Legendary Tales. Timeless Reward.

Legendary Tales. Timeless Reward.

Privacy and Cookies Policy

Effective date: January 24, 2020

The Wayside Inn Foundation (“TWIF,” “us,” “we,” or “our”) owns and operates the https://wayside.org website (the
“Website”). This document informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Website and the choices you have associated with that data, and our policies regarding cookies in connection with your access to and use of our Website.  By using the Website, you agree to the collection and use of information in accordance with this Privacy and Cookies Policy (the “Policy”).


Unless otherwise defined in this Policy, terms used in this Policy have the same meanings as in our Terms and Conditions, accessible here.

Data Controller: means the natural or legal person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal information is, or may be, processed.  For the purpose of this Policy, we are a Data Controller of your Personal Data.

Data Processors (or Service Providers): Data Processor (or Service Provider) means any natural or legal person who processes the data on behalf of the Data Controller.  We may use the services of various Service Providers in order to process your data more effectively.

Data Subject (or User): any living individual who is using our Website and is the subject of Personal Data.

Cookies: Cookies are simple text files that are stored on your computer, tablet, or mobile device by a website’s server. Each cookie is unique to your web browser. It will contain some anonymous information such as a unique identifier, website’s domain name, and some digits and numbers.

Personal Data: means data about a living individual who can be identified from those data (or from those and other information either in our possession or likely to come into our possession).

Usage Data: is data collected automatically either generated by the use of the Website or from the Website infrastructure itself (for example, the date of a page visit or the duration of a page visit).

Website: is the https://wayside.org website owned and operated by The Wayside Inn Foundation, a Massachusetts 501(c)(3) nonprofit corporation, organized under the laws of the Commonwealth of Massachusetts, USA.

We collect several different types of information for various purposes to provide and improve our Website for your use and use by others.


Personal Data: While using our Website, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (your Personal Data), particularly if you (a) complete and submit an inquiry through the Website for a room, dining, wedding, event, program, or other purpose, (b) chose to be added to our email list by entering and submitting your email address, (c) compete and submit a general contact form, comment, or request for information, (d) register for membership or program participation through the Website, or (e) send us an email through the Website. Personal Data may include, but is not limited to your:

  • email address
  • first name and last name
  • telephone/mobile numbers
  • street address, state/province, ZIP/Postal code, country
  • specific details that may relate to an inquiry or comment provided by you to us

We may use your Personal Data to contact you with newsletters, marketing or promotional materials or provide you with other information that may be of interest to you or that you may have requested through the submission of an inquiry, comment, registration, or email through our Website. You may opt out of receiving any unsolicited communication or promotional materials from us by following the unsubscribe link or instructions provided in any email we send or by contacting us.

Usage Data: We may also collect information on how the Website is accessed and used by you and others (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Website that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers, and other diagnostic data and general user data.

Tracking & Cookies Data: We use Cookies and similar tracking technologies to track the activity on our Website and retain certain information. Cookies are files with small amounts of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website, including our Website, when you visit and view pages on that website, and are stored on your device (computer, laptop, tablet, mobile or other device through which the internet is accessed). Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Website and the services and functions we provide through the Website. Cookies allow us to offer you the best possible experience when accessing and navigating through our Website and using its features, let us operate the site in accordance with the choices you make, and enable us and third-party Service Providers to collect aggregated data for statistical purposes on how our visitors use the website. You can instruct your browser to refuse (“block”) all Cookies or to indicate when a Cookie is being sent to your browser. However, if you do not accept Cookies, you may not be able to use some portions of our Website.

Examples of some of the Cookies we use are:

  • Session Cookies: We use Session Cookies to operate our Website.
  • Preference Cookies: We use Preference Cookies to remember your preferences and various settings.
  • Security Cookies: We use Security Cookies for security purposes.

TWIF uses the data collected through our Webiste for various purposes, including:

  • To provide and maintain our Website
  • To improve the functionality and services provided through our Website
  • To notify you about changes to our Website
  • To allow you to participate in interactive features of our Website when you choose to do so
  • To respond to inquiries or other communications made or submitted by you through our Website
  • To process certain actions taken by you through our Website (purchases, donations, registrations, etc.)
  • To provide customer support
  • To gather analytics or valuable information so that we can improve our Website
  • To monitor the usage of our Website
  • To better understand general information about our users
  • To detect, prevent and address technical and security issues
  • To provide you with news, special offers, promotional, and general information about other goods, services, functions, and events which we offer that are similar to those that you have already enquired about unless you have opted not to receive such information

Legal Basis for Processing Personal Data Under General Data Protection Regulation (GDPR).
If you are from the European Economic Area (EEA), TWIF’s legal basis for collecting and using the personal information described in this Policy depends on the Personal Data we collect and the specific context in which we collect it. TWIF may process your Personal Data because:

  • We need to respond to an inquiry or comment you submitted
  • We need to provide you with information or services you requested
  • We need to process a transaction initiated by you
  • •You have given us permission to do so
  • To comply with applicable laws or regulations
  • The processing is in our legitimate interests and it’s not overridden by your rights

Retention of Data.
TWIF will retain your Personal Data only for as long as is necessary for the purposes set out in this Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies. TWIF will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Website, or if we are legally obligated to retain this data for longer time periods.

Transfer of Data.
Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including Personal Data, to systems in the United States and process it there. Your consent to this Policy followed by your submission of such information represents your agreement to that transfer. TWIF will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

Disclosure of Data Disclosure for Law Enforcement.
Under certain circumstances, TWIF may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government or law enforcement agency).

Legal Requirements.
TWIF may disclose your Personal Data in the good faith belief that such action is necessary to:

  • comply with a legal obligation or regulatory or law enforcement authority
  • protect and defend the rights or property of TWIF
  • prevent or investigate possible wrongdoing in connection with the Website
  • protect the personal safety of users of the Website or the public
  • protect against legal liability
  • protect our Website from abuse or cybersecurity threats

Security of Data.
The security of your data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.

“Do Not Track” Signals.
We do not support Do Not Track (“DNT”). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked. You can enable or disable Do Not Track by visiting the “Preferences” or
“Settings” page of your web browser.

Your Data Protection Rights Under General Data Protection Regulation (GDPR)
If you are a resident of the European Economic Area (EEA), you have certain data protection rights. TWIF aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data. If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please contact us. In certain circumstances, you have the following data protection rights:

  • The right to access, update or to delete the information we have on you. Whenever made possible, you can access, update or request deletion of your Personal Data directly within your account settings section.
  • The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.
  • The right to object. You have the right to object to our processing of your Personal Data.
  • The right of restriction. You have the right to request that we restrict the processing of your Personal Data.
  • The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable and commonly used format.
  • The right to withdraw consent. You also have the right to withdraw your consent at any time where TWIF relied on your consent to process your personal information.

Please note that we may ask you to verify your identity before responding to such requests. You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).

Service Providers.
We may employ third party companies and individuals to facilitate our Website (“Service Providers”), to provide the Website on our behalf, to perform Website-related services or transactions, or to assist us in analyzing how our Website is used. These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

We may use third-party Service Providers to monitor and analyze the use of our Website.

Google Analytics.
Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Website. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network. You can opt-out of having made your activity on the Website available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing information with Google Analytics about visits activity. For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page here.

We may provide products, services, and/or other paid transaction functions within the Website, including gift card purchases, merchandise purchases, program or event participation fees, donations, or other payment based transactions. In that case, we use third-party services for payment processing (e.g. payment processors). We will not store or collect your payment (credit or debit) card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Policy and general Use Policies. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.  We use PayPal to process payments, donations or other fees paid through our Website.  Paypal’s Privacy Policies are available  here.

72 Wayside Inn Road, Sudbury, MA 01776 USA
Follow us on social networks.
Subscribe to our email news and events.
© Copyright 2020. The Wayside Inn Foundation. All Rights Reserved.