Privacy Policy
1. Introduction: Our Commitment to Privacy
At The Snowpine Lodge (the “Company,” “we,” “us,” or “our”), accessible via thesnowpine.com, we are fully committed to protecting the privacy and personal data of our website visitors, guests, and customers. We understand the importance of data protection and privacy rights, and we maintain rigorous standards to ensure the confidentiality, integrity, and lawful use of your personal information. This Privacy Policy outlines our practices concerning the collection, use, disclosure, and protection of personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through our website, thesnowpine.com, and associated digital services. When you interact with our website, request services, or provide information, we act as the data controller—that is, the party that determines the purposes and means of processing your personal data—for the information you supply.
3. Categories of Personal Data We Collect
We may collect and process the following categories of personal data, depending on your interactions with our website and services:
– Usage Data: Data gathered from your interactions with our website, including browser type and version, IP address, access times, pages viewed, referring URLs, and session information.
– Account Data: Information you provide when booking a stay, creating an account, or registering for services, such as your full name, billing/shipping address, email address, and telephone number.
– Profile Data: Preferences, feedback, purchase history, loyalty information, and behavioral data derived from your use of our services.
– Communication Data: Records of correspondence, support tickets, inquiries, and related communication transactional content.
– Technical Data: Device identifiers, hardware model, operating system, browser plug-ins, time zone settings, and other system configuration information.
– Transaction Data: Payment details (excluding full card numbers), transaction history, order confirmations, service use data, and billing fulfillment records.
– Preference Data: Marketing consents, advertising preferences, communication choices, and expressed interests related to products or services.
4. Legal Bases for Processing Personal Data
We rely on the following lawful bases to process your personal data as permitted by applicable law:
– Consent: Where you have given your explicit permission, such as subscribing to our newsletter or accepting non-essential cookies.
– Contractual Necessity: To perform a contract with you or take steps at your request prior to entering into a contract (e.g., booking a reservation).
– Legal Obligation: Where processing is required to comply with applicable legal obligations, such as recordkeeping or fraud prevention.
– Legitimate Interests: For purposes such as website security, service improvement, marketing communications, and user analytics, where such interests are not overridden by your rights and freedoms.
5. Your Data Protection Rights
Subject to applicable data protection laws, you have the following rights with respect to your personal data:
– Right of Access: You have the right to request copies of your personal data we process.
– Right to Rectification: You may request correction of incomplete or inaccurate data.
– Right to Erasure: You can request deletion of your personal data where legally permissible.
– Right to Restrict Processing: You may request partial suspension of processing under certain conditions.
– Right to Data Portability: You have the right to obtain your data in a structured, commonly used format and transfer it to another controller.
– Right to Object: You may object to data processing based on legitimate interests or direct marketing at any time.
– Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time without affecting lawfulness of prior processing.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational measures to safeguard your personal data. These include, but are not limited to:
– Encryption of data during transmission using Secure Socket Layer (SSL)
– Access controls, including role-based access at the organizational level
– Routine backup and disaster recovery protocols
– Staff training in data protection responsibilities and secure practices
– Use of secure third-party providers vetted for compliance
7. International Transfers of Personal Data
In certain scenarios, your personal data may be transferred to or stored in jurisdictions outside the European Economic Area (EEA) or California. Where such transfers occur, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs), adequacy decisions, or equivalent mechanisms as approved by relevant authorities.
8. Data Retention
We retain personal data for no longer than necessary for the purposes for which it was collected. Retention periods vary based on data type:
– Usage and Technical Data: retained for up to 12 months for analytics and performance purposes.
– Account and Profile Data: retained for the duration of the customer relationship plus a maximum of 6 years thereafter for legal and audit purposes.
– Transaction and Communication Data: retained for up to 7 years to comply with financial and regulatory obligations.
– Preference Data: retained until consent is withdrawn or data is updated.
After expiration of the retention period, data is irreversibly deleted or anonymized.
9. Use of Cookies
Thesnowpine.com uses cookies and similar technologies to enhance your browsing experience. Our cookies fall into the following categories:
– Essential Cookies: Necessary for core functions such as security, navigation, and accessibility.
– Functional Cookies: Enable personalization features, such as remembering your preferences or settings.
– Analytics Cookies: Collect information about how visitors use our website to improve performance and user experience. These include aggregated and anonymous metrics gathered via tools such as Google Analytics.
– Performance Cookies: Support the optimization of load times, design performance, and responsive elements.
10. Cookie Management and Compliance
Upon your first visit to thesnowpine.com, and periodically thereafter, you will be presented with a cookie consent notice allowing you to manage your preferences. You may modify your consent or disable cookies at any time through your browser settings. Our use of cookies complies with the GDPR and CCPA, granting users meaningful choice and transparency about the use of their data.
Do Not Track signals and Global Privacy Controls (GPC) are respected as applicable under CCPA stipulations.
11. Children’s Privacy
Our services are not intended for children under the age of 13. We do not knowingly collect or solicit any personal data from children. If we become aware that a child under 13 has submitted personal information without verifiable parental consent, we will delete such data promptly. If you believe a child has submitted data to us, please contact [email protected].
12. Policy Updates and Notifications
We may revise this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or technological advancements. Any updated version will be posted on thesnowpine.com and will supersede previous versions. Where required by law or material changes occur, we will notify affected users through appropriate channels.
13. Contacting Us
For questions, concerns, or requests related to this Privacy Policy or your personal data, please contact us:
The Snowpine Lodge
Email: [email protected]
Website: https://thesnowpine.com
We are committed to maintaining full compliance with applicable data protection laws and ensuring the lawful handling of your personal data. Please do not hesitate to contact us with any concerns or requests regarding your privacy.