Privacy Policy

How we handle your personal data

Last updated: 2026-01-09

On this page

Overview

This Privacy Policy explains what personal data we collect, why we collect it, and how we use it when you browse our website, contact us, or make a room booking.

If you are looking for the rules and commercial terms of a booking (payments, cancellation deadlines, check-in/out, and guest obligations), please read our Terms & Conditions for Room Bookings.

Who is responsible for your data

The data controller is Skylar SRL operating as Hostel Brikette ("we", "us").

If you have questions about this policy or want to exercise your privacy rights, contact us at [email protected].

Personal data we collect

When you contact us or request a booking, you may provide details such as your name, email address, phone number, nationality, dates of stay, and any messages you send us.

If you complete a booking through an Online Travel Agent (OTA) or third‑party booking engine, that provider processes your payment details under their own privacy policy. We typically receive the booking information we need to host you (for example: guest name, contact details, dates, and reservation reference).

When you browse our website, our servers may process basic technical data (such as IP address, device and browser information, and pages requested) for security, debugging, and performance.

How we use your data

To respond to enquiries and provide customer support.

To process and manage your reservation, check-in, and stay-related communications.

To comply with legal obligations (including those related to hospitality and public safety).

To secure and maintain our website (fraud prevention, abuse monitoring, and reliability).

Legal bases (why we are allowed to process data)

Contract: to take steps at your request before entering into a booking and to perform the booking contract.

Legal obligation: to meet requirements imposed by applicable law (including Italian regulations for hospitality).

Legitimate interests: to run, secure, and improve our website and communications, provided those interests do not override your rights.

Who we share data with

We share personal data only when necessary to deliver services or comply with law. This may include booking platforms you choose to use, payment providers used by those platforms, email/communications providers, and technical service providers that host or protect our website.

We do not sell personal data.

How long we keep data

We keep personal data only for as long as needed for the purposes described above, and to meet legal, accounting, or reporting requirements.

Retention periods can vary depending on the type of record and the applicable legal obligation.

How we protect your data

We use reasonable technical and organisational measures to protect personal data against loss, misuse, and unauthorised access.

No system can be guaranteed 100% secure, but we continuously work to improve security.

Your rights

Depending on your location and applicable law, you may have rights to access, correct, delete, or restrict the processing of your personal data, and to object to certain processing.

To exercise your rights, contact us at [email protected]. We may need to verify your identity.

International transfers

Some service providers may process data outside your country. Where required, we use appropriate safeguards for international data transfers.

Changes to this policy

We may update this Privacy Policy from time to time. The latest version is the one published on this page.

Back to top