Privacy Policy

The European Union (EU) is an economic and political union of 27 countries. It operates an internal (or single) market which allows free movement of goods, capital, services and people between member states.

Europe is a continent located entirely in the Northern Hemisphere and mostly in the Eastern Hemisphere. It comprises the westernmost part of Eurasia and is bordered by the Arctic Ocean to the north, the Atlantic Ocean to the west, the Mediterranean Sea to the south, and Asia to the east.

The UK left the EU’s (not Europe’s) bubble on December 31st, 2020.

The Data Protection Act 2018 is the UK’s implementation of the General Data Protection Regulation (GDPR), to which this site now follows.

Please refer to the UK Governments website for details:

Link to ICO

This site’s Data Protection Policy

This website and its owners take an initiative-taking approach to user privacy and ensure the necessary steps are taken to protect the privacy of its users throughout their visiting experience. This website complies with all UK national laws and requirements for user privacy.

This site is aimed at a UK audience. Restrictions may be enforced to limit external access, and if circumvented using VPNs or Proxy services, those visitors will be treated as UK visitors and subject to UK law.


I am committed to safeguarding your privacy. Contact me if you have any questions or problems regarding the use of your Personal Data and I will gladly assist you.

By using this site or/and my services, you consent to the Processing of your Personal Data as described in this Privacy Policy.

This Privacy Policy is a part of My Terms and Conditions; by agreeing to the Terms and Conditions you also agree to this Policy. In the event of a collision of terms used in Terms and Conditions and Privacy Policy, the latter shall prevail.

Personal Data – any information relating to an identified or identifiable natural person.
Processing – any operation or set of operations which is performed on Personal Data or sets of Personal Data.
Data subject – a natural person whose Personal Data is being Processed.
Child – a natural person under 13 years of age.
Me/I (either capitalized or not) –,, Dave Richardson

Data Protection Principles

I promise to follow the following data protection principles:

  • Processing is lawful, fair, transparent. My Processing activities have lawful grounds. I always consider your rights before Processing Personal Data. I will provide you with information regarding Processing upon request.
  • Processing is limited to its purpose. My Processing activities fit the purpose for which Personal Data was gathered.
  • Processing is done with minimal data. I only gather and process the minimal amount of Personal Data required for any purpose.
  • Processing is limited with a time period. I will not store your personal data for longer than needed.
  • I will do my best to ensure the accuracy of the data
  • I will do my best to ensure the integrity and confidentiality of data.

Data Subject’s rights

The Data Subject has the following rights:

  1. Right to information – meaning you have to right to know whether your Personal Data is being processed; what data is gathered, from where it is obtained and why and by whom it is processed.
  2. Right to access – meaning you have the right to access the data collected from/about you. This includes your right to request and obtain a copy of your Personal Data gathered.
  3. Right to rectification – meaning you have the right to request rectification or erasure of your Personal Data that is inaccurate or incomplete.
  4. Right to erasure – meaning in certain circumstances you can request for your Personal Data to be erased from my records.
  5. Right to restrict processing – meaning where certain conditions apply, you have the right to restrict the Processing of your Personal Data.
  6. Right to object to processing – meaning in certain cases you have the right to object to Processing of your Personal Data, for example in the case of direct marketing.
  7. Right to object to automated Processing – meaning you have the right to object to automated Processing, including profiling; and not to be subject to a decision based solely on automated Processing. This right you can exercise whenever there is an outcome of the profiling that produces legal effects concerning or significantly affecting you.
  8. Right to data portability – you have the right to obtain your Personal Data in a machine-readable format or if it is feasible, as a direct transfer from one Processor to another.
  9. Right to complain – if I refuse your request under the Rights of Access, I will provide you with a reason as to why. If you are not satisfied with the way your request has been handled, please contact me.
  10. Right for the help of supervisory authority – meaning you have the right for the help of supervisory authority and the right for other legal remedies such as claiming damages.
  11. Right to withdraw consent – you have the right withdraw any given consent for Processing of your Personal Data.

How I secure your data

I do my best to keep your Personal Data safe.  I use safe protocols for communication and transferring data (such as HTTPS). I use anonymising and pseudonymising where suitable. I monitor my systems for vulnerabilities and attacks.

Even though I try my best I cannot guarantee the security of information. However, I promise to notify suitable authorities of data breaches. I will also notify you if there is a threat to your rights or interests. I will do everything I reasonably can to prevent security breaches and to assist authorities should any breaches occur.

If you have an account with me, note that you must keep your username and password secret.

Children’s Data

I do not intend to collect or knowingly collect information from children. I do not target children with my services. Their account and data will be removed if it is found to belong to a child.

Cookies and other technologies I use

I use cookies and/or similar technologies to analyse customer behaviour, administer the website, track users’ movements, and to collect information about users. This is done to personalise and enhance your experience with this site.

Please see further down for cookie information.

Who am I?

My name is Dave Richardson and I maintain Monty the Moose’s website (this website).

This website address is

The basis of this site:

This website is focused on displaying highlights of Monty the Moose, a cuddly toy, and his friends to share their travels.

This site by default does not require a login or membership, therefore the site is not expected to collect any data submitted by forms from visitors except when using the “Contact Me” page.

If, however, visitors choose to become members, that information is used to send updates regarding Monty’s website, notifications, and travel.

Data Location:

It is especially important to me to keep this site’s data in the UK; only UK based data centres are used to host this site when switching providers. 

Email services are also UK based, however, emails traverse the internet globally.

Our website, the Engine, Disk and Snapshots are stored on Amazon’s AWS Platform, in the Europe-West2 region (London) across the A, B and C zones.

Amazon’s AWS Locations Link

Data this site collects:

Activity Data:

This site records visitor activity to help find out what our visitors like to see; and where necessary record misuse, either through intent or by an automated process, this also helps us with security. By understanding what our visitors are doing, the site can be tailored through design and functionality to help better the visitor experience in the future. Therefore, this site collects the following data for activity:

  • Username
  • Location of ISP
  • Page accessed
  • Referring page
  • Date/Time of activity
  • Hostname
  • Browser type and version
  • Device type and version
  • Operating System type and version

See the retention section for data removal periods.

Through Searching:
  • Your IP addresses
  • Your Username (if logged in)
  • Your browser agent
  • Your search queries
Through payment of membership (if applicable):
  • The last four digits of the card used
  • the expiry date of the card used
  • Card details are passed the payment gateway (Stripe)

This information will be stored in the site’s database for 90 days and is used to help better understand the end-user expectations of this site and maintain IP information for security & tracking purposes.

Use of Cookies:

This website uses cookies to better the users experience while visiting the website, such as storing display preferences. Where applicable this website uses a cookie control system allowing the user on their first visit to the website to allow or disallow the use of cookies on their computer/device. This complies with legislation requirements for websites to obtain explicit consent from users before leaving behind or reading files such as cookies on a user’s computer/device.

Cookies are small files saved to the user’s computer’s hard drive that track, save, and store information about the user’s interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website.
Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive, they should take necessary steps within their web browsers security settings to block all cookies from this website and its external serving vendors.

If you leave a comment on My site, you may opt-in to save your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, it will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

To adjust your cookie preference, click the cog in the lower left.

Security system data:

To protect the site from abuse or attack, either by end-user or automated services such as “bots”, and to log for evidence regarding activity in the event of abuse, the following information is collected and automatically checked against known threat sources:

  • Date
  • Time
  • IP Address
  • Threat Level
  • Rule Threat Match
  • Data requested, GET/POST
  • Data requested – the file being accessed for that request
  • The End User Agent descriptor
  • The End User Operating System descriptor

See the retention section for data removal periods.

Blocking data:

To restrict and protect content to a UK audience, this site collects data to be matched to non-UK country data, stored locally, and where applicable, denied access. This also helps prevent egress data charges where it is not necessary.

  • Date
  • Time
  • IP Address
  • Country

See the retention section for data removal periods.

Google Analytics:

The site uses a tool called Google Analytics to collect statistical data. All the data is stored securely on Google’s servers. To track your browsing across sessions, Google analytics will place a ‘cookie’ on your machine (a small text file that websites use to track and remember information across several browsing sessions). You can tell your web browser not to accept cookies if you don’t want this site to do this (refer to your web browser’s help file for more information). For further details on Google Analytics and the Google Analytics privacy policy, please visit the Google Analytics web site.

Google Analytics collects the following information:

Demographics: Age.
Geographics: Language.
Behaviours: New visitors.
Returning visitors.
Frequency and recency.
User Flow.
Technologies: Browser.
Operating System.
Network (provider).
Device category.
Acquisitions: How you got here.
Where you went.
Through Membership (if applicable):

In addition to the above, the following information is also collected:

  • Your email address
  • Your username <for this site>
  • Your First name (if given)
  • Your Lastname (if given)
  • Your profile picture (if uploaded)
  • Your own website or a nominated website (if given)
  • Your AIM (if given)
  • Your Yahoo IM (if given)
  • Your Jabba or Google Talk username (if given)
  • Your biographical information (if given)
  • Your password for this site
  • Your movement and activity on this site
  • If paid – The last four digits of the card used
  • If paid – the expiry date of the card used
Through participation (if applicable):

In addition to the above, the following information is also collected:

  • Comment Text
  • Attachments (including pictures)
  • links

When visitors leave comments on the site it collects the data shown in the comments form, and the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Newsletter & emails

If you have subscribed to My newsletter or if you are a member of My website (you can log in) or if you have purchased on My website, there is a good chance you will receive emails from me.

I will only send you emails which you have signed up to receive, or which pertain to the services I provided to you.

To send you emails, I use the name and email address you provide me. My site also logs the IP address you used when you signed up for the service to prevent abuse of the system.

This website can send emails through the MailPoet sending service. This service allows me to track opens and clicks on My emails. I use this information to improve the content of My Newsletters.

No identifiable information is otherwise tracked outside this website except for the email address.

To cancel a newsletter, you must cancel it through the link at the bottom of the email.

Data Collected to Manage Your Membership (if applicable)

At checkout, I will collect your name, email address, username, and password. This information is used to set up your account for My site. If you are redirected to an offsite payment gateway to complete your payment, I may store this information in a temporary session variable to set up your account when you return to My site.

When logged in, I use cookies to track your activity on My site including logins, visits, and page views.

How this data is used:

The data collected helps to:

  • Manage your account on this site
  • Track usage for auditing and security
  • Plan for future site developments
  • Identify and better promote the most popular content, and likewise, the less popular content
  • Gauge the success of marketing campaigns
  • Identify periods of heavy site usage, to help forecast when is best to perform maintenance work
  • To email you notifications regarding new or updates posts, comments, pages, newsletters, and service status

The “Through participation” data is used to:

  • Form the basis of this site for sharing information through comments, pages, and posts.

This website uses any information submitted to provide you with further information about the products/services it offers or to assist you in answering any questions or queries you may have regarding the site’s content.

Visitor comments may be checked through an automated spam detection service.

Cancelling your account (or allowing your account to expire):

If this site no longer fits your needs, you can cancel your account by:

  1. Logging in to this website
  2. Going to Accounts
  3. Under “My Memberships” and “Level” clicking “Cancel”
  4. Confirm your cancellation
  5. Your account will be internally marked for deletion

By cancelling your account:

  • Your account and Membership will be cancelled and deleted from the site’s database within 30 days, however, backups will remain in place following the sites retention policy (see below)
  • Access to the website’s membership required content will be removed
  • No refunds on unused or partially used membership payment cycles
  • Any of your posts and comments will be anonymised; However, the IP address used to post those items will remain in place for legal requirements

By allowing your account membership to expire:

  • Your account will be deleted from the site’s database between 30 & 90 days; however, backups will remain in place following the sites retention policy (see below)
  • Access to the website’s membership required content will be removed
  • Any of your posts and comments will be anonymised; However, the IP address used to post those items will remain in place for legal requirements

Until your account is deleted you may still receive service messages regarding your account or subscriptions and notifications you have signed up for.

To cancel a newsletter, you must cancel it through the link at the bottom of the email.

If you have an account on this site or have left comments, you can request to receive an exported file of the personal data it holds about you, including any data you have provided it. You can also request that it erases any personal data I hold about you. This does not include any data it is obliged to keep for administrative, legal, or security purposes.

If you do not have a membership account with this site and would like to download or delete your data this site may hold, you can visit our Data Protection Tools page.

Data retention:

Database, Files & Server Backups:

Information is stored as follows as part of the site owners Data Recovery Plan:

  • Site Internal backups
    • Database: Every Day retaining the last 30 days (Automated process)
    • Files: Every Week retaining the last 4 weeks (Automated process)
  • Server backups (Disk Images) are taken every day and retained for 7 days (Automated process)

Backups are evaluated regularly; any restored data is removed immediately after successful confirmation.

Security system logs:

Security system logs are deleted after 90 days; this enables adequate time to investigate and evidence persistent attacks or abuse of the site to law enforcement agencies if required.

Blocking logs:

Blocking logs are deleted after 30 days; this enables adequate time to investigate and evidence potential audience and abuse leading to egress data charges.

Email logs:

Email logs and their contents from this site are retained for 6 months, and contains:

  • The date and time the email was sent
  • The recipients email address
  • Subject
  • Content
  • Attachments

Email is sent through TLS to an SMTP account in the UK owned by this domain; the email is not retained in the mailbox’s sent box.

Activity logs:

Activity logs are deleted after 90 days or a maximum of 50,000 records; this enables adequate time to evidence guest usage to make appropriate design changes and if necessary, attacks or abuse of the site to law enforcement agencies if required.

Google Analytics:

Starting May 25, 2018, user and event data will be retained for 26 Months; Google Analytics will automatically delete user and event data that is older than this retention period. Note that these settings will not affect reports based on aggregated data. The site owner has set this retention period for this data so that two years can be compared to spot trends and content functionality and usefulness to its users.


If you leave a comment, the comment and its metadata are retained indefinitely. This is so I can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on My website, it also stores the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Further Privacy Information

External Links

Although this website only looks to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website. (External links are clickable text/ banner/image links to other websites, like; Folded Book Art or Cottages in Pembrokeshire.)

The owners of this website cannot guarantee or verify the contents of any externally linked website despite their best efforts. Users should, therefore, note they click on external links at their own risk and this website, and its owners cannot be held liable for any damages or implications caused by visiting any external links mentioned. If it is brought to the attention of the site owners regarding a concern about the destination of a link, the link will be investigated and removed where appropriate.

Adverts and Sponsored Links

This website may contain sponsored links and adverts. These will typically be served through the site’s advertising partners, to whom may have detailed privacy policies relating directly to the adverts they serve.

Clicking on any such adverts will send you to the advertisers’ website through a referral program which may use cookies and will track the number of referrals sent from this website. This may include the use of cookies which may, in turn, be saved on your computer’s hard drive. Users should, therefore, note they click on sponsored external links at their own risk and this website, and its owners cannot be held liable for any damages or implications caused by visiting any external links mentioned.

Social Media Platforms

Communication, engagement, and actions taken through external social media platforms that this website and its owners participate on are custom to the terms and conditions as well as the privacy policies held with each social media platform, respectively.

Users are advised to use social media platforms wisely and communicate/engage upon them with due care and caution regarding their own privacy and personal details. This website nor its owners will ever ask for personal or sensitive information through social media platforms and encourage users wishing to discuss sensitive details to contact them through primary communication channels such as by telephone or email.

This website may use social sharing buttons which help share web content directly from web pages to the social media platform in question. Users are advised before using such social sharing buttons that they do so at their own discretion and note that the social media platform may track and save your request to share a web page respectively through your social media platform account.

Shortened Links in social media

This website and its owners through their social media platform accounts may share web links to relevant web pages. By default, social media platforms shorten lengthy URLs [web addresses] (this is an example:

Users are advised to take caution and good judgement before clicking any shortened URLs published on social media platforms by this website and its owners. Despite the best efforts to ensure only genuine URLs are published many social media platforms are prone to spam and hacking and therefore this website and its owners cannot be held liable for any damages or implications caused by visiting any shortened links.

Resources & Further Information

Changes to this policy.

Changes are defined as significant modifications within 1 (one) year, however, may list beyond for historical purposes.