1 – INTRODUCTION
2 – HOW WE COLLECT, USE AND STORE YOUR DATA
2.1 Contact Forms: If you submit details on our contact forms you are directly supplying use of the information that you have given. You will also be supplying us with an IP address from the machine you used to submit the form. There are no hidden fields and we make no assumptions or groupings based on the information you supply. The data you supply is used to make direct contact back to you. By submitting a form you have given consent for us to contact you in relation to the matter discussed or offered by the form. Submissions from forms are stored in two ways;
a) An email is sent to one of our staff members who will contact you. The staff member will not use your data for any other purpose than communicating directly. Your data will be kept only by that staff member (unless your issue is passed to another staff member) and not kept any longer than necessary.
b) The data you submit along with your IP address is kept securely in our database as a back-up. This is only kept for if the email in (a) is not received. These backups are kept indefinitely.
2.2 Cookies & Tracking Tools: By using our website you accept that we will store a cookie on your computer. This cookie will store information about your usage on our website but holds no personal information. Our cookies are used for tracking your behaviour on our website and allow us to improve your experience and that of others. We do not personally identify you with this information. Your cookie for Google Analytics is stored for 26 months but is reset on each new activity. You can delete your own cookies by following instructions for your browser. For more information about cookies, please visit www.allaboutcookies.org. Alternatively, you can search the internet for other independent information on cookies.
2.3 Referrals & Re-marketing: If you visit our website from a third party we may identify the referral (where you linked from) and match this to your IP. If the third party holds further information on you this may be accessible to us through the third party. We do not store any of this data, it is held securely by third parties. Third parties we use are Facebook, Twitter, Instagram, MailChimp, Trustpilot and Google.
2.4 Offline Data Collection: If you provide us directly with any personal information we will add it to our database of contacts. By giving us your email address or phone number you have given permission to be contacted. Your data is kept securely and will only be removed when you opt-out.
2.5 Opt-ins: If you add your email address to our newsletter sign up you are giving permission for us to contact you via email only. This information will be stored in our database and at our third-party provider (MailChimp) and if additional information can be matched it will be associated. This information is not passed to any other third party and will be kept until you opt-out of receiving emails. We always try to ensure that marketing communications are tailored and relevant to you, but we will always give you the chance to unsubscribe from any marketing email.
2.6 Website Purchases: By starting an order on our website we will obtain your IP address. As you continue to purchase we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:
Send you information about your account and order
Respond to your requests, including refunds and complaints
Process payments and prevent fraud
Set up your account for our store
Comply with any legal obligations we have, such as calculating taxes
Improve our store offerings
Send you marketing messages, if you choose to receive them
We will also store comments or reviews if you choose to leave them. We may also email you to ask for a review. When you make an order you have the choice to opt-in (see 2.5).
2.7. Security: We retain security logs of every log-in attempt made to the CMS backend. This information — including the end user’s public IP address, username, and the status of his or her attempt — is used to help prevent unauthorized system access and maintain a quality of service for all site visitors. This data is only retained while relevant for security purposes and is automatically removed after 90 days.
When shopping, we keep a record of your email and the cart contents for up to 30 days on our server. This record is kept to repopulate the contents of your cart if you switch devices or needed to come back another day.
3 – YOUR RIGHTS
The GDPR includes the following rights for individuals:
the right to be informed
the right of access
the right to rectification
the right to erasure
the right to restrict processing
the right to data portability
the right to object
the right not to be subject to automated decision-making including profiling
If you want to access the information we hold please email us. We may charge an admin fee of up to £10 to cover our costs.