CaliFunDay Tours & Transportation Privacy Statement
CaliVentures Travel LLC DBA CaliFunDay Tours & Transportation and its affiliated entities (referred to herein collectively as "CaliFunDay Tours & Transportation", "us", “our” or "we") are committed to protecting your privacy. This Privacy Statement describes our information practices and the choices available to you regarding our use of information that can be used to identify you (" Personal Data").
If you are in the European Union (" EU"), please pay particular attention to the information for EU users in Section 6 below.
If you have any questions about our Privacy Statement, you can contact us at firstname.lastname@example.org.
1. The Data We Process
Depending on how you interact with us either directly or through your authorized agent/booker, we process different kinds of data and in different ways. Some data is automatically processed if you communicated with us through our website www.califunday.com (hereinafter “Site”). Data is only processed if you or your authorized agent/booker actively submit it to us. We need to process your personal information in order to provide our Services and run our business. By accepting our Terms and Conditions as outlined in your order confirmation and our website, you and/or your authorized agent/booker are confirming that you have read and understand this policy, including how and why we use your information.
Data we collect and/or process in the course of providing our Services or if you communicate with us via any of our Channels:
We process Website Usage Data to allow you to surf our website and to ensure its functionality. We also process Website Usage Data to perform analyses on the performance of our website, to continuously improve the Site and correct errors, to ensure IT security and operation of our systems, as well as to prevent or uncover abuse. We further process this data in aggregated or pseudonymized form to analyze trends, administer the Sites, track users’ movements around the Site, and to gather demographic information about our user base as a whole or to improve marketing (including serving you personalized, interest-based ads) as well as the user experience on our Site and guaranteeing the safety of our IT systems.
We may also automatically collect device-specific information when you install, access, or use our Services. This information may include information such as the hardware model, operating system information, app version, app usage and debugging information, browser information, and device identifiers.
Cookies: We use the following types of cookies (you may adjust the cookie settings in your browser at any time):
Data we process only if you submit it to us:
When you interact with us through any of our Channels, you can submit Personal Data to us in various situations, including:
Feedback Information: We may use your reservation data in order for you to more easily provide feedback about your experience with the App and the service.
Analytics Information: We use data analytics to ensure Site functionality and improve the Services. We do not link the information we store within the analytics software to any personally identifiable information that you submit within the mobile application.
Transaction Data: In relation to your transportation or touring request you may make online or over the telephone, we will process your contact and billing information, such as your name, address, and credit card information. You can view the exact information required in the form provided at point of purchase. We will only use this data to provide Service, for billing purposes, and for internal accounting.
Survey Data: From time to time we may conduct surveys in respect of our products and services. Participation in our surveys is optional. However, if you respond to one of our surveys, you may provide us with personal information about you. Unless you otherwise consent, we will only use this information to determine the types of products and services that may be of interest to you and to operate and improve our product and/or service offerings.
Email/Direct Mail Campaign Data: From time to time, we may contact our customers directly by mail, email, or telephone to inform you about upgrades, new products, promotions, or special offers that you told us you were interested in receiving. However, we will not contact you with any commercial communications that are unrelated to the Services that you have purchased from us unless you have given us your prior consent to receiving such information. When responding to one of these campaigns, you may have the option to provide us with personal information, which we will use for the purpose indicated.
Affiliate Service Providers: We may collaborate with another affiliated transportation company to provide you with transportation services outside our local market. Our use of your Personal Data is limited to the specific transportation request in a different market that you have requested or elected to use and we will only share specific Personal Data that is required for completion of transportation request. We do not share email address or credit card information with any affiliate transportation provider.
2. Use of Personal Data
Where we process your information without your consent, we do as follows:
Providing and improving our Services: We may use customer information as it is necessary to pursue our legitimate interests of improving our Services for our users, understanding how our Services are being used, and to develop and grow our business.
Keeping our Services safe and secure:We may also use customer information for safety purposes, in order to ensure the security of our Services.
Legal and Safety: We may also retain, preserve, or release your personal information to a third party in the following limited circumstances: in response to lawful requests by public authorities; to protect, establish, or exercise our legal rights or defend against legal claims; to comply with a subpoena, court order, legal process, or other legal requirement; or when we believe in good faith that such disclosure is reasonably necessary to comply with the law, prevent imminent physical harm or financial loss, or investigate, prevent, or take action regarding illegal activities, suspected fraud, threats to our property, or violations of our Terms & Conditions.
3. Sharing Personal Data with Third Parties
We treat your Personal Data with care and confidentially and will only pass it on to third parties to the extent described below and not beyond. We do not share, sell, rent, or trade Personal Data with third parties for any promotional purposes. Where our affiliates or service providers process Personal Data, they will do so solely on our instructions and have undertaken to comply with strict contractual requirements for the security of your data (including, but not limited to, complying with this Privacy Statement).
CaliFunDay Tours & Transportation will not process or share your personal information without your consent, except based on the following legal grounds:
4. Timeframe for Keeping Data
We process and store your Personal Data as long as necessary for the fulfillment of our contractual or legal obligations. Thus, we store the data as long as our contractual relationship with you as our customer obliges us to do so. After termination of our contract, we will store Personal Data only to the extent and for as long as applicable law requires. All other data will be deleted immediately when you, as a customer, unsubscribe from our Products or other services. If the remaining data is no longer required for the fulfillment of legal obligations, it will be regularly deleted, unless further processing is necessary for the preservation of evidence or the prevention of legal claims from becoming time-barred.
We follow the industry best practices to protect the personal information submitted to us, both during transmission and after it is received. Some of these standards are:
With specific regard to credit card information, we comply with the Payment Card Industry Data Security Standard ("PCI DSS") by (but not limited to) designing, implementing, and maintaining a coherent set of standards and procedures to manage risks to cardholder data – in an effort to ensure an acceptable level of Information Security risk – and by conducting yearly PCI DSS audits.
We regularly review, test and update our security policies and systems in order to meet the highest standards of data security. Unfortunately, no method of transmission over the internet or method of electronic storage is 100% secure. Therefore, while we strive to protect your personal information, we cannot guarantee its absolute security.
6. Reviewing and Requesting Changes to Your Information
EU users: please refer to Section 8 below for your statutory rights under the GDPR
We know that our customers value having control over their own information, so we give you the choice of providing or editing certain information, as well as choices about how we contact you.
Upon request, we will make a reasonable effort to inform you regarding whether we hold any of your personal information. We will respond to any requests for access to personal information within 30 days after receipt of such request.
To update customer billing information, contact us at email@example.com for assistance.
If you have signed up to receive marketing emails from us, you can opt-out of receiving future marketing emails by using the link “Opt Out” on notification emails or by contacting us at firstname.lastname@example.org.
Withdrawal of consent or objection to processing: You can object to data processing in certain limited circumstances. In such cases, we will cease processing your information unless we have compelling legitimate grounds to continue processing or where it is needed for legal reasons.
Personal, payment and ride information are required to provide your rides, receipts, cancellation notices, etc. We cannot offer or fulfill the Services without processing this information.
If you have a concern about your service or the processing of your information, please contact email@example.com.
7. Messages from CaliFunDay Tours & Transportation
On occasion, we may need to contact you. These communications are service-related and necessary for our users. You agree that we can send you service-related communications, such as those related to rides, transactions, your account, or security. Examples of service-related communications include an email address confirmation/welcome email when you sign up for Services, notification of a booked tour or ride, modification of key features or functions, and correspondence with our support team.
8. Information for EU Residents:
The data controller is CaliVentures Travel LLC DBA CaliFunDay Tours & Transportation, 565 Hillcrest Avenue, Pacific Grove, CA 93950. Privacy-related questions can be directed to us by mail at that addres or by email at firstname.lastname@example.org.
You are not legally required to provide CaliFunDay with the Personal Data described in this Privacy Statement. Further, the contractual relationship that you might have entered into with us by making a reservation for our Service does not imply any obligation to provide your Personal Data. However, you might not be able to use our Services to the full extent if you do not provide us with certain data or object to the use of these data in order to complete the transportation request.
Our Legal Basis for Processing your Personal Data
When processing your Personal Data, we rely on the General Data Protection Regulation ("GDPR"), an EU-wide legal framework for the standardization of data protection. We primarily processes data as a controller, for the purposes explained above under Sections 1 and 2 of this Privacy Statement. These purposes represent our legitimate interests for the purposes of Article6 (1) f) GDPR. At the same time, some of the Personal Data we process is necessary for us to perform a contract with you or in order to take steps at your request prior to entering into a contract with you. For example, if you express your interest in tour services, such as by contacting us by email, we will process the Personal Data submitted to comply with your request. This may include sharing your Personal Data with one of our authorized affiliates, who will then use your Personal Data to complete the transportation request. In addition, we are legally obliged to provide certain information to criminal prosecution or tax authorities in individual cases upon request. In these cases, the legal basis for the processing is either legal requirements (Article 6 (1) c) GDPR) or reasons of public interest (Article 6 (1) e) GDPR).
Your rights regarding the processing of your Personal Data
As a natural person, you have certain rights as "Data Subject". You can assert the following rights against us under the GDPR:
In addition, you have a right of objection to the competent data protection supervisory authority under Article 77 GDPR, but only with respect to the data processing we conduct on our own behalf, as a controller. In the event we act as a processor of your data for a third party, you must refer to the entity acting as controller to assert this right.
Information about your Right of Objection under Article 21 GDPR
In addition to the rights already mentioned, you have the right, for reasons arising from your particular situation, to object at any time to the processing of Personal Data relating to you, which is processed on the basis of Article 6 (1) e) GDPR (data processing in the public interest) and Article 6 (1) f) GDPR (data processing on the basis of a balance of interests); this also applies to profiling based on this provision within the meaning of Article 4 (4) GDPR. If you file an objection, we will no longer process your Personal Data unless we can prove compelling grounds for the processing that outweigh your interests, rights and freedoms or the processing serves to assert, exercise, or defend legal claims. Please also note that, if we terminate the processing due to your objection, the Channels and/or Services may no longer be available to you or only to a limited extent.
You also have the right to object at any time to the processing of your Personal Data for the purpose of direct marketing, including any subscription to our newsletters or personalized ads; insofar as it is associated with such direct marketing. If you object, we will no longer process your Personal Data in the future.
The objections can be made form-free and should be addressed to: email@example.com.
9. Children Under 13
We do not knowingly collect personally identifiable information from children under the age of thirteen. If you are under the age of thirteen, you must ask your parent or guardian for permission to use this website.
This Site contained links to other websites. Please be aware that we are not responsible for the content or privacy practices of such other sites. We encourage users to be aware when they leave our Site and to read the privacy statement of any other website that collects personally identifiable information.
11. Opt-Out & Unsubscribe from Third Party Communications
Users may opt-out of receiving any or all communications from our third-party partners by contacting us by email at firstname.lastname@example.org or by phone at 800-301-4042.
12. Changes to Privacy Statement
CaliVentures Travel LLC DBA CaliFunDay Tours & Transportation
565 Hillcrest Avenue
Pacific Grove, CA 93950