Privacy Policy
Last updated: 03/06/2026
1. Introduction
Park & Walk is committed to protecting your privacy and the personal information we collect. This privacy policy outlines our practices concerning the collection, use, and protection of your data when you use our airport parking services, including our website, our CCTV and Automatic Number Plate Recognition (ANPR) cameras, and our customer live camera view.
2. Who We Are
This service is operated by J B Pearce Ltd, which is the data controller responsible for your personal data.
- Registered address: Downs Farm, Downs Road, Dundry, Bristol, BS41 8LR
- VAT number: 840 941 038
You can contact our data protection contact at dpo@parkandwalk.co.uk.
3. Information We Collect
We collect the following categories of personal information:
Booking and account information:
- First Name
- Surname
- Email Address
- Vehicle Registration Number
- Mobile Number
- Account login details, managed through our authentication provider
CCTV and ANPR information:
- Images of vehicles and individuals captured by our CCTV cameras
- Vehicle registration marks automatically read by our ANPR cameras, together with the date and time of entry and exit
Technical information:
- IP address, device and browser information, and basic usage data when you use our website
This information is necessary to fulfil your booking, manage entry and exit, secure our facilities, and communicate important details about your parking reservation.
4. How We Use Your Information
We use your personal information for the following purposes:
- To process and manage your parking reservation
- To communicate with you about your booking, including by email and SMS (for example, barrier and access codes)
- To manage entry to and exit from the car park and detect overstays
- To ensure the security of our parking facilities and to prevent and investigate crime and incidents
- To provide the live camera view to signed-in customers during their booking
- To improve our services and customer experience
- To comply with legal obligations
5. Lawful Bases for Processing
Under UK data protection law we rely on the following lawful bases:
- Performance of a contract: to take and manage your booking and provide parking to you.
- Legitimate interests: to secure the site using CCTV and ANPR, to prevent and investigate crime, to manage entry and exit, to detect overstays, and to improve our service.
- Legal obligation: to keep financial records and to comply with applicable law.
- Consent: where required, for example for any non-essential cookies or optional communications.
6. CCTV
Our car park is monitored by CCTV for the purposes of crime prevention, the safety of customers and vehicles, and the operation of our service. Cameras record while the car park is in use. Footage is retained for 30 days and then automatically overwritten, unless it is required for the investigation of an incident or to comply with a legal obligation. Our lawful basis is our legitimate interests in securing the site. CCTV is operated in line with the Information Commissioner's Office (ICO) guidance on video surveillance.
7. Automatic Number Plate Recognition (ANPR)
We use ANPR cameras that automatically read and record the registration plates of vehicles entering and leaving the car park, together with the date and time. We use this information to match vehicles to bookings, manage entry and exit, detect overstays, and maintain security. Plate records are retained for 30 days and then deleted. Our lawful basis is our legitimate interests in operating and securing the car park and enforcing our booking terms. Vehicle registration marks are treated as personal data.
8. Live Camera View
If you have an active booking, you can view live CCTV of the car park from your account while signed in, for the duration of your booking only. This view shows live images that may include other vehicles. It is provided for your reassurance, is not recorded by us on your behalf, and access ends automatically when your booking ends. You must not record, copy, or share these images.
9. Payment Processing
We use Stripe, a secure third-party payment processor, to handle all financial transactions. We do not store your payment card details on our servers. By using our services, you agree to Stripe's Services Agreement, which can be found at https://stripe.com/gb/legal/ssa.
10. Data Sharing and Processors
We do not sell your personal information. We share it only where necessary to provide our services or where required by law. We use the following service providers, who act on our instructions and under contract:
- Stripe, for payment processing
- Clerk, for account login and authentication
- Twilio, for SMS notifications
- Our email service provider, for email
- Our hosting provider, for secure hosting of the service
Some of these providers may process data outside the UK or European Economic Area. Where they do, the transfer is protected by appropriate safeguards, such as the UK approved standard contractual clauses or an adequacy decision.
11. Data Protection
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:
- Encryption of data in transit and at rest
- Regular security audits and vulnerability assessments
- Restricted access to personal data on a need-to-know basis
- Employee training on data protection and security practices
12. Data Retention
We keep personal data only for as long as necessary for the purposes for which it was collected:
- Account information: 3 months following the end of your booking
- Completed booking information: at least 7 years, as required for tax and accounting purposes
- CCTV footage: 30 days, then automatically overwritten
- ANPR plate records: 30 days, then deleted
We may keep data for longer where required for the investigation of an incident or to comply with a legal obligation.
13. Your Rights
Under data protection laws, you have the following rights:
- The right to access your personal data
- The right to rectification of inaccurate data
- The right to erasure of your data (in certain circumstances)
- The right to restrict processing of your data
- The right to data portability
- The right to object to processing of your data
- Rights related to automated decision-making and profiling
To exercise any of these rights, please contact us at dpo@parkandwalk.co.uk.
14. Cookies
Our website uses cookies and similar technologies. Some are strictly necessary for the site to function, including cookies set by our authentication provider to keep you securely signed in. We may also use cookies to remember your preferences and to understand how the site is used. Where cookies are not strictly necessary, we will ask for your consent. You can manage cookies through your browser settings, although blocking some cookies may affect how the site works.
15. Changes to This Privacy Policy
We may update this privacy policy from time to time. We will notify you of any significant changes by email or through a prominent notice on our website. We encourage you to review this policy periodically.
16. Contact Us
If you have any questions about this privacy policy or our data practices, please contact our Data Protection Officer at dpo@parkandwalk.co.uk.
For general inquiries, you can reach us at contact@parkandwalk.co.uk.
17. Complaints
If you are not satisfied with our response to any privacy-related concern you may have, you can contact the Information Commissioner's Office (ICO). Visit their website at https://ico.org.uk/ for more information.
By using our services, you acknowledge that you have read and understood this privacy policy and agree to its terms.