Privacy policy

This Privacy Policy applies to users of the website. The Privacy Policy defines the principles of processing and storage of personal data provided by users in relation with their use of the services offered by Hit Preless d.o.o.


Hit Preless d.o.o. will respect your privacy and use your personal data only for the purposes set out in this Policy. We will carefully protect your personal data in accordance with the legislation governing the protection of personal data (EU Regulation 2016/679 (“GDPR”) and the Personal Data Protection Act – ZVOP-1).

1. Data controller

The Data Controller is Hit Preless d.o.o., Žlebe 1, 1215 Medvode, Slovenia, registration number: 5543851000, VAT ID: SI71494944.

2. Data processor

The Data Controller cooperates with external service providers that process the data exclusively on behalf of the Controller. This process is designed to enable bookings and payments for bookings, support analytics and marketing services, improve the service and user experience, and other.


The Data Controller and the Data Processor have defined their respective relationships and obligations. Processors are not authorized to share personal data for their own purposes or third party purposes, or to disclose it to third parties or third countries. The Controller may disclose personal data to law enforcement authorities and other government bodies if required to do so by law or as necessary for the prevention, detection or prosecution of crime and fraud.

3. Collection of personal data

How do we collect your personal data? 


All personal data you provide to us is private and confidential. 

We collect personal data by means of a booking form where the user enters all personal data relevant to the booking and our performance of the requested service. 


We physically collect the guest’s personal data at the check-in desk. 

We collect anonymous information about your use of our website using cookies and similar technologies. For more information on how we use these technologies to collect information about you, please refer to the Cookie Policy


What personal data do we collect? 


If you are only a visitor to the website, we only collect information about you by means of cookies. If you are a service user or a subscriber to services provided by the Company, we also collect other personal information about you which we need to provide the services you have ordered or are using. Such personal data includes: 

  • the user’s first name, last name, e-mail address and country;
  • credit card details (card type, card number, expiry date and CVC code);
  • details of the guest’s stay, including arrival and departure dates, special requests, service preferences (including room preferences, service preferences or other services used);
  • e-mail address to be notified of promotions and special offers via the newsletter.

Any information received will be used solely for the purpose of communicating with you about the provision of our services, making and managing online bookings, providing customer support and for advertising activities within the scope of legislation.

4. Purpose of personal data processing

All the data collected in the booking form will be used to process your booking and for communication related to the provisioning of our services; this includes transactional emails for the purpose of implementing the business agreement between the Company and the recipient of our services (the guest) based on the submitted booking.


The e-mail address obtained via the newsletter subscription form is used to send promotional material about our service portfolio.

We collect personal data obtained at the reception desk when you check in to the hotel to ensure that we comply with our legal obligations.

5. Personal data retention period

Personal data of the data subject may be processed and stored in accordance with the legal basis or for as long as necessary to fulfil the purpose for which they were collected or until the consent given by the data subject is withdrawn. Upon written cancellation by the user, the data shall be deleted. All personal data we hold is part of this privacy statement.

6. Data subject rights

In accordance with the applicable legislation governing the protection of personal data, the data subject has the right to withdraw the given consent at any time, and request access to, rectification, restriction of processing of, or erasure of personal data, by notifying us in writing by post to Hotel Nox, Celovška cesta 469, 1000 Ljubljana, Slovenia, or by e-mail to The data subject may also file a complaint related to the processing of personal data concerning the data subject at the above address.


A data subject may also file a complaint concerning the processing of the data subject’s personal data directly with the competent supervisory authority, i.e. the Information Commissioner of the Republic of Slovenia.

7. Privacy policy validity

The Privacy Policy is published on the Nox Hotel website and will come into force in January 2023. This document is subject to change without any prior notice.

Visit us!