New EU legislation called the GDPR now sets out comprehensive requirements for all companies handling the personal data of EU citizens. This includes a number of things we must tell you of when we collect data from you.
What is GDPR?
GDPR stands for General Data Protection Regulation. This is a pan-european law which replaces previous national data protection legislation and gives all EU citizens common rights. The full text of the GDPR can be found by placing this link into your browser:
What rights does GDPR give me?
Full details of your rights are available in the text of the GDPR see http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=uriserv:OJ.L.2016.119.01.0001.01.ENG&toc=OJ:L:2016:119:TOC
What data is held about me?
We hold the following details for people (clients) who have made bookings with us or enquired about making a booking:
- Contact details.
- Records of your interactions with us e.g. previous enquiries & bookings
- Records of email exchanges and phone calls
- Details of financial transactions
We use your data to provide any services you request from us and pursue legitimate interests in promoting the company.
Specific activities include:
- Providing a quotation should you make an enquiry to hold an event.
- Organising any events should you make a booking.
- Facilitating future bookings by being able to refer back to past bookings and enquiries.
- Contacting you to enquiry about future potential bookings tell you about new opportunities.
- Evaluate the success of business initiatives and design future offers.Who is responsible for my data?
- Postal: Venue and Events Search Limited 78 York Street London W1H 1DP
- Email: - firstname.lastname@example.org
We keep details of bookings for a minimum of seven years for tax and accounting reasons.
We will keep your contact details for at least 5 years after the date of your last enquiry to maintain contact regarding future bookings.
We will delete the names, telephone numbers and email address you have given us as soon as practically possible after you request we delete it.
Where will my data be stored?
Your data will be stored on our own computer systems and on cloud based applications.
Here is a list of the current cloud based service providers we share your data with:
- Skybase: The name, telephone numbers and email addresses given to us plus a record of interactions between us to Manage our business.
- Mailator.com: Emails sent to and received from you to keep in touch with clients via email
The directors of the company.
Who else will have access to my data?
Your data will only be passed to companies with which we place events on your behalf for the purpose of providing that event – you will be aware of this before it happens. Plus other third parties who are providing services for that event again you will be aware of this before it happens.
We will not pass your data to anyone else.
How do I exercise my GDPR rights?
If you want to exercise any of your rights in relation to data we hold about you then please email or write to the Data Controller at the address given above.
Please provide details in your email/letter of what actions you would like us to take. Depending on the nature of the request and whether or not your request comes from the email address we have on file for you, we may need to verify your identity so that we don't give out information to the wrong person. In most cases it helps if you are able to provide a contact phone number so that we can validate your identify and discuss the request with you.
What if I have a complaint?
If you are concerned about how we manage your data, or how we have handled a request to exercise your rights, then please get in touch with us to discuss it as per the details above. If you are still not satisfied with the response you can take your concern to the Information Commissioner's Office. For details of how to do this please refer to the ICO web site: