Flowers Marks Gate GDPR Privacy Policy

Introduction

At Flowers Marks Gate, we are committed to respecting and protecting your privacy. This Privacy Policy describes how we collect, process, protect, and store your personal data when you place orders with us from Marks Gate and the surrounding districts. Compliance with the General Data Protection Regulation (GDPR) is fundamental to our approach to data privacy. We encourage you to read this policy in full to understand your rights and our obligations.

Who This Policy Applies To

This privacy policy applies to all individuals placing orders with Flowers Marks Gate in Marks Gate and surrounding districts. By submitting your information to us, you acknowledge receipt of this notice and accept the terms described herein.

What Data We Collect

Flowers Marks Gate collects personal information necessary for fulfilling your orders and improving our services. The types of data we collect may include:

  • Personal Identification Information: such as your name, address, phone number, and postcode.
  • Order Details: including delivery recipient’s name, delivery address, and any messages or instructions you provide.
  • Payment Information: such as partial card details and payment confirmation (we do not store complete payment information; it is processed securely via our payment provider).
  • Communication Records: details of your communication with us, such as feedback or queries.
  • Device and Usage Data: like IP address, browser type, and visit history, collected via our website cookies for analytics and website security.

Lawful Basis for Processing

Under the GDPR, we can only process your personal data where there is a lawful basis for doing so. Flowers Marks Gate processes data on the following bases:

  • Contractual Necessity: Collecting and using your data to fulfill your order and deliver our products and services.
  • Consent: In circumstances where we ask for and you provide explicit consent (e.g., receiving marketing updates), you have the right to withdraw your consent at any time.
  • Legitimate Interests: Using your data to enhance service quality, maintain security, or communicate relevant updates (where it does not override your fundamental rights).
  • Legal Obligation: Processing your data as required by law, such as for taxation purposes or in response to lawful requests from regulatory bodies.

How We Use Your Data

Your personal data is used strictly for the following purposes:

  • To process and deliver your flower orders efficiently.
  • To communicate with you regarding your order status and for customer support.
  • To handle payments and prevent fraudulent transactions.
  • To comply with legal or regulatory requirements where applicable.
  • To improve our products and services based on customer interactions and feedback.

Data Retention: How Long We Keep Your Data

We retain your personal data only as long as necessary for the purposes for which it was collected, including legal, accounting, or reporting requirements. Typically, order and transaction data is stored for up to seven years to comply with our legal and financial obligations. Non-essential information will be reviewed and deleted at regular intervals, or upon your request, as permitted by law.

Third-Party Processors

At times, it may be necessary to share certain information with trusted third-party processors who assist us in operating our service and fulfilling your orders. These may include:

  • Payment Processing Providers: who manage your payment transactions securely.
  • Delivery Partners: who deliver your orders to the specified address.
  • IT and Software Service Providers: who support our website’s functionality and security.

All third-party processors are contractually obliged to process your data securely and only for specified purposes, in compliance with this policy and the requirements of the GDPR. We do not allow third parties to use your personal data for their own purposes.

How We Protect Your Data

We implement a range of technical and organizational measures to safeguard your data against loss, misuse, unauthorized access, disclosure, alteration, or destruction. This includes secure servers, encryption of sensitive information during transmission, access controls, and staff training.

Your Rights Under GDPR

As a data subject under the GDPR, you have several rights in respect of your personal data held by us:

  • Right to Access: You may request access to the personal data we hold about you.
  • Right to Rectification: You may request correction of inaccurate or incomplete data.
  • Right to Erasure: You have the right to request deletion of your personal data under certain conditions ("right to be forgotten").
  • Right to Restrict Processing: Ask us to restrict how we process your data in certain circumstances.
  • Right to Data Portability: You can request that we transfer your data to you or to another provider.
  • Right to Object: You may object to our processing of your data, particularly for marketing purposes.
  • Right to Withdraw Consent: Where processing is based on your consent, you can withdraw it at any time without affecting the lawfulness of processing before its withdrawal.

Exercising Your Rights and Contact

If you wish to exercise any of the rights described above, or have questions about how your personal information is handled, you may contact us via the means provided on our website. We may require verification of your identity before fulfilling your request for your protection. We aim to respond to all requests within one month as required by law.

Policy Updates

This Privacy Policy is reviewed regularly and may be updated from time to time to ensure ongoing compliance with legal requirements and evolving business needs. Any significant changes will be publicized and the latest version will always be available for your review.

Conclusion

Protecting your privacy is important to Flowers Marks Gate. By providing us with your information, you can be assured that it will be used only in line with this policy and the rights and obligations set out under GDPR. For the most current version of our Privacy Policy and full details, please refer to our latest online policy document.