1. Scope of this Policy

This Privacy Policy applies to all personal information collected through:

• Our website and booking engines
• Email and telephone communications
• In-person interactions during your stay
• Our social media platforms and digital advertising channels

 
This Policy applies to guests worldwide, including residents of the European Union (EU), the
United Kingdom (UK), and other jurisdictions with applicable privacy laws.

2. Information We Collect

We collect personal information that you voluntarily provide when you:

• Make a booking or inquiry via our website or third-party platforms
• Subscribe to newsletters or marketing communications
• Interact with us during your stay (e.g., surveys, feedback forms, social media, or loyalty
  programs)

 
Types of information collected include:

• Identity Data: Name, title, nationality, passport/NIC number
• Contact Data: Email address, phone number, postal address
• Booking & Stay Data: Arrival/departure dates, room type, preferences, special requests
• Payment Data: Credit card details (securely processed by trusted payment partners)
• Technical Data: IP address, browser type, device information, cookies, analytics data
• Marketing Data: Communication preferences and guest feedback

 
We do not knowingly collect personal data from individuals under the age of 16.

3. How We Use Your Information

Your information is used to:

• Confirm and manage bookings
• Personalise your stay and anticipate preferences
• Provide concierge and guest-relations services
• Send operational or marketing communications (with your consent)
• Improve our website, services, and guest experience
• Comply with legal, accounting, and security obligations

 
We do not sell, rent, or trade your personal data to third parties.

4. Sharing Your Information

We may share your information only when necessary with:

• Trusted third-party service providers (e.g., payment processors, booking platforms) to
  facilitate services
• Regulatory or legal authorities, when required by law or to protect our rights
  We ensure that any international data transfers are conducted in accordance with GDPR, UK
  GDPR, and other relevant privacy laws, using appropriate safeguards.

 
5. Cookies & Tracking Technologies

We use cookies to:

• Maintain active booking sessions
• Analyse website performance
• Deliver relevant advertising

 
Upon your first visit, you will be presented with a cookie consent banner allowing you to accept
or decline non-essential cookies.

6. Data Security

We implement appropriate technical and organisational measures to safeguard your personal
data. However, no method of transmission over the internet is completely secure.

7. Data Retention

Personal data is retained only for as long as necessary to fulfil the purposes outlined in this
policy, unless a longer retention period is required by law.

8. Your Rights

You have the right to:

• Access, update, or delete your personal information
• Withdraw consent for marketing communications at any time
• Restrict or object to processing under GDPR / international laws
• Lodge a complaint with a relevant data protection authority

 
9. Protecting Children’s Privacy

We are committed to protecting children’s privacy. We do not knowingly collect or process
personal data from individuals under 16 years of age (or the applicable age of digital consent in
their jurisdiction).
If we become aware that personal data has been collected from a minor without verified
parental consent, we will promptly delete such information.

10. Changes to This Privacy Policy

Tamarind Tree Resort reserves the right to update this Privacy Policy at any time. Any changes
will be published on