Privacy Policy

Last updated: 28 May 2026 This policy describes how we collect and use your personal ...

Last updated: 28 May 2026

This policy describes how we collect and use your personal data during your use of our website at www.uncomfortableoxford.com and during related services, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who is using your data?

Uncomfortable Oxford C.I.C. is the data controller for the information we collect when you visit our website or book our services. This means we decide how to use it and are responsible for looking after it in accordance with UK GDPR. Our registered address and contact details are available at www.uncomfortableoxford.com and in the Companies House directory.

2. Types of data we collect

We collect and use the following categories of personal data:

  • Information you provide directly — such as your name and email address when you contact us through our website forms or subscribe to our mailing list.
  • Booking information — your name, email address, and any other details you provide when booking a tour or event through our website or external platforms.
  • Technical information — automatically collected data including your IP address, device type, browser type and version, operating system, and session data such as page response times, visit duration, and browsing behaviour on our site.
  • Communications — records of correspondence if you contact us by email or through our website.

Our website is hosted on the WordPress platform. Your data may be stored within WordPress’s data storage system, databases and general applications. They store your data on secure servers behind a firewall. Read WordPress’s privacy policy for more details.

We use Google Analytics and Google Workspace to understand how our website is used. We also use Zoho and its associated applications for data analysis, customer relationship management, and communications.

3. Booking platforms

We use a number of external platforms to process event ticketing and tour bookings. These currently include Ticket Tailor, Eventbrite, Viator, and Get Your Guide. When you book through any of these platforms or their associated partners, they collect and process your personal data in accordance with their own privacy policies. We do not control the privacy practices of these platforms.

Payment processing is handled by these platforms directly. We do not store your payment card details.

4. How we use your data

We process your personal data for the following purposes:

  • To provide and administer our tours and services, including processing bookings and communicating with you about them.
  • To respond to enquiries submitted through our website contact forms.
  • To send you updates about our activities, upcoming events, and related matters where you have subscribed to our mailing list or consented to receive such communications.
  • To understand how our website is used and improve its content and functionality.
  • To measure the long-term impact of our activities, in accordance with our mission as a community interest company. We may contact you up to three years after the date of a tour or service for this purpose. You are under no obligation to respond and may opt out at any time.

We will only use your data for the purposes for which it was collected. If we need to use it for a different purpose, we will seek your consent.

5. Sharing your data

We share your personal data only where necessary:

  • With members of our team who require access to it as part of their work with us.
  • With third-party service providers who support our operations, including Google Workspace, Zoho, and email delivery services. As part of this, your data may be processed outside of the UK or EEA. These providers are required to handle your data securely and in compliance with applicable data protection law.
  • With legal or regulatory authorities if we are required to do so by law.

Where data is transferred outside the UK or European Economic Area, we ensure appropriate safeguards are in place. We share the minimum amount of data necessary for each purpose.

Our site contains links to and from various third party websites. If you follow a link to any of these websites, be aware that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.

6. How long we keep your data

We retain your personal data only for as long as necessary for the purpose for which it was collected:

  • Booking and financial records are retained for seven years in accordance with HMRC requirements.
  • Mailing list and contact data is retained for as long as you remain subscribed or engaged with our communications. We will remove inactive contacts periodically.
  • Website analytics data is retained in accordance with Google Analytics and Zoho default retention settings.

If you would like us to delete your data, please contact us and we will do so unless we are required to retain it for legal reasons.

7. Cookies

We use session and persistent cookies on our website to support its functionality and to understand how it is used. Session cookies are deleted when you close your browser. Persistent cookies remain on your device until they expire or you delete them.

You can control cookie settings through your browser. Disabling cookies may affect the functionality of our website.

8. Your rights

Under UK GDPR you have the following rights in relation to your personal data:

  • The right to access — you may request a copy of the personal data we hold about you.
  • The right to rectification — you may ask us to correct inaccurate or incomplete data.
  • The right to erasure — you may ask us to delete your personal data in certain circumstances.
  • The right to restrict processing — you may ask us to limit how we use your data.
  • The right to object — you may object to processing based on legitimate interests or for direct marketing purposes.
  • The right to withdraw consent — where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, please contact us at [email protected]. We will respond within one month. If you are unhappy with how we have handled your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk.

9. Changes to this policy

We may update this policy from time to time. Any changes will be posted on this page with an updated date. We encourage you to review this policy periodically.

10. Contact

If you have any questions or concerns about this privacy policy or how we handle your data, please contact us at [email protected].

Uncomfortable Oxford C.I.C. is a Community Interest Company registered in England and Wales.

oxford-living-wage-logo
the-oxfordshire-welcome-logo
get-your-guide-logo
social-enterprise-uk-logo
uncomfortable-oxford-logo