Beinn Dearg Cottage is a short-let, self-catering holiday property owned and operated by Kenneth and Julie Stoddart.
This Privacy Notice explains how we use, store and destroy any personal information we collect about you. We will never share your information with any third party unless there is a legal obligation to do so. We believe that we are compliant with the General Data Protections Regulations (GDPR) which came into force 25th May, 2018.
What information we collect about you:
The data we collect is provided to us by you or an agent/representative acting on your behalf. It is collected either when you complete forms on our website or our online booking system, send us an email, contact us by telephone or letter or it is provided in person. We are required by law to collect Visitor Registrations and hold them for a period of 12 month.
Information required to complete a booking:
- The full name and address of the person making the booking.
- The email address of the person making the booking.
- Credit/Debit card details (which are stored securely by STRIPE – www.stripe.com) and we can only view the last-4 digits and the expiry date.
The following information can also be provided but it is not mandatory:
- The telephone numbers of the persons making the booking.
- The names of all guests as part of the booking.
- Any additional information you wish to provide that you feel is pertinent to your stay (e.g. special requirements, etc.).
- If you provide Credit/Debit card details over the telephone or in persons these will be entered into our secure payment system. We will not hold your card details other than within the secure payment system.
How we use the information we hold on you:
- Process your booking and providing confirmation details.
- Obtain payments for our services via credit/debit card.
- Respond to any question or comments via email, telephone or post.
- Provide information that may be use for you.
- Request feedback about your stay with us, the booking experience and our website. This is sometimes done in conjunction with Trip Advisor and Google reviews.
- Return any items that you may forget to take with you on check-out.
How we store your data:
We employ third party companies to facilitate our services, such as our hosting provider, TSO Host who are compliant with GDPR, or to perform service-related services or to assist us in analyzing how our service is used.
These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
Access to your information:
You have the right to request a copy of the information we hold about you. If you would like a copy of the information please email (insert email address)
You have the right to request that we delete/destroy any of your personal data that we hold. Subject to our legal obligations to hold visitor registrations for 12 months.
Our website contains links to third party sites, we have no responsibility for, or knowledge of, the privacy and data holding policies of these third party websites, nor of their compliance, or otherwise, with GDPR.
On May 25th 2012 a European Union law was implemented by UK legislation, The Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011, with a requirement that websites that leave non-essential cookies on visitors’ devices have to inform the visitor what these cookies are. This website complies with this law by providing information on the cookies we use so that if you choose you can either modify your browser settings to manage cookies or leave the website.
Non-essential cookies also enhance our web site performance in a number of ways, personalising your experience on our site, making it more convenient for you.
If you do not wish to disable cookies then you have the option to leave the website.
What is a cookie?
A cookie is a small amount of data that is sent in a text file to your computer browser from a website’s server and is then stored on your computer, but only IF your browser’s preferences are set by you to allow it. The only personal information a cookie can obtain is information a user supplies. A cookie cannot read data from your hard disk or read cookie files created by other sites.
How we protect your data & data breach procedures
We take appropriate measures to ensure that all personal data is kept secure including security measures to prevent personal data from being accidentally lost, or used or accessed in an unauthorised way, for the duration of your use of our Services. We limit access to your personal data to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to the Website, therefore any transmission remains at your own risk. Once we have received your information, we will use strict procedures and security features in order to prevent unauthorised access.
This policy is effective from the 1st August 2018.
If you have any questions about it or concerning your data please contact Julie or Kenny Stoddart on +44 (0) 1471 820263 or at firstname.lastname@example.org