Privacy Policy - Rove Hotels

INTRODUCTION

We take your privacy seriously and are committed to safeguarding your personal information at Rove Hospitality LLC (which term includes all subsidiaries of Rove Hospitality LLC). (“Company”, “we” or “us” or “Rove”) values you as our guest, respect your privacy and are committed to protecting it through our compliance with this policy.

This policy describes the sources of your personal data that we may collect from you or that you may provide to us and our practices for collecting, using, maintaining, protecting and disclosing that information.

Please read this policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, your choice is not to use our platforms. By accessing or using our platforms, you agree to this privacy policy.

If you have any questions or concerns about this privacy policy or your personal information, please contact us using the details provided in Section – ‘How do you contact us?’.

WHAT INFORMATION WE COLLECT ABOUT YOU?

Personal information you give us

The information we collect on or through our platforms may include:

Information that you provide by filling in forms. This may include information provided at the time of registering to use our Website, subscribing to our service, registering for newsletter, using the ‘contact us’ form, using the “Enquiry” forms, using the ‘WeCare’ form, using the careers portal or requesting further services, entering a contest or promotion sponsored by us, reporting a problem with our Website. The personal information that you provide us with may include your name, email address, phone number, nationality, residential address, identification proof (such as Emirates ID, or Passport), credit card details, partner issued membership ID etc
Records and copies of your correspondence (including e-mail addresses), when you contact us.
Information that you provide to surveys that trigger for feedback to help us improve ourselves, details of transactions you carry out through our Website and of the fulfilment of your orders. You may be required to provide financial information before placing an order or making payment through our Website.

OTHER INFORMATION WE COLLECT

There is other information we may collect that does not directly reveal your specific identity or does not directly relate to you as an individual. We may automatically collect the following information when you use our service:

Your equipment, browsing actions and patterns collected automatically as you navigate through our websites.
Usage details, time of requests, Browser types, operating system, IP addresses and information collected through cookies, web beacons and other tracking technologies.
Details of your visits to our Website, including traffic data, location data, logs and other communication data and the resources that you access and use on the Website.

The information we collect automatically is statistical data. It helps us to improve our Website and to deliver a better and more personalized service by enabling us to:

Estimate our audience size and usage patterns.
Store information about your preferences, allowing us to customize our Website according to your individual interests.
Speed up your searches.
Recognize you when you return to our Website.

The technologies we use for this automatic data collection may include:

Cookies: A cookie is a small piece of data, which includes an identifier made of letters and numbers that is sent by a web browser and stored on your computer. Cookies are used as a reliable mechanism to remember information about you, so your interaction with our website is seamlessly simple. Cookies typically do not contain any information that personally identify you, but personal information that we store about you may be linked to the information stored in and obtained from cookies. Please CLICK HERE for details on Cookie Policy.
Flash Cookies: Certain features of our Website may use local stored objects (or Flash cookies) to collect and store information about your preferences and navigation to, from and on our Website. Flash cookies are not managed by the same browser settings as are used for browser cookies.
Web Beacons: Pages of the Website and our e-mails may contain small electronic files known as web beacons (also referred to as clear gifs. pixel tags and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an e-mail and for other related website statistics (for example, recording the popularity of certain website content and verifying system and server integrity).

We use cookies for the following purposes:

To identify you when you visit our platforms and to help you navigate through our platforms;
To help determine if you are logged into our platforms:
To store information about your preferences and to personalize our platforms for you;
To secure and protect your user account and our platforms; and
To analyse the use and performance of our platforms.

INFORMATION WE RECEIVE FROM OTHERS

We work closely with third parties and receive information about you from them as well. We also collect personal information from individuals who may refer you as a friend to our loyalty schemes or products or services. We ask these individuals to confirm that you are happy to hear from us.

WHAT ARE THE SOURCES OF YOUR PERSONAL DATA?

The sources of your personal data collected (collectively referred as “Platforms” in this policy) may include without limitation the following

Rove websitesThese are websites we created for you that are operated by us, they include websites operated by Rove under our own domains and web addresses (URLs) and our own micro-sites that are part of a third-party social media networks such as Facebook, Twitter, or Instagram.
Emails, text messaging services, and other electronic messages: These are the electronic text-based interaction between you and Rove.
Rove mobile applications:These are smartphone applications created for you and operated by Rove or one of our partners.
Rove Customer Service:Any communication between you and our Customer Service center (e.g. phone, chatbot, email, etc.).
Offline registration forms: These include printed registrations, surveys, or questionnaires Rove collects via registration forms, contests, events, and various promotions.
Advertising:You might interact with one of our or our partners’ advertisements on our websites and apps and we might receive and collect this information.
Career Portal: These includes recruitment portal across Rove & Emaar.
Data we create: Rove may also create data about you, such as your reservation history.
Data from other sources: These include social media networks, market research agencies, Rove promotional partners, public sources, and data received when we acquire other companies.
Third Party Partners: Online booking web sites or agents.

This policy does not apply to information collected:

through any other means, including any other website operated by any third party; or
by any third party, including through any application or content (including advertising) that may link to the Website.

WHY DO WE COLLECT AND HOW WE USE YOUR PERSONAL INFORMATION?

We use personal information for several legitimate interests, including to provide and improve our services, administer our relationship with you and our business.

To facilitate any reservation or booking requests we receive from you:

To facilitate a reservation or booking request we would need to collect and use the following personal information: name, email address, phone number, residential address, nationality, identification proof (such as Emirates ID or Passport) and credit card details. We would need to collect and use your personal information to fulfil our contractual obligations towards the service(s) requested by you (such as room booking, dining reservation, etc.).

In the event you have any special requests, we would need to collect additional personal information which may also include sensitive information. For example:

if you require our assistance with applying for a travel visa, we would collect additional information such as photograph and passport details;
if you would like to inform us about any food allergies, we would use and retain this information to help us tailor our cuisines to your needs and to help us remember your preferences; or
if you require any special assistance such as accessible parking, wheelchair assistance, etc., we may collect and retain this personal information to facilitate your request and be more proactive in the future;
We shall only collect and use your personal information (especially sensitive information) based on your explicit consent and solely for the purposes mentioned above.

To manage your membership of our loyalty programs – ‘U BY EMAAR’:

We encourage and invite you to join our loyalty program, so that they may benefit from exclusive offers, discounts, and promotions available to members. You may join our loyalty program by registering online on the ‘U BY EMAAR’ webpage – https://www.ubyemaar.com

Once you register for our loyalty program, we would collect and process the following personal information: name, telephone number, email ID, ‘U BY EMAAR’ ID and transaction history. We would need to collect and use your personal information to fulfil our contractual obligations under the loyalty program.

As part of the loyalty program, we would also send our members information regarding special offers, discounts and promotions in pursuit of legitimate business interests. In the event you prefer not to receive such information, you may opt-out by following the instruction provided Section – “How to opt-out?”.

To respond to any queries made by you:

We would need to collect and use the following personal information: name, email address, phone number, nationality and details of your enquiry.

In certain cases, your enquiry may relate to a specific service request, for example: requesting a copy of an invoice. For such requests, we need to use your personal information to help us respond to your request and to fulfil our contractual obligations under the requested service.

Additionally, when you call our customer service centre, we would maintain a record of the communications, including call recordings, in pursuit of our legitimate business interest to monitor and improve the quality of our guest support.

To provide you with information about Rove’s services and latest offers:

It is in our legitimate business interests to send you information about Rove’s services and latest offers. We use your personal information such as email ID and/ or contact number to share information relating to Rove’s services and latest offers that may be of interest to you. In the event you prefer not to receive such information, you may opt-out by following the instruction provided Section – “How to opt-out?”.

To personalize the information we send you:

We may combine the information we receive and collect about you to better understand your interests and preferences so that we can provide you with an experience that is tailored to those interests and preferences. For example, we may do this by offering you use of certain facilities (such as dining, spa or lifestyle events) that you are most likely to be interested in, or sending you personalized offers, discounts or promotions by email (where you have agreed to receive our emails), or advertising content that is relevant to your interests. In the event you prefer not to receive such information, you may opt out by following the instruction provided Section – “How to opt out?”.

To enable you to avail special offers and benefits from our business partners:

We have strong and longstanding partnerships with business partners across sectors including Travel, Entertainment, and Lifestyle. Our partnerships allow you to avail special benefits and offers from our business partners. For example, Emirates Skyward members can avail Skywards Miles when they stay at our select hotels and resorts.

To help you avail of these benefits, we would need to collect and share the following personal information: name, Partner issued Membership ID and transaction history, with our business partners. We would need to collect and process your personal information to fulfil our contractual obligations towards our business partners and to ensure you avail the best of benefits and offers. To see more information about our current partnerships please visit our websites.

To request your feedback, and to respond to complaints:

Your satisfaction is our utmost priority and we proactively take necessary steps to ensure you are well satisfied with our services.

To help us respond to your feedback or complaints, we would need to collect the following personal information: name, email ID, transaction details (such as Rove hotel and room type you stayed at) and your feedback/ complaints in the submission form or through a survey after a hotel stay or dining experience.

We collect and use your personal information in pursuit of our legitimate business interests to address your concerns and to take necessary steps towards continual improvement. In the event you prefer not to receive such information, you may opt out by following the instruction provided Section – “How to opt out?”.

To establish a working relationship with corporate clients:

We collect/ receive personal information about you through one of the following channels:

When you participate in any of our sales, marketing and thought leadership events organized or hosted by Rove;
When our sales executive or business leaders visit events organized by external organizations (including the company you represent);
We collect from our sales executives or business leaders who share a professional/ personal relationship with you; or
We collect from publicly available information that you have shared on professional networking platforms such as LinkedIn.

We would need to collect the following personal information: name, email ID, contact number, designation, and the company you represent. We use this information for the purposes, listed below, in pursuit of our legitimate business:

To share information relating to Rove services;
To invite you to future events, that may be of interest to you and/ or the company you represent; and
To establish a working relationship with the company you represent.

To enter into, renew or fulfil service contracts with our corporate clients:

Over the years we have established a strong working relationship with many corporate companies to facilitate group bookings, reservations, and events. To facilitate our service offerings with our corporate clients, we enter into contractual agreements that require us to collect personal information of the company representatives, such as name, email ID, designation, and the company you represent.

Further, in the event of any corporate bookings or reservations, we would also collect information of guests availing the services and benefits under our corporate agreements. The personal information collected would include name, company employee ID and passport/identification proof. We collect and use this information to help us fulfil our contractual obligations towards our corporate clients to enforce or apply our terms of use or terms of sale and other agreements, including for billing and collection purposes.

To facilitate email campaigns carried out by our sales and marketing departments:

As part of our email campaigns, we track whenever you receive, open, click a link, or download any attachments from an e-mail you receive from Rove. We will carry out automated profiling of such information to evaluate your interest in our service offerings or promotions. This processing will enable us to identify and target potential guests or business partners, tailor our marketing and provide you with relevant and timely content based on your interests, in pursuit of our legitimate business interests. In the event you prefer not to receive such information, you may opt out by following the instruction provided Section – “How to opt out?”.

To comply with legal requirements and exercise or defend legal claims:

We may need to process and retain your personal information to comply with legal requirements to which we are subject (for example in relation to health and safety). It is in our legitimate interests to process personal information for the purposes of exercising and defending legal claims. Processing personal information may also be necessary to ensure compliance with the relevant legal and regulatory obligations.

To process your payments and protect against fraudulent transactions:

We may need to process your personal information to keep your payments safe and secure and protect against fraudulent transactions. It is in our legitimate interests to process personal information to keep your payments secure and to prevent fraud. Processing personal information in this way may also be necessary to ensure compliance with the relevant legal and regulatory obligations.

To comply with any opt-out or do not disturb requests we receive from you:

We understand that you may not prefer for us to contact you with any offers, promotions or details of our products and services. In the event you opt-out, we may be required to maintain information such as name, email ID/contact number and the subscription(s) that you have opted out of to ensure compliance with your requests. Also, in the future, if you wish to hear from us, you may at any time, contact us to opt-in and we would happy to keep you posted about our latest offers, promotions and/ or details of our products and services.

HOW TO OPT OUT?

Email: You can click on the unsubscribe link provided in the email you receive from us.
SMS: You can follow the instruction provided in the messages you receive from us
Contact us: You may contact us using the details provided in Section – ‘How do you contact us?’.

WHO MIGHT WE SHARE THIS INFORMATION WITH?

We may disclose personal information that we collect, or you provide as described in this privacy policy:

We may share your personal information with any member of the Rove, including subsidiaries, affiliates and holding companies, in order to enable you to request our services, to process your payments, understand your preferences, send you information about products and services that may be of interest to you and conduct the other activities described in this privacy policy. Such group companies are located outside the European Economic Area (“EEA”). Please visit our WEBSITE to see a list of locations within our corporate group.
We may use carefully selected third parties to perform services on our behalf or to assist us with the provision of services to you. For example, we may engage cloud service providers, IT service providers and other third parties to provide concierge services, housekeeping and laundry services, marketing, advertising, communications, to personalize and optimize our service, to analyze and enhance data (including data about users’ interactions with our services), and to provide legal, accounting, insurance, audit and other professional services. While providing such services, these third parties may have access to your personal information.
We may share your personal information with select business partners in sectors including travel, entertainment, lifestyle, and other industries to enable our guests to avail special offers. For example, our partnership with our airline partner enables our guests to earn miles for every stay, as well as benefit from exclusive special offers. You may find more information about our partners by visiting our website.
Where required or permitted by law, personal information may be provided to others, such as regulators and law enforcement agencies.
We may share to a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution or other sale or transfer of some or all the Company’s assets, whether as a going concern or as part of bankruptcy, liquidation or similar proceeding, in which personal information held by the Company about our Website users is among the assets transferred.
We may share with government or regulatory request to comply with any court order, law or legal process
We may share with other companies and organizations for the purposes of fraud protection and credit risk reduction if we believe disclosure is necessary or appropriate to protect the rights, property, or safety of the Company, our guests or others.

The personal information that we collect from you may be transferred to, and stored at, a destination outside the EEA (for example, in Dubai). It may also be processed by staff operating outside the EEA who works for us or for one of our third-party vendors. We will take all steps that are reasonably necessary to ensure that your personal information is treated securely and in accordance with this privacy policy and applicable data protection laws, including, where relevant, entering EU standard contractual clauses (or equivalent measures) with the party outside the EEA receiving the personal information. We carry out such transfers to facilitate the performance of our contract and in pursuit of our legitimate business interests of helping us serve you better. We have implemented adequate safeguards to protect and secure the information involved in such transfers. Where we transfer personal information outside of EU, we either transfer personal information to countries that provide an adequate level of protection (as determined by the European Commission) or we have appropriate safeguards in place. Appropriate safeguards to cover these transfers are in the form of standard contractual/data protection clauses adopted by the European Commission.

If you would like more information on protection measures and transfer mechanisms, please contact us using the details provided in Section – ‘How do you contact us?’.

HOW LONG DO WE KEEP INFORMATION ABOUT YOU?

We will only keep your personal information for as long as is reasonably necessary taking into consideration our need to answer queries or resolve problems, any other purpose outlined above or to comply with legal requirements under applicable law(s). This means that we may retain your personal information for a reasonable period, for example, the end of the contract with the guests you represent, or after your query has been addressed. In certain cases, we may retain your personal information for a longer period where extended retention periods are required by law or regulation and to establish, exercise or defend our legal rights. We will ensure that it is disposed in a secure manner when it’s no longer needed.

For more information on where and how long your personal information is stored, and for more information on your rights of erasure and portability, please contact us using the details provided in Section – ‘How do you contact us?’.

HOW SECURE IS YOUR INFORMATION?

Your personal data security is an important concern to us. We provide the utmost care in secure transmission of your personal information from your computer, smartphone, and other electronic devices to our servers. We use industry security standards to safeguard the confidentiality of your information (e.g. firewalls, Transport Security Layer (“TLS”) etc.) and to make sure that your personal information is secure with us.

We have implemented and maintains appropriate technical and organizational security measures, policies and procedures to protect your personal information from the accidental loss, unauthorized access, use, alteration and disclosure. All information you provide to us is stored on our secure servers behind firewalls. All payment transactions are encrypted using TLS technology. Ex: Measures we take includes:

Placing confidentiality requirements on our staff and service providers;
Restriction of access to your personal information to employees and third parties strictly on a need to know basis, such as to respond to your enquiry or request;
Destroying or anonymizing personal information if it is no longer needed for the purposes for which it was collected; and
Using secure communication channels for transmitting personal data.

The safety and security of your information also depend on you. Where we have given you (or where you have chosen) a password for access to certain parts of our Website, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.

Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted to our Website. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Website.

WHAT ARE YOUR RIGHTS?

If you are subject to laws that provide you with such rights, you may have certain rights in relation to your personal information given below.

If you wish to access any of these rights, we may ask you for additional information to confirm your identity and for security purposes, before disclosing personal information to you. We reserve the right to charge a fee where permitted by law, for example, if your request is manifestly unfounded or excessive.

If you would like to access the below rights, you may contact us by completing a form on our website or by mailing us at customer.privacy@emaar.ae or sending us a communication to Data Privacy Office, PO Box 9440, Dubai, United Arab Emirates . We shall aim to comply with all requests within reasonable time in-line with applicable laws. We may not always be able to fully address your request, for example,

if it would impact the confidentiality we owe to others, or
if we are legally entitled to deal with the request in a different way. or
if your request involves deletion of information that are required to comply with the legal requirements.

We will make every reasonable effort to honour your request in-line with applicable laws. In the event we require additional time due to the complexity of the request, we shall promptly inform you of the same.

The right to access

You have the right to obtain confirmation as to whether we process personal data about you, receive a copy of your personal data held by us, and obtain certain other information about how and why we process your personal data (like the information provided in this privacy statement).

The right to rectification

You have the right to request for your personal data to be amended or rectified where it is inaccurate (for example, if you change your name or address) and to have incomplete personal data completed.

The right to restrict processing of personal data

You have the right to restrict our processing of your personal data in the following cases:

Temporarily for a period when you have contested for the accuracy of the personal data;
Temporarily for a period when you have objected for the legitimate interest identified by us,
Your personal data have been unlawfully processed and you request the restriction of processing instead of deletion;
The personal data are no longer necessary in relation to the purposes for which they were collected and processed but the personal data are required by you to establish, exercise or defend legal claims;

We can continue to use your personal information following a request for restriction, where:

we have your consent; or
to establish, exercise or defend legal claims; or
to protect the rights of another natural or legal person.

The right to erasure (also known as ‘the right to be forgotten’)

You have the right to obtain deletion of your personal data in the following cases:

The personal data are no longer necessary in relation to the purposes for which they were collected and processed;
Our lawful basis for processing is consent, you withdraw consent and we have no other lawful basis for the processing;
Our lawful basis for processing is that the processing is necessary for a legitimate interest pursued by us, you object to our processing and we do not have overriding legitimate grounds;
You object to our processing for direct marketing purposes;
Your personal data have been unlawfully processed; and
Your personal data must be erased to comply with a legal obligation under EEA to which we are subject.

We are not required to comply with your request to erase personal information if the processing of your personal information is necessary:

For compliance with a legal obligation; or
For the establishment, exercise or defence of legal claims.

The right to object to the processing of personal data

You have the right to object to our processing of your personal data in the following cases:

our lawful basis for processing is that the processing is necessary for a legitimate interest pursued by us; and our processing for direct marketing purposes.

The right to data portability

You have the right to receive your personal data provided to us and have the right to send the data to another organization (or ask us to do so if technically feasible) where our lawful basis for processing the personal data is consent or necessity for the performance of our contract with you and the processing is carried out by automated means.

The right to withdraw consent at any time (where processing is based on consent)

Where we process personal data based on consent, individuals have a right to withdraw consent at any time.
The right to lodge a complaint with a supervisory authority

If you are not content with how we manage your personal information, you can lodge a complaint with a supervisory authority in your country of residence, place of work or the country in which an alleged infringement of data protection law has occurred within the EEA. We sincerely hope that you will never need to, but if you do want to complain about our use of personal data, you can contact us in one of the ways mentioned in Section – ‘How do you contact us?’. We will look into and respond to any complaints we receive.

UPDATES ON POLICY

This policy may change from time to time. Your continued use of our platforms after we make changes is deemed to be acceptance of those changes, so please check the policy periodically for updates.

HOW DO YOU CONTACT US?

In case of any queries related to this policy, you can contact our Data Privacy Office in one of the following ways.
• Email us at CUSTOMER.PRIVACY@EMAAR.AE
• Call us at 800-EMAAR (36227)
• Send us a communication to the Data Privacy Office, Rove Hospitality LLC, P.O. Box 9440, Dubai, United Arab Emirates.