Flowers Somers Town Privacy Policy

Introduction

This Privacy Policy outlines how Flowers Somers Town collects, uses, and protects personal data provided by individuals placing orders from Somers Town and surrounding districts. We are committed to ensuring your privacy is protected and handle all information in compliance with the General Data Protection Regulation (GDPR).

Scope of This Policy

This Privacy Policy applies to data collected from all customers who place orders with Flowers Somers Town for delivery or collection within Somers Town and neighbouring areas. By using our services, you acknowledge your understanding and agreement with the practices described herein.

What Data We Collect

When you engage with Flowers Somers Town, we may collect and process the following categories of personal data:

  • Identification details: Name
  • Contact information: Address (delivery and/or billing), phone number
  • Order details: Type of flowers, delivery instructions, recipient information
  • Payment information: Card or payment transaction references (note: we do not store your full card details; these are handled securely by our payment processor)
  • Communication records: Emails or records of customer service interactions relating to orders
  • Technical information: IP address, browser type, and order-related device information (for security and analytics)

Lawful Bases for Processing Your Data

Under the GDPR, we must have a legal reason to collect and use your data. The following lawful bases are most relevant to our business:

  • Contractual necessity: To process and fulfil your order, including delivery and payment, we need certain information. Without this data, we cannot provide you with our service.
  • Legal obligations: We may retain and process your data to comply with accounting, tax, or other legal requirements.
  • Legitimate interests: We may use your data to improve our services, conduct business analysis, and ensure security, provided these interests do not override your rights and freedoms.
  • Consent: Where required (e.g., for marketing), we will only use your information if you have given us your explicit consent. You may withdraw consent at any time.

How We Use Your Data

We process your personal data for the following purposes:

  • To confirm, process, and deliver your flower order
  • To communicate order updates or queries
  • To respond to customer enquiries or complaints
  • For invoicing, payment processing, or refunds
  • For record keeping to comply with laws
  • To analyse trends to improve our offerings
  • For internal auditing and verification
  • For fraud prevention and data security

Third-Party Processors

Occasionally, we use trusted third parties to help us deliver our service. Third-party processors may have access to some personal data but only as strictly necessary and always under contractual obligations to comply with applicable data protection law and maintain confidentiality. Examples include:

  • Payment Processors: To handle secure card transactions
  • Delivery Partners: To ensure your flower orders reach the correct destination
  • IT Service Providers: To host and support our online ordering system

We do not sell or rent your personal information to third parties. Your data will not be transferred outside the European Economic Area without ensuring appropriate safeguards are in place.

Data Retention

Your personal data is retained only as long as necessary for the purposes for which it was collected, including to fulfil legal, accounting, or reporting requirements. Generally, we keep order records for a standard period (typically six years) to comply with legal obligations. Marketing data (where consented) is stored until you unsubscribe or request deletion.

How We Protect Your Data

We implement a range of technical and organisational measures to safeguard your personal information, including secure storage, limit of access to authorised staff, and encryption of sensitive data when required. We regularly review our policies and procedures to ensure their effectiveness.

Your Rights Under GDPR

Under the GDPR, you have rights regarding your personal data. These include:

  • Right of access: Request a copy of the personal data we hold about you.
  • Right to rectification: Request correction of incomplete or inaccurate information about you.
  • Right to erasure: In certain cases, you may request we delete your personal data.
  • Right to restrict processing: Ask us to suspend the processing of your information.
  • Right to data portability: Request the transfer of your data to another service provider.
  • Right to object: Object to processing based on legitimate interests or for direct marketing.
  • Right to withdraw consent: Where we rely on consent, you may withdraw it at any time.

To exercise your rights or if you have questions regarding our privacy practices, you can contact us through the methods described on our website.

Policy Updates

This Privacy Policy may be amended or updated periodically to reflect changes in our practices or legal requirements. Please review this page for the latest information.

Contact and Complaints

If you have concerns about how we process your data, please contact us through the details provided on our website. If you are not satisfied with our response, you have the right to lodge a complaint with the UK Information Commissioner’s Office or your local supervisory authority.

Summary

Flowers Somers Town is dedicated to handling your personal information securely and in compliance with GDPR. This policy ensures transparency in how we collect, use, and protect your data while delivering quality floral services to Somers Town and its neighbouring districts.