Last updated June 11, 2018
We may update this Policy from time to time. By using the Site, you (on behalf of yourself and your organization, if applicable) are expressly agreeing to the terms and conditions of the then-posted version of this Policy. If you do not agree with the terms and conditions of this Policy, you must immediately cease your use of the Site.
CHANGES TO POLICY
If any changes to this Policy affect how we treat or handle personally identifiable information (“PII”) already provided to us by you, we will use commercially reasonable efforts to notify you by email (if the Hotel has a valid email address to use) and give you thirty (30) days to opt out of the changes as they pertain to such PII.
OUR COLLECTION AND USE OF PII
PII is generally defined as information that may be able to identify you such as, but not limited to, your name, address, telephone number, email address, credit or debit card number, social security number, bank account number or code, photograph, or age, among other things. We only collect PII that you voluntarily provide to us.
You can generally visit and browse the Site without revealing any PII to us, but some features or areas of the Site will ask or require you to provide PII to use those features or areas. For example, PII may be requested when you reserve a room through the Site, request information from the Hotel, create a user account, or enter certain contests or other promotional activities.
We may use your PII to fulfill the purposes for which you provided it, for other purposes you have consented to, or for purposes based on our legitimate business interests. For example, we may use your PII to:
respond to your questions or comments;
send you room reservation confirmations and other scheduling information related to your stay as well as information on the Hotel and surrounding area;
sign you up for our email mailing list so we can send you marketing and survey communications;
verify your authority to use the Site;
enter you in Hotel contests and promotional activities;
better understand how we are doing as a business;
respond to and process requests from you for event or meeting proposals;
send you a requested copy of the Hotel’s meetings/planner brochure;
improve the content and general administration of the Site;
troubleshoot technical problems or issues with the Site or the Hotel’s computer systems;
conduct data analysis;
process the purchase of a Hotel gift certificate;
assist in collection efforts;
prevent fraud and/or abuse related to Hotel services;
if provided by you, your health information in order to better serve you and any special needs you have; and through your interaction with our social media pages (and consistent with your settings for those pages) for the purposes of communicating with you and learning more about you, such as but not limited to, your activities, interests, locations, friends, and status (please be mindful that social media sites have their own terms and privacy policies that you are subject to when interacting with one of our pages).
If you wish to unsubscribe from any newsletters or marketing communications, please follow the unsubscribe or opt-out instructions in any such email, or notify us at any time by emailing us at email@example.com.
OUR COLLECTION AND USE OF ANONYMOUS DATA
“Anonymous Data” refers to general information that does not identify you personally (unlike PII), including clicks, pages views and durations, IP address, referral links, use of particular services, and interest in services, information or features of the Site or other parties made available through or found at the Site. Anonymous Data is automatically collected by our servers when you visit the Site, including through the use of technology such as cookies and web beacons. We may use and share Anonymous Data as we deem useful in our sole discretion, including to operate, maintain, develop, market and improve the Site, our Hotel, and our services.
We also use third-party advertising technology to serve Hotel advertisements to you on other sites. The technology gathers anonymous data about your Site visits and visits to other sites where Hotel advertisements appear in order to serve you with Hotel advertisements on third party sites. When these advertisements are served to you, third party persistent cookies may be put on your computer.
For example, we use AdRoll (www.adroll.com, https://www.adroll.com/about/privacy) to serve you customized advertisements on third party sites based on your interaction with the Site. As you browse the Site, advertising cookies will be placed on your computer so that we can understand what you are interested in. Our display advertising partner, AdRoll, then enables us to present you with retargeting advertising on other sites based on your previous interaction with the Site. The techniques our partners employ do not collect PII. You can visit https://www.networkadvertising.org/choices/ to opt out of AdRoll and its partners’ targeted advertising.
The Hotel, through its third-party advertising/marketing vendors, may also use pixel tags to collect Anonymous Data. The pixel tags are computer coding usually fixed to Site pages or emails that allows our vendors to anonymously collect certain pieces of information. The Hotel, in conjunction with our advertising/marketing and email vendors, may use pixel tags to:
Allow our advertising/marketing vendors to recognize cookies on your browser when you visit the Site. This assists our advertising/marketing vendors with determining if you reached the Site by clicking on a specific ad and/or to track your responses to Hotel advertisements served on third party sites. It may also reveal if a Site reservation was executed.
Determine your technical ability to receive HTML emails. The pixel tag allows us to know if an email sent to you is opened and marks email addresses as ones that can receive HTML emails.
Determine how many users open a specific email. This allows us or our email vendor to collect anonymous and aggregated statistics about a specific email blast or campaign.
Allow us or our third-party advertising/marketing vendors to deliver targeted advertising on third party sites.
Allow us to make the Site more usable and make our customer support better.
Allow us to deliver to you promotional materials, offers, and other information that we believe would be relevant.
You may set or configure your browser to block or disable cookies. Please review your browser instructions for details on that. Please note that by disabling cookies, this could affect your use of the Site and/or restrict your interaction with the Site. Please note that our advertising/marketing vendors may handle “do not track” requests differently from the Hotel.
SHARING OF PII
Except as noted in this Policy, we do not sell or share your PII with any person or entity outside of the Hotel and Highgate Hotels, L.P., the management company for the Hotel.
We do not share PII with any other parties for direct marketing purposes.
We may provide your PII or other information to other vendors and service agencies that we use to assist us in running the Site and our business. For example, we may share certain portions of your PII with:
our reservations service provider to process your reservations;
our credit card processing entity in order to process your payments;
our email and communication vendor so it can send out emails and other electronic communications to you on our behalf;
external information/technology vendors that are needed to operate and maintain our computer system/network;
outside professional services such as attorneys and accountants;
outside administrative support services needed to assist with the general operation of the Hotel;
prize/sweepstakes vendors that assist us with administering and running such events and programs;
outside agencies needed to process insurance claims;
outside customer survey providers;
outside investigators used to investigate accidents and other related and legal issues;
outside mail carriers to send direct mail to you on our behalf;
the booking engine vendor software used to operate the room booking mechanism on the Site; and
the providers of services offered at the Hotel such as restaurants and other dining, recreational and sport activities, concierge services, and health/gym/spa services.
We share PII with these and other vendors only for the purposes specified by us, and they are prohibited from using the PII for their own purposes.
The Site may integrate with social media sites/apps or tools which let you share content, information and/or actions you create or take on the Site with such social media sites/apps, and vice versa. What you choose to share can become public depending on your privacy settings for those social media sites/apps. Please review the privacy policies of those social media sites/apps for details about how each site/app handles content, information, and/or actions you share through them.
We may disclose your PII and other information if we believe in good faith: (1) it is required by law or as part of a legal process; (2) it allows us to protect and enforce our legal rights, including but not limited to, to limit harm or damages to the Hotel, Hotel property, and/or Hotel personnel; (3) it is needed to respond to a governmental or law enforcement investigation or request; (4) it is needed to protect the safety, property, and/or other legal rights of the Hotel and its employees, Hotel and Site visitors, and/or other members of the public; and/or (5) it is needed to prevent physical harm or damage to any person or Hotel property, and/or to respond to any other situation deemed an emergency by us.
We may share your PII with a third party if our ownership status changes, such as in the event such third party acquires our Hotel.
REVIEW OF COLLECTED PII
If you would like to review or edit any room reservation made through the Site, you can do so following the instructions in your booking email or on the Site, or email us at firstname.lastname@example.org.
You may have the right to access the PII that we hold about you and to request that we correct, amend, or delete it if it is inaccurate or processed in violation of applicable law. These access rights may not apply in some cases, including where providing access is unreasonably burdensome or expensive under the circumstances or where it would violate the rights of someone other than yourself. If you would like to request access to, correction, amendment, or deletion of your PII, you can submit a written request to the contact information provided below. To protect your privacy, we will take commercially reasonable steps to verify your identity before granting access to or making any changes to your PII. In some circumstances we may charge a reasonable fee for access to your information. If we deny your request, we will provide you with a written explanation of the reasons for our determination.
Please note that we reserve the right to maintain proper business and transactional records required by law, even if such records contain your PII.
Please note that any removal of content by us does not ensure or guarantee complete or comprehensive removal of the content in all places. The content may have been shared or reposted by other parties, or federal or state law may require maintenance of the content or information.
RESPONSE TO “DO NOT TRACK” REQUESTS/SIGNALS
At the present time, we do not respond to nor process “do not track” or similar technical requests not to be tracked.
DATA SECURITY AND RETENTION
We use, implement, and maintain industry-standard technological security measures that are reasonably designed to help protect your PII from loss, unauthorized access, or disclosure both in storage/rest and in transmission. We use secured socket layer (SSL) encryption to help prevent unauthorized access to PII you transmit to the Site. Once information is received by us, it is stored on a secured server behind a firewall. Information collected through the Site is processed and stored in the United States.
While we take the issue of protecting your PII seriously, you should exercise discretion in what information you transmit to the Site. No transmission sent over the Internet can be guaranteed to be fully secure, and therefore the transmitted information may be intercepted by others before it reaches us. If you are concerned about sending information to us over the Internet, please send the information by mail or call us to make other arrangements. We are not responsible for the security of information sent over the Internet.
We retain collected information to (1) process room reservations and other services and actions performed through the Site; (2) maintain a customer database; and (3) otherwise fulfill the stated purpose for why the information was collected. We will also retain collected information connected to business records for periods of time required by law. Our retention periods will be consistent with applicable law.
The Site is intended for individuals 18 years of age and older located in the United States. The Site is not directed at, marketed to, nor intended for, users younger than 18 years of age. If we learn that any PII was provided through the Site by a person younger than 18 years of age, we will make commercially reasonable efforts to delete such PII promptly.
The Site is meant for individuals within the United States. Because the Hotel is located in the United States, any personal data submitted through the Site will be stored and processed in the United States.
Data Controller: We are typically the data controller, as that term is used in applicable European privacy laws, for any personal data that we collect from you. However, when we collect personal data about you from a third party (e.g., travel agencies), the third party may be the data collector for such data and we may be the data processor. If we are acting as the data processor, we will only process the relevant personal data as requested by the data controller and may need to refer any inquiries from you to the applicable data controller.
EXTERNAL LINKS AND THIRD PARTY SITES
The Site may contain links to external websites not controlled by us. We are not responsible for the privacy practices and data collection policies for third party sites. You should consult the privacy policies of those sites for details.
We may allow interaction between the Site and other sites or other social media providers. This may include the “Like” button or other plugins available through the Site that allow you to share information with persons outside of the Site. Please consult the privacy policies of those third-party providers before using them to make sure you are comfortable with the level of sharing.
OFF-LINE INFORMATION COLLECTION ISSUES
The Hotel may also collect and/or use both PII and non-PII provided by you at off-line locations as outlined below:
store and/or monitor customer service telephone calls with us for service improvement and record-keeping purposes;
to provide concierge services;
in connection with an event you book/reserve at the Hotel, such as number of guests, room accommodations needed, food, and budget;
information about you if you plan to attend and/or attend an event at the Hotel for purposes of communicating with you about the event, sharing necessary contact information with the event’s planner, and for future marketing efforts to you about the Hotel;
additional PII that is required under local laws to be collected during in-person check-in or registration at the Hotel;
use of closed-circuit television/video cameras and/or other security technology to record/capture images and sound of you (and other Hotel guests and visitors) in public places for security, crime prevention/investigation, Hotel staff protection, and/or other legal purposes;
use of room keycard and other tracking technology to record data related to your location on Hotel premises for security, crime prevention/investigation, and/or other legal purposes;
in connection with bookings/reservations, notifications, and payments related to other Hotel services such as childcare, gyms, and health club usage, spas, sport and other recreational activities (including equipment rentals), business center, restaurant, and other food/beverage services, and gift shops.
Such PII will also be processed in accordance with this Policy, as applicable.
If you have any questions regarding this Policy, please contact us at email@example.com