Types of Information Collected
We retain two types of information:
We collect personal data from you when you provide such personal data to us, or via our services with which you interact. We may also obtain such other personal data about you as may be provided to us in the course of our legitimate business activities.
We may collect and process Data including the following in the course of providing services to you, which could contain your personal data:
Your full name; your address; your various email addresses; your various phone numbers including mobile phone numbers; your nationality; your address; photograph; financial information about you, including your bank account details, credit card details, or other payment details; details of contracts you have entered with third parties for us to provide services to you; details of your relationship to other parties; details of your membership of professional or other organisations; your date of birth; details of your children and other relations; medical details, including infrared body surface temperatures and details of allergies; details of your car registration number; details of your driving licence; details of your passport and all other Data which you ask us to process on your behalf, or which is necessary for us to process in order for us to fulfil our role as providing accommodation, gym, leisure, retail or food related services to you; details of your location while on the property via keycards and security measures such as closed circuit television and personal body cameras (worn on employee uniform).
As part of the registration process for our ezine, we collect personal information. We use that information for a couple of reasons: to provide you with information you have asked us to tell you about; to contact you if we need to obtain or provide additional information; to check our records are correct and to check every now and then that you are happy and satisfied. We do not rent or trade email lists with other organisations and businesses.
We may also process other data, which is not personal data.
When you access our website or wi-fi facilities, your device’s browser provides us with information such as your IP address, browser type, access time and referring URL which is collected and used to compile statistical data. This information may be used to help us to improve our website and the services we offer, and to offer services to you.
Like most websites, we gather statistical and other analytical information collected on an aggregate basis of all visitors to our web site. This non-personal data comprises information that cannot be used to identify or contact you, for example, user IP addresses where they have been clipped or anonymised, browser types and other anonymous statistical data involving the use of our website.
When you use the Wi-Fi network on the premises, we may collect data about:
a) your device;
b) the volume of data which you use;
c) the websites and applications which you access; and
d) your usage by access time, frequency and location.
Security and where we store your personal data
We are committed to protecting the security of your personal data. We use a variety of security technologies and procedures to help protect your personal data from unauthorised access and use. As effective as modern security practices are, no physical or electronic security system is entirely secure. We cannot guarantee the complete security of our databases, nor can we guarantee that information you supply will not be intercepted while being transmitted to us over the Internet. We will continue to revise policies and implement additional security features as new technologies become available.
The transmission of information via the internet is not completely secure and may involve the transfer of data to countries outside of the European Economic Area (EEA). This occurs typically through use of cloud solutions for web hosting, email hosting or proprietary software solutions delivered to us through the Cloud. We do not however authorise any third party to use your personal data for their own purposes. Non-EEA countries may not provide an adequate level of protection in relation to processing your personal data. By submitting your data, you agree to this transfer, storing and processing.
Although we will do our best to protect your personal data, we cannot guarantee the security of your personal data transmitted to us. Any transmission of data is at your own risk. Once we receive your personal data, we use appropriate security measures to seek to prevent unauthorised access.
Uses Made of Your Personal Data
We use your personal data that we hold:
In advertising our services, providing you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes (our list of services below);
To carry out our obligations arising from any contracts entered into between you and us;
In advertising our services, providing details of any loyalty scheme or promotion;
To comply with legislation including health, wellbeing and contact tracing data in relation to Coronavirus; and/or
To notify you about changes to our services.
You have a right to have your personal data corrected, if inaccurate, or, in certain circumstances, erased. Please forward any such requests by email to email@example.com
· List of services
· Restaurant, bar service and other food related services
We may use your data to send you information relating to our services, events and products which may be of interest to you. If you do not want us to use your data in this way, please notify us to that effect.
We keep your Data for varying periods according to our Retention Schedule.
Disclosure of your information
We may disclose your Data to third parties who provide a service to us or in the event that we sell or buy any business or assets, in which case we may disclose your Data to the prospective seller or buyer of such business or assets or if we are under a duty to disclose or share your Data in order to comply with any legal obligation, or to protect our rights, property, or safety of staff or customers. Currently we disclose your Data to the following providers.
State EU or other state jurisdiction to which Data is transferred
Some jurisdictions may not have adequate safeguards for the protection of personal data, and where this is the case we comply with Chapter 5 of the General Data Protection Regulation (“GDPR”) to provide an alternative method of safeguarding your personal data.
We may disclose personal information to our third-party service providers who provide services such as wedding event suppliers, website hosting, data analysis, payment processing, order fulfilment, information technology and related infrastructure provision, email delivery, auditing and other services.
We may provide non-personal data to third parties, where such information is combined with similar information of other users of our website. For example, we might inform third parties regarding the number of unique users who visit our website, the demographic breakdown of our community users of our website, or the activities that visitors to our website engage in while on our website. The third parties to whom we may provide this information may include potential or actual advertisers, providers of advertising services (including website tracking services), commercial partners, sponsors, licensees, researchers and other similar parties. We will not disclose your personal data to third parties unless you have consented to this disclosure or unless the third party is required to fulfil your order (in such circumstances, the third party is bound by similar data protection requirements). We will disclose your personal data if we believe in good faith that we are required to disclose it in order to comply with any applicable law, a summons, a search warrant, a court or regulatory order, or other statutory requirement.
When someone makes a booking, we use various third-party services listed below to record booking information and process payment. Information we collect may include, but is not limited to, personal information such as your name, email address, telephone number and stay preferences. This information is hosted securely on the servers of these third parties. We use this information primarily to fulfil your hotel, spa or restaurant booking. We also may send you pre and post stay communications via these third parties.
When someone visits www.rabbithotel.com we use a third party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.
We use a third-party provider, For-Sight, to deliver ezines. We gather statistics around email opening and clicks using industry standard technologies to help us monitor and improve our ezines. For more information, please see For-Sight privacy notice. You can unsubscribe to ezines at any time of the day or night by clicking the unsubscribe link at the bottom of any of our emails or by emailing us at firstname.lastname@example.org.
Links to other sites
Our website may, from time to time, contain links to and from other websites. If you follow a link to any of those websites, please note that those websites have their own privacy policies and that we do not accept any responsibility or liability for those policies. Please check those policies before you submit any data to those websites.
As an individual, under EU law you have certain rights to apply to us to provide information or make amendments to how we process data relating to you. These rights apply in certain circumstances and are set out below: -
· The right to access data relating to you (‘access right’).
· The right to rectify/correct data relating to you (‘right to rectification’).
· The right to object to processing of data relating to you (‘right to object’).
· The right to restrict the processing of data relating to you (‘right to restriction’).
· The right to erase/delete data relating to you (i.e. the “right to erasure”).
· The right to ‘port’ certain data relating to you from one organisation to another (‘right to data portability’).
To find out what personal data we hold on you or to have your personal data updated, amended or removed from our database, please contact us at email@example.com. Any such data subject requests may be subject to the prescribed fee.
Changes to this policy
We reserve the right to change this Policy from time to time in our sole discretion. If we make any changes, we will post those changes here so that you can see what information we gather, how we might use that information and in what circumstances we may disclose it. By continuing to use our site or our services or otherwise provide data after we post any such changes, you accept and agree to this Policy as modified. Policy last reviewed July 2020.
We keep your personal data for so long as is reasonably necessary for the purpose for which we use it, in most cases for 1 -2 years but in certain circumstances this may be for a shorter or longer period this will include body surface temperature checks for statistical purposes and/or for contact tracing. If longer, for any duration required by law and for statutory claims limitation periods where your personal data may be relevant to any possible liability we may have.
Questions, comments, requests and complaints regarding this Policy and the information we hold are welcome and should be addressed to us at firstname.lastname@example.org . All requests will be dealt with promptly and efficiently.