Privacy Notice

Church Farm Guest House is a Norfolk based bed and breakfast establishment. In line with the General Data Protection Regulation (enacted 25th May 2018) here is our Privacy Notice so that anyone who wishes to be informed about what we do with their data should find out everything they need to know on this page. Naturally, if there is anything that you would like to know about how we process your personal data that you can’t see here, please get in touch.

Personal Data

The purpose of the GDPR legislation is to give individuals more control over their personal data and how it is processed. We fully endorse this principle and want to be completely transparent about the data we collect, why we collect it, how we use it and what happens to it when you no longer require our services.

Visitors to Our Website

When we receive a visitor to https://www.churchfarmgh.co.uk/ we use the third-party service Google Analytics to collect the standard internet log information. Google Analytics works by reading the user's IP address then setting a cookie on rwd.group containing a unique ID (so Google can get accurate audience figures). The IP address is then never used again. The unique ID has no personal identity information held within it.

If you object to Google Analytics collecting data, you can download a browser add-on that will prevent Google Analytics from using your data: https://tools.google.com/dlpage/gaoptout.

For more information:

Enhanced Conversions

The Enhanced Conversions feature allows Google Ads to access encrypted customer data from a conversion action (such as filling out an enquiry form) and then match that data back to ads viewed on other devices. This helps us track which Google Ads are useful to our business.

This only affects customers who are logged into their Google account when browsing our website. To control what data you are sharing with Google, go to: https://myactivity.google.com/activitycontrols. Google states that customer data will never be shared with other advertisers. Access controls and encryptions are in place to prevent unauthorised access to your data.

Contact Form Data

On our website, we have a ‘Contact Us’ form that enables those who want to find out more about our services to get in touch quickly. The only compulsory fields in this form are ‘Name’ and ‘Email’. You may also opt to include your telephone number, company name and a message indicating what services you would like more information about.

Contact form data is never stored in a database, it's only ever emailed directly to our office email address. We use the third-party provider Gmail to store our emails. Deleting emails in Gmail sends them to the Trash folder where they disappear forever after 30 days.

We will never sell this data or use it for marketing purposes.

Transport Layer Security

All the websites that we design and curate (including our own) have Transport Layer Security (TLS). TLS keeps secure all the data being transferred between your computer and the website you are viewing. Websites with TLS have a little padlock symbol to the left of the website address in the URL bar.

Your Rights

The GDPR enshrines rights that individuals may exercise in relation to their data:

  1. The right to be informed
  2. The right of access
  3. The right to rectification
  4. The right to erasure
  5. The right to restrict processing
  6. The right to data-portability
  7. The right to object
  8. The right not to be subject to automated decision-making including profiling

If you feel that any of these rights are being infringed, we will do everything that we can to address the problem.