top of page

GDPR

In short, ForestTots only collects names and email addresses from our customers to inform you of events, updates and offers that we will be holding. Our GDPR statement is set out below:

  1. Introduction

This policy sets out how Hopkins Leisure Limited and ForestTots collects, uses and stores personal data in compliance with General Data Protection Regulation (GDPR). We are committed to protecting the privacy of our members and their families, including children. This policy applies to all personal data stored by ForestTots.

2. Data Collected

ForestTots collects the following personal data from our members:

  • Names

  • Email addresses

This data is collected for the purpose of communication with members about future events and updates regarding ForestTots.

3. Lawful Basis for Processing

The lawful basis for processing personal data collected by ForestTots is consent. Members and their families have the option to provide or withhold their consent for the collection and processing of their personal data. Consent can be obtained at the point of registration, or via our website, and can be withdrawn at any time.

4. Data Protection Officer

ForestTots’ Data Protection Officer (DPO) is Michael Hopkins. The DPO is responsible for ensuring that ForestTots complies with GDPR regulations and for handling any data protection queries/concerns.

 

5. Data Storage

ForestTots stores data securely and confidentially. The data is stored on a password-protected database, only accessible by the staff. ForestTots will only retain personal data for as long as necessary to fulfil the purposes for which it has been collected, and in accordance with legal and regulatory requirements.

 

6. Data Sharing

ForestTots does not share personal data with third parties unless required by law or with the consent of the data subject.

 

7. Data Subject Rights

ForestTots members and their families have the following rights to their personal data:

  • The right to request access to their personal data

  • The right to request correction of any inaccurate / incomplete personal data

  • The right to request deletion of their personal data

  • The right to limit processing of their personal data

  • The right to request their personal data be transferred to a different controller

  • The right to object to there processing of their personal data for certain purposes.

 

8. Breach Notification

In the event of a data breach, ForestTots will notify the Information Commissioner’s Office (ICO) within 72 hours of becoming aware of the breach. ForestTots will also notify affected data subjects immediately if the breach is likely to result in a high risk to their rights and freedoms.

 

9. Conclusion

ForestTots is committed to protecting the privacy and personal data of its members and their families. This policy outlines the measures taken to ensure compliance with GPDR regulations and to protect personal data from unauthorised access, use or disclosure.

bottom of page