Privacy Policy
GMS (Asia Pacific) Limited which includes all group companies and their affiliates: Global Marketing Strategies (Aust) P/L; GMS (Asia Pacific) Limited – Guangzhou; GMS Consultant Pvt Ltd; GMS Kabushiki Kaisha; GMS Asia Pacific Korea Limited; GMS Group Pte Ltd; GMS Group Singapore Pte Ltd; GMS Asia Pacific (Thailand) Co., Ltd; GMS (Asia Pacific) Limited- Taiwan Branch; GMS (Asia Pacific) Limited – Vietnam Representative Office; PT GMS Asia Pacific Jakarta; GMS Asia Pacific Philippines Corp; GMS Loyalty Marketing Services LLC; GMS Technology Solutions Limited (hereinafter referred to as GMS Group) recognizes that privacy is important to its customers. We are transparent about how we collect, store, use and disclose data and make it easier for you to understand and exercise choices available to you in this regard.
This Privacy Statement describes the privacy practices of GMS or the data that we collect:
- Through websites gms-group.com operated by us from which you are accessing this Privacy Policy, including gms-group.com, myclubmarriott.com, rezervedloyalty.com, eatdrinkandmore.com, eatdrinkandmore.cn, eatdrinkandmore.com/Indonesia, eatdrinkandmore.com/Thailand, sprivilege.com, starprivilege-pacific, sprivilege.com/korea, sprivilege.com/japan, sprivilege.com/guam, starprivilege.vn, thefarcard.com/and other websites owned / or controlled by the GMS collectively, the “Websites
- Through the software applications made available by us for use on or through computers and mobile devices (the “Apps”)
- Through the social media pages that we control from which you are accessing this Privacy Policy (collectively, our “Social Media Pages”)
- Through e-mail messages, online directories, public databases and digital campaigns including on third party sites through google, affiliate marketing, blogs, influencers, forums, internet search etc. that we use and through your communications with us (collectively, our Digital campaigns)
- Through our various offline interaction including voice, print, direct at client sites - hotels, trade shows, corporate presentations, events, retail malls, airport, public directories and others
- Whenever you enrol, use and access services linked to the membership programs we manage
- Through voice calls outbound and customer services, emails, messages and all other form of communication received from you including details of references for memberships and your family details
- Data received through our Business Partners and Third Parties
- Any other data received from Internet Connect Devices
Collectively, we refer to the Websites, the Apps, Digital Campaigns and our Social Media Pages, as
“Online Services” and, together with offline channels, the
“Services.” By using the Services, you agree to the terms and conditions of this Privacy Policy.
The User must carefully read this Privacy Policy, which has been written clearly and simply, to facilitate its understanding, and to freely and voluntarily determine whether he/she wishes to provide their personal data, or those of third parties, to GMS and its group companies and their affiliates.
If you fail to provide certain information when requested, we may not be able to perform the contract we have entered into with you (such as providing a membership benefit), and we may also be prevented from complying with our own legal obligations.
IDENTIFICATION: WHO WE ARE & WHAT WE DO
- NAME OF THE COMPANY: GMS (Asia Pacific) Limited
- REGISTERED OFFICE: Unit 1008, 10th Floor, Tower A, New Mandarin Plaza, 14 Science Museum Road, TST East, Kowloon, Hong Kong
- EMAIL: feedback@gms-group.com
- DATA PRIVACY OFFICER (DPO) MAIL: privacy@gms-group.com
GMS Group is a multinational headquartered in Singapore and premium provider of customized loyalty marketing solutions and related technology products for the hotel industry. Details of its various services and clients is available on
www.gms-group.com
GMS Group uses sources of information as above to enrol new members to its loyalty programs and then service those memberships using the information provided by such Members. It has its own proprietary software and mobile app to manage these memberships. The information provided to GMS Group by its Members is shared with the hotels and hotel companies whose membership programs GMS Group manages and Program Partners, if any, in conformity with the respective privacy policy of GMS Group and such hotels and Program Partners.
INFORMATION AND CONSENT: SCOPE OF THIS PRIVACY POLICY
This Privacy Policy (‘Policy’) describes how GMS Group protects your privacy when we receive your information from the various channels as mentioned above. This Policy may be supplemented or amended from time to time.
This Policy is part of the terms and conditions of the membership program you enrol for (as detailed in the program brochure) or any marketing and sales promotion to acquire new members run by GMS or its group companies.
By providing us with your information as described above, you are expressly agreeing to our terms and conditions, including the terms of this Policy. If you do not consent to the collection, use, disclosure and transfer of your personal information as described in this Policy, you may choose not to provide us the information as described above.
NATURE OF DATA: PERSONAL INFORMATION/DATA
As used in this Policy, the term “personal information/data” means information that identifies you personally, either alone or in combination with other information provided by you and now available with us. This information that we collect directly from you typically includes your name, mailing address, telephone numbers, e-mail address and other information needed to manage your membership effectively. We use your personal information to administer the Program, respond to your queries and communicate with you about Program related offers, transactions and ancillary services. The personal information/data you provide directly to us generally includes:
- Full name and contact information as above
- Date of birth
- Gender
- Date of anniversary
- Spouse name, date of birth and contact details (e-mail and mobile)
- User ID codes or Activation codes provided by us or changed by the Member to access program management Apps and Sites
- Geolocation data
- Membership use and transaction information, including your dining details, use of facilities like spa, pool and health club, the hotels where You have stayed, date of arrival and departure and related spend details
- Goods and services purchased, special requests made, your service preferences
- Your credit card and other payment details provided while making payments towards your membership or a reservation to guarantee the same
- Any information necessary to fulfil special requests under the membership program (for example, dining, leisure, travel and stay preferences)
- Your membership details received through any of our Program Partners
- Your reviews, feedback and opinions about our programs and services
- Social media account ID and other social media data publicly available, or data made available by linking your social media details and the loyalty membership accounts
- Data provided by you of friends and family to be referred to the membership program, typically name, mobile number and e-mail
- Any other personal data you choose to provide to us
There are other forms of
“non-personal information/data” which may be gathered/stored by us. The same has been outlined in detail in Point No 5 of this Privacy Policy.
SENSITIVE PERSONAL DATA THAT WE DO NOT COLLECT
GMS Group as a matter of policy never seeks, collects, processes or retains any of the Special Categories of Personal Data as mentioned in the GDPR, which are data/information revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation.
GMS Group also as a matter of policy never seeks, collects, processes or retains any of the Sensitive Personal data or Information as defined under the applicable laws for all respective countries in which GMS Group operates in Asia Pacific. Sensitive personal data or information of a person under applicable laws in the respective countries means such personal information which consists of information relating to;— (i) password; (ii) financial information such as Bank account or credit card or debit card or other payment instrument details ; (iii) physical, physiological and mental health condition; (iv) sexual orientation; (v) medical records and history; (vi) Biometric information; (vii) any detail relating to the above clauses as provided to body corporate for providing service; and (viii) any of the information received under above clauses by body corporate for processing, stored or processed under lawful contract or otherwise: provided that, any information that is freely available or accessible in public domain or any other law for the time being in force shall not be regarded as sensitive personal data or information for the purposes of these rules.
For the purpose of clarification, credit or debit card data received by us to enable a transaction, example purchase of a membership program or to guarantee a reservation, is used only for that transaction and is never stored by us. Further, if an activation code for a membership is sent by us and converted into a changed password by the Member, then that will be stored with us for the purpose of facilitating the access of the Membership to that Member.
HOW WE COLLECT PERSONAL DATA
GMS Group collects Personal Data in a variety of ways:
- Online Services- We collect Personal Data when you make a reservation, purchase goods and services from our Websites or Apps, communicate with us, or otherwise connect with us or engage with our social media pages and Digital campaigns, or sign up for a newsletter or participate in a survey, contest or promotional offer. We also collect data from publicly listed profiles on social media and through Internet search.
- Offline Interactions- We collect Personal Data when you visit our client properties or use on-property services and outlets, such as restaurants, concierge services, health clubs, child care services, and spas. We also collect Personal Data from public directories, when you attend presentations, promotional events that we host or in which we participate, or when you provide your Personal Data to facilitate an event.
- Program Centers- We collect Personal Data when we communicate with you over the phone or E-mail, chat for program related and promotional calls, or you communicate with us to make a reservation, communicate with us by email, fax or via online chat services or contact customer service. These communications may be recorded for purposes of quality assurance and training.
- Enrolment on Membership Programs- We collect personal details as described above in Clause 2 when you enrol in a membership program with us.
- Strategic Business Partners- We collect Personal Data from companies with whom we partner to provide you with goods, services or offers based upon your experiences at our client properties or that we believe will be of interest to you (“Strategic Business Partners”). Examples of Strategic Business Partners include credit card companies, on-property outlets, travel and tour partners, time share partners, rental car providers, other membership programs, airlines and travel and dining booking and discovery platforms. Strategic Business Partners are independent from the GMS Group.
- Other Sources- We may collect other Personal Data and/or Non-Personal Data from other sources, such as public databases, joint marketing partners, member referrals, internet search and other third parties. The information that we collect as a part of the Referral Program is used only for the purpose of marketing the Program. We store the received referral details only if the referral shows interest and allows us to send further communication upon being contacted. If the referral opts out of receiving communication from us, we erase his / her data at the first instance.
- Physical & Mobile Location Based Services- We collect Personal Data if you download one of our Apps or choose to participate in certain programs. For example, we may collect the precise physical location of your device by using satellite, cell phone tower, Wi-Fi signals, or other technologies. We will collect this data if you opt in through the App or other program (either during your initial login or later) to receive the special offers and to enable location-driven capabilities on your mobile device. If you have opted-in, the App or other program will continue to collect location data when you are in or near a participating property until you log off or close application (i.e., the App or other program will collect this data if it is running in the background) or if you use your phone’s or other device’s setting to disable location capabilities for the GMS Group App or other program.
WHAT WE DO WITH THE DATA WE COLLECT AND FOR HOW LONG WE KEEP IT
GMS Group uses the personal data collected to acquire new Members and personalize and customize their loyalty membership programs for enhancing the overall experience of the existing members. The contact details are primarily used for passing on all kinds of information related to their membership account and it includes notifications, benefits, new offers, discounts, special packages and deals, renewals, post renewal offers, lapsed membership communication etc. that a member is eligible to. We may contact you for administrative purposes, such as confirming a transaction you may have made, informing you of your account status, informing you of important Program changes, or inviting you to reconsider your privacy preferences. We further use the personal information of the member and their family members (wherever applicable) to offer special services on their birthday, anniversary, etc. We further use the information provided by the members pertaining to preferences/likings and interests to tailor-make and customize our offerings accordingly.
Depending on the member’s request, the personal data collected will be processed by GMS Group in accordance with the following purposes:
- To inform you about membership programs you may be interested in
- To manage our contractual relationship with you under the loyalty membership program when you are a member with us, because we have a legitimate interest to do so and/or to comply with a contractual or legal obligation
- To manage and facilitate the bookings and reservations made in advance, confirmations or pre-arrival messages
- To personalize the services according to your preferences
- To manage subscription to the newsletter and subsequent sending of this
- To communicate with you about goods and services according to your personal preferences
- To manage the member’s contact requests with GMS through the channels provided to this end
- To manage surveys and/or evaluations regarding the quality of the services provided by GMS and/or the perception of its image as a company
We keep your personal information till the fulfilment of the purpose for which it was collected. This means that we will keep your information for as long as you continue to be a member with any of our programs for fulfilment of the legal and contractual obligations entered into by the members by accepting the loyalty membership.
In case you cease to be a member, we will retain your details for a further minimum period of 24 months post expiration of the membership so that you may easily re-join when you wish to within that period. This information would also help us communicate to you any new benefits that you may receive with a renewal of membership.
Please note that you can always choose to opt-out from receiving such communications and also raise a request for removal of your information/data post expiry of your membership by a click-through on each e-mail you receive from us
.
We will only use your personal information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.COLLECTION OF OTHER DATA –
Our web server collects the following access log information: click-stream data and HTTP protocol elements and also access logs containing this information. The data may be used by us and our agents for the following purpose:
- Web site and system administration
- Research and development
- To administer our website and for our Email campaigns, we track and analyze anonymous usage and volume statistical information from our visitors and members. All data collected are owned and used solely by us or on behalf of our marketing partner. Such information is shared externally only on an anonymous, aggregated basis.
- We use clear gifs, also known as "Web beacons": tiny graphics, with a unique identifier that help us to improve the visitor experience, to manage our site content, and to track visitor behavior.
- In the event of registration and/or access through a third-party account, GMS Group may collect and access certain information of the member’s profile from the corresponding social network solely for internal administrative purposes and/or for the purposes indicated above.
- User Information: We collect the following user information: unique identifiers which may be used for
- Completion and support of the current activity
- Anonymous user analysis
- Anonymous user profiling and decision making
- Contacting visitors for the marketing of services or products (the user may opt out of this usage)
- Such data is classified as “Non-Personal Data”, a type of data that generally does not reveal your specific identity or does not directly relate to an individual. To the extent non-personal data reveal your specific identity or relate to an individual, we will treat non-personal data as personal data. Other non-personal data mainly include
- Browser and device data
- App usage data
- Data collected through cookies, pixel tags and other technologies
- Demographic data and aggregated data
- Your IP address
- Google and adobe analytics
- Cookies further allow us to select which advertisements or offers are most likely to appeal to you and display them while you are using the Online Services or to send marketing messages. We also use cookies to track responses to online advertisements and marketing emails.
- You can choose whether to accept cookies by changing the settings on your browser or by managing your tracking preferences by clicking on “Tracking Preferences”located at the bottom of our home page. If, however, you do not accept cookies, you may experience some inconvenience in your use of the Online Services. For example, we will not be able to recognize your computer, and you will need to log in every time you visit. You also will not receive advertising or other offers from us that are relevant to your interests and needs.
For more information on how to disable cookies and different kinds of cookies used by us please read our cookie policy. For any clarifications/assistance, please email us on
feedback@gms-group.com.
- We treat information collected by cookies and other technologies as non-personal information. However, to the extent that Internet Protocol (IP) addresses or similar identifiers are considered personal information by local law, we treat these identifiers as personal information. Similarly, to the extent that non-personal information is combined with personal information, we treat the combined information as personal information for the purposes of this privacy policy.
This non-personal data can help us, for example, in controlling access to certain content on our site and in alerting users to new site content and services. This information is shared externally only:
- in anonymous, aggregated form for generalized user analysis, or
- to review whether users qualify for additional benefits, or
- to enable us to send e-mails to you on our behalf.
LINKS TO THIRD-PARTY SITES
We may provide links to third-party websites. Please be aware that we do not control and are not responsible for the information collection practices of such third-party websites’ policy that may differ from those of this Site. We encourage you to review and understand the privacy policies of these other Web sites before accessing and providing any information to them.
RIGHTS OF DATA SUBJECTS: INFORMATION ACCESS, CHANGE, AND/OR DELETION
You have a right to access, rectify, restrict, suppress, update, and/or erase any or all of the personal information that you submit to us by contacting us at privacy@gms-group.com If you would like to receive an electronic copy of your personal data for your purposes of review or transmitting it to another company (to the extent this right to data portability is provided to you by law) you can contact us at privacy@gms-group.com You can unsubscribe from receiving our e-mails by a click through on each e-mail. You may also unsubscribe from mailing lists or any registrations on the Site. To do so, please follow the instructions on the page of the e-mail.
However, we may disclose your information, including personal information, if we believe it is necessary to protect the property and/or rights of GMS Group, you, or a third party, to protect the safety of the public or any person, in the event of a legal dispute, or to prevent or stop activity we believe may pose a risk of being illegal, unethical or in violation of the Terms of Service. In case of such an event, the right to have the personal information rectified or erased may also stand suspended. However, you would still be able to view your personal information.
SECURITY MEASURES
GMS Group has implemented generally accepted standards of technology and operational security to protect personally identifiable information from loss, misuse, alteration, or destruction. Only authorized GMS Group personnel have access to personally identifiable information, and these employees are required to treat this information as confidential.
We maintain appropriate physical, technological, and organizational safeguards to protect your personal information against loss, misuse, unauthorized access or disclosure, alteration and destruction. Only authorized personnel of GMS Group have access to member accounts and details. Although we use reasonable measures to help protect your personal information, it is important that you understand that no website or database is completely secure or "hacker proof". If you believe the security of your account has been breached, please contact us immediately at feedback@gms-group.com and privacy@gms-group.com
Our security procedures mean that we may occasionally request proof of identity before we disclose personal information to you.
CROSS BORDER TRANSFER AND SHARING OF INFORMATION
Personally identifiable information collected may be transferred, from time to time, to GMS Group offices or personnel or to relevant third parties located throughout the world, and the website may be viewed and hosted anywhere in the world, including countries that may not have laws of general applicability regulating the use and transfer of such data.
GMS may store your personal data on the servers of the AWS Infrastructure as per the needs and location of their respective clients.
Cross border transfers are necessitated for providing seamless services to members. For example, a member may travel outside the country of his ordinary residence and would want to avail benefits of the membership abroad. To facilitate this, cross border transfer of information becomes necessary.
In certain circumstances, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries will be entitled to access your Personal Data.
By using our website or by providing consent to us, you agree to the transfer of your personal information to countries outside of your country of residence for the purposes specified in this Privacy Policy. We ensure, by means such as contracts and personal data transfer agreements that your personal data is protected at all times in accordance with applicable privacy laws, regulations or binding codes.
The personal data that GMS Group collects may be disclosed to GMS Group of companies, solely for administrative purposes and/or for purposes indicated above and/or suppliers of GMS Group necessary for the adequate fulfilment of the legal obligations and/or the purposes previously indicated.
CONTACT US
If you have any questions about this Policy or our privacy practices, you may contact us at feedback@gms-group.com or write to us at 541 Orchard Road, #19-02 Liat Towers, 238881 Singapore.
COMMERCIAL & PROMOTIONAL COMMUNICATIONS: DO NOT CALL
- If you choose not to receive any promotional communications from us, we will not send you promotional messages and will not share your personal information with our partners or other companies for marketing purposes.
- In order to discontinue receiving promotional communications from us, you may Unsubscribe at any time, or you may contact the Program where you are a member or contact our Privacy Officer at privacy@gms-group.com.
- Any customer detail collected on our website, through social media including digital campaigns, emails, landing pages and other offline mediums will allow GMS Associates to call, SMS, Email and chat guests who have filled in their information. By dropping in details, the guest explicitly allows and gives consent to GMS and group companies to call him / her and such commercial & promotional communication would not be considered in violation of Do Not Call registration laws in the countries of operations for GMS.
USER’S RESPONSIBILITY/ DECLARATIONS
The User
- Guarantees that they are of legal age and are persons who can form a legally binding contract under the respective country laws (GMS operates in Asia Pacific) and that the information furnished to GMS is true, accurate, complete and up-to-date. If you are a minor i.e. under the age of 18 years, you may use GMS only with the involvement of a parent or guardian. For these purposes, the user is responsible for the truthfulness of all the data communicated and will keep the information updated, so that said data reflects their actual situation.
- Guarantees that he/she has informed third parties on whose behalf he/she has provided data, where applicable, of the aspects contained in this document. Also guarantees that he/she has obtained the third party’s authorization to provide their data to GMS Group for the purposes indicated.
- Will be responsible for false or inaccurate information provided through the Website and for damages, whether direct or indirect, that this may cause to GMS Group or third parties.
- Accepts and agrees that there may be certain data that we may not allow you to review for legal, security or other reasons.
UPDATES
The
"Last Updated" legend at the bottom of this page indicates when this Privacy Policy was last revised. Any changes will become effective when we post the revised Privacy Policy on the Online Services. Your use of the services following these changes means that you accept the revised Privacy Policy.