How we use and protect your information
Your privacy is extremely important to us, and we take our responsibility surrounding the security of your data very seriously. For the most part, your data will remain within our organisation and will be processed by appropriate individuals only.
We have produced this privacy statement to explain how and why we collect your data, how it is stored and protected, and what rights you have relating to it.
Our website address is: https://www.brynllys.co.uk.
Personal data we collect and why we collect it
Personal data may be provided by you or on your behalf as part of our booking journey, or otherwise in connection with a booking by the lead guest. You may also provide personal data (including identity, contact and financial data) when you complete online forms, send messages, request information on products/services, subscribe to our services, join our mailing lists or loyalty schemes, take customer or client satisfaction surveys, provide feedback or otherwise or correspond with us (by post, phone or email)
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
We may receive personal data from: (a) analytics providers based outside the EU (such as Google); (b) advertising networks who may be based outside the EU (such as Facebook); and (c) search information providers such as Google based outside the EU; (d) our suppliers such as payment providers, delivery services, website support, maintenance providers and telemarketing companies; (e) third party booking platforms who may be based inside or outside of the UK such as AirBnB, Booking.com, Expedia etc.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Visitor IP addresses are logged as part of the daily website statistic gathering. This is a common occurrence on the majority of websites. It is used only for the accurate reporting of statistics.
Electronic mailing list
Information collected for our electronic mailing list is provided by you either at the time of making a booking, or by letting us know that you would like to be included on our mailing list in person or by completing the newsletter registration form on our website.
You can opt-out of our marketing emails at any time by clicking the ‘unsubscribe’ button in any such email, or by contacting us directly.
Our website features links to other, external websites. We are not responsible for the privacy practices or the content of such websites.
How we use your data
We use your data to ensure that we communicate with you in the most effective and appropriate way. This helps us to organise your booking, events and/or activity that are most suited to your needs, and to let you know about what we believe may interest you the most. Using your data in the manner allows us to provide the best possible experience for you.
How we protect your data
All details are stored on a non-public, secure database on our web server (computer), which is based in the UK.
Who we share your data with
Occasionally we may need to share your information with third parties, such as relevant authorities or with a mailing house when sending bulk communications through the post or email (e.g. by using Hubspot or MailChimp). We regularly monitor the suppliers that we use and ensure that they comply with GDPR regulations and the EU-US Privacy Shield Framework.
We do not sell your personal data to any third parties under any circumstances.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
If you wish to raise a complaint about how we have handled your personal information, you can contact Carlo Forte (designated Data Protection Officer) on 01248 602122.
We hope that we will be able to address any concerns you may have, however, if you are not satisfied with our response you can contact the Information Commissioner’s Office (the ICO). Further details can be found at www.ico.org.uk.