Data protection legislation
In the United Kingdom and the European Economic Area (EEA), "Data Protection Legislation" means all applicable data protection and privacy legislation or regulations including The Privacy and Electronic Communications (EC Directive) Regulations 2003 (also known as PECR) and any guidance or codes of practice issued by the European Data Protection Board or the Information Commissioner, together with: prior to 25 May 2018, the UK Data Protection Act 1998; and from 25 May 2018 onwards Regulation (EU) 2016/679 (the "General Data Protection Regulation" or "GDPR”), as amended by the UK Data Protection Bill.
Outside of the EEA, "Data Protection Legislation” means local, territorial data protection and privacy legislation that governs the processing of Personal Data. Therefore we fully endorse and adhere to the principles of data protection set out in the Data Protection legislation and will:
- fully observe the conditions regarding the fair collection and use of personal information meet our legal obligations to specify the purposes for which we use personal information
- only collect and process the personal information needed to carry out our business or to comply with any legal requirements
- ensure that the personal information we use is as accurate as possible
- ensure that we don't hold personal information any longer than is necessary ensure that people know about their rights to see the personal information we hold about them
- take appropriate technical and organisational security measures to safeguard personal information;
- and ensure that personal information is not transferred abroad without suitable safeguards.
In addition, we will ensure that:
- there is someone with specific responsibility for data protection in the organisation, we regularly review and audit how we handle personal information
- the ways we handle personal information are clearly described everyone handling personal information understands that they are responsible for following good practice
- everyone handling personal information is appropriately trained and properly supervised we regularly assess the performance of people who handle personal information
- anybody wanting to make enquiries about handling personal information knows what to do; and queries about handling personal information are deal with promptly and courteously
We collect some generic information automatically, solely to help tonydimmock.com determine the success and usefulness of its website. This generic information, which does not reveal the identity of the visitor, includes: the country of origin, time spent on the website, most and least popular pages, browser and operating system and the originating website of the visitor. This information aids tonydimmock.com improve its services by enhancing more popular areas of the website.
We only obtains specific data about visitors to its’ internet sites when such data is supplied voluntarily, e.g. when visitors send contact enquiries or places a booking. tonydimmock.com then uses the data for the purpose of fulfilling the visitors' requests. tonydimmock.com only collect personal data that are adequate, relevant and not excessive given the purposes for which they are collected.
We may share data with trusted partners who provide professional services to help develop our sites and help us perform statistical analysis, send you email or postal mail, or provide customer support. All such third parties are prohibited from using your personal information except to provide these services to tonydimmock.com.
We will not use or disclose sensitive personal information, such as race, religion, or political affiliations, without your explicit consent.
We seek to protect your Personal Data using appropriate technical and organisational measures. However, we cannot and do not guarantee or warrant that such techniques will prevent unauthorised access to Personal Data or other information about you that we collect and store. Unauthorised entry or use, hardware or software failure, and other factors may compromise the security of such information at any time.
We will not sell or reveal information obtained about our visitors to anyone outside of tonydimmock.com unless: authorized by the visitor, it is legally required, or such disclosure is required to protect the safety of employees, visitors, customers, or property. tonydimmock.com does not send junk (spam) email, although in some instances, when tonydimmock.com wishes to contact customers via email, respond to messages, or transmit information requested by a visitor, tonydimmock.com will use email.
Laws & Safety
We will disclose your personal information, without notice, only if required to do so by law or in the good faith belief that such action is necessary to: (a) conform to the edicts of the law or comply with legal process served on tonydimmock.com; (b) protect and defend the rights or property of tonydimmock.com; and, (c) act under exigent circumstances to protect the personal safety of users of tonydimmock.com, or the public.
We may collect information about your computer, including where available your IP address, operating system and browser type for system administration. This is statistical data about our users' browsing actions and patterns, and does not identify any individual and we will not collect personal information in this way.
We may obtain information about your general internet usage by using a cookie file which is stored on the hard drive of your computer. Cookies contain information that is transferred to your computer's hard drive. They help us to improve our site and to deliver a better and more personalised service. They enable us:
- To estimate our audience size and usage pattern.
- To recognise you when you return to our site.
The two type of cookies used on this site are classified as "Strictly Necessary" and "Performance" cookies.
Strictly Necessary Cookies
We use "Strictly Necessary" cookies to:
- Administrate website content
- Make sure you connect to the right service on our website when we make any changes to the way the website works
Cookies we have defined as 'Strictly Necessary' cookies will NOT be used to:
- Gather information that could be used to advertise products or services to you
- Remember your preferences or username beyond your current visit
There is one cookie that we use on this site that is defined as "strictly necessary" cookies:
Session cookie - This has a randomly generated name (eg "2a8ff4c2f40bef232b830aa" ) and it is used to keep the session live so that an administrator can update the website. It doesn't store any confidential information and is destroyed as soon as the session ends (when you close the browser).
We use performance cookies to:
- Provide statistics on how our website is used
- Help us improve the website by measuring any errors that occur
Cookies we have defined as 'Performance' cookies will NOT be used to:
- Gather information that could be used to advertise products or services to you on other websites
- Target adverts to you on any other website
In some cases, some of these cookies are managed for us by third parties, but we don't allow the third party to use the cookies for any purpose other than those listed above.
There are four cookies that we use on this site that are defined as "performance" cookies:
_utma - Identifies unique visitors
_utmb - Tracks the referral source of your visit.
_utmc - Determines the length of time of your visit to this site.
_utmz - Determines visitor navigation within this site.
cookiecheck - Remembers if the user has dismissed the cookie website notice
Right of Access
Where permissible, you can request more information about the Personal Data we hold about you and you can request a copy of your Personal Data.
Right of Rectification
If you believe that any Personal Data we are holding about you is incorrect or incomplete, you can request that we correct or supplement such Personal Data.
Right of Erasure
Right to Complain to a Supervisory Authority
You have the right to lodge a complaint about our practices with respect to your Personal Data with the supervisory authority of your country or EU Member State. Please visit http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm for more information.
Change of Ownership or Control