Our core beliefs regarding user privacy and data protection
- User privacy and data protection are human rights
- We have a duty of care to the people contained within our data
- Data is a liability, it should only be collected and processed when absolutely necessary
- We loathe spam as much as you do!
- We will never sell, rent or otherwise distribute or make public your personal information
Relevant legislationAlong with our business and internal computer systems, this website is designed to comply with the following national and international legislation with regards to data protection and user privacy:
- UK Data Protection Act 1988 (DPA)
- EU Data Protection Directive 1995 (DPD)
- EU General Data Protection Regulation 2018 (GDPR)
What we collectWe may collect the following information:
- contact information including email address
- demographic information such as postcode, preferences and interests
- other information relevant to customer surveys and/or offers
What we do with the information we gatherWe require this information to understand your needs and provide you with a better service, and in particular for the following reasons:
- Internal record keeping.
- We may use the information to improve our products and services.
- We may periodically send promotional emails about new products, special offers or other information which we think you may find interesting using the email address which you have provided.
- From time to time, we may also use your information to contact you for market research purposes. We may contact you by email, phone, fax or mail. We may use the information to customise the website according to your interests.
SecurityWe are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.
Links to other websitesOur website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
Controlling your personal informationYou may choose to restrict the collection or use of your personal information in the following ways:
- whenever you are asked to fill in a form on the website, look for the box that you can click to indicate that you do not want the information to be used by anybody for direct marketing purposes
- whenever you are asked to fill in a form on the website, your information will be forwarded to our email system for processing.
- if you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to or emailing us at email@example.com
- whenever you place an order from our website, your personal data will be passed through our sales order processing system (Linnworks).
Email NewsletterIf you choose to join our email newsletter, the email address that you submit to us will be forwarded to our email marketing system (MailChimp) that provides us with email marketing services. We consider our email marketing system to be a third party data processor. Your email address will remain within our email marketing database for as long as we continue to use their services for email marketing or until you specifically request removal from the list. You can do this by unsubscribing using the unsubscribe links contained in any email newsletters that we send you or email us firstname.lastname@example.org. When requesting removal via email, please send your email to us using the email account that is subscribed to the mailing list. If you are under 16 years of age you MUST obtain parental consent before joining our email newsletter. While your email address remains within our email marketing database, you will receive periodic newsletter-style emails from us.
Our third party data processorsWe use a number of third parties to process personal data on our behalf. These third parties have been carefully chosen and all of them comply with the legislation listed above. Some of these third parties are based in the USA and are EU-U.S Privacy Shield compliant.
Data BreachesWe will report any unlawful data breach of this website’s database or the database(s) of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.