The Pendennis respects the privacy of our website users and is committed to protecting our customer’s privacy when using www.thependennis.co.uk Please take the time to read this notice which explains what information we collect about you, how we use it, and your rights.
The Pendennis (“The Pendennis”, “we” or “us”) is the data controller of the personal data collected via or in connection with The Pendennis.co.uk and any associated App (the “Site”). For online bookings made through FreeToBook software The Pendennis is a joint data controller with Freetobook.
What personal data do we collect about you?
We collect personal data from you when you provide it to us directly and through your use of the Site and if making an online booking your information is collected by Freetobook software. This information may include:
Our servers automatically log some basic information sent by your browser. This can include: the date and time of your request; your web request; IP address (Internet Protocol); browser type; etc.
Information you provide to us when you use our Site. Google, whose analytics we use, does collect information about your visit.
Our online bookings on our website are carried out through Freetobook. You are asked for your name, address, telephone number and email, payment information and the names of any guests travelling with you. Freetobook may also store your IP address. If you use our online contact form or telephone to book then The Pendennis will collect your name, address, email and telephone number.
What do we use this personal data for?
Depending on how you use our Site, your interactions with us, and the permissions you give us, the purposes for which we use your personal data include:
- To fulfil your booking
- Information collected by Freetobook is stored in their system to be used to process your booking
- To manage and respond to any queries or complaints to us.
- To improve and maintain the Site, and monitor its usage.
- For market research, e.g. we may contact you for feedback about our service.
- For security purposes, to investigate fraud and where necessary to protect ourselves and third parties.
- To comply with our legal and regulatory obligations.
We rely on the following legal basis, under data protection law, to process your personal data:
- Performance of a contract: the storage of your information may be necessary to perform the contract that you have with us, or take steps prior to entering into a contract with you
- Legitimate Interests: ee may use your information for our legitimate interests, such as for administrative, fraud detection and legal purposes
- Consent: we have obtained your consent where you contact us with a query
As a customer you choose which additional information to provide us with after the basic information we need from you and as a visitor using our website who contacts us with an enquiry you choose the information you wish to include other than the information we require to contact you.
Who do we share this personal data with?
We share customers’ personal data with third parties in the following circumstances:
- With service providers working with us, e.g. online booking software Freetobook
- With our professional and legal advisors.
- With third parties engaged in fraud prevention and detection.
- With law enforcement or other governmental authorities, e.g. to report a fraud or in response to a lawful request.
- Otherwise where we have your consent or are otherwise legally permitted to do so.
Storage and Retention
Our own servers are based the UK but some of the service providers we work with are based around the world. Consequently, your personal data may be processed in countries outside of Europe, including in countries where you may have fewer legal rights in respect of your data than you do under local law.
We will keep your personal data for as long as we need it for the purposes set out above, and so this period will vary depending on your interactions with us. For example, where you have booked a stay with us, we will keep a record of your details for the period necessary for invoicing, tax purposes.
We may also keep a record of correspondence with you (for example if you have made a complaint about our service) for as long as is necessary to protect us from a legal claim. Where we no longer have a need to keep your information, we will delete it.
If you have made your booking with us online, your data is stored by Freetobook after your stay for as long as is necessary to comply with legal obligations and for us to welcome your repeat business.
To protect your information we have policies and procedures in place to ensure that only authorised personnel can access the information and that your information is handled and stored in a secure way. Whilst we do everything within our power to ensure that personal data is protected at all times, due to the nature of the internet, we cannot guarantee the security and integrity of the information that has been transmitted to our Site.
In accordance with the General Data Protection Regulation (GDPR) Freetobook observes reasonable procedures to prevent unauthorised access and misuse of personal information. Appropriate business systems and procedures are used to protect and safeguard any personal information given to Freetobook
You have certain rights in respect of your personal data, including the right to access, portability, correct, and request the erasure of your personal data.
You also have the right to object to your personal data being used for certain purposes, including to send you marketing.
You have the right to access data that is stored by us and the data stored on our behalf by the Freetobook booking software system. You should email or write to us, using the contact details below, to request an overview of your personal data
We will comply with any requests to exercise your rights in accordance with applicable law. Please be aware, however, that there are a number of limitations to these rights, and there may be circumstances where we are not able to comply with your request.
To make any requests regarding your personal data, or if you have any questions or concerns regarding your personal data, you should contact us using the details below. You are also entitled to contact your local supervisory authority for data protection.
Write to: The Pendennis, Alexandra Road, Penzance, Cornwall TR18 4LZ
What are cookies?
A “cookie” is a simple text file that is stored on your computer, tablet, mobile phone or other mobile device when you visit a website using a browser (e.g. Google Chrome, Internet Explorer, Safari or Firefox).
A cookie is not a program and it will not do anything actively on your computer. A cookie will not identify you personally.
There are different types of cookies:
Session cookies are deleted shortly after you close down your browser
Persistent cookies stay on your device until you delete them from your cache or they expire. These cookies are to help your browsing experience by enabling us to remember your preferences when you return to visit our website. This allows us to treat you as an individual.
First party cookies are ones set by our website
Third party cookies can be set by Google, YouTube, AddThis, Amazon, etc.
First Party Cookies:
The first time you request an .asp file within a given application, ASP generates a SessionID. A number produced by a complex algorithm, the SessionID uniquely identifies your session. At the beginning of a new session, the server stores the Session ID in your Web browser as a cookie.
The SessionID cookie is similar to a locker key in that, as the user interacts with an application during a session, ASP can store information for the user in a “locker” on the server. The user’s SessionID cookie, transmitted in the HTTP request header, enables access to this information in the way that a locker key enables access to a locker’s contents. Each time that ASP receives a request for a page, it checks the HTTP request header for a SessionID cookie.
After storing the SessionID cookie in the user’s browser, ASP reuses the same cookie to track the session, even if the user requests another .asp file, or requests an .asp file running in other application. Likewise, if the user deliberately abandons or lets the session timeout, and then proceeds to request another .asp file, ASP begins a new session using the same cookie. The only time a user receives a new SessionID cookie is when the server administrator restarts the server, thus clearing the SessionID settings stored in memory, or the user restarts the Web browser.
By reusing the SessionID cookie, ASP minimizes the number of cookies sent to the browser.
Third Party Cookies
Google Analytics Cookies
check in date choice for booking calendar from portal.freetobook.com
amount of nights choice for booking calendar from portal.freetobook.com
Our cookies help to give you a better online experience as you navigate our website and use our searches. They also track website performance so we can analyse page traffic. We only use this information for statistical analysis purposes.
If you choose to delete cookies we will not remember things about your preferences and you will be treated as a first-time visitor every time you use our website.
You have the choice to accept or decline cookies. Most web browsers will automatically accept cookies, but you can usually change your browser setting to decline cookies if you prefer. This may prevent you from getting the best experience from the website.
Third party cookies
A browser cookie is only tracked within the specific browser, so if you open a different browser and completes an action, it will not be tracked.
We use use Google Analytics to analyse the use of our website and how it is accessed. Google Analytics generates statistical and other information about our website use by means of cookies informing us which pages are viewed most, which gives us valuable information to help improve our website.
Links to third party websites
Our website contains links to other websites of interest. When you use these links to leave our site, please note that we do not have any control over those other websites and cannot be held responsible for the protection and privacy of any information which you provide whilst visiting those sites.
Third party websites are not governed by this privacy statement. You should check the privacy statement of any linked websites you choose to visit.