Privacy Policy

Consumer Privacy Policy: 

1. Introduction

Derby Sports Bar is committed to protecting the privacy of all customers in the group irrespective of your relationship with us. This Privacy Policy applies to personal data that we collect on our website and use for our retail customers (In our venue).

By providing your personal data to us you acknowledge that it may be processed in accordance with this Privacy Policy.

Personal data that is captured for our employees is covered separately in our Employee Privacy Policy.

2. Who is responsible for your data

“Derby Sports Bar” (referred to in this Privacy Policy as “we”, “us” or “our”):

1 Queen Street

Derby

DE1 3DL

UNITED KINGDOM

Email: info@derbysportsbar.co.uk

Phone Number: 01332241718

3. Personal data we collect about you

We collect personal data for a variety of purposes as outlined in this section 3. You will provide much of this data to us directly by completing online forms or through engagement with one of our team members (through phone, email or otherwise) but we also gather some data via the digital interactions that you have with us.

1.Name and contact details (e.g., email address, telephone number and postal address)

When you book a table/function/hotel room/ticket.

When you provide us with feedback or submit an enquiry?

When you sign up to use our Wi-Fi.

If you have an accident while visiting us at our venues.

2. Personal Interests

When you choose to provide it for marketing personalisation.

3. Dietary and special needs requirements

When you choose to provide it when booking a table / function

4. Information about other guests on your booking including details of any children.

When you provide them on behalf of others as part of making a table / function

5. The correspondence that you have with us (e.g., emails, letters, calls)

When you contact us or we contact you.

6. Your location

When you use our Wi-Fi/When you make a booking

7. CCTV Recording

When you visit our location

8. Information about how you use our website (e.g., IP address, Google Analytics, a list of URLs starting with your referring site, activity on our website, and the website you exit to).

When you browse our website.

9. Device information

When you visit our website

Special Category Personal Data 

The UK General Data Protection Regulation (UK GDPR) is the privacy law implemented across the United Kingdom which includes increased protection relating to Special Category Personal Data such as health and religious beliefs. As a result of you telling us that you have an allergy or a specific dietary requirement you may reveal medical conditions or religious beliefs. Special Category Personal Data will only be processed in order to deliver the products / services that you purchase from us.

4. How and why we use your personal data 

We can only process your personal data if we have a lawful basis to do so, and we are required to inform you of what that lawful basis is.

We use your personal data to provide the following services:

To ensure the performance of a contract for a service we have with you:

• To process any orders, payments, refunds, vouchers and to prevent fraud.

• To administer your booking with us (table or event booking), and to send a follow up email for your valued feedback).

When we have a legal obligation to process your data:

• To meet our legal obligations. We are required to keep certain records for legal reasons – for example receipts that we issue or accidents that occur at our venue. We will keep and use this data in line with our legal requirements.

When you give us consent to:

• To keep you informed of our products, services, offers and promotions. We may send you marketing communications about our food, drink, hotel, events and  if you have indicated that you are happy to receive these.

• For market research and to deliver business insight to help us ensure that our products and services remain relevant.

Processing your data to further our legitimate interests:

One of the lawful basis we rely on to process personal data is called ‘legitimate interests’ whereby we can use your personal data if we have a genuine and legitimate reason and we are not harming any of your rights and interests.

We use legitimate interests in the following circumstances:

• We will monitor opens / clicks and offer redemption on marketing emails to assess engagement.

• To personalise and improve your customer experience. We may use your personal data in order to tailor our services to your needs and preferences and to provide you with a personalised customer experience.

• To optimise the performance of our websites. We may also collect information on how you use our websites including the pages that you visit and the search criteria that you perform in order to optimise the performance of the website and personalise content that you see.

• We use CCTV to deter and detect crime and civil offences, to support court action and comply with our legal licensing requirements. We also use CCTV to provide a safe environment for our staff and customers. We use CCTV to facilitate entry / exist from buildings and improve customer service.

• To respond to enquiries and manage complaints.

When we process personal data relating to your health or religious beliefs, our lawful basis is legitimate interests. It is in Derby Sports Bar’s legitimate interests to ensure that we are aware of your dietary requirements when you dine with us. Our additional special category condition for processing your health and religious information is Explicit Consent Article 9 (2)(a) of the UK General Data Protection Regulation (UK GDPR).

When we process your personal data for our legitimate interests, we will consider and balance any potential impact on you and your rights under data protection and any other relevant law. Our legitimate business interests do not automatically override your interests – we will not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted by law).

5. Sharing your personal data

We are reliant on a number of 3rd party providers in order to provide our products and services. Where this is the case, we will remain in control of the data and we will ensure that the 3rd parties comply with high security standards for the protection of your personal data.  The 3rd parties will not have any rights to use the data for their own purposes.

Our 3rd party providers include:

• Website Hosting Companies;
• Website Booking System;
• Wi-Fi Provider;
• Online food and drink orders;
• Online food and drink order or payments
6. Retention and Security of your Data

We will only retain your personal data for as long as necessary in order to fulfil the purposes for which it was collected. When assessing what retention period is appropriate for your personal data, we take into consideration:

• Any statutory or legal obligations;
• The requirements of the business;
• The purposes for which we originally collected the personal data;
• The lawful grounds on which we based our processing;
• The types of personal data we have collected;
• The amount and categories of your personal data; and
• Whether the purpose of the processing could reasonably be fulfilled by other means.

After such time, we will securely delete or destroy your personal data. In most instances the personal data processed by us will be securely destroyed within 6 years from when we collected your data. We only hold CCTV data for a period of up to 30 days.

We ensure that we use appropriate technical and organisational security measures in order to ensure that your data remains secure. These measures include internal policies, procedures and employee training, as well as ensuring we have appropriate contracts with 3rd party suppliers and only allowing access to data on a need-to-know basis.

7. Your Rights

Right to be Informed

We will always be transparent in the way we use your personal data. You will be fully informed about our processing activities through relevant privacy policies.

Right to Access

You have a right to request access to the personal data that we hold about you and this should be provided to you, under the UK GDPR and the Data Protection Act 2018. If you would like to request a copy of your personal data, please contact the Data Protection Officer as detailed in section 2 of this Privacy Policy.

Right to Rectification

We want to make sure that the personal data we hold about you is accurate and up to date. If any of your details are incorrect, please let us know and we will amend them.

Right to Erasure

You have the right to have your data ‘erased’ in the following situations:

• Where the personal data is no longer necessary in relation to the purpose for which it was originally collected or processed;
• When you withdraw consent;
• When you object to the processing and there is no overriding legitimate interest for continuing the processing;
• When the personal data was unlawfully processed; or
• When the personal data must be erased in order to comply with a legal obligation.

If you would like to request erasure of your personal data, please contact us through our details in section 2 of this Privacy Policy. Please note that each request will be reviewed on a case-by-case basis and where we have a lawful reason to retain the data, it may not be erased.

Right to Restrict Processing

You have the right to restrict processing in certain situations such as:

• Where you contest the accuracy of your personal data, we will restrict the processing until you have verified the accuracy of your personal data;
• Where you have objected to processing and we are considering whether our legitimate interests override your legitimate interests;
• When processing is unlawful, and you oppose erasure and request restriction instead; or
• Where we no longer need the personal data, but you require the data to establish, exercise or defend a legal claim.

Right to Data Portability

You have the right to data portability in certain situations. You have the right to obtain and reuse your personal data for your own purposes via a machine-readable format, such as a .CSV file. If you would like to request portability of your personal data, please contact us. This only applies:

• To personal data that you have provided to us;
• Where the processing is based on your consent or for the performance of a contract; or
• When processing is carried out by automated means.

8. What are cookies?

Cookies are small text files that are placed on your computer, smartphone or other device when you access the internet.

9. Why do Derby Sports Bar use cookies

Our website uses cookies to distinguish you from other users of our website. This helps us to enhance your experience when you browse our website and also allows us to make ongoing improvements. Without cookies enabled we can’t guarantee that the website and your experience of it are as we intended it to be. By continuing to browse the site, you are agreeing to our use of cookies.

10. What Cookies do we use: 

Strictly necessary cookies.

These are cookies that are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website, use a shopping cart or make use of e-billing services.

Analytical/performance cookies.

They allow us to recognise and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to improve the way our website works, for example, by ensuring that users are finding what they are looking for easily.

Functionality cookies.

These are used to recognise you when you return to our website. This enables us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of language or region).

Targeting cookies.

These cookies record your visit to our website, the pages you have visited and the links you have followed. We will use this information to make our website and the advertising displayed on it more relevant to your interests. We may also share this information with third parties for this purpose.

Google Analytics

This uses cookies to help us analyse how our visitors use the site. Find out more about how these cookies are used on the Google privacy site.

Controlling and Deleting Cookies

If you want to restrict or block the cookies we set, you can do this through your browser settings. The ‘help’ function within your browser should tell you how however this is likely to impact your use of the site.

Alternatively, you could visit www.aboutcookies.org, which contains comprehensive information on cookies on a wide variety of browsers. You’ll also find details on how to delete cookies from your computer. To learn about controlling cookies on the browser of your mobile device please refer to your handset manual.

11. Updates to our Privacy Policy

We may update this Privacy Policy from time to time. If we make changes to this Privacy Policy, the updated version will appear on this page.