This Privacy Statement is issued by Gwestyaberystwyth Ltd (Company number 12903932) of 19 Marine Terrace, Aberystwyth, Ceredigion SY23 2AZ and tells you what information is collected and used by us in the course of our business. We collect and use personal information if you visit our website, make a booking, or have signed up to receive one of our newsletters. Information we collect: When someone visits www.gwestycymru.com we collect standard Internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site for the purpose of our own research and statistical analysis. We collect this information in a way which does not identify anyone. We do not make any attempt to find out the identities of those visiting our websites. We will not associate any data gathered from this site with any personally identifying information from any source. Information collected during the course of the reservation and during your stay may include:

• Your name, email address, home and business address, phone number, nationality and payment card information;
• Information such as stay and room preferences made during the course of your reservation such as your preferred room type and specific requests to the hotel.

This information may be provided to us directly when you make a reservation through our website or directly at the hotel. In some cases we may receive this information from a third-party, such as when you book through an online travel agency. We use the information collected from you primarily to fulfil your hotel and/or restaurant reservation. Prior to your stay this may include sending you pre-stay communications.  Following your stay, the information collected from you will be used for the purpose of administering and maintaining our records and to be able to respond to any further communication from you. There may be other times when we collect and use personal information, for example if you sign up to receive our newsletters. The information collected may include personal details such as your name and e-mail address. We do not sell or share your e-mail addresses with other companies.  You can unsubscribe from our newsletter at any time by clicking on the unsubscribe link at the bottom of the e-mail. In each case, we will collect, use and secure your information in a manner consistent with the General Data Protection Regulation (GDPR). Who we share your information with: We do not share your information with any other third parties unless there are special circumstances, such as:

• when we believe in good faith that the disclosure is required by law or to protect the safety of hotel guests, employees, the public or Gwesty Cymru property;
• when disclosure is required to comply with a judicial proceeding, court order, court summons, warrant or legal process; or
• in the event of a merger, asset sale, or other related transaction.

How we secure your information: We are committed to protecting the confidentiality and security of the information that you provide to us. To do this, technical, physical and organisational security measures are put in place to protect against any unauthorised access, disclosure, damage or loss of your information. The collection, transmission and storage of information can never be guaranteed to be completely secure; however, we take steps to ensure that appropriate security safeguards are in place to protect your information. Managing information: In the event any information that you provide to us is inaccurate, changes or you would like this information deleted, your information can be updated by contacting us either in writing at the address above or by e-mail to info@gwestycymru.com. We will respond to your request within a reasonable timeframe. To the extent permitted under the law, you may also use the above contact details to request access to any of your personal information that is held by Gwesty Cymru. These requests will be reviewed and processed in line with the law. E-mail Phishing : Phishing is a method used by fraudsters to deceive someone into giving sensitive information. Most of the time phishing will take the form of e-mails, which purport to be from well-known companies and ask recipients to send their private information. This could be via a link or an attachment contained in the e-mail. This information is then used for identity theft and fraud.  We never send links to invoices in e-mails. All genuine correspondence from us will include our company information, and will only be sent from info@gwestycymru.co.uk. If you have not contacted us regarding a recent booking, please ignore any e-mail claiming to be from Gwesty Cymru which asks for personal details, and let us know about it. Consent:  By using our website you consent to our Privacy Policy and Terms and Conditions.  If we decide to change or update our privacy policy we will do so on this page.