Flower Delivery Noak Hill Privacy Policy

Introduction

This Privacy Policy explains how Flower Delivery Noak Hill ('we', 'our', or 'us') collects, uses, stores, manages, and protects your personal data in compliance with the UK General Data Protection Regulation (GDPR). This policy applies to all customers placing orders with Flower Delivery Noak Hill from Noak Hill and the surrounding districts. Our approach to data privacy aims for transparency, user control, and maximum security for your personal information.

What Data We Collect

When you make an enquiry or place an order with Flower Delivery Noak Hill, we may collect and process the following types of information:

  • Identifying data: Your name, and if applicable, recipient’s name.
  • Contact information: Delivery address, billing address, telephone number, and order-related email address (where used).
  • Order details: Transaction and payment information (excluding full card details, as payment is processed securely by third parties), flower preferences, card messages, delivery instructions, and purchase history.
  • Technical data: IP addresses, browser type, and information collected via cookies (see our separate cookie policy).

We collect this data to process your orders efficiently, provide customer support, fulfil our contractual obligations, and ensure a high-quality service experience.

Lawful Basis for Processing Your Data

We process your personal data based on different lawful grounds, as defined by the GDPR:

  • Contractual necessity: Most of our data collection and processing is performed to fulfil your order or provide requested services.
  • Legitimate interests: Some processing is necessary to pursue our legitimate business interests, such as improving our services, handling enquiries, or dealing with complaints, provided these are not overridden by your data protection rights.
  • Legal obligations: In some cases, we are required by law to retain or disclose certain information (for example, for tax or fraud prevention purposes).
  • Consent: Where you have given express permission for specific uses of your data, for example marketing communications (which are only sent if opted-in).

How We Use Your Data

We use your personal and order data for the following purposes:

  • Processing your flower delivery order, payment, and ensuring successful delivery.
  • Communicating with you about your order or responding to your enquiries.
  • Customer service purposes, including order amendments, complaints, and support.
  • Maintaining records for accounting, legal, and tax purposes.
  • Improving our website and services, subject to anonymisation and aggregation where possible.

We do not use your information for automated decision-making or profiling that produces legal effects concerning you.

Data Retention

We only retain your personal data for as long as necessary to fulfil the purposes we collected it for, and to meet our regulatory and legal requirements. The typical retention periods are:

  • Order history, contact details, and transaction records: retained for up to seven years for accounting and legal compliance.
  • Customer enquiries: retained for up to two years after last contact.
  • Marketing preferences and consent records: retained until you withdraw your consent or object to processing.

Once the relevant retention period expires, your data is securely deleted or anonymised.

Our Data Processors

To deliver our services efficiently, we may share your information with select third-party processors who assist in managing orders and payments. These currently include:

  • Payment processors: For secure handling of online payments. We do not store your full card details on our own systems.
  • Delivery couriers: To ensure accurate and timely delivery of your flower orders.
  • IT and website service providers: To host our website and maintain system security.

All such third-party processors agree to comply with GDPR requirements, maintain the confidentiality of your data, and process it only for the specific purposes defined by Flower Delivery Noak Hill. We do not sell, trade, or rent your personal data to unaffiliated third parties.

Security of Your Data

We are committed to protecting your personal data and use reasonable physical, technical, and organisational safeguards to prevent unauthorised access, loss, misuse, or alteration of your information. Access to your personal data is limited to employees, agents, contractors, and other third parties who have a business need to know. All such parties are subject to confidentiality obligations.

Your Data Rights

Under the GDPR, you have several rights regarding your personal data. These include:

  • Right of access: You may request a copy of the personal data we hold about you.
  • Right to rectification: You may ask us to correct incomplete or inaccurate information.
  • Right to erasure: Subject to legal limitations, you may request we delete your data (“the right to be forgotten”).
  • Right to restriction: You may request we temporarily suspend processing some or all of your data.
  • Right to object: You may object to our processing where we rely on legitimate interests or direct marketing.
  • Right to data portability: Where applicable, you may request we move, copy, or transfer your data to another provider.
  • Right to withdraw consent: Where we process data on the basis of your consent, you can withdraw this at any time.

If you wish to exercise any of these rights, please contact us using the address or online contact form provided on our website. We may need to verify your identity before acting on your request, and may refuse requests under certain legal circumstances.

Children’s Privacy

Our services are not intended for use by children under the age of 16. We do not knowingly collect personal information from children. If we become aware that a child under 16 has provided personal data, we will take steps to delete this information as soon as possible.

Policy Updates

This Privacy Policy may be updated from time to time to reflect changes in our practices or legal requirements. Any updates will be published transparently on our website. We encourage you to review this policy periodically.

Contact Information

If you have any questions, concerns, or wish to exercise your data protection rights, please reach out via our website’s contact form or by using the correspondence address provided. We take data protection seriously and will respond to all legitimate requests in a timely manner.