Privacy Policy: Flower Delivery Stamford Hill

Introduction

The privacy of our customers is of paramount importance to Flower Delivery Stamford Hill. This Privacy Policy explains how we collect, use, share, and protect your personal data when you place orders for flower deliveries in Stamford Hill and the surrounding districts. We are committed to ensuring data processing occurs in compliance with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018.

Scope of This Policy

This Privacy Policy applies to all customers who place orders with Flower Delivery Stamford Hill, whether directly on our website, by telephone, or through other ordering methods, for deliveries within Stamford Hill and the surrounding districts.

What Data We Collect

To provide our flower delivery services, we may collect and process the following categories of personal data:

  • Contact Information: Your name, address, telephone number, and email address (if provided).
  • Order Details: Information regarding the flowers, products, and related services you have ordered, including recipient details if ordering for a third party (their name and delivery address).
  • Payment Information: Transaction details necessary to process payments (such as billing name and address), though payment card details are handled securely by external payment processors and not stored by us.
  • Communication Records: Records of your communications with us, including enquiries and customer service interactions.
  • Website Usage Data: Information automatically collected when you interact with our website, including IP address, browser type, device information, and browsing activity via cookies and similar technologies.

Lawful Bases for Processing

We process your personal data based on the following legal grounds under Article 6(1) of the GDPR:

  • Contractual Necessity: To process and fulfil your orders, deliver products to you or your chosen recipients, manage payments, and provide customer support regarding your order.
  • Legal Obligations: To comply with applicable legal and regulatory requirements, including tax and accounting obligations.
  • Legitimate Interests: To improve our products and services, manage our business operations, monitor for fraud, and address customer queries.
  • Consent: When you have explicitly provided consent, for example, when opting-in to receive marketing communications. You can withdraw consent at any time.

How We Use Your Data

Your personal data is used for the following purposes:

  • To process, prepare, and deliver your flower orders
  • To communicate with you regarding your order or products and services
  • To receive and respond to your queries or complaints
  • To carry out data analysis to improve our services and customer experience
  • For accounting, auditing, and other internal reporting needs
  • To comply with any applicable laws and regulations

Data Sharing and Processors

We do not sell or rent your personal data to third parties. However, your data may be shared with trusted third-party processors who provide vital services as part of our flower delivery operations, strictly for the purposes outlined in this policy. These may include:

  • Payment Processors: To securely process payments for your orders.
  • IT Service Providers: Who host our website, support our customer management systems, and ensure the security and functionality of our systems.
  • Logistics Partners: Those responsible for delivering your orders, who require recipient contact details and addresses.
  • Analytics Providers: To support analysis and reporting of website usage.

All third-party processors are required to comply with GDPR standards and act only under our instruction for the purposes of data processing. Data may be transferred outside of the UK or EEA only where adequate safeguards are in place, as required by law.

Data Retention

We will retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, or reporting obligations. Typically, data relating to transactions is kept for a minimum of six years in line with tax and financial record-keeping requirements. Customer account and order details will be securely deleted or anonymised when no longer needed.

Your Data Protection Rights

Under GDPR and applicable UK data protection law, you have the following rights concerning your personal data:

  • Access: The right to request a copy of the personal data we hold about you.
  • Rectification: The right to request correction of inaccurate or incomplete data.
  • Erasure: The right to request deletion of your personal data when there is no lawful basis for continued processing.
  • Restriction: The right to request that we restrict the processing of your personal data in certain situations.
  • Portability: The right to request transfer of your data to another provider (where applicable).
  • Objection: The right to object to the processing of your data where we rely on legitimate interests, or for direct marketing purposes.
  • Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of processing prior to withdrawal.

To exercise your rights, please contact us using the details provided on our website. We will respond to all valid requests within one month unless there are exceptional circumstances.

Cookies and Online Tracking

We use cookies and similar tracking technologies to operate our website efficiently, enhance your user experience, and analyse website traffic. You can manage your cookie preferences through your browser settings. For more information about cookies, please refer to our Cookies Policy.

Data Security

We take appropriate technical and organisational measures to protect your personal data against loss, misuse, unauthorised access, disclosure, or destruction. These include regular security reviews, staff training, encryption where possible, and secure storage of data.

Changes to This Policy

This privacy policy may be updated periodically to reflect changes in our practices or legal / regulatory requirements. The most current version will always be available on our website, with changes taking effect as of the revision date shown at the top of the policy.

Contact and Complaints

If you have any questions or concerns regarding this Privacy Policy or our processing of your personal data, please use the contact details provided on our website. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data has not been handled in accordance with the law.