General Data Protection Regulation (“GDPR”) and Privacy Policy / (RGPD) Politique de confidentialite

Français cliquez ici =    RGPD – politique de confidentialité

The European regulation Number 2016/679 of 27 April 2016, or General Data Protection Regulation (GDPR), came into force on 25 May 2018.  This new law replaced the Data Protection Act and is a European wide law and affects how we use and store information we receive from our clients and enquirers.  It covers all data, whether electronic or paper based.

We use cookies on our website.  Cookies are text files placed on your computer to collect standard internet log information and visitor behaviour information.  This information is used to track visitors use of the website and to compile statistical reports on website activity.  You can set your browser not to accept cookies. (see for more information).

What information we collect from you (“the client”).

When you make a booking with us, we collect your name, home address, email address and telephone number.

How we use the information you give us.

We use your email address to communicate with you, to send you a booking form, confirmation and answer any queries you email us with, and to thank you after your visit and ask you for a review.  We will also add details of how you can keep in touch with us on social media, should you wish to do this.

We will not use your telephone number unless we need to contact you urgently or if we cannot reach you by email.


We do not prepare a newsletter or use Mailchimp.  We use Instagram and Facebook to market our gites and our own website.  We will never pass your details onto any third party.

Access to your Information

You have the right to request a copy of the information we hold about you.  If you would like a copy of this please email us at

Right to be Forgotten

All clients have the right to ask us to remove their details from our records.  However, this does not override the legislative requirements (e.g. the Fiche Individuelle form – see the form inside our welcome booklet).

Legally, we are required to ask our non French clients to complete the “Fiche individuelle de police pour les tourists étrangers” (fiche d’hôtel) form, which we have to legally keep for 6 months from your date of arrival.  This form must be completed pursuant to the article R611-42 of Code of Entry and Stay of non French Nationals and of the Right of Asylum.

Only the local police can ask for the details contained on this form.  The form is then safely destroyed by us 6 months after your date of arrival.

We are also required by law to keep financial records for 7 years, information which is shared with our accountants and the tax office on request. Our clients cannot ask to be erased from these financial records.

When you book and complete a booking form, please be assured that your details are kept secure on our system via password protected controlled entry and are not used for any other purpose or shared with any other person or business.  We need your email address to send through our booking form and terms and conditions and to also answer any queries you have regarding the property or surrounding area etc.  We will send you a follow up email after your stay to thank you for staying and asking you to leave a review or feedback and details of how to stay in contact with us, should you wish.  We do not need explicit consent for this.  We will NOT add you to any marketing mailing list.

If you book via one of our booking partners, for example Holiday France Direct, they also have to comply with GDPR regulations and have their own safeguards and policies in place.

If you choose to follow us on social media (e.g. Facebook or Instagram), we do not need consent as you have already accepted the terms & conditions on that platform.  Again, we will not ask you for your email address in order to send you newsletters.

Notification of Data Breaches

The GDPR will require us to notify the Information Commissioners’ Office within 72 hours of first having become aware of the breach where that breach is likely to “result in a risk for the rights and freedoms of individuals”. For any breach, we are required to notify the “clients without undue delay” after first becoming aware of a data breach.

May 2018