What is the purpose of processing my data?
Data you submit to this web site or any other information that you choose to give to us that is related to your booking or potential booking will be used for the purpose of processing bookings and carrying out communication with you in respect of the bookings or potential bookings and in respect of other services offered by us related to the bookings.
If you have an account with Google, Facebook and Twitter we may use your email address for customer match purposes . The reason for customer match is to provide you with a better online experience. Customer match only affects you if you are logged onto your account with Google, Facebook and Twitter.
What security do we use to protect your information?
All transmission of data between you and us via the website is encrypted to ensure that the information is reasonably protected against unauthorised interception. We take reasonable procedural and technical measures to prevent the loss or misuse of your personal data. We keep your personal information on our servers that are secured with password, firewall and further technical measures. You are responsible for keeping your log in password secure, we will not see your password nor will we ask you directly for your password over the phone, via chat or email.
How long do you retain my booking data and can I delete it?
We will not retain your information for longer than is necessary for our business purposes or for legal requirements. If you wish to see the information we retain about you, please contact us to make a request. Before responding to your request we may ask you to verify your identity, usually we accept a certified photocopy of your passport and an original copy of a utility bill showing your current address. With all requests we will endeavour to respond as soon as possible.
Will you publish any personal data about me?
Should you submit personal data for publication on our website such as reviews, photographs or other, we will publish it and use the data in accordance with the licence you grant us.
How do you handle my payment card details?
Card payments on this website are securely processed by SagePay. You can review the SagePay privacy policy at www.SagePay.com.
Who is the data controller and the data protection officer at To Tuscany?
The data controller for this website is To Tuscany Ltd.
Email Newsletter
Am I automatically added to your email newsletter sign up when I create an account?
No, you can only be added to the email newsletter if you opt in. Once opted in you are able to remove your email from the newsletter email or by request via contact us. The purpose of the email newsletter is to notify you about our new services, changes to the website and offers we think you'll find valuable.
Do you disclose information you collect to 3rd parties?
If you have an account with Google, Facebook and Twitter we may use your email address for customer match purposes . The reason for customer match is to provide you with a better online experience. Customer match only affects you if you are logged onto your account with Google, Facebook and Twitter.
We may disclose information about you to our employees, officers, agents, suppliers or subcontractors where reasonably necessary. We may disclose your personal information if required by law.
How can I amend my personal information, or ask you to remove it or cease using it for direct marketing purposes?
The instructions to do this are clearly outlined in every piece of direct marketing material email by us. Contact us for more information.
Cookie Information
We uses cookies on this website to give you a better experience while on the this site. On your first visit to this website you will receive a request to allow or disallow the use of cookies on the browser of whichever computer/device you are using. By allowing cookies you make our adverts and communication more relevant to you and help us to improve our website.
We use tracking software to monitor visits to this website in order to understand how the website is used. The software we use is supplied by Google Analytics which uses cookies to track online visitor behaviour, it will save a cookie to your computer to track your behaviour on our website. The software does not collect, save or retain any of your personal data. Click here for Google’s privacy policy.
Cookies enable our website to ‘remember’ you, either for the duration of your visit (using a ‘session cookie’) or for repeat visits (using a ‘persistent cookie’).
Cookies may be set by our website (‘first party cookies’) or by other websites running content on the page you are viewing such as a YouTube video (‘third party cookies’).
Cookies do lots of different jobs. Most importantly, they let you navigate between pages efficiently, storing your preferences, and generally improving your experience of a website. They make the interaction between you and the website faster and easier.
We use cookies to enable us to target advertising or marketing messages, based, for example, on your location and/or browsing habits.
If we did not use cookies, we would think you are a new visitor every time you move to a new page on our website. For example, if you enter your login details then move to another page, the website won’t recognise you and it won’t be able to keep you logged in.
Tell me more…
What is in a cookie?
A cookie is a simple text file that is stored on your computer or mobile device by a website’s server, which only that server can retrieve or read. Each cookie is unique to your web browser. It will contain some anonymous information, such as a unique identifier and the site name, and some digits and numbers. A cookie allows a website to remember things, such as what’s in your shopping basket.
What is a third-party cookie?
A website might use a third-party analytics company, which will set its own cookie to perform this service, such as Google Analytics. It might also contain content embedded from, for example, YouTube or Facebook, and these sites may set their own cookies. A website might use a third party to deliver targeted advertising on its website, which might set cookies, too. These third parties might have the capability to track your browsing across different sites.
What’s the difference between a session and a persistent cookie?
Session cookies are stored only temporarily during a browsing session and are deleted from the user’s device when the browser is closed. Persistent cookies are saved on your computer for a fixed period (usually a year or longer) and are not deleted when the browser is closed. Persistent cookies are used where the site needs to know who you are for more than one browsing session. For example, this type of cookie is used to store your preferences, so that they are remembered for your next visit.
What if I don’t want cookies to be set?
Some people feel it is a bit intrusive for a website to store information on their computer or mobile device, particularly when this information is stored and used by a third party without their knowledge. Although this activity is generally harmless, you may not, for example, want to see advertising that has been targeted at your interests. If you prefer, it is possible to delete cookies that have already been set from your browser settings. But be aware that you might lose some functions of the website. Find out more here.
External links
External links on our website are selected as being of potential use or convenience to our website visitors. However, To Tuscany is not responsible for the content of any of the external websites. Furthermore, the inclusion of a link from the To Tuscany website should not be understood to be an endorsement by us of that website, its owners or its products and services. We can accept no liability in respect of the content or of your decision to use that Company's services.
If we decide to change our privacy or cookies policy, we will post those changes on this page so that you are always aware of what information we collect, how we use it and in what circumstances we disclose it.
Your Personal Email Account Security
Email security is essential for anyone using the To Tuscany website or any e commerce website, we recommend that you consider our 5 suggestions to keep your personal email account safe.
1. Use Two-Factor authentication
Using two-factor authentication (2FA) is a simple but powerful security measure. It ensures that even if someone has your password they still need to for example answer a secret question use a fingerprint or methods such as SMS to access your email. Be sure to choose an email provider with safe 2FA.
2. Take password security seriously
We recommend using a password manager like 1Password https://1password.com, which helps you create a different, strong password for each of your online accounts. Your passwords should be at least 16 characters using a mix of numbers, letters, and punctuation. Avoid writing down your passwords, and never share them with anyone. Never re-use passwords between different accounts.
3. Use encrypted email
We suggest using an encrypted email provider, specifically one with end-to-end encryption and zero access encryption.
4. Protect yourself from phishing attacks
Phishing is a common way hackers can gain access to your devices and accounts. Criminals send a legitimate-looking email asking you to click a link or download an attachment. The link may ask you to enter your password (i.e. send your credentials to the hacker) or automatically download malicious software. We suggest you pay close attention to tell-tale signs of phishing, like unofficial or misspelled email addresses. Never download or click on anything from someone you don’t know.
5. Protect your devices
Often the most effective hacks are also low-tech. Device theft is one. Keylogging software and other types of spyware are also concerns. Be aware of your physical security when traveling and in public, and always set a password for your device.
