Privacy Policy
Mystic Bangkok Hotel (“we”, “our”, or “us”) is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy outlines how mysticbangkokhotel.com collects, processes, and safeguards the personal information of users, in full compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
1. Introduction
Protecting your privacy is of paramount importance to us. At mysticbangkokhotel.com, we prioritize our legal and ethical obligations to handle your information carefully, transparently, and securely. This Privacy Policy explains how we collect, use, store, and safeguard personal data, and informs you of your rights under relevant data privacy laws.
2. Scope and Data Controller
This Privacy Policy applies to all users accessing or engaging with mysticbangkokhotel.com. Mystic Bangkok Hotel acts as the data controller for the personal data collected through our website and related services. Any queries regarding data protection may be directed to [email protected].
3. Categories of Data We Process
We collect and process the following categories of personal data:
a. Usage Data
Data about how you use mysticbangkokhotel.com, including internet protocol (IP) address, browser type and version, time zone setting, location, operating system, access times, usage patterns, and referring websites.
b. Account Data
Information you provide during account creation or booking, such as full name, billing address, email address, phone number, and other contact details.
c. Profile Data
Information such as your booking history, preferences, feedback, stay history, and behavioral data gathered through your interactions with mysticbangkokhotel.com.
d. Communication Data
Includes transcripts of support communications, contact forms, customer service requests, and email correspondence.
e. Technical Data
Device identifiers, browser plug-ins, server logs, screen resolution, and other device and software configurations used to access our services.
f. Transaction Data
Payment transaction details, reservation confirmation records, delivery or service information, and applicable billing documentation (excluding full credit card numbers, which are processed by secure third-party payment providers).
g. Preference Data
Marketing preferences, opt-in or opt-out choices, interests concerning hospitality services, and consents you provide for communication or promotional purposes.
4. Legal Bases for Processing
We process your personal data under one or more of the following legal bases:
– Consent: Where you have explicitly given consent for a specified purpose (e.g., receiving marketing communications).
– Contract: Where processing is necessary for the performance of a contract or to take steps prior to entering into a contract (e.g., processing a booking).
– Legitimate Interests: For operational reasons that do not override your rights or freedoms, such as customer service improvement or fraud prevention.
– Legal Obligation: Where we are legally obligated to process or retain data for compliance purposes, including tax or regulatory reporting.
5. Your Rights
Under applicable data protection laws, you have several rights regarding your personal data:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: You can request that we delete your personal data, subject to legal exceptions.
– Right to Restrict Processing: You may ask us to limit the usage of your personal data in certain circumstances.
– Right to Data Portability: You can request transfer of your personal data to you or a third party in a structured, commonly used, and machine-readable format.
To exercise these rights, please contact us at [email protected]. We may require verification of your identity before responding to your request.
6. Security Measures
We implement technical and organizational measures to protect your personal data, including:
– End-to-end encryption of sensitive data during transmission and storage.
– Access controls and authentication mechanisms to restrict unauthorized access.
– Regular system backups and transactional integrity checks.
– Privacy and security training for staff with access to personal information.
7. International Transfers
In certain instances, your data may be transferred to and processed in countries outside of your region, including the United States and other jurisdictions. Where such transfers occur, we ensure appropriate safeguards are in place, including the use of European Commission-approved Standard Contractual Clauses or other lawful mechanisms to ensure adequate data protection.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, subject to applicable legal or regulatory requirements. Retention periods include:
– Account and Transaction Data: Up to 7 years after your last transaction, for contractual and legal obligations.
– Communication and Support Data: Up to 3 years after the last interaction.
– Usage and Technical Data: Typically retained for up to 2 years for analytics and website performance monitoring.
– Marketing Preference Data: Until consent is withdrawn or no longer valid.
9. Cookie Policy
We use cookies and similar technologies on mysticbangkokhotel.com to enhance user experience and analyze website performance. The types of cookies used include:
– Essential Cookies: Necessary for website functionality (e.g., page navigation, secure login).
– Functional Cookies: Enable customization such as language settings and user preferences.
– Analytics Cookies: Track usage statistics for insight into user behavior.
– Performance Cookies: Help evaluate system performance and improve website speed and responsiveness.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, you have control over which cookies are activated. Upon visiting mysticbangkokhotel.com, a cookie banner provides options to accept or reject non-essential cookies. You can also customize settings in your browser or through our cookie management tool.
California residents have the right to opt-out of the sale of their personal information, as defined under the CCPA. Although we do not sell personal data in the traditional sense, we provide mechanisms for exercising this choice in relevant jurisdictions.
11. Special Protections for Children
Mystic Bangkok Hotel does not knowingly collect or solicit personal data from children under the age of 13. If you are a parent or guardian and believe that a child under the age of 13 has provided us with personal data, please contact us at [email protected] and we will promptly take steps to delete such data.
12. Policy Updates
We reserve the right to update or amend this Privacy Policy at our discretion. If substantial changes are made, we will notify users through the website or via email, where appropriate. Continued use of mysticbangkokhotel.com constitutes acknowledgement of the current version of the Privacy Policy.
13. Contact
For questions, concerns, or requests relating to this Privacy Policy or the processing of your personal data, please contact:
Mystic Bangkok Hotel
Email: [email protected]
Website: https://mysticbangkokhotel.com
We are committed to full compliance with data protection legislation and will respond to inquiries diligently to protect your rights and privacy.