Privacy Policy for Palm Beach Resort

Palm Beach Resort (“we,” “our,” or “us”) is committed to safeguarding your privacy and ensuring that your personal data is protected. This Privacy Policy outlines our practices and policies in relation to the collection, use, and protection of your personal data when you access or use our website at palmbeach-resort.com. We are dedicated to processing your data in a transparent, responsible, and secure manner, in compliance with applicable data protection laws such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

1. Commitment to Privacy and Data Protection

We value your trust and take your privacy seriously. We collect and process personal data only for specific, legitimate purposes and ensure that all data is handled according to applicable legal standards. Whether you are booking a stay, browsing our site, subscribing to updates, or reaching out with a query, your personal data is treated with the utmost discretion and care.

2. Scope of this Policy and Role of the Data Controller

This policy applies to all personal data processed through palmbeach-resort.com and its related services. Palm Beach Resort is the Data Controller for the purposes of this Privacy Policy, meaning we determine the purposes and means of the processing of your personal data. For any data-related inquiries, you may contact us at [email protected].

3. Categories of Personal Data We Collect and Process

In the course of providing services through palmbeach-resort.com, we may collect and process the following categories of personal data:

– Usage Data: This includes information such as your IP address, browser type, operating system, referring URLs, and usage patterns as you navigate through our website. Usage data helps us improve the performance, security, and functionality of our services.

– Account Data: When you register or make a booking, we may collect your name, postal address, email address, phone number, and other identifying details.

– Profile Data: We may gather information such as your preferences, purchase history, and behavioral data to offer personalized services and enhance your experience.

– Communication Data: Any correspondence you send to us, including support requests, inquiries via our contact form, or other types of communications, may be stored and processed to manage your relationship with us.

– Technical Data: This encompasses data about your device, system configuration, browser language, time zone settings, and plug-ins used during your interaction with our website.

– Transaction Data: We may retain data concerning your bookings, payment methods, delivery of services, and other financial and transactional records.

– Preference Data: We track your expressed marketing consents and areas of interest in our resort products and services to tailor our communications accordingly.

4. Legal Bases for Processing

Under the GDPR, we rely on the following legal bases to process your data:

– Consent: Where you have explicitly opted in (e.g., subscribing to our newsletter or accepting cookies).
– Contractual Necessity: Where processing is required to deliver services you’ve requested, such as booking accommodations.
– Legitimate Interests: To improve our services, ensure security, and develop our customer experience (balanced with your rights and freedoms).
– Legal Obligations: Where we are required by law to retain or disclose certain data.

Processing under the CCPA occurs in accordance with consumers’ rights to know, delete, and opt-out, described below.

5. Your Data Protection Rights

As a data subject under the GDPR and CCPA, you are entitled to:

– Access: Request a copy of the personal data we hold about you.
– Rectification: Have inaccurate or incomplete data corrected.
– Erasure: Request removal of your personal data, subject to legal retention requirements.
– Restriction: Limit how we use your data under certain conditions.
– Portability: Obtain and reuse your data across services.
– Objection and Opt-Out: Under CCPA, you may opt out of the sale of your personal data at any time.

Should you wish to exercise any of the above rights, please email us at [email protected]. We will respond to your request in accordance with applicable laws and without undue delay.

6. Security Measures

We implement industry-standard administrative, technical, and physical safeguards to ensure the confidentiality, integrity, and availability of your data. These include but are not limited to:

– Data encryption in transit and at rest
– Role-based access controls and authentication protocols
– Periodic security audits and vulnerability assessments
– Secure system backups and business continuity planning
– Staff training on privacy principles and data handling procedures

7. International Data Transfers

If and when we transfer your data outside the European Economic Area (EEA) or other jurisdictions, we ensure that such transfers are governed by appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission or other legally recognized mechanisms to ensure adequate protection of your information.

8. Data Retention

We retain personal data only as long as necessary for the purpose it was collected:

– Booking and transaction data: Retained for up to 7 years for tax, legal, and accounting compliance.
– Communication records: Maintained for 1–3 years depending on the context and resolution.
– Marketing preferences: Kept until you withdraw consent.
– Usage and analytics data: Aggregated and anonymized where feasible; otherwise retained until no longer required for operational purposes.

9. Cookie Policy

Our website uses cookies and similar technologies to enhance user experience, improve website performance, and analyze usage. We categorize our cookies as follows:

– Essential Cookies: Required for operational functionality and secure website access.
– Functional Cookies: Enable personalized content and remember site preferences.
– Analytics Cookies: Help us understand user behavior and improve our services.
– Performance Cookies: Monitor site performance to optimize load times and responsiveness.

10. Cookie Management and Compliance

Upon first visit, users are presented with a clear option to manage cookie preferences via our Cookie Consent Manager. You can update your choices at any time by accessing the cookie settings option in your browser or footer of palmbeach-resort.com. We honor “Do Not Track” signals and California users’ rights to opt out of cookie-based data sales under the CCPA.

11. Children’s Privacy

Our website and services are not directed to or intended for individuals under the age of 13. We do not knowingly collect personal data from children without verifiable parental consent. If we learn that a child under 13 has provided us with personal data, we will take prompt steps to delete such information. Parents or guardians with concerns may contact us at [email protected].

12. Policy Updates and Notifications

We may update this Privacy Policy to reflect legal or operational changes. Whenever material changes are made, users will be notified through appropriate channels, which may include an on-site banner or direct communication. We encourage you to periodically review this policy for the latest information on our privacy practices.

13. Contact Information

If you have any questions about this Privacy Policy, our data handling practices, or your rights under GDPR or CCPA, please contact us at:

Palm Beach Resort
Email: [email protected]
Website: palmbeach-resort.com

We are committed to maintaining full compliance with data protection laws and offering transparency and control regarding your personal information. Please feel free to reach out with any privacy concerns or requests.