Data protection and privacy
1.WHO WE ARE AND IMPORTANT INFORMATION
What is the purpose of this privacy policy?
This privacy policy gives you information about how we collect and process your personal data through your use of this website, including the data you provide when booking.
Data controller(s)
Simon Fenn is the controller and responsible for your personal data. His contact details are 68 Mill Lane, Burwell, Cambridge CB25 0HJ. Our registration details with the ICO can be viewed here.
For all data matters contact info@shangri-la.house
2. PERSONAL DATA WE COLLECT
Personal data, or personal information, means any information about an individual from which that person can be identified.
We may collect, use, store and transfer different kinds of personal data about you as follows
Booking information includes your name, email address and telephone number
Payment information includes your name, address, email address and telephone numbers and some bank and debit/credit card information. This information is processed securely and privately by the third-party payment processors that we use.
We only collect personal data through bookings.
3. OUR USE OF PERSONAL DATA
We will only use your personal data in accordance with the law. Most commonly, we will use your personal data for the following reasons:
So that we can fulfil your booking and contact you about this
In order to have a record of bookings made for tax purposes
Cookies
You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable cookies, please note that some parts of this website may become inaccessible or not function properly.
This website uses cookies. Cookies are text files which are placed on your computer to collect standard internet log information and visitor behaviour information. This information is used to track visitor use of the website and to complete statistical reports on website activity.
4. WHO WE SHARE PERSONAL DATA WITH
We may have to share your personal data with the parties set out below:
HM Revenue & Customs, if necessary and for tax purposes
Contracted service providers, such as housekeepers
We require all third parties to respect the security of your personal data and to treat it in accordance with the law.
5. DATA SECURITY
We have put in place security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach.
6. DATA RETENTION
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. This will be no longer than five years.
7. YOUR LEGAL RIGHTS
Unless subject to an exemption under the data protection laws, you have the following rights with respect to your personal data:
The right to request a copy of the personal data which we hold about you
The right to request that we correct any personal data if it is found to be inaccurate or out of date
The right to request your personal data is erased where it is no longer necessary to retain such data
The right to withdraw your consent to the processing at any time, where consent was the lawful basis for processing your data
The right to request that we provide you with your personal data and where possible, to transmit that data directly to another data controller, (known as the right to data portability), where applicable i.e. where our processing is based on consent or is necessary for the performance of our contract with you or where we process your data by automated means)
The right, where there is a dispute in relation to the accuracy or processing of your personal data, to request a restriction is placed on further processing
The right to object to our processing of personal data, where applicable i.e. where processing is based on our legitimate interests (or in performance of a task in the public interest/exercise of official authority); direct marketing or processing for the purposes of scientific/historical research and statistics).
If you wish to exercise any of the rights set out above, please contact info@shangri-la.house
No fee required – with some exceptions
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable admin fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
What we may need from you
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
Time limit to respond
We try to respond to all requests within 30 days.