Privacy Policy

1. Introduction

The Duke William (“we”, “us”, “our”) is committed to protecting your personal data in line with UK GDPR. This policy explains how we collect, use, store, and share information when you visit our website, book tables, campsite pitches, or attend events.

2. Data Controller & Contact

The Duke William
91 Church Street, Matlock, Derbyshire DE4 3BZ
 01629 385057 ·  TheDukeWilliamMatlock@mail.com

3. Personal Data We Collect

• Booking/enquiry forms: name, email, telephone, booking type (e.g. table, campsite), dates, guest numbers, special requests

• Communications: any information you share via phone, email, or in person

• Website analytics: anonymised IP address, browser/device type, pages viewed, session duration—collected via essential and performance cookies only; we do not use advertising or profiling cookies

4. How We Use Your Data

We use your data to:

• Process and confirm bookings for dining, camping, or events

• Send confirmations, reminders, invoices, and follow-up messages

• Manage campsite stay check-ins and access amenities

• Improve our services, marketing communications, and website through anonymised analytics

• Fulfil legal, financial, insurance, and safety record requirements

5. Legal Basis

• Contractual necessity: to provide booking and hospitality services

• Legitimate interests: to manage and improve our business operations and website

• Consent: for optional marketing communications (e.g. newsletters or event updates)

• Legal obligation: to retain records for VAT, auditing, or insurance purposes

6. Data Sharing

We do not sell or rent personal data. We may share data only with:

• Service providers (such as hosting, email platforms, booking systems), under GDPR-compliant agreements

• Regulatory bodies, insurers, or emergency services if legally required

7. Cookies & Tracking

• Essential cookies: needed for booking forms and site navigation

• Performance cookies: anonymised web analytics only (e.g. Google Analytics)
  We do not use advertising or profiling cookies

8. Data Retention

• Booking and enquiry records: up to 7 years for compliance and audits

• Analytics logs: session data deleted after 24 months, aggregated data retained as needed

9. Your Rights

Under UK GDPR, you can:

• Access, correct, erasure, restrict, or export your personal data

• Withdraw consent or object to processing

• Lodge a complaint with the ICO
  To exercise these rights, contact us using the details above.

10. Security

We secure your data using SSL encryption, secure UK hosting, access controls, and staff training. Although no system is infallible, we follow industry best practices.

11. International Transfers

All data is stored and processed entirely within the UK—no overseas transfers occur.

12. Policy Updates

We may update this policy occasionally. The Effective Date above reflects the latest version. Continued use of our website implies acceptance of changes.