Privacy Policy

Privacy Policy


Mercure Nottingham Sherwood Hotel
296 Mansfield Road, Nottingham NG5 2BT, United Kingdom
Last updated: 10th November 2025

1. Introduction
We respect your privacy and are committed to protecting your personal data. This policy explains how and why we collect, use, store, and share your personal data when you visit our website, stay with us, or use our services.

2. Data controller
For the purposes of data protection legislation, the data controller is Mercure Nottingham Sherwood Hotel.

3. Types of data we collect
We may collect the following categories of personal data:

Identity data (name, date of birth, gender)

Contact data (address, email address, telephone number)

Booking data (reservation dates, room type, length of stay)

Payment data (card details, billing address)

Stay-related data (special requests, check-in/out times, loyalty membership)

Technical data (IP address, browser type, device identifiers, cookies)

CCTV and access control data in public hotel areas as part of our security systems.

4. How we use your personal data
We will use your personal data:

To fulfil our contract with you (processing your booking, check-in, payment, check-out).

To manage your stay and provide services (room allocation, special requests, loyalty benefits).

For legal compliance (guest register obligations under the Immigration (Hotel Records) Order 1972)

For our legitimate interests (e.g., housekeeping, maintenance, security, fraud prevention) provided your interests do not override those rights.

With your consent where required (e.g., marketing communications).

For analytics and improving our website and services.

5. Lawful basis for processing
We rely on the following lawful bases:

Performance of a contract (your booking with us).

Legal obligation (e.g., guest register, tax).

Legitimate interests (e.g., security, business operations).

Consent (for optional marketing and certain data uses) where required.

6. Cookies and similar technologies
We use cookies on our website to enhance functionality, analyse usage, and provide personalised content. You can manage your cookie preferences via our cookie notice or your browser settings.

7. Sharing your personal data
We may share your personal data with:

Third-party service providers (booking platforms, payment processors, IT service providers).

Regulatory or law enforcement authorities when required by law.

Other group companies or hotel management service providers, where necessary for operational purposes.
We ensure that such third parties process your data in accordance with our instructions and applicable law.

8. International transfers
Your data may be transferred outside the UK where necessary. We will ensure appropriate safeguards such as standard contractual clauses are in place to protect your data.

9. Data retention
We will retain your personal data for as long as is necessary to fulfil the purposes set out above, including for the duration of your stay, plus a further period in line with our retention policies (e.g., for audit, accounting, legal and business purposes). After this period we will delete or anonymise your data.

10. Your rights
You have the following rights under data protection law:

Right to access your personal data.

Right to rectify inaccurate or incomplete data.

Right to erasure (“right to be forgotten”) in certain circumstances.

Right to restrict processing.

Right to object to processing based on legitimate interests or direct marketing.

Right to data portability.

Right to withdraw consent at any time where processing is based on consent.
To exercise these rights, please contact us using the details below. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe we have not complied with data protection law.

11. Security
We implement appropriate technical and organisational measures to ensure the confidentiality, integrity and availability of your personal data. We regularly review our systems, restrict access, provide staff training, and monitor for threats to data security. 

12. CCTV and monitoring
Where CCTV systems are in operation in public areas, we process image data for security and safety purposes. We display signage to inform you of surveillance and we store footage only for as long as is necessary under our retention schedules. 

13. Changes to this policy
We may update this policy from time to time to reflect changes in our data processing or legal obligations. We will publish the updated version on our website and update the “Last updated” date above.

14. Contact us
If you have any questions about this policy or your personal data, please contact:
Data Protection Officer
Mercure Nottingham Sherwood Hotel
296 Mansfield Road
Nottingham NG5 2BT
Email: Alan.Tracey@accor.com
Telephone: 0115 935 9988

Logo

©Copyright. Mercure Nottingham Sherwood Hotel. All rights reserved.

Privacy Policy

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.