Privacy Policy

1. Data Controller

Blue Orchid Hotels Ltd ("we", "us", "our") is the data controller for personal data collected via our website and during your stay. We are registered with the Information Commissioner's Office (ICO) in the United Kingdom.

2. Data We Collect

• Identity data: name, title, date of birth, nationality
• Contact data: email address, postal address, telephone number
• Booking data: reservation details, room preferences, special requests
• Financial data: payment card details (processed securely via Stripe)
• Technical data: IP address, browser type, cookies
• Marketing data: preferences, communication history

3. How We Use Your Data

• To process and manage your reservation
• To send booking confirmation and pre-arrival information
• To provide customer support
• To personalise your stay and future bookings
• To comply with legal obligations
• With your consent: to send marketing communications about offers and events

4. Your Rights (GDPR)

Under GDPR, you have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your data ("right to be forgotten")
• Object to or restrict processing
• Data portability
• Withdraw consent at any time

To exercise any of these rights, contact: privacy@blueorchid.com

5. Data Retention

We retain booking and guest data for 7 years as required by UK law. Marketing preferences are retained until you withdraw consent. You may request earlier deletion of non-required data.

6. Cookies

We use essential, functional, and analytics cookies. You can manage your cookie preferences via our Cookie Policy page.

7. Contact

Data Protection Officer: privacy@blueorchid.com
You also have the right to lodge a complaint with the ICO at ico.org.uk.