Its privacy policy can be found in the Help Center and can be accessed through a hyperlink in its website footer:. Potential website users are warned during the sign-up process that creating an account involves agreeing with Airbnb's privacy policy, terms of service, payment terms of service, and anti-discrimination policy. Its privacy policy itself is fairly straight-to-the-point. Taking into account that it has customers located in different countries, it starts off by indicating that some users may need to read this privacy policy in conjunction with supplemental country-specific information.
Unsurprisingly, Airbnb collects a large quantity of information from its users in order to be able to provide its services. This includes: names, phone numbers, postal addresses, email addresses, dates of birth, profile photos, photo of government-issued IDs, payment information - and this is only the basic information required in order to be able to use the platform.
Users have the option to provide Airbnb with additional personal information such as gender, preferred language, city, personal description, and contacts. In addition, it automatically collects geolocation information, usage information pages visited, searches, etc , log data and device information, and payment transaction information, as well as uses cookies to store additional data.
The information that it collects from third-parties is very specific to the services that it offers background information in the form of public records of criminal convictions or sex offender registrations, for example. In the United States privacy policy, the company lists out how it uses information that it collects using bullet points and one-liners.
How Airbnb shares personal data is very specific to the nature of their business. Indeed, the policy states that information may be shared between members of the platform in order to facilitate booking and interactions. Airbnb is transparent about how users can exercise their data subject rights and facilitates the process of submitting a request by having a dedicated page on its website, which is linked in the privacy policy:. Here is what the page looks like:. If you are a US-based company with affiliates and customers across the globe, have a look at how Airbnb has structured its privacy policy - especially for its international users - as it manages to take into account various complex global privacy laws requirements and make it readable and understandable.
Online furniture retailer, Wayfair, operates one of the biggest eCommerce websites on the Internet, shipping furniture to customers across the United States and internationally. Reference to its privacy policy appears in its website footer, with a link to a separate, dedicated page:.
Customers are also reminded of its existence during the checkout process as they are warned that by placing an order, they are agreeing to both the Wayfair privacy policy and terms of use:.
An Individual may apply for access to their Personal Information by submitting a request in writing along with adequate proof of identity to an authorized personnel officer. Where the application is made in person the requirement for proof of identity will be at the discretion of the personnel officer. The Individual will be provided with a copy of all available information that is not subject to restriction as described in this Privacy Policy.
All Personal Information and Medical Information will be provided at no cost or at a minimal cost that is not prohibitive. The Company will also provide a specific summary of how the Personal Information has been used and to whom it has been disclosed. Where a detailed account of disclosure is not available, the Company will provide a list of organizations to which the Personal Information may have been disclosed.
The Personal Information disclosed to an Individual must be in a form that is reasonable and understandable. Where the meaning of information is not clear then translations and explanations will be provided without additional cost. Where an Individual suspects that an error exists in their Personal Information, the Individual may submit a request in writing for correction.
This request should include any relevant information substantiating the error and should describe the correction to be made. The Company will make all reasonable efforts to address any request for correction. Where the Individual successfully demonstrates an error in their Personal Information the Company will make appropriate corrections. Any modifications, additions or deletions to the Individual's Personal Information will be made only by an authorized personnel officer.
Where a request for correction is not successful, the details and substantiating evidence of the request will be recorded and retained by the Company. The Company will endeavor to respond promptly to any reasonable request for disclosure and correction made by an Individual to ensure the continued accuracy of Personal Information.
In some instances the Company may be required to limit access to Personal Information because of statutory or regulatory requirements. In all instances however the Company will make all reasonable efforts to comply with the Individual's request for access and correction to the extent of what is allowed by statute or regulation.
The Company may refuse access to portions of the Personal Information of an Individual where it is found to contain Personal Information pertaining to another Individual. Ownership of Personal Information All Personal Information collected by the Company in compliance with this Privacy Policy are business records of the Retention and Disposal of Personal Information Any Personal Information collected by the Company will be retained by the Company during the period of active employment of the Individual as well as during the post-employment period only as long as the Personal Information is required to serve its original purpose or as directed by applicable legislation or regulation.
Personal Information that is no longer needed for its stated purpose will be destroyed, erased or made anonymous. The Company will ensure that all practices and procedures relating to the disposal of Personal Information will respect the fundamental policy of confidentiality. All Personal Information disposal procedures, including the disposal of computerized data storage devices, will ensure the complete destruction of Personal Information so that there will be no risk of subsequent unauthorized disclosure of Personal Information.
Deceased Individuals The rights and protections of the Company's Privacy Policies will extend to deceased Individuals. Security The Company will take and enforce all reasonable security measures appropriate for the sensitivity of the information to ensure that all Personal Information for every Individual is protected against any form of unauthorized use including but not limited to accidental or malicious disclosure, unauthorized access, unauthorized modification, unauthorized duplication or theft.
The Company will educate and inform all Staff regarding the Privacy Policy and related procedures and on the importance of confidentiality of Personal Information and will monitor compliance with the Privacy Policy and may observe and investigate the information management practices of all Staff having care of Personal Information.
Knowledge of Unauthorized Disclosure Responsibility for the security of Personal Information is a responsibility that the Company holds in very serious regard. Any Staff having knowledge of an impending unauthorized disclosure, whether intentional or unintentional, and who fail to act to prevent the unauthorized breach will be subject to sanction as described in the Enforcement section of this document including the immediate dismissal of the offending Staff.
Enforcement All Staff having care over Personal Information must comply with the policies, procedures and practices described in the Privacy Policy. Any breach of any term or condition of this Privacy Policy, whether intentional or unintentional, including but not limited to the unauthorized disclosure of Personal Information is grounds for disciplinary action up to and including the immediate dismissal of any and all responsible Staff.
Any breach of any term or condition of this Privacy Policy, whether intentional or unintentional, is grounds for dismissal with cause. Compliance with Privacy Policy The Company will have a procedure that will allow Individuals to challenge the Company's compliance with this Privacy Policy.
The Company will also have procedures to promptly respond to Privacy Policy compliance challenges. The Company will make all reasonable efforts to investigate and respond to compliance challenges relating to this Privacy Policy. Where a challenge is well founded the Company will take action to correct any outstanding problems up to and including amending the Privacy Policy and related procedures.
Arbitration In the event a dispute arises out of or in connection with this Privacy Policy, the parties will first attempt to resolve the dispute through friendly consultation. If the dispute is not resolved within a reasonable period then any or all outstanding issues may be submitted to final and binding arbitration in accordance with the laws of the State of.
The arbitrator's award will be final, and judgment may be entered upon it by any court having jurisdiction within the State of. Need Help With This Question? Document Preview About this Document. What is included in an Employee Privacy Policy? Can my employer disclose personal information?
If you collect personal information from users, many laws require you to include a privacy policy on your site that explains your data-handling practices. Can I copy a privacy policy? Where do I put my privacy policy? You should put your privacy policy on a dedicated page on your website.
Link to your privacy policy page in easy-to-spot locations, such as your website footer or main menu. Do companies need a privacy policy? Is a generic privacy policy legally compliant? Your privacy policy should not be overly generic. You must make sure that your privacy policy is specific to your business. If you use a privacy policy template or write your own policy, make sure you add in the specific details that are unique to your business.
If you use a privacy policy generator, you should be prompted to add in all the necessary details that will make sure your policy is tailored to your business. Is a Privacy Policy Required by Law? What Is a Privacy Policy? Specific platforms or services may require a unique privacy policy template. Examples include: app privacy policies privacy policies for Blogger WordPress privacy policies eCommerce privacy policies small business privacy policies However, a standard privacy policy template will likely satisfy user demands and legal requirements for your website.
To send marketing materials or newsletters To process orders To complete transactions To enter users in sweepstakes, contests, or surveys To create and maintain user accounts To prevent fraudulent activities. Privacy Policy Generator.
How do I write a privacy policy? You can write a privacy policy using any of the following methods: Download the privacy policy template above and fill in the blanks.
Use our free privacy policy generator. Hire a lawyer to draft a privacy policy for your site. Research applicable rules and regulations and write one from scratch. More resources: What should my privacy policy say? What is a privacy statement? More resources: Why do companies need a privacy policy?
Does every business need a privacy policy? Is a privacy policy required in the US? Do I need a privacy policy on my website? Can you copy and paste a privacy policy? More resources: Where can I upload my privacy policy? How do I add a privacy policy to my website?
Facebook Twitter LinkedIn.
0コメント