The www.cresset.co.uk website is owned and operated by The Cresset Ltd, a trading subsidiary of The YMCA Trinity Group, and we are committed to ensuring that your privacy is protected. This policy outlines how we will treat any personal information collected about you in accordance with the GDPR 2018. Our policy may change from time to time so please check back regularly.
What information do we collect?
In order to register with us, book tickets online, book a function or event, or subscribe to any of our mailing lists, we will need to collect a certain amount of information from you first (eg. name, address, email address, phone number). This information will not be sold or passed on to third parties without your prior consent and any card details you have provided for payment will be processed through secure server software.
What do we use this information for?
The information will be used to process your booking and to keep you informed about any offers and events we think may be of interest to you. We will only send you such information if you have ticked the relevant boxes during registration to “opt in” and you can amend your personal preferences, in terms of the information you receive from us at any time.
Information we collect will be periodically evaluated to assess whether we should continue to hold such data and you are free to notify us at any time if you wish us to remove this information.
We may occasionally analyse statistics regarding general web traffic, sales figures and customers but these will not feature any specific personal information and will be done to gain a better understanding of our audiences.
How do we protect your information?
Although we cannot guarantee the level of security offered by the internet itself, we can make sure that the measures we take within our own website to protect your information are as thorough as possible. Therefore, we process all payments through secure server software (SSL) ensuring that your personal information is encrypted whilst it travels through the internet. Please note, however, that we only use secure server software when dealing with information that contains payment details and not, for example, when you register for our email newsletter.
- All our online bookings are powered by our partner organisation Ticketsolve
We also use encrypted transfer methods to supply your data to our mailing house for the purposes of sending you our What’s On brochure. The mailing house acts as a data processor for us and has adequate levels of security in place to ensure your data is protected during processing. Once processed for mailing, your data is deleted. The mailing house does not retain data for future use.
Transmission of information outside the European Economic Area
Because of the global nature of the internet, information we collect from you may be transferred to the USA, which is outside the European Economic Area during its transmission and by submitting your information to us you are accepting, and agreeing to this transfer.
GDPR – What does it mean?
GDPR is the General Data Protection Regulation, effective from 25 May 2018. The GDPR ensures we as a data controller handle your personal data in a responsible and transparent way as outlined in this policy.
By submitting your information to us, you are consenting to us storing and processing your personal information in the methods detailed in this policy. You can check the information we are storing about you at any time by emailing us at firstname.lastname@example.org
For more information on the GDPR, please contact the Information Commissioners Office on 08456 30 60 60 or visit the website http://www.ico.gov.uk/