Your Data and Information Safe in our Hands
When we use the terms "Our Website" we are referring to this website, or "Our Company", "Our Business", "Us" , "We", "Our", we are referring to our Company.
When referring to "information" we refer to data, either recognisable or anonymous.
The Data Protection Act 1998 and The General Data Protection Regulation.
Strictly no special or sensitive data (special and sensitive data as outlined in the GDPR) will be requested or should be submitted, emailed or transmitted to us via email or any other contact method.
To process an enquiry you may have, we only accept the following personal data. Full name, telephone number, email address, along with your enquiry, so that we can reply to the enquiry.
To process a booking or order, we will only accept the following personal data. Full name, telephone number, email address, along with your booking/order information so that we can process your booking or order.
To process an online deposit, part payment or full payment online, we use a PCI-DSS level One compliant and approved booking/order system and/or payment gateway to accept your card or paypal payment as required by Debit and Credit card companies.
We want you to feel secure when visiting our website, or submitting form data or sending us emails, and are committed to respecting your privacy. Below we give an overview of how we do that.
We comply with the principals of Article 5 of the General Data Protection Regulation.
1: The personal data we collect from our website or email:
Website Access, Recognisable Data: When you access our website our web hosting, the hosting servers stores certain data indirectly within daily access logs. This recognisable data contains your external internet I.P address only. This data is used solely for fraud detection, to detect malicious attacks, detecting unauthorised access and for maintaining the general security and traffic management of our systems. Based upon this information certain IP addresses or IP address ranges that overuse bandwidth or cause a security concern will at our discretion be banned/blocked from connecting to our website. Those IP addresses will be stored and processed for a period of 5 years, but reviewed annually to see if any IP addresses no longer pose an issue to our data, systems and networks. All other daily access log data will be erased within 30 days from that IP's daily connection.
Contact Recognisable Data: We also collect data when you give it to us. For example, you may email us by using a link from our website or use a website form to pass the information we have requested from you, or you wish to submit to benefit from our services/products/newsletters etc, which will then allow us to reply to your enquiry. When we collect this type of information, we will notify you as to why we are asking for it and how this information will be processed, how long it will be retained and who it will be shared with.
2: Data Processing & Retention We retain the following data where we take or process it, because of a legal requirement or business requirement to do so.
This data processing and retention policy is provided to demonstrate the retention period of data, when that data is sent to us via our online websites, 3rd party websites, social media or via direct or indirect email communications. This policy is subject to change when either required by UK law or to better align our data processing, archiving and retention policy in accordance with UK regulation, legal requirements or lawful business requirements.
How do we use information?
We may request or accept information from you in order to process an enquiry you have regarding the products or service that we deliver/provide.
We also take and process data regarding sales and purchases (you make) and retain and process that data within the confines of UK regulations and laws, including the GDPR.
We may also use data for other purposes, which we would inform and describe to you at the point at which we collect that information.
3: Do we disclose or Share your information with other organisations.
We do not share any of your data with any other organisations unless the law permits us to do so.
We do not sell individual information.
We will share data only with our authorised Data Processors, who must act at all times on our instructions as the Data Controller within the confines of the Data Protection Act 1998 and the General Data Protection Regulation.
Before you submit any information, we will notify you as to why we are asking for specific information and it is up to you whether you provide it.
4: Access to Data/Information we hold about you.
You are entitled to know whether we hold information about you and if we do, to have access to that information and require it to be corrected if it is inaccurate.
You can also request that any data we have be erased or have a restricted processing policy place upon it, unless there is a legal requirement or business reasons why it cannot be, in which case we will offer a full explanation for any rejection for that request.
You can do this by contacting us via email through our website and addressing the subject and/or body to "The Data Protection Officer". Your data is kept secure as required by the data protection act (GDPR).
We take appropriate steps to maintain the security of your Online data when it is stored in the Cloud.
We take appropriate steps to maintain the security of your Offline data stored within our own local storage solutions.
The open nature of the internet means that your data may flow over networks without security measures and may be accessed and used by people other than those for whom the data is intended.
Our intention is that this should not happen and we take measures to ensure that it does not, though we advise that all individuals who submit personal information to us, do not use Open Wi-fi or free secured wi-fi networks to communicate their data to us, without using secure email SSL or TLS connections or secure website communications to add an additional security measure to the data that they are sending.
No Tracking Analytics - for our online visitor's piece of mind
UK websites often use implied consent to execute free 3rd party tracking and analytics code to record their visitor's movements and even their purchases. It is the website owner's responsibility where tracking/analytics are installed and executed to inform the visitor how their business and the 3rd party tracking/analytics company will use your data.
7: If you do not want to be tracked on the Internet by other 3rd party website analytics and tracking services!
The majority of EU and worldwide websites track your visits and even purchases online using 3rd party tracking services,
these providers may also use that data for their own needs or share that
data with others.
The new Mozilla v58 browser can block tracking analytics, not using a "Do Not Track" which websites ignore, but by blocking the website tracking/analytics code so it is not executed.
Settings / Options / Privacy & Security / Tracking Protection.
This will block one of the widest used free 3rd & 1st party analytics provider, Google Analytics.