This policy sets out how AC Holiday Rentals Ltd (ACHR) uses your personal data.
Who are ‘we’?
AC Holiday Rentals Ltd, a limited company registered in England and Wales
Registered No 8354180
Registered Office Fayal,
Your acceptance of this policy, and our right to change it
By using our websites, social media pages or providing your information you consent to our collection and use of the information you provide in the ways set out in this policy. If you do not agree to this policy please do not use our sites, social media pages or services. We may make changes to this policy from time to time. If we do so, we will post the changes on this page and they will apply from the time we post them.
Defining personal data
Personal data is information that can be used to help identify an individual, such as name, address, phone number or email address.
This policy applies to our website, our use of emails and text messages for marketing purposes, and any other methods we use for collecting information. It covers what we collect and why, what we do with the information, what we won’t do with the information, and what rights you have.
What information do we collect and why?
We will only ever collect the information we need – including data that will be useful to help improve our services. We collect two kinds of information:
• non-personal information such as IP addresses (the location of the computer on the internet), pages accessed and files downloaded. This helps us to determine how many people use our sites, how many people visit on a regular basis, and how popular our pages are. This information doesn’t tell us anything about who you are or where you live. It simply allows us to monitor and improve our service.
• personal information such as name, postal address, phone number and email address. We collect this information in connection with specific activities, such as holiday bookings, ACHR updates, sending villa keys etc. The information is either needed to fulfil your request or to enable us to provide you with a more personalised service. You don’t have to disclose any of this information to browse the sites. However, if you do choose to withhold requested information, we may not be able to provide you with certain services.
What do we do with the information?
We will use the information you provide to:
- fulfil your requests such as completing a holiday booking
- record any contact we have with you
- communicate with our clients
- confirm your residency with the Spanish police in accordance with local laws
- if you have requested/subscribed, provide you with holiday information that we think may be of interest to you.
Using your information for marketing
We only send ACHR information to people who have specifically said that they agree to us doing this or if they have opted to subscribe through the website.
Sharing your information
We will only share your information if:
- We are legally required to do so, e.g. by a law enforcement agency legitimately exercising a power or if compelled by an order of the Court
- We believe it is necessary to protect or defend our rights, property or the personal safety of our people or visitors to our premises or rental properties or websites
- We are working with a carefully-selected partner that is carrying out work on your/our behalf. These partners may include management agencies or legal executives. The kind of work we may ask them to do will be connected to your holiday rental. We only choose partners we can trust who treat your information as carefully as we would and only use it for the purpose it was supplied.
We store your personal data within various systems which involves transferring your data outside the European Economic Area
Countries outside of the European Economic Area (EEA) do not always offer the same levels of protection to your personal data, so European law has prohibited transfers of personal data outside of the EEA unless the transfer meets certain criteria.
Many of our third parties service providers are based outside the European Economic Area (EEA) so their processing of your personal data will involve a transfer of data outside the EEA.
Whenever we transfer your personal data out of the EEA, we do our best to ensure a similar degree of security of data by ensuring at least one of the following safeguards is in place:
- We will only transfer your personal data to countries that the European Commission have approved as providing an adequate level of protection for personal data by; or
- Where we use certain service providers, we may use specific contracts or codes of conduct or certification mechanisms approved by the European Commission which give personal data the same protection it has in Europe; or
- If we use US-based providers that are part of EU-US Privacy Shield, we may transfer data to them, as they have equivalent safeguards in place.
If none of the above safeguards is available, we may request your explicit consent to the specific transfer. You will have the right to withdraw this consent at any time.
Storing your information
Information is stored by us on computers and in paper files located in the UK and Spain. We may transfer the information to other offices and to other reputable third party organisations as explained above. We place a great importance on the security of all personally identifiable information associated with our clients. We have security measures in place to attempt to protect against the loss, misuse and alteration of personal data under our control. While we cannot ensure or guarantee that loss, misuse or alteration of data will not occur while it is under our control, we use our best efforts to try to prevent this. We will keep your information only for as long as we need it to provide you with a service, information you have requested or to comply with the law. When we no longer need information we will always dispose of it securely in line with legislation.
What we don’t do with your information
We never sell or share your information to other organisations to use for their own purposes.
The General Data Protection Regulations (GDPR) 2018 gives you certain rights over your data and how we use it. These include:
- Right to be informed – transparency over use of personal data, typically through a privacy notice
- Right of access – a copy of their data must be provided within one calendar month of the request being received
- Right of rectification in the event that data is inaccurate or incomplete
- Right to erasure of all personal data held on a subject, where certain conditions apply
- Right to restrict processing to storage of data only
- Right to data portability – data subject has a right to a copy of their data in a common format
- Right to object to processing based on legitimate interest
- Right not to be subject to automatic decision making, including profiling
If you wish to exercise any of these rights please contact us: firstname.lastname@example.org
For more information about your rights under the GDPR 2018 go to the website of the Information Commissioner’s Office at ico.org.uk.
Links to third party websites
Social media sites
Other people’s data
Some of the services we offer allow you to provide the personal data of other people (e.g. tagging people in photos on social media). Before providing anyone else’s data please ensure they are happy for you to do so and under no circumstances must you make public another person’s home address, email address, or phone number.
If you have any questions about this policy or how we use data please contact us: email@example.com
A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server. This enables the web server to identify and track the web browser.
We may use both “session” cookies and “persistent” cookies on the website. Session cookies will be deleted from your computer when you close your browser. Persistent cookies will remain stored on your computer until deleted, or until they reach a specified expiry date.
We will use the session cookies to: keep track of you whilst you navigate the website; keep track of items in your shopping basket; prevent fraud and increase website security. We will use the persistent cookies to: enable our website to recognise you when you visit and keep track of your preferences in relation to your use of our website.
Most browsers allow you to reject all cookies, whilst some browsers allow you to reject just third party cookies. For example, in Internet Explorer (version 9) you can refuse all cookies by clicking “Tools”, “Internet options”, “Privacy”, and selecting “Block All Cookies” using the sliding selector. Blocking all cookies will, however, have a negative impact upon the usability of many websites.