top of page

PRIVACY POLICY

Last updated: February 2, 2026

General Information

The confidentiality of your personal data is one of the main concerns of SC NETEA GROUP SRL, with its registered office in Gura Humorului, Suceava County, Romania, acting as a data controller.

This document is intended to inform you about the processing of your personal data in the context of using the website www.foxchalet.com (hereinafter referred to as the “Fox Chalet website”).

Categories of Personal Data Processed

SC NETEA GROUP SRL will process the personal data that you provide directly in the context of using the website, such as data provided through contact forms, inquiries, complaints, or during the reservation process.​

Personal data may be provided directly by you or transmitted to SC NETEA GROUP SRL through booking platforms, online booking service providers, or reservation management systems.

Purposes and Legal Grounds for Processing

SC NETEA GROUP SRL processes your personal data for the following purposes:

1. Reservation management and contract performance

Purpose: Taking, managing, and confirming reservations, providing accommodation services, invoicing, communication necessary for the stay, and fulfillment of contractual obligations.

Legal basis: Processing is necessary for the performance of a contract to which the data subject is a party, pursuant to Article 6(1)(b) of Regulation (EU) 2016/679 (GDPR).

2. Marketing and commercial communications

Purpose: Sending commercial communications by email regarding services, offers, events, and activities offered by Fox Chalet.

Legal basis: Your explicit consent.

You may express your consent by completing and checking the corresponding box in the newsletter subscription form available on the website.

To unsubscribe, you may use the “unsubscribe” option available at the end of each email.

Providing data for this purpose is voluntary. Refusing consent will not have any negative consequences for you.

3. Request management and website improvement

Purpose: Handling requests, complaints, or claims, monitoring traffic, performing statistical analyses, and improving the user experience on the website.

Legal basis: The legitimate interest of SC NETEA GROUP SRL to ensure the proper functioning of the website and the continuous improvement of the services offered.

Data Retention Period

SC NETEA GROUP SRL will process your personal data for as long as necessary to fulfill the purposes for which they were collected.

If you are a client, the data will be processed for the duration of the contractual relationship and thereafter, in accordance with applicable legal obligations.

If you exercise your right to delete your user account, this action will be interpreted as an unsubscribe request from commercial communications. Deleting the account does not automatically result in the deletion of all personal data if there are legal obligations to retain such data.

If there is at least one active reservation, the request to delete the account may be processed only after its completion.

Withdrawal of consent for marketing purposes does not affect processing carried out prior to such withdrawal.

Disclosure of Personal Data

For the purposes of processing, SC NETEA GROUP SRL may disclose your data to:

  • IT service providers;

  • online booking service providers and reservation management systems;

  • payment processors;

  • email and communication service providers;

  • contractual partners involved in service delivery (e.g., guides, activity facilitators, instructors, external collaborators);

  • public authorities, where disclosure is required by law.

Data are disclosed strictly to the extent necessary to achieve the purposes mentioned above.

Transfer of Personal Data

Personal data may be transferred to countries within the European Union or to countries that ensure an adequate level of data protection, in accordance with applicable data protection legislation.

Your Rights

In accordance with applicable legislation, you benefit from the following rights:

  • the right to be informed;

  • the right of access to data;

  • the right to rectification;

  • the right to erasure (“the right to be forgotten”);

  • the right to restriction of processing;

  • the right to data portability;

  • the right to object, including objection to processing for direct marketing purposes;

  • the right not to be subject to an automated individual decision;

  • the right to lodge a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP) or with the competent courts.

Contact

For any questions regarding the processing of personal data or for exercising your rights, you may contact us at:

Fox Chalet, operated by SC NETEA GROUP SRL CUI: 44698780

Email: contact@foxchalet.com

Phone: 0766649645

Cookie Policy

The Fox Chalet website uses cookies. For detailed information regarding their use, please consult the dedicated Cookie Policy page.

Additional Information (Art. 13 GDPR)

Data Controller Identification and Contact Details

Controller: SC NETEA GROUP SRL

Registered office: Str. Fagului Nr. 4, Gura Humorului SV, 725300

Place of business (accommodation unit): Str Salatruc Nr8C, Sat Molid, Comuna Vama, SV 727591

 

Trade Register No.: J33/1459/2021

Tax Identification No. (CUI): 44698780

E-mail: contact@foxchalet.com

Phone: 0766649645

 

Categories of Personal Data and Their Source (Details)

Depending on your interaction with the website and services, we may process the following categories of personal data:

  • Identification and contact data: first and last name, email address, phone number, address (where required for invoicing/contract purposes);

  • Booking data: stay period, number of guests, communicated preferences, special requests, booking history;

  • Billing/accounting data: invoice/receipt details and information required to meet tax obligations;

  • Communication data: content of messages sent via forms/email/phone;

  • Technical data: IP address, device/browser identifiers, access logs, cookies (in accordance with the Cookies Policy);

  • Payment-related data: we do not store full card details; payments are processed by payment processors/partners in accordance with their own policies (where applicable).

Source of data: primarily from you; in some cases from booking platforms/partners and technical providers (logs, cookies).

 

Purposes and Legal Bases (Details)

In addition to the purposes mentioned above, we may process personal data for:

  • Compliance with legal obligations (e.g. accounting/tax records, reporting to authorities, obligations specific to accommodation services) – Art. 6(1)(c) GDPR;

  • Protection of our rights and legitimate interests (dispute management, fraud/abuse prevention, security) – Art. 6(1)(f) GDPR;

  • IT administration and security (technical monitoring, backups, logging) – Art. 6(1)(f) GDPR;

  • Non-essential cookies (analytics/marketing), where used – Art. 6(1)(a) GDPR (consent).

 

Recipients and Data Processors

We may disclose personal data to: IT service providers (hosting, maintenance, email), online booking/booking service providers, payment processors, marketing providers (with consent only), consultants/accountants/lawyers, as well as public authorities where required by law.
In our relationships with service providers (processors), we enter into data processing agreements and require appropriate security measures.

 

Transfers Outside the EEA

If we use providers located outside the European Economic Area, transfers will be carried out only in accordance with GDPR requirements (adequacy decisions, standard contractual clauses and/or additional safeguards).
Details of such transfers, where applicable, may be requested at contact@foxchalet.com.

Data Retention Periods (Indicative)

We retain personal data only for as long as necessary for the purposes and legal obligations. Indicatively:

  • Contractual and booking data: for the duration of the contractual relationship and thereafter in accordance with applicable legal retention periods (typically for archiving/accounting);

  • Billing/accounting data: in line with statutory retention obligations;

  • Requests/complaints: for the duration of resolution and then for a reasonable period for record-keeping/defense;

  • Marketing (newsletter): until consent is withdrawn or up to a maximum of 3 years from the last interaction, as applicable;

  • Technical logs: generally up to 6–12 months, depending on needs and security requirements.

 

Data Security

We implement appropriate technical and organizational measures to protect personal data (access control, passwords, backups, updates, access limitation, confidentiality). However, no transmission over the internet is 100% secure.

 

Automated Decision-Making and Profiling

We do not use automated individual decision-making that produces significant legal effects on you. If marketing/profiling cookies are used, they are activated only with consent, in accordance with the Cookies Policy.

 

How to Exercise Your Rights

To exercise your rights, you may contact us at contact@foxchalet.com. We may request additional information to verify your identity.
You also have the right to lodge a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP).

bottom of page