Privacy Policy

At Garden Rooms by Drumbeat, we’re committed to protecting and respecting your privacy. This Policy explains when and why we collect personal information about people who visit our website, how we use it, the conditions under which we may disclose it to others and how we keep it secure.
It applies to information we collect about:

  • visitors to our website
  • complainants
  • individuals in relation to an inquiry, quote, or a call back request
  • people who use our services

The personal information which we hold will be held securely in accordance with our internal security policy and the law. We will not transfer your data outside of the European Economic Area (EEA) unless adequate safeguards are in place.

We may change this Policy from time to time so please check this page occasionally to ensure that you’re happy with any changes. By using our website, you’re agreeing to be bound by this Policy.

Any questions regarding this Policy and our privacy practices should be sent by email to or by post to: Units 3 & 4 The Depot, Monument Way, East Woking, GU21 5LY.

Who are we?

We are Garden Rooms by Drumbeat. Trusted as experts in design and build for over 30 years, we provide a complete service to help you create your perfect outdoor space.

How do we collect information from you?

We obtain information about you when you use our website and when you contact us about our services.

What type of information is collected from you?

The personal information we collect might include your name, address, email address, telephone number, IP address, and information regarding what pages are accessed and when.

How is your information used?

We will only use your information in order to create a customer account and for billing details, and only if you decided to use our services.

We may use your information to:

  • Raise an invoice for works carried out
  • To carry out our obligations arising from any contracts entered into by you and us
  • Seek your views or comments on the services we provide
  • Notify you of changes to our services
  • Send you communications which you have requested and that may be of interest to you. These may include information about stand deadlines, early order discounts.
  • We review our retention periods for personal information on a regular basis. We are legally required to hold some types of information to fulfil our statutory obligations. We will hold your personal information on our systems for as long as is necessary for the relevant activity, or as long as is set out in any relevant contract you hold with us.

Who has access to your information?

We will not sell or rent your information to third parties.

We will not share your information with third parties for marketing purposes.

Third Party Service Providers working on our behalf:

We may pass your information to our third party service providers, agents subcontractors and other associated organisations for the purposes of completing tasks and providing services to you on our behalf (for example to use a specialist trade when building your stand on-site). However, when we use third party service providers, we disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and not to use it for their own direct marketing purposes.

We may transfer your personal information to a third party as part of a sale of some or all of our business and assets to any third party or as part of any business restructuring or reorganisation, or if we’re under a duty to disclose or share your personal data in order to comply with any legal obligation or to enforce or apply our terms of use or to protect the rights, property or safety of our supporters and customers. However, we will take steps with the aim of ensuring that your privacy rights continue to be protected.

Your rights

GDPR creates 8 new rights for individuals which are as follows:

Right to be informed
Right of access

  • Where you seek to exercise this right, we must verify your identify before we can process your request.
  • We will not charge a fee for responding to requests unless they are deemed unfounded or excessive.
  • We will respond to all requests within 1 month of the date of receiving the request.
  • Where we refuse to respond to a request we will explain why. We will let you know without undue delay and at the latest within 1 month of the request.

Right to rectification

  • We will tell you what information we are collecting and what we are using it for in our Privacy Policy.
  • You can request a copy of the information we hold on you and we will provide this if we can.
  • If your data is inaccurate, we will correct this.

Right to erasure

  • In certain circumstances, you can ask us to delete your data.

Right to restrict processing

  • In certain circumstances, you can temporarily ask us to stop using your data.

Right to data portability

  • You have the right to obtain your data in an easily accessible format to take this elsewhere and we will provide this.

Right to object

  • You can object to your data being used for direct marketing or research purposes. Where there is no other reason for us to hold your data, we will delete it from our systems if you object to receiving this type of communication.

Rights relating to automated decision-making including profiling

  • Automated decision-making and profiling is restricted under GDPR. We do not undertake any decision-making using these types of processes.


If you wish to contact us about any of the 8 points above, please email us at:, or write to us at Units 3 & 4 The Depot, Monument Way, East Woking, GU21 5LY.

Security precautions in place to protect the loss, misuse or alteration of your information

When you give us personal information, we take steps to ensure that it’s treated securely. Any sensitive information is encrypted and protected with the following software 128 Bit encryption on SSL. When you are on a secure page, a lock icon will appear on the bottom of web browsers such as Microsoft Internet Explorer.

Non-sensitive details (your email address etc.) are transmitted normally over the Internet, and this can never be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems.

Use of ‘cookies’

Like many other websites, Garden Rooms by Drumbeat’s website uses cookies. ‘Cookies’ are small pieces of information sent by an organisation to your computer and stored on your hard drive to allow that website to recognise you when you visit. They collect statistical data about your browsing actions and patterns and do not identify you as an individual. For example, we use cookies to store your country preference. This helps us to improve our website and deliver a better more personalised service.

It is possible to switch off cookies by setting your browser preferences. Turning cookies of may result in a loss of functionality when using our website.
If you wish to find out more about cookies visit:

16 or Under

We are concerned to protect the privacy of children aged 16 or under. If you are aged 16 or under‚ please get your parent/guardian’s permission beforehand whenever you provide us with personal information.

Transferring your information outside of Europe

As part of the services offered to you through this website, the information which you provide to us may be transferred to countries outside the European Union (“EU”). By way of example, this may happen if any of our servers are from time to time located in a country outside of the EU. These countries may not have similar data protection laws to the UK. By submitting your personal data, you’re agreeing to this transfer, storing or processing. If we transfer your information outside of the EU in this way, we will take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected as outlined in this Policy.

If you use our services while you are outside the EU, your information may be transferred outside the EU in order to provide you with those services.

Complaints or queries

Garden Rooms by Drumbeat tries to meet the highest standards when collecting and using personal information. For this reason, we take any complaints we receive about this very seriously. We encourage people to bring it to our attention if they think that our collection or use of information is unfair, misleading or inappropriate. We would also welcome any suggestions for improving our procedures.

If you believe we have processed your personal data in a way that does not comply with GDPR, we ask that in the first instance you contact us directly. Under GDPR you also have a right to make a complaint to the Information Commissioner’s Office (ICO) or other relevant supervisory body.

This privacy notice was drafted with brevity and clarity in mind. It does not provide exhaustive detail of all aspects of Garden Rooms by Drumbeat’s collection and use of personal information. However, we are happy to provide any additional information or explanation needed.

How to contact us

Postal address: Units 3 & 4 The Depot, Monument Way, East Woking, GU21 5LY

Review of this Policy

We keep this Policy under regular review. This Policy was last updated in October 2020.