When you use certain online services of Kata Rocks site, including but not limited to the online reservation, online booking form and information pack request form, we may ask you to provide certain information which relates to you by filling out and submitting the online forms.
We collect personal information to communicate our news, events and promotions, including our products and services which we think may be of interest to our guests. We may also use such information for market research and quality control, as well as for statistical and analysis purposes, in order to deliver particular services or products which are in response to our guest’s needs. Personal information will not be used for communication outside recognised business relationship guidelines.
This consent is given voluntarily and may be revoked at any time by sending an e-mail to email@example.com
You should be aware that information and data is automatically collected through the use of ‘cookies’. Cookies, which are small text files a web site can use to recognise repeat users, facilitate the user’s continuing access to and use of the site. They allow a site to track usage behaviour and compile data which will allow content improvements and targeted advertising. Cookies are not programmes that come onto your system and damage files.
Depending upon the service you wish to use, some of the information we ask you to provide is identified as mandatory (‘Mandatory Information’) and some is optional (‘Optional Information’). If you do not provide the Mandatory Information with respect to a particular service, we will not be able to process any request you may make.
Our web server will recognise your domain name, but not your e-mail address. We use ‘cookie’ technology on the public area of this web site to increase your user experience on the Kata Rocks Site.
We propose to use, store or process (‘Processing’) the Personal Information provided by you to the Kata Rocks Site for the purpose of increasing the convenience for your present and future stays as well as to use the Personal Information to keep you informed about new products and services or offers which we believe may be of interest to you (‘Purposes’).
If you do not wish to have your Personal Information processed for any of these Purposes then you will have the opportunity to indicate this below when you indicate your consent and submit any request to the Kata Rocks Site.
You are responsible for the contents of comments you may post on the blog on Kata Rocks Site.
Depending on the contents of such comments, the Site administrator may withdraw some some comments if they are found to be contrary to applicable laws or if they are found to be inappropriate or insulting.
Site visitors forwarding the contents of Kata Rocks Site using social media sites or applications should be aware of the privacy policies of such social medias.
Your Personal Information may, for the Purposes described above, be transferred or disclosed (‘Disclose’) to any company within Infinite Luxury Limited and affiliated / associated companies (‘the Infinite Luxury Group’) wherever located in the world in whichever different jurisdiction they may operate, depending on which company within the Infinite Luxury Group can best provide the information requested or products and services sought.
Infinite Luxury Group will not Disclose your Personal Information to outside third parties which are not part of the Infinite Luxury Group. Where a third party processes your Personal Information on behalf of the Infinite Luxury Group then such processing will be governed by a contract in the form required by law.
During your stay, we record your itemised spending to accurately assemble your folio, which sets out your room rate and other expenses billed to your room. We also record this information to comply with financial reporting requirements, including those imposed by our auditors and government regulators. Information particular to your stay may also be stored (i.e. health issues, payment difficulties). This stay specific information is stored at the resort where you stayed and is combined with information from previous visits that you have made to our hotels. We may also collect certain information as required by local laws (e.g. passport number). In addition, we may retain the content of any document (including comment cards, electronic documents such as e-mails and other similar forms of communication) that you send us before, during or following your stay. This information may be shared within the Infinite Luxury Group Limited but will not be shared with any third party.
Finally, we are required under relevant law to log and retain all records of internet activity at our resorts, including connection and pages visited to be tracked to the user itself, for a period of 90 days.
i. The Personal Information and other data that you provide:
Your information is encrypted when travelling over the Internet.
Access by you to this data is available through your User ID and a Password. We strongly recommend that you do not divulge your Password to anyone.
Your information is stored on a secure server that resides behind a firewall after your information reaches Infinite Luxury.
The firewall is designed to block access to this data from outside the Infinite Luxury Group.
Inside Infinite Luxury Group only selected Infinite Luxury staff and contractors have access to the server via their Password.
When booking, ordering or registering on our site, as appropriate, you may be asked to enter your email address or other details to help you with your experience.
We collect information from you when you subscribe to a newsletter or enter information on our site.
We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:
We do not use vulnerability scanning and/or scanning to PCI standards.
We only provide articles and information. We never ask for credit card numbers.
All credit card transactions are processed via highly secured affricate websites, such as SCB Bank of Thailand and TheBookingButton, the hotel booking engine.
We use regular Malware Scanning.
Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.
We implement a variety of security measures when a user enters, submits, or accesses their information to maintain the safety of your personal information.
All transactions are processed through a gateway provider and are not stored or processed on our servers.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since browser is a little different, look at your browser’s Help Menu to learn the correct way to modify your cookies.
If you turn cookies off, it won’t affect the user’s experience.
We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information.
We do not include or offer third-party products or services on our website.
Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users. https://support.google.com/adwordspolicy/answer/1316548?hl=en
We have not enabled Google AdSense on our site, but we may do so in the future.
According to CalOPPA, we agree to the following:
Users can visit our site anonymously.
We honour Do Not Track signals and Do Not Track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
It’s also important to note that we do not allow third-party behavioural tracking
When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.
We do not specifically market to children under the age of 13 years old.
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
We will notify you via email
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute noncompliance by data processors.
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.