Flowers Hampton Hill Privacy Policy

Introduction

This Privacy Policy explains how Flowers Hampton Hill collects, uses, stores, and protects your personal information in compliance with the UK General Data Protection Regulation (GDPR). It is applicable to all customers who place orders with Flowers Hampton Hill in Hampton Hill and the surrounding districts. By ordering from us, you confirm that you have read and understood this policy and consent to our handling of your data as described herein.

What Personal Data We Collect

When you place an order or interact with Flowers Hampton Hill, we may collect the following categories of personal data:

  • Identification Information: Name, surname, and, where necessary, company name (for business orders).
  • Contact Details: Delivery address, billing address, telephone number, and (where applicable) email address.
  • Order Details: Product selections, order notes or special instructions, chosen delivery date and time, and order tracking information.
  • Payment Information: Payment method and transaction details (note: payment card details are processed securely by approved payment processors and are not stored by Flowers Hampton Hill).
  • Communication Records: Correspondence or feedback sent to us regarding orders, customer service inquiries, and survey responses, if applicable.
  • Technical Data: IP address, browsing device, and interaction logs on our website, collected via essential cookies for order processing and security purposes.

Lawful Basis for Processing Personal Data

We process your personal data only when we have a legal basis for doing so under the GDPR. The main grounds upon which we process your data are:

  • Performance of a Contract: Most data is processed to fulfill our contract with you to deliver flower orders and provide customer service (Article 6(1)(b) GDPR).
  • Legal Obligation: Certain data may be processed to comply with legal and regulatory requirements, such as record-keeping for tax or financial purposes (Article 6(1)(c) GDPR).
  • Legitimate Interests: We may process personal data when it is necessary for our legitimate business interests, such as improving our service, preventing fraud, or ensuring security, provided your fundamental rights do not override those interests (Article 6(1)(f) GDPR).
  • Consent: Where required, for example, for non-essential marketing communications, we will process your data only with your explicit consent (Article 6(1)(a) GDPR). You have the right to withdraw such consent at any time.

How Your Data is Used

Your personal data may be used for the following purposes:

  • Processing and fulfilling your flower orders, including delivery and customer communications.
  • Managing payments, refunds, and accounting records.
  • Responding to customer queries or feedback.
  • Improving and personalising our services to enhance your experience.
  • Ensuring the security and integrity of our ordering system.
  • Complying with legal and regulatory obligations.
  • With your consent, sending you updates or promotional information about Flowers Hampton Hill.

Data Retention

We only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for satisfying any legal, accounting, or reporting requirements. The specific retention periods depend on the nature and category of the data:

  • Order Information: Retained for up to 7 years following your last purchase to meet legal requirements and facilitate repeat orders.
  • Communication Records: Retained for up to 2 years after resolution of your inquiry or feedback.
  • Marketing Data: Retained until you withdraw your consent or for 2 years from your last engagement, whichever is sooner.
  • Technical Data: Retained for up to 1 year, unless required for security or legal reasons.

After the relevant retention period, your data is securely deleted or anonymised.

Third-Party Processors

In order to deliver your orders efficiently and securely, we may share necessary data with trusted external service providers acting as data processors. These may include:

  • Payment processing providers (for handling secure payments).
  • Delivery companies or couriers (for fulfilling delivery instructions).
  • IT support, hosting, and website maintenance services.
  • Professional advisors, as required for accounting and legal services.

All our processors are contractually bound to comply with data protection law and act only on our instructions. They are not permitted to use your data for their own purposes.

Your Rights Under GDPR

As a data subject, you have the following rights under GDPR:

  • Right to Access: Request a copy of your personal data held by us.
  • Right to Rectification: Request correction of inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your data in certain circumstances ("the right to be forgotten").
  • Right to Restrict Processing: Request limitation on the use of your data, under specific conditions.
  • Right to Data Portability: Request your data in a structured, commonly used format for transmission to another controller.
  • Right to Object: Object to processing based on our legitimate interests or for direct marketing purposes.
  • Right to Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
  • Right to Lodge a Complaint: You have the right to complain to a supervisory authority if you believe your data rights have been infringed.

If you wish to exercise any of these rights or have questions regarding your data, you may contact us using the details provided when placing your order or by referring to our website contact section.

Protecting Your Data

We take the security of your information seriously. Appropriate technical and organisational measures are in place to protect your personal data from loss, misuse, unauthorised access, disclosure, alteration, or destruction. Access to your data is restricted to authorised personnel only, and all data is stored securely within the United Kingdom unless otherwise required by law.

Policy Updates

We may update this Privacy Policy to reflect changes in our practices or due to legal or regulatory developments. We recommend that you review this policy periodically to remain informed about how we use your personal data. The latest version will always be available on our website and will indicate the effective date of any changes.

Applicability of This Policy

This Privacy Policy applies exclusively to customers who place orders with Flowers Hampton Hill and reside in or arrange delivery to Hampton Hill and the surrounding districts. If you purchase our products or interact with us from outside these areas, other terms or policies may apply.