Privacy Policy
Strathaven Hotel (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store and protect your personal data when you visit our website, make a booking, contact us, or use our services.
This policy complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
______________________________
1. Data Controller
Strathaven Hotel
Hamilton Road
Strathaven
South Lanarkshire
United Kingdom
Email: info@strathavenhotel.com
Telephone: 01357 521 139
Strathaven Hotel is the Data Controller responsible for your personal data.
______________________________
2. Personal Data We Collect
We may collect and process the following categories of personal data:
a) Booking & Stay Information
• Name
• Address
• Email address
• Telephone number
• Booking details
• Special requests or preferences
• Payment information (processed securely via third‑party payment providers)
b) Enquiries & Communications
• Name
• Contact details
• Information provided in enquiry forms, emails or telephone calls
c) Marketing Information
• Name
• Email address
• Marketing preferences
d) Website Usage Data
• IP address
• Browser type and version
• Device information
• Pages visited
• Cookies and analytics data
e) CCTV Data
CCTV operates within public areas of the hotel for safety and security purposes.
______________________________
3. Lawful Basis for Processing
We process personal data under the following lawful bases:
• Contractual necessity – to manage bookings and provide hotel services
• Legitimate interests – to improve services, ensure security, and respond to enquiries
• Consent – for marketing communications
• Legal obligation – to comply with financial, tax, or regulatory requirements
______________________________
4. How We Use Your Information
We use your information to:
• Process and manage reservations
• Provide accommodation, dining, and event services
• Respond to enquiries
• Send booking confirmations and service communications
• Improve our website and guest experience
• Send marketing communications (where consent has been given)
• Maintain safety and security through CCTV
______________________________
5. Marketing Communications
If you opt in, we may send news, offers, and updates via email.
You may withdraw consent at any time by: – Clicking the unsubscribe link in emails, or – Contacting us directly at info@strathavenhotel.com
______________________________
6. Sharing Your Data
We may share personal data with trusted third‑party service providers, including:
• Booking engine providers
• Payment processors
• Email marketing platforms
• IT and website hosting providers
• Professional advisers where required
All third parties are required to respect the security of your personal data and process it lawfully.
______________________________
7. International Data Transfers
Some service providers may store data outside the UK. Where this occurs, we ensure appropriate safeguards are in place, such as UK adequacy regulations or approved contractual clauses.
______________________________
8. Data Retention
We retain personal data only for as long as necessary:
• Booking and financial records: up to 7 years (legal requirement)
• Marketing data: until consent is withdrawn or inactivity for 24 months
• Enquiry data: up to 24 months
• CCTV footage: typically retained for up to 30 days unless required for investigation
______________________________
9. Cookies
Our website uses cookies to enhance user experience and analyse website performance.
You can manage cookie preferences via your browser settings or cookie consent banner.
Cookies Used on This Website
We use cookies to make our website work efficiently, improve your browsing experience, and help us understand how visitors interact with our site. Cookies are small text files stored on your device when you visit a website.
Some cookies are essential for website security and functionality, while others help us analyse traffic, embed third-party services, or support advertising.
| Cookie Name & Purpose | Provider & Category |
|---|---|
| __Secure-1PAPISID Authentication, security, fraud prevention |
Google – Security |
| __Secure-1PSID Maintains secure sessions and verifies identity |
Google – Security |
| __Secure-3PAPISID Supports authentication and secure interactions |
Google – Security |
| __Secure-3PSID Prevents fraudulent activity and maintains secure sessions |
Google – Security |
| __Secure-3PSIDCC Additional security layer for Google services |
Google – Security |
| HSID Verifies accounts and ensures secure browsing |
Google – Security |
| SID Maintains secure sessions across Google services |
Google – Security |
| APISID Supports personalised Google services and secure interactions |
Google – Functional |
| SAPISID Supports personalisation and security features |
Google – Functional |
| SSID Stores encrypted information for Google service interactions |
Google – Functional |
| LOGIN_INFO Stores login session information for Google services such as YouTube |
Google / YouTube – Functional |
| VISITOR_INFO1_LIVE Tracks interaction with embedded YouTube videos and stores playback preferences |
YouTube – Functional |
| VISITOR_PRIVACY_METADATA Stores user privacy preferences for YouTube services |
YouTube – Functional |
| YSC Tracks engagement with embedded YouTube videos |
YouTube – Functional |
| __Secure-ROLLOUT_TOKEN Used for Google feature testing, rollouts, and infrastructure management |
Google – Functional |
| _ga Distinguishes unique visitors and tracks website usage |
Google Analytics – Analytics |
| _ga_WNXGZ4XBZY Tracks page interactions and session behaviour |
Google Analytics – Analytics |
| _gcl_au Measures conversions and advertising effectiveness |
Google Ads – Marketing |
| _fbp Tracks visitors for Facebook ads and enables ad retargeting |
Meta (Facebook) – Marketing |
Third-Party Cookies
Some cookies are set by third-party services (Google, YouTube, Meta/Facebook). They may collect information about your interactions according to their privacy policies.
Some services on our website are provided by third-party platforms which may set their own cookies. These are governed by the respective provider’s privacy policies.
Google: https://policies.google.com/technologies/cookies
Meta (Facebook): https://www.facebook.com/policies/cookies/
YouTube: https://policies.google.com/privacy
Managing Cookies
You can manage or disable cookies in your browser settings. Some parts of the website may not function properly if certain cookies are disabled.
______________________________
10. Your Data Protection Rights
Under UK GDPR, you have the right to:
• Access your personal data
• Request correction of inaccurate data
• Request erasure of data
• Restrict or object to processing
• Data portability
• Withdraw consent at any time
To exercise your rights, contact: info@strathavenhotel.com
______________________________
11. Complaints
If you are unhappy with how we handle your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Website: https://www.ico.org.uk
______________________________
12. Data Security
We implement appropriate technical and organisational measures to protect personal data from loss, misuse, or unauthorised access.
______________________________
13. Updates to This Policy
We may update this Privacy Policy from time to time. The latest version will always be available on our website.
Last updated: March 2026