• Home
  • Privacy Policy

Privacy

Ukan Anlu Hotel Privacy Policy

Thank you for visiting “Ukan Anlu Hotel” (hereinafter referred to as “the Company” or “this Website”). We value and respect your privacy and the protection of your personal data. We are committed to adopting reasonable and necessary technical and organizational measures in accordance with applicable laws and regulations, including the Personal Data Protection Act of the Republic of China (PDPA) and the EU General Data Protection Regulation (GDPR), to ensure the security and lawful use of your data. Please read the following Privacy Policy carefully to understand how we collect, process, use, and protect your personal data.
 

1. Scope of This Policy

This Policy applies when you use any services provided by the Company (including but not limited to the website, phone reservations, on-site bookings, check-ins, dining, membership registration, event registration, ticket purchases, and customer service), involving the collection, processing, and use of personal data. If you are redirected to a third-party website or service through this Website, their data protection measures do not fall under this Policy. Please refer to their respective privacy policies.
 

2. Purposes and Legal Basis for Personal Data Collection

The Company collects, processes, and uses your personal data for the following purposes:
  • Providing accommodation, dining, leisure facilities, events, and related services.
  • Identity verification, payment processing, financial transactions, and account management.
  • Membership management, marketing promotions, and notifications of special offers (with your explicit consent).
  • Customer service and satisfaction surveys.
  • Security management, anti-fraud measures, misuse prevention, and legal compliance.
  • Operational analysis and statistical research (using anonymized or de-identified data).
The Company processes your personal data based on the following legal grounds:
  • Contract performance: Providing accommodation, dining, and related services.
  • Legal obligations: Identity verification, tax reporting, security management.
  • Legitimate interests: Customer service, security maintenance, operational analysis.
  • Consent: Marketing and promotional notifications.
 

3. Categories of Personal Data Collected

In accordance with the PDPA and relevant guidelines, the Company may collect the following categories of personal data:
  • Basic identification data: Name, gender, date of birth, nationality, ID number, ARC number, or passport number.
  • Contact information: Phone number, mobile number, email address, mailing or delivery address.
  • Payment information: Credit card number, bank account number, payment records.
  • Accommodation and consumption records: Booking details, check-in dates, dining and activity transactions, preferences, and special dietary or health requirements (with your explicit consent).
  • Online identifiers: IP address, cookies, browser information, usage time, viewing records.
  • Other information you voluntarily provide: Through customer service, questionnaires, forms, event registrations, etc.
※ Sensitive data (special categories of personal data) will only be collected when necessary and with your explicit consent (e.g., dietary restrictions, health conditions, accessibility needs).
 

4. Retention Period, Location, Recipients, and Method of Use

The Company will use your personal data from the date of collection until the purpose of collection ceases, or as required by law. Member data will be retained for up to 5 years after membership termination (unless otherwise required by law) and will then be deleted or anonymized. Transaction and accounting records will be retained for up to 7 years in accordance with tax and accounting laws.

If cross-border data transfer is involved, the Company will comply with applicable regulations and ensure that the recipient provides adequate data protection. Recipients include the Company and authorized personnel, partners or outsourced service providers (such as payment processors, IT system providers, dining or event partners, limited to necessary services), as well as government authorities or academic institutions for public interest statistical or research purposes (only de-identified data).

Your personal data will be processed through automated or manual means based on the principles of lawfulness, fairness, and necessity.
 

5. Cross-Border Data Transfer

If cross-border transfer occurs, the Company will comply with GDPR Standard Contractual Clauses (SCCs), ensure the receiving country has been granted an adequacy decision by the EU, or adopt other legally permitted protective measures to ensure equivalent data protection overseas.
 

6. Marketing Communications and Opt-Out

The Company may send you emails, text messages, or push notifications for marketing or promotional purposes, provided that we have obtained your explicit consent. You may withdraw your consent at any time via the unsubscribe link or by contacting customer service, and we will immediately cease such use.
 

7. Cookies and Third-Party Technologies

This Website may use cookies or similar technologies to enhance service quality and user experience, including but not limited to:
  • Necessary cookies (maintaining website functionality and security)
  • Analytics cookies (e.g., Google Analytics for traffic and behavior analysis)
  • Marketing cookies (e.g., Meta Pixel for remarketing)
You may manage your preferences through our cookie settings center or disable cookies in your browser, though some functionalities may be limited as a result.
 

8. Data Security Measures

The Company adopts technical and organizational measures to protect your data, including but not limited to:
  • Firewalls, antivirus systems, and intrusion detection mechanisms.
  • Access restricted to authorized personnel who are bound by confidentiality agreements.
  • Regular personal data protection training for employees.
  • Outsourced vendors must sign confidentiality agreements and undergo audits.
In the event of a data breach or incident, the Company will notify authorities within 72 hours of discovery and inform affected individuals within a reasonable time while taking corrective actions.
※ The Company may adjust these measures in response to emergencies, legal changes, or regulatory requirements and will update this Policy within a reasonable timeframe.
 

9. Data Protection Officer (DPO)

If you have any concerns about the Company’s personal data protection practices, you may contact our Data Protection Officer:
  • Phone: +886 2 2731 9888
  • Email: mis@uketamohotel.com
 

10. Privacy of Minors

The Company does not knowingly collect personal data of individuals under the age of 16 (or a lower age as permitted by applicable law) without parental or guardian consent. If such data is inadvertently collected, it will be deleted immediately.
 

11. Rights of Data Subjects

You may exercise your rights under applicable laws, including requesting access, copies, supplementation, correction, cessation of collection/processing/use, or deletion of personal data.
The Company will respond within 30 days of receiving your request. For GDPR-related cases, the response period may be extended by up to 2 months, with written or electronic notification explaining the reasons and available remedies.
If your request affects the rights of third parties, violates legal requirements, or may endanger the Company’s legitimate interests, we may refuse or restrict your request with an explanation of the reasons.
 

12. Effects of Refusing or Withdrawing Consent

If you choose not to provide or withdraw personal data, it may result in:
  • Inability to complete booking, check-in, or payment.
  • Inability to participate in events or enjoy membership benefits.
  • Inability to provide services for special requirements.
 

13. Policy Updates

This Policy will be updated periodically in response to regulatory changes or service needs. All amendments will be announced on this Website. In the event of major changes, we will notify you by appropriate means (e.g., email or text message) to safeguard your rights.
 

14. Governing Law

This Policy is governed by the laws of the Republic of China (Taiwan). Any disputes shall be subject to the jurisdiction of the Taipei District Court as the court of first instance.
 

We believe that privacy is an essential part of the modern hospitality experience. Ukan Anlu Hotel operates with transparency and professionalism to ensure that your information receives the protection and respect it deserves.

icon-booking Book Now
gotop
For the best website experience, the Ukan Anlu Hotel website uses its own and third-party cookies for technical, analytical, and optimization purposes.
By clicking “Accept All” or continuing to browse this website, you agree to our use of cookies and our Privacy Policy.
View Privacy Policy
Hi, how can I help you? Talk to me right now!