Privacy Policy

Effective Date: 10/17/2024

Tidal House ("Company," "we," "us," or "our") is committed to respecting and protecting the privacy of our users and guests. This Privacy Policy governs the manner in which Tidal House collects, uses, maintains, and discloses information collected from users (each, a "User") of the services provided, including our website, third-party booking platforms, and SMS communications. This Privacy Policy applies to all services offered by Tidal House and complies with applicable laws, including the Telephone Consumer Protection Act (TCPA), CAN-SPAM Act, and other relevant U.S. privacy laws.

1. Company Identification

Business Name: Tidal House
Business Address: 659 Ocean Shores Blvd NW, Ocean Shores, WA 98569
Contact Information:

Data Protection Officer: Michael Brandt

2. Definitions

For the purposes of this Privacy Policy:

  • "Personal Data" refers to any information relating to an identified or identifiable natural person, such as a name, address, or other contact details.
  • "Processing" refers to any operation performed on Personal Data, whether automated or manual, including collection, use, storage, and disclosure.
  • "User" refers to individuals who visit our website, engage with our services, or communicate with us via SMS or other electronic means.

3. Information We Collect

3.1 Categories of Personal Data

We may collect and process the following categories of Personal Data:

  • Contact Information: Name, email address, telephone number, mailing address.
  • Booking Information: Reservation details, stay preferences, check-in and check-out dates.
  • Online Identifiers: IP addresses, browser types, and cookies collected when interacting with our website.
  • Transaction Information: Payment information, billing address, and other information necessary to complete your booking.

3.2 Collection Methods

We collect Personal Data through a variety of methods, including but not limited to:

  • Direct Interaction: When you provide information through booking requests, forms, or communications with us.
  • Third-Party Platforms: Personal Data is collected when you book through platforms such as Airbnb, Hostfully, Vrbo, or other distribution partners.
  • Website Interactions: We collect IP addresses, browsing patterns, and other information via cookies or similar tracking technologies.

4. Legal Bases for Processing

Tidal House processes your Personal Data under the following lawful bases, as applicable under relevant privacy laws, including but not limited to the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable regulations:

  • Performance of a Contract: The processing of Personal Data is necessary for the performance of a contract with you, such as managing your reservation and delivering our services.
  • Legitimate Interests: We process Personal Data based on our legitimate business interests, such as enhancing our services, maintaining communication with guests, and ensuring the functionality of our systems.
  • Compliance with Legal Obligations: We may process Personal Data to comply with applicable laws, regulatory requirements, or legal processes.
  • Consent: In cases where consent is required by law, we will obtain your explicit consent before processing your Personal Data for specific purposes, such as for marketing communications.

5. Purpose of Data Collection

We collect and process Personal Data for the following purposes:

  • Providing Services: To facilitate bookings, process payments, and manage your stay at Tidal House.
  • Communication: To send you transactional SMS and email communications regarding your reservation, check-in details, and other important updates.
  • Customer Support: To provide customer support and respond to your inquiries.
  • Legal Compliance: To comply with legal obligations, including tax reporting and responding to regulatory requirements.
  • Marketing: With your explicit consent, we may use your contact information to send you promotional materials related to our services. You may withdraw consent at any time.

6. Data Retention

6.1 Retention Period

We retain Personal Data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Transactional Data: Retained indefinitely unless otherwise requested by the User.
  • Marketing Data: Retained until consent is withdrawn or the information is no longer necessary for the purposes for which it was collected.

6.2 Data Deletion

Upon request, we will delete or anonymize your Personal Data, subject to any legal obligations we may have to retain certain data. Such requests must be made in writing to our Data Protection Officer at michael@tidal.house.

7. Disclosure of Personal Data

We may disclose Personal Data to the following categories of third parties, strictly for the purposes outlined in this Privacy Policy:

Service Providers: We share data with trusted third-party service providers who assist us in providing our services, such as:

  • Booking Software: Hostfully
  • Communication Providers: RingCentral
  • Automation Tools: Zapier
  • Contact Management: Google Contacts

These third parties are bound by contractual obligations to safeguard the confidentiality and security of your Personal Data in compliance with applicable privacy laws.

Legal and Regulatory Authorities: We may disclose Personal Data when required to do so by law or in response to valid legal processes, such as subpoenas, court orders, or government requests.

8. International Data Transfers

Tidal House does not engage in international data transfers. Should such transfers become necessary, we will ensure compliance with applicable data protection laws, including implementing safeguards such as Standard Contractual Clauses (SCCs) or ensuring the receiving party provides adequate levels of data protection.

9. User Rights and Choices

Users have the following rights regarding their Personal Data, subject to applicable legal requirements:

  • Right of Access: You have the right to request access to your Personal Data and receive information about how we process it.
  • Right to Rectification: You have the right to request that we correct any inaccuracies in your Personal Data.
  • Right to Erasure ("Right to be Forgotten"): You may request that we delete your Personal Data, subject to certain exceptions where we are legally obligated to retain the data.
  • Right to Restrict Processing: You may request that we limit the processing of your Personal Data under certain conditions.
  • Right to Object: You have the right to object to the processing of your Personal Data for marketing purposes at any time.
  • Right to Withdraw Consent: Where processing is based on consent, you may withdraw your consent at any time.

To exercise these rights, please contact our Data Protection Officer at michael@tidal.house. We will respond to your request within the timeframes required by applicable laws.

10. Opt-Out of SMS Communications

You may opt out of receiving SMS communications at any time by replying "STOP" to any of our messages or contacting us directly. Opting out will not affect transactional messages that are necessary to complete your booking.

11. Data Security

We implement reasonable and appropriate technical and organizational measures to protect Personal Data against unauthorized access, disclosure, alteration, or destruction. These measures include, but are not limited to:

  • Encryption of sensitive data;
  • Regular review of access controls and security protocols;
  • Periodic auditing of data security practices.

12. Cookies and Tracking Technologies

We use cookies and other tracking technologies to improve the functionality of our website and enhance your user experience. By using our website, you consent to the use of cookies in accordance with this Privacy Policy.

  • Purpose: Cookies are used to store information about your preferences, session data, and analytics.
  • Control: You may control the use of cookies through your browser settings.

13. Compliance with Legal Obligations

We comply with all relevant U.S. privacy laws, including:

  • Telephone Consumer Protection Act (TCPA): Governing SMS communications.
  • CAN-SPAM Act: Governing email communications.

We do not process data from individuals located in the European Union and are not subject to the General Data Protection Regulation (GDPR).

14. Changes to This Privacy Policy

We reserve the right to modify this Privacy Policy at any time. Any changes will be posted on this page, and the "Effective Date" at the top of the policy will be updated accordingly. We encourage Users to review this Privacy Policy periodically to remain informed of how we are protecting their information.

15. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or the processing of your Personal Data, you may contact us at:

Data Protection Officer: Michael Brandt