Privacy Policy
Last Updated on: 03/06/2019
1. About this Policy
This privacy policy applies to the website www.daybythepool.com. It has been drafted in accordance with the requirements of the General Data Protection Regulations (“GDPR”) and Data Protection Act 1998 (“DPA”).
This privacy policy: (a) Explains how we look after your personal data (in all situations where we collect your data via our website). (b) Sets out your privacy rights. (c) Explains how the law and our approach to privacy and personal data protects you.
2. Our status and details
For the purpose of the GDPR, we are the data controller and any enquiry regarding the collection and/or processing of your data should be emailed to: privacy@daybythepool.com.
By using this website, you consent to this policy.
3. Information we collect
We will collect, process and store personal data only if it is directly provided to us by you. You may do this in your capacity as website user, by say, enquiring in relation to our goods or services, or becoming a customer.
Personal information covers any information which relates to you as an identifiable person. Below are some examples of the type of data that this may include: (a) Identity Data including forenames, last name, maiden name, date of birth, gender, marital status, and username or similar identifier. (b) Contact Data may include home or work address, email address and telephone numbers, personal or job title and position. (c) Transaction Data may include payments made for products and services you have purchased from us. (d) Marketing Data may include details of any preference that you have advised us of in relation to marketing communications from us.
We may also collect non-personal data such as Aggregated Data which is data that may be obtained from your personal data, but which does not directly or indirectly identify you. This may include Usage Data, detailing how you use our website and the features and areas that you have interacted with.
4. How do we collect your personal data?
A range of different methods may be used to collect data which may include the following methods: (a) Automated technologies or interactions with our website, by using the web enquiry form or the booking engine on the website. You may give us Identity and Contact Information. (b) Third parties service providers may be used in processing Identity, Contact and Financial categories of personal data. Third party service providers should have their own privacy policies, which you should check. We do not accept any responsibility or liability for their policies whatsoever as we have no control over them.
5. Data accuracy
It is important that the data that we hold about you is accurate and up to date. In the event that your data changes please notify us so that we can update our records.
6. Use of your information
We may hold and process personal data that you provide to us in accordance with the GDPR.
The information that we collect and store relating to you is primarily used: (a) To enable us to provide our services to you, to communicate with you and to meet our contractual commitments to you. This may include Identity, Contact, and Transactional data. (b) To notify you about any changes to our business, such as improvements to our website or service / product changes, that may affect our service or relationship with you. This may include Identity and Contact data. (c) If you are an existing customer, we may contact you with information about goods and services similar to those that were the subject of a previous sale to you. This may include Identity and Contact data. (d) Where you have consented to receive such information, to provide information on other parties’ products or services that we feel may be of interest to you. This may include Identity, Contact and Marketing data. (e) Where you have consented to receive our e-newsletters to provide that to you. This may include Identity and Contact data. (f) Where we need to comply with a legal obligation. This may include Identity, Contact and Transactional data. (g) Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. This may include all types of data.
Where we collect your data for marketing purposes, we will always request your consent at the point when the data is collected, to use your data for that purpose.
We will always obtain your prior consent to sharing your personal data with any third party for their marketing purposes. This may be to enable relevant third parties to advise you of products or services that may be of interest to you.
We will only use your personal data for a reason other than the purpose for which it was originally obtained if we consider that we need to use it for that other purpose and have a legitimate interest in doing so.
7. Disclosure of your information
There are a range of circumstances where we may disclose your data to third parties. These include: (a) Regulatory bodies. We may disclose your data to regulatory bodies to enable us to comply with the law and to assist fraud protection and minimise credit risk. This may include Identity, Contact and Transactional data. (b) Our service providers. We may disclose your data to third parties that are involved in the fulfilment of our services to you. This may include Identity, Contact and Transactional data. (c) Third party marketing. Where you have consented for us to do so, we may provide your data to selected third parties who may contact you about their goods or services that you may be interested in. This may include Identity, Contact and Marketing data. (d) Business sale.
We may disclose your personal data outside of our organisation:
- the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets; and,
- if www.daybythepool.com business is bought by a third party, in which case personal data held by it about its customers will be one of the assets to transfer to the buyer. However, any such transfer will only be on terms that the confidentiality of your personal data is protected and that the terms of this privacy policy will continue to be complied with by the recipient.
Please be advised that we do not reveal information about identifiable individuals to our advertisers, but we may, on occasion, provide them with Aggregated Data about our website’s visitors and customers.
If you do not want us to share your data with third parties you will have the opportunity to withhold your consent to this when you provide your details to us on the form on which we collect your data, or you can do so by sending us an email to privacy@daybythepool.com at any time.
8. Controlling the use of your data
Where we rely on consent as the lawful basis for processing your data, you can revoke or vary that consent at any time.
If you do not want us to use your data or want to vary the consent that you have provided you can email us at privacy@daybythepool.com at any time.
9. Data storage and the transfer your data
No data is stored outside the EEA. All servers are located within the EU. Data is stored by servers hosted on European servers. Any personal data collected in the course of providing the services, is transferred to and stored in the data centres of Hetzner Online GmbH and/or Amazon Web Services, Inc. and/or Google Commerce Limited, which are located in the territories of a Member States of the European Union.
10. Security
The transmission of information via internet or email is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of data while you are transmitting it to our site; any such transmission is at your own risk.
We have put in place security measures to prevent your data from accidental, loss or disclosure. Once we have received your personal data, we will use strict procedures and security features to prevent unauthorised access.
In the event of a data breach which may result in a loss or damage to you, we will notify yourself of this occurrence.
11. Data retention
The length of time that we retain, and store data depends on the purpose for which it was collected. We will only store data for as long as is required to fulfil that purpose, or for the purpose of satisfying legal requirements.
Where you have requested that we provide you with marketing materials, we will retain your data until such time as consent is withdrawn by you.
12. Use of cookies
Our website uses cookies. We use cookies to gather information about your computer for our services and to provide statistical information regarding the use of our website. Such information will not identify you personally - it is statistical data about our visitors and their use of our website. This statistical data does not identify any personal details whatsoever.
We may also gather information about your general internet use by using a cookie file. Where used, these cookies are downloaded to your computer automatically. This cookie file is stored on the hard drive of your computer, as cookies contain information that is transferred to your computer's hard drive. They help us to improve our website and the service that we provide to you.
All computers have the ability to decline cookies. This can be done by activating the setting on your browser which enables you to decline the cookies. Please note that should you choose to decline cookies, you may be unable to access particular features of our website. Where we work with advertisers on our website, our advertisers may also use cookies, over which we have no control. Such cookies (if used) would be downloaded once you click on advertisements on our Website.
13. Your rights
The GDPR gives you a range of rights in relation to the personal data that we collect from. You have the right to: (a) Access your personal data. This right is commonly known as the ‘data subject access request’ and enables you to receive a copy of the personal data we hold about you. You will not need to pay a fee to access your personal data unless we can justifiably demonstrate that the request is repetitive or excessive. We will respond to all legitimate data access requests within one month, but we may need to obtain further information from you in order to confirm your identity and the legitimacy of the request. (b) Request update of the personal data. This enables you to have any incomplete or inaccurate data corrected. (c) Erasure of your personal data. This enables you to ask us to delete personal data where there is no justifiable reason for us continuing to retain and process it. We may not always be able to delete the data such as if there is an ongoing contractual relationship between us or if we are legally required to retain the data. (d) Object to processing of your personal data where we are relying on consent or our legitimate interests (or those of a third party) as the justification for processing the data. (e) Restrict the processing of your personal data. This enables you to ask us to change the processing of your personal data. For example, you may wish to vary the basis on which we contact you. (f) Request the transfer of your personal data to you or to a third party. We will provide to you, or a third party you have chosen, your personal data in a structured, machine-readable format. (g) Withdraw consent. Where we are relying on consent to process your personal data you may withdraw that consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
You can exercise these rights at any time by sending an email to privacy@daybythepool.com.
14. Third party links
You might find links to third party websites on our website. If you click a link to a third-party website and visit that site, you may be allowing that site to collect and share certain data about you. These websites should have their own privacy policies, which you should check. We do not accept any responsibility or liability for their policies whatsoever, as we have no control over them.
15. Complaints
If you wish to raise a complaint regarding our use of your personal data, then we would welcome the opportunity to discuss your concerns with you, and pledge to resolve any issue immediately.
16. Changes to this policy
We may update this policy to reflect changes to the website and customer feedback. Please regularly review this policy to be informed of how we are protecting your personal data.
We welcome any queries, comments or requests you may have regarding this Privacy Policy. Please do not hesitate to contact us.