Privacy Policy

Collection of Personal Information

The term “personal data” in this Policy refers to personal information which we, in the process of providing you with a particular service, may ask you to voluntarily supply to us.  The types of personal data we process include: name, title, gender, contact details (including but not limited to email address, mailing address, mobile phone number, telephone number and fax number etc.); date and place of birth, nationality, passport number, identification number and visa information; credit card information including name of cardholder, credit card number and expiry date; loyalty program membership information, online user account details, profile or password details and any frequent flyer or travel partner program affiliation; any information necessary to fulfill special requests on trips; information you provide regarding your marketing preferences or in the course of participating in surveys, contests or promotional offers; information collected through the use of closed circuit television systems, card key and other security systems; contact and other relevant details concerning the employees of corporate accounts and vendors and other individuals with whom we do business (e.g., travel agents or meeting and event planners); and in limited cases, information relating to the credit of customers.

We collect personal data to deliver superior service.  Specific purposes include, but are not limited to, the following:

​

• Guest reservations and/or requests for information or services

• Payment processingProduct and Services sales

• Membership program subscription

• Sales calls and appointments

• Communication facilitation

• Vendor management

• Marketing and Promotions planning and execution

• Market research and analysis

• Customer Satisfaction and Quality Assurance surveys

• Safety and Security

• Legal and Regulatory requirements

• Job Application processing

When you request a particular service from us or otherwise interact with CPD, we will ask you to voluntarily provide us with relevant Data that we need to provide the service you require. For example, if you would like us to make a reservation for a trip, we will request for Data such as your name, address, telephone number, e-mail address and credit card information for payment purposes (including credit card number, code and expiry date). We will use your e-mail address to send an e-mail confirmation of your booking and a pre-arrival message summarizing your confirmation details and preferences. Such pre-arrival message will include other information about the trip, the area and the weather.

The same types of information would be requested when you complete any purchase of gift certificates or merchandise, or make online enquiries.

For trip reservations, we may also ask for your travel details (including flight number, arrival and departure dates and time, as well as country/point of origin and destination) and room preferences to better prepare ourselves for your arrival and to serve you better before your departure.

Website 

When you browse a CPD website, we do not collect Data unless you voluntarily and knowingly provide it to us.

Making a purchase on our website 

When making a purchase such as a gift certificate or a merchandise, you will be asked to complete a form that includes your name, e-mail address, delivery address and credit card details for payment purposes. When the form is complete, your credit card number will be verified using a checking sequence to complete the transaction. Credit card information and Data are transferred over a Secure Socket Layer (SSL) connection. Doing so protects the confidentiality of your Data while it is transmitted over the Internet. Purchasing transactions are assisted by third party processors who are required by contract to protect the privacy of your Data. SSL is an industry standard for encryption over the Internet to protect Data supplied to us. We will use that information to assist in any inquiries about your transaction.

Accessing Our Website from Web-enabled Mobile Devices

You can access our website from a web-enabled mobile device. You can make a reservation from any web-enabled device. When you make a reservation, you may need to provide certain Data such as your name, e-mail address and credit card information for guarantee purposes. 

Fraudulent e-mails 

Please note that CPD will never send you an e-mail requesting your password, credit card number or passport, personal identity card or social security number. If you receive any suspicious e-mail that looks like it is from our group, but asks you for your credit card number or passport, personal identity card or social security number, it is a fraudulent e-mail, or an act of “phishing”. We recommend that you do not reply to the e-mail or click on any link or pop-up message accompanying such e-mail, and report the matter to local authorities that handle fraudulent e-mails. If you believe “phishers” have gained access to your personal or financial information, we recommend that you also change your password(s), alert your credit card service provider and bank, and review credit card and bank account statements to check for unauthorized charges.

Unsecure communication 

It is important to note that all e-mail communication is not secure. There is a risk inherent in the use of e-mail. Please be aware of this when requesting information or sending forms to us by e-mail, for example, from the “Contact Us” section of our website. We recommend that you do not include any sensitive information including credit card details when using e-mail or using any public computers/public WIFI. Our e-mail responses to you may not include any sensitive or confidential information. Please bear in mind that no security system or system of transmitting information over the Internet is guaranteed to be secure.

To be prudent, it is advisable to always close your browsers when you have finished completing a form or a reservation. Although the session will automatically terminate after a short period of inactivity, it is easier for a third party to gain access to your profile whilst you are logged onto our website and making a reservation.

Disclosures of Your Personal Information

From time to time, we may disclose and transfer your personal Data to any hotels and resorts, both local and international, travel-related companies (e.g., airline companies, car rental companies and excursion tour companies), and vendor partners who provide administrative, telecommunications, payment, fulfilment or other services to Club Paradise Divers, hotels and resorts to facilitate your requests or provide you with goods and services you require and for the purposes described under the section “How we use Personal Information”. The recipients of any such Data are contractually prohibited from using personal data and information for any purpose other than for the purpose CPD specifies.

We reserve the right to disclose any Data when compelled to do so by a court of law or requested to do so by a governmental entity or if we determine it is necessary or desirable to comply with the law or to protect or defend our rights or property. We also reserve the right to retain information collected and to process such information to comply with accounting and tax rules and regulations.

We may share aggregated demographic information with business partners, affiliates or other entities. This aggregate information is not linked or traceable to any personally identifiable information about you.

Except as described herein, we do not permit the sale or transfer of personally identifiable information to third parties.

Disclosure of information to third parties

In addition to the required information sharing described above, we use the services of third party agents, such as e-mail service providers and mail houses for the purpose of mailing materials to our patrons. These parties are contractually prohibited from using Data for any purpose other than for the purpose specified in their respective contracts. We do provide non-personally identifiable information to certain service providers for their use on an aggregated basis for the purpose of performing their contractual obligations to us. We do not permit the sale of Data or use of Data by third parties for their own purposes. Discovery will implement, where necessary, appropriate measures, including contractual clauses, to secure the transfer of your Data to third party service providers both local and international. Therefore, in addition to the implementation of the present Policy, CPD will implement, where necessary, appropriate measures, including contractual clauses, to secure the transfer of your Data to recipients located in a country with a level of protection different from the one existing in the country in which your Data is collected.

Data Storage

We store certain customer information and reservation details in our customer information system and reservation system. Both systems are secure customer databases stored on a dedicated server located in a data center hosted by a third party service provider. The stored database includes Data such as guest name, address, phone numbers, position, company name and credit card information. We may also store other information such as your room, food and beverage, other service preferences and transaction history. This information may be shared within the Discovery group’s ships/vessels and hotels to better anticipate your needs prior to and during your stay in any of said ships/vessels, establishments or properties.

We implement IT and network security policies to protect your Data from unauthorized access limited by the capability of IT and network equipment we utilize. Our server resides behind firewalls to protect the Data collected from you against unauthorized or accidental access. Because laws applicable to personal information vary by country, our ships, hotels or other business operations may put in place additional measures that vary depending on the applicable legal requirements.

Marketing database

Some of our group operations maintain a database of customer information which is used for marketing, promotion and research, understanding and analysing customer behavior, and customer profiling to improve our services. You will receive marketing and promotional materials if you have already given your express and specific consent in some data collection forms. You may elect to unsubscribe from receiving future promotions at any time.

Secure transmission and storage of data

We treat all Data that you provide to us as confidential information. To prevent Data from unauthorized access or leakage, we have adopted and regularly monitor our group’s security and data privacy policies and procedures. We use SSL protocol – an industry standard for encryption over the Internet, to protect the Data. When you type in sensitive information such as credit card details, it will be automatically encrypted and transferred over a SSL connection. This ensures that your sensitive Data is encrypted as it travels over the Internet. You will know that you are in a secure mode when the security icon (commonly appearing as a lock before the link in the web address bar) appears on your screen.

Direct Marketing

We may use your personal information (including your name, address, telephone numbers, email and other contact details) to send you marketing communications such as direct-mail, email, telephone calls and SMS containing news, offers, promotions, events, to be offered by us or by our business partners in relation to the following classes of products and services:
 

• Travel

• Transportation,

• Retail,

• Food and Beverage,

• Credit Cards,

• Financial and Investment Services,

• Real Estate,

• Entertainment,

• Publications,

• Fashion and Jewelry ,

• Leisure and Sports,

• Health and Wellness,

• Non-Profit and Charitable Activities,

• Telecommunications,

• Social Networking,

• Media and Public Relations.

Rest assured, however, that we may not use your personal information for direct marketing without your consent. We will always ask for your consent before we use your personal information for direct marketing. You may decline receiving marketing communications at any time, free of charge, by: following the non-agreement instructions contained in the communications or updating your email subscriptions to our e-mailers.

Your Privacy Online

Visitors to our website should be aware that information and data may be automatically collected through the standard operation of our internet servers and through the use of “cookies”. For our online privacy statement on the use of cookies, please refer to Policy on “Cookies” below.

Our Commitment to Data Security

To maintain the accuracy of your personal data, as well as preventing unauthorized access to and ensuring the correct use of your personal data, we have carried out appropriate physical, electronic and managerial measures to safeguard and secure the personal data we collect. These measures are subject to ongoing review and monitoring. Whilst we make every effort to protect your personal data, no security measures can guarantee that your personal data and information will not be subject to interference, misuse or hacking and we shall not be responsible for any loss, misuse or alteration arising as a result of such incidents.

How to Access or Correct Your Personal Information

You are entitled to access and make changes to any personal data relating to your profile held in the Club Paradise Divers database. You should update the personal data held by us whenever there is change.  If you have any questions about this Policy, or if you would like to submit a request for access to or change of the personal data and information that we maintain about you, please contact dpo@discovery.com.ph.

We reserve the right to charge a reasonable fee for the processing of any such access request. As indicated above, all requests for access to your personal information must be submitted in writing. When communicating your request, please be sure to indicate your full name, address and telephone number so we can ascertain your identity, and specify clearly the type of enquiry and the original source of data collection.

Cookies

Visitors to our website should be aware that information and data may be automatically collected through the standard operation of our internet servers and through the use of “cookies”.

“Cookies” are small text files a web site can use to recognize repeat users, facilitate the user’s ongoing access to and use of the site and allow a site to track usage behavior and compile aggregate data that will allow content improvements and targeted advertising.

Cookies are not programs that come onto a system and damage files.  Generally, cookies work by assigning a unique number to each customer/ visitor that has no meaning outside the assigning site.  Cookies cannot be used by themselves to identify you.

Cookies, by themselves, do not tell us your email address or other personally-identifiable information unless you choose to provide this information to us by, for example, registering for one of our services. However, once you choose to furnish the site with your personally-identifiable information, this information may be linked to the data stored in the cookie.

We use cookies to understand site usage and to improve the content and offerings on our sites. For example, we may use cookies to personalize your experience at our web pages (e.g., to recognize you by name when you return to our site), save your username and/or password in password-protected areas, and to offer you products, programs, or services.

We use Google AdWords re-marketing technology to market our sites across the Internet.   We place a cookie on your browser, and then a third party (Google) reads these cookies and may serve an advertisement on a third party site, after you have visited our website.

If you do not want information collected through the use of cookies, there is a simple procedure in most browsers that allows a customer to deny or accept the cookie feature; however, you should note that cookies may be necessary to provide customers with certain features (e.g., customized delivery of information) available on the web site.

Pixel Tags
Our group and our third-party service providers may use pixel tags (also known as “clear gifs”, “beacon gifs” etc.), tracking links and/or similar technology to:

How long will Data be retained for?
Your Data will be stored for the period of time required or permitted by law in the jurisdiction of the operation holding the information. 

Data may be stored by Club Paradise Divers and other group operations as long as required for the business purpose for which these Data are processed.

Notifications in the event of breach
In the unlikely event of a data breach, we are prepared to follow all laws and regulations which may require us to notify you of the unintended disclosure of your personal information.

Careers
Our careers websites allow individuals that wish to be considered for potential employment to attach their curriculum vitae for consideration. We will not use the information you provide for any purpose other than to determine your qualifications for potential employment at CPD.

Other Sites
CPD is only responsible for the privacy statement and content of our website. Our website may contain links to other sites of third parties. We are not responsible for the data collection and use practices, privacy policy or the use of cookies on other websites that you have accessed our website from and to the non-Discovery websites that you may access from this website. We advise you to review the privacy policies of such third parties before submitting Data.

Children’s Privacy
Our website is not intended for children and minors and we do not knowingly solicit or collect Data from children and minors. As a parent or legal guardian, please do not allow your children to submit Data without your permission.

Legal Disclaimer
This privacy statement complies with the Data Privacy Act of the Philippines as well as applicable local laws.

We may need to disclose Data when required by relevant law or court order, or as requested by other government or law enforcement authorities. This also applies when we have reason to believe that disclosing the Data is necessary to identify, investigate, protect, contact or bring legal action against someone who may be causing interference with our guests, visitors, associates, rights or properties (including this site), or to others, whether intentionally or otherwise, or when anyone else could be harmed by such activities.

Changes to the Policy
We may modify this Policy from time to time. Any changes to this Policy will be posted to our website so that you are always informed of the way we collect and use your personal data. Updated versions of our Policy will include the date of the revision at the end of this Policy so that you are able to check when the Policy was last amended.

Any changes to our Policy will become effective upon posting of the revised Policy on the website. Use of the website following such changes constitutes your acceptance of the revised Policy then in effect.

Miscellaneous
This policy is governed by and shall be construed in accordance with the laws of the Philippines.  This Policy is written in the English language and may be translated into other languages. In the event of any inconsistency between the English version and the translated version of this Policy, the English version shall prevail.