Updated: November 21, 2019
At Sixthman Ltd., our mission is to provide the best possible festival cruise and event experiences for our guests. This mission covers all of our activities including the products and experiences we offer during our festival cruises and events and extends to our online community through our websites and interactive features, including applications, widgets, blogs, social networks, social network "tabs" and other online or mobile offerings (which we collectively call the “Services”). Our Services are provided by Sixthman Ltd. and our partner brand, Norwegian Cruise Line, which operates our cruises (we refer to Sixthman and Norwegian Cruise Line together as the “Company,” “we,” “our,” or “us”).
When you take a cruise or attend an event with us, register to take a cruise or attend an event with us, set up an account with us through one of our websites, ask for information about our Company, visit one of our websites, apply for employment with us or access our Services through various other methods, we collect data about you and your visit.
Data we collect directly from you or other sources
We collect the following categories of data either directly from you or from our business partners and third parties:
We operate closed circuit television (“CCTV”) cameras on our ships, including at all access points and throughout public areas. These CCTV cameras record continually and images of you may appear in these recordings.
Data we collect automatically
Special categories of personal data
Some of the categories of data that we collect in connection with provision of our Services may constitute special categories of personal data (also known as sensitive personal data). In particular, we may collect personal data revealing racial or ethnic origin, religious, philosophical, or political beliefs, sexual orientation, or data concerning health, such as medical history or dietary restrictions, if in connection with our provision of Services.
We only collect this information when you choose to provide this to us or to a service provider such as a travel agent. We only use this information to provide a service you request, such as medical care on board one of our cruises or special dietary accommodations.
If, while traveling or attending an event with us, you allege a personal injury or submit a claim after alleging a personal injury, we may collect personal data concerning the alleged incident, including healthcare information.
On participating ships and with your consent, Norwegian Cruise Line may use facial comparison technology in order to facilitate and expedite your embarkation and/or disembarkation by taking your photograph and matching it against the photograph they collected from you during embarkation. When there is a match, you will be able to board the ship or be checked out of your cruise.
Separately, Norwegian Cruise Line may securely provide your disembarkation photograph to U.S. Customs and Border Protection (“CBP”), who uses its own facial comparison technology to match the photograph against images of you that CBP already has on file from your passport, other travel documents or prior CBP border inspections. Once Norwegian Cruise Line receives verification of your identity from CBP, they will delete your disembarkation photograph immediately. Norwegian Cruise Line does not retain your facial recognition data beyond the duration of your cruise or use it for any other purpose other than those described above. If you are a U.S. citizen, CBP will maintain your photograph for no more than 12 hours. For certain non-U.S. citizens, the U.S. Department of Homeland Security (DHS) will store your photograph for a longer period. For more information on how CBP uses your biometric data, please visit www.cbp.gov/travel/biometrics.
We may use your personal data for the following purposes:
We may post guest testimonials on our websites which might contain personal data. We obtain the guest’s consent via email prior to posting the testimonial to post their username, cruise date, event and travel destination along with their testimonial, as applicable. If you wish to update or delete your testimonial, you can contact us at PrivacyTeam@nclcorp.com.
We may share your personal data with third parties under the following circumstances:
We implement physical, technical, and organizational security measures designed to safeguard the personal data we process. These measures are aimed at providing ongoing integrity and confidentiality for your personal data. We evaluate and update these measures on a regular basis.
The Company takes reasonable precautions in order to attempt to ensure the safety and security of our customer’s online transactions. Billing information is encrypted and transmitted through SSL (Secure Sockets Layer) technology. SSL is the industry standard for securing Web-messaging transactions.
We retain your personal data for as long as we have a relationship with you, and such relationship includes any request to receive marketing or other promotional materials from us or membership in our loyalty programs. When deciding how long to keep your personal data after our relationship with you has ended, we take into account our legal obligations, including requirements of regulators and governmental agencies that have authority over us. We may also retain records to investigate or defend against potential legal claims.
We will delete your personal data when it is no longer required for these purposes. If there is any information that we are unable, for technical reasons, to delete entirely from our systems, we will put in place appropriate measures to prevent any further processing or use of the data.
All emails you receive from us will include specific instructions on how to unsubscribe and you may unsubscribe at any time by taking one the following steps:
(1) Follow the instructions provided in any Company email
(2) Click on the following link to update your preferences: Sixthman
(3) Send mail to the following address:
Norwegian Cruise Line Holdings Ltd.
Legal Department: Privacy Team
7665 Corporate Center Drive
Miami, Florida 33126
Please allow up to 2 weeks to be unsubscribed from all Company emails.
If you are located in the European Union, click here to read more.
You have certain rights regarding your personal data, subject to local European Union data protection laws. These include the following rights:
If you would like to discuss or exercise these rights, please contact us at the details below. We encourage you to contact us to update or correct your data if it changes or if the personal data we hold about you is inaccurate. We will contact you if we need additional data from you in order to honor your requests.
Our websites are not intended for children under the age of 16, and the Company does not intentionally collect personal data from children under 16 via its websites, or mobile or other applications except as guests named in a booking. If you have reason to believe that we have collected personal data from someone under 16 years of age via our websites or other applications including mobile applications, please let us know by contacting us at PrivacyTeam@nclcorp.com.
We may process personal data about children who are guests before, during or after our cruises or events in order to provide our Services. We do not process personal data about children for any other purpose nor do we seek to collect personal data about children. If you have reason to believe that we have collected personal data from someone under 16 years of age other than in connection with providing our Services, please let us know by contacting us at PrivacyTeam@nclcorp.com.
Under California Civil Code Section 1798.83, California residents have the right to request in writing from businesses with whom they have an established business relationship, (a) a list of the categories of personal data, such as name, email and mailing address and the type of services provided to the customer, that a business has disclosed to third parties (including affiliates that are separate legal entities) during the immediately preceding calendar year for the third parties' direct marketing purposes and (b) the names and addresses of all such third parties. To request the above data, please contact us by email to PrivacyTeam@nclcorp.com or write us at: Attn: Legal Department: Privacy Team, Norwegian Cruise Line Holdings Ltd., 7665 Corporate Center Drive, Miami, FL 33126. We will respond to such requests for data access within 30 days following receipt at the email or mailing address stated above. Please note that we are only required to respond to each customer once per calendar year.
Additionally, California law requires that we indicate whether we honor “Do Not Track” settings in your browser concerning targeted advertising. We do not currently alter our practices when a Do Not Track signal is received. To learn about Do Not Track and for information about how to opt out of receiving targeted advertising, please visit www.aboutads.info/choices.
We are headquartered in the United States, but have global operations and affiliates. Accordingly, your personal data may be transferred to, stored and processed in various countries, including those that are not regarded as ensuring an adequate level of protection for personal data under European Union law or by the European Commission. We have put in place appropriate safeguards (such as contractual commitments) in accordance with applicable legal requirements to ensure that your data is adequately protected. For more information on the appropriate safeguards in place, please contact us at the details below.
If you have any questions, comments, or concerns about how we handle your personal data, then you may contact us at PrivacyTeam@nclcorp.com and we will try to resolve your concern.
If you are located in the European Union, please contact our Data Protection Officer at PrivacyTeam@nclcorp.com. If you are located in Germany, you may also contact our representative in Germany at PrivacyTeam@nclcorp.com. We are committed to working with you to obtain a fair resolution of any complaint or concern about privacy. If, however, you believe that we have not been able to assist with your complaint or concern, you may have the right to make a complaint to the data protection authority of your country of residence.
If we make any revisions that materially change the ways in which we process your personal data, we will notify you of these changes before applying them to that personal data.