WHAT INFORMATION DO WE COLLECT?
PERSONAL INFORMATION YOU DISCLOSE TO US
- Name and Contact Information: We collect your first and last name, email address, postal address, phone number, and other similar contact information.
- Credentials: We collect passwords, password hints, and similar security information used for authentication and account access. We do not store your passwords, but rather their cryptographic hashes.
- Payment Data: We collect data necessary to process your payment if you make purchases, such as your payment instrument number (such as a credit card number), and the security code associated with your payment instrument. All payment data is transmitted and stored using Payment Card Industry (PCI) Compliant processes and standards: SSL/TLS and data encryption at rest.
INFORMATION AUTOMATICALLY COLLECTED
In Short: Some information – such as IP address and/or browser and device characteristics – is collected automatically when you visit our websites.
We automatically collect certain information when you visit, use or navigate our websites. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Sites and other technical information. This information is primarily needed to maintain the security and operation of our websites, and for our internal analytics and reporting purposes.
Like many businesses, we also collect information through cookies and similar technologies.
INFORMATION COLLECTED FROM OTHER SOURCES
In Short: We may collect limited data from public databases, marketing partners, and other outside sources.
We may obtain information about you from other sources, such as public databases, joint marketing partners, as well as from other third parties. Examples of the information we receive from other sources include: social media profile information; marketing leads and search results and links, including paid listings (such as sponsored links).
WHAT DO WE USE YOUR INFORMATION FOR?
The email address you provide for order processing, will only be used to send you information and updates pertaining to your reservation, interactions, or searches.
If you wish to subscribe to our newsletter or wish to receive promotional communications or other information from us in respect of our, our affiliated companies’ or business partners’ products or services, we offer you the option to “Opt in” for this service. If you no longer wish to receive our newsletter and other promotional communications, you can simply click on the “Unsubscribe” link in our emails.
Note: If at any time you would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email.
HOW DO WE PROTECT YOUR INFORMATION?
In Short: We aim to protect your personal information through a system of organizational and technical security measures.
We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, please also remember that we cannot guarantee that the devices you use or the Internet itself is 100% secure. Although we will do our best to protect your personal information, transmission of personal information to and from our servers is at your own risk. You should only access the services within a secure environment.
We implement a variety of security measures to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information.
We offer the use of a secure server for the transmission of most personally identifiable data. All supplied sensitive/credit information is transmitted via Transport Layer Security (TLS), also known as Secure Socket Layer (SSL) technology, and then encrypted into our Database to be only accessed by those authorized with special access rights to our systems, and who are required to keep the information confidential.
After a transaction, your private information may be kept on file for more than 60 days, unless you have opted to remove your data in your My Account settings.
WILL YOUR INFORMATION BE SHARED WITH ANYONE?
In Short: We only share information with your consent, to comply with laws, to protect your rights, or to fulfill business obligations.
We only share and disclose your information in the following situations:
Compliance with Laws: We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process, such as in response to a court order or a subpoena (including in response to public authorities to meet national security or law enforcement requirements).
Vital Interests and Legal Rights: We may disclose your information where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, situations involving potential threats to the safety of any person and illegal activities, or as evidence in litigation in which we are involved.
Vendors, Consultants, and Other Third-Party Service Providers: We may share your data with third-party vendors, service providers, contractors, or agents who perform services for us or on our behalf and require access to such information to do that work. Examples include payment processing, data analysis, email delivery, facsimile services, hosting services, customer service, and marketing efforts. We may allow selected third parties to use tracking technology on the websites, which will enable them to collect data about how you interact with the over time. This information may be used to, among other things, analyze and track data, determine the popularity of certain content, and better understand user activity on our Sites. Unless described in this Policy, we do not share, sell, rent, or trade any of your information with third parties for their promotional purposes.
Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
Third-Party Advertisers: We may use third-party advertising companies to serve ads when you visit the website. These companies may use information about your visits to our Website(s) and other websites that are contained in web cookies and other tracking technologies in order to provide advertisements about goods and services of interest to you.
Business Partners: We may share your information with our business partners to offer you certain products, services or promotions.
With your Consent: We may disclose your personal information for any other purpose with your consent.
Other Users: When you share personal information or otherwise interact with public areas of the website, such personal information may be viewed by all users and may be publicly distributed outside the platform in perpetuity. If you interact with other users of ours and register through a social network (such as Facebook), your contacts on the social network will see your name, profile photo, and descriptions of your activity. Similarly, other users will be able to view descriptions of your activity, communicate with you within our platform, and view your profile.
Cookies are text files stored in your computer, either temporarily or continuously on your hard drive. Cookies are used for authenticating, session tracking, and maintaining specific information about the use and users of our website, such as site preferences or the contents of their reservations. Cookie files may also be placed in your computer by our trusted third-party advertising companies for the purposes as set out in this paragraph. The data collected by these cookies are completely anonymous. If you prefer, you can delete all cookies that are already on your computer’s hard drive by searching for files with “cookie” in it, or by using your web browser’s “Preferences”, “Options”, “Security Settings” or “Privacy Settings” or similarly named feature to view and then delete them; and for the future, you can edit your web browser options such that (future) cookies are blocked; however, please note that if you do this you may not be able to use the full functionality of our website. For more information about (the use and decline of) cookies, please visit: www.allaboutcookies.org
A web beacon consists of a small string of software code that represents a graphic image request on a Web page or email. There may or may not be a visible graphic image associated with the web beacon and often the image is designed to blend into the background of a Web page or email. Web beacons can be used for many purposes – including site traffic reporting, unique visitor counts, advertising auditing and reporting, and personalization.
If you prefer, you can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies via your browser settings. Like most websites, if you turn your cookies off, some of our services may not function properly.
IS YOUR INFORMATION TRANSFERRED INTERNATIONALLY?
In Short: We may transfer, store, and process your information in countries other than your own.
Our servers are located on a cloud network architecture that may have components in several geographic locations around the world. If you are accessing our websites, please be aware that your information may be transferred to, stored, and processed by us in our facilities and by those third parties with whom we may share your personal information (see “WILL YOUR INFORMATION BE SHARED WITH ANYONE?” above), in the United States and other countries.
For the purposes of applicable EU data protection law (including the General Data Protection Regulation 2016/679 (the “GDPR”), we are a ‘data controller’ of your personal information.
DO WE DISCLOSE ANY INFORMATION TO OUTSIDE PARTIES?
We do NOT sell, trade, or otherwise transfer your personally identifiable information to outside parties. This does not include trusted third parties who assist us in operating our website, conducting our business, or servicing you, so long as those parties agree to keep this information confidential. We may also release your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect our or others’ rights, property, or safety. However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.
THIRD PARTY LINKS
PROTECT AND SECURE YOUR CREDIT CARD INFORMATION
In order to protect and safeguard the personal data provided to us, we have implemented and used appropriate business systems and procedures and strictly follow the internationally recognized Payment Card Industry (PCI) Security Standards. For example, your credit card information is transmitted to us through a secure server protocol, which encrypts all your personal and credit card details. The encryption method used is the latest industry-standard “Transport Layer Security” (TLS) technology, also known as Secure Sockets Layer (SSL). Our SSL certificate has been issued by an industry leader, GoDaddy: www.GoDaddy.com
Furthermore, we have implemented and used security procedures and technical and physical restrictions for accessing and using personal information. Only authorized employees are permitted to access personal information for performing their duties in respect of our services.
INNkeepers, i.e. owners of hospitality properties and services who use our platform, are contractually obligated to safeguard all reservation details including credit card details, and are also held accountable under Payment Card Industry (PCI) Security Standards as they apply to the lodging industry.
Our server and network are protected by firewalls against unauthorized access and we have intrusion detection systems that monitor and detect unauthorized attempts to access or misuse our servers.
CHILDREN’S ONLINE PRIVACY PROTECTION ACT COMPLIANCE
We are in compliance with the requirements of COPPA (Children’s Online Privacy Protection Act), we do not collect any information from anyone under 13 years of age. Our website, products and services are all directed to people who are at least 18 years old or older as stated in our Terms and Conditions of Use.
In Short: We do not knowingly collect data from or market to children under 18 years of age.
We do not knowingly solicit data from or market to children under 18 years of age. By using the website, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent’s use of the website. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our systems. If you become aware of any data our systems may have collected from children under the age of 18, please contact us at email@example.com
WHAT ARE YOUR PRIVACY RIGHTS?
In Short: You may review, change, or terminate your account at any time.
If you are a resident of the European Economic Area and you believe we are unlawfully processing your personal information, we provide a form here specifically for you to ask us to take corrective action under the General Data Protection Regulation Act (GDPR). We will respond to you within 30 days of receipt of your complaint. You also have the right to complain to your local data protection supervisory authority. You can find their contact details here: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.html
If you would at any time like to review or change the information in your account or terminate your account, you can:
Opt out of email marketing: You can unsubscribe from our marketing email list at any time by clicking on the unsubscribe link in the emails that we send or by contacting us using the details provided below. You will then be removed from the marketing email list – however, we will still need to send you service-related emails that are necessary for the administration and use of your account.
DO CALIFORNIA RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?
In Short: Yes, if you are a resident of California, you are granted specific rights regarding access to your personal information.
California Civil Code Section 1798.83, also known as the “Shine The Light” law, permits our users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us using the contact information provided below.
If you are under 18 years of age and reside in California, you have the right to request the removal of unwanted data that you publicly post on our websites. To request the removal of such data, please contact us using the contact information provided below, and include the email address associated with your account and a statement that you reside in California. We will make sure the data is not publicly displayed on the websites, but please be aware that the data may not be completely or comprehensively removed from our systems.
CALIFORNIA ONLINE PRIVACY PROTECTION ACT COMPLIANCE
Because we value your privacy we have taken the necessary precautions to be in compliance with the California Online Privacy Protection Act. We therefore will not distribute your personal information to outside parties without your consent.
As part of the California Online Privacy Protection Act, all users of our site may make any changes to their information at any time by logging into the control panel.
HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?
Based on the laws of some countries, you may have the right to request access to the personal information we collect from you, change that information, or delete it in some circumstances. To request to review, update, or delete your personal information, please submit a request by emailing us at firstname.lastname@example.org We will respond to your request within 30 days.
TERMS AND CONDITIONS
In Short: Yes, we will update this policy as necessary to stay compliant with relevant laws.
This policy was last modified on 5/25/2021.
One Lux Stay