Stash Hotel Rewards® Privacy Policy
RevPAR Collective, Inc. ("RPC", "we" or "us") owns and operates the STASH HOTEL REWARDS® ("Stash" or "SHR") program. We are dedicated to protecting the privacy of our program members ("Members") and of visitors to our website located at www.stashrewards.com (the "Stash Site"). This privacy policy ("Policy") explains our policies and practices regarding the personal information we collect (1) on the Stash Site, and (2) in connection with our Members' participation in the Stash program, including the types of information collected and how it is used and shared.
RevPAR Collective has been awarded TRUSTe's Privacy Seal signifying that this Policy and our practices have been reviewed by TRUSTe for compliance with TRUSTe's program requirements including transparency, accountability and choice regarding the collection and use of your personal information. The TRUSTe program does not cover information that may be collected through downloadable software. TRUSTe's mission, as an independent third party, is to accelerate online trust among consumers and organizations globally through its leading privacy trustmark and innovative trust solutions. If you have questions or complaints regarding our privacy policy or practices, please contact us at customer support. If you are not satisfied with our response you can contact TRUSTe here.
RevPAR Collective complies with the U.S. – E.U. Safe Harbor framework and the U.S. – Swiss Safe Harbor framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of personal data from European Union member countries and Switzerland. RevPAR Collective has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access and enforcement. To learn more about the Safe Harbor program, and to view RevPAR Collective's certification, please visit http://www.export.gov/safeharbor/.
Collection of Information
Stash Site Visitors
We collect information from visitors to the Stash Site ("Visitors"), both Members and non-Members, when they voluntarily provide it to us on the Stash Site. For example, we may request your name, street address, phone number and/or email address when you request information relating to RPC, a Participating Hotel, the Stash Site or Stash program, or when you respond to one of our online surveys.
If you send us an email from the Stash Site, we may retain your email (including the email address from which it was sent), our response(s) and any follow up communications that you send. This information may be used to assess the extent to which your questions or concerns were addressed and to improve our Stash program and Stash Site.
From time to time we may offer a "invite friends" feature on the Stash Site that allows you to send an electronic message to a friend. If you choose to use this feature, we will ask you for your email address, the recipient's name and email address, and the text of any message you choose to include. By using the invite friends feature, you represent and warrant to us that you are entitled to provide us with the recipient's name and email address for this purpose. We will only use recipient names and email addresses to send the one time invitation emails. We will not send any further communications to recipients unless and until they enroll in the Stash program and agree to the terms and conditions of membership, including this Policy. We store this information for the sole purpose of sending this one-time email and tracking the success of our referral program.
We also collect non-personal information from Stash Site Visitors. For example, we use “cookies” or other technologies to automatically collect information about your visit to the Stash Site and help us manage information concerning your preferences. A cookie is a small encrypted computer code added to a file on your computer as a record of its visit. It does not collect or provide your name or any other personal information about you. Cookies can be used, however, by the Stash Site to note information about your visit, such as your IP address, operating system and web browser, in order to enhance your use of the Stash Site. Cookies may also be used to collect session information and recognize you when you return as a repeat visitor to the Stash Site. Under no circumstances is any of the data collected by cookies tied to any of your personally identifiable information, such as your email address. You can control what cookies are accepted by your computer through the settings on your web browser. You can also delete them from your computer after they have been accepted.
We or a third party may also collect data using pixel tags, clear gifs, web beacons or similar means (collectively, "pixel tags") that allow us to know when you visit the Stash Site. Pixel tags are not visible to Stash Site Visitors and consist of a few lines of computer coding delivered with the web page. Through pixel tags we obtain non-personal and/or aggregate information, such as the URL you came to the Stash Site from, the areas of the Stash Site you visit, your operating system and your browser, which can be used to enhance Stash Site usability and your online experience, understand traffic patterns and compile aggregated data about site content and usage.
The use of cookies by third parties is not covered by our Policy. We do not have access or control over these cookies. These third parties use session ID cookies to make it easier for you to navigate our site.
Stash Members
We collect certain information from Members when they enroll in the Stash program. Members are required to provide their name, address and email address and may also provide their phone number. The email address you provide at the time of enrollment will serve as your Member ID. In addition, you will create a password at the time of enrollment which you will need to access your Member account ("Account") information and preferences.
We maintain personal profiles for our Stash Members containing hotel stay preference and other information that they voluntarily provide to us. Examples of the types of voluntary information we may seek in the Member profile include (i) high vs. low floor, smoking vs. non-smoking room, beverage and pillow type preferences, and (ii) whether the Member participates in other travel rewards programs. Creating and completing a member profile allows you to make reservations and redeem Stash Points more easily and also allows us and our Participating Hotels to enhance your membership and hotel stay experiences. We may share a Member's preference profile with a Participating Hotel when the Member books a redemption stay at that Participating Hotel through a Stash Site and/or when we otherwise learn of a Member's upcoming stay at a Participating Hotel.
We may also collect non-personally identifiable information relating to Members, such as aggregated Participating Hotel stay data, responses to surveys and/or promotional offers, communication preferences, travel patterns (e.g., frequency of travel, frequent destinations, etc) or use of the Stash Sites.
Following a Member's check-out from a Participating Hotel, the Participating Hotel will provide us with information relating to the stay, including the Member's email address, check in and check out date, reservation number, room type, rate code and folio amount. This stay information is used to credit the appropriate number of Stash Points (if any) to the Member's Account and may also be used to identify and send targeted promotional offers to the Member. We may also extrapolate certain information from such stay data, such as a Member's frequency of travel and/or frequency of stays in Participating Hotels, and share such information with a Participating Hotel when we learn of a Member's upcoming stay at that Participating Hotel.
Children
The Stash Site is intended for users over the age of majority. We do not target or direct the Stash Site towards children under the age of 13, and children under 13 should not provide personal information to the Stash Site.
Use of Collected Information
Stash Site Visitors
We will use personal information provided by Visitors to the Stash Site for the purpose it was provided and as otherwise disclosed to the Visitor at the time the information is provided.
Stash Members
We may use Members' personal information: (a) to provide services, such as processing a redemption transaction for a stay at a Participating Hotel, (b) to improve our services and better understand your needs and requests, for example, by analyzing Member travel and hotel stay activities and patterns, (c) to send Members electronic communications from us, including monthly Account balance statements, other notices regarding your Account and Member surveys, (d) to send Members offers and other promotional communications, which may include promotions or offers from Participating Hotels, provided that the Member has not opted out of receiving such promotional communications, or (e) to establish and maintain Member accounts and other business records and comply with accounting requirements.
Sharing of Personal Information
We do not share, sell, rent or trade your personal information with third parties for their promotional purposes.
We may share Members' personal information with our Participating Hotels. For example, we may share a Member's personal preference profile and point balance with a Participating Hotel when we are aware that the Member has booked a stay at that hotel. We will also match a Member's Member ID against guest stay information provided to us by the Participating Hotels to ensure that Stash Points are credited to the Member's account in connection with Eligible Stays. We will also provide Members' personal information to Participating Hotels in connection with redemption transactions they book through the Stash Site. Information that Members directly provide to a Participating Hotel (for example, when booking a stay on their website or at check in or check out) is subject to that Participating Hotel's own privacy practices and policies.
We may use third party service providers to provide specific business support services to us which may involve limited access to Member or Visitor personal information. We require these companies to use the information only to provide the contracted services and prohibit them from transferring the information to another party except as needed to provide the contracted services. Examples of such services include sending emails, conducting and administering promotions, executing surveys, providing customer service, and maintaining Member Account database.
We reserve the right to disclose your personal information with other parties (a) when the Member or Visitor consents to the disclosure, (b) when we believe that it is necessary to protect our rights or the security of our Stash Site or Members, (c) as required by law, or (d) when we believe that it is necessary to comply with a judicial proceeding, court order, or legal process served on our Stash Site
We also may disclose Member or Visitor personal information to other third parties in conjunction with entering into an agreement for the sale of our stock or assets or if we are involved in bankruptcy proceedings. The recipient of personal information following such actions may have privacy policies that differ from those in this policy.
Invite Friends
If you choose to use our invitation service to invite a friend to the Stash Site and Stash program, we may ask you for your friend's name and email address so that we can automatically send your friend a one-time email inviting him or her to visit the Stash Site and join the Stash program. If we do, we store this information for the sole purpose of sending this one-time email and tracking the success of our invitation program.
Your friend may contact us at customer support to request that we remove this information from our databases.
Security
The security of your personal information is important to us. We will take reasonable steps to protect the personal information collected from Members and/or through the Stash Site from loss, misuse and unauthorized access, disclosure, alteration and destruction. When you enter personal information on our registration forms or within your Account, we encrypt that information using secure socket layer technology (SSL). We, and the service providers maintaining or otherwise handling such personal information on our behalf, have put in place appropriate physical, electronic and managerial procedures to safeguard and secure the personal information from loss, misuse, unauthorized access or disclosure, alteration or destruction. Nevertheless, any information transmitted over the Internet may be subject to breaches of security and we cannot guarantee the security of information you send to or receive from us. Any electronic transmissions that you submit or accept are at your own risk. If you have any questions about security on our Stash Site, you can email us at security@stashrewards.com.
Links
For your convenience, we may provide links from the Stash Site to other web sites, including those of our Participating Hotels. The privacy policies on these third party web sites may be different from this policy and we are not responsible for the information collection practices or the content of the third party sites to which we link, including any Participating Hotel sites. You access such linked sites at your own risk and should read the privacy policy of any linked site before sharing your personal information on such site.
Choice
Members have the choice not to complete and submit a personal profile to us and/or to opt out of receiving promotional electronic communications from us. Members can opt out of promotional electronic communications by following the directions contained in such communications or by changing their communications preferences at that "my account" portion of the Stash Site here. Members will need their Stash Member ID and password to access this portion of the Stash Site.
Changes
We reserve the right to modify this Policy at any time, so please review it frequently. If we decide to change our privacy policy we will post those changes to this Policy and notify you of any material changes here, by email or by means of a notice on the home page of the Stash Site, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it.
Contact Us
If you have any questions about this Privacy Policy or our privacy practices, or if you want to review, correct, delete inaccuracies or change personal information about you, you may do so by making the change within the My Account section of the Stash Site or by contacting us via customer support or at the following address: RevPAR Collective, Inc. d/b/a Stash Hotel Rewards, 2225 E. Bayshore Road, Suite 200, Palo Alto, CA 94303. We will respond to your request to access within 30 days.
Please note that in an effort to prevent the unauthorized disclosure of Member personal information, you may be required to provide proof of identity in order to access personal information. If, upon review, you wish to deactivate your Member profile or update your personal information, we will attempt to do so in a timely fashion. In some instances, however, information that you requested to be removed may be retained in certain files for a period of time in order to troubleshoot problems. In addition, some types of information may be stored indefinitely on back up systems or within log files due to technical constraints or financial or legal requirements. Therefore, you should not always expect that all of your personal information will be completely removed from our databases in response to your request.
Data Retention
We will retain your information for as long as your account is active or as needed to provide you services. If you wish to cancel your account or request that we no longer use your information to provide you services, contact us as security@stashrewards.com. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Effective February 2013
