. 6 (1) (f) GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents. The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.

3.3 Information from Third Parties

• Social Media Integration: If you choose to link your account with social media platforms, we may receive information from those platforms in accordance with their privacy policies.
• Payment Processors: We receive transaction confirmation and limited payment details from payment processors.
• Partners and Integrations: We may receive information from hospitality industry partners or third-party service providers that integrate with our platform.

4. How We Use Your Information

We use your personal information for the following purposes:

4.1 Providing and Improving Our Services

• Delivering access to membership features based on your tier (Explorer, Innovator, or Visionary)
• Processing payments and managing subscriptions
• Administering the Learn&Earn loyalty program
• Customizing content recommendations and learning paths
• Analyzing usage patterns to improve platform design and functionality
• Troubleshooting technical issues

4.2 Communications

• Sending essential communications about your account, subscriptions, or transactions
• Delivering educational content, newsletters, and updates on industry trends (with opt-out options)
• Notifying you about Learn&Earn opportunities and rewards
• Providing customer support and responding to inquiries
• Distributing administrative notices, policy updates, and security alerts

4.3 Marketing and Promotion

• Sending promotional communications about new courses, special offers, or events (subject to your consent where required)
• Conducting market research and feedback collection
• Managing and optimizing marketing campaigns

4.4 Legal Compliance and Protection

• Complying with legal obligations and industry regulations
• Establishing, exercising, or defending legal claims
• Protecting against fraudulent, unauthorized, or illegal activity
• Enforcing our Terms of Service and other agreements

5. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process your personal information based on one or more of the following legal bases:

• Performance of Contract: Processing necessary to provide services under our Terms of Service or other agreements with you, including delivering course content and managing your membership.
• Legitimate Interests: Processing necessary for our legitimate interests, provided those interests aren’t overridden by your rights and freedoms. This includes improving our services, ensuring security, preventing fraud, and marketing related offerings.
• Legal Obligation: Processing necessary to comply with applicable laws, regulations, or legal proceedings.
• Consent: Processing based on your specific consent, such as for certain types of marketing communications or cookie usage. You can withdraw consent at any time.

6. Data Sharing and Disclosure

6.1 Service Providers

We share information with third-party service providers who perform services on our behalf, including:

• Cloud hosting and infrastructure providers
• Payment processors and subscription management services
• Email delivery and customer communication platforms
• Analytics and performance monitoring tools
• Customer support services

These providers are contractually bound to use personal information only as necessary to provide services to us and in accordance with this Privacy Policy.

6.2 Business Transfers

If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any change in ownership or uses of your personal information.

6.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency). We may also disclose information when we believe disclosure is necessary to protect our rights, prevent fraud, or ensure the safety of our users.

6.4 With Your Consent

We may share your information in other contexts with your consent.

7. International Data Transfers

Hotel’s Future operates globally, which means your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country.

When we transfer personal information from the EEA, UK, or Switzerland to countries not deemed to provide an adequate level of data protection, we use appropriate safeguards such as:

• Standard Contractual Clauses approved by the European Commission
• EU-US Data Privacy Framework or Swiss-US Privacy Framework certifications (when applicable)
• Binding corporate rules with our service providers (when available)

8. Cookies and Similar Technologies

8.1 Types of Cookies We Use

• Essential Cookies: Required for the operation of our platform, enabling functions like authentication, security, and saving preferences.
• Performance/Analytics Cookies: Help us understand how visitors interact with our platform by collecting anonymous information.
• Functionality Cookies: Allow us to remember choices you make and provide enhanced features.
• Targeting/Advertising Cookies: Used to deliver relevant advertisements and track campaign performance.

8.2 Cookie Management

You can manage cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. However, if you block certain cookies, you may not be able to use all features of our platform.

To manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents, we use the consent tool “Real Cookie Banner”. Details on how “Real Cookie Banner” works can be found at https://devowl.io/rcb/data-processing/. The legal basis for the processing of personal data in this context are Art. 6 (1) (c) GDPR and Art. 6 (1) (f) GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents. The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.

8.3 Do Not Track

Some browsers have “Do Not Track” features. Our platform does not currently respond to Do Not Track signals.

9. Your Rights and Choices

9.1 GDPR Rights

If you are in the EEA, UK, or Switzerland, you have the following rights regarding your personal information:

• Right of Access: Request a copy of your personal information.
• Right to Rectification: Correct inaccurate or complete incomplete information.
• Right to Erasure: Request deletion of your personal information in certain circumstances.
• Right to Restrict Processing: Request limitation of processing in certain circumstances.
• Right to Data Portability: Receive your data in a structured, machine-readable format.
• Right to Object: Object to processing based on legitimate interests or for direct marketing.
• Rights Related to Automated Decision-Making: Not be subject to decisions based solely on automated processing that produce legal effects.
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.

9.2 California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), including:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of the sale or sharing of personal information
• Right to non-discrimination for exercising these rights

9.3 How to Exercise Your Rights

To exercise your data protection rights, please email us at hello@hotelsfuture.com or use the privacy controls in your account settings. We will respond to your request within the timeframe required by applicable law (generally 30 days under GDPR).

10. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

• Encryption of sensitive data including payment information
• Secure access controls and authentication protocols
• Regular security assessments and vulnerability testing
• Staff training on data protection practices
• Data processing agreements with third-party service providers
• Incident response procedures

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

11. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Specific retention periods include:

• Account information: While your account is active plus 24 months after account closure
• Payment records: 10 years (for legal compliance with tax regulations)
• Learn&Earn program data: Duration of your membership plus 6 months
• Communication records: 2 years from the date of communication
• Usage data: In aggregated form for analytics purposes for up to 3 years

When we no longer need personal information, we securely delete or anonymize it.

12. Children’s Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us at hello@hotelsfuture.com, and we will take steps to delete such information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. The updated version will be indicated by an updated “Last Updated” date. We encourage you to review this Privacy Policy periodically.

14. Contact Information

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

Hotel’s Future
Email: hello@hotelsfuture.com
Address: Zizkova 1129, 252 62, Horomerice, Czech republic
Data Protection Officer: hello@hotelsfuture.com

You have the right to lodge a complaint with your local data protection authority if you believe our processing of your personal information violates applicable law.