We believe you should always know what data we collect from you and how we use it, and that you should have meaningful control over both. Bearing in mind how sensitive our lifestyle choice can be to some people, we have tried to explain all our processes fully to you, allowing you a choice over what you share with us.

As part of our ongoing commitment to transparency, and in preparation for new EU data protection laws that take effect in May 2018, we’re updating Xtasia’s Privacy Policy. We want to empower you to make the best decisions about the information that you share with us. Data falls into a number of areas within our business, so the following guidelines should assist you in making informed decisions about what information you give, and what to do if you’d like to remove it from us.

All new visitors to our club, which covers both Xtasia and Flirts, are required to become fully validated members of the club. We do not offer Guest entries. To do this we require to know your real name and your real address. To ensure this is correct, we validate the information against a legal form of ID, such as a Driving Licence, Passport, Utility Bills or Bank Statements. We record the number associated with this ID, so if ever asked by the council or law enforcement, we can prove to them the details have been checked. We will only ever give up this information if a serious illegal incident has occurred and only provide it to the police when requested to do so.

Our full sign up process asks for the following information, and the notes afterwards show how and why we use it.
1/ Are you a Couple, Single Male, or Single Female? We do this to maintain a good balance of members within the club. Partners taking out a Couples Membership, must both complete a membership form, and all 3 types of memberships must accept our T&C’s and Privacy Policy. Swinging membership requires to know gender, Fetish membership is Gender neutral.
2/ Do you require a membership for Swinging or for Fetish parties. We do this to ensure you sign up to a membership that gives you access to the parties of interest to you.
3/ Your name or names. We need this to match your ID, and its recorded on our membership system to allow us to find your information.
4/ Your Mobile Phone Number. We ask for this so we have an emergency way of contacting you, however email is the primary method of contact, and a phone number will only be used in a real emergency.
5/ Your Age. Obviously this is an over 18 only club, and we need to ensure everyone walking in through our gates is 18+
6/ Email address. We ask for this so we can respond to you regarding membership, however it is then used for email marketing and is covered in the next section of this policy.
7/ Country. We like to ascertain where you’re visiting from, so if overseas we can offer discounts to memberships.
8/ Date of Birth. This just confirms the age given, and can be used to check ID if no photo ID is provided.
9/ Your Address. A legal requirement, and checked against your ID on first visit. We also like you to keep us informed if a change of address occurs.
10/ How did you hear about us? This will assist our marketing team and helps drive future marketing investment.
11/ Web Site User Name. This is asking for any alias used on swinging or fetish web sites. “Couple4Fun” on Fab Swingers, or “MidlandsDom” on Fetlife for example will allow us to verify you as genuine when you visit the club, and also gives us another way of contacting you in the future should the need ever arise.
12/ Description and Interests. Here we are after the reasons why you’d like to join our club. You can add whatever you wish that may further your case to join. We read it once, but the information has no other bearing.
13/ Drug and Press Policy, plus T&C’s. We provide 3 tick boxes you must agree to before we accept the membership application. These cover our press exclusion, and our warning over the use of drugs on our premises. These are legally binding, and will be enforced if broken by anyone.
14/ We now seek Explicit Consent from you regarding our Privacy Policy. This takes the form of a separate page which we present you with at reception on your first ever visit to us, which we would like you to read fully and sign in agreement.

All of the above details are recorded into our Club Manager Membership System. We then record the following information on the associated record.
1/ Your membership type. Single Male Swinging Membership for example, with a start date triggered by your first visit to the club, and an expiry date, a year afterwards for Swinging memberships, and an open ended date for Fetish memberships.
2/ The payment made for the Membership. This shows us the membership is now valid and current.
3/ A membership number. We issue you with a membership card. On the back of this is a bar code, and a number. This acts as your membership number, and is assigned to your record so we know when you attend the club, and don’t need to do another ID check.
3/ Any visits made to the club. Every time you visit, we either swipe your card through a bar code reader, or obtain your name details and then add a visit to your records, along with any payment made.
4/ Notes. Our system does allow us to keep notes on each member. This usage is as follows. We would record any incident where our club rules had been broken, and a warning or ban issued to any member. We would record details of any injury that occurred on our premises, along with the actions taken by staff. We would remove this content once we were satisfied the details were no longer needed. We keep nothing in Notes that you as a member aren’t aware of. ie if you’ve had an accident, or had a warning from us, this information should be known to you.

Our Club Manager membership system is ISO27001 accredited. All communication to and from the server is via 256bit SSL encryption – the same level as a bank. Built and residing upon tried-and-tested Microsoft Security Technologies. Servers located within the EU (for customers within the Northern Hemisphere) spread across multiple data centres at different geographic locations. Continuous data-backup in near realtime with all backup operations running over SSL to alternative geographic locations. DDoS protection & mitigation. Multiple redundancies at all key points. Redundant power feed (A+B). IP Lockdown to key servers. Off-site, realtime backup covered by 256bit SSL encryption. Remote working covered by 256bit SSL encryption. All computers with access to sensitive information are password protected with a strong password policy. Regular staff training on cybersecurity.

A number of things can occur with the Data we hold.
1/ We as a company, can run lots of reports from the system. For example: to see how many sign-ups we’ve had, how many visitors over a specific period, what our average age range of customers is, what the best marketing tools are for sign ups, what postcode areas do we attract the most members from, etc. These are all non member specific and used to help our business focus on the correct strategy for the future.
2/ We can run member specific reports. For example, how many times has member number 45678 visited us this year? Who has spent the most money on door admissions this year? etc. These are always for management eyes only.
3/ We can send out mailings to our members. In accordance with GDPR rules we now double opt in all members to our mailings. We like to inform you, or remind you of upcoming events, and specific changes to the club. If you wish to receive these, we ask you to opt in to our mailing list, and then confirm this opt in back to you. We also always provide you with an opt-out “Unsubscribe” option at the foot of every email we ever send you.

We now have a total of 34 HD CCTV cameras around the two buildings on site, recording the following:

Xtasia. We have two cameras at either end of the bar, watching over the tills and staff working there. We have one in the kitchen which is a staff only area. We have three cameras in reception, one looking over the receptionist, till and incoming members, plus two covering the wardrobes where valuables, coats and phones are kept securely. All other Xtasia cameras are outside, watching over doors, emergency exits and front/rear/side gates.
Flirts. We have 4 cameras in the main social bar area. These cover our tills, and views of the main door. We have another 5 around the building watching various entries and emergency exits. We have 5 outside watching over the car parks, rear shed area, and entry gates. One camera watches over the rear entry to the accommodation and the lockers in that area. One final camera is located on the first floor landing in the accommodation, and viewed for disturbances or emergency evacuation.

We also have two cameras, one at either end of the swim spa in the leisure facility. These closely monitor the activity in the spa, to ensure we don't get sexual activity occurring, and to ensure a quick response should it be needed in an emergency. 

All CCTV is recorded and retained for around a week. It is viewable by senior staff only if a serious incident has occurred in the club, or an allegation made of an incident. The relevant footage is located, and then stored on disc if needed by club management. We review incidents to decide on the truth, what happened and when. We will use this information to make decisions regarding any membership bans or warnings. If requested by the police, following an incident or allegation of a more serious nature, we will make the data available. Our aim is to protect the innocent. Once the data is no longer needed, the files will be deleted.

We are often asked about the camera room. This operates on the following basis, and firstly we must point out it isn’t recorded in any way. A cable leads from the camera, directly to the television screen in the upstairs chill out lounge. When anyone enters the camera room, (which is well signed), a motion detector is tripped and the camera will start to send a feed upstairs. This in turn is shown on the TV screen, so whatever is going on in that room is shown on screen. Once the room is vacated, the motion detector will trip back after 2 minutes of no activity, and the upstairs TV will revert to showing porn.

There are no recording CCTV cameras in any areas around the club where sexual play is allowed.

We do not provide any third parties with our Data. We do have associations with some of the top web sites in the various spheres of interest, and occasionally invite them into the club to offer their services to you, however we do not give out our data to them in any form. We also have associations with some other venues, and activities such as festivals, however we do not give out your data to them.
We do not provide data to our own members regarding other members, nor do we provide data to people calling in, claiming to have an association with a member.
In the event of bankruptcy, merger, acquisition, reorganization, or sale of assets, your personal data may be sold or transferred as part of that transaction. This Privacy Policy will apply to your personal data as transferred to the new entity.

You may provide us with payment information, including a credit or debit card number, card expiry date, CVV code and billing address, in order to purchase advanced tickets for an event, or to book a room with us, or for private hire. This information is not stored or recorded in any way once the transaction has occurred.

A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual.
The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.
We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system. Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not.
A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us. You can choose to accept or decline cookies.
Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.
For further information, you can visit www.aboutcookies.org or www.allaboutcookies.org

As and when you initially signed up to Xtasia Membership, you provided us with information that can be seen as sensitive. The nature of Xtasia, as a Private Members Club, means the data held can be viewed as Special Category Data based around sexual orientations and preferences, so we have gained your Explicit Consent to hold this data. If you wish to review the information we hold, rectify the information, or have us delete the information in full please contact us at [email protected] and we will respond as quickly as we can.
Deletion of data in full will also cancel club membership immediately.
If membership is terminated by yourself, you can request the information held by us is deleted, and we will remove it from our membership system within 30 days from the request.
If you have been banned from the club for any reason, we retain the right to hold on to your data, as deemed necessary to ensure the safety of other members, (namely your name, address and email address, to ensure you cannot re-join the club). You may request other data such as notes, partners names etc be removed. 

If you have any questions or issues with the above, and feel it needs to be addressed with Xtasia, please contact us directly via email or by telephone, at [email protected] or 07850 236053. If you wish to complain about the above, or feel your rights have been violated in some way, then please contact the ICO in the UK. https://www.ico.org.uk
We may revise this Privacy policy from time to time. The most current version of this policy will govern our processing of your personal data and will always be stored at https://www.xtasia.co.uk/privacypolicy/ By continuing to visit Xtasia and use our services, you agree to be bound by this revised Privacy Policy.