By providing your personal data to us you acknowledge that it will be processed in accordance with this policy.
2. Who is responsible for your data
To facilitate the delivery of our products and services ICM Pubs shares data within the group and is responsible for customer data. Our company registration number is 13010135 and our registered office is The Queen’s Head, Southend Road, Bradfield Southend, Reading, RG7 6EY. We can also be contacted via email to email@example.com.
3. Personal data we collect about you
We collect personal data for a variety of purposes as outlined in section 3. You will provide much of this data to us directly by completing online forms or by communicating with our employees but we also gather some data via the digital interactions that you have with us.
Name and contact details (email address and telephone number)
When you book a table / function.
When you choose to receive marketing communication.
When you provide us with feedback or submit an enquiry.
When you use WiFi.
Date of Birth
To confirm that you are over 18 in order to receive licensed goods and services.
When you choose to provide it for marketing personalisation.
When you choose to provide it for marketing personalisation.
Dietary and special needs requirements
When you choose to provide it when booking a table / function.
Information about other guests on your booking including details of any children
When you provide them on behalf of others as part of making a table / function.
The correspondence that you have with us (eg emails, letters, calls, online chat service)
When you contact us or we contact you. This may include telephone call recording.
Your location / visit information
When you use WiFi.
When you make a booking.
When you use the Stable Pizza app.
When you stay in one of our hotels.
Your food / drink transaction details
When you book a table.
When you visit ICM Pubs’ locations.
Information about how you use our websites including IP address and Google Analytics.
When you browse our websites.
When you use our WiFi or leave us feedback.
Special Category Personal Data
The GDPR definition of Sensitive Personal Data includes data relating to health and religious beliefs. As a result of you telling us that you have an allergy or a specific dietary requirement you may reveal medical conditions or religious beliefs. Sensitive Data will only be processed in order to deliver the products / services that you purchase from us.
4. How and why we use your personal data
We use your personal data to provide the following services
To deliver your bookings. When you book with us we will use your information to confirm your booking and any payments you have made and to send a follow up email for your valued feedback.
To keep you informed of our products, services, offers and promotions. We may send you marketing communications about our food, drink, events and unique ICM Pubs’ experiences if you have indicated that you are happy to receive these (e.g. when you opt in to marketing when you book from us).
We will monitor opens / clicks and offer redemption on marketing emails to assess engagement.
To personalise and improve your customer experience. We may use your personal data in order to tailor our services to your needs and preferences and to provide you with a personalised customer experience.
To optimise the performance of our websites. We may also collect information on how you use our websites including the pages that you visit and the search criteria that you perform in order to optimise the performance of the website and personalise content that you see.
To meet our legal obligations. We are required to keep certain records for legal reasons – for example invoices that we issue. We will keep and use this data in line with our legal requirements.
We use CCTV to deter and detect crime and civil offences, to support court action and comply with our legal licensing requirements. We also use CCTV to provide a safe environment for our staff and customers. We use CCTV to facilitate entry / exist from buildings and improve customer service.
For market research and to deliver business insight to help us ensure that our products and services remain relevant.
5. Sharing your personal data.
We are reliant on a number of 3rd party providers in order to provide our products and services. Where this is the case we will remain in control of the data and we will ensure that the 3rd parties comply with high security standards for the protection of your personal data. The 3rd parties will not have any rights to use the data for their own purposes. Our 3rd party providers include:
Website hosting companies. Wix.com (https://wix.com)
Pub Booking System Provider. Quadranet (http://www.quadranetsystems.com/)
Legal authorities and legal advisors.
6. Transfer of Data outside the EU
All of the ICM Pubs’ operations covered by this policy are based in the EU. However, the technical infrastructure of some of our providers is located in data centres outside the EU. The data will be transferred outside the EU as follows:
Website Hosting. Wix.com (https://wix.com) Wix.com’s systems are located in the United States and transfer takes place in accordance with EU-US Privacy Shield.
7. The legal basis for processing your Data
We rely on the following reasons for using your data.
Compliance with a legal obligation / regulatory authority.
Performance of a Contract. In order to deliver the service that we have agreed to provide you with (such as a hotel or table booking).
Legitimate Interest. In order to improve customer experience and develop our products & services.
Consent – where you have specifically consented to us using the data.
8. Retention and Security of your Data
We will only retain your personal data for as long as is necessary. This duration will depend on the type of data and the reason for processing it. For example:
We will view consent to receive marketing communication as revoked if the marketing communication hasn’t been engaged with (opened or clicked) within 13 months.
We will ensure that we use appropriate technical and organisational security measures in order to ensure that your data remains secure. These measures include internal policies and staff training, appropriate contracts with 3rd party suppliers and role based access control.
9. Your Rights
You have certain rights in relation to the personal information we hold about you. Some of these rights only apply in certain circumstances. In order to exercise these rights please contact us using the contact details below. Please note that we will require proof of identity as part of this request and most rights are subject to limitations and exceptions. We will provide reasons if we are unable to comply with any request for the exercise of your rights.
Right of Access. You have the right at any time to ask us for a copy of the data that we hold about you and how it is used.
Right of Correction or Completion. If the data that we have collected is inaccurate you have the right to update it.
Right of Erasure. In certain circumstances, you have the right to request that Information we hold about you is erased. This usually applies if the data is no longer necessary for the purpose that it was collected for, or you withdraw your consent for its processing and request its erasure.
Right to Object to or Restrict Processing. If you wish to challenge our need to process your data on legitimate interest grounds or if you wish to withdraw your consent.
Right of Data Portability. You have a right to request that we transfer your data to another data processor.
Proof of Identity will be required before we can action some requests. If you choose to exercise any of your rights we will contact you to verify your identity.
12. Contact Information
If you have any questions about this policy or how your data is processed, please contact us at The Queen’s Head, Southend Road, Bradfield Southend, Reading, RG7 6EY, via phone on 07580 216819 or via email to firstname.lastname@example.org.
You can unsubscribe from our marketing communication at any time by clicking the unsubscribe link at the bottom of any of our marketing communications. Alternatively you can email email@example.com.
Should you have any concerns about this policy or the way that we are processing data you have the Right to Lodge a Complaint with the Information Commissioner’s Office. Please look at https://www.ico.org.uk for more detail.