About this policy and who we are
Welcome to Llys Dulas Estate Company Limited privacy and cookies policy.
We are Llys Dulas Estate Company Limited (a company registered in England & Wales, company number 00541059) and trade as “Sage And Sea”.
All references to “we” “our” “us” or “company” within this statement or within any opt-in notices are deemed to refer to Llys Dulas Estate Company Limited trading as Sage and Sea.
Our registered office is The Administration Centre, Llys Dulas Estate, Dulas, Amlwch, Anglesey, LL70 9LX and our ICO Reference number is ZA480397. We are committed to protecting and preserving your privacy and personal data when you visit our website or communicate with us electronically (regardless of where you visit it from), and this policy explains how we collect, use, share and protect your personal data.
This website is not intended for children and we do not knowingly collect data relating to children.
You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance
This policy covers guests who use our company website to book a holiday or look for a holiday with Sage and Sea. Please note that our customers must be over the age of 18.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.
Personal information we collect
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data). We may collect, use, store and transfer different kinds of personal data about you and in running and operating the website, we may collect and process the following information:
Electronic identifiers: cookies, IP addresses. These electronic identifiers are essential to enable you to log into your online account and to assist you if you encounter difficulties using our online services. You can disable cookies if you wish, but this will hamper our ability to provide online services securely.
We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
Where we need to collect personal data by law, or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with goods or services). In this case, we may have to cancel a product or service you have with us, but we will notify you if this is the case at the time.
How we collect personal information
We will only use your personal data when the law allows us to. Most commonly, we will collect information in several ways, as follows:
How we use your personal information
We use your personal information to:
We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact the Data Controller Representative on 01244 732 920.
Legal basis of processing
There are several grounds on which we will store and use your data, as follows:
How we share your personal information
We give some of your contact information to housekeepers, so they can get in contact with you regarding, for example, key collection. (We also give you their contact details, for the same reason).
However, we would note the following:
Any personal information we collect is only used by Sage and Sea. We do not share personal data with any other third parties, other than noted above, unless we are required to do so by law.
Security of your data
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
We protect your data with various technology-based systems. We also regularly test and evaluate the security of our systems, updating safeguards as necessary. Our staff are trained in the importance of security and privacy and we treat breaches of confidentiality and privacy as disciplinary matters.
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.
Where your information is no longer required, we will ensure it is disposed of or deleted in a secure manner.
We generally use your data either on the basis of your consent or as a result of a holiday booking which you have placed with us. You have the right to withdraw your consent. All of our marketing communications include an unsubscribe link, to make it easy to withdraw consent. If you have an online account with us, you may also log into our website to manage your marketing preferences.
Under certain circumstances, you have rights under data protection laws in relation to your personal data.
If you are concerned about the processing of your data, please contact firstname.lastname@example.org. If you are unhappy with our use of your data, you also have the right to make a complaint to the Information Commissioner’s Office, which supervises data protection in the UK.
At any time, you have the right to ask us:
Please note that when these rights are exercised, we will conduct identification checks in order to ensure your privacy is safeguarded. You will need to contact us by email or post, to exercise these rights. We try to respond to all legitimate requests within 1 month of the request being made. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we could refuse to comply with your request in these circumstances.
We will not contact you for marketing purposes by email, phone or text message unless you have given your prior consent. We will not contact you for marketing purposes by post if you have indicated that you do not wish to be contacted.
You may opt-out of receiving marketing communications from us by contacting us at any time by emailing us at email@example.com or in writing to the Data Controller Representative at Llys Dulas Estate Company Limited c / o Sage and Sea, Bretton House, Bell Meadow Business Park, Chester, CH4 9EP or by calling 01244 732 920 and asking to speak to the Data Controller Representative.
You can also opt out of certain marketing communications through the following means:
Please remember that if you change your preference it may take a short time for those preferences to become effective.
To comply with EU legislation that was introduced in May 2012, this section documents how our website might collect information from you.
You can find more information about the individual cookies we use and the purposes for which we use them by visiting www.allaboutcookies.org.
Cookies for Site tracking
To enable us to monitor the usage of our website and the success of our marketing, we use Google Analytics, which uses a variety of cookies. These are used to track visitors and collect information about how visitors use our site. We use the information to compile reports and to help us improve the site. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited.
For information on the cookies used by Google Analytics please visit https://support.google.com/analytics/answer/6004245
Payment service providers
In order to ensure your transactions are as secure as possible, we use the following company to process all card payments:
Sage Pay Europe Limited, North Park, Newcastle upon Tyne, NE13 9AA
If you have any queries regarding any matters noted above, please do not hesitate to call the Data Controller Representative on 01244 732920 or by emailing firstname.lastname@example.org.