Privacy Policy

Introduction

We at Leesrigg Cottage are committed to protecting the privacy and security of your personal data.  This Privacy Policy describes how we collect, use and look after your personal data when you visit our website (regardless of where you visit it from), including when you book a stay with us. It also tells you about your rights and how the law protects you.

Who we are

If you have any questions about this Privacy Policy, including any requests to exercise your legal rights, please contact our Data Protection Officer in writing, either via the Contact Us section of this website, or by writing to us at 1 Leesrigg Cottages, Mealsgate, Wigton, Cumbria, CA7 1BX.

What personal data we collect and why we collect it

Booking Information

When you book a holiday directly with us, or as a part of guest registration, we will collect the following information:

Names of all guests; Nationality of Lead Guest; Correspondence address; Contact Telephone Number(s); Contact e-mail address; Emergency Contact Telephone Number; Details about payments to us; Your marketing preferences.

When we receive a booking from our booking agents, we will collect the following information:

Lead Guest Name; Contact Telephone Number(s); Contact e-mail address; total number of guests; number of pets; date of arrival; date of departure; details of any additional requests; The amount payable to us for the booking.

We collect your personal data when booking a holiday with us in order to:

Process and administer your booking;

Comply with taxation legislation;

Comply with the Immigration (Hotel Records) Order 1972;

Engage in direct marketing activities

Contact Forms

When visitors Contact Us via our site we collect the data shown in the contact form.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

We do not share our data with anyone, other than when required to do so by law e.g. for taxation purposes or for compliance with the Immigration (Hotel Records) Order 1972.

When we receive a request for your data, and before we provide your data to them, we will take reasonable steps to establish the identity of the person or organisation requesting the data, and the legitimacy of their request.

How long we retain your data

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of our marketing activities and satisfying any legal, accounting, or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

We are required to keep basic information about our customers and clients (including contact, identity, financial and transaction data) for six years after the end of the tax year in which they cease being customers or clients, for tax purposes.

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Where do we store and process your personal data

Your data will be stored and processed on our our Local Area Network (LAN) within the UK.  Your data will not be loaded or transferred to any cloud based services or external networks.

Where you have contacted us by email or via the contact us page of our website, your data data contained in those messages will also be stored and processed on the e-mail servers of our Internet Service Provider (ISP).

Security of your personal data

Access to your data on our LAN is restricted to only those persons who have a legitimate business need. Backups to removable media may be taken for business continuity purposes, and to protect against data loss. Any backups of your personal data will be protected using encryption, and or passwords.

We maintain up to date security measures such as anti-virus software and firewalls to prevent against viruses and other threats to your personal data.

What rights you have over your data

Under the General Data Protection Regulations, we will respect your legal right to access and control your personal data.

Access to personal information

You can request to receive an exported file of the personal data we hold about you, including any data you have provided to us.

Correction and deletion

You can request that we erase any personal data we hold about you. This does not include any data we are required to keep for administrative, legal, or security purposes.

Withdrawal of consent

You may remove your consent to direct marketing at the time of guest registration, or at any time thereafter by replying to the marketing email or SMS Text Message with the words ‘unsubscribe’.  Where you have booked a holiday with us you can remove your consent to process your data with the exception of that personal data which we are required to keep by law.

Data portability

We will provide any personal data you request from us in a machine readable, comma separated values (CSV) format.  We may, subject to having access to the necessary software, provide your personal data in any other format that you request.

Restriction of processing and objection

You have the right to request the restriction or suppression of your personal data.  If the circumstances of your request are legitimate, then we will make your personal data unavailable to users.

Lodging a complaint with the Information Commissioner’s Office

To lodge a complaint with the information commissioner’s office, please visit

Exercising your rights

You will not have to pay a fee to exercise any of your rights, unless your request is unfounded, repetitive or excessive. Where this is the case, we may charge a reasonable fee for information or refuse to comply with your request.

We may ask you to provide further information to help us confirm your identity. This is a security measure to ensure that personal data is not disclosed to any person who does not have the right to receive it.

We aim to respond to requests within one month. If your request is particularly complex or you have made a number of requests it may take us longer to respond and in this case, we will notify you and keep you updated.