We may change this policy from time to time by updating this page and so you should check it regularly to ensure that you are happy with any changes.
What data we collect and why we collect it
When you visit our website, we’ll automatically collect certain information about the device you are using to access it. This will include information about the website browser you are using and the IP address of your internet connection. We may also identify your device with a unique, randomly generated, identifier.
As you browse our website we’ll continue to collect information about the website pages that you look at during your visit, how long you visit them, and what links you click on each page. We may also record what keywords you used to locate our website and what third-party website referred you to our website.
The information we collect about you is referred to as Device Information. It’s not personally identifiable to you (for example, we don’t collect or associate your name or address with this Device Information) and it’s not stored on our systems for any longer than we need to store it in order to allow you to use our website for the purposes in which it is intended.
We collect Device Information from you using Cookies. These are small data files that are placed on the browser you use, on your device, to visit the website. Cookies often include an anonymous and unique identifier (so we know it’s your device).
Certain cookies are placed on our website in order to make it work. For example, when you add items to the shopping basket/cart we need to store this information on a cookie. Where cookies we place on your computer are:
– Not identifiable to you as a living person, and
– Only placed in order to fulfil the inherent functions of an ecommerce website
we won’t ask for your permission before we place them.
We may, from time to time, also collect information about your actions on the website and record those actions in log files. This data will include your IP address and may include the device that you are using, the browser that you are using, your internet service provider and be attached to date and time stamps. We’ll only include this information for as long as necessary.
Contact forms and Account Cookies
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
Personal information we collect when you make a purchase or register for an Account.
When you use our website, call or email us to make a purchase, or when you register for an account on our website (without making a purchase) you may be asked to provide certain personal information about you.
Such information we collect may include:
– Your name
– Your address
– Your contact information (like your telephone number or email address)
– Your date of birth
When you make a purchase on our website you may also be asked to enter your credit or debit card details. You will be redirected to a ‘payment gateway’ website to enter your card details. Retail Merchant Services is our payment gateway provider.
If you make payment by telephone we key your card information directly into the payment terminal, provided by Barclaycard.
Your full credit or debit card details are never stored on any databases we hold. You may be asked if you want to ‘store’ your purchase information for faster checkout at a later date, where you do store this information the full card information is never stored on any databases we hold. To help you identify stored cards, we may store the last 4 digits of the card, the type of card (e.g. Visa or MasterCard) and the expiry date.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands such as Visa, MasterCard and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
Where you wish, you can always delete a stored card within your customer account.
How we use personal and device information
We use Personal Information that we collect to fulfil the order that you place and to communicate with you as one of our customers. We may also use this information to screen for potential risk and fraud.
We use Device Information we collect in order to help us screen for potential risk and fraud, to improve and optimise our website (by generating data about how our customers browse and interact with our website) and to analyse the success of our marketing and other advertising campaigns.
With your consent, we may, from time to time, provide you with information or advertising relating to the products and services that we provide. You can unsubscribe at anytime
Who we share your data with
We do not share your personal data with any third party. We will only share your personal information and device information in order to comply with applicable laws and regulations or to respond to any lawful request for information we receive, or to otherwise protect our rights.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
By placing an order and agreeing to our terms and conditions you consent to the use of your personal data as laid out in this policy.
Where you are an existing customer and have previously subscribed to our newsletter you will continue to receive marketing information that is relevant to the products and services we offer. You can unsubscribe at anytime.
If you are a new customer you will only receive marketing material from us if you tick the ‘Subscribe to Newsletter’ box
What rights you have over your data
In accordance with GDPR Compliance , if you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. You may do this by using the Contact Form or emailing us on firstname.lastname@example.org
If you have any questions or concerns about how we handle your data please do not hesitate to get in touch.