Privacy Policy

The Royal Hotel Mundesley (also referred to as “we” or “us” in this policy) is a company registered in England and Wales that provides hotel services to customers based in or travelling in the United Kingdom. Maintaining the security of your data is important to us, and we are committed to respecting your privacy. Please read this notice carefully so that you understand your rights in relation to your personal data.

This policy provides you with information about:

what personal data we collect
how we use your data
how we ensure your privacy is maintained
your legal rights relating to your personal data

We act as a Data Controller for the purposes of the General Data Protection Regulation (GDPR) and this privacy policy sets out the basis on which we will manage any personal data that you provide to us. This data may be provided:

in person
by telephone
online at www.royal-hotel-mundesley.co.uk

What personal data do we collect?
Personal data means any information that can be used to identify directly or indirectly a specific individual. The Royal Hotel Mundesley collects the following data:

Data provided by users – user data such as first name, last name, email, mobile number, physical address, payment and bank account details.
Transaction data – we collect data on transactions made due to using our services, this includes type of transaction, amount, date and time of transaction, card holder name.
Data from business partners – this is used to provide additional services such as payment provision, or for interaction with other apps and web-sites
Data collected in accordance with national or local government laws or policies

We may also record telephone conversations for training and quality purposes.

All of the personal data that we collect is stored in a secure data centre within the EU.

How do we use your data?
We collect, process and disclose your personal data only for specific and limited purposes. These include:

to provide you with hotel services in a safe and secure manner
to develop and improve our services and communication methods
to communicate information to you
to manage your room registration and usage of our facilities & services
to authenticate the identity of individuals contacting us
to process debit and credit card payments
to assess and handle any complaints
for internal training and quality assurance purposes
to understand and assess the interests and needs of our customers
to improve our current products and services, and develop new ones
to improve our business automation
to comply with national and local government requirements

Service Provision

The Royal Hotel Mundesley uses your data for verification and testing, personalising, support and improving of its services, including:

Providing accommodation & dining services
Payment processing and other financial data
Performing operations which are needed in order to improve service and customer support, testing, analysis and also monitoring of services used.

Security and Protection
The Royal Hotel Mundesley uses data for providing security and protection of users and for our services in the following ways:

to comply with national or local government requirements

Customer Support
The Royal Hotel Mundesley uses personal data in order to provide technical support and improve quality of its services.

Research and Development
We may use personal data in order to perform testing, research, analysis, development and improvement of its services. This helps us to make our services better and more secure and develop new functionality.

Sending marketing & non-marketing messages
We can use personal data in order to inform our users about changing of terms and rules, and also for sending non-marketing messages which are needed to provide services.

Fulfilling Legislative Requirements and Court orders
We can use personal data in order to settle litigation and court orders associated with the use of our services and for fulfilling court orders in cases when data is required by public authorities, including the police.

Automation of Business Processes
We may use personal data for automation of business processes. Where appropriate, we will ask for your consent to process your personal data. Where you have given consent for processing activities, you have the right to withdraw your consent at any time.

We also process your personal data when we have a legal obligation to perform such processing, e.g. for tax purposes or to comply with national or local authority requirements.

Use of Cookies
A cookie is a small piece of data which is sent by a web-service and stored on a user device (i.e. personal computer, mobile phone, tablet). The Royal Hotel Mundesley may use cookie files for the following purposes:

to perform user authentication
to save user settings

Transfer and Disclosure of User Data
The Royal Hotel Mundesley provides data to other entities or provides data on demand in cases where it falls under the requirements of the law or when it is required in order to satisfy claims or to settle disputes. We may transfer user data in the following cases:

To Other Users – in order to provide you with a service we may forward your name, email, telephone and information about your location
To suppliers and business partners
We also transfer data to credit and debit card transaction providers
For legislative grounds or in dispute cases

The Royal Hotel Mundesley may disclose personal data in cases when legislation requires to do so, in court disputes, or when public authorities, including the police, require this.

In cases when users allow sending of data:
The Royal Hotel Mundesley may send data to third parties in cases that go beyond this agreement, if we have informed you about our intention to send data and you have allowed this.

Storage and removal of data
The Royal Hotel Mundesley will only store personal data as long as is necessary to provide you with our services in accordance with our policies. Users can request removal of their data at any time by sending an email request to enquiries@royal-hotel-mundesley.co.uk or by writing to us at the address below.

We may also store personal data even after performing a user request in order to meet legislative requirements. Where we have no legitimate business need to retain your personal data, we will either delete or anonymise it.

Data Access and Data Collection Refusal
Where we process your personal data, GDPR gives you some rights over how the data is processed. These include:

the right to clear and transparent information about what data we collect and how it is used
the right to access, correct or update your personal data at any time
the right to move, copy or transmit your personal data elsewhere
the right to request that we delete your data (under certain circumstances)
the right to restrict processing of your personal data(under certain circumstances)
the right to object to certain types of processing, including for direct marketing
the right to withdraw consent to for us hold your personal data

Disabling Marketing Messages

Customers can disable the sending of marketing messages by emailing enquiries@royal-hotel-mundesley.co.uk

Contacting Us
If you have any questions, comments or concerns about this privacy policy, please contact us at enquiries@royal-hotel-mundesley.co.uk or write to us at:

The Royal Hotel Mundesley
Paston Road
Mundesley
Norwich NR11 8BN

Further information and advice about your rights can be obtained from the Information Commissioner’s Office (ICO) at www.ico.org.uk

Changes to this Privacy Policy

The Royal Hotel Mundesley has a right to make changes to this Privacy Policy. We may periodically update this privacy policy to continue to meet GDPR compliance or to comply with other legal or regulatory changes.

Use of our services after an update constitutes consent to the updated notice to the extent permitted by law.

This notice was last updated on 23rd May 2026.