At In The Footsteps, we are committed to protecting your privacy. This page describes how we collect and use your personal information and the terms and conditions of using our website.
There are three ways in which we collect personal data:
We collect your personal data as part of our enquiry process via our website following the General Data Protection Regulation (GDPR) provisions of contractual obligation, legal obligation and consent. That means that we only collect what you give us or have agreed we can have; for example, when making an enquiry we collect your name and email address along with details of your tour requirements. By making the enquiry you concent to us supplying you with information directly related to your enquiry.
We collect your personal data as part of our battlefield tour booking process via electronic and conventional communications to expidite your tour booking following the General Data Protection Regulation (GDPR) provisions of contractual obligation, legal obligation and consent. That means that we only collect what you give us or have agreed we can have; for example, when making a booking we collect your first name, last name, address, email address, telephone number, mobile number, along with details of your tour requirements. We also collect information relating to other participants of the tour for whom you are making the booking. By making the booking you concent to us supplying you with information directly related to your tour.
We collect your personal data as part of our newsletter subscription process via our website and associated social media sites following the General Data Protection Regulation (GDPR) provisions of contractual obligation, legal obligation and consent. That means that we only collect what you give us or have agreed we can have; for example, when subscribing we require to collect your first name, last name and email address. By subscribing to our newsletter you concent to us supplying you with updates and marketing communications about our services and offers.
We believe we should only collect personal data if we could not do our job without it. What information we collect depends on the reason for collecting it.
We will only use your personal data for the reason we originally collected and in ways you would expect. That means to provide you with the services or information you have requested, for administration of those purposes, and for business planning (so we can keep providing you and others with those services).
We will never sell your details to third parties, and if we have to share it with anyone (for example, your guide or accommodation) we will ask your permission first or it will be clearly stated as part of the service you have asked us to provide.
Your information is stored on our computers and backed up on servers in UK. The access to your personal data is restricted according to the user's needs, some information is restricted to key personal only. We place a great importance on the security of the data we hold and we have security measures in place to attempt to protect against the loss, misuse and alteration of personal data under our control.
We have strict retention periods for different kinds of personal data. We will only keep it for as long as necessary, for the reason we collected it in the first place.
You may wish to link to our web page, prior consent must be obtained before doing so, any such links must not damage our reputation or take advantage of it, and you must not establish a link in such a way as to suggest any form of association, approval or endorsement on our part where none exists.
The General Data Protection Regulation (GDPR) gives you rights that enable you to check how your personal data is being collected and used, as well as to prevent it being used in ways you do not like. If you want to exercise any of these rights, or know more about them, you can contact our Business Administrator who is our acting Data Protection Officer:
You have the right to a physical copy of the personal data that we hold about you, to know where we got that information, how we used it, if we shared it with anyone, and how long we kept it for. And we have to provide that to you within one month of receiving your request and proof of your identity. Some organisations charge a fee for this, but we don't. If you want to make a subject access request, please email our Data Protection Officer at firstname.lastname@example.org or write to us at:
You have the right to have your personal data amended, erased, or blocked from being used further, if we got any of the details wrong or if our using your personal data is causing you distress. If you are aware that we have your details wrong and you would like us to change or erase them, please contact our Business Administrator by email email@example.com or by post at:
You have the right to withdraw consent to receiving marketing information at any time, no questions asked. If you would like to withdraw consent to processing, you can do so by emailing firstname.lastname@example.org or by unsubscribing ot updating your preferences contained on our newsletter. You can also turn off cookies if you do not want to use them, but we cannot guarantee all our website's functionality will be optimum if you turn off cookies.
If we have got something wrong, we hope you will let us know so we can put it right. If you wish to make a complaint about how we used your personal data you can do so by contacting our Data Protection Officer at email@example.com or write to us at:
Other people's websites are outside of our control. If you access those sites, the operators may collect different kinds of personal information and use it in different ways than we do. You should always check their privacy statements if you are concerned and be careful about what personal information you give out. Ask yourself: is this a secure server to take my payment? What do I know about this organisation? Does this seem like a reasonable thing to need to collect for the reason they're asking for it?
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.