Introduction
At Goodenough Hotel, we are committed to protecting your personal information and being transparent about how we collect, manage, use, disclose, retain and safeguard your personal data in compliance with UK data protection law, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

This Privacy Policy (together with our Terms & Conditions, Cookie Policy and other policies referred to) explains how we collect and use information about you when you:
•    make a booking with us;
•    use our services;
•    visit or interact with our website; or
•    otherwise communicate with us.

 

1. Who We Are

Goodenough Hotel is a not-for-profit hotel operating within Goodenough Trading Ltd. The Trading Company is owned by Goodenough College, a registered charity in England and Wales. All personal data we collect and process is ultimately managed in compliance with the College’s wider data protection policies and legal obligations. Our contact details are:

The Goodenough Hotel
23 Mecklenburgh Square
London WC1N 2AD
Email: hotel.reception@goodneough.ac.uk
Tel: +44 (0)20 7837 8831

 

2. Information We Collect

We collect personal information that you voluntarily provide to us when you:
•    make a reservation or booking;
•    communicate with us by email, phone or in person;
•    sign up for newsletters, offers or marketing;
•    complete forms or surveys; or
•    interact with our website.

Examples of personal data we may collect include:
•    Identity & Contact Data: name, title, address, email, phone number, company name (if relevant);
•    Booking Information: reservation details, payment preferences (note: we do not store full payment card details);
•    Communications: correspondence between you and us, including feedback or enquiries; and
•    Marketing Preferences: whether you opt in to receive offers and updates.

We do not collect sensitive personal characteristics (e.g., racial or ethnic origin, religious beliefs or trade union membership) unless you choose to provide such information for a specific purpose (for example, accessibility requirements). Namespace examples based on similar subsidiary policies.

 

3. How We Collect Your Data

Your data may be collected:
•    directly from you when you book, register, subscribe or interact with us;
•    from third parties where you have authorised them to share your details with us (e.g., external booking platforms);
•    automatically through website cookies and analytics;
•    from our parent body, Goodenough College, where appropriate (e.g., if you are part of the College community and choose to stay with us).

 

4. Legal Basis for Processing

We rely on one or more of the following legal bases when processing your personal data:
•    Contractual necessity – to fulfil your booking and deliver services you have requested;
•    Legitimate interests – to manage and improve our services, communicate with you, ensure safety and security, or for administrative and legal purposes;
•    Consent – where you have expressly opted in (e.g., to receive marketing communications). Please note, you can withdraw consent at any time.

 

5. How We Use Your Information

We use your data for purposes including:
•    processing and managing bookings and enquiries;
•    communicating with you about your stay, services or enquiries;
•    providing information you request, including marketing (where you have opted in);
•    improving our services and customer experience;
•    complying with legal obligations or defence of legal claims; and
•    ensuring the safety and security of our guests and staff.

 

6. Marketing Communications

We will only send you marketing communications (email or otherwise) with your consent where required by law. You can opt out or change your preferences at any time by contacting us or using the unsubscribe facility in marketing emails.

 

7. Sharing Your Personal Information

We may share your personal data only in limited circumstances, with:
•    our parent organisation, Goodenough College, and its subsidiaries where relevant;
•    trusted third-party service providers (e.g., reservation systems, email platforms, payment processors) who process data on our behalf under contract;
•    law enforcement, regulators or legal advisors where required by law or to protect our rights.

We do not sell or swap personal data to external organisations for their own purposes. This aligns with the policies applied across the Goodenough estate.

 

8. Data Security

We implement appropriate technical and organisational measures to protect your data against unauthorised access, accidental loss or misuse. All personal data is stored securely in compliance with applicable UK law.

 

9. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes set out in this policy, for statutory or regulatory purposes and to meet legitimate business needs. Retention periods are influenced by contractual requirements, statutory obligations and Goodenough College’s data management practices.

 

10. Your Rights

Under UK GDPR you have rights including:
•    the right to access personal data we hold about you;
•    the right to ask for correction or deletion of data, where applicable;
•    the right to restrict or object to processing;
•    the right to data portability; and
•    the right to withdraw consent where processing is based on consent.

To exercise any of these rights, please contact us Dataprotection@goodenough.ac.uk. 

 

11. Cookies and Tracking

Our website uses cookies and similar tracking technologies to enhance user experience. Please see our separate Cookie Policy for details.

 

12. Changes to This Policy

We may update this Privacy Policy from time to time. Significant changes will be communicated to you by notice on our website or by other means where appropriate.

 

13. Contact Information

For questions, requests or complaints about this policy or how your data is handled, contact Dataprotection@goodenough.ac.uk. 

Goodenough College Data Management Policy
Contact Us