Last updated: 12 June 2026
1. Introduction
Welcome to Pandora Inn (referred to in this policy as “we”, “us”, or “our”). We are committed to protecting your personal data and respecting your privacy.
This Privacy Policy explains how we collect, use, store, and share your personal data when you visit our website at https://www.pandorainn.com/(the “Website”), and tells you about your privacy rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Please read this policy carefully. If you have any questions, contact us using the details in Section 12.
2. Who We Are
The data controller responsible for your personal data is:
Pandora Inn
- Pandora Inn, Restronguet Creek, Mylor Bridge, Falmouth, Cornwall TR11 5ST
- Email: info@pandorainn.com
- Phone: 01326 372678
If you have any questions about how we handle your data, please contact us at the above address.
3. What Personal Data We Collect
3.1 Data you provide directly
We may collect the following information when you interact with our Website:
- Name and contact details (e.g. when making an enquiry or booking)
- Email address (e.g. when subscribing to a newsletter or leaving a comment)
- Comments and posts you leave on the Website
- Any other information you choose to provide in contact forms or messages
3.2 Data collected automatically
When you visit our Website, certain data may be collected automatically, including:
- Your IP address
- Browser type and version
- Operating system
- Pages visited and time spent on them
- Referring website (how you arrived at our site)
- Date and time of your visit
This data is collected through cookies and similar tracking technologies. See Section 7 for full details.
3.3 Data from third-party plugins and services
Our Website may use third-party plugins and integrations (such as social media embeds, maps, and payment processors). These third parties may independently collect data about you subject to their own privacy policies. We list the relevant third parties in Section 6.
4. How We Use Your Personal Data
We use your personal data for the following purposes:
- To respond to enquiries, bookings, or messages you send us
- To process table or event reservations
- To send you marketing communications where you have consented (e.g. our newsletter)
- To publish and moderate comments you leave on the Website
- To understand how visitors use our Website and improve it
- To monitor and analyse traffic and usage patterns
- To detect and prevent fraud or misuse
- To comply with our legal obligations
4.1 Legal basis for processing
We rely on the following legal bases under the UK GDPR to process your data:
- Consent — where you have opted in (e.g. newsletter sign-up, accepting non-essential cookies)
- Legitimate interests — for Website analytics, fraud prevention, and general site operation
- Contractual necessity — to fulfil a booking or reservation you have made
- Legal obligation — where we are required by law to process your data
5. Comments on Our Website
If you leave a comment on our Website, the following information may be collected:
- The name you provide
- Your email address
- Your website URL (if entered)
- The content of your comment
- Your IP address and browser user agent string (for spam detection)
Comments may be checked through an automated spam detection service (such as Akismet). An anonymised hash of your email address may be shared with the Gravatar service to check for a profile picture; see the Gravatar privacy policy for details.
Approved comments are visible publicly alongside the display name you provided. We reserve the right to moderate or remove comments at our discretion.
Your comment data may be retained indefinitely unless you request its deletion.
6. Third-Party Plugins and Services
Our Website may use third-party plugins and services. These may collect, process, or receive data about you independently. Below are examples of the categories of third parties we may use:
- Booking and reservation systems — to manage table or event bookings
- Payment processors — to handle transactions securely (we do not store card details)
- Social media platforms — for embedded feeds or share buttons (e.g. Facebook, Instagram)
- Mapping services — for displaying our location (e.g. Google Maps)
- Analytics providers — to measure and understand Website traffic (e.g. Google Analytics)
- Email marketing platforms — to manage newsletter subscriptions
- Spam protection services — to protect comment forms and enquiry forms
Each third party operates under its own privacy policy. We recommend you review the privacy policies of any third-party services you interact with on our Website. We will update this policy if we add new services that materially affect how your data is used.
We currently use: Google Analytics
7. Cookies and Tracking Technologies
7.1 What are cookies?
Cookies are small text files placed on your device when you visit a website. They are widely used to make websites work, improve performance, and provide information to website owners.
7.2 Cookies we use
We use the following categories of cookies:
- Essential cookies — necessary for the Website to function correctly (e.g. session management, security). These cannot be disabled.
- Performance / analytics cookies — help us understand how visitors use our Website (e.g. Google Analytics). These are only set with your consent.
- Functional cookies — remember your preferences (e.g. language, region). Set with your consent.
- Third-party / advertising cookies — set by third-party services embedded on our Website (e.g. social media plugins, embedded maps, booking widgets). These third parties may use cookies to track your browsing across multiple websites.
7.3 Third-party cookies
Third-party services integrated into our Website (see Section 6) may place their own cookies on your device. We do not control these cookies. Please refer to the relevant third-party privacy and cookie policies for more information.
7.4 Managing cookies
When you first visit our Website, you will be shown a cookie consent banner. You can accept or decline non-essential cookies at that time. You can also change your preferences at any time via [link to your cookie settings / privacy centre].
You can also control cookies through your browser settings. Most browsers allow you to refuse or delete cookies. Please note that disabling cookies may affect the functionality of our Website. For guidance, visit www.allaboutcookies.org.
8. Sharing Your Personal Data
We do not sell your personal data. We may share it with:
- Third-party service providers who help us operate our Website and business (e.g. hosting providers, IT support, booking platforms, analytics providers), bound by data processing agreements
- Our email marketing provider, where you have opted in to receive communications from us
- Law enforcement or regulatory authorities, where required by law or to protect legal rights
- A prospective buyer if we sell or transfer our business (you will be notified in advance)
We require all third parties to respect your data and to process it only in accordance with our instructions and applicable law.
9. International Data Transfers
Some of our third-party service providers are based outside the UK or European Economic Area (EEA). Where this is the case, we ensure appropriate safeguards are in place, such as:
- Standard contractual clauses approved by the UK Information Commissioner’s Office (ICO)
- Adequacy decisions, where applicable
If you would like more information about the specific safeguards in place for any transfer, please contact us.
10. How Long We Keep Your Data
We retain your personal data only for as long as necessary for the purposes set out in this policy, unless a longer retention period is required by law:
- Enquiry and contact form data
- Comments
- Analytics data
- Marketing consent records
When data is no longer required, it is securely deleted or anonymised.
11. Your Rights
Under UK GDPR, you have the following rights regarding your personal data:
- Right of access — to request a copy of the personal data we hold about you
- Right to rectification — to ask us to correct inaccurate or incomplete data
- Right to erasure — to ask us to delete your data in certain circumstances
- Right to restrict processing — to ask us to limit how we use your data
- Right to data portability — to receive your data in a structured, machine-readable format
- Right to object — to object to processing based on legitimate interests or for direct marketing
- Rights related to automated decision-making — we do not carry out solely automated decision-making that produces legal or similarly significant effects
To exercise any of these rights, please contact us using the details in Section 12. We will respond within one month. You will not ordinarily be charged for exercising your rights, although we may charge a reasonable fee for manifestly unfounded or repetitive requests.
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at www.ico.org.uk or by calling 0303 123 1113.
12. Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or how we handle your data, please contact us:
Pandora Inn
- Restronguet Creek, Mylor Bridge, Falmouth, Cornwall TR11 5ST
- Email: info@pandorainn.com
- Phone: 01326 372678
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we do, we will update the “Last updated” date at the top of this page.
We encourage you to review this policy periodically. For significant changes, we may notify you more prominently (for example, via a notice on our Website homepage or by email where appropriate).
Pandora Inn · Privacy Policy · 12 June 2026
