First off, let’s revisit what GDPR is and why it matters for hotels. In a nutshell, it’s new legislation designed to align data protection rules across Europe and fit with today’s digital world. It will mean businesses have to be much clearer about what data they collect and why. Hotels are likely to be considered a ‘data controller’ under GDPR, which means you determine the purposes and means of processing personal data. That comes with obligations as to contracts with ‘data processors’, which are responsible for processing personal data on behalf of a controller. Though an EU law, GDPR may apply to businesses outside the EU if they offer goods or services to individuals in the region. Failure to comply risks a penalty of up to 4% of worldwide turnover. Get the full story at Triptease