PRIVACY POLICY

Norfolk Dinosaur Park Ltd Also Trading As ROARR! and PrimEvil.

Privacy Policy January 2024.

NORFOLK DINOSAUR PARK LTD (NDP) ALSO TRADING AS ROARR! AND PRIMEVIL ARE COMMITTED TO PROTECTING YOUR PRIVACY AND SECURITY

NDP does not sell, trade or rent your personal information to others. Whenever you provide personal information we will treat that information in accordance with current Data Protection legislation.

If NDP holds details about you on our database, it is in order to process your enquiry or transaction and, where requested, so that you can be kept up to date with relevant details about the Park.

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

We may collect, use and store different kinds of personal data about you which we have grouped together as follows:

Identity Data includes first name, last name, title, date of birth and gender.

Contact Data includes billing address, email address and telephone numbers.

Financial Data includes bank or other payment details.

Transaction Data includes details about payments to and from you and other details of services you have purchased from us.

Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.

Profile Data includes purchases or orders made by you, your interests, preferences, feedback and survey responses.

Usage Data includes information about how you use our website, products and services.

Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.

We also collect Aggregated Data such as statistical or demographic data regarding our website users, social media contacts and those who use our WiFi and we may access and use such data for any purpose. Aggregated Data could be derived from your personal data but is not considered personal data in law as this data will not directly or indirectly reveal your identity. For example, it may calculate the percentage of users accessing a specific website feature.

We will not share your information to third parties except where it’s part of providing a service to you – for example; email communications (if opted in), order processing, and conducting customer research to understand your preferences so that we may tailor our products, services and marketing for you.

In broad terms, we use your data for the following purposes:

  • to provide products and information linked with your purchases and products you have expressed an interest in.
  • to enable us to administer any competitions or offers/promotions which you have entered.
  • for record keeping purposes.
  • to verify your identity.
  • to carry out market research to improve the products and services we offer.
  • to create a profile for you so that we can understand and respect your preferences.
  • to personalise any communications that we send you.
  • to personalise any marketing communications that you consented to receive from us.

When you sign up with us for an online account, register to receive marketing communications from us, enter one of our competitions, fill in one of our forms (whether online or offline) or otherwise expressly provide us with your personal information, we collect and store personal information that you provide to us and use it to personalise and improve your experience on, provide products and services you request from us, provide personalised marketing and carry out market research.

When you register for an Annual Pass with us, you will provide us with your contact information and personal details relevant to the category of pass, we will also take and hold, as a condition of the pass, a photograph held electronically to prevent fraudulent use.

When you interact with our website, social media and free guest Wi-Fi, we collect the following information about you:

  • how you have reached the relevant platform.
  • your browser type, versions and plug-ins, and your operating system.
  • your journey through our platform, including which links you click on and any searches you made, how long you stayed on a page, and other page interaction information.
  • information collected in any forms you complete.

We also record your town, county and country of location from the IP address you have used to access our platform. This is primarily to help us better understand how and where our visitors use these platforms to enable us to create better content and more relevant communications.

We use advertising to show our banner advertisements on various websites as well as advertisements on search engine results pages. This drives traffic to our website, but also enables us to show specific advertisements to users who have visited our website. You can manage your preferences of advertisement personalisation through Google services and customise your profile using the Ads Preference Centre. Additionally, information about advert preferences on Facebook can be found HERE.

We want you to be the first to know about news, offers and events of ROARR! If you haven’t already signed up to receive these please visit the homepage of our website and follow the link to sign up. You can unsubscribe by writing to us at GuestServices@Roarr.co.uk.

Please note, if you don’t choose to receive this information, we will be unable to keep you informed of new services, products, events or special offers that may interest you and our ability to inform you of any updates to services or products we offer may be affected.

Disclosure of your information

In order to provide our products and services to you or to fulfil contractual arrangements that we have with you, we may need to appoint other organisations to carry out some of the data processing activities on our behalf. These may include, for example, payment processing organisations, delivery organisations and mailing houses. Any third parties who are provided with personal data in order to carry out such processing activities are under a contractual obligation to process such data in accordance with standards that are at least equivalent to our own data protection policies and procedures, imposing confidentiality obligations and requiring appropriate security measures.

Cookies

“Cookies” are small pieces of information stored by your web browser to your computer, which enables the server to collect information about how you navigate the ROARR! website.

You can find out more about the way cookies work HERE.

Cookies are only used on this site to hold data from one page to another. They are not used to store personal information. Most browsers allow you to turn off the cookie function. If you want to know how to do this, please look at the help menu on your browser.

Purposes for which we will use your personal data

We have set out below, in a table format, a description of all the ways we plan to use your personal data, and which of the legal bases we rely on to do so. We have also identified what our legitimate interests are where appropriate.

Note that we may process your personal data for more than one lawful ground depending on the specific purpose for which we are using your data. Please contact us if you need details about the specific legal ground we are relying on to process your personal data where more than one ground has been set out in the table below.

Purpose/Activity Type of data Lawful basis for processing including basis of legitimate interest
To register you as a new customer

(a) Identity

(b) Contact

Performance of a contract with you

To process and deliver your order including:

(a) Manage payments, fees and charges

(b) Collect and recover money owed to us

(a) Identity

(b) Contact

(c) Financial

(d) Transaction

(a) Performance of a contract with you

(b) Necessary for our legitimate interests (to recover debts due to us)

To manage our relationship with you which will include:

(a) Notifying you about changes to our terms or Privacy Policy

(a) Identity

(b) Contact

(c) Profile

(a) Performance of a contract with you

(b) Necessary to comply with a legal obligation

(c) Necessary for our legitimate interests (to keep our records updated and to study how customers use our products/services)

To administer and protect our business

(a) Identity

(b) Contact

(a) Necessary for our legitimate interests (for running our business, provision of administration services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise)

(b) Necessary to comply with a legal obligation

To enable you to partake in a prize draw, competition or complete a survey

(a) Identity

(b) Contact

(c) Profile

(d) Usage

(e) Marketing and Communications

(a) Performance of a contract with you

(b) Necessary for our legitimate interests (to study how customers use our products/services, to develop them and grow our business)

To deliver relevant website content and advertisements to you and measure or understand the effectiveness of the advertising we serve to you

(a) Identity

(b) Contact

(c) Profile

(d) Usage

(e) Marketing and Communications

(f) Technical

Necessary for our legitimate interests (to study how customers use our products/services, to develop them, to grow our business and to inform our marketing strategy)
To use data analytics to improve our website, products/services, marketing, customer relationships and experiences

(a) Technical

(b) Usage

Necessary for our legitimate interests (to define types of customers for our products and services, to keep our website updated and relevant, to develop our business and to inform our marketing strategy)
To make suggestions and recommendations to you about goods or services that may be of interest to you

(a) Identity

(b) Contact

(c) Technical

(d) Usage

(e) Profile

(f) Marketing and Communications

Necessary for our legitimate interests (to develop our products/services and grow our business)

Security of information

We take the security of your personal information seriously. When you submit your credit or debit card details to us, we use a secure payment gateway with encryption technology to guard your information. In addition, we have security procedures in place to protect any paper-based systems and computerised databases from loss and misuse, and only allow access to them when it is absolutely necessary to do so and have procedures for what to do in the unlikely event of a data security breach.

Access to Registered Users information

We will access the information recorded through the use of your registration to help us improve our service to you and to make our communications more relevant.

If you selected such preferences, we will use your information to send you offers and news about ROARR! Your information will not be passed to any third parties. We may contact you by post, email or telephone.

Other websites

Our website may contain links to other websites which are outside our control and are not covered by this Privacy Policy. If you access other sites using the links provided, the operators of these sites may collect information from you which will be used by them in accordance with their privacy policy, which may differ from ours.

Close Circuit Television (CCTV)

We use CCTV for the purposes of crime prevention as well as crew and guest safety. All images are controlled by the data controller solely for these purposes. For further information, contact the data controller.

Access rights

You have a right to access the personal data that is held about you. To obtain a copy of the personal information ROARR! holds about you, please write to us at the following address: Kevin Ward, Data Controller, NDP Ltd, The Grove, Kenninghall Road, Banham, Norfolk, NR16 2HE. Any such request will also necessitate proof of identity being provided.

You may correct or update your personal information at any time by emailing us at GuestServices@Roarr.co.uk.

Please include your name, address, date of birth and email address. This helps us to ensure that we accept amendments from the correct person.

You may also request for your personal information to be removed from our database at any time. Details will only remain to be held if relevant to fulfil a product purchased or service provided.

We will securely retain your information for as long as is reasonably necessary and in accordance with applicable law. If you wish to submit a request that your data be deleted, please write to us at the above address.

If you have subscribed to receive marketing communications, you can unsubscribe at any time.

Data retention

We only keep your personal data for legitimate, explicit and specific purposes to enable us to fulfil our contract with you, to provide services, where required by law or, to protect legal rights.

Changes to this Privacy Policy

We aim to meet high standards and so our policies and procedures are constantly under review. From time to time, we may change this privacy policy. Accordingly, we recommend that you check this page periodically in order to review the latest version.

At ROARR! Safeguarding is important to us

To report a concern, please email guestservices@roarr.co.uk and we will respond as soon as possible. If the matter is urgent, please call our Guest Services team on 01603 876310 who will refer the Safeguarding concern immediately to our Designated Safeguarding Officers who will decide on the appropriate course of action. If you are concerned that a criminal offence is being or has been committed, please contact the police in the first instance.

Thank you.