Privacy Policy

Last updated: 24-10-2025
Effective from: 24-10-2025

Welcome to Lion Hotel (“we”, “us”, “our”). We are committed to protecting and preserving the privacy of our guests, website users and others who interact with our services.

This Privacy Policy sets out how we collect, use, store and share personal data when you:

  • Visit our website (https://lion-hotel.co.uk/)
  • Make a reservation or stay with us
  • Use our other services (dining, events, gift vouchers etc.)
  • Contact us by email, telephone, or via social media
    By using our website or our services, you accept the practices described in this policy.

1. Who we are

Lion Hotel
Address: North Beach, Tenby, SA70 7EX, United Kingdom
Email: in**@***********co.uk
Telephone: 01834 842127
We are the “data controller” for the purposes of UK data protection legislation.

2. What personal data we collect

We may collect, use, store and transfer different kinds of personal data about you which includes:

  • Identity & contact data: name, title, date of birth, gender, home address, email address, telephone number.
  • Booking & stay data: reservation details (arrival/departure dates, room type, number of guests), payment information (card details or payment reference), preferences (e.g., dietary requirements, room preference).
  • Technical data: IP address, browser type and version, time zone setting, operating system and platform, other technology on the device you use to access our website.
  • Usage data: information about how you use our website, services, what pages you visit, how long you stay, what you click on, errors you get, downloads.
  • Marketing & communications data: your preferences in receiving marketing from us and our third parties, your communications with us (enquiries, feedback).
  • Special category data: [Specify if applicable — e.g., health or dietary information that may constitute special category data — and how you handle it.]
  • Other data: for example if you provide us with photos, guest names, social media handles, referral information or other data when contacting us.

We collect this data:

  • Directly from you when you make a booking, fill in a form, contact us by email/phone/social media, subscribe to a newsletter, or engage in any service we provide.
  • Automatically when you use our website (via cookies, analytics etc.).
  • From third-party sources (for example booking platforms, payment processors, travel agencies, publicly available sources) where relevant.

3. How we use your personal data (Purposes & Legal Bases)

We will only process your personal data when we have a legal basis to do so. The legal bases we rely on include:

  • Contractual necessity: to process a booking or provide you with requested services (e.g., your stay, dining, events).
  • Legitimate interests: e.g., to administer and operate our business, manage our website, maintain security, prevent fraud, improve our services. We balance these interests with your rights and freedoms.
  • Consent: where we ask for your consent (for example, to send you marketing communications). You may withdraw your consent at any time.
  • Legal obligation: where required by law (e.g., for accounting, tax obligations, regulatory compliance).

Typical uses of your data include:

  • To register you as a guest and manage your booking and stay.
  • To process payments, fees, charges and manage our relationship with you.
  • To send you confirmations, pre-stay communications, updates about your stay or event.
  • To administer our website, perform analytics, improve our services, monitor performance and security.
  • To send you marketing (with your consent or where permitted) of special offers, events, news and services.
  • To respond to enquiries, feedback or complaints.
  • To comply with legal or regulatory obligations (e.g., health & safety, accounting).

4. Cookies and similar technologies

Our website uses cookies and similar tracking technologies to distinguish you from other users, to provide a good experience when you browse and to improve our site. We may use first-party cookies and third-party cookies (for example analytics, marketing).
You can set your browser to refuse all or some cookies. However, some parts of our website may become inaccessible or not function properly if cookies are disabled.
For more detail, please see our Cookie Policy [link] (if applicable).

5. Who we share your personal data with & international transfers

We may share your personal data with:

  • Internal service providers (for example our reservations system, guest management system, IT support)
  • External third-party service providers acting as processors (for example payment processors, booking agencies, analytics providers, marketing platforms)
  • Professional advisors (legal, accounting, audit)
  • Government and regulatory bodies, as required by law
  • Event/agency partners when you use their services via us

We will ensure that any third parties processing your data do so only in accordance with our instructions and comply with applicable data protection law.

Where we transfer data outside the UK/EEA we will ensure that appropriate safeguards are in place (for example standard contractual clauses) to protect your rights and freedoms.

6. How long we retain your data

We will retain your personal data for as long as necessary to fulfil the purposes for which we collected it, including to meet any legal, accounting, tax or reporting requirements.
When determining the appropriate retention period, we consider the amount, nature, sensitivity of the data, the potential risk of harm from unauthorised use or disclosure, the purposes for which we process it, whether those purposes can be achieved through other means, and applicable laws/regulation.

Example: basic guest information may be kept for a set number of years post-stay for accounting/tax purposes; marketing data may be retained while you remain subscribed; technical/usage data may be aggregated/anonymised.

7. Your rights

Under the UK GDPR and related data protection law, you have certain rights in relation to your personal data. These include:

  • The right to request access to the personal data we hold about you (a “subject access request”).
  • The right to request correction of inaccurate or incomplete personal data.
  • The right to request erasure of your personal data in certain circumstances (sometimes known as the “right to be forgotten”).
  • The right to request restriction of processing of your data in certain circumstances.
  • The right to object to processing of your personal data for legitimate interests or direct marketing.
  • The right to data portability (to receive the personal data you provided to us in a structured, commonly used, machine-readable format) where applicable.
  • The right to withdraw consent at any time, where relevant.

If you wish to exercise any of these rights, please contact us at [insert contact email/address]. We may ask you to verify your identity before responding to your request.
You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) if you believe we have failed to comply with data protection law.

8. Security and integrity of your data

We have put in place appropriate technical and organisational measures to protect your personal data from accidental loss, unauthorised access, alteration or disclosure. Access to your personal data is limited to employees, agents, contractors and other third parties who have a business need to know and are subject to confidentiality obligations.
However, no method of transmission over the Internet, or method of electronic storage, is 100% secure — we cannot guarantee absolute security.

9. Links to other websites

Our website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow other third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. We recommend you read their privacy notices.

10. Changes to this Privacy Policy

We keep our Privacy Policy under regular review. We may update this policy from time to time and will publish any changes on our website. The date at the top reflects when this policy was last updated. Your continued use of our services or website after such changes constitutes your acceptance of the revised policy.

11. Contact details

If you have any questions about this policy or our privacy practices, or wish to exercise your rights, please contact:
Lion Hotel
Address: North Beach, Tenby, SA70 7EX, United Kingdom
Email: in**@***********co.uk
Telephone: 01834 842127

12. Definitions / Glossary

  • “Personal data” means any information relating to an identifiable living individual.
  • “Processing” means any operation performed on personal data (collection, storage, use, disclosure, etc.).
  • “Controller” means the entity that determines the purposes and means of processing personal data.
  • “Processor” means the entity that processes personal data on behalf of the controller.
  • “UK GDPR” means the UK’s version of the General Data Protection Regulation, as incorporated into domestic law.