Privacy Policy

Last Updated: 23rd September 2025

St Mary’s Marylebone respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you visit our website www.stmarysvenue.com, make a booking, or interact with us online.

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Information We Collect

We may collect and process the following categories of personal data:

  • Identity Data – name, title, date of birth (if applicable)

  • Contact Data – email address, phone number, postal address

  • Financial Data – payment details (processed securely by third-party payment providers)

  • Event Data – booking details, event preferences, communications with us

  • Technical Data – IP address, browser type, device information, cookies (see Section 6)

2. Lawful Basis for Processing

We process your personal data under one or more of the following lawful bases:

  • Contract – to perform our contract with you (e.g., managing your booking)

  • Consent – where you have opted in to receive marketing communications

  • Legal Obligation – to comply with applicable laws and regulations

  • Legitimate Interests – to improve our services, ensure security, and manage our business (without overriding your rights)

3. How We Use Your Information

We may use your personal data to:

  • Process bookings, reservations, and payments

  • Communicate with you about your event or inquiry

  • Send marketing communications where you have consented

  • Improve our website, products, and services

  • Comply with legal and regulatory requirements

4. Sharing Your Information

We will not sell your data. We may share personal data with:

  • Service providers (IT systems, payment processors, email marketing platforms)

  • Professional advisers (lawyers, accountants, auditors)

  • Authorities where legally required (e.g., law enforcement)

  • Event partners or suppliers only if necessary for your booking and with your consent

All third parties are required to respect the security of your personal data and act in compliance with data protection laws.

5. International Transfers

Your personal data is primarily stored and processed in the UK. If data is transferred outside the UK, we will ensure appropriate safeguards are in place (such as Standard Contractual Clauses).

6. Cookies and Tracking

We use cookies and similar technologies to enhance user experience, analyse traffic, and remember preferences. You can manage cookies via your browser settings. For more details, please see our Cookie Policy.

7. Data Retention

We will keep your personal data only for as long as necessary to:

  • Fulfil the purposes for which it was collected

  • Comply with legal, tax, and accounting obligations

  • Resolve disputes and enforce contracts

Typically, booking-related data is retained for [X years – e.g., 6 years] in line with UK tax and accounting rules.

8. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data (a “data subject access request”)

  • Request correction of inaccurate or incomplete data

  • Request erasure of your personal data (the “right to be forgotten”)

  • Restrict processing of your data in certain circumstances

  • Object to processing based on legitimate interests or direct marketing

  • Request transfer of your data to another provider (data portability)

  • Withdraw consent at any time, where consent is the basis for processing

To exercise any of these rights, please contact us at [insert contact email]. We may need to verify your identity before processing your request.

9. Data Security

We use appropriate technical and organisational measures to protect your personal data. However, no method of electronic storage or transmission is completely secure.

10. Children’s Privacy

Our services are not intended for children under 16. We do not knowingly collect personal data from minors.

11. Changes to This Privacy Policy

We may update this policy from time to time. Any changes will be published on this page with an updated “Last Updated” date.

12. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us:

St Mary’s Marylebone
York Street
London, W1H 1PQ

venue@stmaryslondon.com

If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection: www.ico.org.uk.