Millbrook Guest House understands that customers care about the use and storage of their personal information and data. This document sets out our policy on how we will use and protect your personal information.
How we collect data
The data we collect is provided to us by you or an agent/representative acting on your behalf. It is collected when:
Information we collect
The personal information we collect includes the following:
Information required to complete a booking:
The following information can also be provided but is not mandatory:
How we store your data and keep it secure
We take all reasonable technical and organisational precautions to store your information in a secure manner and prevent its loss or misuse.
Your data is stored on a secure database operated by our booking system freetobook. This database is fully compliant with the GDPR data rules.
This freetobook database does not store or capture any personal data other than as detailed above (see the Information we Collect). Neither Millbrook Guest House nor freetobook will transfer any personal data to any other party if it is not part of the booking and review process.
All credit and debit card data captured via our booking system or by other means is kept secure with the PCI level 1 compliance of FabPay and PCI Card Storage.
Where you choose to pay us by credit or debit card using our processing terminal (whether it is by using the physical card or when we process a card in the “cardholder not Present” manner), we will have a printed receipt slip that contains details of the amount paid and some card details. This receipt slip is kept in a secure location and can only be accessed by authorised personnel. The slip is kept separately from any other information that could identify the card as belonging to an individual. Card payment slips are only kept for as long as is reasonable and destroyed using a security grade shredder.
On arrival, we require you to verify your identity and booking details by completing a guest registration form that includes the personal information you (or your representative) have provided. This registration form is kept in a secure location and can only be accessed by authorised personnel. This form is only kept for as long as is reasonable and destroyed using a security grade shredder.
Using your personal information
The personal information provided to us will only be used in connection with the services we are providing to you and is intended to improve your experience.
We may use your personal information to:
Disclosures and Data Storage
We will not store or process your personal information outside the United Kingdom. Other than this, we may disclose your personal data as required by law to any third parties.
We consider obtaining feedback about your stay as part of the service we provide. To this end, we do supply your email address to third parties (including TripAdvisor and freetobook) for the sole purpose of obtaining this feedback. You are under no obligation to provide feedback, and you will only receive 1 email from each of our review partners. If you do provide feedback this may be used for marketing purposes, but we will not disclose any of your personal information.
Cookies and Similar Technologies
If you do not want information collected through the use of these technologies, there is a simple procedure in most browsers that enable you to automatically decline many of these technologies or to be given the choice of declining or accepting them.
You may request that we provide you with any personal information we hold about you. Provision of such information will be subject to the supply of appropriate evidence of your identity ( e.g. a photocopy of your passport certified by a solicitor or bank plus an original copy of a utility bill showing your current address)
You also have the right to request that we delete and destroy your personal data. Subject to providing evidence of your identity (see above) we will be happy to comply with a request to delete your data.
Third party websites
Our website contains links to other websites. We are not responsible for the privacy policies or practices of third party websites and you should exercise caution and look at the privacy statement applicable to the website in question.
Please let us know if the personal information which we hold about you needs to be corrected or updated.
Updated – February 2021