Privacy Policy

Last updated: July 31, 2025

Ski Central Asia (the “Website”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit skicentralasia.com (the “Site”) or otherwise interact with our content. This policy applies to all visitors and users of the Site worldwide. By using the Site, you agree to the terms of this Privacy Policy and consent to the practices described herein. If you do not agree with this policy, please discontinue use of our Site.

Information We Collect

We only collect personal information that is necessary for the operation of our Site and to provide our services to you. The types of data we collect include:

  • Information You Provide Voluntarily: When you engage with our Site (for example, by leaving a comment on a blog post or contacting us), you may provide certain personal information. This can include your name, email address, and any content you choose to submit in a comment or message. For instance, if you post a comment on one of our articles, we collect the data shown in the comments form (such as your name, email, and the comment itself) and your IP address and browser user agent string to help spam detection. If you contact us via email or a contact form, we will collect your name, email address, and the contents of your inquiry or message.
  • Information Collected Automatically: When you visit the Site, certain information is collected automatically about your device and usage of the Site. This may include your IP address, browser type, device type, operating system, referring URLs (the site or link that led you to our Site), and pages you view on our Site. We also gather dates/times of visits and other browsing actions. This data is collected through cookies and similar tracking technologies (described below) and through our web server logs or analytics tools. We may also infer an approximate geographic location from your IP address or, if you choose to allow it (for example, by consenting through your browser or device settings), collect location information to show location-based site features (such as nearby map information). Any location data collected is used only to provide the requested feature and is not stored on our servers in a way that identifies you personally.
  • Cookies and Tracking Technologies: Like most websites, we use “cookies” and similar technologies to collect some of the information mentioned above (such as usage data and device identifiers). Cookies are small text files placed on your device that help the Site function and gather analytical data. For example, if you leave a comment on our Site, you may opt-in to saving your name and email in cookies so that you do not have to re-enter them when you leave another comment. These cookies are for your convenience and typically last for a certain period (e.g., a few months) unless you clear them. We also use cookies to understand how users find and use our Site (e.g., which pages are popular, how you navigate our content) and to track affiliate referrals (explained in the “Third-Party Services and Links” section below). Please see Cookies and Tracking below for more details on our use of cookies and how you can control them.

We do not require you to create an account or provide any personal details merely to browse our Site. Other than the scenarios described above (commenting, contacting us, analytics, etc.), we do not actively collect personal data such as your address, phone number, or financial information. We also do not knowingly collect any sensitive personal data (such as health information, racial/ethnic origin, etc.), as our Site is informational and for general audiences about skiing in Central Asia.

How We Use Your Information

We use the collected information for the following purposes:

  • To Operate and Improve the Site: We process your information to present our content to you and to ensure the Site functions correctly. This includes using information to troubleshoot technical issues, to analyze site performance and usage trends, and to improve our content, layout, and services over time. For example, understanding which articles are most popular (through analytics) helps us create more of the content our users enjoy.
  • To Communicate with You: If you contact us with questions, comments, or requests, we will use your provided contact information (e.g., email address) to respond to you. We may also use your email to notify you of replies to your comments on the Site (if such feature is enabled), or to send administrative information (such as updates to our terms or this Privacy Policy).
  • To Manage Comments and User Contributions: The information you provide in comments is used to display your comment on the Site (along with your name or username as you provide it). We also use this information to moderate comments and filter out spam or inappropriate content. Your IP address and other metadata collected when you post a comment are used internally (and via spam-detection services) to protect our Site from malicious activity and spam.
  • For Analytics and Personalization: We use automatically-collected data (via cookies and similar trackers) to analyze how our Site is used. This helps us understand user demographics and traffic patterns on an aggregate level. For instance, we may determine how many users visit a particular article or which countries most of our visitors come from, allowing us to tailor our content or Site experience accordingly. This data is generally analyzed in anonymized or aggregated form; we do not use it to identify you as an individual, but rather to gain insights into overall usage of the Site.
  • Affiliate Program Tracking: We use cookies and referral information to facilitate our participation in affiliate marketing programs. When you click on an affiliate link on our Site (e.g., a link to a booking site or skyscanner), the cookies and referral data are used to track that you came from our Site so that if you complete a purchase, we can receive a commission. This process is handled primarily by the third-party affiliate partner (they set a tracking cookie on your browser when you click the link). We do not receive personally identifying information about you from this — we only receive aggregate reports or commission notifications. The use of your data in these cases is strictly for tracking the referral and crediting our account.
  • To Ensure Legal Compliance and Prevent Misuse: We may process and retain personal information as needed to comply with legal obligations (such as tax or accounting rules regarding any affiliate income) or to enforce our Terms and Conditions. We also use information as necessary to detect, prevent, and address fraud, abuse, security risks, and technical issues with the Site. This includes using data (like IP addresses or user agent information) in security logs and cooperating with law enforcement or other authorities if required by law.

We do not use your personal information for any automated decision-making or profiling that has legal or significant effects on you. In other words, we are not running algorithms to evaluate or predict aspects of you (such as creditworthiness, personal preferences beyond what is needed for analytics, etc.) without human involvement. All uses of data are as described above and are generally manual or simple automated processes that do not adversely affect your rights.

Cookies and Tracking Technologies

As noted, our Site uses cookies and similar tracking technologies to enhance your experience and collect certain information:

  • Types of Cookies: We use both session cookies (which expire when you close your browser) and persistent cookies (which remain on your device for a set period or until deleted). Cookies on our Site serve different functions. Some cookies are necessary for technical reasons (for example, to enable core site functionality like navigating between pages or remembering your cookie consent preferences). Other cookies are functional (like remembering your input details in comment forms) or related to performance/analytics, helping us understand how the Site is usedermly.io. We also utilize third-party cookies set by external services integrated into our Site (detailed below under Third-Party Services).
  • Analytics: If we use analytics services such as Google Analytics (a common website analytics tool), those services will set cookies to collect information about Site usage. The information collected may include your IP address, browser type, pages visited, and time spent on pages. We configure such analytics to anonymize IP addresses if possible, and we use the insights to improve content and usability. Google Analytics may use its own cookies to track users’ interactions; you can read how Google uses data in its Privacy Policy and even opt out of Google Analytics by installing a browser add-on if you wish.
  • Affiliate Tracking Cookies: As part of our affiliate partnerships (for example, with Booking.com or Skyscanner), when you click an affiliate link on our Site, a cookie is placed on your browser by the affiliate program to track that click. This cookie contains a unique identifier but does not contain personally identifiable information about you; it simply notes that an anonymous user (you) came from our Site. If you later make a purchase on the affiliate’s site, that cookie allows them to attribute the sale to our Site and we may earn a commission. These affiliate cookies typically have a set expiration (e.g., 24 hours or a few days, depending on the program). We do not control the cookies set by affiliate partners, but we want to inform you of their presence. (For more details, refer to the privacy policies of the respective affiliate services, as they will explain their cookie usage in depth.)
  • Other Third-Party Cookies: When we embed content or services from third parties (such as Google Maps), those providers may set cookies as well. For instance, Google may set cookies to remember your preferences or track usage of map features.

Cookie Consent: Depending on your jurisdiction, you may be prompted with a cookie consent banner or notice when you first visit our Site. If required by law (e.g., in the EU/UK), we will request your consent for non-essential cookies (such as analytics and affiliate tracking cookies) before those are set on your device. You have the right to accept or decline such cookies. If you opt out, we will not set those cookies, and the Site will still function, though some features (like personalized content or accurate analytics) may be limited.

Managing Cookies: You can control and delete cookies through your browser settings at any time. Most web browsers allow you to refuse new cookies, delete existing cookies, or notify you when a new cookie is being set. Please note that blocking all cookies might impact some features of our Site. For more detailed information on how to manage cookies, you can visit resources like AllAboutCookies.org. Additionally, if we implement a cookie consent tool on our Site, you can use it to customize your cookie preferences at any time.

By continuing to use our Site with cookies enabled in your browser (after having the opportunity to consent where required), you consent to our use of cookies as described in this policy.

Our Site incorporates or links to content from third-party services. Please note that we do not control these third-party services and they have their own privacy policies. This section explains how external services are used on our Site and what data may be shared or collected as a result:

  • Affiliate Programs: Ski Central Asia participates in affiliate marketing programs with third-party companies, such as Booking.com (for accommodations), Skyscanner (for flights), and potentially other travel or ski-related services. This means that when we include a link or recommendation for a product or service, that link may be an affiliate link. If you click on an affiliate link on our Site, you will be directed to the third party’s site. In order to track and credit our referral, a cookie will be placed on your browser by the third-party affiliate network or merchant when you click the link. This cookie lets the merchant know that you came from our Site. If you proceed to make a purchase or booking, we may receive a commission on that sale. No personal information is transmitted from us to the affiliate; we do not share your name or any other personal data with them in this process. The only information involved is the tracking ID in the cookie and possibly non-personal referral info (like an ID for our site). However, the third-party will handle any personal data you provide on their site (for example, if you book a hotel, you will enter your details on Booking.com and that is under their privacy policy). We encourage you to review the privacy policies of any external sites you visit through our links. We are not responsible for the privacy practices of those websites, but to give you an example: Booking.com’s Privacy Statement and Skyscanner’s Privacy Policy will detail how they handle your data once you leave our Site for theirs.
  • Google Maps (WP Go Maps Plugin): We use the WP Go Maps plugin (formerly WP Google Maps) to embed interactive maps on our Site, for example to show ski resort locations or other geographic information. These maps are powered by Google Maps. When you view or interact with an embedded Google Map on our Site, your browser will connect to Google’s servers (which may be located outside your country) to retrieve map data. In doing so, Google may automatically collect certain information about you, such as your IP address, device info, and your interactions with the map (e.g., zooming, clicking markers). Google may also set cookies or use existing Google cookies on your browser to remember preferences and track usage of their services. This means that using the map on our Site can result in Google processing your data for their own purposes (such as improving Google Maps or for security). We do not receive any of the personal data Google collects from maps beyond the map content that we embed. We have enabled the WP Go Maps plugin’s GDPR compliance features where possible to minimize data collection (for example, the plugin may hide the map until you click to load it, which serves as implied consent to contact Google’s servers). Still, any data processing by Google is covered by Google’s Privacy Policy, which you can find at policies.google.com/privacy. If you are not comfortable with Google collecting your data via maps, you may choose not to interact with the maps on our Site.
  • Image Optimization (Smush): We utilize the Smush plugin (by WPMU DEV) on our WordPress site to optimize images (compressing and resizing images for faster load times). Smush may, in the process of optimizing images, send image files from our Site (including those you see on pages) to WPMU DEV’s servers to perform the compression. Importantly, Smush does not collect any personal user data in this process – it deals with image files. However, images can sometimes contain embedded metadata (EXIF data) such as camera information or possibly geolocation of where a photo was taken. Smush is configured to strip out such metadata from images upon compression. This means if any image on our Site had personal data in its metadata (for example, GPS coordinates of a photographer), that data is removed and not retained by us or WPMU DEV. WPMU DEV’s servers do not store the images beyond the optimization process. No visitor browsing data or IP addresses are sent to WPMU DEV by Smush (except as needed to transmit the image files). In summary, the Smush plugin’s operation should not impact your privacy as a user, but we mention it for transparency since it’s a third-party service used on our Site’s backend.
  • Yoast SEO: We use Yoast SEO plugin for search engine optimization of our Site’s content. This plugin helps us structure content for better visibility on search engines. Yoast SEO does not collect or process any personal data from visitors. It operates entirely on the backend (for example, generating metadata for pages). There are no cookies or tracking of users by this plugin. You generally will not see any difference in your experience due to Yoast, aside from more relevant search results.
  • Joli Table of Contents: This plugin creates a table of contents for our blog posts for easier navigation. It is a purely front-end feature for usability. It does not collect personal information from you. It might use JavaScript in your browser to allow dynamic scrolling, but it doesn’t set cookies or send data to external servers. It only uses your local browser capabilities to show/hide the table of contents on the page.
  • Spam Detection (Akismet or similar): To protect our Site from spam comments, we may use an automated spam detection service (for example, the WordPress-built Akismet plugin). If you leave a comment on the Site, the information you provide (comment text, name, email) and technical info (IP address, user agent) may be transmitted to the spam detection service. This allows the service to analyze the data and compare it against known spam patterns or databases. Akismet, for instance, will temporarily hold and check comment data to determine if it’s spam. If your comment is not flagged as spam, it is posted normally; if it is flagged, we review it. The providers of such spam filtering services may store comment data for a short time for analysis, but they have their own privacy safeguards and do not use this information for any purpose other than spam filtering. By commenting on our Site, you acknowledge that your comment and related information might be processed by these third-party anti-spam services. We only use trusted services in line with privacy best practices.

External Links: Our Site content may include links to third-party websites not affiliated with Ski Central Asia (for example, a link to a mountain equipment store or a reference to an informational source). If you click on a third-party link, you will be directed to that third-party’s site. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party websites. We strongly advise you to review the Privacy Policy of every external site you visit. This Privacy Policy applies only to Ski Central Asia and not to any external services.

In summary, no personal data that we collect is sold or shared with third parties for their independent use outside of the scenarios described above (affiliate tracking, map loading, spam checking, etc.), and those scenarios either do not involve personal data being shared by us or are necessary for site functionality. We include these details in our Privacy Policy to be transparent about all third-party integrations that may affect your data.

How We Share Your Data

We take your privacy seriously. As a general rule, we do not sell, rent, or trade your personal information to third parties for their marketing or other purposesprivacypolicies.com. We also avoid sharing personal data except in the limited circumstances outlined here:

  • Service Providers: We may share information with third-party vendors and service providers who perform functions on our behalf to operate and maintain the Site. For example, our web hosting provider necessarily processes any data that flows through the website, our analytics provider (if any) processes usage data for analytics reports, and email service providers (if we communicate via email or plan a newsletter) would process your email address. These service providers are given only the information needed to perform their specific services, and we contractually require them to protect your data and use it only for the purposes we specify.
  • Affiliate and Referral Tracking: As described in the Affiliate Programs section, when you click affiliate links, tracking information (not directly identifying you) is shared between our Site and the affiliate program. This is more of an automated process than a manual “sharing” by us, but effectively the affiliate partner knows that a user from our Site (identified by a code) visited them. We do not provide personal details like your name or contact to these partners in doing so.
  • Legal Compliance and Protection: We may disclose personal information if required to do so by law or in the good-faith belief that such action is necessary to comply with applicable laws, regulations, legal process (e.g., a court order or subpoena), or enforceable governmental request. We may also disclose data as necessary to enforce our Terms and Conditions, investigate or respond to potential violations, suspected fraud, security or technical issues, or to protect the rights, property, and safety of our users, the Site, or others. This includes exchanging information with other companies and organizations for fraud protection and spam/malware prevention, but not for commercial purposes.
  • Business Transfers: If in the future Ski Central Asia is involved in a merger, acquisition, sale of assets, or other business transaction, user information (which would likely just be things like comment data or email subscriber lists, if any) may be transferred to the successor or new owner as part of that deal. If that happens, we will ensure that the new owner is bound to respect the terms of this Privacy Policy (or we will notify you and obtain any necessary consents). We will also notify users via a prominent notice on our Site or via email if your data becomes subject to a different privacy policy as a result of a business change.
  • With Your Consent: In situations where you have explicitly given us consent to share your information with third parties, we will do so as per the terms of that consent. For instance, if we ever run a special promotion or survey in partnership with another organization and you agree to have your information shared, we will honor that agreement. (Any such case will be clearly explained at the time of obtaining your consent.)

Aside from the cases above, we do not share your personal data with third parties. Specifically, we do not disclose your personal information to third parties for their own marketing or advertising purposes, nor do we engage in selling your data for money. If this ever changes, we will update this Privacy Policy accordingly and obtain any required consents. (Note for California residents: we also do not “sell” your personal information as defined under the CCPA, which generally includes sharing information for the benefit of a third party – we don’t do that.)

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by relevant laws. Different types of data may have different retention periods:

  • Comments: If you leave a comment on our Site, the comment and its associated metadata are stored indefinitely. We keep comments online so that we can maintain the conversation history and content of our blog posts. This allows future visitors to read past comments and for us to recognize and approve any follow-up comments automatically. If you wish to have one of your comments removed, you can contact us and, provided we can verify you are the original author, we can delete or anonymize it upon request.
  • Contact Communications: If you contact us via email or a contact form, we will retain the correspondence (including your email address and message) for as long as necessary to respond to you and maintain a record of our communication. We may keep such correspondence for some time in case you reach out again or for our own reference, but generally not longer than necessary. Emails in our inbox might be periodically deleted if they are no longer needed. If you want us to delete an email conversation, let us know and we will do so unless we are required to keep it for legal reasons.
  • Analytics Data: Any analytics data collected (e.g., via Google Analytics) is retained as long as needed for analysis. Google Analytics, for example, allows us to set data retention controls – commonly, we might retain user-level and event-level data for a period like 14 months, after which it gets deleted automatically. We receive analytics reports in aggregate form (e.g., total page views per month) which do not identify individuals, and we may retain these reports indefinitely for historical analysis. However, raw analytics logs or user-level data are either anonymized or purged according to our analytics provider’s settings.
  • Logs and Security Data: Our web server may keep log files that record visits to the Site (these logs typically include IP addresses, date/time, pages visited, etc.). Server logs are generally retained for a short period by our hosting provider for performance monitoring and security (often around 30 days, but it could vary). We use these logs to investigate any technical issues or security incidents and then they are rotated or deleted automatically by the server. Similarly, if we use security plugins or firewalls that log IP addresses of malicious attempts (like repeated login failures or blocked spam), those logs are kept only as long as necessary to address security and are routinely cleaned out.
  • Cookies: Cookies set on your device have their own retention durations. Session cookies expire when you close your browser. Persistent cookies have expiration dates set by the server. For example, an affiliate tracking cookie might last 7 days, a comment remember-me cookie might last a few months, and analytics cookies might last up to 2 years unless cleared. You can always manually delete cookies from your browser, and after expiration, they are not used. We have described cookie durations where relevant in the Cookies section above.
  • Affiliate Data: We do not directly collect or store your personal data for affiliate purposes, aside from being notified of an anonymous “conversion.” Any reports we receive from affiliates (e.g., that X booking was made via our link) do not contain personal user info and might be kept for accounting purposes. We maintain financial records of commissions earned for as long as required by tax laws, but those records only contain aggregate information, not personal details of any individual purchaser.

When personal data is no longer necessary for the purpose for which it was collected, and we are not legally required to retain it, we will delete, anonymize, or securely dispose of that data. For example, if you request that we remove your personal data (see Your Rights below), we will do so provided we have no legal obligation to keep it.

Please note that removal from our active systems may be followed by a short period in our backups (backup archives are kept to ensure we can recover from system issues). If we restore a backup that contains data you had previously requested deleted, we will re-delete that data after restoration.

Data Security

We implement reasonable and appropriate security measures to protect your personal information from loss, misuse, unauthorized access, disclosure, or alteration. These measures include technical, administrative, and physical safeguards:

  • Encryption: Our Site is secured via SSL/TLS encryption. This means that when you browse our Site or submit information (for example, by writing a comment or using a contact form), the data is encrypted in transit between your browser and our server. You can verify this by the “https” and padlock icon in your browser’s address bar.
  • Access Controls: Personal data collected (like comment information or emails) is accessible only to the Site owner/administrators who need to see it to perform their duties (such as moderating comments or replying to inquiries). We protect administrative login areas with strong passwords and, where possible, two-factor authentication to prevent unauthorized access. We also keep our content management system (WordPress) and plugins updated to patch any security vulnerabilities.
  • Hosting Security: Our website is hosted by reputable hosting providers that employ security measures at the server and network level. This includes firewalls, intrusion detection systems, malware scanning, and regular backups of the Site’s data. We rely on their security protocols to ensure that data on the server is stored safely. Where available, we utilize additional services (like security plugins or CDN security features) to add layers of protection.
  • Monitoring and Prevention: We actively monitor the Site for potential security breaches or attacks (such as suspicious login attempts or spam floods). If any unusual activity is detected, we investigate and take action, which may include blocking IP addresses or employing additional security measures. Our spam and firewall tools help filter out malicious content automatically. We also limit the amount of personal data we collect to the minimum necessary, so the risk is reduced (for example, since we don’t collect highly sensitive data, the impact of a potential breach is minimized).

Despite all measures in place, no website or Internet transmission is completely secure. We cannot guarantee that unauthorized access, hacking, data loss, or other breaches will never occur. However, we strive to protect your information and regularly review our security practices to adapt to new threats.

Data Breach Procedures: In the unlikely event of a data breach that involves your personal information, we will promptly notify affected users and the appropriate authorities as required by law. We will also take immediate steps to mitigate the breach and prevent further unauthorized access. Our notification to you (if you are affected) will include an overview of the breach, the data involved, any steps we have taken or will take in response, and any steps we recommend you take to protect yourself (if applicable). We adhere to any applicable breach notification laws, such as the GDPR’s 72-hour notification rule for serious breaches, and will act accordingly.

International Data Transfers

Our audience is global, and we ourselves may operate or use services that are based in different countries. As a result, your personal information may be transferred to, stored in, or processed in a country other than your own. For example, our website might be hosted on servers in a country different from where you reside, and the third-party services we use (Google, affiliate networks, email service providers, etc.) might be located in the United States or other countries. This means that when we collect your data, it might be moved across international borders.

If you are located in the European Economic Area (EEA), the United Kingdom, or another region with data protection laws, please note that we may transfer information to countries that may not provide the same level of data protection as your home country. In such cases, we take steps to ensure that appropriate safeguards are in place to protect your personal data in accordance with applicable laws. These safeguards may include:

  • European Commission Adequacy: We may transfer data to countries that have been deemed “adequate” by the European Commission, meaning they provide a comparable level of data protection to the EU’s standards.
  • Standard Contractual Clauses: We may rely on standard data protection clauses (also known as Model Contracts) approved by regulators, which legally bind the recipient of the data to protect your information according to EU law. For instance, if our hosting provider or email service is in a country not deemed adequate, we’ll have agreements in place based on these clauses.
  • Privacy Shield (Historical): While the EU-U.S. Privacy Shield framework was invalidated in 2020, some U.S. companies have certified to updated frameworks or similar standards. We ensure any U.S. partners handling personal data commit to strong privacy principles or other approved transfer mechanisms as required by law.

By using our Site or providing us with information, you understand that your data may be transferred to and processed in countries outside of your country of residence. We will protect it as described in this Privacy Policy, no matter where it is processed. If applicable, you have the right to be informed of the safeguards we have in place for international transfers of your personal data (you can contact us for more information on that, see Contact Us section).

Your Data Protection Rights

We respect your rights to your personal information. Depending on your jurisdiction (for example, if you are in the European Union, United Kingdom, California, or other regions with privacy laws), you may have certain legal rights regarding the personal data we hold about you. These rights may include:

  • Right to Access: You have the right to request a copy of the personal data we hold about you. We will provide you with a copy of this data in a commonly used format, explaining the categories of data, the purpose for which we process it, and any parties with whom it’s shared. (Most of the data we have, if any, would be things like your comment information or email correspondence.)
  • Right to Rectification: If any of the personal information we have about you is incorrect or incomplete, you have the right to request that we correct or update it. For instance, if you have left a comment with a misspelled name and wish to correct it, or if your email address has changed and you have an ongoing conversation with us, let us know and we’ll update our records.
  • Right to Erasure (Right to be Forgotten): You have the right to request that we delete the personal data we hold about you. You can, for example, ask that we remove comments you have posted in the past or delete email correspondence you’ve had with us. We will do so, provided we do not have a compelling reason (legal or legitimate business need) to keep that data. Note that we may retain information if required for legal obligations or if it’s in an anonymized form that no longer identifies you.
  • Right to Restrict Processing: You have the right to ask us to limit the processing of your personal information in certain circumstances. For example, if you contest the accuracy of the data or have objected to our processing (see below), you can request that we restrict use of your data until the issue is resolved. This doesn’t mean we delete it, but rather that we hold onto it and don’t use it in the meantime beyond storing it.
  • Right to Object: You have the right to object to our processing of your personal data if we are processing it on a legal basis of legitimate interest or for direct marketing. In practice, we only use your data for the purposes described (which are mainly your consent – e.g., posting your comment, or legitimate interests like improving our site). If you object to any specific use, we will reassess our processing. For instance, you can object to us using your data for analytics; if so, we will consider if we can cease that processing (and likely we would exclude your data).
  • Right to Data Portability: For data that you have provided to us and that we process by automated means on the basis of consent or contract (this is typically applicable to more complex services than our blog, but for completeness), you have the right to request that we provide that data to you or directly to another service in a structured, commonly used, machine-readable format. Practically, this might apply if you had provided a large amount of data to us in some form – in our case, it might simply mean we can give you an export of all comments you made or all emails you sent us, if you so wished.
  • Rights Under the CCPA (California Residents): If you are a California resident, you have the right to request that we disclose to you the categories and specific pieces of personal information we have collected about you in the past 12 months, the categories of sources for that information, the business purpose for collecting it, and the categories of third parties with whom we shared it. You also have a right to request deletion of your personal information (with similar exceptions as above) and the right to opt-out of the sale of personal information. As stated, we do not sell personal information. Additionally, California law provides that you have the right not to receive discriminatory treatment for exercising any of your privacy rights. We honor that: we will never deny you services or provide you a different level of service because you exercised your rights.
  • Right to Withdraw Consent: In cases where we rely on your consent to process your personal data (for example, if in the future you subscribe to a newsletter, that’s consent-based, or if you consent to cookies), you have the right to withdraw that consent at any time. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal. For instance, if you consented to cookies but then withdrew it, we will stop the data collection moving forward.
  • Right to Lodge a Complaint: If you believe that we have infringed your privacy rights, you have the right to lodge a complaint with a supervisory data protection authority. If you are in the EU, this would be your local Data Protection Authority; in the UK, the Information Commissioner’s Office (ICO); in Canada, the Office of the Privacy Commissioner; etc. We kindly request that you contact us first so we can address your concerns directly, but you are entitled to contact the authorities at any time.

To exercise any of these rights, please contact us using the contact details provided in the Contact Us section below. We may need to verify your identity before fulfilling certain requests (for example, to ensure that it’s actually you making the request and not an unauthorized person). For most requests (like accessing or deleting your data), verification might be as simple as contacting you via the email address we have on file for you or asking you to confirm details of your interactions with the Site.

We will respond to your request within the timeframe required by law. For example, under GDPR we generally have one month to respond, and under CCPA we aim to respond within 45 days (with a possible extension if necessary, which we would inform you about). There is usually no fee for exercising your rights, but if a request is manifestly unfounded or excessive, we may charge a reasonable fee or refuse to act on it (we will explain why in such a case).

We want to emphasize that we handle very minimal personal data, but we are fully committed to honoring the rights of users regarding whatever data we do have. Your privacy and control over your information are important to us.

Children’s Privacy

Our content is generally intended for a general audience interested in skiing and travel. The Site is not directed at children under the age of 13, nor do we knowingly collect personal information from children under 13 years old. In fact, given the nature of our content (skiing in Central Asia) and the ability to make purchases through affiliates, our target audience is adults (and possibly teenagers) who are planning travel. If you are under 13, please do not use or provide any information on this Site, especially personal details or commenting on posts.

If we discover that we have inadvertently collected personal information from a child under 13 without verifiable parental consent, we will take immediate steps to delete that information from our servers. For example, if a child were to submit a comment or contact us, we would remove that data upon recognizing that the person is underage.

Parents or guardians who believe that we might have any information from or about their child under 13 should contact us promptly (see Contact Us below). We will then delete the data in question.

For minors above 13, we also recommend caution and parental guidance. If you are between 13 and 18 years old, you should review this Privacy Policy with your parent or guardian to ensure you understand it, and you should only use the Site with their consent and supervision. Some jurisdictions (like the EU) have higher age thresholds (e.g., 16) for certain data rights (like consenting to data processing). We do not knowingly target anyone under 16 with any data collection beyond the scenarios described. If you are under the age required by your country to consent to data collection (and parental consent was not obtained), please do not provide us with personal information.

In summary, we do not intend to collect data from children and our Site is focused on adult travel enthusiasts. We include this section to comply with laws like the U.S. Children’s Online Privacy Protection Act (COPPA) and similar regulations, and to inform all users of our stance on minors’ data.

Changes to This Privacy Policy

We may update or modify this Privacy Policy from time to time to reflect changes in our practices, to clarify our policies, or to ensure compliance with legal requirements. When we make changes, we will revise the “Last updated” date at the top of this policy. The updated Privacy Policy will be posted on this page, and it will be effective when posted (unless a later date is specified).

If we make any significant changes to how we handle your personal information, we will take additional steps to notify you. This might include posting a notice on our website’s homepage, adding a banner or pop-up about the change, or, if we have your email address (for example, if you are an email subscriber), sending you an email notification. We encourage you to review this Privacy Policy periodically, especially before you provide any new personal data, to stay informed about our data practices and any updates.

Your continued use of the Site after any changes to this Privacy Policy constitutes your acceptance of the revised policy. If you do not agree with changes, you should stop using the Site and can request us to remove your data as per Your Rights above.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal information, please feel free to contact us:

Email: admin@threepeaksresort.com (preferred method)

Mailing Address: NA

We will do our best to respond promptly to your inquiries and address any issues you bring to our attention. Your privacy is important to us, and we welcome feedback or questions on any aspect of this policy.

Additional Note: This Privacy Policy is provided for Ski Central Asia in line with global privacy standards, including GDPR, CCPA, and other relevant laws. We have made an effort to be transparent and comprehensive about our data practices. If anything is unclear or if you need more information, please do not hesitate to reach out via the contact information above.