Privacy notice

Skip to section navigation

Visit the Broads and www.visitthebroads.co.uk are operating styles of Broads Authority, which is the Data Controller for the purpose of this web site.

Broads Authority is committed to protecting your privacy as a user of our website www.visitthebroads.co.uk and the confidentiality of any personal information that you may provide us with during your visit to the site. Broads Authority abides by UK Data Protection legislation including the EU General Data Protection Regulation.

Information is gathered automatically by the web server, through the use of cookies on the site, and also from your interaction through online requests for brochures as well as the submissions of online forms.

General information that is collected by the web server and which does not require any input on your part, apart from to log on to the site, is data such as: type of browser, operating system, IP address and domain name.

Cookies and You

A cookie is a text-only string that is entered into the memory of your browser by our web server. The use of cookies enables our website to store information on your machine so that it can be retrieved at a later date. This is done so that we can monitor the number of people visiting our site and to determine the country of origin of specific users. If you do not wish to accept new cookies or wish to disable cookies altogether, you can set your browser accordingly using its menu bar.

How we use cookies

Cookies are small files which are sent to your browser (for example Internet Explorer or Firefox) and stored on your computer's hard disk. They only identify your computer and not you personally.  The cookies we use are:

Google Analytics web analytics cookies: These cookies are used to help record your use of this website. They are used to collect statistics about site usage such as when you last visited the site. This information is then used to improve the user experience on our website. The Google Analytics cookies contain randomly generated IDs used to recognise your browser when you read a page. The cookies contain no personal information and are used only for web analytics. The Google Analytics cookies are called _utma, _utmb, _umtc and _utmz. They will appear in the list of cookies under broads-authority.gov.uk.  _utma tracks whether you have visited the website before. It is set to expire 2 years after your last visit. _utmbestablishes a ‘user session’ and tracks which pages you look at on this visit to the website.  It is set to expire 30 minutes after your last visit. _utmc is connected with _utmb and expires when you closed your browser, rather than just visit another website. _utmz tracks whether you have come to the website from a search engine, another website or have typed the web address directly into your browser. It is set to expire 6 months after it was last set.

We encourage you to accept the cookies our website uses as they help us to improve the user experience for you and many others.

To delete cookies or reject cookies If you do not want to receive cookies from this website, select cookie settings under the privacy settings in your browser options, then add our domain to the list of websites you do not want to accept cookies from.  Under settings you can also delete individual cookies or any cookies that your browser has stored. You can find more information on how to delete and control cookies at http://www.aboutcookies.org/Default.aspx?page=2

Provision of information to us via this web site

We will process any data we receive from you via this web page on the basis that you have taken steps to give your free and explicit consent to such processing taking place. You may withdraw consent to ongoing processing at any time (see below).

Any information that you provide online, should it be a request for brochures or an email query, is captured into our database. Primarily, the information provided is used to fulfil any queries and requests that have been sent to us, and also to keep you updated with news and promotions concerning Broads Authority (or its tourism partners), should you opt-in to receiving information from us. The gathered information also helps us to improve our website. This information is confidential and is not passed on to our selected partners without your explicit consent.

All our data processing is undertaken in the UK.

Giving and withdrawing consent to electronic mailing

If at any point you have given your explicit consent to receive mailing information from us, then such information will be processed on the basis of consent given by you for that specific purpose. You may withdraw consent at any time by contacting us or by simply unsubscribing using the “Unsubscribe” facility. Our contact details are at the foot of this policy.

Deletion of data

We routinely delete unnecessary data in accordance with our policies. You may request that we delete your data at any time. More information about how you can do this is set out below. We will delete data from contact made through this web site and held on our online systems after 3 years if it has not been deleted earlier.

Your rights in relation to data processing including rights to access, rectification, erasure and to object to processing

You have the right to see any personal information that we hold about you. Such requests are called subject access requests. If you would like to make a subject access request please contact the Authority’s Data Protection Officer at the address below.

We will respond to such requests within one month. There is no fee to make a request, but we may require proof of identity before responding.

You may ask us to rectify any personal information which is incomplete or inaccurate. You may also ask us to erase such data once processing is no longer necessary or if you object to processing or consider that we are processing it unlawfully. We will consider such requests and if we refuse, we will give reasons. However where we have processed your personal information on the basis of consent given by you we will always allow you to withdraw your consent easily and you may simply e-mail or call us and make the appropriate request. Our preferred method of communication is to our Data Protection Officer at the address below.

Data Security

All our e-mail system is protected by Fusemail to filter incoming and outgoing e-mails. External e-mails default to encryption where the receiving server is enabled. All our computers, servers and portable devices are encrypted using Bitlocker.

Complaints and contact details and legal status

We have a Data Protection Officer whose contact details are below:

Data Protection Officer, Broads Authority, Yare House, 62-64 Thorpe Road, Norwich Norfolk, NR1 1RY. Alternatively e-mail at dpo@broads-authority.gov.uk

You have the right to lodge a complaint with the supervisory authority in relation to data processing in the UK. This is the Information Commissioner’s Office at Wycliff House, Water Lane, Wilmslow Cheshire SK9 5AF. Telephone: 0303 123 1113.

Broads Authority is a body corporate established under UK law by the Norfolk and Suffolk Broads Acts 1988 and 2009. It undertakes tasks in the public interest as set out in those Acts of Parliament and most of our data processing is done on this lawful basis.

Third party sites

This privacy statement only applies to www.visitthebroads.co.uk Third party sites that are linked to from this site, such as Broads Tourism, are not covered by this statement. You should check the privacy policy for the site in question to determine how your information will be used when visiting that site.