Flower Delivery Marks Gate Data Protection Policy

Introduction

This Privacy Policy explains how Flower Delivery Marks Gate ("we", "our", "us") collects, uses, and safeguards your personal information when you place orders from Marks Gate and its surrounding districts. Your privacy is important to us, and we are committed to complying with the General Data Protection Regulation (GDPR) and all applicable privacy laws.

Scope of This Policy

This policy applies to all customers who place orders with Flower Delivery Marks Gate for delivery or collection within Marks Gate and surrounding districts. By placing an order, you agree to the collection and processing of your personal data as described in this policy.

Personal Data We Collect

We collect, store, and use a variety of personal data necessary to process and deliver your flower orders. The categories of data we may collect include:

  • Identity Data: Full name, title, and if applicable, the name of the bouquet recipient.
  • Contact Data: Delivery addresses, billing addresses, mobile or other contact telephone numbers.
  • Order Data: Details about the products you have ordered, order numbers, order history, and purchase preferences.
  • Payment Data: Details required to process payments (e.g., payment card partial details and authorisations handled by our payment processors).
  • Correspondence: Communications sent to or received from you regarding queries, feedback, complaints, or support.
  • Technical Data: Information about device, browser, IP address, and usage data collected when you visit our website or interact with our online service.

Lawful Basis for Processing Personal Data

Under the GDPR, we must have a lawful basis to process your data. Flower Delivery Marks Gate relies on one or more of the following justifications:

  • Contractual Necessity: Most data processing activities are essential for fulfilling our contract with you, such as processing your order and arranging delivery.
  • Legal Obligation: Some data may be retained to comply with legal requirements, for example, tax or accounting obligations.
  • Legitimate Interests: We may use your data to review and improve our service, prevent fraud, protect our business, and ensure safety, provided that these interests do not override your rights.
  • Consent: If required by law, or for certain marketing activities, we will obtain your explicit consent before using your data for such specific purposes. You have the right to withdraw consent at any time.

How We Use Your Information

Your personal information is used only as necessary for the following purposes:

  • To process, confirm, and deliver your flower order.
  • To keep you updated on the status of your order.
  • To communicate with you in response to queries or issues.
  • To comply with legal and regulatory obligations.
  • To maintain internal records for auditing and service improvement.
  • For the detection and prevention of fraud or misuse.
  • For occasional marketing communications, if you have agreed to receive them.

Personal Data Retention

We retain your personal data only for as long as it is necessary to fulfil the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements. Typically:

  • Core order, transaction, and delivery data are kept for up to seven years to comply with tax and legal obligations.
  • Marketing information is retained until you withdraw your consent or unsubscribe from marketing communications.
  • Technical data and user activity logs are maintained for as long as required to ensure the security and functionality of our services.

When your data is no longer required, it is securely deleted or anonymised.

Use of Data Processors and Third Parties

To provide our services efficiently, we work with selected third-party service providers ("processors"), such as:

  • Payment processing platforms for secure handling of transactions.
  • IT hosting and support services to maintain our website and order system.
  • Delivery and courier partners to ensure timely delivery of orders.
  • Analytics providers to help us evaluate and improve our service.

All processors are contracted to act only on our instructions, process data securely, and comply with the GDPR. We do not sell or share your data for unrelated commercial purposes.

International Transfers of Data

In general, your personal data is processed within the United Kingdom or the European Economic Area (EEA). If data needs to be processed outside these regions, we ensure it is protected by ensuring equivalent safeguards, such as standard contractual clauses approved by the European Commission or relevant authorities.

How We Protect Your Data

We maintain appropriate technical and organisational measures to secure your personal data against accidental loss, unauthorised access, misuse, alteration, or disclosure. Our measures include encryption, access controls, staff training, and regular review of our security policies and procedures.

Your Rights Under GDPR

Under the GDPR, you have several important rights in relation to your personal data, including:

  • Access: Request a copy of your personal data.
  • Rectification: Request corrections to any inaccurate or incomplete information.
  • Erasure: Request deletion of your data where there is no lawful reason for us to retain it.
  • Restriction: Ask us to restrict the processing of your data in certain circumstances.
  • Objection: Object to our processing activities based on legitimate interests or direct marketing.
  • Portability: Request transfer of your data to another service provider, where technically possible.
  • Withdraw Consent: Where you have given consent, you have the right to withdraw it at any time.

To exercise your rights, please contact us using the details provided on our website. We will respond in accordance with GDPR requirements.

Updates to This Policy

We may periodically update this Privacy Policy to reflect changes in law, technology, or our business practices. Revised policies will be published on our website, and the date of the latest version will be indicated at the top.

Contact and Queries

If you have questions about this Privacy Policy or how your personal data is handled, please refer to the contact section on our website to reach us. We will be happy to assist you and address any concerns regarding your privacy.