Information We Collect
When you transact an order, you authorise us to “collect data” such as your name, postal address and email address (if relevant); to fulfil your order. By using our services, you agree that you are of the “age of consent”.
Why We Need Your Information and How We Use It
We rely on a number of legal bases to collect and use your information, including:
To sell our “services” or “products”, i.e. using your information to fulfil your order, to settle disputes, or to provide customer services.
If necessary to comply with a legal obligation; court order or in connection with a legal claim, such as retaining information about your order “if required” by tax law.
Information Sharing and Disclosure
Information about our customers is important to our business. We will only share your personal information when required to fulfil your order, when required to do so by law or in limited circumstances, as follows:
“Delivery Services”, “Payment Gateways” or “third party” services you access through us. For example, we share information as necessary to provide you our services and comply with obligations.
Service Providers. We engage with certain trusted third parties to perform functions and provide services, such as “delivery services”. We share your personal information with these third parties, but only to the extent necessary to perform these services.
Compliance with Laws. We may collect, use, retain, and share your information if we have a strong belief that it is reasonably necessary to: (1) respond to legal process or to government requests; (2) enforce our agreements, terms and policies; (3) prevent, investigate, and address fraud and other illegal activity, security, or technical issues; or (4) protect the rights, property, and safety of our customers, or others.
In general, the “third-party” providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the “services they provide to us”.
However, “third-party” service providers have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies, so you can understand the manner in which your personal information will be handled by these providers.
We may disclose your personal information if we are required by law to do so or if you violate our “Terms of Service”.
Transfers of Personal Information outside the EU
We may store and process your information through “third-party” hosting services in the UK, EU and other international jurisdictions. As a result, we may transfer your personal information to a jurisdiction with different data protection and government surveillance laws than your jurisdiction.
If you reside in certain territories, including the EU, you have a number of rights in relation to your personal information. While some of these rights apply generally, certain rights apply only in certain limited cases. We describe these rights below:
Access - You may have the right to access and receive a copy of the personal information we hold about you by contacting us using the contact information below.
Change, restrict, delete -You may also have rights to change, restrict our use of, or delete your personal information. Except in exceptional circumstances (i.e. where we are required to store data for legal reasons) we will generally delete your personal information upon request.
Object - You can object to (1) our processing of some of your information based on our legitimate interests and (2) receiving marketing messages from us after providing your express consent to receive them. In such cases, we will delete your personal information unless we have compelling and legitimate grounds to continue using that information or if it is needed for legal reasons.
Complain - If you reside in the EU and wish to raise a concern about our use of your information (and without prejudice to any other rights you may have), you have the right to do so with your local data protection authority.
How to Contact Me
For purposes of EU data protection law, I, Steven Marriott, am the data controller of your personal information. If you have any questions or concerns, you may contact me at firstname.lastname@example.org.
If our business is “acquired” or “merged” with another company, your information may be transferred to the new owners so that we may continue to sell services and products to you.