privacy policy

Who are we?

Rainbows Sensory Space is the data controller. This means it decides how your personal data is processed and for what purposes.

Your personal data – what is it?

Personal data relates to an individual who can be identified by data. Identification can be by the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession. The processing of personal data is governed by the General Data Protection Regulation (GDPR). As of 25th May 2018, new regulations come into force which govern how your personal data can be collected, stored and handled. As a business which operates online, collection of some data is essential to operation of our business. This policy details how your data is handled, stored and deleted. GDPR requires that you positively confirm that you are willing for your data to be shared with Rainbows Sensory Space Ltd for the purposes of delivering you the services you request. No data is collected by Rainbows Sensory Space Ltd unless you book a session or send us a message through our “Contact Us” facility. By taking one of these actions you are consenting to the information you provide being shared with Rainbows Sensory Space Ltd. Data you share including your name, address, email address, telephone number, allergy information and any medical information entered by you is retained only as necessary for us to provide the service to you that you have requested. All data is retained on a secure server by our webhost, which is subject to regular testing to ensure it remains secure. When paying online your card data is classed as sensitive data. To ensure the upmost security we handle all payments “off-site”, that is you are re-directed to a secure hosted payment system provided by Bookwhen. Rainbows Sensory Space Ltd receives no confidential information relating to your card and your details are secure. You have a right to request your personal data is deleted from our systems at any time. You may do this by emailing hello@rainbows-sensoryspace.com

How do we process your personal data?

Rainbows Sensory Space complies with its obligations under GDPR by keeping personal data up to date; by storing and destroying it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data. We use your personal data for the following purposes: –

  • To operate the Rainbows Sensory Space website and deliver the services that individuals have requested
  • To inform individuals of news, events, activities or services running at Rainbows Sensory Space
  • In case of short notice cancelations and session availability we will hold data such as mobile phone numbers in order to telephone parent/carers
  • To contact individuals via surveys to conduct research about their opinions of current services or potential new services that may be offered
  • To manage our employees and volunteers
  • Safeguarding and promoting the welfare of children, young people and vulnerable adults
  • To maintain our own accounts and records
  • Administering finance (e.g. fees etc.)
  • Monitoring equal opportunities

Sharing your personal data

Your personal data will be treated as strictly confidential. We will only share your data with third parties outside of Rainbows Sensory Space with your consent. We will only share your information if;

  • You ask us to
  • The law requires us to
  • In order to comply with our policies so your children/adults can enjoy an activity safely

How long do we keep your personal data?

We will keep your personal data for no longer than reasonably necessary and in line with our legal and contractual obligations i.e. in case of legal claims, safeguarding etc. Rainbows Sensory Space has a retention schedule setting out the length of time that data is kept.

Your rights and your personal data

Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data: –

  • The right to request a copy of your personal data which Rainbows Sensory Space holds about you
  • The right to request that Rainbows Sensory Space corrects any personal data if it is found to be inaccurate or out of date
  • The right to request your personal data is erased where it is no longer necessary for Rainbows Sensory Space to retain such data
  • The right to request that the data controller provide the data subject with his/her personal data and where possible, to transmit that data directly to another data controller
  • The right to object to the processing of personal data
  • The right to lodge a complaint

Further processing

If we wish to use your personal data for a new purpose, not covered by this Data Protection Notice, then we will provide you with a new notice explaining this new use prior to commencing the processing and setting out the relevant purposes and processing conditions. Where and wherever necessary, we will seek your prior consent to the new processing.

Privacy and cookies

Cookies add functionality to our website and are required for certain functions to work. The following functions require the use of cookies on our website:

  • Google Analytics – this collects anonymous usage data that helps us monitor popular pages, traffic sources and other web statistics
  • Email newsletter tracking – it’s important to us to record interest in our any email newsletters
  • Remembering personal information you enter into forms, so that you won’t have to fill it in twice

Contact details

To exercise all relevant rights, queries of complaints in the first instance, please contact: Fiona Pattison, Director and manager Rainbows Sensory Space E-mail: hello@rainbows-sensoryspace.com