Privacy Policy for Flower Delivery Radlett Customers

Introduction

At Flower Delivery Radlett, we respect the privacy and data protection rights of all our customers. This Privacy Policy explains how we collect, use, store, and protect your personal information in compliance with the General Data Protection Regulation (GDPR), as well as your rights regarding that information. This policy applies to all customers placing orders with Flower Delivery Radlett from Radlett and surrounding districts.

The Data We Collect

We collect and process personal data only where necessary for the conduct of our legitimate business activities and the fulfillment of our services. Depending on your interactions with us, we may collect the following types of information:

  • Contact Information: Name, delivery address, billing address, phone number, and any other details required to process your flower delivery order.
  • Order Details: Purchase information, including flower choices, messages for delivery, delivery dates, and recipient details.
  • Payment Information: Payment card details or other payment data. (This information may be processed through secure, compliant payment processors and is not stored in our systems.)
  • Communication History: Records of your communications with us (such as queries or complaints).
  • Website Usage Data: Technical data such as IP addresses, browser type, and browsing behaviour on our website, collected via cookies and similar technologies, where applicable.

Lawful Basis for Processing Your Data

We process your personal data on the following lawful grounds as provided in Article 6 of the GDPR:

  • Contractual Necessity: To process and deliver your order, communicate with you, and meet our contractual obligations.
  • Legal Obligations: To comply with local or national laws, such as record-keeping and tax obligations.
  • Legitimate Interests: To improve our services, prevent fraud, and for the general administration and operation of our business, where such interests do not override your data protection rights.
  • Consent: For marketing communications and use of non-essential cookies, where explicit consent has been sought and given.

How We Use Your Personal Data

Your personal data is used for the following main purposes:

  • Processing and fulfilling flower delivery orders.
  • Communicating with you about your order or delivery.
  • Processing payments securely via third-party processors.
  • Responding to your enquiries and customer service requests.
  • Complying with applicable legal and regulatory requirements.
  • Enhancing your experience on our website and improving our services.
  • Sending direct marketing or promotional messages, only when you have explicitly consented to receive them.

Data Processors and Sharing

We may share your information with carefully selected third parties who act as our data processors. These processors help us in delivering our services efficiently. Our main processors include:

  • Payment Providers: Securely process card and online payments. We do not store full card details on our own servers.
  • Delivery Partners: Assist in fulfilling and delivering your order to the correct address.
  • IT and Web Service Providers: Assist in website hosting, email communications, and cloud storage.

All third-party processors are bound by appropriate contractual obligations to safeguard your data, use it only as instructed, and comply with applicable data protection laws. We do not sell or rent your data to third parties for marketing or other purposes.

International Data Transfers

We aim to process all personal data within the UK and the European Economic Area (EEA). If it becomes necessary to transfer your data outside these areas, we will ensure such transfers are performed in compliance with GDPR requirements, using legally approved mechanisms, such as Standard Contractual Clauses (SCCs).

Data Retention

Your personal data will be retained for no longer than is necessary for the purposes for which it was collected. Normally, this will mean retaining your data for as long as you are a customer or as long as required for legal and regulatory purposes, such as tax documentation. After this period, your data will be securely deleted or anonymised.

Security Measures

We implement appropriate technical and organisational measures to protect your personal data from loss, misuse, unauthorised access, disclosure, alteration, or destruction. These include secure servers, encrypted payment gateways, and restricted access to personal information.

Your Rights Under the GDPR

Under the GDPR, you have several key rights concerning your personal data. These include:

  • Right to Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of any inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your personal data in certain circumstances.
  • Right to Restrict Processing: Request restriction of processing where you have contested the accuracy or legality of the data.
  • Right to Data Portability: Receive personal data you have provided to us in a structured, commonly used format and transfer it to another controller where technically feasible.
  • Right to Object: Object to processing that is based on our legitimate interests or for direct marketing.
  • Right to Withdraw Consent: Where we rely on consent for processing, you may withdraw your consent at any time without affecting the lawfulness of processing prior to withdrawal.

To exercise any of your rights or make a complaint about our data processing practices, please contact us using the contact details provided on our website or as otherwise communicated in your order correspondence.

Children's Data

We do not knowingly collect or process data about individuals under the age of 16 without parental consent. If you believe a child has provided us with personal information without parental consent, please contact us, and we will take steps to remove the data.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. Any changes will be communicated clearly on our website, with the date of the latest update indicated at the top of the policy. We encourage you to review this policy periodically.

Contact Us

If you have questions about this Privacy Policy or how your data is handled by Flower Delivery Radlett, please refer to our website for information on how to reach us. We are committed to protecting your privacy and will address any queries or concerns promptly and transparently.