SHYFT REAL ESTATE
Download Contact Contact Us

Data Controller Information

SHYFT REAL ESTATE LTD

20 Wenlock Rd, London N1 7GU

Phone: +44 161 681 4819

Registered in England and Wales

Privacy Policy

SHYFT REAL ESTATE Rentals is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and safeguard your personal information when you interact with our accommodation booking services.

We understand the importance of data protection and comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable privacy legislation. This policy was last updated on 22 July 2025.

Our Commitment: We will never sell, rent, or share your personal data with third parties for their marketing purposes without your explicit consent.

Information We Collect

Personal Information You Provide

  • Name, email address, phone number
  • Accommodation preferences and requirements
  • Booking dates and duration preferences
  • Payment information (processed securely through third-party providers)
  • Identity verification documents when required

Information Automatically Collected

  • IP address, browser type, and device information
  • Website usage patterns and page interactions
  • Cookies and similar tracking technologies
  • Location data (when permission is granted)

Legal Basis for Processing

  • Contract performance: Processing necessary for booking services
  • Legal obligation: Compliance with taxation and regulatory requirements
  • Legitimate interests: Improving services and customer support
  • Consent: Marketing communications and non-essential cookies

How We Use Your Information

Service Delivery

  • Process accommodation bookings and reservations
  • Provide customer support and assistance
  • Manage payment processing and invoicing
  • Verify identity and prevent fraud

Communication

  • Send booking confirmations and updates
  • Provide accommodation-related information
  • Share promotional offers (with consent)
  • Conduct customer satisfaction surveys

Website Improvement

  • Analyse website usage and performance
  • Personalise content and recommendations
  • Improve user experience and functionality
  • Test new features and services

Legal Compliance

  • Meet regulatory and tax obligations
  • Respond to legal requests and investigations
  • Maintain records for audit purposes
  • Protect against fraud and security threats

How We Protect Your Data

Technical Safeguards

SSL Encryption

All data transmitted is encrypted using industry-standard SSL/TLS protocols

Secure Storage

Personal data is stored on secure servers with restricted access

Access Controls

Multi-factor authentication and role-based access limitations

Operational Safeguards

Staff Training

Regular privacy and data protection training for all employees

Confidentiality Agreements

All staff and contractors bound by strict confidentiality terms

Regular Audits

Periodic security assessments and compliance reviews

Data Breach Notification

In the unlikely event of a data breach affecting your personal information, we will notify you and the relevant authorities within 72 hours, as required by UK GDPR.

Your Data Protection Rights

Right to Access

Request copies of the personal data we hold about you and information about how it's processed.

Right to Rectification

Request correction of inaccurate or incomplete personal data we hold about you.

Right to Erasure

Request deletion of your personal data when there's no compelling reason for continued processing.

Right to Portability

Receive your personal data in a structured, commonly used format or have it transferred to another controller.

Right to Object

Object to processing based on legitimate interests, including direct marketing communications.

Right to Restrict Processing

Request limitation of processing in certain circumstances while maintaining the storage of your data.

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information provided above. We will respond to your request within one month of receipt.

No fees for most requests Identity verification required 30-day response time

Your Rights and Opt-Out Instructions

You are not required to provide any personal information when using this website. If you prefer not to share your data, you may:

  • Avoid filling out contact forms, account registrations, or any data-submitting features
  • Disable cookies through your browser settings (see our Cookie Policy for more details)
  • Contact us directly to request the deletion of any previously shared personal data

We respect your privacy choices. If you would like us to delete your data, please reach out to us at the contact details provided on our Contact page. We will process your request promptly.

Important: Some data may need to be retained for legal or regulatory compliance, even after a deletion request. We will inform you of any such limitations when processing your request.

Data Retention Periods

Booking and Customer Data

Personal details, booking history, payment records

7 years

Marketing Communications

Email subscriptions, preferences, campaign data

Until withdrawal

Website Analytics

Usage patterns, cookies, session data

26 months

Security Logs

Access logs, security incident records

12 months