We gather certain types of information about our users, therefore we feel you should fully understand the terms and conditions surrounding the capture and use of that information. We seek at all times to comply with the General Data Protection Regulation (GDPR). Please find our privacy policy below.
Please read the policy to understand how we will deal with your personal data after it has been collected by us through your use of one of our platforms. Those platforms include our website and any other channels as they evolve.
Compliance with legislation
We operate and are registered in accordance with all applicable data protection legislation in England and Wales.
Collection of data
We may collect data about you, some of which could be personal, in a variety of ways, including:
Use of personal data
The information we collect may include but is not limited to, details such as your name, your address, your e-mail address, your age, your gender, date of birth, phone number, and your credit or debit card details.
We will not sell, rent or trade your personal information to third parties for marketing purposes without your express consent.
Unless we have your express consent we will only disclose personal data to (i) other companies within our group, (ii) our professional advisers who are bound by confidentiality codes, and (iii) when we are legally obliged to disclose your data.
By becoming a registered user you consent to receive from us by e-mail any information or news which we may think may be of interest to you.
Online Ticket Sales / Shop Sales
Any information given to us by you will not be used in any way other than to process your order. Card details are not retained and we will never pass your personal information on to any third party.
Payment Card Security
Payment Card details provided to our payment provider via this website are transmitted, stored and retrieved securely. Our shopping cart system uses a Secure Sockets Layer (SSL) connection to ensure that your personal data is secure during transmission between your computer and our payment provider.
Cookies
A cookie is a tiny little file, which often includes a unique anonymous identifier, that is stored on your computer by a website.
We use cookies for a few different purposes:
Security & stability cookies are necessary for the smooth running of our website and don’t enable us to track you with any personally identifiable information. These will always be stored on your computer when you visit our website unless cookies are disabled in your browser.
Analytics cookies help us to understand what types of people are using our website and which parts of the website people like the most. Analytics cookies will only be stored on your computer if you opt-in via the consent box shown on the website. If you change your mind you can revoke this consent at any time in the “cookie settings” link at the bottom right of the screen.
Manage cookie settingsData processing by third parties
We use several different third-party services for security, analytics and communication on our website.
Google Analytics is used for user analytics, where cookie consent is provided. Google Analytics 4 (GA4) does not transmit or store personally identifiable information as defined under GDPR.
Cloudflare is used for security & as a content-delivery-network partner for the website. They store certain cookies that are necessary for our website’s smooth operation. Cloudflare may store and transmit your computer’s public IP address for the purposes of preventing and mitigating large-scale attacks against our website and the wider Cloudflare network. They do not store or transmit any other personally identifiable information as defined under GDPR.
Facebook is used for the website’s chat function. By opening the chat function displayed in the bottom right of the website you are consenting to Facebook placing additional third-party tracking cookies on your computer as well as transmitting your communications and personally identifiable information to the railway if you are logged into your Facebook account.
These services may store information about your computer outside of the UK in the United States. The United States is deemed as a “third country” under GDPR, as it is not governed by GDPR. Data transfer to a third country may only take place where it is deemed to have adequate data protections in place.
Each third-party partner holds data either in line with GDPR provisions or under the provisions of the former Privacy Shield agreement pending a new data-sharing agreement.
Links/Third Parties
Please note that this privacy policy only addresses our activities from our servers. Other sites (including those our website links to and third party sites or services) may have their own privacy policies and practices, which we do not control.
While we strive to protect your personal information, our network of sites contain links to partners, advertisers and third party Internet sites and services who may collect data in connection with sweepstakes, promotions, e-commerce, etc. They each have separate privacy and data collection practices, independent of our policy and therefore we have no control over these independent policies or actions and is not responsible for their privacy practices or the content of such websites.
Consent
By disclosing your personal information to us using this website, you consent to the collection, storage and processing of your personal information by us in the manner set out in this Privacy Policy.
Amendments to this Policy
We may amend this policy from time to time, however, we assure you that we only use your data and for our legitimate business reasons and in order to give you a better user experience. If we make any substantial changes in the way we use your personal information we will notify you by posting a prominent announcement on our homepage.
Contacting Us
If you have any questions or concerns about the information we hold about you, you can Contact Us
