Inkersall Grange Farm, Newark, Nottinghamshire, NG22 8TN

    Privacy Policy

    1. Who We Are

    Inkersall Cabins ("we", "us", "our") is the data controller for the personal information we collect through our website and direct booking process.

    Contact: bookings@inkersallcabins.co.uk
    Address: Inkersall Grange Farm, Newark, Nottinghamshire, NG22 8TN

    2. Scope of This Policy

    This policy explains what personal data we collect, how we use it, who we share it with, how long we keep it, and your rights under applicable data protection laws, including the UK GDPR and, where relevant, the EU GDPR.

    3. Information We Collect

    Depending on how you use our website, we may collect:

    • Identity and contact details: first name, surname, email address, and telephone number.
    • Booking details: accommodation selected, dates, guest count, booking reference, pricing, add-ons, and special requests.
    • Payment-related data: payment intent IDs, payment status, and transaction values. Card details are processed by Stripe and are not stored by us.
    • Communication data: emails we send (such as booking confirmations) and your correspondence with us.
    • Technical and usage data: IP address, browser/device information, and pages/events captured through analytics and marketing tools (where used).
    • Cookies and similar technologies: essential, analytics, and marketing identifiers where enabled.

    4. How We Use Your Data and Lawful Bases

    We process personal data for the following purposes:

    • To create and manage bookings (contract).
    • To take and verify payments (contract and legal obligations).
    • To send booking and stay-related communications(contract and legitimate interests).
    • To prevent fraud, abuse, and misuse (legitimate interests and legal obligations).
    • To operate, improve, and secure our website(legitimate interests).
    • To run analytics and marketing activities(consent, where required, and legitimate interests where permitted by law).

    5. Payment Processing

    Payments are processed by Stripe. We do not store full card details on our own systems. Stripe processes payment information in accordance with its own privacy and security standards.

    6. Service Providers and Data Sharing

    We share personal data only where necessary to operate the booking service and website. This includes providers for infrastructure, database and backend services, payment processing, and transactional email delivery.

    • Supabase (data storage, edge/backend functions, operational services)
    • Stripe (payments and payment status verification)
    • Resend (booking and transactional email delivery)
    • Analytics and marketing partners, where enabled and lawful

    We do not sell your personal data. We may disclose information where required by law, legal process, or regulatory request.

    7. Cookies, Analytics, and Marketing

    Our website may use cookies and similar technologies for essential operation, analytics, and marketing. Where required by law, we ask for consent before setting non-essential cookies.

    • Essential cookies: required for core site and booking functionality.
    • Analytics cookies: help us understand website use and improve performance.
    • Marketing cookies: help measure campaigns and deliver more relevant communications/advertising.

    You can control cookies through your browser settings and, where available, any on-site consent controls.

    8. International Transfers

    Some of our providers may process data outside the UK or EEA. Where this happens, we rely on appropriate safeguards (such as adequacy decisions, standard contractual clauses, or equivalent protections).

    9. Data Retention

    We keep personal data only for as long as necessary for the purposes in this policy, including contractual, operational, legal, accounting, and tax requirements.

    Retention periods vary by data type. For example, booking and payment records may be retained for longer periods where required for financial reporting and legal compliance.

    10. Security

    We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. No online system can be guaranteed 100% secure, but we continuously work to maintain a suitable level of protection.

    11. Your Rights

    Subject to legal conditions and exemptions, you may have the right to:

    • Access your personal data
    • Correct inaccurate or incomplete data
    • Request deletion of your personal data
    • Restrict or object to certain processing
    • Request portability of data provided by you
    • Withdraw consent where processing is based on consent
    • Lodge a complaint with a supervisory authority

    To exercise your rights, contact us at bookings@inkersallcabins.co.uk.

    12. Children's Privacy

    Our services are not directed to children. We do not knowingly collect personal data directly from children without appropriate legal basis and parental/guardian involvement where required.

    13. Changes to This Policy

    We may update this Privacy Policy from time to time. Material updates will be posted on this page with a revised "Last updated" date.

    14. Contact and Complaints

    If you have questions about this policy or your personal data, contact us at bookings@inkersallcabins.co.uk.

    If you are unhappy with how your data is handled, you may also contact the UK Information Commissioner's Office (ICO) or your local supervisory authority.

    Last updated: March 2026