Flower Delivery Osidge Privacy Policy

Introduction

This Privacy Policy outlines how Flower Delivery Osidge collects, uses, stores, and protects the personal data of our customers. This policy applies to all individuals placing orders with Flower Delivery Osidge from Osidge and the surrounding districts. We are committed to respecting and protecting your privacy in alignment with the General Data Protection Regulation (GDPR).

What Data We Collect

We collect and process various types of personal data to provide our flower delivery services. The data we collect may include:

  • Contact Information: Name, billing and delivery addresses, phone number.
  • Order Information: Details about flowers, gifts, special instructions, card messages, order notes.
  • Payment Information: Payment method details and transaction information (note: full card details are not stored by us, but processed securely via third-party payment processors).
  • Communication Data: Correspondence with our customer service, feedback, and reviews you provide.
  • Device and Usage Data: IP address, browser type, device information, and usage statistics through cookies and similar technologies, where consented.

Lawful Basis for Processing Personal Data

Flower Delivery Osidge processes personal data in compliance with GDPR, and only where at least one of the following lawful bases applies:

  • Contractual necessity: To process and fulfill your orders, as well as manage payments and deliver products.
  • Legitimate interests: For internal record-keeping, operational analysis, and improving our services, provided these interests do not override your rights and freedoms.
  • Legal obligations: To comply with statutory or regulatory requirements, such as financial record-keeping and tax obligations.
  • Consent: Where required, for sending marketing communications or placing cookies, we rely on your explicit consent, which you may withdraw at any time.

How We Use Your Data

Your personal information is used strictly for the purposes outlined below:

  • To process and fulfill your flower delivery orders, including communicating with you about your order status.
  • To contact you for customer support purposes and respond to your enquiries.
  • To handle payments through secure payment processors.
  • To improve our products, services, and online experience by analyzing usage patterns, with necessary safeguards for privacy.
  • To meet legal and regulatory requirements.
  • With your permission, to send newsletters, offers, or marketing communications, which you can opt out of at any time.

How We Store and Protect Your Data

We store your personal information securely, using appropriate technical and organizational measures to prevent unauthorized access, disclosure, alteration, or destruction.

  • Your data may be stored on secure servers located within the United Kingdom and the European Economic Area (EEA), and is protected by strong access controls.
  • Where necessary, back-ups are used to protect against accidental loss.
  • Card payment details are not stored by us and are processed via secure, PCI-compliant payment gateways.

Data Retention

We retain your personal data only for as long as necessary, in line with the purpose of its collection and applicable laws:

  • Order and transactional data: Kept for up to 7 years to fulfill contractual, accounting, and tax obligations.
  • Customer account details: Retained for as long as your account remains active or until you request deletion, subject to legal exceptions.
  • Marketing data: Held until you withdraw your consent or unsubscribe from communications.
  • Cookies and usage data: Retained according to expiry periods specified in our cookie policy and user preferences.

Data Processors and Third Parties

To deliver our services efficiently, Flower Delivery Osidge engages third-party service providers and data processors. These may include:

  • Payment processors for handling online transactions securely.
  • Delivery services and couriers responsible for fulfilling and delivering orders.
  • IT hosting, web analytics, and customer relationship management providers who help us operate our business and website.

All processors are carefully chosen and bound by contractual obligations to safeguard your personal data, use it only on our instructions, and comply with GDPR. We do not sell or rent your information to third parties. Data is not transferred outside the UK or EEA unless adequate protections, such as Standard Contractual Clauses, are in place.

Your Rights Under GDPR

As a data subject under GDPR, you have the following rights regarding your personal data:

  • Right of Access: You may request details of the personal data we hold about you.
  • Right to Rectification: You can request correction or update of inaccurate or incomplete information.
  • Right to Erasure: You may request deletion of your personal data where legally permissible.
  • Right to Restrict Processing: You may request a restriction on processing under certain circumstances.
  • Right to Data Portability: You can request a copy of your personal data in a machine-readable format.
  • Right to Object: You can object to processing based on legitimate interests or direct marketing.
  • Right to Withdraw Consent: Where consent is relied upon, you may withdraw it at any time without prejudice.

To exercise these rights, please contact us using the contact methods provided on our website. We will respond within the timeframes outlined in GDPR.

Children’s Data

Our services are not intended for children under the age of 16. We do not knowingly collect or process personal data from children without appropriate consent from a parent or guardian.

Changes to This Privacy Policy

We reserve the right to update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The latest version will always be accessible on our website, and significant changes will be communicated to customers where appropriate.

Contact and Queries

If you have further questions regarding this Privacy Policy or your data privacy, please reach out via the contact page on our website. We value your privacy and are committed to addressing concerns in a timely and transparent manner.