Last updated June 18, 2018
We may update this Policy from time to time. By using the Site, you (on behalf of yourself and your organization, if applicable) are expressly agreeing to the terms and conditions of the then-posted version of this Policy. If you do not agree with the terms and conditions of this Policy, you must immediately cease your use of the Site.
CHANGES TO POLICY
If any changes to this Policy affect how we treat or handle personally identifiable information (“PII”) already provided to us by you, we will use commercially reasonable efforts to notify you by email (if the Resort has a valid email address to use) and give you thirty (30) days to opt out of the changes as they pertain to such PII.
OUR COLLECTION AND USE OF PII
PII is generally defined as information that may be able to identify you such as, but not limited to, your name, address, telephone number, email address, credit or debit card number, social security number, bank account number or code, photograph, or age, among other things. We only collect PII that you voluntarily provide to us.
You can generally visit and browse the Site without revealing any PII to us, but some features or areas of the Site will ask or require you to provide PII to use those features or areas. For example, PII may be requested when you reserve a room through the Site, request information from the Resort, create a user account, or enter certain contests or other promotional activities.
We may use your PII to fulfill the purposes for which you provided it, for other purposes you have consented to, or for purposes based on our legitimate business interests.
For example, we may use your PII to:
If you wish to unsubscribe from any newsletters or marketing communications, please follow the unsubscribe or opt-out instructions in any such email, or notify us at any time by emailing us at firstname.lastname@example.org.
OUR COLLECTION AND USE OF ANONYMOUS DATA
“Anonymous Data” refers to general information that does not identify you personally (unlike PII), including clicks, pages views and durations, IP address, referral links, use of particular services, and interest in services, information or features of the Site or other parties made available through or found at the Site. Anonymous Data is automatically collected by our servers when you visit the Site, including through the use of technology such as cookies and web beacons. We may use and share Anonymous Data as we deem useful in our sole discretion, including to operate, maintain, develop, market and improve the Site, our Resort, and our services.
We also use third party advertising technology to serve Resort advertisements to you on other sites. The technology gathers anonymous data about your Site visits and visits to other sites where Resort advertisements appear in order to serve you with Resort advertisements on third party sites. When these advertisements are served to you, third party persistent cookies may be put on your computer.
The Resort, through its third-party advertising/marketing vendors, may also use pixel tags to collect Anonymous Data. The pixel tags are computer coding usually fixed to Site pages or emails that allows our vendors to anonymously collect certain pieces of information. The Resort, in conjunction with our advertising/marketing and email vendors, may use pixel tags to:
You may set or configure your browser to block or disable cookies. Please review your browser instructions for details on that. Please note that by disabling cookies, this could affect your use of the Site and/or restrict your interaction with the Site. Please note that our advertising/marketing vendors may handle “do not track” requests differently from the Resort.
SHARING OF PII
Except as noted in this Policy, we do not sell or share your PII with any person or entity outside of the Resort.
We do not share PII with any other parties for direct marketing purposes.
We may provide your PII or other information to other vendors and service agencies that we use to assist us in running the Site and our business. For example, we may share certain portions of your PII with:
We share PII with these and other vendors only for the purposes specified by us, and they are prohibited from using the PII for their own purposes.
The Site may integrate with social media sites/apps or tools which let you share content, information and/or actions you create or take on the Site with such social media sites/apps, and vice versa. What you choose to share can become public depending on your privacy settings for those social media sites/apps. Please review the privacy policies of those social media sites/apps for details about how each site/app handles content, information, and/or actions you share through them.
We may disclose your PII and other information if we believe in good faith: (1) it is required by law or as part of a legal process; (2) it allows us to protect and enforce our legal rights, including but not limited to, to limit harm or damages to the Resort, Resort property, and/or Resort personnel; (3) it is needed to respond to a governmental or law enforcement investigation or request; (4) it is needed to protect the safety, property, and/or other legal rights of the Resort and its employees, Resort and Site visitors, and/or other members of the public; and/or (5) it is needed to prevent physical harm or damage to any person or Resort property, and/or to respond to any other situation deemed an emergency by us.
We may share your PII with a third party if our ownership status changes, such as in the event such third party acquires our Resort.
REVIEW OF COLLECTED PII
If you would like to review or edit any room reservation made through the Site, you can do so following the instructions in your booking email or on the Site, or email us at email@example.com.
You may have the right to access the PII that we hold about you and to request that we correct, amend, or delete it if it is inaccurate or processed in violation of applicable law. These access rights may not apply in some cases, including where providing access is unreasonably burdensome or expensive under the circumstances or where it would violate the rights of someone other than yourself. If you would like to request access to, correction, amendment, or deletion of your PII, you can submit a written request to the contact information provided below. To protect your privacy, we will take commercially reasonable steps to verify your identity before granting access to or making any changes to your PII. In some circumstances we may charge a reasonable fee for access to your information. If we deny your request, we will provide you with a written explanation of the reasons for our determination.
Please note that we reserve the right to maintain proper business and transactional records required by law, even if such records contain your PII.
Please note that any removal of content by us does not ensure or guarantee complete or comprehensive removal of the content in all places. The content may have been shared or reposted by other parties, or federal or state law may require maintenance of the content or information.
RESPONSE TO “DO NOT TRACK” REQUESTS/SIGNALS
At the present time, we do not respond to nor process “do not track” or similar technical requests not to be tracked.
DATA SECURITY AND RETENTION
We use, implement, and maintain industry standard technological security measures that are reasonably designed to help protect your PII from loss, unauthorized access, or disclosure both in storage/rest and in transmission. We use secured socket layer (SSL) encryption to help prevent unauthorized access to PII you transmit to the Site. Once information is received by us, it is stored on a secured server behind a firewall. Information collected through the Site is processed and stored in the United States.
While we take the issue of protecting your PII seriously, you should exercise discretion in what information you transmit to the Site. No transmission sent over the Internet can be guaranteed to be fully secure, and therefore the transmitted information may be intercepted by others before it reaches us. If you are concerned about sending information to us over the Internet, please send the information by mail or call us to make other arrangements. We are not responsible for the security of information sent over the Internet.
We retain collected information to: (1) process room reservations and other services and actions performed through the Site; (2) maintain a customer database; and (3) otherwise fulfill the stated purpose for why the information was collected. We will also retain collected information connected to business records for periods of time required by law. Our retention periods will be consistent with applicable law.
You recognize and agree that when submitting your personally identifiable information to us, while we have safeguards in place to prevent unauthorized access or interception, there is no absolute guarantee of security. IN THE UNLIKELY EVENT OF AN INTERCEPTION OR UNAUTHORIZED ACCESS DESPITE OUR EFFORTS, WE SHALL NOT BE RESPONSIBLE FOR SUCH INTERCEPTIONS OR UNAUTHORIZED ACCESS, OR ANY DIRECT, INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL DAMAGES (INCLUDING LOST PROFITS) SUFFERED BY A CUSTOMER OR USER, EVEN IF WE HAS PREVIOUSLY BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES, WE DO NOT WARRANT, EITHER EXPRESSLY OR IMPLIEDLY, THAT THE INFORMATION PROVIDED BY ANY CUSTOMER SHALL BE FREE FROM INTERCEPTION OR UNAUTHORIZED ACCESS, AND DO NOT PROVIDE ANY IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
The Site is intended for individuals 18 years of age and older located in the United States. The Site is not directed at, marketed to, nor intended for, users younger than 18 years of age. If we learn that any PII was provided through the Site by a person younger than 18 years of age, we will make commercially reasonable efforts to delete such PII promptly.
The Site is meant for individuals within the United States. Because the Resort is located in the United States, any personal data submitted through the Site will be stored and processed in the United States.
Data Controller: We are typically the data controller, as that term is used in applicable European privacy laws, for any personal data that we collect from you. However, when we collect personal data about you from a third party (e.g., travel agencies), the third party may be the data collector for such data and we may be the data processor. If we are acting as the data processor, we will only process the relevant personal data as requested by the data controller, and may need to refer any inquiries from you to the applicable data controller.
EXTERNAL LINKS AND THIRD-PARTY SITES
The Site may contain links to external websites not controlled by us. We are not responsible for the privacy practices and data collection policies for third party sites. You should consult the privacy policies of those sites for details.
We may allow interaction between the Site and other sites or other social media providers. This may include the “Like” button or other plugins available through the Site that allow you to share information with persons outside of the Site. Please consult the privacy policies of those third-party providers before using them to make sure you are comfortable with the level of sharing.
OFF-LINE INFORMATION COLLECTION ISSUES
The Resort may also collect and/or use both PII and non-PII provided by you at off-line locations as outlined below:
If you have any questions regarding this Policy, please contact us at:
firstname.lastname@example.org or 877-373-6483.