Belle Isle Hotels (Cornwall) Management Ltd. (The Cornwall) does not collect any personal information from visitors to its website other than information that is knowingly and voluntarily given. Anonymous information is collected, such as the number of visitors to the website in a given period, but it is purely statistical and cannot be used to identify an individual user. Cookies are not used to collect any other information from visitors to the website.
We look to collect only relevant data and only hold data that contacts have given permission for. Personal Information includes contact details as well as all Special Category Data (eg. booking details, dietary requirements, birthdays, anniversaries). Under section 22 of the PECR we do from time to time reserve the right to market news and offers from The Cornwall to existing customers of the hotel, unless you elect not to receive such information by informing us in writing or unsubscribing from. Contacts who do not open or respond to such correspondence will, after 2 years, be removed from the contact list. New contacts will only receive newsletter information if they have opted in at the point of data collection.
All booking data is safely stored and encrypted on our Property Management System and only trained personnel have access to this information. Our internal policy forbids sharing data in anyway deemed to be unsafe or at risk.
Any payment information is held in line with PCI compliance recommendations.
Use of Information
Any personal information voluntarily given and collected may be used to contact you with further details of The Cornwall’s current activities or to send details of future initiatives or events. It may also be used for research purposes. You can inform The Cornwall any time if you no longer require such information to be sent either by contacting us directly or clicking on the “unsubscribe” link that will be on all email newsletters.
Right of Inspection
Anyone can request an SAR (Subject Access Request) to see all personal data that The Cornwall holds. This request must be made in writing to the Privacy Officer alongside proof of identity (copy of driving license or passport) and will be responded to within 30 days of the request being received.
Right of Erasure
Any contact has the right to demand erasure of all the information (subject to safeguarding acts) which must be made to the Privacy Officer at The Cornwall Hotel Spa and Estate, Pentewan Road, Tregorrick, St Austell, Cornwall, PL26 7AB. This will be completed within 30 days of the request being received.
Third Party Disclosure
Your personal information is very important and we will not disclose or sell your details to any other organisations.
The Cornwall takes appropriate measures to safeguard the information it holds from unauthorised access or improper use. Our database is stored in a secure, password protected location. Only users authorised by The Cornwall have access to this data.
If The Cornwall discovers a Data Breach within the company, the response will be to inform the relevant Data Protection Organisation within 72 hours of discovering the breach.
The Cornwall will also have the obligation, in certain circumstances, to notify data subjects directly if the data breach is likely to result in high risk to their personal data.
Integrity of Data
The Cornwall takes all reasonable measures to ensure that the information it holds is accurate. In particular it uses reliable collection methods and destroys or converts to an anonymous form any out-of-date data. Individuals may request details of all personal information held by The Cornwall so as to contest inaccurate or incomplete data, verify the information and have it corrected it as appropriate.