This privacy notice is valid for the following websites:
About this policy
Great Northern Hotel is committed to protecting your privacy and ensuring that your personal information is handled in a safe and responsible way. This policy outlines how we aim to achieve this and includes the information collected when:
You use our websites
You make a booking through our website.
You make enquiries on our website
You use our public access wifi
Definition of Personal Data
Personal data means any data that relates to an identifiable person who can be directly / indirectly identified from that data. In this case if means personal data that you give to us via our site.
By providing your personal data, you agree that we can use your personal data in accordance with this policy. Ensure you understand this policy in its entirety and take your time to read it.
We collect information from you in a variety of means:
When you make a booking
When you utilise a restaurant or bar ( preferences, allergies etc)
When you make an enquiry
When you sign up to marketing emails
When you utilise our WIFI
When you use our websites
We keep this data for a minimum of 24 months past the date of your last visit. On occasion we may have a regulatory obligation to keep data beyond this time frame.
How is your information used?
Our use of your personal data will always have a lawful basis, either because it is necessary to complete a booking, because you've consented to our use of your personal data (eg by subscribing to emails) or because it is in our legitimate interests in promoting Great Northern Hotel.
We require the information outlined previously to understand your needs and provide you with a better service, and in particular for the following reasons:
Internal record keeping
Send you service emails (booking confirmation and post visit feedback)
Improve our products and services
Send marketing communication if you have opted to receive them
We may use the information to customise the website according to your interests.
Evaluate the success of business initiatives and design future promotions.
Who has access to your information?
We do not sell, distribute or lease your information to third parties. Any personal information we request from you will be safeguarded under current legislation.
We only share your information with companies if necessary to delivery services on our behalf. For example service providers (Open Table for provision of online restaurant bookings, Opera for the provision of hotel bookings), third party payment processors and other third parties to provide our sites and fulfil your requests, and as otherwise consented to by you or as permitted by applicable law.
Our current list of providers and their applicable privacy policies are listed below:
Emails for marketing
Public access wifi
Some of these providers may store data out of the EU but in the US. In these cases, provides are certified under the EU-US privacy shield framework (see https://wwwprivacyshield.gov/welcome) . In addition to this our contracts with these providers include clauses which guarantee that they provide the same safeguards for the data and rights to our members as if the data were stored in the EU.
We may choose to use other service providers in the future. If so they will be bound by the same strict rules guaranteeing that safeguards are in place and your rights remain the same.
Use of 'cookies'
Authentication, personalisation and security: cookies help us
verify your account and device and determine when you log in, so we
can make it easier for you to access the services and provide the
prevent fraudulent use of login credentials.
Opting Out: You can set your browser to not accept cookies, but this may limit your ability to use the services.
We will not contact you for marketing purposes by email, phone or text message unless you have given your prior consent. We will not pass your details to any third parties for marketing purposes unless you have expressly permitted us to. Furthermore, you can change your marketing preferences at any time by unsubscribing using the link at the bottom of a marketing email of by contacting us by email at email@example.com.
The General Data Protection Regulation gives people many rights. You may choose to restrict the collection or use of your personal data at any point. Full details can be found here.
If you would like to exercise any rights, please contact Isabelle Barbour ( current DPO) via email firstname.lastname@example.org /Isabelle.email@example.com detailing what action you would like us to take and we will respond as soon as possible in line with the requirements of GDPR. Please note that we will only divulge information to those making requests once we have verified your identity.
Making a complaint
If you are concerned about how we manage your data, or how we have handled a request to exercise your rights, please contact firstname.lastname@example.org
Changes to this statement
The Information Commissioner's Office
If you would like to learn more about the General Data Protection Regulation or make a complaint, you can visit the ICO's website following this link: https://ico.org.uk