Privacy Policy

Opul Privacy Policy

1.Introduction 

Opul Hospitality Limited (company registration number 137125C) (“we,” “us,” or “our”) is a company based on the Isle of Man providing events, merchandise, travel and hospitality services to clients. Our registered office address is 2nd floor, Opul Centre, Castle Street, Douglas, Isle and Man, IM1 2EZ.  

Opul Hospitality Limited is the data controller for the personal data we collect. We are registered with the Isle of Man Information Commissioner’s Office and our registration number is ICO R004423. We are responsible for deciding how we process personal information about you and this Privacy Notice sets out how we will collect, use, and protect your personal data.  

Any changes we may make to this Privacy Notice will be updated on our website and, where appropriate, notified to you in writing. 

We have appointed a Data Protection Manager who is responsible for overseeing questions in relation to this Privacy Notice and our controlling and processing of data. Should you have any queries relating to this notice, please contact our Data Protection Manager using the address at the start of this privacy policy, so that they can do their very best to sort out the problem, or email us at: watches@opul.solutions.  

2. Data we collect

We will only ask for information that we need. We collect personal data to be able to provide you with the product you purchased from us.  

We collect the following types of personal data: 

• Identity Data including title, first name, last name. 

• Contact Data including home address, personal telephone number, personal e-mail address. 

• Financial Data includes payment card details. 

• Other Personal Data includes personal data you otherwise voluntarily provide, for example when corresponding in writing or during phone conversations. 

The personal data provided by you is mandatory in order for us to take, process and deliver your order, and provide after sales support. Failure to provide mandatory personal data may affect our ability to fulfil your order.   

We take the security of your personal data very seriously. We have administrative, physical and technical safeguards in place to protect personal data against unlawful or unauthorised processing, or accidental loss or damage. We will ensure, where personal data are processed that: 

• The processing is recorded, and the records are safely and permanently erased 6 years after you made your order.  

• Where we no longer require personal data for the purpose for which it was collected, we will delete it. 

• Where records are destroyed we will ensure that they are safely and permanently disposed of.  

3. How we use your data and the lawful basis

By law, we are required to explain what information we collect from you and how and why we use your personal information (the “processing activity”). We are also required to have a “lawful basis” on which to process your personal information. 

The personal data we collect from you when you make your order on the website is used to record your order on our system and deliver the product you ordered to you. The type of data we collect for this purpose is identity, contact and financial. Our lawful basis for processing your personal data for this purpose is performance of a contract with you.  

We do not use automated decision making in processing your personal data.  

4. Who we share your personal data with

Your personal data may be shared with the entities that enable us to take your order and deliver the product to you.  

Third parties include: 

• Organisations who provide us with IT systems to log and process your order. 

• Organisations who provide us with administration and processing services to process your order and handle after sales queries. 

• Organisations who provide payment services. 

• Organisations that make and deliver the product to you. 

5. Data security

We have policies, rules and technical and organisational measures in place to protect your personal data from unauthorised or unlawful processing and against accidental loss, destruction or damage. 

We also have procedures in place to deal with any data security breach. We will notify you and any applicable regulator of a data security breach where we are legally required to do so. 

Communications between you and us may route through a number of countries before being delivered, may be intercepted by third parties and may not always reach the intended recipient – this is the nature of the World Wide Web/Internet. We cannot accept responsibility for any such unauthorised access or loss of personal information that is beyond our control. 

6. International transfers of Personal Data

Your personal data may be shared with organisations based outside of the UK. These countries may not have the same data protection laws as the country in which you initially provided the information and may not provide the same level of protection. 

If we transfer personal data outside of the UK, we may rely on a decision from the UK Secretary of State determining that the recipient country provides an adequate level of protection. Alternatively, we rely on appropriate safeguards in respect of transfers of personal data to a country outside of the UK, for example, by agreeing standard contractual clauses adopted by the Isle and Man Information Commissioner’s Office.  

7. Your rights

Data protection laws provide you, as an individual, rights to: 

• access – you can request access to your personal information (a data subject access request), so you can check what data we hold about you and are using it in accordance with the law. 

• rectification – you can ask us to correct personal information that we hold about you. 

• erasure – you can ask us to delete your personal data where there is no good reason for us to hold this data. You can also ask us to delete or remove your personal information where you have exercised your right to object to processing. 

• restriction of processing – you can ask us to suspend the processing of personal information about you, for example if you want us to establish its accuracy or the reason for processing it. 

• data portability – you can ask for a copy of the data we hold about you, in an accessible format and the right to transfer it, or to require us to transfer it directly, to another controller. 

• object to processing – you can object to the processing of your personal information and there is something about your particular situation which makes you want to object to processing on this ground. 

• not to be subject to automated decisions – you have the right to object to any automated decision making, including profiling, where the decision has a legal or significant impact on you. 

• withdraw consent – you have the right to withdraw your consent where we are relying on it to use your personal data; and 

• objection to marketing – you have the right to withdraw your consent to receive digital marketing material. 

No fee is required to claim any of these rights. However, we may charge a reasonable fee or refuse to comply if your request for access is considered to be unfounded or excessive.  If you wish to exercise any of your rights, please contact us using the details set out below. 

8. Complaints, requests to exercise your rights and our contact details

If you have any queries or concerns regarding our processing of your personal data, would like to exercise any of your rights or would otherwise like to make a complaint, please contact our Data Protection Manager in the first instance at watches@opul.solutions.  

You have the right to make a complaint at any time to the Isle of Man Information Commissioner’s Office. Their contact details are: 

Telephone: +44 1624 693260
Email: ask@inforights.im  

Website: https://www.inforights.im/  

However, please contact us in the first instance if you have any issue that you wish to discuss.