Privacy Policy for Personal Data
This Privacy Policy (hereinafter referred to as the “Privacy Policy”) applies to all information that the Administration (as defined below) has obtained as a result of the User’s (as defined below) use of the Site (as defined below).
1. Definition of Terms
1.1. In this Privacy Policy, the following terms are used:
1.1.1. “Administration” – individuals authorized to manage the Website, who, on behalf of the “Tau zhol Shymbulak” LLP, organize and/or carry out the Processing of Personal Data, as well as determine their composition, purposes of processing, and actions (operations) with them;
1.1.2. “Personal Data” – any information related directly or indirectly to a specific or identifiable individual (personal data subject);
1.1.3. “Processing of Personal Data” – any action (operation) or a combination of actions (operations) performed with personal data using automation tools or without such tools, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transmission (distribution, provision, access), depersonalization, blocking, deletion, destruction of personal data;
1.1.4. “Website” – a set of interconnected web pages located on the Internet at a unique address (URL): shymbulakhotel.kz, as well as its Subdomains;
1.1.5. “Subdomains” – pages or sets of pages located on third-level domains belonging to the Website, as well as other temporary pages that contain the contact information of the Administration at the bottom;
1.1.6. “User” – an individual who has access to the Website and uses the information, materials, and products of the Website for personal purposes;
1.1.7. “Cookies” – small pieces of data stored on the User’s computer for the purpose of authenticating the User, storing personal preferences and settings, and similar purposes;
1.1.8. “IP Address” – a unique network address of a node in a computer network through which the User accesses the Website.
2. General Provisions
2.1. The use of the Website by the User signifies their agreement with this Privacy Policy without exceptions or reservations. In case of disagreement with the terms of the Privacy Policy, the User must cease using the Website.
2.2. This Privacy Policy applies to the Website. The Administration does not control and is not responsible for third-party websites that the User may access through links available on the Website.
2.3. The Administration does not verify the accuracy and timeliness of personal data provided by the User.
3. Subject of the Privacy Policy
3.1. This Privacy Policy establishes the rights and obligations, as well as the limits of responsibility of the Administration for ensuring the protection of the User’s Personal Data obtained by the Administration through the Website. 3.2. Personal Data includes the following information:
3.2.1. Provided by the User through filling out forms on the Website, including:
– last name, first name, patronymic (if applicable);
– contact phone number;
– email address;
– identity documents;
– bank account details (when applying for a refund).
3.2.2. Automatically transmitted by the User’s technical devices when visiting the Website and used for authentication and to prevent, detect, and resolve technical issues:
– IP address;
– information from Cookies;
– browser information;
– access time;
– referrer (address of the previous page).
3.3. The User agrees that in the event of non-acceptance or disabling of cookies by the User, access to some parts of the Website will be restricted.
4. Collection of User Personal Information
4.1. The Administration is entitled to use Personal Data for the following purposes:
4.1.1. Identification of the User registered on the Website for subsequent authorization, order processing, and other actions;
4.1.2. Providing the User with access to personalized data on the Website;
4.1.3. Establishing a connection with the User, including sending notifications, and inquiries regarding the use of the Website, provision of services, and processing User requests and applications;
4.1.4. Determining the User’s location to ensure the security of User operations, and prevent fraud;
4.1.5. Creating a user account for the use of parts of the Website;
4.1.6. Notifying the User by email about the operations performed by the User on the Website;
4.1.7. Providing the User with effective technical support in case of problems related to the use of the Website;
4.1.8. With the User’s consent providing them with special offers, price information, newsletters, and other information on behalf of the Website.
5. Methods and Terms of Personal Data Processing
5.1. The Processing of User Personal Data is carried out without any time limit, by any lawful means, including in information systems of personal data using automation tools or without using such means.
5.2. The User agrees that the Administration may transfer the User’s Personal Data to third parties, including courier services, postal organizations (including electronic), and telecommunications operators, solely for the purpose of fulfilling the User’s order placed on the Website, including the delivery of documentation or email messages.
5.3. The Administration takes reasonable organizational and technical measures to protect User Personal Data from unauthorized or accidental access, destruction, alteration, blocking, copying, distribution, as well as from other unlawful actions of third parties.
6. Rights and Obligations of the Parties
6.1. The User has the right to:
6.1.1. Subject to paragraph 3.3. of this Privacy Policy, freely decide on providing their personal data necessary for using the Website and give consent to the Processing Personal Data;
6.1.2. Update and supplement Personal Data in case of changes.
6.2. The Administration is obliged to:
6.2.1. Use the Personal Data of the User exclusively for the purposes specified in section 4 of this Privacy Policy;
6.2.2. Ensure reasonable protection of User Personal Data and not to sell, exchange, publish, or disclose Personal Data by other possible means, except as provided in section 7.2. of this Privacy Policy.
6.2.3. Take reasonable precautions to protect User Personal Data typically used to protect such data.
7. Liability of the Parties
7.1. The Administration is responsible for the real damage suffered by the User in connection with the unauthorized use of User Personal Data, except as provided in section 7.2. of this Privacy Policy.
7.2. The Administration is not responsible for the disclosure of User Personal Data:
7.2.1. For reasons not related to the improper performance of the Administration’s obligations under this Privacy Policy;
7.2.2. Before receiving them from the User;
7.2.3. With the User’s consent or due to the User’s negligence;
7.2.4. For the purpose of providing them to authorized state authorities in the manner prescribed by the legislation of the Republic of Kazakhstan;
7.2.5. As a result of a hacker attack that could not be prevented by reasonable measures to protect confidential information.
7.3. It is allowed to distribute information published on the Website, provided that a link to the Website is given.
7.4. The Administration is not responsible to the User for any loss or damage suffered by the User due to the deletion, failure, or inability to save any Personal Data contained on the Website or transmitted through it.
7.5. The Administration is not liable for any direct or indirect losses resulting from the use or inability to use the Website or unauthorized access by third parties to the User’s communications when using the Website.
8. Dispute Resolution
8.1. Any disputes between the User and the Administration in connection with the application of this Privacy Policy must be resolved by the User and the Administration by mutual agreement based on a written notification of the initiating party stating the arguments of that party.
8.2. If the dispute is not resolved within 30 (thirty) calendar days from the date of receipt of a written notification by the other party in accordance with section 8.1. of this Privacy Policy, it is allowed to refer it to the specialized inter-district economic court of Almaty.
8.3. This Privacy Policy and the relationship between the User and the Administration are governed by the material law of the Republic of Kazakhstan.
9. Additional Terms
9.1. The Administration has the right to make changes to this Privacy Policy without the consent and without notification of the User.
9.2. The new Privacy Policy comes into force upon its placement on the Website, unless otherwise provided by the new version https://shymbulakhotel.kz/?page_id=349&lang=en
Almaty City, “Tau zhol Shymbulak” LLP, BIN 130740012699