This Website (the "Service") is operated by Lifestyle Services Group Limited (“LSG”), with mailing address of PO Box 98, Blyth, NE24 9DL, a member of the Assurant, Inc. group of companies (hereinafter, “We”, “Us”, “Our” or “Company”). LSG is the data controller of your Personal Information in the context of the Service.
This Privacy Notice (“Notice”) describes how We will process and protect personal information relating to an identified or identifiable individual (“Personal Information”) when you use the Service, which allows users to create an account, update your contact details and communication preferences, search for airport lounges, restaurants, and spas, view lounge usage history and number of visits, register and update payment card details, purchase additional lounge visits, pre-book lounge visits, reset your password, and contact customer support, and applies to your use of the Service. We also use the Personal Information to provide services to you, to communicate with you, and to track usage of the Service and Our products and services. Your Personal Information shall be held and used in accordance with applicable legislation relating to the protection of Personal Information (the “Applicable Law”). Your Personal Information will be shared with Our service providers (e.g., airport lounges), some of which are located outside the EEA and are not subject to an adequacy decision of the European Commission.
This Notice applies to the Service only and does not necessarily reflect practices with respect to information gathered through other services We offer or websites We operate or the collection of information through off-line means. To review the privacy practices of those other services, please refer to the policies provided in association with each.
We collect your Personal Information in the following situations:
We collect Personal Information from you when you make a payment (for example, when you purchase additional visits). We ask you to provide Us with payment details: cardholder name, payment card number, CVC, and expiry date.
When you contact Our customer support team (for example, when you enquire about the status of your account), We will collect information that you provide to Us in your communications (such as the query or issue that you have raised).
We process your Personal Information for the following purposes:
We employ third party companies and individuals to facilitate the Service (for example, customer support, customer communications, audit, application or database hosting, development, logistics, payment processing, and for fraud detection and prevention purposes. These third parties have limited access to your Personal Information to perform these tasks on Our behalf and are obligated to Us. The personnel of such third parties who use your Personal Information is limited to those individuals which are authorized to do so on a need-to-know basis and as necessary to provide these business services to Us. We also share your Personal Information with your bank (for example – to validate your eligibility for the product or service). To provide the Service, we may share your name, contact details (including post code, email address and mobile number), and usage information.
We may disclose your Personal Information if required for the purposes above, if mandated by law or if required for the legal protection of Our legitimate interests in compliance with Applicable Law.
We may also disclose your Personal Information, usage information, and other information about you to parties acquiring part or all of Our assets, as well as to attorneys and consultants. Also, if any bankruptcy or reorganization proceeding is brought by or against Us, your Personal Information may be considered a company asset that may be sold or transferred to third parties.
In providing the Service, your Personal Information may be processed both inside and outside the European Economic Area (“EEA”) by Our service providers (such as airport lounges), subject to contractual restrictions regarding confidentiality and security in accordance with applicable data protection laws and regulations.
Your use of the Service (for example – when you access airport lounges outside the EEA) may involve transfers outside the EEA to the UK. For example, the airport lounge you visit may process your Personal Information, such as your membership ID, upon entry to the lounge.
Where Personal Information is processed outside the EEA in a country that is not subject to an adequacy decision by the EU Commission, it is adequately protected by European Commission approved standard contractual clauses, an appropriate Privacy Shield certification or a vendor’s Processor Binding Corporate Rules. If you would like more information on the relevant transfer mechanism or additional information on the transfers, please address these requests to Us.
In some countries, you have the right to request access to, correction of, and deletion of your Personal Information, and to restrict the processing of your Personal Information, under Applicable Law. You also have the right to request a structured commonly-used and machine-readable copy of Personal Information that you have provided to Us for a contract or with your consent, and to ask Us to transmit (port) this Personal Information to another controller.
You may also object to Our processing of Personal Information in certain circumstances (in particular, where we don't need to process the information to meet a contractual or other legal requirement, or where we are using the data for customer experience surveying purposes (section 2).
You can exercise any of your rights by Contacting Us. In order to safeguard your Personal Information from unauthorized access, We may ask that you provide sufficient information to identify yourself prior to providing access to your Personal Information.
In certain situations, and subject to Applicable Law, We may not be able or obliged to comply with part or all of your individual requests. For example, We may not comply with an access request if doing so would reveal Personal Information about another person, or comply with a deletion request relating to information which We are required by law to keep or have compelling legitimate interests in keeping. Please note that we have the right to refuse requests which are manifestly unfounded or excessive (for example, due to their repetitive character).
If you have unresolved concerns, you have the right to complain to an EU data protection authority ('supervisory authority') where you live, work or where you believe a breach may have occurred.
To provide certain parts of the Service (for example - Creating an Account and Making Payment), the provision of Personal Information is mandatory: If relevant data is not provided, then We will not be able to provide certain parts of the Service. All other provision of your information is optional. If you do not wish to provide optional information, then your experience on our website may be less personalized.
We communicate with you through email and SMS. We will send you service-related communications (for example – information about your usage of the service”), customer satisfaction and market research surveys.
You can change your email and contact preferences through this website or by contacting Customer Service or Contacting Us Please be aware that you cannot opt-out of receiving service-related messages from Us.
We typically delete logs and other backup information through the deletion process within 30 days of your last activity, except as noted in Section 5. Where we process Personal Information in connection with performing a contract, we keep the data for 6 years from your last interaction with us.
We have implemented safeguards designed to protect your Personal Information in accordance with industry standards.
We have measures in place to restrict access to Personal Information to those individuals whom We know have a valid business purpose to have access to such data. We maintain physical, electronic and procedural safeguards. We follow generally accepted standards designed to protect the Personal Information submitted to Us, both during transmission and once We receive it. We require those who provide services for Us and to whom We provide Personal Information collected through the Service to keep such information secure and confidential. However, no method of transmission over the Internet or method of electronic storage is totally secure. Therefore, We cannot guarantee its absolute security.
We do not knowingly collect Personal Information from anyone under the age of 18. You must be at least 18 years of age to use the Service.
We may update this Notice from time to time. If We make any material changes to Our Notice, We will notify you by email or by means of a notice through the Service, or by other means prior to the change becoming effective, so that you may review the changes before you continue to use the Service. Please review changes carefully.
For customer enquiries, please contact us at: LSG, PO Box 98, Blyth, NE24 9DL, or Call Us.
We welcome your questions or comments regarding this Notice. Please write to LSG (an Assurant group company), Data Protection Officer, PO Box 98, Blyth, NE24 9DL, or send Us an email at firstname.lastname@example.org. You may also write to Us at Assurant Privacy Office, Post Office Box 979047, Miami, FL 33197-9047, USA.
Effective date: 04/09/2018