Introduction
At Arcore London, we are committed to protecting your personal data and respecting your privacy in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. This Privacy Policy explains how we collect, use, and safeguard your information when you use our website and services.
Data Controller
Arcore London is the data controller responsible for your personal data. If you have any questions about this policy or how we handle your data, you can contact us via the Contact page.
Information We Collect
We may collect and process the following types of data:
Personal Information: Name, email address, phone number, and postal address.
Booking Information: Property preferences, stay duration, guest information.
Payment Details: Processed securely via third-party providers (we do not store card data).
Technical Data: IP address, browser type, operating system, device ID, and cookies.
Usage Data: Pages visited, actions taken on our site, time spent on pages.
How We Use Your Information
We use your personal data to:
Manage bookings and provide property rental services
Communicate with you regarding inquiries, bookings, and support
Send service updates and, where consented, marketing communications
Analyse website performance and user behaviour
Comply with legal obligations and prevent fraud
Legal Basis for Processing
Under the GDPR, we rely on the following lawful bases to process your personal data:
Contractual necessity: To fulfill our rental service obligations
Consent: For marketing communications (you can withdraw at any time)
Legitimate interests: For analytics, site improvement, and fraud prevention
Legal obligation: To comply with applicable laws and regulations
Data Sharing
We do not sell or rent your data. We may share your data with:
Trusted third-party providers (e.g., payment processors, IT services)
Legal authorities when required by law
Partners or contractors as necessary to provide our services
All third parties are required to maintain the confidentiality and security of your data.
International Data Transfers
If data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place (e.g., Standard Contractual Clauses) to protect your information.
Data Retention
We retain personal data only as long as necessary for the purposes outlined above or as required by law. After this period, data will be securely deleted or anonymised.
Your Rights Under GDPR
You have the right to:
Access your personal data
Request correction of inaccurate data
Request deletion of your data (right to be forgotten)
Object to or restrict certain processing
Data portability (to transfer your data to another provider)
Withdraw consent (e.g., unsubscribe from marketing)
To exercise your rights, please contact us via the Contact page. We will respond within 30 days.
Cookies
Our website uses cookies to enhance user experience, enable functionality, and analyse performance. You may manage or disable cookies through your browser settings. See our Cookie Policy for more information.
Data Security
We take appropriate technical and organisational measures to secure your data, including encryption, access controls, and secure hosting. While we strive to protect your information, no method is 100% secure.
Changes to This Policy
We may update this policy from time to time. Any changes will be posted on this page with an updated effective date. We recommend reviewing this policy periodically.
Complaints
If you believe your rights have been violated, you have the right to lodge a complaint with your local Data Protection Authority or the UK Information Commissioner’s Office (ICO): https://ico.org.uk/
