Data Protection

 
 

GDPR 

We are committed to our users’ rights to privacy. We promise to share transparently all aspects of how the Coastdale Parks product and websites work in regards to privacy, terms, and personal data, and we are in full support of efforts to ensure your protection on and offline.

The following is a collection of information and resources to help answer any questions you have about your experience with Coastdale Parks. We’re grateful for your interest and proud to have you as a part of our community!

GDPR COMPLIANCE

The EU’s General Data Protection Regulations (GDPR) take effect May 25, and we are fully behind the spirit of these regulations for a safe and secure Internet. We aspire to embrace privacy by design and, whenever possible, to not collect and store personally-identifiable information.

Our Privacy Policy contains references of the few instances where personally-identifiable information is required. Typically this will include an email address in order for your holiday booking or sales request to Coastdale Parks.

Overall, we aim for privacy by default: if data collection is not integral to the way our product works, then we won’t collect it. This approach has felt very much in line with the spirit of GDPR, and we’re fortunate that a lot of these data collection practices have been in place at Coastdale Parks for some time. As such, you may see few banners or forms requesting consent for us to collect personally-identifiable information for tracking or other purposes.

At any time, you may request your information to be exported and sent to you for review, and we promptly honor any requests by you to have your information deleted and forgotten.

Data Mapping

Status: Complete

We are auditing all areas of Coastdale Parks to determine what personal data we collect and for what purpose. In a case where collecting personal data is not essential, we are removing that collection process.

Privacy Policy

Status: Complete

We’re working with a legal consultant to ensure that our policy contains the proper language, that it’s easy to understand, and that it communicates clearly any instances of personal data collection.

Cookies

Status: Complete

We have added cookie notices to all marketing pages and blogs in order to comply with the E-Privacy Directive. We do collect personally-identifiable information with our cookies, however with our new cookie tool you can turn off analytical cookies or simply just accept the recommended settings.

Modification

Status: Complete

If a user asks to change their information, we can do so within our admin portal. If a user has a modification to make, they can reach out to us at chris@normanhurst.net

Data Protection Agreement

Status: Complete

We have created a legal agreement that users and external parties can receive from us, promising the protection all personally identifiable information that we collect and store.

Sub-processors

Within Section 7 of our Data Protection Agreement (DPA), we commit to displaying a list of all current sub-processors in use by Coastdale Parks. A sub-processor includes any third party that we share personally identifiable info with.

Here is that list:

AWS: (Amazon Secure Server)

Mailchimp: If you have booked over the phone or online you will be asked if you would like to be apart of our marketing database if you choose to not opt-in your data will not be added to our marketing database. When running competitions with third parties data is sometimes passed over via a secure password protected document opened on our secure server then entered into Mailchimp once entered into Mailchimp we then delete the file & email. Mailchimp will send out a secure GDPR preference question email you can unsubscribe at any point or ignore the email and you will not be contacted again as this will automatically opt you out of any future marketing.

Pitchup.com: If you have booked via pitchup.com your data will be stored & collected with them then processed and stored by Coastdale Parks on our secure server.

Stripe: (If you have booked via pitchup.com your data will be stored & collected with them then processed and stored by Coastdale Parks on our secure server, your payment will be processed).

Insite Park Management Software: If you have booked over the phone or online your data will be collected and stored on Coastdale Parks secure server and kept for the duration of your booking +12 months.

Wordstream: If you have visited any of our websites we use wordstream to help with our google adwords.

Google Adwords/Analytics: If you have visited any of our websites or blogs we use google to help find subjects who are looking for holidays in the areas we have holiday parks and place adverts on google to link to our websites.

Feefo: If you have holidayed at any of our caravan/holiday parks once you have finished your holiday you will be sent a link from Feefo to complete a rating to help us improve our customer services, accommodation.

Live Chat: If you have visited any of our websites we use Live Chat to help our customers with any questions they have when visiting our websites. Information customers input into the Live Chat widget is stored within the Live Chat Secure Server and is deleted after a month. If the customer opt-in to our marketing database there information is securely saved, encrypted and ported over to our mailchimp secure database. Once your information is held with mailchimp customers can then edit email preferences, opt-in to other databases or opt-out at any time.

Live Chat Inc. GDPR statement

Vital Connect WiFi (Park WiFi): When visiting any of our holiday or caravan parks you can access are park WiFi once you accept the terms and conditions. We use this system in accordance with Data Protection Laws and compliance