Airds Hotel & Restaurant is a limited company incorporated in Scotland with registered number 239714 whose registered office is at Airds Hotel & Restaurant, Port Appin, Argyll, Scotland, PA38 4DF. Airds is responsible for this “website” and its contents (http://www.airds-hotel.com).
This notice describes the types of personal data we collect, how we may use that personal data and with whom we may share it. The term “personal data” means any information that can be used to identify a specific individual such as name, address, email address, telephone number and credit card information.
Our notice also describes the measures we take to protect the security of the personal data. We also tell you how you can reach us to:
Explaining the lawful basis for processing your personal data
The law on data protection sets out a number of different reasons for which a company may collect and process your personal data. Weidentify the ones we use below to help you understand the policies we apply:
Consent: In specific situations, we can collect and process your data with your consent. For example, when you request to receive our email newsletters or request a brochure. Where you consent, we will use your personal data to keep you informed by email about relevant products and services including tailored special offers, promotions, events, competitions and so on.
Of course, you are free to opt out of hearing from us at any time.
Legitimate interest: In specific situations, we require your data to pursue our legitimate interests in a way which might be reasonably expected as part of running our business and which does not materially impact your rights, freedom or interests.
For example, we will use your booking history to send you relevant personalised communication by post in relation to updates, offers, services and products. You are free to opt out of hearing from us by post at anytime.
We also use aggregated postcode data to conduct geographic and geo-demographic profiling to help us better understand our audience to, in turn, help guide the content of our communications. Profiling is undertaken using postcode data only without using any other information linked to individuals.
Contractual Obligation: In certain situations, your personal data is required to comply with contractual obligations. For example, as part of the accommodation booking process.
Personal DataInformation that we collect from you
When you visit www.airds-hotel.com you may be asked to provide certain information about yourself including your name, contact details and other relevant information. We may also collect information about your usage of our website.
Use of your information
Your information will enable us to provide you with access to all parts of our site. We will also use and analyse the information we collect so that we can administer, improve and develop our website to better support you.
We will only ever use your information to contact you in response to an enquiry.
Additionally, if you choose to provide personal data and consent to receive future communication from us, we may use your information to let you know about other products and services which we offer which may be of interest to you including new and revamped product information, market research results, promotional activity, advertising and changes in products.
If you chose not to provide us with your personal data, you may not be able to access some of our services such as newsletters or taking part in promotions.
Like many companies, we use “cookies” or similar objects on our website.
A cookie is a piece of data stored on the users’ hard drive while they are visiting certain websites. It contains simple information about the users’ identity but no personal information. The benefit of using cookies is that it allows us to monitor website traffic and record user’s preferences. They tell us, for example, whether you have visited our website before or if you are a new visitor and to help us identify site features in which you may have the greatest interest. Specifically, we use Google Analytics on our site to do this. Importantly, Google, acting on our behalf, subscribe to the same “best practice” rules of data protection in processing personal data. Please see section on “Your rights and preferences.”Cookies may also enhance your online experience, for example, by remembering your passwords and viewing preferences, whilst you are visiting a particular site.
By using our website, you agree that we can place these types of cookies on your device.
Most browsers accept cookies automatically, but can be configured not to do so or to notify the user when a cookie is being sent. If you wish to disable cookies, refer to your browser help menu to learn how to disable cookies. Please note that if you disable cookies, you may be unable to access some customised features on our website.
Certain pages on our website may contain “web beacons” (also known as internet tags, pixel tags and clear GIFs). These web beacons allow third parties to obtain information such as the IP address of the computer that downloaded the page on which the beacon appears, the URL of the page on which the beacon appears, the time the page containing the beacon was viewed, the type of browser used to view the page, and the information in cookies sent by the third party.
How we share personal data
We do not sell or otherwise disclose personal data about our Website visitors, except as described here.
We may share your personal data with service providers, employees or contractors that we have retained to perform services or work on our behalf. These parties are provided only with the personal data they need to perform their functions and can only use and disclose such personal data as is necessary to perform services on our behalf or to comply with legal requirements.
In addition, we may disclose your personal data if (a) we are required to do so by law or legal process, (b) to law enforcement authorities or other government officials, or (c) when we believe disclosure is necessary or appropriate to prevent physical harm or financial loss or in connection with an investigation of suspected or actual illegal activity.
We also reserve the right to disclose and transfer your personal data to our new business partners or owners in the event we enter a joint venture with or is sold to or merged with another business entity.
We will not otherwise share, sell or distribute any of the information you provide to us without your consent.
Security & Data Retention
We employ security measures to protect your information from access by unauthorised persons and against unlawful processing, accidental loss, destruction and damage. We will retain your information for a reasonable period to reflect the purpose for which it was collected or until such time as you ask for your personal data to be removed or as long as the law requires.
Where your data is stored
Airds Hotel and Restaurant directly controls and manages all personal data captured and stored in its role as Data Controller.
Personal data is held and maintained in a customer database located in the United Kingdom including which communication individuals have opted in to receive. Importantly, the database is kept up to date with any requests to delete, amend or access personal data logged, recorded and actioned. The database is primarily used to communicate to individuals on promotions, services and products where permission to do so has been obtained. In so doing, the option to unsubscribe from future email communication is provided.
Additionally, data is periodically aggregated to conduct geographic and geo-demographic profiling to help us better understand our guests and guide the style and content of communications. Only post codes are used for this purpose
Access and correction
You are entitled to see the information held about you and you may ask us to make any necessary changes to ensure that it is accurate and kept up to date. If you wish to do this, access requests should be emailed to email@example.com. To help protect your privacy and security, we will take reasonable steps to verify your identity, which may involve requiring a password and user ID, before granting access to your personal data. If we choose not to action your request, we will explain to you the reasons for our refusal.
Your rights and preferences
You have the right to request:
- Access to the personal data we hold about you which, in most cases, will be free of charge.
- The correction of your personal data when incorrect, out of date or incomplete’
- That we stop using your data for Direct Marketing. Your right to object to the use of direct marketing is absolute and we are obliged to stop processing if you object.
- Withdrawal of your consent. Whenever you have given us your consent to use your personal data, you have the right to change your mind at anytime and withdraw consent.
We strive to operate an open and honest approach to the protection and security of personal data. In so doing, we fully acknowledge individuals’ rights to know what data we hold and to have the ability to amend, delete or object to the data stored on them.
If you would like to view the personal data we process about you, to update your contact details and preferences, to tell us you no longer want to receive communication about our products and services, or to tell us you no longer want your personal data processed, you may email us at firstname.lastname@example.org (see below for contact details). If you would like to be removed from our database, please email us at email@example.com.
If you ask that we stop using your personal data, we take reasonable steps to honour that request. However, we will retain records of your personal data as needed in order to comply with applicable law.
In all cases, we will respond within one month but with the intention of doing so as soon as possible.
This Notice may be updated periodically in the future without prior notice. Any such changes will be posted to our website and, where appropriate, through email notification.
How to contact us
If you have any questions or comments about this Notice, or if you would like us to update the personal data we have about you or your preferences, please contact us by:
Contacting the Regulator
If you feel that your data has not been handled in a full and proper manner or, indeed, you are unhappy with our response to any requests concerning your personal data, you have the right to register a complaint with the Information Commissioner’s Office.
You can contact them by calling 0303 123 1133 OR go online to www.ico.org.uk/concerns