[Moss Lodge Hotel Websites] (“We”) are committed to protecting and respecting your privacy.
For the purpose of the Data Protection Act 2018 (the Act), the data controller is [Moss Lodge | Kings Road | Rochdale | OL16 5HW].
What cookies do we use on this website?
|Google Analytics||Persistent||2 years||To understand how people use our site, and to discover areas on our site with issues, we use Google Analytics. Most websites use some sort of analytics program like this. The data it collects helps us see things like how many people visit our site, which country they are from, how many pages they visited, how fast our site loaded, and so on. All data collected is completely anonymous, it does not identify you as an individual in any way.|
|WordPress||Persistent||1 year||WordPress is the Content Management System (CMS) that runs this website. It uses a cookie when logging in and out and is essential for proper website operation. It is only set if you are a registered user, so for most people, it is not used at all.|
Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.aboutcookies.org or www.allaboutcookies.org.
Does this website use Google Analytics?
Who is the Data Controller for the personal information collected by this website?
Samantha Fleming of Moss Lodge Hotel.
How do we obtain your personal information?
We only obtain, and store, personal information about you when:
- You send us an email.
- You submit any form on our website.
- You order any of our services or products. In which case, at our discretion, we may obtain, and store, information about your credit and financial history.
- You request any information from us, by any other means.
What personal information may we obtain about you?
We may obtain, and store, all, or some, of the following personal information about you:
- Your address (personal and business).
- The company you are employed by.
- Your telephone number (personal, business and mobile).
- Your fax number (personal and business).
- Your email address (personal and business).
- Your website URL (personal and business).
- Your financial history (personal and business).
- Your name (including email nicknames).
- Information about the computer systems and services that you use to access the Internet.
- Information about your activities on our website. We only use the information in our web server’s log to assist with our website design and maintenance.
- Information you have provided in emails that you have sent to us.
- Information you have provided in forms on our website that you have submitted to us.
- Details of orders that you have placed with us.
- Details of any information request that you have made to us in any other way.
Why do we need to process your personal information?
We use your personal information to:
- Enter into, or prepare to enter into, a contract with you to supply goods and services.
- Comply with legal obligations to supply information to HMRC for VAT and Corporation Tax purposes.
- Ensure the correct functioning of our website, email service and IT systems. It is a legitimate business interest for us to use your personal information in this way.
- Ensure that our clients are in a financial position to pay us for goods and services which we may supply. It is a legitimate business interest for us to use your personal information in this way.
- Provide you with marketing information about our goods and services. It is a legitimate business interest for us to contact potential business clients in this way.
How do we protect your personal information?
We protect your personal information in the following ways:
- We store your personal information on a server that is protected from unauthorised access by the use of passwords. These passwords are only available to personnel who require access to your personal information to complete the tasks described above.
- The server described above is connected to our company LAN, which is protected from direct connection to the Internet by a hardware firewall and other security methods.
- We monitor our firewall and other security logs on a regular schedule for indications of unusual, or cracker related, activity.
- We assess our IT security procedures on a regular basis.
- Our web server is protected from direct connection to the Internet by a hardware firewall and other security methods.
- Our web server uses the TLS/SSL protocol (HTTPS://) and all personal information that you may submit using any forms on this website is encrypted and secure during transmission to us.
- All personal information that you may send by email using the Internet, may not be encrypted or secure during transmission to us.
Do we pass your personal information on to anybody else?
We will not pass your email address, or any other personal information we may hold about you, to any third party, except in the following circumstances:
- When we need to pass such information to one of our suppliers to complete your order, make delivery arrangements or answer a request for information from you. You should note that as our suppliers may be located in any country of the world, your personal information may be transferred worldwide.
- When required to do so by law.
- When required to do so by a court order.
- When you request us to do so, in writing.
How long do we keep your personal information?
We keep your personal information for seven years from the end of the United Kingdom tax year in which we last had contact with you. This is to allow us to comply with United Kingdom tax laws.
Do we use automated decision-making processes or carry out profiling?
We do not use automated decision-making processes or carry out profiling using any of the personal information which we may hold about you.
How can you obtain a copy of, correct, or request deletion of your personal information?
If you wish to know what personal information we hold about you, or you wish to correct some of your personal information, or you would like your personal information to be deleted please contact us.
What is the Data Protection Act 2018?
The Data Protection Act 2018 controls how your personal information is used by organisations, businesses or the government and is the UK’s implementation of the General Data Protection Regulation (GDPR).
Under the Data Protection Act 2018, you have the right to find out what information the government and other organisations store about you. These include the right to:
- Be informed about how your data is being used.
- Access your personal data.
- Have incorrect data updated.
- Have data erased.
- Stop or restrict the processing of your data;
- Data portability (allowing you to get and reuse your data for different services);
- Object to how your data is processed in certain circumstances.
You also have rights when an organisation is using your personal data for:
- Automated decision-making processes (without human involvement).
- Profiling, for example, to predict your behaviour or interests.
The Data Protection Act 2018 requires that we notify the Information Commissioner’s Office (ICO) that we are processing personal information so that our details can be included in the public register.
We have done this and our registration number is
You can obtain more information about the GDPR and the Data Protection Act 2018, and consult the ICO’s public register at ico.org.uk.
If you believe that your rights under the Data Protection Act 2018 have been infringed you can make a complaint to the ICO.