Flowers Sipson Privacy Policy
Introduction
This Privacy Policy explains how Flowers Sipson collects, uses, and manages your personal data when you place orders within Sipson and the surrounding districts. We are committed to safeguarding your information in accordance with the General Data Protection Regulation (GDPR) and any other applicable privacy laws. This Policy applies to all customers who order products or use our services within the specified regions.
Who We Are
Flowers Sipson provides floral arrangements and related services to customers in Sipson and nearby areas. For the purposes of the GDPR, we act as the Data Controller of your personal data when you place an order with us.
What Personal Data We Collect
To process your orders and provide a seamless service, we may collect the following data:
- Contact Information: Your name, delivery address, and contact details required to fulfill your order.
- Order Details: Information regarding products purchased, delivery notes, and preferences.
- Payment Information: Data necessary to process payments (handled via secure third-party processors; we do not store your full payment card details).
- Transaction Records: Date and time of purchases, order history, and delivery records.
- Communication Data: Information related to communications with us (such as order confirmations, queries, or complaints).
We do not collect any special categories of personal data (such as race, religion, or health information) unless you provide it voluntarily as part of a request or message with your order.
Lawful Basis for Processing
Our processing of your personal data is based on the following lawful grounds:
- Contractual Necessity: We process your information to fulfill contracts with you, such as taking and delivering your flower orders.
- Legal Obligation: In some instances, we must process personal data to comply with legal or tax requirements.
- Legitimate Interests: For the purposes of improving our services, handling customer support, and ensuring the efficient functioning of our business. These interests do not override your fundamental rights.
- Consent: Where required, such as for direct marketing outside of transactional communications, we will seek your explicit consent.
How We Use Your Data
We use your personal information for the following purposes:
- Processing and delivering your flower orders.
- Communicating order confirmations, delivery details, and customer support responses.
- Processing payments and refunds (via secure payment processors).
- Maintaining records for accounting, auditing, and legal compliance.
- Enhancing our products, services, and customer experience.
- Sending marketing messages when you have provided consent (you may opt out at any time).
How Your Data is Stored and Retained
Your data is securely stored in accordance with industry standards and regularly reviewed. We retain personal information only for as long as necessary for the purposes set out in this policy, including order completion, legal or accounting requirements, or as otherwise communicated when you engage with us. Typically, transaction records are retained for up to seven years for tax and accounting purposes, after which they are securely deleted or anonymized.
Our Data Processors
To provide the best service possible, we may share your data with trusted partners or third-party processors, such as:
- Payment Service Providers: To securely process payments by card or other methods (we never store your full payment details ourselves).
- IT and Hosting Providers: To store and secure your information in databases and ensure our systems function.
- Delivery Partners: Where necessary to fulfill and track your order deliveries.
All third-party processors are required to adhere to our standards for data protection and to process your data strictly on our instructions. We do not sell your data to third parties.
Your Rights Under GDPR
As a customer within Sipson or the surrounding districts, you have several important data protection rights:
- Access: You may request details of the personal data we hold about you.
- Rectification: Correct inaccurate or incomplete information we have about you.
- Erasure: Ask for your personal data to be deleted where it is no longer necessary for us to keep it.
- Restriction: Request limits on how we process your data under certain circumstances.
- Portability: Receive your personal data in a structured, machine-readable format for transfer to another provider.
- Objection: Object to specific uses of your data, such as for direct marketing.
- Withdraw Consent: Where consent is the lawful basis for processing, you may withdraw this at any time.
To exercise any of your rights, please contact us as described in the section below.
Keeping Your Data Secure
We employ technical and organizational measures to ensure your personal data is protected from unauthorized access, loss, alteration, or disclosure. This includes encrypted payment gateways, secure web hosting, access controls, and staff training in data privacy. While we strive to protect your information, no method of online transmission or storage is fully secure; we encourage you to take suitable precautions with your own data.
Policy Updates
This Privacy Policy may be reviewed and updated from time to time to reflect changes in our operations or legal obligations. The effective date will be stated at the beginning of the document. We encourage you to review this policy periodically to stay informed about how we manage your personal data.
Contacting Us
If you have any questions about this Privacy Policy, wish to exercise your privacy rights, or have concerns about how your data is managed by Flowers Sipson, please contact us using the methods provided on our website or at our place of business. We are committed to responding to all valid requests promptly and in accordance with applicable laws.
