Privacy Policy at Oxford Hotels

At Oxford Hotels, the privacy and confidentiality of user information is important. We are committed to maintaining the privacy and security of your user information. We may update this policy from time to time, so please check here frequently. Hotel will not disclose identifiable user information to any third party without consent.
 
Each hotel is committed to safeguarding your privacy while visiting this website. Our goal is to provide you with an Internet experience that delivers the information, resources and services that are most relevant to you. To achieve this goal, part of the operation of the Site includes the gathering of certain types of information about Site users.
 
Because we understand that your privacy is important, we wish to explain the types of information we gather and the way in which we use it. This Privacy Policy applies to the Site.
 
This Privacy Policy covers two types of information gathered at the Site, personal and aggregated. The term "personal information" refers to data you voluntarily provide in connection with use of the Site that identifies you and/or the company on whose behalf you are accessing and using the Site. Personal information includes, e.g., data submitted in connection with our services, such as your name, e-mail address, phone number, company affiliation, physical address and/or certain other personal information. The term "aggregated data" refers to general information regarding visitors and users of the Site that relates to use of the Site, e.g., traffic patterns, number of visits to certain pages, visits from other web sites or to third-party web sites linked to the Site, use of particular services and interest in services, information or features of the Site or other parties made available through or found at the Site.

What information is collected about you? How do we use it?

We take the utmost care to ensure that the personal information we obtain from you is not used in a way that you may be unaware of or not agreeable to. You may wish to submit an information request about our Hotel, participate in one of our promotions or subscribe to our e-mail or postal mail lists. In response, we may ask for information such as your name and postal address. In the event you opt to provide us with this information, we will only use it for the purpose specified by you at the bottom of the information gathering form.
 

Information collected on the Site may be used to:

  • Register you as a Hotel member
  • Plan and purchase hotel accommodations
  • Enter your email in our promotions or sweepstakes
  • Send marketing communications or surveys to you
  • Respond to your questions or suggestions
  • Improve the quality of your visit to our site
 
All forms will provide an opt-out button to allow you to choose not to participate in Hotel lists and future online marketing. In deciding whether or not to join such lists, please note that they are only used for Hotel purposes or in joint promotions with a Hotel partner. We do not sell, rent or share any of your personal information with any other party including any third-party joint promoters, nor use it for unapproved commercial purposes. You may request to be removed from our lists at any time. All emails distributed to our lists will contain easy, online access to unsubscribe.

Permission for Use

Hotel may collect and use personal information that you submit at the Site in any manner that is consistent with uses stated in this Privacy Policy or disclosed elsewhere at the Site at the point you submit such personal information. At the time you submit personal information or make a request, the intended use of the information you submit will be apparent in the context in which you submit it and/or because the Site states the intended purpose. By submitting personal information at the Site, you are giving your consent and permission for any use that is consistent with uses stated in this Privacy Policy or disclosed elsewhere at the Site at the point you submit such personal information, and such consent will be presumed by Hotel, unless you state otherwise at the time you submit the personal information. Please do not request any such communications on behalf of an individual or company if you are not authorized to make the request.
 

Secure Reservations

If you decide to make an online reservation at the Site, you will be linked to a reservation interface and a third party booking engine ("Booking Engine") provided by Synxis.While it appears to be part of our site, the Booking Engine is in fact provided by a third party and is governed by its privacy practices. We understand that security remains the primary concern of online consumers and have chosen the Booking Engine Vendor carefully.
 

Protecting your information

We would like our Site visitors to feel confident about using the Site to plan and purchase their accommodations, so Hotel is committed to protecting the information we collect. Hotel has implemented a security program to keep information that is stored in our systems protected from unauthorized access. Our Site is hosted in a secure environment. The Site servers/systems are configured with data encryption, or scrambling, technologies, and industry-standard firewalls. When you enter personal information during the reservation process, or during a customer email sign-up, your data is protected by Secure Socket Layer (SSL) technology to ensure safe transmission.
 

Withdrawing Consent to Use

If, after permitting use of your personal information, you later decide that you no longer want Hotel to include you on its mailing list or otherwise contact you or use your personal information in the manner disclosed in this Privacy Policy or at the Site, simply tell us by sending an e-mail, or by clicking on the "Unsubscribe" button at the bottom of our email communication to you.
 

Use of Aggregated Data

Hotel is interested in improving the Site and may develop and offer new features and services. We monitor aggregated data regarding use of the Site for marketing purposes and to study, improve and promote use of the Site. In connection with such purposes, Hotel may share aggregated data with third parties collectively and in an anonymous way. Disclosure of aggregated data does not reveal personal information about individual Site users in any way that identifies who they are or how to contact them.

Exceptions to the Privacy Policy

Hotel has two exceptions to these limits on use of personal information: Hotel may monitor and, when we believe in good faith that disclosure is required, disclose information to protect the security, property, assets and/or rights of Hotel from unauthorized use, or misuse, of the Site or anything found at the Site.
Hotel may disclose information when required by law; however, only to the extent necessary and in a manner that seeks to maintain the privacy of the individual.
 

Use of Cookies

To enable features at the Site, Hotel may assign one or more "cookies" to your Internet browser. Cookies, among other things, speed navigation through our Site, keep track of information so that you do not have to re-enter it each time you visit our Site, and may provide you with customized content. A cookie is an Internet mechanism composed of a small text file containing a unique identification number that permits a web server to send small pieces of information or text by means of your browser and place them on your computer's hard drive for storage. This text lets the web server know if you have previously visited the web page. Cookies by themselves cannot be used to find out the identity of any user.
 
We use cookies to collect and maintain aggregated data (such as the number of visitors) to help us see which areas are most popular with our users and improve and update the content on our site. While in the process of browsing our site, you also provide us with information that doesn't reveal your personal identity -what type of destination you're exploring, for example. We use this aggregated data only as explained in this Privacy Policy. We do not connect aggregated data to any name, address, or other identifying information.
 
You may occasionally receive cookies from unaffiliated companies or organizations, to the extent they place advertising on our Site or are linked to the Site. These third-party cookies may collect information about you when you "click" on their advertising or content or link. This practice is standard in the Internet industry. Because of the way in which the Internet operates, we cannot control collection of this information by these third parties, and these cookies are not subject to this Privacy Policy.
 

Children's Privacy & Parental Consent

Please be aware that Hotel has not designed this Site for, and does not intend for it to be used by, anyone under age 18. Accordingly, this Site should not be used by anyone under age 18. Our privacy policy prohibits us from accepting users who are under the age of 18. Hotel specifically requests that persons under the age of 18 not use this Site or submit or post information to the Site. Should Hotel inadvertently acquire personal information or other data from users under the age of 18, Hotel will not knowingly provide this data to any third party for any purpose whatsoever, and any subsequent disclosure would be due to the fact the user under age 18 used the Site and submitted personal information without solicitation by or permission from Hotel.
 

Links Provided To Other Sites

Hotel may provide links to a number of other web sites that we believe might offer you useful information and services. However, those sites may not follow the same privacy policies as Hotel. Therefore, we are not responsible for the privacy policies or the actions of any third parties, including without limitation, any web site owners whose sites may be reached through this Site, nor can we control the activities of those web sites. We urge you to contact the relevant parties controlling these sites or accessing their on-line policies for the relevant information about their data collection practices before submitting any personal information or other sensitive data.
 

Your Consent To This Privacy Policy

Use of the Site signifies your consent, as well as the consent of the company for whom you use the Site and whose information you submit (if any), to this on-line Privacy Policy, including the collection and use of information by Hotel, as described in this statement, and also signifies agreement to the terms of use for the Site. Continued access and use of the Site without acceptance of the terms of this Privacy Policy relieves Hotel from responsibility to the user.
 

Policy Modifications & Contacting Hotel

Hotel reserves the right to change this Privacy Policy at any time; notice of changes will be published on this page. Changes will always be prospective, not retroactive. If you have questions about our policies, please contact:
 
Oxford Hotels
155 Montgomery Street, Suite #404,
San Francisco, California 94104
Contact: 415-915-0426
Fax: 415-989-0529
 
San Diego Executive & Accounting Office
411 Hotel Circle South
San Diego, CA 92108
Phone: 619-291-3577
Fax: 619-692-3636

Important information and who we are

This privacy notice aims to give you information on how Creekside Inn collects and processes your personal data through your use of our websites, software applications, social media pages, HTML-formatted email messages we send to you and through any communications we have with you when you stay as a guest at the Hotel ("collectively, the "Services").
This Website and Services are not intended for individuals under the age of 18 and we do not knowingly collect data relating to children.
It is important that you read this privacy notice together with any other privacy notice or fair processing notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This privacy notice supplements the other notices and is not intended to override them.
IHA Hotel Management Company LLC, d/b/a Greystone Hotels manages the Hotel as well as other hotels and related facilities, each one of which is owned by different legal entities (the "Greystone Group"). We will provide you with the legal names of each of these legal entities on request. This privacy notice is issued on behalf of the Hotel and Greystone Group so when we mention the "Hotel", "Greystone", "we", "us" or "our" in this privacy notice, we are referring to the relevant legal entity in the Greystone Group responsible for processing your data. The Hotel is the controller and responsible for this Website and the Services.
We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the DPO using the details set out below.

Our full contact details are:

Full name of legal entity: Creekside Inn
Name of DPO: David Rubin
Postal address: 155 Montgomery Street, Suite 404, San Francisco, CA 94104
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.
This Website and or the Services may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy policies. When you leave our Website, we encourage you to read the privacy notice of every website you visit.

Our Core Beliefs Regarding User Privacy And Data Protection

  • User privacy and data protection are human rights
  • We have a duty of care to the people within our data
  • Data is a liability, it should only be collected and processed when absolutely necessary
  • We loathe spam as much as you do!
  • We will never sell, rent or otherwise distribute or make public your personal information

Relevant Legislation

Along with our business and internal computer systems, this website is designed to comply with the following national and international legislation with regards to data protection and user privacy:

EU General Data Protection Regulation 2018 (GDPR)

If you are a resident of the EU, you have the right to make a complaint at any time to your respective supervisory authority. For residents of the UK, the Information Commissioner's Office (ICO) is the UK supervisory authority for data protection issues. We would, however, appreciate the chance to deal with your concerns before you approach your respective supervisory authority, so please contact us in the first instance.

Other Business and Internal Computer Systems

Other Business and Internal Computer Systems includes software applications made available by us for use on or through computers and mobile devices, through our social media pages that we control, through HTML-formatted email messages that we send to you that link to this Privacy Policy, and through your communications with us and when you stay as a guest at one of our hotels. By providing your personal and other information to us, you agree to the terms and conditions of this Privacy Policy.

Personal Information That This Website Collects, Why We Collect It and the Legal Basis for Using Your Personal Data

We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:
  • Identity Data includes first name, , last name, username or similar identifier, , title, and gender.
  • Contact Data includes email address and telephone numbers.
  • Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website.
  • Profile Data includes your username and password, your interests, preferences and feedback.
  • Usage Data includes information about how you use our website, products and services.
  • Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.
This website collects and may use your personal information for the following reasons:

Site visitation tracking

Like most websites, this site uses Google Analytics (GA) to track user interaction. We use this data to determine the number of people using our site, to better understand how they find and use our web pages and to see their journey through the website.
Although GA records data such as your geographical location, device, internet browser and operating system, none of this information personally identifies you to us. GA also records your computer's IP address, which could be used to personally identify you, but Google does not grant us access to this. We consider Google to be a third party data processor (see section below).
GA makes use of cookies, details of which can be found on Google's developer guides. Our website uses the analytics.js implementation of GA. Disabling cookies on your internet browser will stop GA from tracking any part of your visit to pages within this website.
Disabling cookies on your internet browser will stop GA from tracking any part of your visit to pages within this website.
In addition to Google Analytics, this website may collect information (held in the public domain) attributed to the IP address of the computer or device that is being used to access it.
We may also collect personal information about you from our direct interactions with you. This includes personal data you provide when you:
  • Request our services;
  • subscribe to our communications; 
  • request marketing to be sent to you; or
  • give us some feedback

Blog

Should you choose to add a comment to any posts that we have published on blog sites, the name and email address you enter with your comment will be saved to this website's database, along with your computer's IP address and the time and date that you submitted the comment. This information is only used to identify you as a contributor to the comment section of the respective blog post and is not passed on to any of the third party data processors detailed below. Only your name and email address that you supplied will be shown on the public-facing website.
Your comments and it's associated personal data will remain on this site until we see fit to either
  • remove the comment or
  • remove the blog post. Should you wish to have the comment and it's associated personal data deleted, please email us here using the email address that you commented with.
If you are under 18 years of age you MUST obtain parental consent before posting a comment on our blog.
NOTE: You should avoid entering personally identifiable information to the actual comment field of any blog post comments that you submit on this website.
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
  • Where we need to perform the contract we are about to enter into or have entered into with you or provide the service you have requested.
  • Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
  • Where we need to comply with a legal or regulatory obligation.
Generally we do not rely on consent as a legal basis for processing your personal data other than in relation to sending third party direct marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time in the manner described below.

Contact forms and email links

Should you choose to contact us using the contact form on our Contact us page, none of the data that you supply will be stored by this website or passed to / be processed by any of the third party data processors defined in section below. Instead the data will be collated into an email and sent to us over the Simple Mail Transfer Protocol (SMTP). Our SMTP servers are protected by TLS (sometimes known as SSL) meaning that the email content is encrypted before being sent across the internet. The email content is then decrypted by our local computers and devices.

Email newsletter

If you choose to join our email newsletter, the email address that you submit to us will be forwarded to Cendyn who provides us with email marketing services. We consider Cendyn to be a third party data processor (see section below). The email address that you submit will not be stored within this website's own database or in any of our internal computer systems.
If you are under 18 years of age you MUST obtain parental consent before joining email newsletter.

Opting Out

Your email address will remain within Cendyn's database for as long as we continue to use Cendyn's services for email marketing or until you specifically request removal from the list. You can ask us to stop sending you marketing messages at any time. You can unsubscribe using the unsubscribe links contained in any email newsletters that we send you or by contacting us at the e-mail or physical address provided above. When requesting removal, please reference the email account that is subscribed to the mailing list.

Third Party Data Processors

We use a number of third parties to process personal data on our behalf. These third parties have been carefully chosen and all of them comply with the legislation set out in section above.

Cookie Policy

This policy covers the use of cookies and other technologies. The types of cookies we use fall into 3 categories:
  • Essential cookies and similar technologies
    These are vital for the running of our services on our websites and apps. Without the use of these cookies parts of our websites would not function. For example, session cookies allows a navigation experience that is consistent and optimal to user's network speed and choice of device.
  • Analytics cookies and similar technologies
    These collect information about your use of our websites and apps, and enable us to improve the way it works. For example, analytics cookies show us which are the most frequently visited pages. They also help identify any difficulties you have accessing our services, so we can fix any problems. Additionally these cookies allow us to see overall patterns of usage at an aggregated level.
  • Tracking, advertising cookies and similar technologies
    We use these types of technologies to provide advertisements that are more relevant to your interests. This can be done by delivering online adverts based your previous web browsing activity. Cookies are placed on your browser which will remember the websites you have visited. Advertising based on what you have been looking at is then displayed to you when you visit websites who use the same advertising networks.
We may also use cookies and similar technologies to provide you with adverts based on your location, offers you click on, and other similar interactions with our websites and apps.

Data Security and Data Breaches

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We will report any unlawful data breach of this website's database or the database(s) of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.

Data Retention

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
You may request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. In some circumstances we may anonymize your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you. We may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.

Changes To Our Privacy Policy

This privacy policy may change from time to time to conform with legislation and/or industry developments. We will not explicitly inform our clients or website users of these changes. Instead, we recommend that you check this page occasionally for any policy changes.
By entering a valid email address that you have access to, we will inform you any personal information we collect that is associated with that email address and how to manage it.