Privacy Policy

We're not in the business of selling your data or spamming you with junk. Here's what we actually do with your info:

• Processing Reservations: Pretty obvious - we need your details to book your room, confirm your stay, and send you receipts.
• Improving Your Experience: Remember your room preferences, dietary needs, favorite amenities. Makes return visits smoother.
• Communication: Confirmation emails, special offers you've opted into, important updates about your booking.
• Legal Compliance: Sometimes we're required by law to keep certain records, especially for financial transactions.
• Service Enhancement: Analyzing patterns to figure out what's working and what needs improvement. All done with aggregated data, not individual tracking.
• Security: Protecting against fraud, unauthorized access, and making sure our systems stay secure.

Bottom line? We use your information to run the hotel properly and make sure you have a great stay. That's it.

We're selective about who gets access to your information. Here's the short list:

• Payment Processors: Companies like Stripe or our merchant services provider need your payment info to process transactions. They're all certified and secure.
• Service Partners: If you book a heritage tour or spa treatment, we'll share relevant details with those specific service providers.
• Technology Providers: Our booking system, email service, and website hosting partners. They've all signed agreements to protect your data.
• Legal Authorities: Only if we're legally required to, like responding to a court order or complying with regulations.
• Business Transfers: If Warspire Chronicle were ever sold or merged (not planning on it!), your data would transfer to the new owners under the same privacy protections.

We don't sell, rent, or trade your personal information to marketers, advertisers, or random third parties. That's not how we operate.

Yeah, we use cookies - but not the delicious kind from our kitchen. Here's the breakdown:

• Essential Cookies: These keep the website functioning. They remember your session, shopping cart, language preferences. Can't really turn these off without breaking the site.
• Performance Cookies: Help us understand how people use the site - which pages are popular, where people get stuck, load times. All anonymous data.
• Functionality Cookies: Remember your choices like "don't show this popup again" or your preferred room view.
• Marketing Cookies: Track whether you came from an ad or email campaign. You can opt out of these in your browser settings.

Most browsers let you control cookies. Check your browser settings if you wanna adjust what's allowed. Just keep in mind that blocking all cookies might make some features not work properly.

We also use Google Analytics to understand site traffic. You can opt out of Google Analytics tracking with their browser add-on if you want.

Security's a big deal for us. We've invested in proper protection measures:

• Encryption: All data transmitted between your browser and our servers is encrypted with SSL/TLS. That's the little padlock icon you see in your address bar.
• Secure Servers: Our databases are hosted in secure data centers with physical security, firewalls, and regular security audits.
• Access Controls: Only authorized staff members can access guest information, and only when they need it to do their jobs.
• Regular Updates: We keep our systems patched and updated to protect against new security threats.
• Payment Security: We're PCI DSS compliant, which is the security standard for handling credit card information.
• Employee Training: Our team's trained on privacy best practices and data handling procedures.

No system's 100% hack-proof, but we're doing everything reasonably possible to keep your information secure. If there's ever a breach, we'll notify you promptly as required by law.

It's your data, and you've got rights. Here's what you can do:

• Access: Request a copy of all the personal information we have about you. We'll provide it in a readable format.
• Correction: If something's wrong or outdated, let us know and we'll fix it.
• Deletion: Ask us to delete your data (with some exceptions for legal or contractual obligations we might have).
• Opt-Out: Unsubscribe from marketing emails anytime. There's an unsubscribe link at the bottom of every promotional email we send.
• Data Portability: Get your data in a format you can transfer to another service if you want.
• Object to Processing: You can object to certain types of data processing, especially for marketing purposes.
• Withdraw Consent: If we're processing data based on your consent, you can withdraw that consent anytime.

To exercise any of these rights, just email us at reservations@warspirechronicle.info or call (604) 555-8847. We'll respond within 30 days.

We don't keep your data forever. Here's our general approach:

• Active Bookings: We keep this info for the duration of your stay plus a reasonable period after for customer service purposes.
• Past Guest Records: Typically retained for 7 years for accounting and legal compliance reasons. After that, we securely delete or anonymize the data.
• Marketing Communications: Until you unsubscribe or ask to be removed from our lists.
• Website Activity: Cookie data usually expires after 1-2 years depending on the type.
• Security Footage: CCTV recordings are kept for 30-90 days unless needed for an investigation.

If you haven't stayed with us or interacted with us in a while, we might reach out to confirm you still want to hear from us. If not, we'll remove you from our active database.

Our website and services aren't directed at children under 13. We don't knowingly collect personal information from kids under 13 without parental consent.

If you're booking a family suite and including children in the reservation, that's fine - the booking's made by an adult. But we won't collect or store unnecessary information about minors.

If we discover we've accidentally collected data from a child under 13, we'll delete it as soon as possible. If you're a parent and think we might have info about your child, please contact us right away.

We're based in Vancouver, Canada, and primarily operate under Canadian privacy laws (PIPEDA). However, some of our service providers might be located in other countries, including the United States.

When we transfer data internationally, we make sure there are appropriate safeguards in place - things like standard contractual clauses, privacy shield frameworks, or other legally approved mechanisms.

If you're visiting from the EU or another jurisdiction with specific data protection rules, you've got additional rights under those laws. We respect those rights regardless of where you're from.

Things change - new laws get passed, we might add new services, technology evolves. When we need to update this privacy policy, we'll post the new version here with an updated "Last Updated" date at the top.

For minor changes, we'll just update the policy. For major changes that significantly affect how we handle your data, we'll notify you via email or a prominent notice on our website.

We recommend checking this page occasionally if you're curious about any updates. The date at the top will tell you when the last revision was made.

Got questions about this privacy policy? Want to exercise your data rights? Just need clarification on something? We're here to help.

We'll respond to privacy-related inquiries within 30 days. If you're not satisfied with our response, you've got the right to file a complaint with the Office of the Privacy Commissioner of Canada.