Florists Battersea Privacy Policy – Customer Data Protection

Introduction

At Florists Battersea, we are committed to safeguarding the privacy and data of all customers placing orders from Battersea and its surrounding districts. This Privacy Policy explains what personal data we collect, on what legal basis, how we use and retain this data, and your rights under the General Data Protection Regulation (GDPR). Please read this policy carefully to understand our views and practices regarding your information.

Scope of this Privacy Policy

This policy applies to all customers who place orders with Florists Battersea, whether online, by phone, or in person, and who are located in Battersea and the surrounding districts. By using our services, you agree to the practices described in this Privacy Policy.

What Personal Data We Collect

Florists Battersea may collect, store, and process the following types of personal data:

  • Identity Data: Your name, title, date of birth (if provided).
  • Contact Data: Address, delivery address, billing address, telephone numbers, and delivery instructions.
  • Order and Transaction Data: Details of your orders, payments, and transaction history.
  • Correspondence Data: Information you provide when you contact us, such as queries, feedback, or complaints.
  • Marketing Preferences: Your choices regarding receiving marketing from us.
  • Technical Data: IP address, browser type, operating system, and usage data if you use our website.

Lawful Basis for Processing Your Data

Florists Battersea processes your personal data based on the following lawful grounds:

  • Contractual Necessity: To fulfill a contract with you, such as processing your order and delivering flowers to your specified address.
  • Legal Obligation: For compliance with legal and regulatory requirements, including tax and accounting regulations.
  • Legitimate Interests: To manage and improve our services, ensure security, prevent fraud, and respond to your enquiries.
  • Consent: For sending direct marketing communications, if you have given explicit consent. You can withdraw this consent at any time.

How We Use Your Personal Data

Your information may be used for the following purposes:

  • To process your flower orders and deliver them as requested.
  • To process payments and issue invoices.
  • To communicate with you regarding your order or any queries.
  • To comply with legal, regulatory, or contractual obligations.
  • To send you updates and promotional offers, where permitted.
  • To analyze sales and usage trends for business planning.
  • To maintain security and prevent improper use of our services.

Data Retention Policy

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy, and to satisfy any legal or accounting requirements. The specific retention periods are:

  • Order Data: Up to 6 years following the completion of your order, to comply with tax and reporting standards.
  • Marketing Data: Until you withdraw your consent or unsubscribe.
  • Correspondence Data: For up to 3 years after your latest interaction with us.

After these periods, your personal data will be securely deleted or anonymised so it can no longer be linked to you.

Data Sharing and Processors

In the course of providing our services, Florists Battersea may share your personal data with carefully selected third-party service providers (processors). These may include:

  • Payment Processors: To securely process your transactions.
  • Delivery Companies: For delivering your floral orders to the provided address.
  • IT and Cloud Service Providers: For hosting and storage of order and customer data.
  • Professional Advisors: Such as accountants or legal consultants when required.

All third-party processors are contractually required to respect the security of your data and to process it in accordance with the law. We do not permit them to use your personal data for their own purposes.

Your Rights Under GDPR

Under the GDPR, you have the following rights regarding your personal data:

  • Right to Access: You can request confirmation of whether we process your personal data and access to that data.
  • Right to Rectification: You can request correction of any inaccurate or incomplete personal data we hold about you.
  • Right to Erasure: You can request deletion of your personal data where there is no legal reason for us to retain it.
  • Right to Restrict Processing: You can limit how we use your personal data under certain circumstances.
  • Right to Data Portability: You can request to receive your personal data in a commonly used format.
  • Right to Object: You can object to processing when it is based on our legitimate interests or for marketing purposes.
  • Right to Withdraw Consent: Where we rely on your consent, you can withdraw it at any time for future processing.

To exercise these rights, please contact us using the contact details provided on our website or in your order confirmation. We will respond to your request in accordance with applicable legal regulations.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Data is only accessible by staff and processors necessary to fulfil our services, and all systems are regularly reviewed for vulnerabilities.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in legal requirements or business practices. We recommend that you regularly review this page to keep informed of how we are protecting your data.

How to Raise a Concern

If you have questions, concerns, or wish to exercise your rights, please contact us via the details provided on our website. You also have the right to lodge a complaint with the relevant data protection supervisory authority if you believe we are not compliant with GDPR.