Mount St. Louis Moonstone learns certain information about You from your visit to this Site, and what we do with this information depends on what You do when you are visiting this Site. This Policy lets you know what choices, access and security You have with respect to the information Mount St. Louis Moonstone collects.
Generally, Mount St. Louis Moonstone may gather and store information about visitors, tracking visitors’ usage on this Site on an aggregate basis (meaning that the information collected does not contain personally identifiable information). The collection of this general information enables Mount St. Louis Moonstone to measure the number of visitors to various portions of this Site, diagnose problems with our server, administer this Site and similar uses. Mount St. Louis Moonstone will only use this general information to learn more about what You and our customers are expecting from our services, and tailor and improve this Site. We may use this aggregate data (information which does not contain personally identifiable information) for any purpose whatsoever without notice to You.
Additionally, “cookies” may be used. Cookies are electronics files that your Web browser places on your hard drive to retain information relating to visits to and use of a website. Although cookies allow You to visit this Site more efficiently, cookies may be disengaged by changing your browser properties (each browser is different, so please review your browser properties to determine how to disengage cookies). We may use this aggregate data (information from which all personally identifiable information has been removed) for any purpose whatsoever without notice to You.
We collect your Personal Information to operate, maintain, enhance, and provide all features of the resort’s services, to send you marketing communications, to respond to comments and questions, to provide support to Users of the resort’s services. We use information collected from cookies and other technologies to improve your experience and the overall quality of our services and website.
Some of your collected Personal Information is displayed on Lane Control Monitors at the Axess Gated Lift Entry system. This includes your name, Date of Birth, Person Type (i.e. Adult, Youth/Senior, Tiny Tyke, Employee) Ticket Type (i.e. DAY 9am to 4pm, AFTERNOON 12:30pm to 9pm, DAY/NIGHT 9am to 9pm NIGHT 4pm to 9pm, Season Pass, Snow Show Special etc.,) along with the validity and/or expiry of your daily lift ticket or Podium Pass. 3 pictures are also displayed. Your account photo is also shown beside a photograph of your 1st lift entry of the day and subsequent lift entries. This information is visible to Lift Operators at each chairlift/magic carpet and can be compared by them to deter fraudulent use. All daily lift tickets and Podium Passes are non-transferable and the photos are utilized to assist the resort ensure products are not re-sold or used fraudulently.
How Do We Obtain Your Consent to Collect Your Personal Information?
We will seek your consent at the time we collect your personal information except where we are legally authorized or required by law to do so without your consent. Your consent may be implied, deemed (using an opt-out mechanism) or express. Implied consent can be reasonably inferred from your action (e.g. giving an email address to sign up for rewards programs) or inaction. Express consent can be given orally, electronically or in writing.
In cases where personal information is held by a third party, we will obtain your consent before seeking this information. In some cases, consent may be implied by your actions. Where we obtain your personal information directly from a third party, we will take reasonable steps to ensure that the third party has represented to us that it has the right to disclose your personal information to us.
Employee personal information may be collected, used or disclosed without consent if it is reasonable for the purposes of establishing, managing, or terminating an employment relationship between our organization and the individual.
You may withdraw your consent at any time in writing unless withdrawing consent would frustrate our performance of a legal obligation. Please contact firstname.lastname@example.org to find out how to withdraw your consent and the possible consequences of such withdrawal.
Who Has Access to Your Personal Information Within the Company?
Only those employees and contracted individuals of the Resort who require access for business reasons or whose duties reasonably so require shall be granted access to Personal Information about Users.
Disclosure of Your Personal Information Outside of the Company
The Resort shall not otherwise disclose Personal Information to third parties for commercial or other reasons, except as may be specifically required to comply with applicable laws or where you have provided your consent. MSLM may disclose your Personal Information with third-party companies, organizations and individuals outside of the Company if:
- You have provided your consent.
- MSLM will share Personal Information with companies, organizations, or individuals outside of the Company when it has your consent to do so.
For external data processing
For purposes of contracts
MSLM may disclose Personal Information for executing a contract to which a User is part or to take steps at the request of the User prior to entering a contract.
For legal purposes
The Resort may disclose Personal Information if required to do so pursuant to any applicable law, regulation, legal process, or enforceable governmental request. For example, it may be necessary for the Resort to disclose Personal Information to law enforcement officials, regulatory bodies, or government agencies for the purposes of investigating or preventing fraud, or other offences as may be required or permitted by applicable laws. Additionally, under the Legislation and other applicable laws, MSLM may be required to disclose some of a User’s Personal Information to government officials, law enforcement personnel, or competent authorities of foreign governments. The Resort may also disclose Personal Information to establish or exercise our legal rights or defend against legal claims or in connection with an emergency that warrants use or disclosure of the information.
Non-personally identifiable Information
MSLM may share non-personally identifiable (anonymized) information publicly and with our partners. For example, The Resort may share anonymized information publicly to show trends about the general use of our services.
How Is Your Personal Information Safeguarded?
MSLM is committed to protecting the confidentiality and security of all Personal Information against loss and unauthorized access, disclosure, modification, or destruction, and therefore has security safeguards appropriate to the sensitivity level of the information in place. Note that confidentiality and security may not be assured with electronic communication via e-mail or wireless communication.
The Resort will ensure that all employees and third-party service providers with access to information of individuals shall be required as a condition of employment or provision of services to respect the confidentiality of such information and that all employees and third-party service providers are aware of the importance of maintaining the confidentiality of such information as part of training requirements.
- Access is restricted to authorized personnel who need the information to perform their duties.
- The Resort’s work processes ensure that personal information is not disclosed to unauthorized parties.
- Electronic data in the Company’s computer systems are protected against unauthorized access and the data is transmitted over secured networks.
- Physical safeguards:
- Locking file cabinets and areas where files are stored when no one is there.
- Restricting employee access to storage areas or filing cabinets.
- Clearing files and documents containing personal information off the work desk at the end of the day.
- Shredding papers or placing them in secure disposal units containing personal information rather than just placing them in a garbage can or recycling bin.
- Destroying computer hard drives that contain personal information before you discard them.
How Long Is Your Personal Data Retained?
Personal Information and Personal Data shall be stored for as long as required by the purpose for which it has been collected, used, or disclosed.
Customer photographs taken at the Axess Gated Lift Entry – these photographs are taken during the 1st entry of the day and then subsequent lift entries for comparison purposes. The images are not stored for more than a 24-hour period. The are deleted from the database every day permanently.
Customer photographs submitted for customer created accounts at mountstlouis.com – these photographs are stored in a data base and cannot be deleted or removed if a customer has a valid product, i.e., Podium Pass or daily lift ticket. A customer can request to delete or remove their account photo by emailing email@example.com
You may withdraw your consent at any time in writing unless withdrawing consent would frustrate our performance of a legal obligation or prevent our ability to provide the purchased product, i.e. you cannot access the Gated Entry Lift system without an account photo similarly you cannot use the system taking a photo of you. Please contact firstname.lastname@example.org to find out how to withdraw delete you account at mountstlouis.com and the possible consequences of such deletion.
We are required to keep personal information for a minimum of one year after any decision that directly affects an individual.
Personal Information or Personal Data which the Resort no longer needs to retain shall be destroyed, erased, or made anonymous in a secure manner in accordance with the Resort’s policies respecting the destruction of records. The Resort shall use care in the disposal or destruction of information to prevent unauthorized parties from gaining access to the information. The right to access, the right to erasure, the right to rectification and the right to portability cannot be enforced after the information has been destroyed.
Please contact us by email email@example.com for more information.
Your Rights Respecting Your Personal Information
Users may exercise certain rights regarding their Personal Information processed by MSLM. Users have a right to:
- Withdraw your consent at any time.
- Users have the right to withdraw consent where they have previously given their consent to the collection, use, disclosure, or other processing of their Personal Information. Users may withdraw their consent by contacting firstname.lastname@example.org
- Access your personal information.
- Users are entitled, with certain legal restrictions, to access and review their Personal Information held by the Resort. The information provided by MSLM will include a general description of the personal information held, how the information was and will be used, and who the information has been disclosed to.
- The Resort reserves the right to refuse to provide access to Personal Information in circumstances during which the Resort is permitted by law to refuse access, including where providing access would reveal Personal Information about a third party, if the release of the Personal Information could affect the security of an individual, or if the Personal Information is subject to privilege. Any refusal to provide information to The User will be in writing, detailing reasoning, and any further available steps.
Requests for access to Personal Information should be made in writing to email@example.com Information will be released within 30 days of the date of request. Users may be required to provide proof of identity before the information is released, and there may be a minimal administration fee for providing the information which The Resort will provide estimate in advance.
Accuracy of personal information
Accurate Personal Information is required for the efficient and effective delivery of products and services. The Resort will make reasonable efforts to ensure the accuracy of personal information collected used in decisions that affect individuals or are disclosed to other organizations.
Individuals may contact firstname.lastname@example.org to modify or correct any Personal Information. Corrections will be made within a reasonable timeframe. In the event the correction is not deemed reasonable by MSLM, the correction will be noted, but no correction will be completed.