1. Israel Youth Hostels Association I.Y.H.A
  2. Privacy Cookies Notice

Privacy Cookies Notice

 

Privacy and Cookie Notice

Our privacy policy was last updated on 25.05.2023

Introduction
  1. Welcome to Israel Youth Hostels Association I.Y.H.A(hereinafter: “the Association” or “IYHA” or “Us” or “Our” or " HI Israel")Website. Hosteling International (HI) Israel was founded in 1937 as a non-profit organization under the Ministry of Education’s Youth and Social Administration.
  2. HI Israel is a non-profit public organization, and its main areas of activity are providing affordable hosteling, tourism, and tour guides for individuals, families, and groups from Israel and abroad, all for an affordable budget. HI Israel is a pioneer in adopting international quality and excellence standards in the fields of hosteling, tourism, and tour guides.
  3. At IYHA, We prioritize the privacy of Our Users and take extensive measures to uphold it. We consistently invest in advanced security controls and follow Industry-leading standards to protect Your personal information. Our commitment to data privacy is based on transparency, responsible data handling, and the goal of maintaining the trust of Our Users.
  4. This privacy policy is designed to provide information on how We collect, use, process, store, and protect personal information.

Please Note: You have the freedom to choose whether -or not- to provide Us with any personal data. By voluntarily providing Us with such information, You acknowledge and consent that it is done willingly for the purposes outlined in this Privacy Policy. Furthermore, You agree that We may retain Your personal information in accordance with this Privacy Policy and any relevant laws and regulations.

Definitions/Interpretations

The words of which the initial letter is capitalized have meanings defined under the following conditions.
In this Privacy Policy, these words refer to or means as follows:

  1. "Association" "IYHA" -referred to Israel Youth Hostels Association"We", "Us" or "Our" in this Privacy Policy. For the purpose of the GDPR (EU General Data Protection Regulations), IYHA is the Data Controller.
  2. "GDPR"- EU 2016/679 General Data Protection Regulation.
  3. "Data Controller"- for the purposes of the GDPR, refers to the company as the legal body, which alone or jointly with others determines the purposes and means of the processing of Personal Data.  IYHA is the data controller responsible for the processing of Your data, exceptions are outlined in this data protection notice.

Our contact details are as follows:
Israel Youth Hostels Association
Tzur 5 St. Mevaseret Zion,
PO Box. 2952,
Jerusalem, Israel
E-mail: [email protected]
Phone:  1-599-510-511
Fax: 02-6558431

  1. "Service"- refers to the Website and call center through which You can book accommodation in one of the IYHA-affiliated hostels in Israel, order an accommodation and training package, register for seminars via a dedicated link on the Website, and/or contact IYHA.
  2. "You" (the User)- means the individual who accesses, uses, or interacts with Our services,or other legal entity on behalf of which such individual is accessing or using the Service, as applicable,and whose personal data may be collected, processed, or stored by Us in accordance with Our privacy policy. You can be referred to as the Data Subject or as the User as You are the individual using the Service.
  3. "Personal Data"is any information that relates to an identified or identifiable individual.
  4. Identifiable Individual” is one who can be identified, directly or indirectly, in particular by reference to an identifier.
  5. "Website"- refers to IYHA.org.il, accessible from https://en.iyha.org.il/
  6. "Account"- a unique and secure User profile created within Our Website, enabling the User to access certain features, functionalities, or content.
  7. "Cookies"-Small text files stored on a User's device by a Web browser when visiting a Website or using an application. Cookies are used to remember User preferences, enhance Website functionality, and enable personalized content delivery. They may contain information such as login details, browsing history, and User-specific settings. (For more info, please read Our Cookies Policy).
  8. "Usage Data" refers to a subset of non-personally identifiable information automatically collected from Users when they interact with Our Website, application, or service. Usage data may include but is not limited to, browser type, operating system, device information, IP address, access times, pages viewed, and User interactions.
  9. "Device"- means physical electronic equipment used by the User to access, interact with, or engage with Our service. Examples of devices include but are not limited to, desktop computers, laptops, tablets, smartphones, and smartwatches.
  10. "Service Provider"- means a third-party company or individual that provides specific services or solutions to the Company, often in relation to the processing of personal data or the delivery of certain features and functionalities within Our Website, application, or service. Service providers may include, but are not limited to, Web hosting providers, payment processors, and analytics companies. For the purpose of the GDPR, Service Providers are considered Data Processors.
  11. "Data Processor"- An entity that processes personal data on behalf of the data controller, often a third-party service provider engaged by the controller.
  12. "Data Processing"- Any operation or set of operations performed on personal data, including collection, recording, organization, storage, adaptation, retrieval, consultation, use, disclosure, or erasure. 
Types of Data Collected and How We collect them:
  1. Personal Data

While using Our Service, We may request personally identifiable information from You that can be used to contact or identify You. This data may include, but is not limited to:
When contacting Us via mail/phone:

  • Email address
  • First name and last name
  • Phone number
  • The content of Your request

When You book a reservation at a hostel/package (including a guided tour):

  • Email address
  • First name and last name
  • Phone number
  • The content of Your request
  • Your credit card details (through third-party payment vendor PeleCard Ltd. 516667136)

WhenYou register for a seminar/open a User account for seminar registration:

  • Username, Full name, ID number/Passport number
  • Birth date, Gender, Address
  • Email address, Phone number
  • Medical information about food allergies/medical problems such as physical disability for accessibility arrangements, HMO (Health Maintenance Organization)
  • any other Personal Data that You decide to provide/supply Us with 
  1. Usage Data
  2. Usage Data is collected automatically when using the Service.
  3. Usage Data include details such as browser type, operating system, device information, IP address, access times, page views, and interactions with the platform. The main purpose of collecting this data is to analyze and enhance platform performance and improve the overall User experience. This is carried out in accordance with Our Privacy and Cookie Notice.
  4. When You use the Service on a mobile device, certain information may be collected automatically, including, but not limited to, the type of mobile device, unique ID of Your device, IP address of Your mobile device, operating system of Your mobile device, type of mobile internet browser, unique device identifiers, and other diagnostic data. Additionally, We may gather the information that Your browser sends whenever You visit Our Service or access it through a mobile device.
  5. For more information about the cookies We use and Your choices regarding cookies, please visit Our Cookies Policy.
  6. Please keep in mind that Our Privacy and Cookie Notice explains how We use and protect the data collected through these methods and the options and rights You have regarding Your personal data. 
Purpose of Data Processing and Use of Your Personal Data

We may use Personal Data in accordance with this Privacy Policy and the Terms and Conditions, for the following purposes:

  • To improve, support and analyze Our services: We may use Your Personal Data to conduct research and analysis to improve Our services. This includes gathering feedback on Our services, analyzing Website traffic and Usage patterns, and identifying areas for improvement.
  • To provide You with the requested services: We use Your Personal Data to respond to Your requests, such as providing customer service, and delivering Our services to You.
  • To Manage Your Account: to manage Your registration as a User of the Service. The Personal Data You provide can give You access to different functionalities of the Service that are available to You as a registered User such as providing Our products and services and/or downloading an asset.
  • To communicate with You: We may use Your personal data to communicate with You about Our services, including marketing communications and promotional offers. If You have opted-in to receive marketing communications from Us, You can always opt out by following the instructions provided in the communication.
  • To manage Your requests: To attend to and manage Your requests to Us as well as provide an answer and further information to the extent requested.
  • To comply with legal obligations: We may use Your personal data to comply with applicable laws, regulations, and other legal requirements, including responding to lawful requests from law enforcement agencies and government authorities.
  • For other legitimate business purposes: We may use Your personal data for other legitimate business purposes, such as enforcing Our terms of service, protecting Our rights and interests, and preventing fraud or other illegal activities. 
Share and Disclose Your Personal Data
  1. With Service Providers: We also disclose information, including Personal Data We collect from and/or about You, to Our trusted third-party service providers and subcontractors, who have agreed to confidentiality restrictions and who use such information solely on Our behalf in order to: (1) help Us provide You with the Services; (2) aid in their understanding of how Users are using Our services (3) Cloud hosting services; Such service providers may include, but are not limited to, as follows:
  • PioNet
  • Duve
  • Google Analytics
  • SilverByte
  • PeleCard 
  • Simplex
  • Google GCP
  • Malam team
  1. With the Ministry of Education: We share Your information with the Ministry of Education for seminar registration.
  2. With Your consent: We may disclose Your personal information for any other purpose with Your consent.
  3. Law enforcement: Under certain circumstances, IYHA may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).
  4. Other legal requirements: IYHA may disclose Your Personal Data in the good faith belief that such action is necessary to:
    • Comply with a legal obligation.
    • Protect and defend the rights or property of the IYHA.
    • Prevent or investigate possible wrongdoing in connection with the Service.
    • Protect the personal safety of Users of the Service or the public.
    • Protect against legal liability.

If You want to receive the list of the current recipients of Your Personal Data, please make Your request by contacting Us at[email protected]     

Transfer of Your Personal Data
  1. Your information, including Personal Data, is processed at the IYHA's operating offices in Israel and will be maintained, processed, and stored on cloud services located in Jerusalem and Brussels. Your consent to this Privacy Policy followed by Your submission of such information represents Your agreement and consent to that transfer.
  2. IYHA will take all steps reasonably necessary to ensure that Your data is treated securely and in accordance with this Privacy Policy and Terms and Conditions and no transfer of Your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of Your data and other personal information, as well,  We will obtain relevant contractual framework commitments from them to protect Your Personal Data, such as Standard Contractual Clauses (SCC) or Data Transfer Agreement (DTA) /Data Processing Addendum (DPA) depending on which country receiving the data.
Retention of Your Personal Data
  1. IYHA will only keep Your Personal Data for as long as it is required for the purposes outlined in this Privacy Policy. We will retain and use Your Personal Data only to the extent necessary to comply with Our legal obligations (for example, if We are required to retain Your data to comply with applicable taxing or accounting laws), resolve disputes, and enforce Our legal agreements and policies. We have an internal data retention policy in place to ensure that We do not keep Your Personal Data indefinitely and We implement it in IYHA system. More information about cookie retention can be found in Our cookie notice.
  2. Usage Data will also be retained by IYHA for internal analysis. Usage Data is typically retained for a shorter period of time, unless it is used to strengthen the security or functionality of Our Service, or We are legally required to retain this data for a longer period of time. 
Security of Your Personal Data
  1. We value the security of Your Personal Data, and We have implemented and maintained appropriate technical, organizational, and security measures to protect it. The measures We take include the physical, electronic, and procedural safeguards We employ to protect Your Personal Data including secure servers, firewalls, antivirus, and SSL encryption of data.
  2. We maintain and regularly review and update Our policies and procedures. We also limit access to Your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process Your personal data on Our instructions and are subject to a duty of confidentiality.
  3. However, keep in mind that no method of Internet transmission or electronic storage is completely secure. While We make every effort to use commercially acceptable safeguards to protect Your Personal Data, We cannot guarantee its complete security. Because the security of information is dependent in part on the security of the computer, device, or network You use to communicate with Us, as well as the security You use to protect Your User IDs and passwords, please take the necessary precautions to protect this information.
  4. If You have concerns about certain personal information, You may wish to avoid passing that information over the Internet. 
Your rights:
  1. You have the right under this Privacy Policy, by law, and for the purpose of the GDPR, as follows:
  2. The right to notice. You have the right to be notified which categories of Personal Data are being collected and the purposes for which the Personal Data is being used.
  3. Request access to Your Personal Data. The right to access, update or delete the information We have on You. Whenever made possible, You can access, update, or request the deletion of Your Personal Data directly within Your account settings section. If You cannot perform these actions Yourself, please contact Us for assistance. This also enables You to receive a copy of the Personal Data We hold about You.
  4. The right to request the erasure of Personal Data.You have the right to request the erasure of Your Personal Data when there is no good reason for Us to continue processing it. Such erasure is subject to certain exceptions under the GDPR, where one of the exceptions applies, We will notify You in accordance with the law.
  5. Request correction of the Personal Data that We hold about You. You have the right to have any incomplete or inaccurate information We hold about You corrected.
  6. Object to processing of Your Personal Data. This right exists where We are relying on legitimate interest as the legal basis for Our processing under the GDPR. You also have the right to object to where We are processing Your Personal Data for direct marketing purposes.
  7. Request the transfer of Your Personal Data (Data Portability). We will provide to You, or to a third party You have chosen, Your Personal Data in a structured, commonly used, machine-readable format. Please note that this right only applies to automated information which You initially provided consent for Us to use or where We used the information to carry out a contract with You.
  8. Withdraw Your consent.You have the right to withdraw Your consent to use Your Personal Data. If You withdraw Your consent, We may not be able to provide You with access to certain specific functionalities of the Service.
  9. You have a right to lodge a complaint with Your local data protection supervisory authority: (i.e., Your place of habitual residence, place of work, or place of alleged infringement) at any time or before the relevant institutions in Your place of residence. We ask that You please attempt to resolve any issues with Us before You contact Your local supervisory authority and/or relevant institution.
    1. In order to exercise Your rights as mentioned above, please contact Us at [email protected]    
    2. Processing and Answering Your request are Subject to legal and other permissible considerations, We will make every reasonable effort to honor Your request promptly in accordance with applicable law or inform You if We require further information in order to fulfill Your request. When processing Your request, We may ask You for additional information to confirm or verify Your identity and for security purposes before processing and/or honoring Your request. We reserve the right to charge a fee where permitted by law, for instance, if Your request is manifestly unfounded or excessive.
    3. If Your request would adversely affect the rights and freedoms of others (for example, would impact the duty of confidentiality We owe to others) or if We are legally entitled to deal with Your request in a different way than initially requested, We will address Your request to the maximum extent possible, all in accordance with applicable law. 
Minor's Privacy
  1. Our Service does not knowingly address anyone under the age of 16. We do not knowingly collect personally identifiable information from anyone under the age of 16. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 16without verification of parental consent, We take steps to remove that information from Our servers.
    1. If We need to rely on consent as a legal basis for processing Your information and Your country requires consent from a parent, We may require Your parent's consent before We collect and use that information.
    2. If You believe that We might have any such information, please contact Us at [email protected]
Interaction with third-party products
  1. We enable You to interact with third-party Websites, mobile software applications, and products or services that are not owned or controlled by Us (each a “Third Party Service”). Therefore, Our Service may contain links to other Websites (Instagram, YouTube, Facebook) and If You click on a third-party link, You will be directed to that third party's site, which is not operated by Us, and We are not responsible for the privacy practices or the content of such Third-Party Services. We strongly advise You to review the Privacy Policy of every site You visit.
  2. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. 
Special Section for The Purpose of GDPR Privacy Policy
  1. Legal Basis for Processing Personal Data under GDPR

We may process Personal Data under the following conditions:

  1. Consent: You have given Your consent for processing Personal Data for one or more specific purposes.
  2. Performance of a contract: Provision of Personal Data is necessary for the performance of an agreement with You and/or for any pre-contractual obligations thereof.
  3. Legal obligations: Processing Personal Data is necessary for compliance with a legal obligation to which IYHA is subject.
  4. Legitimate interests: Processing Personal Data is necessary for the purposes of the legitimate interests pursued by IYHA. 
  1. In any case, IYHA will gladly help to clarify the specific legal basis that applies to the processing, and in particular,whether the provision of Personal Data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.
Cookie Policy
  1. Like many Websites and applications, We use “Cookies” and similar technologies for several reasons, to collect information including to help personalize Your experience. We also use a cookies tool on Our platform to gain consent for the optional cookies We use. Third parties through which We provide the services may be placing and reading cookies on Your browser.
  2. There are different types of cookies, as follows:
    1. A "session cookie" is temporary and will remain on Your device until You leave the Site/platform/service.
    2. A "persistent cookie" may be used to help save Your settings and Customizations across visits. It will remain on Your device until You delete it.
    3. "First-party cookies" are placed by Us, while third-party cookies may be placed by a third party. We use both first- and third-party cookies.
    4. We may use the term "cookies" to refer to all technologies that We may use to store data in Your browser or device or that collect information or help Us identify You in the manner described above, such as Web beacons or "pixel tags". 
How do We Use cookies?
  1. We use cookies and similar technologies for a number of reasons, as specified below. The specific names and types of cookies, Web beacons, and other similar technologies We use may change from time to time.
  2. However, the cookies We use generally are Necessary Cookies. These cookies are necessary to allow the Site to work correctly. They enable You to access the Site, move around, and access different services, features, and tools. Examples include remembering previous actions (e.g. entered text) when navigating back to a page in the same session. These cookies cannot be disabled. 
How to Adjust Your preferences?
  1.  Most Web browsers are initially configured to accept cookies, but You can change this setting so Your browser either refuses all cookies or informs You when a cookie is being sent.
  2. In addition, You are free to delete any existing cookies at any time. Please note that some features of the Services may not function properly when cookies are disabled or removed. For example, if You delete cookies that store Your account information or preferences, You will be required to input these each time You visit. 
Changes to the privacy policy
  1. IYHA maintains the right to modify this privacy policy at any time and in its sole discretion, and all Users are encouraged to return and check this page as frequently as possible.
  2. The modifications/changes to the privacy policy will take effect on the date of the document's most recent update, and continuing use of the Website after that date will represent the User's consent to the changes.
  3. If the privacy policy is changed to meet a legal requirement, the changes may take effect immediately or as soon as the law allows.
  4. It is Your duty to review the privacy policy and its modification date on a regular basis.
Contact Us
  1. If You have any comments or questions regarding this Privacy Policy, please contact Us at: [email protected]

 

Your request has been sent successfully.
ANA Hostels
contact us
Main office:
Tzur 5 St. PO Box. 40371, Mevaseret Zion, 9140301
Main phone1-599-510-511
Fax: 02-6558431
Navigate with waze
other services
Seminar Registration
Secured website
website development for hotels