CREST is the sole owner of the information collected on www.responsibletravel.org. CREST collects the following information from our users on our website.
Information you provide to us
Information we collect automatically
We generally use the information we collect to:
For any other purposes disclosed to you at the time we collect your information or pursuant to your consent.
If a user wishes to subscribe to our electronic communications, we require an email address and other contact information (full name and location). Out of respect for our users’ privacy, we provide a way to opt-out of these communications. Please see the “Opt-out and Control of Information” section below.
If you access third-party services, such as Facebook, Google, or Twitter, through our website (for example to share information about your experience with CREST with others), these third-party services may be able to collect information about you, including information about your activity on the website, and they may notify your connections on the third-party services about your use of the website, in accordance with their own privacy policies.
Users who no longer wish to receive our newsletters and/or promotional communications may send an email to CREST’s Managing Director (contact information listed below), indicating the email address(es) to be removed from the email list. We also offer automatic opt-out mechanisms at the bottom of all communications.
Users may also have rights in accordance with applicable law to do the following by contacting us via the contact information listed below:
This website takes every precaution to protect our users’ information. When users submit sensitive information via the website, their information is protected both online and off-line.
We also do everything in our power to protect user-information off-line. All of our users’ information, not just the information mentioned above, is restricted in our offices. Only employees who need the information to perform a specific job are authorized to access to personally identifiable information. All employees are kept up-to-date on our security and privacy practices. Any time new policies are added, our employees are notified and/or reminded about the importance we place on privacy, and what they can do to ensure our users’ information is protected. Finally, the servers that store personally identifiable information are housed in a secure environment.
We retain data only as long as necessary to fulfill the purpose for which it was collected.
We use Google Analytics to aggregate and analyze data about the audiences for our websites. To learn more about how Google Analytics process data, visit their site here.
We process your data from outside of the European Economic Area, including from the United States, which may not have the same level of privacy protections as your home country.
The data controller for your personal data is the Center for Responsible Travel. If you have any unresolved privacy concern that we have not addressed satisfactorily after contacting us, you have the right to contact the appropriate EU Data Protection Authority and lodge a complaint. We hope, however, that you will raise those concerns with us first by contacting us as set out in the “Contact Information” section below.
If you have questions or concerns, feel free to reach out to CREST managing director Samantha Bray at firstname.lastname@example.org. The Managing Director can also be reached at the following address:
Center for Responsible Travel
1225 Eye St. NW
Washington, DC 20005