It is important that you read this Privacy Policy so you are aware of how we collect and process personal data about you in compliance with the General Data Protection Regulation (GDPR).

We are the “Data Controller” of personal data collected from you to enter into a contract of service delivery (GDPR, Art. 6(b)).

Information we collect

We may collect, use, store and transfer different kinds of personal data. This may include:

• Identity Data (e.g. title, first name, last name).
• Contact Data (e.g. billing, residential and delivery address, email, telephone numbers).
• Transaction Data (payments and details of products/services you purchase).
• Technical/Usage Data from analytics about how you use our website, products and services.
• Profile Data (your preferences and order history).
• Marketing & Communications Data (your preferences for receiving information from us).

We also create Aggregated Data (statistical/demographic). Aggregated data does not directly or indirectly reveal your identity. If it does, we treat it as personal data.

We do not request any Special Category Data (e.g. health, race, religion, biometrics) to enter into a service contract.

If you fail to provide data

If we need personal data to perform a contract and you do not provide it, we may not be able to supply a product/service or accept a booking. We will notify you at the time.

How we collect your data

• Direct interactions: details you provide by form (e.g. booking), post, phone or email.
• Automated technologies: analytics (e.g. Google Analytics) and technical data about your device/visit.
• Third parties: payment or technical providers may supply Contact/Transaction data.

How we process your information

We process your personal information only where lawful, including:

• To perform a contract or to take steps at your request before entering into a contract.
• To comply with legal or regulatory obligations.
• To prevent and detect crime (including fraud).

We use your data only for the purposes collected unless we reasonably consider another compatible purpose. If we need to use it for an unrelated purpose, we will explain the legal basis. We may process without your knowledge/consent where permitted by law.

Disclosures of your personal data

We may share data with representatives of the Data Controller to enable service delivery; with IT hosting and website providers (including our website provider who may act as a joint controller); email providers; social media platforms; and where required for legal reasons (e.g. insurance, tax, or criminal investigations). We do not sell your data for marketing to third parties.

Retention

We retain personal data only as long as necessary for the purposes collected and to satisfy legal, accounting and reporting requirements. Typically we retain customer/supplier records for statutory periods (e.g. tax/VAT/insurance). We will retain your booking/contract data for 2 years after fulfilment.

You may request deletion of your data by contacting the Data Controller. If requested before we fulfil a supply contract, we may be unable to perform the contract and may have to cancel a product/service or decline a booking.

We may anonymise data for research/statistics; anonymised data may be used indefinitely.

Concerns

If you wish to raise a complaint about how your data is handled, you can contact the Information Commissioner’s Office (ICO).

Published 17 Feb 2026