Privacy Policy for Flower Delivery Crouch End Customers

Introduction

This Privacy Policy explains how Flower Delivery Crouch End collects, uses, and protects your personal data when you place an order with us. We are committed to safeguarding your privacy and ensuring that your personal data is handled in accordance with the General Data Protection Regulation (GDPR). This policy applies to all customers ordering Flower Delivery Crouch End services in Crouch End and the surrounding districts.

What Personal Data We Collect

When you interact with Flower Delivery Crouch End, we collect the following types of personal data for the purpose of processing your flower delivery orders:

  • Contact Information: For example, your name, delivery address, billing address, and phone number (if provided).
  • Order Information: Items ordered, delivery instructions, and occasion details (for instance, birthday or anniversary messages).
  • Payment Details: Last four digits of your credit/debit card or bank information (where applicable), although we do not store your full payment data. Payment processing is conducted securely via trusted third-party providers.
  • Communication Data: Any correspondence, queries, special requests, or feedback you provide to us.
  • Technical Data: Information such as your IP address, browser type, and device type, collected via necessary website cookies for function and security, if you use our online ordering platform.

We do not knowingly collect data from children under 16 years of age.

Lawful Basis for Processing

Under the GDPR, we rely on one or more lawful bases to process your personal data:

  • Contractual Necessity: We process your data to fulfill your flower delivery order.
  • Legal Obligation: We may process your information to comply with certain laws, such as taxation rules or anti-fraud requirements.
  • Legitimate Interests: We process some data to improve our services, prevent fraud, and communicate necessary information about your order. We carefully balance these interests with your privacy rights.
  • Consent: In cases where you have provided us with your consent (for example, to receive marketing communications), you can withdraw this consent at any time.

How We Use Your Data

Your personal data is used for the following purposes:

  • Processing and fulfilling flower delivery orders.
  • Communicating order status and responding to your queries or requests.
  • Customizing deliveries, such as including personalized messages.
  • Maintaining accurate business and financial records.
  • Improving our services, troubleshooting, and internal analysis.
  • Complying with legal and regulatory obligations.

Data Retention

Your personal data is retained only for as long as necessary to fulfil the purposes for which it was collected and any legal, accounting, or reporting requirements. Generally, we retain order and contact data for no more than 7 years from your last transaction in order to comply with accounting and tax obligations. After this period, your personal data is securely deleted or anonymised.

Processors and Data Sharing

To deliver our services efficiently and securely, Flower Delivery Crouch End uses trusted third-party processors to support functions such as payment processing, IT hosting, and delivery logistics. We only share the minimum necessary personal data with these processors, who are contractually obliged to safeguard your data and may not use it for their own purposes. Examples of processors may include:

  • Payment gateways for secure transaction processing.
  • Courier services for fulfilling deliveries.
  • IT service providers for website hosting and maintenance.

We do not sell or rent your personal data to third parties. Data is not transferred outside the European Economic Area (EEA) without appropriate safeguards.

Your Rights Under GDPR

Under the General Data Protection Regulation, you have rights regarding your personal information. These include:

  • Right of Access: You can request a copy of your data which we hold about you.
  • Right to Rectification: You may ask us to correct any inaccurate or incomplete data.
  • Right to Erasure: You may request deletion of your personal data where there is no overriding legal reason for us to retain it.
  • Right to Restrict Processing: You can ask us to restrict or limit the processing of your personal data in certain circumstances.
  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to Object: You may object to the processing of your data where we process it based on our legitimate interests.
  • Right to Withdraw Consent: Where we rely on your consent (for example, with marketing communications), you may withdraw this at any time.

To exercise your rights, please contact us using the details provided on our website. We will respond to your request within one month in most cases, and will require proof of identity to protect your privacy.

Data Security

We take the security of your data seriously. Appropriate technical and organisational measures are in place to prevent unauthorised access, loss, or misuse of your data. These measures include secure data storage, access restrictions, and staff training in data privacy. In the event of a data breach, we will notify you and the appropriate authorities where legally required.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Any substantial changes will be communicated where appropriate, and an updated version will always be available at our premises and online. Please review this policy regularly to stay informed about how we protect your personal data.

Contact and Complaints

If you have questions about this Privacy Policy or how your data is processed, please refer to the Contact section on our website. If you are not satisfied with our response, you have the right to lodge a complaint with the relevant data protection authority.