Privacy Policy

2.  Who We Are

Dorset Waterpark Ltd operates Dorset Adventure Park in Dorset, United Kingdom and is the data controller of your personal data.

Contact details:
Email: [email protected]
Address: Dorset Adventure Park, Arfleet Mill Lakes, Studland Road, Corfe, BH20 5JG

3. The Data We Collect

Information you provide to us

• Name
• Date of birth
• Email address
• Telephone number
• Booking details
• Waiver information and declarations
• Emergency contact details
• Medical information relevant to participation (voluntarily provided)

Payment data

• Payments are processed securely via our booking provider. We do not store full card details.

Technical data

• IP address
• Browser type and device
• Website usage data (via cookies)

4. How We Use Your Data

We use your data to:

• Process and manage bookings
• Administer waivers and safety requirements
• Ensure participants meet age and safety rules
• Communicate booking confirmations and updates
• Respond to enquiries

We may also use your data to:

• Send review requests after your visit
• Send news, updates, and offers by email (only where you have opted in)

5. Legal Bases for Processing

We process your data under the following lawful bases:

Contract – to provide your booking and entry

Legal obligation – health & safety, insurance and accounting requirements

Legitimate interests – improving our services and sending post-visit review requests

Consent – for marketing emails and optional medical information

You can withdraw consent at any time.

6. Third-Party Providers

We use trusted third-party providers to deliver our services:

• ROLLER– booking system, waivers and customer management
• Microsoft 365 – email communications
• Mailchimp– newsletters
• Payment providers integrated into our booking system

These providers process personal data on our behalf and are required to keep it secure.

7. International Data Transfers

Some of our providers (such as Mailchimp) may process data outside the UK.

Where this occurs, we ensure appropriate safeguards are in place, including:

• UK-approved Standard Contractual Clauses
• Adequacy decisions where applicable

8. Data Retention

We retain personal data only as long as necessary:

• Booking and financial records: up to6 years
• Waivers and safety records: in line with legal and insurance requirements
• Marketing data: until you unsubscribe or withdraw consent

9. Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your data
• Restrict or object to processing
• Request transfer of your data
• Withdraw consent at any time

To exercise your rights, contact us at: [email protected]

10. Cookies

Our website uses cookies and similar technologies to improve your experience and understand how our site is used.

We use a cookie consent tool provided by CookieYes, which allows you to:

• Accept or reject non-essential cookies
• Manage your preferences at any time

For full details, please see our Cookie Policy.

11. Children’s Data

Our services are used by children. Where required, bookings and waivers must be completed by a parent or guardian.

We take appropriate steps to protect children’s personal data.

12. Data Security

We have appropriate security measures in place to prevent your personal data from being lost, misused, or accessed without authorisation.

13. Complaints

If you have concerns about how we handle your data, please contact us first.

You also have the right to complain to the Information Commissioner’s Office (ICO):
https://www.ico.org.uk

14. Changes to This Policy

We may update this policy from time to time. Any changes will be posted on this page with an updated date.

Updated: 1st May 2026