Your privacy is important to us. It is Hospitality Trainee's policy to respect your privacy and to comply with all applicable laws and regulations regarding personal information we may collect about you, including on our website, https://hospitalitytrainee.com, and other sites we own and operate.

Personal information is any information about you that can be used to identify you. This includes information about you as a person (such as your name, address and date of birth), your devices, your payment details and even information about how you use a website or online service.

If our site contains links to third-party sites and services, please be aware that these sites and services have their own privacy policies. After following a link to third-party content, you should read information about the third party's privacy policy regarding how it collects and uses personal information. This privacy policy does not apply to activities you perform after leaving our site.

This policy is effective as of June 12, 2024.

Last update: June 12, 2024

Information collected

The information we collect falls into one of two categories: “voluntarily provided” information and “automatically collected” information.

Voluntarily provided” information refers to any information you knowingly and actively provide to us when you use or participate in any of our services or promotions.

Automatically collected” information is information sent automatically by your devices when you access our products and services.

Connection data

When you visit our website, our servers may automatically record standard data provided by your web browser. This may include the Internet Protocol (IP) address of your device, the type and version of your browser, the pages you visit, the time and date of your visit, the time spent on each page and other details about your visit.

In addition, if you encounter certain errors while using the site, we may automatically collect data about the error and the circumstances of its occurrence. This data may include technical details about your device, what you were trying to do when the error occurred and other technical information relating to the problem. You may or may not be informed of these errors, even at the time they occur, the fact that they have occurred or the nature of the error.

Please be aware that while this information may not be personally identifiable, it may be possible to combine it with other data to identify individuals.

Device data

When you visit our website or interact with our services, we may automatically collect data about your device, such as

• device type
• operating system

The data we collect may depend on the individual settings of your device and software. We recommend that you consult the policies of your device manufacturer or software provider to find out what information they make available to us.

Personal information

We may ask you for personal information - for example, when you submit content to us or when you contact us - which may include one or more of the following:

• name
• e-mail address
• Social media profiles

User-generated content

We consider “user-generated content” to be material (text, image and/or video content) voluntarily provided by our users for the purpose of publishing it on our website or republishing it on our social media channels. All user-generated content is associated with the account or e-mail address used to submit it.

Please be aware that any content you submit for publication will be public after publication (and the subsequent review or verification process). Once published, it may be accessible to third parties not covered by this Privacy Policy.

Legitimate reasons for processing your personal information

We only collect and use your personal information when we have a legitimate reason to do so. In this case, we only collect personal information that is reasonably necessary to provide our services to you.

Collection and use of information

We may collect personal information when you perform any of the following operations on our website:

• create an account
• Sign up to receive updates from us via email or social media channels.
• Post a comment or review or otherwise participate in our online community
• Use a mobile device or web browser to access our content
• Contact us by e-mail, social media or similar technology.
• When you mention us on social media

We may collect, store, use and disclose information for the following purposes, and personal information will not be processed in a manner incompatible with these purposes:

• to provide you with the basic functions and services of our platform
• to provide you with products and/or services
• for analysis, market research and business development purposes, including to operate and improve our website,
• related applications and associated social media platforms
• for advertising and marketing purposes, including to send you promotional information about our products and
• services and information about third parties we believe may be of interest to you
• to enable you to access and use our website, related applications, and related social media platforms.
• for internal administrative and record-keeping purposes

We may combine voluntarily provided and automatically collected personal information with general information or research data we receive from other reliable sources. For example, our marketing and market research activities may reveal data and insights, which we may combine with information about how visitors use our site in order to improve our site and your experience of it.

Security of your personal information

When we collect and process personal information, and for as long as we retain such information, we protect it by commercially acceptable means to prevent loss and theft, as well as unauthorized access, disclosure, copying, use or modification.

While we do our best to protect the personal information you provide to us, please be advised that no method of electronic transmission or storage is 100% secure and no one can guarantee absolute data security.

You are responsible for the choice of any password and its overall level of security, and for ensuring the security of your own information when using our services. For example, you must ensure that all passwords associated with access to your personal information and accounts are secure and confidential.

How long we keep your personal information

We only keep your personal information for as long as necessary. This period may depend on the use we make of your information, in accordance with this privacy policy. For example, if you have provided us with personal information in connection with the creation of an account, we may retain that information for as long as your account exists on our system. If your personal information is no longer required for this purpose, we will delete or anonymize it by removing all details that identify you.

However, if necessary, we may retain your personal information to comply with a legal, accounting or reporting obligation, or for archiving purposes in the public interest, for scientific or historical research, or for statistical purposes.

Protection of children's privacy

None of our products or services are aimed directly at children under 13, and we do not knowingly collect personal information from children under 13.

Disclosure of personal information to third parties

We may disclose personal information to

• a parent, subsidiary or affiliate of our company
• third-party service providers for the purpose of activating them to provide their services, including (without limitation) IT service providers, data storage, hosting and server providers, advertising networks, analytics services, error loggers, debt collectors, maintenance or problem resolution providers, suppliers, professional advisors and payment system operators.
• our employees, subcontractors and/or related entities
• our existing or potential agents or business partners
• credit bureaus, courts, tribunals and regulatory authorities, in the event that you fail to pay for goods or services provided to you by us
• courts, tribunals, regulatory authorities and law enforcement officials, if required by law, in connection with any current or future legal proceedings, or in order to establish, exercise or defend our legal rights
• third parties, including agents or subcontractors who assist us in providing you with information, products, services or direct marketing
• third parties responsible for collecting and processing data
• an entity that purchases or to which we transfer all or substantially all of our assets and business.

The third parties we currently use are as follows:

• When subscribing to a package, Hospitality Trainee collects the user's name and e-mail address in order to invite them to access the Hospitality Trainee platform.

International transfers of personal information

The personal information we collect is stored and/or processed in countries where we or our partners, affiliates and third-party suppliers have facilities.

The countries in which we store, process or transfer your personal information may not have the same data protection laws as the country in which you originally provided the information. If we transfer your personal information to third parties in other countries: (i) we will make such transfers in accordance with the requirements of applicable law; and (ii) we will protect the personal information transferred in accordance with this Privacy Policy.

Your rights and control over your personal information

Your choice: by providing us with personal information, you understand that we will collect, hold, use and disclose your personal information in accordance with this Privacy Policy. You are under no obligation to provide us with any personal information, but failure to do so may affect your use of our website or the products and/or services offered on or through it.

Information from third parties: If we receive personal information about you from a third party, we will protect it as set out in this Privacy Policy. If you are a third party providing personal information about someone else, you represent and warrant that you have that person's consent to provide such personal information to us.

Marketing consent: If you have already consented to us using your personal information for direct marketing purposes, you may change your mind at any time by contacting us using the details below.

Data access: You can request details of the personal information we hold about you.

Rectification: If you believe that any information we hold about you is inaccurate, out of date, incomplete, irrelevant or misleading, please contact us using the details provided in this privacy policy. We will take reasonable steps to correct any information found to be inaccurate, incomplete, misleading or out of date.

Non-discrimination: We will not discriminate against you for exercising any of your rights with respect to your personal information. Unless your personal information is necessary to provide you with a particular service or offering (for example, providing user support), we will not refuse you goods or services and/or charge you different prices or rates for goods or services, including by granting discounts or other benefits, or imposing penalties, or provide you with a different level or quality of goods or services.

Notification of data breaches: We will comply with the laws applicable to us in the event of a data breach.

Complaints: If you believe that we have breached a data protection law and wish to make a complaint, please contact us using the details below and provide us with full details of the alleged breach. We will promptly investigate your complaint and respond to you in writing with the results of our investigation and the steps we will take to address your complaint. You also have the right to contact a regulator or data protection authority in relation to your complaint.

Unsubscribe: To unsubscribe from our email database or to opt-out of receiving communications (including marketing communications), please contact us using the contact details provided in this privacy policy or by using the unsubscribe options provided in the communication. We may need to ask you for specific information to help us confirm your identity.

Use of cookies

We use “cookies” to collect information about you and your activity on our site. A cookie is a small piece of data that our website stores on your computer and accesses each time you visit, so that we can understand how you use our site. This helps us to offer you content based on the preferences you have specified.

For more information, please consult our cookie policy.

Business transfers

If we or our assets are acquired, or in the unlikely event that we go out of business or enter bankruptcy, we will include data, including your personal information, among the assets transferred to any party that acquires us. You acknowledge that such transfers may occur and that acquiring parties may, to the extent permitted by applicable law, continue to use your personal information in accordance with this policy, which they will be bound to assume as the basis for any ownership or use rights we have in such information.

Limitations of our policy

Our website may contain links to external sites which are not operated by us. Please note that we have no control over the content and policies of these sites and cannot accept any responsibility for their respective privacy practices.

Changes to this policy

We may, at our discretion, modify our Privacy Policy to reflect updates to our business processes, current acceptable practices, or changes in legislation or regulations. If we decide to change this Privacy Policy, we will post the changes here, on the link through which you access this Privacy Policy.

If the changes are material, or if required by applicable law, we will contact you (depending on the preferences you have selected for our communications) and all our registered users with the new details and links to the updated or amended policy.

If required by law, we will ask for your permission or give you the opportunity to accept or decline, as appropriate, any new use of your personal information.

Additional information on compliance with Canadian privacy legislation

International transfers of personal information

Where the disclosure of your personal information is subject only to Australian privacy laws, you acknowledge that certain third parties may not be subject to the Privacy Act and the Australian privacy principles set out in the Privacy Act. You acknowledge that if any such third party engages in any act or practice that contravenes the Australian Privacy Principles, it will not be liable under the Privacy Act and you will not be able to seek redress under the Privacy Act.

Additional information for compliance with the General Data Protection Regulation (GDPR) (EU)

Data controller / Data processor

The GDPR distinguishes between organizations that process personal information for their own purposes (referred to as “data controllers”) and organizations that process personal information on behalf of other organizations (referred to as “data processors”). We, Lytbox Digital Co. Ltd, located at the address provided in our Contact Us section, are a data controller and/or processor with respect to the personal information you provide to us.

Legal basis for processing your personal information

We will only collect and use your personal information if we have the legal right to do so. If we do, we will collect and use your personal information lawfully, fairly and transparently. If we seek your consent to process your personal information and you are under 16 years of age, we will seek the consent of your parent or legal guardian to process your personal information for this specific purpose.

Our legal bases depend on the services you use and how you use them. This means that we only collect and use your information for the following purposes:

Your consent

When you give us your consent to collect and use your personal information for a specific purpose. You may withdraw your consent at any time using the means available to you; however, this will not affect any use of your information that has already taken place. You may consent to provide your e-mail address in order to receive marketing e-mails from us. Although you may unsubscribe at any time, we cannot recall emails we have already sent. If you have any further questions about how to withdraw your consent, please feel free to contact us using the details provided in the “Contact Us” section of this Privacy Policy.

Performance of a contract or transaction

Where you have entered into a contract or transaction with us, or in order to take preparatory steps before we enter into a contract or transaction with you. For example, if you contact us with an inquiry, we may need personal information such as your name and contact details to respond to you.

Our legitimate interests

Where we consider it necessary for our legitimate interests, for example to provide, operate, improve and communicate our services. We consider our legitimate interests to include research and development, understanding our audience, marketing and promoting our services, taking steps to operate our services efficiently, marketing analysis and taking steps to protect our legal rights and interests.

Compliance with the law

In some cases, we may have a legal obligation to use or retain your personal information. These may include, but are not limited to, court orders, criminal investigations, government requests and regulatory obligations. If you have any further questions about how we retain personal information in order to comply with the law, please do not hesitate to contact us using the details provided in the “Contact Us” section of this Privacy Policy.

International transfers outside the European Economic Area (EEA)

We will ensure that any transfer of personal information from countries within the European Economic Area (EEA) to countries outside the EEA is protected by appropriate safeguards, for example by using standard data protection clauses approved by the European Commission, or by using binding corporate rules or other legally accepted means.

Your rights and control over your personal information

Restriction: You have the right to ask us to restrict the processing of your personal information if (i) you are concerned about the accuracy of your personal information; (ii) you believe that your personal information has been processed unlawfully; (iii) you need us to retain personal information solely for the purposes of a legal claim; or (iv) we are considering your objection to processing on the basis of legitimate interests.

Objection to processing: You have the right to object to the processing of your personal information on the basis of our legitimate interests or the public interest. In this case, we must provide compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, in order to proceed with the processing of your personal information.

Data portability: You may have the right to request a copy of the personal information we hold about you. Wherever possible, we will provide you with this information in CSV or other machine-readable format. You may also have the right to request that we transfer this personal information to a third party.

Deletion: You may request that we delete the personal information we hold about you at any time, and we will take reasonable steps to delete your personal information from our current records. If you ask us to delete your personal information, we will inform you of how the deletion affects your use of our website or our products and services. There may be exceptions to this right for specific legal reasons which, if applicable, we will set out in response to your request. If you cancel or delete your account, we will delete your personal information within 365 days of deleting your account. Please be aware that search engines and similar third parties may still retain copies of your personal information that has been made public at least once, such as certain profile information and public comments, even after you have deleted such information from our services or deactivated your account.

Additional disclosures for compliance with U.S. privacy laws.

The following section includes provisions that comply with the privacy laws of those states (California, Colorado, Delaware, Florida, Virginia and Utah) and applies only to residents of those states. Specific references to a particular state (in a headline or in the text) are only a reference to that state's legislation and apply only to residents of that state. Non-state-specific language applies to all states listed above.

Do not follow
Some browsers have a “Do Not Track” function that allows you to tell websites that you do not wish your online activities to be tracked. At present, we do not respond to “Do Not Track” signals from browsers.

We adhere to the standards set out in this privacy policy, ensuring that we collect and process personal information lawfully, fairly and transparently, and on legitimate and lawful grounds.

Cookies and pixels
You may refuse cookies from our site at any time if your browser permits. Most browsers allow you to activate your browser settings to refuse the installation of all or some cookies. Therefore, your ability to restrict cookies depends solely on your browser's capabilities. For more information, please refer to the “Cookies” section of this privacy policy.

Internet activity, such as your interactions with our service.

Geolocation data.
For more information about the information we collect, including the sources from which we receive information, please see the “Information we collect” section. We collect and use these categories of personal information for the business purposes described in the “Information Collection and Use” section, including to provide and manage our service.

Right of access and deletion
You have the right to delete personal information we have collected and to learn certain information about our data practices over the past 12 months. In particular, you have the right to ask us the following:

• the categories of personal information we have collected about you
• The categories of sources from which personal information has been collected;
• The categories of personal information about you that we have disclosed for commercial purposes or sold;
• the categories of third parties to whom personal information has been disclosed for commercial purposes or sold;
• the professional or commercial purpose for which the personal information was collected or sold; and
• the specific personal information we have collected about you.

To exercise any of these rights, please contact us using the contact details provided in this privacy policy.

Shedding light
In addition to the rights mentioned above, you have the right to ask us for information about how we share certain personal information, as defined by applicable law, with third parties and affiliates for direct marketing purposes.

To receive this information, please send us a request using the contact details provided in this privacy policy. Requests should have “Privacy Rights Request” in the first line of the description and include your name, address, city, state and zip code.

Additional information for UK General Data Protection Regulation (UK GDPR) compliance (United Kingdom)

Data Controller / Data Processor
The GDPR distinguishes between organizations that process personal information for their own purposes (referred to as “data controllers”) and organizations that process personal information on behalf of other organizations (referred to as “data processors”). For the purposes covered by this Privacy Policy, we are a data controller with respect to the personal information you provide to us and we remain compliant with our data controller obligations under the GDPR.

Content provided by third parties
We may indirectly collect personal information about you from third parties who have your permission to share it. For example, if you purchase a product or service from a company that works with us and you authorize us to use your contact information to complete the transaction.

We may also collect public information about you, for example from the social media and messaging platforms you use. The availability of this information will depend on both privacy policies and your own privacy settings on these platforms.

Additional disclosure for collection and use of personal information

In addition to the above purposes for collecting and using personal information, we may also conduct marketing and market research activities, including how visitors use our site, opportunities for website improvement and user experience.

Personal information no longer required for our purposes

If your personal information is no longer required for our stated purposes, or if you instruct us under your data subject rights, we will delete or anonymize it by removing all details that identify you (“Anonymization”). However, if necessary, we may retain your personal information to comply with a legal, accounting or reporting obligation, or for archiving purposes in the public interest, for scientific or historical research purposes or for statistical purposes.

Legal basis for processing your personal data

Data protection and privacy laws allow us to collect and use your personal data for a limited number of purposes. In such cases, we will collect and use your personal information in a lawful, fair and transparent manner. We never market directly to anyone under the age of 18.

Our legal bases depend on the services you use and how you use them. This is a non-exhaustive list of the legal bases we use:

Your consent
When you give us your consent to collect and use your personal information for a specific purpose. You may withdraw your consent at any time using the means available to you; however, this will not affect any use of your information that has already taken place. When you contact us, we assume that you have given your consent on the basis of your positive action of contacting us; you therefore consent to your name and e-mail address being used so that we can respond to your request.

Where you agree to receive commercial communications from us, we will only do so on the basis of your consent or until you ask us not to do so, which you can do at any time.

Although you can ask us to remove your details at any time, we cannot recall emails we have already sent. If you have any further questions about how to withdraw your consent, please do not hesitate to contact us using the details provided in the “Contact us” section of this privacy policy.

Performance of a contract or transaction
Where you have entered into a contract or transaction with us, or in order to take preparatory steps before we enter into a contract or transaction with you. For example, if you contact us with an inquiry, we may need personal information such as your name and contact details to respond to you.

Our legitimate interests
Where we consider it necessary for our legitimate interests, for example to provide, operate, improve and communicate our services. We consider our legitimate interests to include research and development, understanding our audience, marketing and promoting our services, taking steps to operate our services efficiently, marketing analysis and taking steps to protect our legal rights and interests.

Compliance with the law
In some cases, we may have a legal obligation to use or retain your personal information. These cases may include (but are not limited to) court orders, criminal investigations, government requests and regulatory obligations. For example, we are required to retain financial records for a period of 7 years. If you have any further questions about how we retain personal information in order to comply with the law, please feel free to contact us using the details provided in the “Contact Us” section of this Privacy Policy.

International transfers of personal information
The personal information we collect is stored and/or processed by us in the United Kingdom. Following an adequacy decision by the European Commission, the UK has been granted a level of protection substantially equivalent to that guaranteed by the UK GDPR.

In some cases, where we share your data with third parties, they may be based outside the UK or the European Economic Area (“EEA”). The countries in which we store, process or transfer your personal information may not have the same data protection laws as the country in which you originally provided the information.

If we transfer your personal information to third parties in other countries :

• we will carry out such transfers in accordance with the requirements of the UK GDPR (Article 45) and the Data Protection Act 2018;
• we will adopt appropriate safeguards to protect transferred data, including in transit, such as standard contractual clauses (“SCCs”) or binding corporate rules.

Your rights as a data subject

• Right to restrict processing: You have the right to ask us to restrict the processing of your personal information if (i) you are concerned about the accuracy of your personal information; (ii) you believe that your personal information has been processed unlawfully; (iii) you need us to retain personal information solely for the purposes of a legal claim; or (iv) we are considering your objection to processing on the basis of legitimate interests.
• Right to object: You have the right to object to the processing of your personal information on the basis of our legitimate interests or the public interest. In this case, we must provide compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, in order to continue processing your personal information.
• Right to be informed: You have the right to be informed about how your data is collected, processed, shared and stored.
• Right of access: You may at any time request a copy of the personal information we hold about you by submitting a Data Access Request (DSAR). The legal deadline for responding to a DSAR is 30 calendar days from receipt of your request.
• Right to erasure: in certain circumstances, you may request that your personal data be deleted from the files held by the organizations. However, this is a conditional right; it is not absolute and can only be applied in certain circumstances.

When does the right to erasure apply?

When personal data is no longer required for the purposes for which it was originally collected or processed.

If consent was the legal basis for the processing of personal data and this consent has been withdrawn. Hospitality Trainee relies on consent to process personal data in very few circumstances.

The company relies on legitimate interests as the legal basis for processing personal data and an individual has exercised their right to object and it has been determined that the company has no compelling legitimate grounds to refuse this request.

Personal data is processed for direct marketing purposes, for example a person's name and e-mail address, and the person objects to this processing.
Legislation requires that personal data be destroyed.
Right to portability: Individuals have the right to obtain from an organization some of their personal data in an accessible and machine-readable form, for example in the form of a csv file. At the same time, individuals also have the right to ask an organization to transfer their personal data to another organization.

However, the right to portability

only applies to personal data that an individual has directly communicated to Hospitality Trainee in electronic form; and
onward transfer will only be possible if it is “technically feasible”.
Right of rectification: If personal data is inaccurate, out of date or incomplete, data subjects have the right to correct, update or supplement it. This is collectively known as the right of rectification. Rectification may involve filling in the gaps, i.e. completing incomplete personal data, although this depends on the purposes of the processing. This may involve adding an additional statement to the incomplete data to highlight any inaccuracies or claims in this respect.

This right only applies to a person's personal data; a person cannot request rectification of another person's information.

• Notification of data breaches: Upon discovery of a data breach, we will investigate the incident and report it to the UK Data Protection Regulator and to you, if we consider it appropriate.
• Complaints: You have the right, at any time, to make a complaint to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection matters (www.ico.org.uk). However, we would appreciate the opportunity to address your concerns before you approach the ICO, so please contact us in the first instance using the details below. Please provide us with as much information as possible about the alleged breach. We will promptly investigate your complaint and respond, in writing, with the results of our investigation and the steps we will take to address your complaint.

Inquiries, reports and escalations

If you have any questions about Hospitality Trainee's Privacy Policy or to report violations of user privacy, you may contact our Data Protection Officer using the contact information in the “Contact Us” section of this Privacy Policy.

Additional information required to comply with the Personal Information Protection and Electronic Documents Act (PIPEDA) (Canada)

Additional scope of personal information
In accordance with PIPEDA, we expand our definition of personal information to include any information about an individual, such as financial information, information about your appearance, your views and opinions (such as those expressed online or in a survey), opinions expressed by others about you, and any personal correspondence you may have with us. Although this information cannot be used to identify you directly, it may be combined with other information for this purpose.

Because the PIPEDA Act refers to personal information using the term personally identifiable information (PII), all references to personal information and PII in this Privacy Policy and in official Hospitality Trainee communications are deemed equivalent to each other in every way.

Valid consent

When you give us your consent to collect and use your personal information for a specific purpose. You may withdraw your consent at any time using the means we make available to you; however, this will not affect any use of your information that has already taken place. When you contact us, we assume that you have given your consent on the basis of your positive action of contacting us, i.e. that you consent to your name and e-mail address being used so that we can respond to your request. Under PIPEDA, consent is valid only if it is reasonable to expect that an individual to whom the organization's activities are directed understands the nature, purpose and consequences of the collection, use or disclosure of the personal information to which he or she consents.

When you agree to receive commercial communications from us, we will do so only on the basis of your indication of consent or until you ask us not to do so, which you may do at any time.

Although you can ask us to delete your details at any time, we cannot recall e-mails we have already sent. If you have any further questions about how to withdraw your consent, please do not hesitate to contact us using the details provided in the “Contact us” section of this privacy policy.

International transfers of information

While Hospitality Trainee strives to maintain, store and process customer data in Canada, we may use agents or service providers located in the United States (U.S.), the European Economic Area (EEA) or the United Kingdom (UK) to collect, use, store and process personal information in connection with the services we provide to you. While we make every reasonable effort to ensure that personal information enjoys the same level of security in any other jurisdiction as it does in Canada, please be aware that privacy protections under U.S. law may not be as adequate.

Customer data rights

While PIPEDA does not contain an exhaustive set of consumer rights, it does grant consumers the right to. :

• access personal information held about them by organizations
• correct any inaccurate or out-of-date personal information that the organization holds about them (or, if this is not possible, delete the inaccurate personal information)

Withdraw their consent to any activity for which they have given their consent (for example, direct marketing or cookies).

Right to withdraw consent

When you give us your consent to collect and use your personal information for a specific purpose. Subject to certain restrictions, you may, at any time, refuse to consent or continue to consent to the collection, use or disclosure of your personal information by notifying us at the e-mail address indicated in the “Contact us” section. Withdrawal of consent may affect our ability to provide or continue to provide services.

Customers may not refuse the collection, use and disclosure of their personal information if such information is required to:

• be collected, used or disclosed by law ;
• fulfill the terms of a contractual agreement; and
• be collected, used or disclosed as required by any regulatory body, including self-regulatory organizations.

Although you can ask us to delete your details at any time, we cannot recall emails we have already sent. If you have any further questions about how to withdraw your consent, please do not hesitate to contact us using the details provided in the “Contact Us” section of this Privacy Policy.

Right of access under PIPEDA

PIPEDA gives you a general right of access to personal information held by companies subject to the Act. Under PIPEDA, you must submit your request for access in writing and pay a minimum fee of $30.00.

If you feel that an organization fee is unfair, you have the right to complain. We retain the right to decide how we communicate copies of your PII to you. We will take all necessary steps to respond to your request within 30 days of receipt:

• meeting the deadline would unreasonably interfere with our business activities; or
• the time required to undertake the consultations necessary to respond to the request would make it impossible to meet the deadline.

We may also extend the deadline for the time required to convert the personal information into an alternative format. In this case, we will inform you of the delay within the first 30 days and explain the reasons for it.

Right of rectification under PIPEDA

You may request the correction of any factual errors or omissions in your PII. We ask that you provide evidence to support your request. Under PIPEDA, an organization must amend information, where appropriate, if you can demonstrate that it is incomplete or inaccurate.

You may contact us at any time, using the information provided in the “Contact Us” section of this Privacy Policy, if you believe that your PII on our systems is incorrect or incomplete.

If we are unable to reach agreement on amending the information, you have the right to register your concerns with the office of the Privacy Commission of Canada.

Compliance with PIPEDA's ten privacy principles

This Privacy Policy complies with the requirements of PIPEDA and the Ten Privacy Principles, which are as follows:

Responsibility. Hospitality Trainee is responsible for PII under its control and will designate an individual or individuals to assume organizational responsibility for compliance with PIPEDA's Ten Privacy Principles, details of which are included below. All personnel are responsible for the protection of customers' personal information.

Identifying purposes. Hospitality Trainee identifies the purposes for which personal information is collected before or at the time of collection.

Consent. Consent is required for Hospitality Trainee's collection, use or disclosure of personal information, except as required or permitted by PIPEDA or other law. In addition, when customers access a product or service offered by us, consent is deemed to be given. Express consent may be obtained verbally, in writing or by electronic means. Consent may also be implied as a result of customer actions or continued use of a product or service following Hospitality Trainee's notification of changes.

Limitation of collection. Personal information collected will be limited to that which is necessary for the purposes identified by Hospitality Trainee.

Limiting use, disclosure and retention. We will not use or disclose personal information for purposes other than those for which it was collected, except with your consent or as required by law. We will retain personal information only as long as necessary to fulfill the purposes for which it was collected and to comply with legal requirements.

Accuracy. Personal information will be kept by Hospitality Trainee in an accurate, complete and up-to-date format, to the extent necessary to fulfill the purposes for which the personal information was collected.

Security measures. We will protect personal information by security safeguards appropriate to the sensitivity of the information.

Openness. We will make our policies and practices relating to the collection and management of personal information readily available upon request, including our brochures or other information explaining our policies, standards or codes.

Customer access. We will inform our customers of the existence, use and disclosure of their personal information and give them access to their personal information, subject to legal restrictions. We may require written requests for access to personal information and, in most cases, will respond within 30 days of receipt of such requests. Customers may verify the accuracy and completeness of their personal information and request that it be corrected or updated, as appropriate.
Challenging Compliance Customers are welcome to ask any questions or requests regarding our compliance with this Privacy Policy and the requirements of PIPEDA using the contact information provided in the “Contact Us” section of this Privacy Policy.

Cookie compliance

Our e-mail exchanges with customers comply with Canadian anti-spam legislation. The company does not send unsolicited e-mail to people with whom it has no relationship. We do not sell personal information, such as e-mail addresses, to unrelated third parties. Occasionally, your personal information may be provided to our third-party partners to administer the products and services you request from us.

When you leave our website by connecting to another website, you are subject to the privacy and security policies of the new website. We encourage you to read the privacy policies of all websites you visit, especially if you share personal information with them.

For more information, please see our cookie policy.

Inquiries, reports and escalations
If you have any questions about Hospitality Trainee's Privacy Policy or to report violations of user privacy, you may contact us using the contact information in the “Contact Us” section of this Privacy Policy.

If we are unable to resolve your concern to your satisfaction, you may also contact the Office of the Privacy Commissioner of Canada:

30 Victoria Street
Gatineau, Quebec K1A 1H3
Toll-free: 1.800.282.1376
www.priv.gc.ca

Contact us at
If you have any questions or concerns about your privacy, you can contact us using the following coordinates:

Hospitality Trainee
https://hospitalitytrainee.com/contact