At Caiman, privacy and security are our priorities, and we are committed to the transparency of processing of personal data of our users/customers.
By using our services, you understand that we will collect and use your personal information in the ways described in this Policy, under the Data Protection rules (LGPD, Federal Law 13.709/2018), the consumer provisions of Federal Law 8078/1990, and other rules of the appropriate Brazilian legal system.
1. What data do we collect about you and for what purpose?
Our website collects and uses some of your personal data to enable service provision and improve user experience.
1.1. Personal data provided by the holder
- Last name
- Who am I
- Travel Reservations: We use the data to create the reservation, identify guests, send administrative emails, confirmations, and travel information.
- Customer Support Service: We offer customer support service from our offices. We share information with our service team, such as personal or reservation information, to act and help our customer when they need it the
- Provide services according to our client’s needs.
- Notify the customer about offers and promote our services.
- Enhance communication with us.
- Run targeted online advertising.
- Administrative and management purposes.
1.2. Personal data collected automatically
We collect information from your computer, phone, tablet or devices used to access our services such as operating system, IP, web browser, language settings.
2. How do we collect your data?
Data collection takes place at every contact or interaction with us. From the moment you browse our website, contact our call center, or when checking in at Caiman properties.
We process your personal data upon your consent. Consent is a free, informed, and unambiguous expression by which you authorize Caiman to process your data.
Therefore, in accordance with the General Data Protection Law, your data will only be collected, processed, and stored with your prior and express consent.
Your consent will be obtained specifically for each purpose described above, corroborating Caiman’s commitment to transparency and good faith towards its users/clients, following the appropriate legislative regulations.
It is important to highlight that consent withdrawal of data processing may imply the impossibility of the proper performance of some of the website functionalities that depend on the operation. Such consequences will be informed in advance.
3. What are your rights?
Caiman assures its users/customers their rights as a holder provided in article 18 of the General Data Protection Law. This way, you can, at no cost and at any time:
- Confirm the existence of data processing, in a simplified way or in a clear and complete format.
- Access your data, being able to request them in a legible, secure, and legitimate copy in printed form or electronically.
- Correct your data, by requesting their editing, correction or update.
- Limit your data when unnecessary, excessive or treated in breach of the law through anonymization, block or deletion.
- Request the portability of your data, through a registration data report that Caiman handles about you.
- Delete your processed data with your consent, except in the cases provided by law.
- Revoke your consent, prohibiting the processing of your data.
- Find out about the possibility of not giving your consent and about the consequences of denial.
4. How can you exercise your account holder rights?
To exercise your rights as a holder, contact Caiman through the following options:
- Telephone: +55 11 3706-1800
- E-mail: [email protected]
In order to guarantee your correct identification as the holder of the personal data object of the request, we may request documents or other proof of your identity. In this case, you will be informed in advance.
5. How and for how long will your data be stored?
In general, your data will be kept for as long as the contractual relationship between you and Caiman lasts. Once the period of storage of personal data has expired, they will be deleted from our databases or anonymized, except in the cases legally predicted in article 16 of the general law on data protection, namely:
I – compliance with a legal or regulatory obligation by the controller;
II – study by a research entity, ensuring, whenever possible, the anonymization of personal data;
III – transfer to a third party, provided that the data processing requirements pursuant to this Law are respected; or
IV – exclusive use of the controller, its prohibited access by a third party, and provided that data is anonymized.
That is, essential personal information about you that is crucial for the compliance of legal, judicial, and administrative determinations and/or for the exercise of the right of defense in judicial and administrative proceedings will be preserved, despite the exclusion of other data.
The storage of data collected by Caiman reflects our commitment to its security and privacy. We use technical protection measures and solutions capable of guaranteeing the confidentiality, integrity, and inviolability of your data. In addition, we have appropriate security measures against risks and control access of stored information.
6. What do we do to keep your data safe?
To keep your personal information secure, we use physical, electronic, and management tools aimed at protecting your privacy.
We apply these tools considering the nature of the personal data collected, the context, and purpose of the processing, as well as the risks that any violations could generate for the rights and freedoms of the holder’s collected and processed data.
Among the measures we have adopted, the following is highlighted:
- Only authorized people have access to your personal data.
- Access to your personal data is only accomplished after the confidentiality commitment.
- Your personal data is stored in a safe and sound environment.
Caiman is committed to adopting the best conduct to avoid security incidents. However, it is necessary to emphasize that no virtual page is entirely safe and risk-free. It is possible that, despite all our security protocols, problems that are solely fault of third parties may occur, such as cyber-attacks by hackers, or also due to the negligence or recklessness of the user/customer.
In the event of security incidents that may generate significant risk or damage to you or any of our users/customers, we will communicate the situation to those affected and to the National Data Protection Authority pursuant to the provisions of the General Law for Data Protection.
7. Who can your data be shared with?
In order to protect your privacy, Caiman will not share your personal data with any unauthorized third party.
Your data may be shared with our business partners.
They only receive necessary data for the provision of contracted services, and our contracts are oriented by the data protection rules of the Brazilian legal system.
In addition, there are also other reasons why your data can be shared, as follows:
I – Legal mandates, requirements, judicial order or requisition, with competent judicial, administrative or governmental authorities.
II – In case of corporate reorganizations, such as mergers, acquisitions, and incorporations, it will be done automatically.
III – For protection of Caiman’s rights in any sort of conflict, including those of a judicial nature.
7.1. International data transfer
Some of the third parties, with whom we share your data, may be located or may have facilities located in foreign countries. However, your personal data will still be subject to the General Law for Data Protection and other Brazilian data protection legislations.
For this matter, Caiman is committed to always adopt efficient cybersecurity and data protection standards, in its best efforts to guarantee and comply with legislative requirements.
8. Cookies or navigation data
Caiman uses the following Cookies:
|cookielawinfo-checkbox-necessary||Functional||WebToffee||This cookie is set by the GDPR Cookie Consent plugin. Cookies are used to store user consents to cookies in the ‘Required’ category.||1 year|
|cookielawinfo-checkbox-functional||Functional||WebToffee||This cookie is set by the GDPR Cookie Consent plugin. Cookies are used to store user consents to cookies in the ‘Functional’ category.||1 year|
|cookielawinfo-checkbox-performance||Functional||WebToffee||This cookie is set by the GDPR Cookie Consent plugin. Cookies are used to store user consents to cookies in the ‘Performance’ category.||1 year|
|cookielawinfo-checkbox-analytics||Functional||WebToffee||This cookie is set by the GDPR Cookie Consent plugin. Cookies are used to store user consents to cookies in the ‘Analysis’ category.||1 year|
|cookielawinfo-checkbox-advertisement||Functional||WebToffee||This cookie is set by the GDPR Cookie Consent plugin. Cookies are used to store user consents to cookies in the ‘Marketing’ category.||1 year|
|cookielawinfo-checkbox-others||Functional||WebToffee||This cookie is set by the GDPR Cookie Consent plugin. Cookies are used to store user consents to cookies in the ‘Other’ category.||1 year|
|_gcl_au||Marketing||Google AdSense||Used by Google AdSense to experience advertising efficiency on websites that use their services.||2 months|
|_ga||Analysis||Google Analytics||ID used to identify users||2 years|
|_gid||Analysis||Google Analytics||ID used to identify users for 24 hours after last activity||1 Day|
|_gat_gtag_UA_52976094_28||Analysis||Google Analytics||Used to monitor the number of Google Analytics server requests when using Google Tag Manager||1 minute|
|_gat_UA-9241163-1||Analysis||Google Analytics||Used to monitor the number of Google Analytics server requests when using Google Tag Manager||1 minute|
|CONSENT||Functional||Google Cookie Consent Tracker||2 years|
|IDE||Marketing||DoubleClick/Google Marketing||This cookie is used for targeting, analyzing and optimizing advertising campaigns within the DoubleClick / Google marketing package||1 year|
To manage your browser’s cookies, you must access browser’s settings, in the Cookies management area. You can access tutorials on the topic directly from the links below:
If you use Internet Explorer.
If you use Firefox.
If you use Safari.
If you use Google Chrome.
If you use Microsoft Edge.
If you use Opera.
Any changes will be effective as of their publication on our website, and we will always notify you in case of any changes.
By using our services and providing your personal data after such modifications, you consent to these modifications.
Caiman foresees the responsibility of the agents who work in data processing processes, in accordance with Articles 42 to 45 of the General Data Protection Law.
In addition, we are also committed to seeking technical and organizational conditions able to protect the entire data processing process.
In case the National Data Protection Authority requires the adoption of measures regarding the processing of data carried out by Caiman, we commit to follow with them.
As mentioned in Topic 6, although we adopt high security standards in order to avoid incidents, there is no virtual page that is entirely risk-free. Because of that, Caiman is not responsible for:
I – Any consequence from negligence, recklessness or malpractice of users regarding their individual data. We guarantee and are solely responsible for the security of the data processing processes and the fulfillment of the purposes described in this document.
We emphasize that the user is responsible for the confidentiality of access data.
II – Abusive actions by third parties, such as hacker attacks, unless proven faulty or of intentional conduct by Caiman.
We emphasize that in case of security incidents that may generate relevant risk or damage for you or any of our users/customers, we will communicate to those affected and to the National Data Protection Authority about the occurrence and take the necessary actions.
III – Inaccuracy of the necessary information entered by the user/client in the records to use Caiman’s services; any consequences from false information, or information entered in bad faith, are the user/customer’s entire responsibility.
11. Data Protection Officer
Caiman provides the following means for you to contact us to exercise your rights as a holder:
Telephone: +55 11 3706-1800
E-mail: [email protected]
Telephone: +55 11 3706-1800
E-mail: [email protected]