Collection of Personal Information
As a third-party technical service provider to attractions, we generally receive Personal Information that was initially disclosed to the attraction in connection with a ticket purchase or booking, either directly or via a third-party channel partner. The information we receive can include name, postal address, email address and telephone number, booking and special request information. Attractions and their channel partners are responsible for providing notice and choice to individuals from whom they collect information.
Personal information will be collected, used and disclosed in accordance with the form of consent required by applicable law and its use will be limited to the objectives for which it was collected, but in no case will be used for marketing purposes. The form of consent can vary from implied consent to express consent, depending upon the circumstances and the sensitivity of the type of information collected. Consent may have been obtained from the attraction that originally collected the information. When applicable, we will offer individuals the opportunity to choose, by opting out, if Personal Information will (1) be disclosed to a third party or (2) be used for a purpose other than the purpose for which it was originally collected or subsequently authorized. For Sensitive Information, we will provide an opportunity to affirmatively consent, by opting in, to the disclosure of the information for a purpose other than the purpose for which it was originally collected or subsequently authorized.
Prior to disclosing Personal Information to a third party, we ensure that any third party for which Personal Information may be disclosed subscribes to the Principles or are subject to laws providing the same level of privacy protection as is required by the Principles, and agree in writing to provide an adequate level of privacy protection. We may share your personal information with third parties, including:
Third Party Service Providers: We may use outside organizations to perform specialized services such as information technology services. These service providers are only given the information needed to perform those services and they are bound contractually to protect the privacy and security of your information and to limit the use of your information to the service being provided.
Governmental or Other Authorities: We advise you that we may have to disclose personal information to the government or other legal or regulatory authorities if so ordered by a court of law or for other legal reasons, such as to comply with legal process such as a search warrant, subpoena or court order, to protect the company’s rights and property. In some cases, disclosure may be without notice to you.
A Successor Entity: In the case of any significant transaction or event such as a sale, merger, amalgamation, financing, re-organization, liquidation, or insolvency, other parties to the transaction and their professional advisors may need to have access to our databases as part of the due diligence process. In this event, we would only provide such access under terms of a strict confidentiality agreement. Upon completion of the transaction or event, your personal information would be transferred to the successor-in-interest company to be used for the purposes for which it was collected.
We have implemented physical, electronic and administrative measures to protect your information from error, loss or unauthorized access. For example, we use industry-standard efforts, such as passwords, firewalls, and encryption such as Secure Socket Layers, to secure the Personal Information from loss, misuse, unauthorized access or disclosure, alteration or destruction. In addition, our employees and any third parties we use are contractually bound to protect the confidentiality of your information and access is restricted to those with a need to know the information to carry out the identified purpose. Although we use technical safeguards, we cannot guarantee the security of Personal Information on or transmitted via the Internet.
We only process Personal Information in a way that is compatible with and relevant for the purpose for which it was collected or authorized by the individual. To the extent necessary for those purposes, we take reasonable steps to ensure that Personal Information is accurate, complete, current and reliable for its intended use.
EU-US Privacy Shield
Redeam participates in the EU-US Privacy Shield Framework regarding the collection, use, and retention of personal information from European Union member countries. We have certified with the Department of Commerce that we adhere to the Privacy Shield Principles. To learn more about the Privacy Shield Principles, click here.
If you have any inquiries or complaints about our handling of your personal data under Privacy Shield, or about our privacy practices generally, please contact us at: firstname.lastname@example.org. We will respond to your inquiry promptly.
As explained here we sometimes provide personal information to third parties to perform services on our behalf. If we transfer personal information received under the Privacy Shield to a third party, the third party’s access, use, and disclosure of the personal data must also be in compliance with our Privacy Shield obligations, and we will remain liable under the Privacy Shield for any failure to do so by the third party unless we prove we are not responsible for the event giving rise to the damage.
Redeam is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC). We may be required to disclose personal information that we handle under the Privacy Shield in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Recourse for EU Individuals
In compliance with the Privacy Shield Principles, Redeam commits to resolve complaints about our collection or use of your personal information. EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Redeam at:
1401 Walnut St, Ste 200
Boulder, CO 80302
Redeam has further committed to cooperate with the panel established by the EU data protection authorities (DPAs) with regard to unresolved Privacy Shield complaints concerning data transferred from the EU.
1401 Walnut St, Ste 200
Boulder, CO 80302