This policy sets out how Carousel (“we”, “our”, “us”) collects, uses and protects your information. We are committed to protecting the privacy of all users of our website. Please note that all data thus captured will be used and held in accordance with the requirements of the Data Protection Act 2018.
By visiting our venue or using our services, you acknowledge and accept the practices described in this policy. It also details how you can instruct us if you prefer to limit the use of that information and procedures that we have in place to safeguard your privacy.
For the purpose of the Data Protection Act 1998, the General Data Protection Regulation and any and all domestic legislation implementing the Regulation into English Law (the “Data Protection Laws”), Carousel is a Data Controller in relation to your Personal Data in certain circumstances, which are set out below.
We collect two types of information from you; ‘Personal Information’ (anything which identifies you as an individual, either on its own or by reference to other information) and ‘Aggregate Information’ (non-personally identifiable and anonymous data).
What we collect
We may collect the following types of personal information:
– Contact Information (such as name, email address, phone number)
– Demographic Information (such as age, gender)
– Identification Information (such as Date of Birth, ID/ Passport details)
– Transaction Information (such as bookings & purchase history)
– Photographs or video recordings taken within the premises
– Any other information voluntarily provided by you
Why we collect Information
We will only ever hold, use, or disclose your Information for Carousel / Lindum Leisure Ltd – related businesses. We collect personal information so that we can operate effectively and provide customers with the best possible service. These include:
– Improvements to our products and services
– Keeping you up to date with important changes to us
– Emailing you about new services, offers or other information we think you may find interesting using the email address which you provided. You will be given an option to opt-out of these newsletters and have an option to unsubscribe at any time in the footer of each email
– From time to time, we may also use your information to contact you for market research purposes
– To answer your queries regarding our related services
– We may use the information to customise the website according to your interests
How We Collect Information
We may collect personal information through various channels, including:
– Directly from you when you provide it to us (such as during the bookings process, website forms or when participating in surveys)
– Automatically through the use of our website or mobile applications
– From third-party sources (such as social media platforms or bookings partners) with your consent
Processing your Personal Information
We are committed to processing Personal Information fairly, lawfully and in a way you would expect given the nature of our relationship with you. Under new laws, the main reasons we would process your Information are:
You have given us consent; where consent is required for our use of your Personal Information we will ask you to positively opt-in.
To enable us to pursue your legitimate interest to deliver services or products to improve our offering to you, such as marketing, we will respect your preferences for contacting you.
We would like to use your personal data to send you details of our products or services identified as likely to be of interest to you. We will only send you information in line with the venue and preferences you selected when you provided this personal data.
You may unsubscribe to our emails at any time through an unsubscribe option at the bottom of every email you receive from us.
Third-party data processors
In carrying out our business, including our obligations to you, we may share your information with other trusted third-party service providers, such as email broadcasters, marketing agencies, reservation systems. Such providers are required under their data processing agreements with us, to handle your Personal Information in accordance with applicable laws and principles related to privacy and data protection.
How long we retain your data
We will keep your Personal Information for as long as is reasonably necessary for the purpose for which it was collected.
In certain circumstances, once we have deleted or anonymised your data, we may need to retain parts of it (for example your email address) in order to comply with our obligations under GDPR or other legislation, or for fraud detection purposes. However, if you have any questions with regards to what we hold please refer to the next section.
Data subject’s rights
You have rights in respect of your personal data we hold about you. We will need to confirm your identity before we can consider your request but details of these rights are set out below. You can exercise any of these rights by contacting us at the email address shared at the top of this page.
If you want to know more about your rights, the ICO has more guidance on their website.
– Right of access; you have the right to know whether we are processing your personal data, and to a copy of that data. We would need as much information as possible to enable us to locate your data. We will respond to your request within 28 days of receipt of your request.
– Right to rectification; you have the right to have any incorrect personal data corrected or completed if it is incomplete. We will need as much information as possible to enable us to locate your data. We will look at any request and inform you of our decision within 28 days of receiving the request.
– Right to restrict processing; you have the right to ask us to restrict processing of your data. We will look at any request and inform you of our decision within 28 days of receiving the request.
– Right to erasure; this right, often referred to as the right to be forgotten allows you to ask us to erase personal data where there is no valid reason for us to keep it. We will look at any request and inform you of our decision within 28 days of receiving the request.
– Right to object; you have the right to object to our processing of your personal data based on (i) legitimate interests, or for the performance of a task in the public interests/exercise of official authority (including profiling); (ii) direct marketing (including profiling); and (iii) for purposes of scientific/historical research and statistics.
(i) Legitimate interests/legal task – your objection should be based on your particular situation. We can continue to process the data if we can demonstrate compelling legitimate grounds which override your interests
(ii) Direct marketing – you have an absolute right to ask us to stop processing for the purposes of direct marketing. We will action your request as soon as possible
(iii) Scientific/historical research and statistics – your objection should be based on your particular situation. If we are conducting research where the processing is necessary for the performance of a public task, we can refuse to comply with your objection
If you are unhappy with any aspect of our handling of your data you can contact us at the email address above. You are also entitled to lodge a complaint with the UK Information Commissioner’s Office.
A cookie is a small piece of information sent by a web server to a web browser, which enables the server to collect information from the browser.
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.
Third Party Websites
We may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes.
Contact us regarding your Information
If you have any requests concerning your personal data or any queries with regard to how we handle your data you can contact us at email@example.com
In addition, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the statutory body that oversees data protection law in the UK. Please visit the ICO website if you wish to lodge a complaint with the ICO.