Effective date: January 24, 2020
The Wayside Inn Foundation (“TWIF,” “us,” “we,” or “our”) owns and operates the https://wayside.org website (the
“Website”). This document informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Website and the choices you have associated with that data, and our policies regarding cookies in connection with your access to and use of our Website. By using the Website, you agree to the collection and use of information in accordance with this Privacy and Cookies Policy (the “Policy”).
Unless otherwise defined in this Policy, terms used in this Policy have the same meanings as in our Terms and Conditions, accessible here.
Data Controller: means the natural or legal person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal information is, or may be, processed. For the purpose of this Policy, we are a Data Controller of your Personal Data.
Data Processors (or Service Providers): Data Processor (or Service Provider) means any natural or legal person who processes the data on behalf of the Data Controller. We may use the services of various Service Providers in order to process your data more effectively.
Data Subject (or User): any living individual who is using our Website and is the subject of Personal Data.
Cookies: Cookies are simple text files that are stored on your computer, tablet, or mobile device by a website’s server. Each cookie is unique to your web browser. It will contain some anonymous information such as a unique identifier, website’s domain name, and some digits and numbers.
Personal Data: means data about a living individual who can be identified from those data (or from those and other information either in our possession or likely to come into our possession).
Usage Data: is data collected automatically either generated by the use of the Website or from the Website infrastructure itself (for example, the date of a page visit or the duration of a page visit).
Website: is the https://wayside.org website owned and operated by The Wayside Inn Foundation, a Massachusetts 501(c)(3) nonprofit corporation, organized under the laws of the Commonwealth of Massachusetts, USA.
INFORMATION COLLECTION AND USE.
We collect several different types of information for various purposes to provide and improve our Website for your use and use by others.
TYPES OF DATA COLLECTED.
Personal Data: While using our Website, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (your Personal Data), particularly if you (a) complete and submit an inquiry through the Website for a room, dining, wedding, event, program, or other purpose, (b) chose to be added to our email list by entering and submitting your email address, (c) compete and submit a general contact form, comment, or request for information, (d) register for membership or program participation through the Website, or (e) send us an email through the Website. Personal Data may include, but is not limited to your:
We may use your Personal Data to contact you with newsletters, marketing or promotional materials or provide you with other information that may be of interest to you or that you may have requested through the submission of an inquiry, comment, registration, or email through our Website. You may opt out of receiving any unsolicited communication or promotional materials from us by following the unsubscribe link or instructions provided in any email we send or by contacting us.
Usage Data: We may also collect information on how the Website is accessed and used by you and others (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Website that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers, and other diagnostic data and general user data.
Examples of some of the Cookies we use are:
USE OF DATA.
TWIF uses the data collected through our Webiste for various purposes, including:
Legal Basis for Processing Personal Data Under General Data Protection Regulation (GDPR).
If you are from the European Economic Area (EEA), TWIF’s legal basis for collecting and using the personal information described in this Policy depends on the Personal Data we collect and the specific context in which we collect it. TWIF may process your Personal Data because:
Retention of Data.
TWIF will retain your Personal Data only for as long as is necessary for the purposes set out in this Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies. TWIF will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Website, or if we are legally obligated to retain this data for longer time periods.
Transfer of Data.
Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including Personal Data, to systems in the United States and process it there. Your consent to this Policy followed by your submission of such information represents your agreement to that transfer. TWIF will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.
Disclosure of Data Disclosure for Law Enforcement.
Under certain circumstances, TWIF may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government or law enforcement agency).
TWIF may disclose your Personal Data in the good faith belief that such action is necessary to:
Security of Data.
The security of your data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
“Do Not Track” Signals.
We do not support Do Not Track (“DNT”). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked. You can enable or disable Do Not Track by visiting the “Preferences” or
“Settings” page of your web browser.
Your Data Protection Rights Under General Data Protection Regulation (GDPR)
If you are a resident of the European Economic Area (EEA), you have certain data protection rights. TWIF aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data. If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please contact us. In certain circumstances, you have the following data protection rights:
Please note that we may ask you to verify your identity before responding to such requests. You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).
We may employ third party companies and individuals to facilitate our Website (“Service Providers”), to provide the Website on our behalf, to perform Website-related services or transactions, or to assist us in analyzing how our Website is used. These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
We may use third-party Service Providers to monitor and analyze the use of our Website.
We may provide products, services, and/or other paid transaction functions within the Website, including gift card purchases, merchandise purchases, program or event participation fees, donations, or other payment based transactions. In that case, we use third-party services for payment processing (e.g. payment processors). We will not store or collect your payment (credit or debit) card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Policy and general Use Policies. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information. We use PayPal to process payments, donations or other fees paid through our Website. Paypal’s Privacy Policies are available here.