Privacy Policy (GDPR)
This website is operated by Skiddaw Croft B&B. We take your privacy very seriously, therefore we urge you to read this policy very carefully because it contains important information about us and:
The personal information we collect about you
What we do with your information
Who your information may be shared with
1. Who We Are
Skiddaw Croft B&B (‘Company’, ‘we’ or ‘us’) is a ‘Data Controller’ for the purposes of the Data Protection Act 1998 (i.e. we are responsible for, and control the processing of, your personal information).
2. Information We Collect
a) Personal Information You Provide to Us
We collect the following personal information that you provide to us:
Your Name
Home Address
Telephone Number
Email Address
Debit/Credit Card Details
We collect this information when you make a booking with us online or over the phone.
b) Personal Information You Provide About 3rd Parties
If you give us information about another person, you confirm that the other person has appointed you to act on their behalf and agreed that you:
Shall consent on their behalf to the processing of their personal data
Shall receive any data protection notices on their behalf, and
c) Cookies and Similar Technologies
Whenever you interact with our Website Google Analytics software automatically receives and record information on their server logs from the visitor’s browser, including their IP address, “cookie” information, and the page they requested. “Cookies” are identifiers we transfer to their computer or mobile device that allow us to how and when pages in our Website are visited and by how many people. You may be able to change the preferences on your browser or mobile device to prevent or limit your computer or device’s acceptance of cookies, but this may prevent you from taking advantage of some of our Website’s features. If you click on a link to a third party website, such third party may also transmit cookies to you. This Privacy Policy does not cover the use of cookies by any third parties.
For further information on our use of cookies, please see our Website Cookie Policy.
For further information on cookies generally, visit www.aboutcookies.org or www.allaboutcookies.org.
d) CCTV
We use CCTV around our building. None of the cameras are pointed at the guest bedrooms, doors or windows.
We use these cameras for the security of our property, our guests, our guests’ property and ourselves.
The data is recorded securely on a hard drive and is only kept for 30 days.
The only people to have access to this data are B&B owners, Stephen and Susan Harries. The data can only be accessed via an app on our tablet, which is password protected, or via the hard drive, which is also password protected.
3. How We Use the Information We Collect
We collect information about our users for the following purposes:
Identify the user in order to process any bookings made
Detection of fraud
Marketing
Website Customisation
Service Improvement
4. E-mail and Other Communications:
We will use your email address to send you confirmation of your booking with details on where to find directions to us and other information you may find useful for your stay.
We would also like to send you information about offers from our business and information on local events, which may be of interest to you. Such information could be sent by email or post.
We will ask you whether you would like us to send you marketing messages on the first occasion that you provide any relevant contact information (i.e. on making a booking, signing up to a newsletter, entering a competition, etc.). If you do opt in to receive such marketing from us, you can opt out at any time. If you have any queries about how to opt out, or if you are receiving messages you do not want, you can contact us using the details provided below.
Please note that if you do not want to receive legal notices from us, those legal notices will still govern your use of the Website, and you are responsible for reviewing such legal notices for changes.
5. Who Your Information May be Shared With
We may share your information with:
a) Agents:
We employ other companies and people to perform tasks on our behalf and may need to share your Personal Information with them to provide products or services to you, for example, processing credit card payments. Unless we tell you differently, our agents do not have any right to use the Personal Information we share with them beyond what is necessary to assist us. We acknowledge our potential liability if our agents misuse your Personal Information.
b) Business Transfers:
We may choose to sell our business in the future. In this type of transaction, customer information is typically one of the business assets that is transferred. Also, if we (or substantially all of our assets) are acquired, or if we go out of business, enter bankruptcy, or go through some other change of control, Personal Information would be one of the assets transferred to, or acquired by a third party.
c) Protection of Company and Others:
We reserve the right to access, read, preserve, and disclose any information that we reasonably believe is necessary to comply with law or court orders; enforce or apply our conditions of use and other agreements; or protect the rights, property, or safety of the Company, our employees, our users, or others. This includes exchanging information with other companies and organisations for fraud protection and credit risk reduction.
6. Is Personal Information About Me Secure?
We endeavour to protect the privacy of your account and other Personal Information we hold in our records, but we cannot guarantee complete security. Unauthorised entry or use, hardware or software failure, and other factors, may compromise the security of user information at any time.
We will use technological and organisation measures to keep your information secure. These measures may include the following examples:
Data is secured by using a secure website with unique password access
All financial card details are secured using SSL encryption
Skiddaw Croft website is secured using a secure server (https://)
The Website may contain links to other sites. We are not responsible for the privacy policies and/or practices on other sites. When following a link to another site you should read that site’s privacy policy.
We’ll take appropriate physical, technical, and organisational measures to protect your Personal Information from loss, misuse, unauthorised access or disclosure, alteration, and destruction.
7. Data Integrity and Purpose Limitation
We’ll collect only as much Personal Information as we need for specific and identified purposes, and we won’t use it for other purposes without obtaining your consent. We’ll take appropriate steps to make sure the Personal Information in our records is accurate.
8. What Rights Do You Have?
a) Right to request a copy of your data
You can request a copy of the information we hold about you (this is known as a subject access request). If you would like a copy of it, please
Email, call or write to us (using the details below)
Let us have proof of your identity and address (a copy of your drivers licence or passport and a recent utility or credit card bill), and
Let us know the information you want a copy of, including any reference numbers if you have them)
We will send you a copy of your data upon request within 1 month of the date after we have received the request. Each initial request for your information is free of charge. If you request a second copy, or request large amounts of data, a reasonable administration fee will be charged.
b) Right to Correct any Mistakes in Your Information
You can require us to correct any mistakes in your information which we hold, free of charge. If you would like to do this please:
Contact us using the details below
Let us have enough information to identify you (e.g. name, address or telephone number), and
Let us know the information that is incorrect and what is should be replaced with
c) Right to Ask Us to Stop Contacting You with Direct Marketing
You can ask us to stop contacting you for direct marketing purposes. If you would like to do this please:
Email, call or write to us (using the contact details below)
Let us have proof of your identity and address (a copy of your drivers licence or passport and a recent utility or credit card bill), and
Let us know what method of contact you are not happy with, if you are unhappy with certain ways of us contacting you (for example you may be happy for us to contact you by email but not by letter).
From time to time we may also have other methods to unsubscribe from any direct marketing, including for example, unsubscribe buttons or links in emails. If such methods are offered, please note that there may be a short period of time after selecting unsubscribe, in which marketing may still be received while your request is being processed.
d) Right to have Your Data Erased
You can ask us verbally or in writing to have your data erased. If you would like to do this please:
Contact us using the details below
Let us have enough information to identify you (e.g. name, address or telephone number), and
Let us know the information that is to be erased
We will respond within 1 month of receiving your request for erasure. Please note that the right is not absolute. There are circumstances when we are required by law to keep personal data, such as:
We are required to keep all registration cards for a period of 1 year
We are required to keep all accounting data and evidence for a period of 7 years
Where necessary to comply with law or court orders
9. Contacting Us
If you have any questions about this policy or the information we hold about you, please contact us by:
email:- privacy@skiddawcroft.co.uk
post:- Skiddaw Croft
Portinscale
Cumbria
CA125RD
Telephone:- +44 (0)17687 72321
Calls will be answered during the following times:
Monday to Friday 11:00 am to 5:00 pm (UK Time)
Saturdays, Sundays and Bank Holidays excluded