Privacy
Policy

How we collect, use and protect your information when you visit ROARR! online.

Last updated: 11 July 2026

1. Who We Are

Norfolk Dinosaur Park Limited (company number 03150726, registered in England and Wales; “NDP”, “we”, “us”, “our”), trading as ROARR! and PrimEvil, is the data controller responsible for this website and our services. This policy explains how we collect, use, store and protect personal information under the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 and the Data (Use and Access) Act 2025.

Norfolk Dinosaur Park Limited
Registered office: The Grove, Banham, Norwich, Norfolk, NR16 2HE

2. What Information We Collect

We may collect and process the following types of personal data:

  • Identity Data: first name, last name, title, date of birth and gender.
  • Contact Data: billing address, email address and telephone numbers.
  • Financial Data: bank or payment details, handled by our ticketing and payment partners.
  • Transaction Data: details of payments to and from you and services you have purchased.
  • Technical Data: IP address, browser type and version, time zone setting, operating system and platform.
  • Profile and Usage Data: purchases, interests, preferences, feedback, survey responses and how you use our website and services.
  • Marketing and Communications Data: your preferences in receiving marketing from us.
  • CCTV Footage: our premises are subject to CCTV coverage, captured for the purposes set out in this policy.
  • Request a portable copy of information you provided to us where the right to data portability applies.

We may also collect Aggregated Data, such as statistical or demographic data, which is not personal data as it does not reveal your identity.

Where you enable location services in the ROARR! Official Mobile App, we collect precise location and geofence entry/exit data on an opt-in basis to power in-park navigation and features. This is processed on the basis of your consent and can be withdrawn at any time by disabling location permissions in your device settings or within the App. The App also automatically collects device and technical information (operating system, device name, app version, IP address and similar) to keep the App secure and functioning correctly, and usage/analytics data via in-app analytics tools to help us improve it.

3. How We Use Your Information

We use your personal data to:

  • Process transactions, manage bookings made with our ticketing partner and respond to your enquiries (contractual necessity).
  • Send you service-related communications and important updates about your interactions with us.
  • Send marketing communications about our offers, events and promotions where you have given consent, which you can withdraw at any time.
  • Personalise content and communications where you have chosen to receive them.
  • Administer competitions, promotions and surveys you choose to enter.
  • Conduct market research and analyse use of our website to improve performance and user experience.

Where we rely on legitimate interests, we balance these against your rights and freedoms, and you can object to certain processing, including direct marketing, at any time. We may also process personal data where necessary to protect the vital interests of individuals, including children, or to comply with our legal and safeguarding obligations.

4. Cookies and Analytics

The ROARR! website does not currently use analytics or marketing cookies. Strictly necessary technologies may be used for secure hosting, session handling and form protection. See our Cookie Policy for the current list and how to control browser storage.

The site currently requests the Parkinsans typeface through the Google Fonts Web API. Google receives the IP address, requested URL and browser headers needed to deliver that font, but Google Fonts does not set or log cookies and Google states that it does not use this information for profiling or targeted advertising. See Google Fonts privacy information. If we introduce non-essential analytics or marketing technologies, we will ask for consent before they run and update this policy.

5. Data Sharing, Storage and Security

We may share personal data with trusted service providers acting on our behalf, including ticketing and payment partners, website hosting and security providers, and email or form-delivery services. We only share what is needed for the service and require providers acting for us to protect it. Booking and ticket purchases are completed on our booking partner’s platform, whose own privacy policy applies to the data collected during checkout.

We keep personal data only for as long as needed for the purpose described in this policy and to meet legal, tax, accounting, safety or dispute-resolution obligations. Where data is transferred outside the UK, we use an adequacy regulation or another safeguard recognised by UK data-protection law. You can ask for more information about those safeguards by emailing gdpr@roarr.co.uk. We use controlled access, secure payment providers and appropriate technical and organisational measures, with procedures to respond to data breaches.

Our premises use CCTV for crime detection and prevention, guest and crew safety, and monitoring of unmanned areas. Footage is stored securely and accessed only when necessary.

6. Your Rights

Depending on the circumstances and the lawful basis we use, UK data-protection law may give you the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate or incomplete information.
  • Request erasure of personal information where the legal conditions apply.
  • Object to or restrict processing in certain circumstances.
  • Withdraw consent at any time, where processing is based on consent.

To exercise any of these rights, contact us at gdpr@roarr.co.uk.

Important

We normally respond to a rights request within one month. We may extend that period by up to two further months if a request is complex or if you make several requests, and we will tell you if that happens. You can also complain to the Information Commissioner’s Office (ICO).

7. Marketing Preferences

If you choose to receive marketing emails from ROARR!, we store your details securely and use them only for that purpose. You can opt out at any time by clicking the unsubscribe link in any email, or by contacting marketing@roarr.co.uk. We will never sell or share your personal information with third parties for their own marketing purposes.

8. Third-Party Websites

Our website links to third-party websites, including our booking partner’s ticketing platform. We are not responsible for the privacy practices or content of those websites and encourage you to read their privacy policies before providing any personal data.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with a new “last updated” date. If you have any questions about this Privacy Policy or how we handle your information, please contact us:

Ready to have fun?