The Maytime Inn is committed to protecting and respecting your privacy and complying with the UK General Data Protection Regulations (GDPR).
This policy sets out the basis on which any personal information we collect form you, or that you provide to us, will be processed. Please read the following carefully to understand our views and practices regarding your personal information and how we will treat it.
This policy applies to any personal information provided by you through the Maytime Inn website or through your interactions with us via email, telephone or otherwise.
For the purposes of UK data protection laws, the data controller is Windrush Taverns Limited of 6 Langdale Court, Witney, Oxfordshire, OX28 6FG (Company Number: 08096787).
Why we collect your personal information
The Maytime Inn collects personal information about you to deal with enquiries you may have and to provide you with our services.
What personal information we collect
- Identity data, such as your name, gender, marital status, title, birthday, company name (if applicable).
- Contact data, such as your billing address, delivery address, email address and telephone numbers.
- Transaction Data, including details about services you have purchased from us and payments to and from you.
- Profile Data, such as reservations in our restaurant made by you, rooms booked by you, your interests, preferences, feedback and survey responses.
- Marketing Data, such as your preferences in receiving marketing from us and our third parties, and your communication preferences.
How we collect your personal information
The Maytime Inn may obtain your personal information when you contact us directly via telephone, email or when you stay or dine with us, when you interact with our website, make a general enquiry, provide us with feedback or request marketing information.
How we use your personal information
We will only use your personal information when the law allows us to. Most commonly, we will use your personal information in the following circumstances:
- to identify who you are and to provide you with services as requested.
- to ensure payment for the services purchased and to prevent or detect fraud.
- you have given us consent, for example marketing, customer surveys and feedback.
- where it is necessary for our or a third party’s legitimate interests, and your interests and rights do not override those interests.
- where we need to comply with a legal or regulatory obligation.
Disclosure of your personal information
The Maytime Inn may provide your personal information to:
- providers of IT and system administration services to our business, including Dropbox, One Drive, Google Drive, and other online cloud providers;
- our professional advisers (including solicitors, bankers, auditors and insurers);
- analytics and search engine providers that assist us in the improvement and optimisation of our website; and
- the payment facilitators to process payment and to undertake fraud prevention checks.
We require all third parties to respect the security of your personal information and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal information for their own purposes and only permit them to process your personal information for specified purposes and in accordance with our instructions.
Where we store your personal information
All information you provide to us is stored on secure servers in the United Kingdom operated by the Maytime Inn or its third party IT service providers.
We will take all steps reasonably necessary to ensure that your data is treated securely, including taking the following safeguards:
- PCI DSS standards. We comply with the Payment Card Industry Data Security Standards in relation to debit/credit card payments made on our website.
- Building entry controls. Data only stored in rooms which are locked when not in use and entry is only allowed to authorised persons. Site is secured overnight.
- Secure lockable desks and cupboards. Desks and cupboards are kept locked when not in use if they hold confidential information of any kind.
- Methods of disposal. Paper documents are disposed of by shredding in a manner that ensures confidentiality.
- Overseas transfers. Whenever we transfer your personal information outside the United Kingdom, we ensure a similar degree of protection is afforded to it by ensuring that we apply appropriate safeguards (either by transferring data only to recipients in the European Union, to recipients in countries approved by the UK Government, or by using specific contracts approved by the UK Government).
You have various legal rights in relation to the information you give us, or which we collect about you, as follows:
- Right to access: you can request access to the personal information we hold about you, together with information about why and how we are using your information.
- Right to rectify: you can ask us to rectify any information we hold about you that is inaccurate or incomplete.
- Right to erase: you can ask us to erase the information we hold about you.
- Right to object: you can object to us using/storing your information for marketing purposes or where the processing is not necessary for the purposes of legitimate business interests.
You can ask us to stop sending you marketing communications at any time by contacting our customer services team by writing to the address at the top of this policy, or by emailing us at [email protected]
If you wish to exercise any of your legal rights, please contact our customer services team by writing to the address at the top of this policy, or by emailing us at [email protected]
You also have the right, at any time, to lodge a complaint with the Information Commissioner’s Office if you believe we are not complying with the laws and regulations relating to the use/storage of the information you give us, or that we collect about you.
Questions, comments and requests regarding this policy are welcomed and should be addressed to The Maytime Inn, [email protected]