Effective Data: Jan 1, 2020

Cruise Asia Privacy Policy

As used in this “Privacy Policy” Cruise Asia (hereafter referred to as CA) refers to all websites, marketing, advertising and data holding properties and services owned or operated by Cruise Asia.

This Privacy Policy is part of CA’s Terms of Use and describes the privacy practices of CA. It explains when and how CA collects end user and client information, including Personally Identifiable Information (defined below), how we use such information, and the circumstances under which we may disclose such information to others. This Privacy Policy includes the policies that CA observes for compliance with laws in the United States as well as other applicable laws, including those followed regarding the transfer of Personally Identifiable Information from the European Economic Area (“EEA”) and/or Switzerland to the United States under the U.S. – EU Privacy Shield and U.S. – Swiss Safe Harbor, respectively (collectively, the “Safe Harbor and Privacy Shield”). By visiting the CA website, visiting a CA client website that provides notice of its use of CA and/or this policy, or registering for our service, you acknowledge that you accept and consent to the practices outlined in this Privacy Policy.

Visitors to the CA Website. If you are a visitor to the CA website or a CA client (“Client”) who registers or signs into the CA website (including for purposes of obtaining a free trial of CA services), we may obtain the following types of information from you or concerning your computer or device (“CA Client Information”), which may include information that can itself be used to identify and/or contact you (“Personally Identifiable Information”):

• Name
• Email address
• Phone number
• Website name and URL
• Credit card number
• Billing address
• Visitor site preferences

CA may also receive certain information that may be provided by your browser or mobile device, including:

• Browser information
• Operating system information
• Mobile device information (e.g., device identifier, mobile operating system, etc.)
• IP address
• Pages accessed
• Time of visit
• Time of last visit
• Referring site, application, or service, including the relevant search queries that led you to CA’s website

Visitors to CA Clients’ Websites. Our Clients may use customized and proprietary CA code, software and/or services (“Service(s)”) to obtain information regarding the activities that users engage in while visiting their web pages (“Client User Data”). When a user visits a website that uses CA Service, CA code contained on the website contacts CA servers and enables CA to collect Client User Data. Some Clients may also use their own code to obtain Client User Data and then send such information to CA servers. Client User Data may include Personally Identifiable Information, including, but not limited to, the types of information listed for CA Client Information above.

Client User Data is stored on CA web servers and databases (including those hosted on third party servers on behalf of CA) for use in performing analysis and producing reports for the applicable CA Client. In addition, CA itself uses the CA Service in order to obtain insights into visitors’ activities on its own websites, which include, as of the Effective Date, http://www.cruisasia.com.

CA collection and analysis of Client User Data helps our Clients to evaluate and understand how their users are interacting with their websites, and potentially, to modify their websites in order to make them more valuable or useful for their users. CA Clients determine the types of Client User Data that are sent to CA servers for analysis. This data may include or be linked to Personally Identifiable Information depending on how the Client uses CA Services on its website(s). CA Clients are contractually prohibited from sending personally sensitive Client User Data (e.g. personal health information, political opinions, religious or philosophical beliefs) to CA and CA does not knowingly receive such data.

In addition, CA may collect certain information about a Client’s visitor’s computer that may be provided by the visitor’s browser. This includes browser information, operating system information, mobile device information, IP address, time of visit, and the referring site, application, or service. Such information may be collected and shared with the CA Client even though not specifically requested by the Client.

Visitors to the CA Website. We use the CA Client Information, including Personally Identifiable Information, to register your account, fulfill your requests, understand how you are engaging with CA, communicate with you, determine if you are satisfied with the Service, process billing for CA Services, and personalize your experience on the CA website and with the CA Service.

We may also use CA User Information to facilitate the delivery of content or advertisements that we believe may be of interest to you, or to communicate with you about new or existing products and services or special offers. For more information on opting out of these communications, please see the section on “ User Privacy Controls” below.

Visitors to CA Clients’ Websites. CA never sells or shares any Client User Data with individuals or companies other than the specific Client whose website transmitted the Client User Data to CA.

CA may analyze Client User Data in the aggregate for purposes of internal research and/or to determine overall trends or metrics concerning how users are engaging with websites, and may report such general trends publicly, without disclosing any Client User Data.

Our Client’s Use of CA. CA contractually requires its Clients to abide by all applicable laws, rules and regulations, including the Safe Harbor and Privacy Shield where it applies, as well as other applicable laws relating to privacy and data collection (“Applicable Laws”). CA also contractually requires its Clients to obtain any necessary consents from visitors to its website(s) for the Client’s use of CA services, comply with all Applicable Laws (including, as an example, the Safe Harbor and Privacy Shield where it applies) with respect to the transfer of Personally Identifiable Information of EU or Swiss subjects through the Service, and to post an online privacy policy that provides each visitor with clear notice of its practices regarding data collection, use, and disclosure (including the Client’s use of CA), along with a link to the CA Privacy Policy and to the CA Service Opt-Out (discussed below).

CA cannot be held responsible for any Client’s failure to make these disclosures on its website or for any Client’s use or collection of Client User Data that is not permitted under this Privacy Policy or otherwise. For more details on the terms that apply to our Clients’ use of the CA Service, please see Section 4 (“Privacy”) in the CA Terms of Use.

Cookies. CA uses cookies (small text files that CA stores locally on your computer) on our Client’s websites for one or more of the following purposes: to help identify unique visitors and/or devices; assess usage patterns and perform traffic analysis; identify visitor preferences; conduct A/B testing; diagnose problems with our servers, and otherwise administer the CA Service. CA does not use methods such as browser cache, Flash cookies, or eTags, for acquiring or storing information about end users web browsing activity on Client websites or otherwise.

Depending on how our Clients use CA Services, information contained in CA cookies placed on the computers of end users may be linked to Personally Identifiable Information in CA’s database. This allows our Clients to use the CA Service to better analyze and measure their users’ interactions with their website and to organize activities by the same user on their website across time.

If you do not wish to have CA place and use cookies on your computer, you should set your browser preferences to refuse all cookies before accessing CA or other websites that may use CA. CA is not responsible for any failure by you or your browser to accurately implement or communicate your browser preferences or settings. In addition, please be aware that even if you configure your browser settings to reject all cookies, your activity on CA client websites will still be recorded by our Service, unless you opt out of our Service as set forth below. However, your rejection of all cookies will prevent CA from determining whether or not someone using your computer has previously visited the website, i.e., whether or not the visitor is a “unique” visitors, and from retrieving any information about your prior activities on a Client’s website through information contained in a cookie.

Please note that if you set your browser to reject cookies, some features of the websites you visit may be unavailable. For more information on how to reject cookies, see your browser's instructions on changing your cookie settings. Additionally, please note that rejecting cookies may also prevent you from opting out of our Service because that involves placing an opt-out cookie in your browser.

If you do not elect to set your browser preferences to refuse cookies, you consent to have cookies, including cookies used by CA, placed on your computer when you visit our Client’s websites.

Web Beacons. CA may also collect certain information using Web Beacons. “Web Beacons” are electronic images that may be used on CA Website, in CA’s Service, or in our email communications. They are used, for example, to count website visits or to tell if an email has been opened and acted upon.

Service Providers.Information, including CA Client Information, Client User Data, and any Personally Identifiable Information contained therein, may be shared with certain third-party companies and individuals that help facilitate technical and administrative aspects of the CA Service (e.g., credit card processing), or perform functions related to the administration of CA (e.g. hosting services). These third parties perform tasks on our behalf and are contractually obligated not to disclose or use CA User Information or Client User Data for any other purpose, and to employ adequate security measures to prevent unauthorized access to such data. However, CA is not responsible in the event that Personally Identifiable Information is disclosed as a result of a breach or security lapse by any such third party.

CA Clients. CA Clients may share Client User Data with service providers (e.g. customer relationship management platforms) that perform tasks on behalf of CA Clients. CA contractually requires the Clients to disclose such practices to its users.

CA Partners. If you are a CA Client that signed up through our Partners Program, your CA Client Information may be shared with the Partner Program member that signed you up for CA Service, provided that, prior to any such sharing, CA will obtain contractual obligations from the Partner Program Member that it will comply with all Applicable Laws with respect to such CA Client Information. These Partner Program members may use that information to help you setup, adjust, manage, and cancel your account with CA.

Law Enforcement and Legal Process. CA also reserves the right to disclose any CA Client Information or Client User Information (including Personally Identifiable Information) to: (i) comply with any law, regulation, or legal request; (ii) enforce, apply, or investigate breaches of the Terms of Use or other agreements; (iii) respond to client requests; or (iv) protect the rights, property, or safety of CA, our employees, our users, or others.

Change of Control. If CA, or substantially all of its assets, is acquired by another company or successor entity, CA Client Information and/or Client User Data will be one of the assets transferred or acquired by the purchaser or successor. You acknowledge that such transfers may occur, and that any purchaser of or successor to CA or its assets may continue to collect, use and disclose your information acquired prior to such transfer or acquisition as set forth in this policy.

Clients and Visitors to the CA Website. CA offers several ways for you to review and update account information that is obtained and stored by CA, or to change your CA communication preferences:

• If you have a CA account, you can review or update your account information by contacting us at info@cruiseasia.ph
• You may unsubscribe to any of our e-mail or direct message communications regarding updates or products by following the unsubscribe instructions in the body of any message.
• You may contact us at info@cruiseasia.ph, attn: Cruise Asia Privacy Office.

Do Not Track Signals. CA Clients decide whether their use of CA Service is responsive to Do Not Track signals from browsers, and whether CA will be notified of a Do Not Track signal received from a user’s browser. If a CA Client enables the forwarding of a Do Not Track signal to CA, CA will attempt to read the signal and will not collect any Client User Data from a user visiting that CA Client’s website during that session, following receipt of the Do Not Track signal. The Do Not Track signal is browser-specific, and will not work for mobile devices. If a CA Client does not forward Do Not Track signals to CA, then CA will not have any access to such signals from the Client’s users, and such signal will have no effect on CA collection or use of data received from that user during the applicable session(s).

Visitors to CA Clients’ Websites. If you wish to opt out of CA collecting Client User Data when you visit CA Client Websites, please see the CA Tracking Opt-Out Instructions.

Unlike the Do Not Track signal described above, which applies only to CA Clients who have activated the functionality, this opt-out mechanism applies to all CA Client websites, meaning that no user data will be collected about you on any such websites. Please note that if you use a different device or Internet browser than you used when opting out of CA Service, or if you clear your cookies, CA will not be able to view the opt-out and will collect Client User Data when you visit CA Client websites. In these circumstances, you will need to revisit the link above from the new browser or device in order to reiterate your opt-out decision for that device or browser.

We may contact you by e-mail or other equivalent electronic communications if you access CA products or services. By registering or using CA Services, you specifically consent to the receipt of these e-mail or text message communications. If you do not want to receive emails or other communications from us, please follow the unsubscribe instructions in the body of such communications or notify us by email at info@cruiseasia.ph

CA has implemented reasonable security mechanisms to protect CA Client Information and Client User Data that is maintained on CA servers from loss, misuse and unauthorized access, disclosure, alteration and destruction. Examples of these security mechanisms include limited and password-protected access, high security public/private keys, encryption on processed data, and SSL encryption to protect transmission of data.

However, please keep in mind that no security system is impenetrable. It may be possible for third parties to intercept or access CA Client Information and Client User Data in spite of these measures. CA cannot guarantee the security of your information and cannot be held responsible for unauthorized access to CA client accounts.

Our Site and Service is not directed to children under 13. We do not knowingly collect personally identifiable information from children under 13 or from websites that are targeted to children under 13. If you are under 13, please do not attempt to register or send any information about yourself to us, including your name, address, telephone number, or email address. If a parent or guardian becomes aware that his or her child has provided us with personally identifiable information without their consent, he or she should contact us as provided below. If we become aware that a child under 13 has provided us with personally identifiable information, we will delete such information from our servers.

CA retains the discretion to amend or modify this Privacy Policy from time to time. If we make material changes to the way we collect, use or disclose Personally Identifiable Information, we will notify you by posting a clear and prominent announcement on CA or through a direct communication to your CA account. For new users, the change or update will become effective upon posting. For existing users, the change or update will become effective 14 days after posting.

Use and disclosure of information we obtain is subject to the later of: (1) the Privacy Policy in effect at the time such information is collected or (2) any subsequent Privacy Policy of which you have constructive notice.

CA welcomes any questions or comments about this Privacy Policy or our privacy practices. Any such comments or questions should be submitted via e-mail to: info@cruiseasia.ph

We will use reasonable efforts to respond promptly, within 10-20 business days, to requests, questions or concerns you may have regarding access to Personally Identifiable Information about you that we have collected. We may contact you for follow up information.

CA complies with the U.S. - E.U. Privacy Shield framework and the U.S. - Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data from European Union member countries and Switzerland. To learn more about the Safe Harbor and Privacy Shield programs please visit http://www.export.gov/safeharbor/ and https://www.privacyshield.gov/.

With respect to personal information received or transferred pursuant to the Privacy Shield Framework, CA is subject to the investigatory and regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, CA may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Under Safe Harbor and Privacy Shield individuals have the right to access information held about them and amend or delete it if it is inaccurate. Any such requests or inquiries should be directed to the CA Privacy Office; contact information is provided above under “How to Contact Us”

Under Safe Harbor and Privacy Shield individuals must have the choice to opt out of the collection and forward transfer of the data to third parties. CA options for doing so are explained under “User Privacy Controls” CA further certifies that it complies with Safe Harbor and Privacy Shield policies regarding the onward transfer of data to third parties. Information about onward transfer and disclosure is available under “Disclosure and Transfer of Information to Third Parties”

Any questions or concerns regarding the use or disclosure of Personally Identifiable Information should be directed to the CA Privacy Office at the address given above. CA will investigate and attempt to resolve complaints and disputes regarding use and disclosure of Personally Identifiable Information by reference to the principles contained in this Privacy Policy. For complaints that cannot be resolved between CA and the complainant, disputes will be resolved pursuant to Sections 13.4 through 13.6 of the Terms of Use. For the avoidance of doubt, the dispute resolution procedures will be conducted in English.

If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at: https://feedback-form.truste.com/watchdog/request/ .

Under certain conditions individuals may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted. In addition, the United States Federal Trade Commission is the statutory body that has jurisdiction to hear any claims against CA regarding possible unfair or deceptive practices and violations of laws or regulations governing privacy.

This Privacy Policy is effective as of the Effective Date set forth at the top of this document.