Who we are :
The Glenburn Hotel & River Cottage, New Rd, Windermere, Cumbria LA232EE
We take our duty to process your personal data very seriously. This policy explains how we collect, manage, use and protect your personal data. We will never sell your data to third party organisations. You can contact us at any time you wish to change the way we contact you or opt out of future communications.
What we need
Under the terminology determined in the GDPR, The Glenburn controls the personal data you provide to us. If you are using our services we will usually collect basic personal data about you. We may collect and store information that you give when you make a booking. You are asked for your name, address, telephone number and email along with payment information and “the names of any guests travelling with you”. This information is stored in order to process your booking.
If you provide payment information through our online booking service, this will be processed directly by secure PCI Level 1 compliant payment gateway providers.
Security and Data Retention
We employ security measures to protect your information from access by unauthorised persons and against unlawful processing, accidental loss, destruction and damage. We will retain your information for a reasonable period or as long as the law requires.
We do not collect any special personal details about you. This includes details about your race or ethnicity, religious or philosophical beliefs, sexual orientation, political opinions, trade union membership, information about your health and genetic data). Nor do we collect any information about criminal convictions and offences.
Why we need it
We collect your personal data to facilitate the provision of our services. The information is only used by us to fulfill and communicate with you regarding your requested service. We may also wish to provide you with information about our other facilities available.
How we obtain your details
We collect your personal information when you provide it to us directly, or when you provide your details to a third party website to enable us to process the booking.
We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.
We are serious about guarding the security of your personal information and the details of any transaction you make. Our website uses SSL certification to keep your data secure. SSL Certificates are small data files that digitally bind a cryptographic key to an organization’s details. When installed on a web server, it activates the padlock and the https protocol and allows secure connections from a web server to a browser. Typically SSL is used to secure credit card transactions, data transfer and logins, and more recently is becoming the norm when securing browsing of social media sites.
You may also be asked to send feedback after your stay in order for the hotel to further improve our service. Your email address will be used for this purpose. If you complete a review it may be posted on the property website, Trip Advisor, Facebook, twitter or google plus. However, no personal details will ever be attached to a review posting.
The General Data Protection Regulation introduced in May 2018 asserts that everyone has several very important rights. These are:
- The right to be informed. We aim to be complete transparency over how we use your personal information
- The Right of Access. You can request a copy of the information we hold about you, which will be provided to you within one month.
- Right of Rectification. You can update or amend the information we hold about you if it is incorrect.
- The Right to Restrict Processing. You can request that we stop using your information.
- The Right to be forgotten. You can ask us to remove your personal information from our records.