PRIVACY POLICY
​
Privacy Policy for www.whitehouse-tarifa.com
​​
Last updated: June 2026
1. Data controller
In accordance with Regulation (EU) 2016/679, the General Data Protection Regulation (GDPR), and Spanish Organic Law 3/2018 on Personal Data Protection and Guarantee of Digital Rights (LOPDGDD), users are informed that the data controller is:
El Encuentro del Semaforo, S.L.
Registered address: Polígono 47, Parcela 44, Cañada de Oliveros, 11380 Tarifa, Cádiz, Spain
Postal address: Apartado Postal 29, 11380 Tarifa, Cádiz, Spain
Tax identification number: B11383510
Mercantile Registry of Cádiz: Volume 1088, Folio 11, Sheet CA-11948
Website: www.whitehouse-tarifa.com
Contact email: info@whitehouse-tarifa.com
2. Purpose of this privacy policy
This privacy policy explains how El Encuentro del Semaforo, S.L. collects, uses, stores and protects personal data provided by users through this website.
This website provides information about White House Tarifa, its accommodation services, hospitality activities and related services located in Tarifa and Bolonia, Cádiz, Spain.
Users may contact the company, request information, check availability, make enquiries or access booking-related services through this website.
3. Personal data we may collect
Depending on how the user interacts with the website, El Encuentro del Semaforo, S.L. may collect the following personal data:
Name and surname
Email address
Telephone number
Postal address, where necessary
Country of residence
Booking or enquiry details
Arrival and departure dates
Number of guests
Selected accommodation
Messages or comments sent by the user
Payment or transaction-related information, where applicable
Technical data related to website use, such as IP address, browser, device information and cookies, where applicable
Any other information voluntarily provided by the user through forms, email or other communication channels
Where required by applicable accommodation, tourism, tax, accounting, public security or administrative regulations, guests may also be asked to provide identification, registration or stay-related information necessary for legal compliance.
4. How personal data is collected
Personal data may be collected through:
Contact forms
Booking or availability request forms
Email communications
Telephone or direct communications
Online booking tools
Payment or reservation systems, where applicable
Cookies or similar technologies
Technical services integrated into the website
Communications before, during or after a stay
Users must ensure that the personal data they provide is accurate, complete and up to date.
If a user provides personal data relating to third parties, such as other guests, the user confirms that they are authorised to provide such data and that the affected persons have been informed of this privacy policy.
5. Purposes of data processing
Personal data may be processed for the following purposes:
To respond to enquiries sent by users
To manage accommodation requests and reservations
To confirm, modify or cancel bookings
To communicate with guests before, during and after their stay
To provide accommodation and hospitality services
To manage check-in, check-out and guest-related administration
To process payments, deposits, invoices or booking-related transactions, where applicable
To comply with legal, tax, accounting, tourism, consumer protection, public security or administrative obligations
To manage incidents, requests, complaints, claims or damage related to the stay
To maintain the security and proper functioning of the website
To prevent fraud, unlawful use or misuse of the website or services
To improve the quality, security and usability of the website and services
To manage consent preferences, including cookies and privacy choices
To defend the rights and legitimate interests of El Encuentro del Semaforo, S.L. where necessary
Personal data will not be used for profiling or automated decision-making that produces legal effects or similarly significant effects on the user.
6. Commercial communications
El Encuentro del Semaforo, S.L. will not send commercial communications by electronic means unless the user has expressly authorised them or unless another legal basis allows such communications under applicable law.
If newsletters, promotional communications or marketing campaigns are introduced in the future, users will be informed in advance and, where required, their express consent will be requested.
Users may withdraw their consent to receive commercial communications at any time.
7. Legal basis for processing personal data
The legal basis for processing personal data may vary depending on the purpose of the processing.
The legal bases may include:
The user’s consent, for example when submitting a contact form, accepting non-essential cookies or requesting certain communications.
The performance of a contract or the application of pre-contractual measures, for example when managing booking requests, reservations, guest communications or accommodation services.
Compliance with legal obligations, for example tax, accounting, tourism, public security, consumer protection or administrative obligations applicable to accommodation providers.
The legitimate interest of El Encuentro del Semaforo, S.L., for example to manage communications, protect the website, prevent fraud, handle claims, improve services, defend legal interests or ensure the proper operation of the website, provided that such interests do not override the rights and freedoms of the user.
8. Is providing personal data obligatory?
Providing personal data through the website is generally voluntary.
However, some data may be necessary in order to respond to an enquiry, process a reservation, provide accommodation services, manage payments or comply with legal obligations.
If the user does not provide the necessary information, El Encuentro del Semaforo, S.L. may be unable to respond to the enquiry, complete the reservation or provide the requested service.
9. Data retention
Personal data will be kept only for as long as necessary to fulfil the purposes for which it was collected.
In particular:
Data related to enquiries will be kept for the time necessary to respond and manage the communication.
Data related to reservations and accommodation services will be kept for the duration of the contractual relationship and afterwards for the legally required periods.
Data related to invoices, payments, tax or accounting obligations will be kept for the periods required by applicable law.
Data required for public security, tourism or guest registration obligations will be kept for the legally established periods.
Data related to claims, incidents or responsibilities may be retained for the period necessary to manage or defend against possible legal actions.
Data processed on the basis of consent will be kept until the user withdraws consent, unless there is another legal basis for retaining it.
When personal data is no longer necessary, it will be deleted, blocked or anonymised in accordance with applicable law.
10. Recipients of personal data
Personal data will not be sold to third parties.
Personal data may be accessed or processed by third-party service providers where necessary for the operation of the website, management of reservations, provision of accommodation services or compliance with legal obligations.
These providers may include:
Website hosting and maintenance providers
Wix.com and related Wix services
Booking or reservation management tools
Payment service providers, where applicable
Email and communication service providers
IT support providers
Accounting, tax, legal or administrative advisers
Public authorities, courts, law enforcement bodies, tax authorities or other competent bodies where legally required
Insurance providers, where applicable
Other providers necessary for the proper provision of the requested services
Third-party providers that process personal data on behalf of El Encuentro del Semaforo, S.L. must process such data in accordance with applicable data protection regulations and, where required, under appropriate data processing agreements.
11. Wix platform
This website is hosted and operated through the Wix platform.
Wix.com may process certain personal data on behalf of El Encuentro del Semaforo, S.L. as a website hosting, technical infrastructure and digital services provider.
Wix may collect and process technical data necessary for the operation, security, monitoring, performance and maintenance of the website, including data related to visitors, devices, sessions, cookies, forms and website interactions.
The use of Wix services may involve processing by Wix.com Ltd. and affiliated entities, subcontractors or service providers located in different jurisdictions.
Users may consult Wix’s own privacy and data protection information on its official website.
12. International data transfers
Some service providers used for website hosting, technical infrastructure, communications, booking management, payment processing, analytics, security or support may process personal data outside the European Economic Area.
Where international data transfers occur, they will be carried out in accordance with the GDPR and protected by appropriate safeguards, such as:
Adequacy decisions adopted by the European Commission
Standard Contractual Clauses approved by the European Commission
Additional technical, organisational or contractual safeguards
Any other lawful transfer mechanism recognised under applicable data protection regulations
13. Cookies and similar technologies
This website may use cookies and similar technologies.
Some cookies are technical and necessary for the correct functioning, security and management of the website. These cookies do not require prior consent.
Other cookies, such as analytical, preference, advertising or third-party cookies, where used, will only be installed when legally permitted and, where required, after obtaining the user’s consent.
Users can find further information in the website’s Cookies Policy.
14. Security measures
El Encuentro del Semaforo, S.L. adopts appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, loss, disclosure or destruction.
These measures are applied taking into account the nature of the data, the risks involved, the state of technology and the services used.
However, users should be aware that no online system can guarantee absolute security. Users are responsible for using secure devices, networks and passwords when interacting with the website or online services.
15. Data of minors
The services offered through this website are not specifically directed at minors.
Minors should not provide personal data through this website without the consent of their parents, guardians or legal representatives where such consent is required by applicable law.
If El Encuentro del Semaforo, S.L. becomes aware that personal data of a minor has been collected without the required authorisation, appropriate measures will be taken to delete or restrict such data where necessary.
16. User rights
Under the GDPR and the LOPDGDD, users may exercise the following rights:
Right of access: to know whether their personal data is being processed and to obtain information about such processing.
Right of rectification: to request the correction of inaccurate or incomplete personal data.
Right of erasure: to request the deletion of personal data where legally applicable.
Right to restriction of processing: to request that the processing of personal data be limited in certain circumstances.
Right to object: to object to the processing of personal data in certain circumstances.
Right to data portability: to receive personal data in a structured, commonly used and machine-readable format, where legally applicable.
Right to withdraw consent: to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
Right not to be subject to automated individual decision-making, including profiling, where applicable.
To exercise these rights, users may contact:
The request should clearly indicate the right being exercised and include sufficient information to identify the user.
Where necessary, El Encuentro del Semaforo, S.L. may request additional information to verify the identity of the person making the request.
17. Right to lodge a complaint
Users have the right to lodge a complaint with the Spanish Data Protection Authority, the Agencia Española de Protección de Datos, if they consider that the processing of their personal data does not comply with applicable data protection regulations.
Official website:
18. Accuracy of personal data
Users are responsible for ensuring that the personal data they provide is accurate, complete and up to date.
El Encuentro del Semaforo, S.L. shall not be responsible for inaccurate or outdated information provided by users.
19. Changes to this privacy policy
El Encuentro del Semaforo, S.L. may update this privacy policy from time to time to reflect changes in legislation, website operation, services, technical providers, booking systems or data processing activities.
Users are advised to review this page periodically.
If significant changes are made, users will be informed where required by applicable law.
​