Privacy Policy

Last Updated: December 28, 2025

The Hotel Cat ("we," "us," or "our") operates the website https://www.thehotelcat.com (the "Service"). This Privacy Policy informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service, explains your privacy rights, and how the law protects you.

1. Data Controller

The data controller responsible for your personal data is The Hotel Cat. If you have any questions about this policy, our contact details are at the end of this document.

2. Information We Collect and Legal Basis for Processing

We collect and process personal data based on the following legal grounds: consent (which you can withdraw), legitimate interest (to operate and improve our Service), contractual necessity (to provide services you request), and legal obligation.

2.1. Personal Data You Provide

  • Contact Information: When you subscribe to our newsletter, contact us, or submit a review, we may collect your email address, first name, and last name. Legal basis: Consent or Legitimate Interest.
  • User Content: Any reviews, comments, or other content you voluntarily submit to our platform. Legal basis: Consent.

2.2. Data Collected Automatically (Usage Data)

  • Technical Data: Internet Protocol (IP) address, browser type and version, device type, operating system, and unique device identifiers.
  • Usage Data: Pages visited, time and date of visits, time spent on pages, referral source, and other diagnostic data. Legal basis: Legitimate Interest (to analyze performance and secure our site).

2.3. Cookies and Tracking Technologies

We use cookies and similar technologies. You can manage your preferences via our Cookie Banner.

  • Necessary Cookies: Essential for the website to function. They do not require consent.
  • Analytics Cookies: Help us understand how visitors interact with the website (e.g., Google Analytics). We use this data to improve our Service.
  • Advertising Cookies: Used by our advertising partners (like Google AdSense) to deliver personalized ads based on your browsing interests across websites. Legal basis for non-essential cookies: Consent.

For detailed information about the specific cookies we use, please refer to our Cookie List.

Essential Cookies:
  • PHPSESSID – Session identifier for website functionality.
Analytics Cookies (if accepted):
  • _ga, _gid – Google Analytics cookies for distinguishing users.
Advertising Cookies (if accepted):
  • Various cookies set by Google AdSense and our advertising partners. These may include _gads, IDE. For more information, please visit How Google uses data.

3. How We Use Your Data

We use the collected data for the following purposes:

  • To provide, operate, and maintain our Service.
  • To send you newsletters (if you have subscribed).
  • To respond to your inquiries and provide customer support.
  • To analyze website traffic and user behavior to improve our content and user experience.
  • To detect, prevent, and address technical issues and security threats.
  • To personalize advertising displayed on our site through our advertising partners, such as Google AdSense.
  • To comply with legal obligations.

4. Data Sharing and Third Parties

We may share your data with trusted third-party service providers under strict confidentiality agreements:

  • Analytics Providers: Such as Google Analytics, to understand website usage.
  • Advertising Partners: Such as Google AdSense, to serve relevant ads. These partners use cookies to serve ads based on a user's prior visits to our website or other websites. You can learn more about Google's advertising practices and how to opt-out of personalized advertising by visiting Google Ad Settings or the Digital Advertising Alliance's opt-out page.
  • Cloud Hosting & Infrastructure Providers: To store and process data.
  • Legal and Law Enforcement: If required by law or to protect our rights.

We do not sell your personal data to third parties.

5. International Data Transfers

Your data may be transferred to and processed in countries outside of your residence, including the United States. We ensure such transfers are protected by appropriate safeguards, such as the European Commission's Standard Contractual Clauses (SCCs) or the UK's International Data Transfer Agreement (IDTA), where applicable. By using our Service, you consent to this transfer.

6. Data Retention

We retain your personal data only for as long as necessary for the purposes set out in this policy:

  • Subscription Data: Retained until you unsubscribe or request deletion.
  • Usage Data: Typically retained for 26 months for analytics purposes.
  • Cookie Data: Duration varies per cookie (from session to several years). You can manage cookies via your browser settings.
  • We may retain certain data for longer if required by law or for legitimate business needs (e.g., security, fraud prevention).

7. Your Data Protection Rights

Depending on your location (e.g., EEA, UK, California), you have rights regarding your personal data:

  • Right to Access: Request a copy of your personal data.
  • Right to Rectification: Request correction of inaccurate data.
  • Right to Erasure (Right to be Forgotten): Request deletion of your data.
  • Right to Restrict Processing: Request temporary restriction of processing.
  • Right to Data Portability: Receive your data in a structured, machine-readable format.
  • Right to Object: Object to processing based on legitimate interest (including direct marketing).
  • Right to Withdraw Consent: Withdraw consent at any time for processing based on consent.
  • Right to Opt-Out of Sale/Sharing (CCPA/CPRA): We do not sell your data. You can opt-out of targeted advertising via the links in Section 4.

To exercise any of these rights, please contact us at contact@thehotelcat.com. We may need to verify your identity before processing your request. You also have the right to lodge a complaint with your local data protection authority.

8. Children's Privacy

Our Service is not intended for individuals under the age of 16 (or the age of digital consent in your country). We do not knowingly collect personal data from children. If you are a parent/guardian and believe your child has provided us with data, please contact us. We will take steps to remove such information from our servers.

9. Security of Your Data

We implement appropriate technical and organizational measures (including encryption, access controls, and secure protocols) to protect your data. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

10. Changes to This Privacy Policy

We may update this policy periodically. We will notify you of significant changes by posting the new policy on this page and updating the "Last Updated" date. We encourage you to review this policy periodically.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your data, you can contact us:

This Privacy Policy has been designed to be compliant with the EU General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act (CCPA) as amended by the CPRA, and other relevant privacy laws.