GDPR Policy
This GDPR Policy outlines how Disability Destinations (“we”, “our”, or “us”) collects, processes, stores, and protects your personal data in alignment with the General Data Protection Regulation (GDPR) and relevant global data privacy laws. This policy applies to all users of our website including visitors, customers, property owners, and business partners.
1. Personal Data We Collect
We may collect, use, and process the following types of personal information:
Identity & Contact Information
- Name
- Email address
- Phone number
- Postal address (if provided)
Technical & Usage Data
- IP address
- Browser type and version
- Device details (operating system, screen resolution)
- Approximate geographic location
- Pages viewed, navigation patterns, and duration of use
Voluntary & User-Submitted Information
- Accessibility or support preferences
- Communication and newsletter preferences
- Content submitted for property listings, reviews, or messages
Personal data is collected directly from you or automatically through website analytics technologies.
2. Lawful Basis for Processing
In accordance with Article 6 of the GDPR, we process your data under one or more lawful bases:
- Consent – You have explicitly agreed to the processing of your information.
- Contractual Necessity – Processing is required to provide services or manage your account.
- Legal Obligation – Required for compliance, record-keeping, or dispute handling.
- Legitimate Interests – Used to operate, secure, analyse, and improve our services, without overriding your individual rights.
You may withdraw consent at any time where consent is the legal basis for processing.
3. How We Use Your Data
Personal data may be processed for the following purposes:
- Operating and maintaining the Disability Destinations website
- Managing user accounts, listings, memberships, and submissions
- Responding to enquiries and providing customer support
- Sending newsletters, updates, and marketing (only when opted-in)
- Monitoring site performance, analytics, and security
- Complying with regulatory, legal or safety obligations
We do not sell personal data, and we do not profile individuals for automated decision-making.
4. Data Retention
We retain personal data only for as long as necessary for the purposes outlined in this policy or as required by law. When data is no longer needed, it will be securely deleted, anonymised, or archived in accordance with retention regulations.
5. Data Security Measures
We protect your information using appropriate organisational and technical safeguards, including:
- SSL encryption for secure data transmission
- Restricted access to personal information
- Routine security and audit procedures
- Staff awareness and data protection training
While we take every reasonable step to secure your data, no system is entirely immune to risk. We continuously review and refine our security standards.
6. Your GDPR Rights
Under GDPR, you have the right to:
- Access your personal data
- Rectify inaccurate or incomplete information
- Request erasure (“right to be forgotten”) under qualifying conditions
- Restrict processing in specific scenarios
- Data portability – receive a copy in a transferable format
- Object to processing based on legitimate interest or marketing
To exercise your rights, please contact us using the details below. Identification verification may be required for your protection.
7. International Data Transfers
If personal data is transferred outside the UK or EEA, we ensure it remains protected through approved safeguards such as:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions from the European Commission
- Binding corporate rules or equivalent legal protections
These measures ensure compliance with GDPR wherever your data is processed.
8. Contact Us
If you have questions, concerns, or wish to exercise your data rights, you can contact us at:
📩 info@dev.disabilitydestinations.com
📝 Contact Form: via our Contact Us page
We aim to respond to GDPR-related requests within 30 days, as permitted by law.