Kula Software Systems, Inc., dba PonoRez, is committed to respecting your privacy and protecting your personal data. We understand that you need to be able to control personally identifiable information that you share with us. Personally identifiable information (PII) is any information that can be used to identify you, directly or indirectly.
We use your information to understand your needs and interests better, and to provide you with improved service. Our privacy practices are guided by international standards, including the principles of the EU General Data Protection Regulation (GDPR) and the following five fair information principles:
Awareness
Kula Software Systems, Inc., dba PonoRez, provides this Privacy Statement to make you aware of our privacy practices and the choices you can make regarding how your information is collected and used. Once you choose to provide us with personal data, we will only use it to support your customer relationship with us, in compliance with applicable data protection laws.
Choice
We will not sell, rent, or lease your personally identifiable information to third parties. We will not share your personal information without your consent, unless required by law or necessary to fulfill contractual obligations.
Any sharing of data with other Kula Software Systems, Inc. entities or business partners is done under strict confidentiality and data protection agreements. Where local country laws differ from those in the U.S., we apply the more stringent standard.
Access, Accuracy & Data Subject Rights (GDPR)
Kula Software Systems, Inc. dba PonoRez strives to keep your information accurate and up to date. You may request access to, correction of, or deletion of your personal data at any time.
Under GDPR, you also have the following rights:
- The right to access your data
- The right to rectification of inaccurate data
- The right to erasure (“right to be forgotten”)
- The right to restrict or object to processing
- The right to data portability
Special Feature – Data Purge on Request:
Upon request, we will permanently purge your personal information from our systems, except for data that must be retained for legitimate business purposes, including financial, tax, or legal record-keeping obligations.
To exercise your rights, we will take reasonable steps to verify your identity before granting access or processing deletion requests.
Security
We are committed to ensuring the security of your information. To prevent unauthorized access or disclosure, maintain accuracy, and ensure lawful use of information, we follow industry best practices, including compliance with PCI DSS standards of Visa/MasterCard.
- All credit card data is encrypted and securely transmitted to PayPal (a subsidiary of PayPal Holdings, Inc.) for processing.
- Credit card numbers used to hold reservations that are not processed at booking are used only for payment processing and not for other purposes.
- These credit card details are automatically purged from our systems every two months.
Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. Once no longer needed, data is securely deleted or anonymized.
Contact Us
If you have any questions about this Privacy Policy or wish to exercise your data protection rights under GDPR, please contact us at:
admin@ponorez.com