Privacy Policy

1. Introduction

Rosemead House (“we”, “our”, or “us”) respects your privacy and is committed to protecting your personal information in accordance with applicable privacy laws, including the Personal Information Protection Act (British Columbia) and the Personal Information Protection and Electronic Documents Act (Canada).

This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information when you visit our website, https://rosemeadhouse.ca (the “Site”), or interact with us by phone, email, or in person.

By using the Site or engaging with us, you agree to the terms of this policy. If you do not agree with our practices, please do not use the Site or provide us with personal information.

2. Information We Collect

We may collect the following categories of personal information, as defined by Canadian and BC privacy laws:

  • Contact Information: Name, email address, phone number, and mailing address.
  • Booking Information: Dates of stay, room preferences, and special requests.
  • Payment Information: Credit card details and billing address, securely processed by our third-party payment processor and not stored by us.
  • Technical Information: IP address, browser type, device identifiers, and browsing behaviour (e.g., through cookies and analytics tools such as Google Analytics).
  • Communication History: Emails, messages, or interactions with our staff.
    Where applicable, we will provide notice and obtain your consent before collecting sensitive personal information.

3. How We Use Your Information

We use your personal information for the following purposes:

  • To process and manage reservations, payments, and check-in/check-out
  • To communicate booking confirmations, updates, and service notices
  • To personalize your experience and fulfill specific guest requests
  • To improve our services, website functionality, and marketing campaigns
  • To send promotional materials or newsletters (only with your consent)
  • To comply with applicable legal, tax, or regulatory obligations
    We will not use your personal information for purposes beyond those for which it was collected, except as required by law or with your consent.

4. Consent

We will obtain your consent—either express or implied—before collecting, using, or disclosing your personal information, unless otherwise permitted or required by law.

You may withdraw your consent at any time by contacting us (see Section 10), subject to legal or contractual limitations.

5. Disclosure of Your Information

We do not sell or rent your personal information. We may disclose it in limited circumstances:

  • Service Providers: We may share information with trusted third-party providers (e.g., booking platforms, payment processors, and marketing tools) under contractual obligations to protect your data.
  • Legal Compliance: We may disclose your information to comply with legal obligations (e.g., court orders, subpoenas, or lawful requests by public authorities).
  • Business Continuity: In the event of a business transfer, merger, or reorganization, your data may be part of the transferred assets, in accordance with privacy law requirements.
    All third parties must adhere to confidentiality obligations and applicable privacy legislation.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes described in this policy or to comply with legal and financial record-keeping requirements. When no longer required, your information is securely destroyed or anonymized.

7. Data Security

We employ administrative, technical, and physical safeguards to protect personal information, including:

  • SSL encryption and secure server infrastructure
  • Limited access to personal data by authorized personnel only
  • Use of reputable third-party service providers with robust security measures
  • Routine monitoring of our systems for vulnerabilities
    Despite these efforts, no system can guarantee complete security. You are encouraged to take precautions when transmitting data over the internet.

8. Your Rights

Under Canadian and BC privacy laws, you have the right to:

  • Access the personal information we hold about you
  • Request corrections to inaccurate or incomplete information
  • Withdraw consent to our use of your personal data (subject to legal exceptions)
  • Request deletion of your information, where legally permissible
    To exercise these rights, contact us at the details provided in Section 10. We will respond within 30 calendar days, as required by law.

9. Anti-Spam Compliance (CASL)

We comply with Canada’s Anti-Spam Legislation (CASL). We will only send commercial electronic messages (CEMs), including newsletters or promotional emails, with your express or implied consent. You can unsubscribe at any time via the link in our emails or by contacting us directly.

10. Contact Information

If you have any questions about this policy or your personal data, please contact:
Rosemead House
429 Lampson Street
Victoria, BC V9A 5Y9
Email: [email protected]
Phone: 250-384-0940
Website: https://rosemeadhouse.ca

11. Changes to This Policy

We may revise this Privacy Policy from time to time to reflect changes in our practices or legal obligations. The updated policy will be posted on our Site with the revised “Effective Date.” Continued use of our Site or services after changes are made constitutes your acceptance of the revised policy.

Guest Wi-Fi Policy

Rosemead House offers complimentary Wi-Fi access to guests during their stay. By connecting to our Wi-Fi network, you acknowledge and agree to the following terms:

  1. Permitted Use:
    Wi-Fi access is for personal, non-commercial use only. Users may browse, stream, and communicate for lawful purposes.
  2. Prohibited Use:
    You must not engage in activities that violate Canadian laws or infringe on the rights of others. This includes but is not limited to:
  • Distribution of malicious software or content
  • Unauthorized access to other systems
  • Illegal downloading or copyright infringement
  • Harassment or dissemination of offensive material
  1. Security Disclaimer:
    While we take reasonable steps to secure the network, we cannot guarantee absolute security. Users are responsible for protecting their own devices and data. We recommend the use of a VPN for sensitive transactions.
  2. Monitoring and Logging:
    We reserve the right to monitor network traffic for security and maintenance purposes. Any monitoring will be conducted in a manner consistent with applicable privacy laws.
  3. Service Interruptions:
    Wi-Fi service is provided “as is.” Availability may be interrupted due to technical issues, maintenance, or other circumstances beyond our control.
  4. Privacy Considerations:
    Data transmitted over our network is not encrypted end-to-end. Users are responsible for ensuring the confidentiality of any personal or financial data transmitted while using our Wi-Fi.
  5. Service Interruptions:
    Wi-Fi service is provided “as is.” Availability may be interrupted due to technical issues, maintenance, or other circumstances beyond our control.
  6. Privacy Considerations:
    Data transmitted over our network is not encrypted end-to-end. Users are responsible for ensuring the confidentiality of any personal or financial data transmitted while using our Wi-Fi.

Confidentiality Policy

+

It is the strict policy of The Aragon Group that personal information, such as your name, postal and e-mail addresses or telephone numbers, is private and confidential. Accordingly, any personal information you choose to provide is stored in a secure location, is accessible only by our designated staff, and is used only for the purposes for which you provide the information, such as replying to your requests, inquiries and comments, sending you newsletters or notices of new developments or other purposes which are disclosed at the time of collection, with your consent or as permitted or required by law.

No Release of Information to Third Parties

+

Any personal information that you have entrusted to our care will not be released to third parties, except as necessary to fulfill a service you have requested.
We will release your personal information if required in a judicial or governmental investigation or proceeding.
We will not sell, distribute, post, copy, or otherwise disseminate your e-mail address or other personal information to others.

Links To Other Web Sites

+

Our website contains links to third party sites. Please be aware that The Aragon Group is not responsible for the privacy practices of such other sites. We encourage you to read their privacy policies.

Credit Card and Reservations

+

Aragon enacts Payment Card Industry Data Security Standard (PCI DSS) – a set of security standards designed to ensure that all companies that accept, process, store or transmit credit card information maintain a secure environment.

SONA and its suppliers are fully PCI compliant, ensuring that all credit card transactions are processed securely and in accordance with industry standards. We utilize encryption, tokenization, and secure payment gateways to protect customer payment data. Regular security audits and vulnerability scans are conducted to maintain the highest level of data protection.  

Additionally, our reservation system uses TLS, a cryptographic protocol that secures internet communication by encrypting data exchanged between devices. It ensures the privacy and integrity of information, safeguarding data from unauthorized access and tampering. TLS is essential for secure online activities, including browsing, email, and financial transactions.

Compass