‘Site’ – means the publicly available website www.sssnewquay.co.uk
‘Service’ – means the Surf School service we provide to our customers.
‘User’ – means a person who uses our Site or has registered to use our Service.
‘Personal Data’ – means any information that can personally identify an individual.
Please read this policy carefully to understand our views and practices regarding your personal data.
SSS Surf School
Our website address is: https://www.sssnewquay.co.uk
Our website allows individuals to book surf lessons/trips/events, and to place orders for wetsuits.
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).
We collect a variety of information about our customers and visitors to the SSS Surf School website. This personal data falls into these categories:
We also collect, use and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data may be derived from your personal data but is not considered personal data in law as this data does not directly or indirectly reveal your identity.
For example, we may aggregate your Usage Data to calculate the percentage of users accessing a specific website feature.
We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your genetic and biometric data).
We do sometimes collect information about yours and other participants’ medical conditions and dietary requirements for operational reasons, to help ensure that wellbeing and health and safety requirements are met during your surf lesson or event.
Remember, if you choose not to share personal data with us, or refuse certain contact permissions, we might not be able to provide the services you’ve asked for.
We use different methods to collect data from and about you, including through direct interactions. You may give us your Identity, Contact and Financial Data by filling in online forms or by corresponding with us by phone, email or through social media.
This includes personal data you provide when you:
We may receive personal data about you from various types of third parties, including:
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
We use the following cookies:
When you use our website, your device or browser may be sent cookies from third parties, for example when using embedded content and social network links. It’s important for you to know that we have no access to or control over cookies used by these companies or third-party websites. We suggest you check the third-party websites for more information about their cookies and how to manage them.
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
We use Google Analytics to measure traffic to our Site and understand how Users move around and use our Service. We use this information to enhance the Site and Service we provide to ensure that Users get the best experience possible. All of the information we collect from Google Analytics is aggregate and will not be disclosed with any other third parties.
We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
SSS Surf School uses the third party payment processor Paypal to process payments made for lesson bookings via the Website. All online payments will be conducted in accordance with Payment Card Industry (PCI) data security standards and your billing information (which is only used by the payment processors for the purpose of performing fraud protection) is encrypted before being communicated to them. Your credit card details are communicated directly from your browser to these payment processors â€“ SSS Surf School never sees your full Permanent Account Number (PAN). This means that the payment form is either off-site or displayed in a frame on the payment page.
For security reasons Bookeo (our online booking system), does not store credit card numbers itself, not even in an encrypted format. Credit card numbers are stored by the payment gateway.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business / legitimate need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We will only keep your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
By law we have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for six years after they stop being customers for tax purposes.
In some circumstances you can ask us to delete your data; see Your legal rights below for further information.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
Protecting the privacy of children is particularly important in data protection. Anyone under the age of 18 is not eligible to use our Service. We do not knowingly collect any Personal Data of anyone younger than 18 unless parental consent has been obtained prior to using our Service. If you are under the age of 18 and we have not been provided clear parental consent, then please do not use or access our Service at any time.
If we become aware of any personal data that has been gathered on a child who is under the age of 18 without parental consent, we will take the appropriate action to ensure it is removed from our system.
If you, as a parent or guardian, discover that your child (under the age of 18) is using our Service without your consent, please notify us and will we take the relevant action to ensure the Personal Data of the child is erased.
If you have an account on this site, have subscribed to our services, or have have left comments/enquires, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Last edited: 18/07/2019
Subscribe to our newsletter to get all the latest updates.