Our Maestro proprietary API (aka Genomi), as well as our Comtrol integrations comply with this requirement in version 5.5. As such, we are working with all our integration partners to facilitate these changes. As part of GDPR, our integrations are required to let each other know when a request to be forgotten has been initiated by a guest. Maestro only shares data through integrations you may use on property, including such integrations as GDS/OTA, Revenue Management, Credit Card, POS, PBX. Maestro does not share any data outside your daily operational needs. DOES MAESTRO SHARE GUEST DATA?Īs a data controller, you have the right to know exactly when Maestro processes your clients’ subject data and what we do with it. When you use Maestro, your guests’ data is processed in a GDPR compliant and secure way. Maestro is a data processor, so we are restricted in how we use the data we collect. Hoteliers decide what data they collect and they have the direct relationship with the guest, so hotels are data controllers under GDPR. In the case of ResWave and GEM, regardless of how Maestro is hosted, you are the data controller and Maestro is the data processor. If you are using the cloud-hosted version of Maestro, hosted by us for your use, then Maestro is the data processor, and you are the data controller. If you are self-hosting or using the on-premise version of Maestro, you are considered both a data controller and data processor under the regulation. It is important to distinguish an element of where each party fits into the GDPR regulation. In accordance with the regulation, we have balanced the need for security and data privacy protection with the legal, contractual, and commercial requirements of hoteliers. Maestro continues to work with our legal, privacy, and cybersecurity advisors to audit its products and processes for GDPR compliance. It must be as easy to withdraw consent as it is to give it. The GDPR calls for consent from guests to be clear and distinguishable from other matters and provided in an intelligible and easily accessible form, using clear and plain language. It gives them the right to access their data, to know how it is being used, to withdraw consent and to be granted the “right to be forgotten”. In brief, this regulation specifies that guests must supply written consent to the use of their personal information. You can learn about the details of GDPR here. We advise that you seek qualified legal counsel and regulatory advice from your business professionals. This document is not intended to educate you on the specifics of GDPR, but rather to make clear the role of Maestro in this regard. It is critical to note that our products represent only a subset of those products affecting your GDPR compliance obligations, and we recommend you consult with your other vendors, website providers, legal counsel, and security assessors to ensure you are fully compliant with the regulation. This document addresses the status of our products to help you ensure that our products fit in with your Global Data Protection Regulation (“GDPR”) obligations. This document is intended for current and prospective clients of Maestro products, addressing the entire Maestro Suite, the ResWave Booking Engine and the GEM Guest Feedback system (collectively “Maestro”). GDPR – Global Data protection Regulation and Maestro Compliance Status
#Maestro data windows#
Maestro is PCI certified and may be deployed as a Web Browser and/or Windows application, locally On-premise or hosted in the Cloud, maintaining Maestro as an investment that will continue to grow and adapt as new technologies emerge.
0 kommentar(er)
