1.1 Welland Limited (‘we’, ‘us’ ‘our’) are strongly committed to protecting your personal data. This notice (“Notice”) sets out how we collect, use and protect your personal data. Please read the following carefully to understand our practices regarding your personal data and how we treat and safeguard it. In the event you wish to withdraw your consent to the data practices described in this Notice that are based on consent, please contact us through the “Contact us” section below.
1.2 This Notice has been developed to ensure that guests of Corbalton Hall (“Corbalton”), whether booking/staying with us in Corbalton, visiting Corbalton or otherwise, feel confident about the privacy and security of personal data provided to us in relation to those activities and our services to them in as part of or in relation to those activities, and to meet our obligations under the Data Protection Acts 1988 to 2018 (the “Acts”) and Directive (EU) 2016/679 General Data Protection Regulation (the “GDPR” and together with the Acts, “Data Protection Law”). Under Data Protection Law, personal data is information that identifies you as an individual or is capable of doing so (“Personal Data”).
1.3 We must comply with the data protection principles set down in Data Protection Law and this Notice applies to all Personal Data collected, processed and stored by us. By providing us with information, you accept and agree to the practices described in this Notice.
1.4 For the purposes of Data Protection Law, we are the data controller of your Personal Data. You will find our contact details in the “Contact us” section below.
2. What kinds of Personal Data do we collect?
2.1 We may collect the following types of Personal Data from you when you book, stay with or visit Corbalton:
(a) contact details (including name, telephone number, email address, postal address, etc.);
(b) financial and payment information, such as debit card, credit card and bank account details.
(c) other information required to complete the booking process, including Personal identification documentation
(d) information which you supply through any website run by us ie www.corbaltonhall.ie or any independent property or booking websites, for example www.exceptionalvillas.com,www.adamsandbutler.com,www.airnb.com (the “Sites”);
(e) information contained in or relating to any enquiry or other communication that you send to us (which may include the communication content and metadata associated with the communication);
(f) check out administration information, which may include name, contact details, and reviews (this data may be processed for follow up emails and review of our service); and
3. Legal basis for processing
3.1 We rely on the following legal bases under GDPR in processing Personal Data:
(a) performance of a contract with you (for example, when you book a stay at Corbalton);
(b) consent (for example, where you voluntarily provide Personal Data via a Site or when you make an enquiry with us regarding Corbalton or otherwise);
(c) compliance with legal obligations; and
(d) legitimate interests (for example, in the event of a complaint or legal action being taken against us).
4. How we Collect Personal Data
4.1 We collect Personal Data from your interaction with us, for example, when you contact us through the Sites, via email, text message etc. Personal Data is always collected from you directly, save in limited circumstances where an independent Site may collect the Personal Data from you and share it with us, on a controller-to-controller basis.
5. How we may use your Personal Data
5.1 Except as set out in in this Notice, we will not disclose Personal Data that we collect to any parties other than those with whom we partner or are affiliated with, without your consent. Except as described below, we will not sell, share, trade, rent, or give away your Personal Data.
5.2 Information you provide
We may use your Personal Data to process any requests made by you, for example to respond to an enquiry regarding Corbalton’s availability or to book a stay at Corbalton or and for the purposes of processing a reservation.
5.3 Do we disclose Personal Data to anyone else?
We shall disclose your Personal Data to third parties only when it is necessary as part of business practices or when there is a legal or statutory obligation to do so. Whenever we disclose your Personal Data to third parties, we will only disclose that amount of your Personal Data necessary to meet such business need or legal requirement. Third parties that receive your Personal Data from us must satisfy us as to the measures taken to protect the Personal Data such parties receive, in accordance with Data Protection Law and as stated in this Notice. Appropriate measures will be taken to ensure that all such disclosures or transfers of your Personal Data to third parties will be completed in a secure manner and pursuant to contractual safeguards.
5.4 We may employ other companies and individuals to perform functions on our behalf, including booking agents, these third-party service providers are authorised to use Personal Data only as needed to perform their functions on our behalf and are required to maintain the security of your Personal Data.
5.5 Financial transactions relating to a booking or other services may be handled by our payment services providers, AIB plc and third-party booking agents. We will share transaction data, which may include Personal Data, with our payment services providers only to the extent necessary for the purposes of processing your payments, refunding such payments and dealing with complaints and queries relating to such payments and refunds. You can find information about the payment services providers’ privacy policies and practices on their direct websites.
5.6 We may transfer your Personal Data to another company that is affiliated with us, with which we have merged, or which has acquired all or some of our assets. We will advise you if such a change of ownership or change of corporate structure takes place and we will update this Notice accordingly.
5.7 We may provide your Personal Data when obliged to do so under Data Protection Law and in response to properly made requests, for example, for the purpose of the prevention and detection of crime, and the apprehension or prosecution of offenders. In the case of any such disclosure, we will do so only in accordance with Data Protection Law.
5.8 We may disclose your Personal Data to our insurers and/or professional advisers (including legal counsel) insofar as reasonably necessary for the purposes of obtaining or maintaining insurance coverage, managing risks, obtaining professional advice, or the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure. We may also provide your Personal Data when required to do so by law, for example under a court order.
6. Transfer of data out of Europe
6.1 Your Personal Data shall not be processed by us or any third parties on our behalf outside of the European Economic Area (“EEA”). Further, your Personal Data shall not be shared by us with any third parties outside of the EEA.
6.2 If this changes, we will advise you of same by way of update to this Notice and we will implement appropriate measures to ensure that your Personal Data remains protected and secure when it is transferred outside of the EEA, in accordance with applicable Data Protection Law. Because many countries to which Personal Data may be transferred have not received an “adequacy finding” regarding their privacy laws from the European Commission, in such circumstances we will either rely on Standard Contractual Clauses or derogations in Article 49 of the GDPR to transfer your Personal Data to such countries.
7. How long do we keep Personal Data?
7.1 The period for which we retain Personal Data varies according to the use of that information. In some cases, there are legal requirements to keep Personal Data for a minimum period of time. Unless specific legal requirements dictate otherwise, we will retain Personal Data no longer than is necessary for the purposes for which the Personal Data were collected and processed (as described above).
7.2 Personal Data of customers will be retained for no longer than is necessary for the purposes for which it was collected. We will retain your Personal Data for as long as is necessary for the provision of our services to you (including, for example, the completion of a stay at Corbalton). We will retain your Personal Data as follows: (a) Personal Data will be retained for a maximum period of one year following the completion of a booking, booking enquiry or other enquiry; (b) in some cases, it is not possible for us to specify in advance the periods for which your Personal Data will be retained; in such cases, we will determine the period of retention based on criteria that comply with the requirements of Data Protection Law; and (c) the period of retention of payment details will be determined based on accounting and taxation obligations.
7.3 Following termination of the provision of services to you, your Personal Data shall be retained for as long as is necessary and permissible in accordance with statutory limitation periods. We may retain your Personal Data where such retention is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.
8. How you can exercise your rights in respect of Personal Data we hold about you
8.1 Your rights
We shall vindicate all rights under Data Protection Law. These rights are as follows: (a) the right to request access to Personal Data and to have any incorrect Personal Data rectified; (b) the right to the restriction of processing of Personal Data or to object to processing; (c) the right to have Personal Data erased; (d) the right to data portability; and (e) where processing is based on consent, the right to withdraw consent at any time.
8.2 Vindication of these rights shall not affect any rights which we may have under GDPR.
8.3 Exercising your rights and managing information
You can update or correct your Personal Data, remove it from our system or exercise any of your rights by making a request to us at the contact information provided below. If for some reason these rights are denied, we will provide an explanation of why this is the case.
8.4 We will process your request within 30 days of receipt.
9. Security of your information
9.1 We are committed to ensuring that your information is secure. To prevent unauthorized access or disclosure, we have put in place suitable physical, electronic, and managerial procedures to safeguard and secure the information we collect.
9.2 Personal Data is stored on local PC’s and on computer hard drives.
9.3 Once we have received your Personal Data, we will use strict procedures and security features to try to prevent unauthorized access.
9.4 Unfortunately, the transmission of information through the Sites is not completely secure. Although we will do our best to protect your Personal Data and apply appropriate safeguards, we cannot guarantee the security of your data transmitted through the Sites (to the extent that such Sites are owned by us or otherwise under our control) and any transmission is at your own risk.
10. How can you make a complaint about the Use of Personal Data?
10.1 Complaints on the use, retention and disposal of personal data can submitted via email to Data Protection Officer at email@example.com
10.2 You also have the right to lodge a complaint with the Data Protection Commission.
11.1 This Notice will be reviewed and updated from time to time to consider changes in the law and the experience of the Notice in practice. Any and all changes will be advised to you and, if necessary, we will obtain your consent prior to applying any changes to any Personal Data collected from you prior to the date the change becomes effective. We encourage you to periodically review this Notice to stay informed about how we collect, use, and disclose Personal Data.
12. Contact information
12.1 If you have questions about this Notice or our treatment of the information provided to us, please contact us at: Name: Andrina Doggett
Address: Corbalton Hall, Cookstown,Tara,Co Meath, C15 Y659, Ireland
What’s a cookie?
A “cookie” is a piece of information that is stored on your computer’s hard drive and which records how you move your way around a website so that, when you revisit that website, it can present tailored options based on the information stored about your last visit. Cookies can also be used to analyse traffic and for advertising and marketing purposes.
Cookies are used by nearly all websites and do not harm your system.
If you want to check or change what types of cookies you accept, this can usually be altered within your browser settings. You can block cookies at any time by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site.
Cookies are either:
Session cookies: these are only stored on your computer during your web session and are automatically deleted when you close your browser – they usually store an anonymous session ID allowing you to browse a website without having to log in to each page but they do not collect any personal data from your computer; or Persistent cookies: a persistent cookie is stored as a file on your computer and it remains there when you close your web browser. The cookie can be read by the website that created it when you visit that website again. We use persistent cookies for Google Analytics.
Cookies can also be categorised as follows:
Strictly necessary cookies: These cookies are essential to enable you to use the website effectively, such as when buying a product and / or service, and therefore cannot be turned off. Without these cookies, the services available to you on our website cannot be provided. These cookies do not gather information about you that could be used for marketing or remembering where you have been on the internet.
Performance cookies: These cookies enable us to monitor and improve the performance of our website. For example, they allow us to count visits, identify traffic sources and see which parts of the site are most popular.
Functionality cookies: These cookies allow our website to remember choices you make and provide enhanced features. For instance, we may be able to provide you with news or updates relevant to the services you use. They may also be used to provide services you have requested such as viewing a video or commenting on a blog. The information these cookies collect is usually anonymised.