Privacy Policy
1. Introduction
At spamalotlondon.com (“we”, “us”, or “our”), your privacy is of paramount importance. We are unwaveringly committed to safeguarding the personal data of our website visitors, clients, and users (“you”, “your”). This Privacy Policy outlines our policies and procedures regarding the collection, use, and protection of your personal information. We process your data in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and all other applicable laws.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data provided to or collected by us through the use of our website, spamalotlondon.com, whether by browsing, registration, or direct communication. For the purposes of GDPR and UK GDPR, spamalotlondon.com is the data controller responsible for your personal information. As a data controller, we determine the means and purposes of processing your data.
3. Categories of Data Processed
We may collect, use, store, and process the following categories of personal data:
a) Usage Data:
Information automatically collected about how you use our website, including IP address, browser type, language preferences, referring URL, pages visited, time spent, session duration, and timestamps.
b) Account Data:
Information provided during registration, booking, or account creation, including your full name, postal address, email address, and phone number.
c) Profile Data:
Information related to your preferences, purchasing behavior, interests, order history, product reviews, and actions taken on our platform.
d) Communication Data:
Records of customer support inquiries, email correspondence, chat history, and other communications initiated through our contact or support channels.
e) Technical Data:
Details regarding the device used to access our website, including operating system, screen resolution, browser configurations, and system settings.
f) Transaction Data:
Payment amounts, billing addresses, delivery details, and other data associated with purchases or financial communications. Note: We do not directly store or process full credit/debit card numbers; such details are handled securely by third-party payment processors.
g) Preference Data:
Marketing preferences, communication choices, product category interests, and opt-in or opt-out settings.
4. Legal Bases for Processing
We process your personal data based on one or more of the following legal grounds:
– Contractual Necessity: To provide or perform a contract for goods or services you have requested.
– Consent: Where you have explicitly consented to data processing for specific purposes such as marketing.
– Legitimate Interest: To improve our services, ensure platform security, or communicate relevant content, provided such interests are not overridden by your privacy rights.
– Legal Obligation: To comply with applicable laws, regulations, or lawful requests from public authorities.
5. Your Rights
If you are a resident of the UK, the EU, or certain other jurisdictions (including California), you are entitled to the following rights regarding your personal data:
– Access: Obtain confirmation as to whether your data is being processed and access a copy of the data.
– Rectification: Request corrections to inaccurate or incomplete personal data.
– Erasure: Request the deletion of your personal data, subject to certain legal constraints.
– Restriction: Request a limitation on the processing of your data where appropriate.
– Portability: Request a structured, machine-readable copy of your data and transmit it to another controller.
If you would like to exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement robust organizational and technical safeguards to ensure the confidentiality, integrity, and availability of your personal data. These include:
– End-to-end encryption of data in transit and at rest
– Access control restricted to authorized personnel
– Secure server infrastructure and firewall protections
– Regular backups and cloud redundancy
– Staff awareness training and data protection protocols
While no platform can guarantee absolute security, we continuously monitor and improve our systems to address potential risks.
7. International Transfers
Your personal information may be transferred and stored in jurisdictions outside your home country, including countries that may not offer the same level of protection as your jurisdiction. When such transfers occur, we ensure adequate protective measures are in place, including EU Standard Contractual Clauses, data protection addenda with third parties, or reliance on adequacy decisions where applicable.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law, including:
– Account Data: Retained for the duration of your relationship with us and up to 6 years thereafter.
– Transaction Data: Retained for 7 years for tax and accounting compliance.
– Usage and Technical Data: Retained for 2 years for analytics and operational support.
– Communication Data: Retained for 3 years after resolution of the communication.
– Preference Data: Retained until you update your preferences or withdraw consent.
When data is no longer needed, it is securely deleted or anonymized.
9. Cookie Policy
spamalotlondon.com uses cookies and similar technologies to enhance your browsing experience. These may include:
– Essential Cookies: Necessary for navigation and core website functionality.
– Functional Cookies: Remember user preferences and settings.
– Analytics Cookies: Collect aggregate usage data for performance monitoring.
– Performance Cookies: Help improve website performance and load speeds.
We do not use cookies to identify you without your consent, and we do not sell your personal information.
10. Cookie Management and Compliance with GDPR & CCPA
When you first visit spamalotlondon.com, you will be presented with a cookie consent banner in compliance with GDPR and CCPA. You may choose to accept or reject cookies, or configure specific preferences. You can also manage cookies at any time via your browser settings or by revisiting our cookie management interface.
California residents may opt out of the sale of personal information by visiting our “Do Not Sell My Information” link, if applicable.
11. Special Protections for Children Under 13
Our website is not intended for children under 13 years of age, and we do not knowingly collect personal data from anyone under this age. If we become aware that a child under 13 has provided us with personal information, we will take immediate steps to delete such data. Parents or guardians who believe their child may have submitted personal information are urged to contact us at [email protected].
12. Policy Updates and User Notification
We may update this Privacy Policy from time to time to reflect legal, regulatory, or operational changes. All updates will be posted on this page, and, where material, we may notify you through prominent site notices or email (where appropriate). Continued use of spamalotlondon.com following any such updates constitutes your acceptance of the terms.
13. Contact Us
For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Email: [email protected]
Website: https://spamalotlondon.com
We are committed to ongoing compliance with the GDPR, the CCPA, and all applicable data protection laws. Please do not hesitate to reach out if you have concerns regarding how your data is handled.