Privacy Policy and GDPR
What is GDPR?
GDPR stands for General Data Protection Regulation and is intended to strengthen and unify data protection for all individuals within the European Union. Its aim is to give control back to EU residents over their personal data. GDPR was introduced in 2016, and has been enforceable from May 25, 2018.
As a customer of JP Orkney, GDPR gives you new protection rights and assures better access to your personal data:
Right to rectification: Rectify your personal information at any time. You can also contact us directly to edit or rectify your information.
Right to be forgotten: You can send us a request to erase your data which will be completed within 30 days.
Right to portability: Upon request we will export all your data and give it to you for transfer to any third party or competitor.
Right to object: Should you subscribe to newsletters, you can unsubscribe at any point in time from them.
Right to access: We are transparent about the data we collect and what we do with it.
What we store on our database
Personal Data: We store personal data which is the first name, last name, date of birth, email address, phone number and home address (if supplied) of customers booking via our website.
Processing of personal data: We do not sell any of your data to third party vendors. With GDPR compliance you can also ask us to remove your data.
Card Details: Credit card or other sensitive information is not stored by us, and is handled directly by Stripe and PayPal.
Cookies: A cookie is information placed on an internet user’s hard drive by the server of a website they have visited. It contains the name of the server that placed it there, an identifier with a unique number and sometimes an expiry date. This information is sometimes stored on the computer as a text file which a server can access to read and save information.
Personal data provided by the user may only be disclosed to a third party with the user’s authorisation and confirmation that the owner of this personal data has personally authorised its disclosure, or at the request of legally competent authorities, upon presentation of a court order or within the context of a legal dispute.
Types of cookies used
Cookies needed to navigate the website (Necessary): These cookies are needed for the JP Orkney website to operate. They allow the website’s main features to be used.
Functional cookies: These cookies allow a customised user experience to be provided.
Analytical cookies: These cookies allow website use and performance to be monitored, and its operation to be improved by analysing the traffic to pages.
Share button cookies: Social media cookies allow users to share pages and content on third-party social networks via social media sharing buttons.
Cookie management
Users can accept or refuse cookies on a case-by-case basis, or refuse all cookies by adjusting their browser settings. Depending on which browser the user has, cookies can be blocked as follows (click to open):
Internet Explorer
Google Chrome
Firefox
Safari
Except for essential cookies, all cookies used on our site will expire at the end of the session. Cookies will be held on the user’s device for a maximum period of 13 months from the date the user gives consent. Once this period has expired, consent will need to be given again.
Security
JP Orkney Tours, Inn Style, Planyo, Stripe and PayPal have taken all necessary precautions to safeguard personal data and, in particular, to prevent it from being misrepresented, damaged or accessed by an unauthorised third party. These measures include multi-level firewall, anti-virus software and encrypted data transmission using SSL/HTTPS/VPN technology. Any questions about the security of our website can be addressed to enquiries@jporkney.co.uk.
Amendments to the policy
JP Orkney Tours reserves the right to amend this Privacy Policy to comply with any changes to the laws and regulations in force. Any amendments will be communicated via our website at least one month before they come into force.