Menu
  1. Home
  2. Privacy Policy

Privacy Policy

West Somerset Railway is dedicated to protecting the privacy of our visitors, website users, staff, and volunteers. This policy outlines how we will use and handle your personal information

 What information do we collect?

We may collect, store and use the following personal information:

  1. information about your computer and about your visits to and use of this website - including the following:
  • your IP address,
  • geographical location,
  • browser type and version,
  • operating system,
  • referral source,
  • length of visit,
  • page views and
  • website navigation;

(b) Information pertaining to any transactions conducted via our website, including details of purchases made for our goods or services (such as name, address, postcode, email address, and purchase history)

Digi-Tickets are our ticketing company and in relation to this policy is a Data Processor in respect of data that it collects and process as a business. When purchasing tickets through our website Digitickets may retain some of your information - you can review the Digi-Tickets privacy policy at: www.digitickets.co.uk/privacy-policy together with the cookie policy at www.digitickets.co.uk/cookie-policy.

(c) information that you provide to us to register with us (including name and email address);

(d) information that you provide to us for subscribing to our website services, email notifications and/or newsletters (including name and email address);

(e) any other information that you choose to send to us;

2. Cookies

A cookie consists of a piece of text sent by a web server to a web browser and stored by the browser. The information is then sent back to the server when the browser requests a page from the server. This enables the web server to identify and track the web browser.
 
We may use both “session” cookies and “persistent” cookies on the website.  We will use the session cookies to: keep track of you whilst you navigate the website.  We will use the persistent cookies to: enable our website to recognise you when you visit.
 
Session cookies will be deleted from your computer when you close your browser. Persistent cookies will remain stored on your computer until deleted by you, or until they reach their expiry date.
 
We utilise Google Analytics to analyse website usage. Google Analytics generates statistical and other information about website use through cookies, which are stored on users' computers. The information generated is used to create reports on website usage, and Google will store this information Google's privacy policy is available at: https://policies.google.com/privacy.

3. Using your personal information

Personal information submitted through this website will be used for the purposes outlined in this privacy policy or in the relevant sections of the website. We may use your personal information to:

(a) administer the website;

(b) improve your browsing experience by personalising the website;

(c) enable your use of the services available on the website;

(d) send to you your goods and services purchased via the website;

(e) When you have expressly consented, we will send you our newsletter and marketing communications via email or similar technology, which we believe may be of interest to you. You may notify us at any time if you no longer wish to receive these communications;

(g) Address inquiries and complaints made by or concerning you in relation to the website. When you submit personal information for publication on our website, we will publish and utilize that information in accordance with the license you grant us.

We will not, without your express consent, provide your personal information to any third parties for direct marketing.

All our website financial transactions are handled through our payment services provider, Paytek.

We will share information with Paytek only to the extent necessary for the purposes of processing payments you make via our website and dealing with complaints and queries relating to such payments.

4. How long we keep your personal information

We retain your personal information for the duration necessary to provide the services you have requested or for other essential purposes, such as complying with our legal obligations, resolving disputes, and enforcing our policies. Your information will not be retained longer than is necessary.

5. Disclosures

We may disclose information about you to any member of our group [employees, officers, agents, suppliers or subcontractors] insofar as reasonably necessary for the purposes as set out in this privacy policy.

In addition, we may disclose your personal information:

(a) to the extent that we are required to do so by law;

(b) in connection with any legal proceedings or prospective legal proceedings;

(c) to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk);

Except as provided in this privacy policy, we will not provide your information to third parties.

6. Security of your personal information

We do not store credit card details, nor do we share customer details with any third parties.

We will take reasonable technical and organisational precautions to prevent the loss, misuse, or alteration of your personal information.

We will store all the personal information you provide on our secure (password- and firewall- protected) servers. All electronic transactions you make to or receive from us will be encrypted using SSL technology.

Of course, data transmission over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.

You are responsible for keeping your password and user details confidential. We will not ask you for your password (except when you log in to the website).

7. Policy amendments

We may update this privacy policy from time-to-time by posting a new version on our website.  You should check this page occasionally to ensure you are happy with any changes.

8. Your rights

You may instruct us to provide you with any personal information we hold about you.  This is known as a Subject Access Request. Provision of such information will be subject to:

  • the supply of appropriate evidence of your identity (for this purpose, we will usually accept a photocopy of your passport or photo Driving Licence plus an original copy of a utility bill showing your current address).

We may withhold such personal information to the extent permitted by law.
 
You may instruct us not to process your personal information for marketing purposes.  In practice, you will usually either expressly agree in advance to our use of your personal information for marketing purposes, or we will provide you with an opportunity to opt-out of the use of your personal information for marketing purposes.
 
You may request us to erase your personal data. We will comply with your request to the extent required for compliance with legal and other processes
 
You may request that we correct any incorrect data that we hold about you.

9. Third party websites

You may find links to third party websites on our website. These websites should have their own privacy policies which you should check. We do not accept any responsibility or liability for their policies whatsoever as we have no control over them.

10. Contact

If you have any questions about this privacy policy or our treatment of your personal information, please write to us by email to by post.

11. Data controller

The data controller responsible in respect of the information collected on this website is the West Somerset Railway

For any queries relating to data protection or the use of CCTV on the West Somerset Railway please contact:

Data Controller
West Somerset Railway

The Railway Station

Minehead

TA24 5BG
 
Email: [email protected]