Privacy Policy

Sanhydro Limited (“we”, “our”, “us”, the company”, or “Sanhydro”) respect your privacy and is committed to protecting the personal data of all users of our website and mobile applications (together called “our Sites” or “the Sites” as the context admits).This privacy policy tells you how we look after your personal data and informs you of your privacy rights. The company is the “data controller” of the information you provide to us. This privacy policy is in a layered format to make it easier to use.

  1. CONTACT US
  2. HOW WE COLLECT YOUR DATA
  3. THE DATA WE COLLECT ABOUT YOU
  4. HOW WE USE YOUR DATA
  5. DISCLOSURES OF YOUR DATA
  6. INTERNATIONAL DATA TRANSFERS
  7. DATA SECURITY
  8. DATA RETENTION
  9. COOKIES
  10. YOUR RIGHTS
  11. OTHER
  1. CONTACT US
  • If you have questions or requests concerning this privacy policy or how we handle your data, please get in touch with us by email at contact-us@sanhydro.com.
  • Our corporate information is
    • We are registered in England and Wales under registration number 12573795 at registered address 71 Crown Meadow, Slough, SL1 0LJ.

 

  1. HOW WE COLLECT YOUR DATA
  • We collect your personal data when you interact with us or use our services, for example, when you submit your address when making a booking. We use this information to provide you with the requested service and to improve the user experience.
  • We collect your data when you
    • Browse and interact with our Sites
    • Make a booking and create an account
    • Make changes in your online account or mobile application
    • Give us feedback
  • We also collect technical information from third-party sites, such as advertising platforms and analytics providers.

 

  1. THE DATA WE COLLECT ABOUT YOU
  • We are open and transparent about the data we collect from you.
  • We collect and record the following types of information:
    • Information about your computer and about your visits to and use of our Sites (including your IP address, geographical location, browser type and version, operating system, searches made, referral source, length of visit, page views and website navigation paths).
    • Information that you provide to us when registering with our Sites (including your name, email address, contact details and information about your home).
    • Information that you provide to us for the purpose of subscribing to our email notifications and or newsletters (including your name, email address and other contact details).
    • Information that you provide to us when using the services on our Sites, or that is generated in the course of the use of those services (including the timing, type, frequency and pattern of service use).
    • Information about purchases you make of our services or any other transactions that you enter into through our Sites (including date, time, type, spend and payment details).
    • Information that you post to our Sites or social media accounts for publication on the Internet (including your name, pictures and the content of your posts).
    • Information about the ratings you give to service providers.
    • Information contained in or relating to any communications that you send to us or send through our Sites (including the communication content and metadata associated with the communication).
    • Information you send to us via email, phone, chat or SMS, and any other kind of interaction including the communication and any metadata.
    • Information you send to us for feedback (including surveys and feedback responses).
    • Information about your communication preferences (including whether you subscribe to marketing and other communications).
    • Any other personal information that you to send to us
  • Sanhydro does not store full credit card information and uses a third party payment processor, with only the last 4 digits of the card number stored alongside a unique code to identify the customer by a third party payments provider.
  • Before you disclose to us the personal information of another person, you must obtain that person’s consent to both the disclosure and the processing of that personal information in accordance with the terms of this policy.
  • We also collect, use, and share aggregated data such as statistical or demographic data for any purpose. Such data is anonymous and is not personal data.
  • The Sites are not intended for use by children and we do not knowingly collect data relating to children.
  1. HOW WE USE YOUR DATA
  • We only use your personal data as the law allows us to. Most commonly, we will use your personal data in the following circumstances:
    • Where we need to perform the contract we are about to enter into or have entered into with you.
    • Where we need to comply with a legal or regulatory obligation.
    • Where it is necessary for our legitimate interests. In such cases we use a ‘balancing test’ to make sure such processing is needed and that your rights do not override those interests.
    • Generally, we do not rely on consent as a legal basis for processing your personal data.
  • Where our basis for processing is the contract made between us, we may use your information to:
    • Administer our Sites and business.
    • Personalise our Sites for you.
    • Enable your use of the services available on our Sites.
    • Supply the services you purchased through our Sites.
    • Send statements, invoices and payment reminders to you, and collect payments due from you.
    • Send you information about your service and any changes.
    • Send you non-marketing commercial communications.
    • Send you email notifications that you have specifically requested.
    • Allow you to make and receive referrals.
    • To help our support team assist you with any complaints or requests for information as quickly and effectively as possible.
    • Update you on changes to prices, terms and conditions.
    • To tell you about new features.
    • Deal with enquiries and complaints made by or about you relating to our Sites
    • Keep our Sites secure and prevent fraud
  • Where our basis for processing is legitimate interests, we may use your information to:
    • Research, assess, analyse and improve our service.
    • Send you marketing material (you can opt out at any time).
    • Request your views and feedback (you can opt out at any time)
    • Provide third-parties with statistical information about our users (but those third-parties will not be able to identify any individual user from that information).
  • Where our basis for processing is a legal obligation, we may use your information to:
    • Create a record of your transactions.
    • Comply with any legal obligation or regulatory requirement to which we are subject.
  • If you submit personal information for publication on our Sites, we will publish and otherwise use that information in accordance with the consent you grant to us.
  • All our financial transactions are handled through our payment services provider, PayPal. You can review the PayPal privacy policy at https://www.paypal.com/webapps/mpp/ua/privacy-full. We will share information with our payment provider only to the extent necessary for the purposes of processing your payments, refunding such payments and dealing with complaints and queries relating to such payments and refunds.
  • We may use anonymised customer information to perform large scale analyses to improve our services.

 

  1. DISCLOSURES OF YOUR DATA
  • The information we collect about you will be stored on our servers located within the EU. We are very careful and transparent about whom else your information is shared with.
  • We may disclose your personal information to:
    • Any of our employees, officers, insurers, professional advisers, agents, suppliers or subcontractors as is reasonably necessary for the purposes set out in this policy.
  • Sanhydro may share limited personal data with relevant staff so you can complete bookings and communicate with one another directly about the bookings and other matters
  • Sanhydro may also share limited personal data with third-party service providers. Any such third-party must comply with all relevant regulation in their processing of your data. Such third-party service providers includes but is not limited to:
    • Payment providers: to bill your for services
    • Customer service software providers: such as email, telephone, chat and SMS providers so we can communicate with you about any issues
    • Marketing and advertising partners: so we can send you relevant information
    • Referrals: where you have referred someone or someone has referred you
  • Except as provided in this policy, we will not supply your personal information to third-parties.
  • We may disclose your personal information:
    • To the extent that we are required to do so by law.
    • in connection with any ongoing or prospective legal proceedings.
    • To establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk).
    • To the purchaser (or prospective purchaser) of any business or asset that we are (or are contemplating) selling.
    • To any person whom we reasonably believe may apply to a court or other competent authority for disclosure of that personal information where, in our reasonable opinion, such court or authority would be reasonably likely to order disclosure of that personal information.

 

  1. INTERNATIONAL DATA TRANSFERS
  • Information that we collect may be processed outside the European Economic Area (EEA) and these countries may not have data protection laws equivalent to those in force in the EEA. However, we shall ensure that such data is processed according with the same protections and safeguards as if it were within the EEA.
  • Whenever we transfer your personal data out of the EEA, we shall ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

 

  1. DATA SECURITY
  • We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered, or disclosed. We also limit access to your personal data to those employees, agents, contractors and other third-parties who have a business need to know.
  • We have in place procedures to deal with any suspected personal data breach, and will notify you and the Information Commissioner of a breach where we are legally required to do so.
  • You acknowledge that the transmission of information over the Internet is inherently insecure and that we cannot guarantee the security of data sent over the Internet.
  • You are responsible for keeping the password you use for accessing our Sites confidential. We advise you not to share this password.

 

  1. DATA RETENTION
  • We will retain your personal data only for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
  • To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes by other means, and the applicable legal requirements.
  • In some circumstances, you can ask us to delete your data (see Rights below).
  • In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
  1. COOKIES
  • Our Sites use cookies.
  • A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.
  • Cookies may be either “persistent” cookies or “session” cookies: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie will expire at the end of the user session when the web browser is closed.
  • Cookies do not typically contain any information that personally identifies a user, but personal information that we store about you may be linked to the information stored in and obtained from cookies.
  • We use both session and persistent cookies on our website.
  • We will use cookies to: recognise a computer when a user visits the Sites; track users as they navigate the Sites; enable the use of a booking system on the Sites; improve the Sites’ usability; analyse the use of the Sites; administer the Sites; prevent fraud and improve the security of the Sites; personalise the Sites for each user; target advertisements which may be of interest; keep track of your personal and home information; and for other possible uses.
  • The names of some of the cookies that we use on our Sites, and the purposes for which they are used, are set out below:
    • We use Google Analytics and other tools to collect and analyse website statistics. These tools use cookies to generate information about the use of the Sites which can be used to create reports. We generate reports about demographic and interest-based data (such as age, gender, location, and interests) to better understand the visitors to our Sites, and to improve the Sites. Google will store this information. Google’s privacy policy is available at: www.google.com/privacypolicy.html
    • Other cookies, from time to time

 

  1.  YOUR RIGHTS
  • Under data protection law, you may have rights concerning the data we hold about you. If you wish to exercise any of these rights, please contact our Data Protection Officer using the contact details set out above
  • You may have the following rights:
    • Right to be informed. You have the right to clear, transparent and easily understandable information about how we use your data and your rights. This is why we have provided this policy.
    • Right to rectification. This enables you to have any incomplete or inaccurate data we hold about you corrected.
    • Right to access (commonly known as a “subject access request”). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.
    • Right to erasure (commonly known as “right to be forgotten”). This enables you to ask us to delete personal data where there is no good reason for us continuing to process it.
    • Right to restrict processing. This enables you to ask us to suspend the processing of your personal data. We can then store your data but won’t be able to process it.
    • Right to data portability. We will provide to you, or a third-party of your choice, with your personal data in a structured, commonly used, machine-readable format. There are, however, some restrictions to this right.
    • Right to object. You have the right to object to certain types of processing, such as marketing emails and can opt out at any time.
    • You can also withdraw consent at any time where we are relying on consent to process your personal data.
  • When exercising one of these rights:
    • For your own security, we may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data.
    • We do not ordinarily charge a fee unless your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
    • We try to respond to all legitimate requests within one month.
  • You have the right to complain to the Information Commissioner at any time if you there is a problem with the way we are handling your data

 

  1. OTHER
  • Amendments
    • This policy may be amended or updated at any time in our absolute discretion. Any changes to this privacy policy will be posted to our Sites and, where appropriate, we will notify you of the changes by email or push notification.
    • This privacy notice was last updated on 11 January 2024.
  • Third party websites
    • Our Sites may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.