Evergreen International Hotels are committed to protecting our customers’ privacy. This document outlines your data protection and privacy rights and our responsibilities with regard to collection, storage, transmission and use of your Personal Data.
The Evergreen International Hotels websites are not intended for children and minors and we do not knowingly solicit or collect Personal Data from children and minors. As a parent or legal guardian, please do not allow your children to submit Personal Data without your permission.
By submitting your Personal Data to us, you agree to the processing set out in this Personal Data Protection and Privacy Policy. If there are any additional uses of your Personal Data, we will provide you with the ability to opt-in or out of those additional uses.

1. Collection of Personal Data

We will collect your Personal Data when you interact with us through activities such as making hotel reservations, online shopping, e-newsletters subscription or membership applications.
Personal Data collected may include your name, gender, ID or passport number, date of birth, nationality, country of residence, phone number(s), fax number, email address, and credit card details. Your Personal Data will be used to complete the online transactions or services requested. If some of the Personal Data cannot be provided, it may be impossible to complete the desired service or transaction.

2. Use of Personal Data

Your Personal Data is used to enhance service quality and provide customized services (including targeted sales). We guarantee that your Personal Data will not be revealed to third parties unrelated to the services or transactions you require. An exception will be made when we are obligated to provide Personal Data to police or other authorities.
When you make reservations or purchase non-Evergreen Hotels’ service items through the Evergreen Hotels web-site, it will go through the other merchant's transaction platform, causing you to enter your Personal Data that may be collected by the related businesses to follow up the services.

3. Legal basis for processing Personal Data

In order for us to process Personal Data we must have a lawful purpose for doing so.
As a result, we may use your Personal Data for the purposes outlined above because :
(1) the information is required in order to take steps to enter into and perform a contract with you or our customers (guests);
(2) the information is required to ensure and follow up on the good performance of the contract and our services to you or our customers (guests);
(3) of our legitimate interests in the effective delivery of our services to you or our customers (guests);
(4) of our legitimate interests in the effective and lawful operation of our business so long as such interests are not outweighed by your interests;
(5) of the legal and regulatory obligations that we are subject to, such as keeping records for tax purposes or providing information to a public body or law enforcement agency.
 
Consent
We also rely on consent for lawful processing where we have no legitimate interest, or as the case may be, we have no contract to which you could be a party with us. An example of this may be when you sign up to receiving marketing through our website. We will only provide you with such marketing materials where we have obtained such consent from you. If the processing is based on your consent, you have the right to withdraw your consent at any time. For this purpose, you can click on the unsubscribe function in the communication or by contacting us as set out in section 15 below.

4. Disclosure

We may on occasions pass your Personal Data to third parties exclusively to process work on our behalf. We require these parties to agree to process this information based on our instructions and requirements consistent with this Policy and the applicable Personal Data Protection and Privacy rules and regulations.

5. Collection of Information through Cookies

A “cookie” is a small piece of data sent by a web server and is stored by a web browser. It is used to identify your computer when you visit our websites. You can configure your browser not to accept cookies if you choose, but please be aware that if you disable cookies, you may not be able to access all the personalized features and services offered by our websites.

6. Transmissions to Your E-mail Address

We may send e-mails to you to let you know about new services and special offers that we feel may be of interest to you. Our e-mails will be marked as being sent by us.
You have the right to ask us not to process your Personal Data for marketing purposes at any time. You can exercise your right by checking certain boxes online or on the data collection forms, talking to us in person, or by contacting us as set out in section 15 below.

7. Personal Data storage and transmission across international borders

As a global group of undertakings, we endeavor to provide you with the same level of Personal Data Protection and Privacy Rules whatever the country where Evergreen International Hotels are located. The nature of our business and our operations require us to transfer your Personal Data using different (multiple) servers located in different countries and/or to other organization that may be located in countries outside of your own for the purposes mentioned in this Personal Data Protection and Privacy Policy.
As and considering the Personal Data Protection and Privacy laws in these various countries may not be as comprehensive as those in your own country, we will take appropriate measures, including contractual clauses, to secure the transfer of your Personal Data to recipients (which may be internal or external to Evergreen International Hotels) located in a country with a level of protection different from the one existing in the country in which your Personal Data is collected.
In that respect, your Personal Data may be accessed by staff or suppliers, transferred, and/or stored outside the European Economic Area (EEA) including to countries which may have a lower level of data protection than under EU data protection law. We must comply with specific rules when we transfer Personal Data from inside the EEA to outside the EEA.
When such Personal Data transmission across international borders is performed, we will use appropriate safeguards to protect any Personal Data being transferred.

8. Other Personal Rights

Subject to various exceptions and Personal Data Protection and Privacy laws in your country, you may have the following personal rights:
(1) Right of access - You have the right to request a copy of the Personal Data that we hold about you.
(2) Right of rectification - You have a right to correct data that we hold about you that is inaccurate or incomplete.
(3) Right to be forgotten - in certain circumstances you can ask for the data we hold about you to be erased from our records.
(4) Right to restriction of processing - where certain conditions apply you have a right to restrict the processing.
(5) Right of portability - You have the right to have the data we hold about you transferred to another organization.
(6) Right to object - You have the right to object to certain types of processing such as direct marketing.
(7) Right to object to automated processing, including profiling - You also have the right not to be subject to the legal effects of automated processing or profiling.

9. Personal Data retention period

In the absence of any request for deletion sent to our Privacy team, we will store your Personal Data on our systems for the longest of the following three retention periods:
(1) as long as is necessary for the relevant activity or services;
(2) any such retention period as may be required by law;
(3) the end of the statute of limitations for any such litigation or inquiry as might arise in respect of the relevant activity or services.

10. Customer Self-protection

Please protect yourself by not revealing login credentials and Personal Data to others. We recommend that you log out of websites after completing online services such as room reservations and online shopping. If you share use of the computer with others or are using a public computer, you must remember to close the browser window to prevent others from collecting and using your Personal Data.

11. Revision of this Policy

We reserves the right to change this Policy at any time. The content presented on this page is the latest version of this Policy. Should a major modification to this Policy occur, we will post a notice on this webpage to let you know about the changes.

12. Encryption of Transaction and Service Information

The Personal Data protected by encrypted secure transmission is as follows:
Name, gender, ID (passport) number, date of birth, Nationality, country of residence, contact address, telephone number, fax number, e-mail address, and credit card information.
Our online transactions adopt Secure Socket Layer (SSL) protocol – an industry standard for encrypting over the internet, to protect your Personal Data. When transmitted over the Internet, the above information will be encoded using 128-bit encryption technology to prevent its theft by third parties.

13. Inquiries, Changes or Deletion of Personal Data

If you need to check, change or delete your Personal Data or exercise any data protection and privacy rights as mentioned in this Policy or under any applicable data protection and privacy laws and regulations, please contact us. If your Personal Data is incorrect or incomplete (such as using an alias in place of your real name) we might not be able to verify your identity and in such cases we may not be able to uphold your data protection and privacy rights.

14. Governing Law and Settlement of Disputes

Any dispute arising out of or in connection with this website, including any questions regarding its existence, validity or termination, shall be governed by the laws of Republic of China and referred to the Taiwan Taipei District Court.
Should you have any questions or comments regarding our Personal Data Protection and Privacy Policy, you are welcome to contact us.

15. Complaints

In the event that you wish to make a complaint about how your Personal Data is being processed by Evergreen International Hotels, you have the right to complain to us. If you do not get a response within thirty (30) days you can complain to the Data Protection Authority.
The details for each of these contacts are:
Data Privacy Team
All requests should be made to customer@evergreen-hotels.com or writing to us at the address further below:
8F, 166, SEC.2, Minsheng E. RD., Taipei 10423, Taiwan
Alternatively, you can contact our Representative in the European Union at:
paradm@evergreen-hotels.com