Privacy Policy

Background
The GDPR sets out comprehensive requirements for all companies handling the personal data. This includes a number of things we must tell you of when we collect data from you.
What is GDPR?
GDPR stands for General Data Protection Regulation. We have provided all the information you need as simply and clearly as possible through this Privacy Policy using a question-and-answer format.What data is held about me?
We hold the following details for people (clients) who have made bookings with us or enquired about making a booking:

  • Contact details.
  • Records of your interactions with us e.g. previous enquiries & bookings
  • Records of email exchanges and phone calls
  • Details of financial transactions

What is the data held for?
We use your data to provide any services you request from us and pursue legitimate interests in promoting the company.
Specific activities include:

  • Providing a quotation should you make an enquiry to hold an event.
  • Organising any events should you make a booking.
  • Facilitating future bookings by being able to refer back to past bookings and enquiries.
  • Contacting you to enquiry about future potential bookings tell you about new opportunities.
  • Evaluate the success of business initiatives and design future offers.

Who is responsible for my data?
Any data collected about you on will be kept under our control – we can be contacted using the following details:

Postal: Venue and Events Search Limited T/AS The Christmas Party Company 86 – 90 Paul Street London EC2A 4 NE
Email: – hello@christmaspartycompany.com

How long is my data kept?
We keep details of bookings for a minimum of seven years for tax and accounting reasons.

We will keep your contact details for at least 5 years after the date of your last enquiry to maintain contact regarding future bookings.

We will delete the names, telephone numbers and email address you have given us as soon as practically possible after you request we delete it.

Where will my data be stored?
Your data will be stored on our own computer systems and on cloud based applications.
Here is a list of the current cloud based service providers we share your data with:

Skybase
What data: The name, telephone numbers and email addresses given to us plus a record of interactions between us.
Purpose: Managing our business.

Mysecurecloudhost
What data: Emails sent to and received from you.
Purpose: Keeping in touch with clients via email

Who will have access to my data?
The directors of the company.

Will you pass my data to anyone else?
Your data will only be passed to companies with which we place events on your behalf for the purpose of providing that event – you will be aware of this before it happens. Plus other third parties who are providing services for that event.

We will not pass your data to anyone else unless legally required to do so.

How do I exercise my GDPR rights?
If you want to exercise any of your rights in relation to data we hold about you then please email or write to the Data Controller at the address given above.

Please provide details in your email/letter of what actions you would like us to take. Depending on the nature of the request and whether or not your request comes from the email address we have on file for you, we may need to verify your identity so that we don’t give out information to the wrong person. In most cases it helps if you are able to provide a contact phone number so that we can validate your identify and discuss the request with you.

What if I have a complaint?
If you are concerned about how we manage your data, or how we have handled a request to exercise your rights, then please get in touch with us to discuss it as per the details above. If you are still not satisfied with the response you can take your concern to the Information Commissioner’s Office. For details of how to do this please refer to the ICO web site:

https://ico.org.uk/