Privacy Policy – Flower Delivery Reigate Customers

Introduction

At Flower Delivery Reigate, we are dedicated to protecting your privacy and handling your personal data transparently and securely. This Privacy Policy describes how we collect, use, and protect the personal data of all customers who place flower delivery orders with Flower Delivery Reigate in Reigate and the surrounding districts. We are committed to compliance with the UK General Data Protection Regulation (GDPR). Please read this policy carefully to understand your rights and our practices regarding your information.

What Data We Collect

In the course of providing our flower delivery services, we collect and process the following categories of personal data:

  • Identity and Contact Information: This includes your name, delivery address, billing address, telephone number, and any other information you provide when placing an order.
  • Order Information: Details of the floral arrangements or products you order, delivery instructions, gift messages, and payment preferences.
  • Payment Data: Payment card details or payment confirmation information (processed securely and not stored by us if handled by external processors).
  • Communications: Correspondence via our website forms, or post-order communications related to order fulfilment and customer support.
  • Technical Data: IP addresses, browser type and version, time zone, browser plug-in types, and information about how you use our website (collected through cookies or similar technologies with your consent).

Lawful Basis for Processing Personal Data

Our collection and use of your personal data is based on the following lawful bases under GDPR:

  • Contractual Necessity: Most data we collect is necessary to fulfil the flower delivery service you have requested, such as processing your order, arranging delivery, and managing payments.
  • Legitimate Interests: We may process data for our legitimate business interests, such as improving our services, preventing fraud, or ensuring network and information security, provided that your interests and fundamental rights do not override these interests.
  • Legal Obligation: In some cases, we may be required to process your data to comply with UK laws or regulations, such as record keeping for tax purposes.
  • Consent: Where we process technical or marketing data (such as tracking cookies), we do so based on your explicit consent, which can be withdrawn at any time.

How We Use Your Information

We use your information for the purposes described below:

  • Processing and delivering flower orders, including confirming your order and providing delivery updates.
  • Handling payments and refunds.
  • Responding to your enquiries, requests, or feedback regarding our services.
  • Improving our website and services, including internal analytics and customer satisfaction measures.
  • Complying with legal or regulatory obligations as required.
  • Sending you information about your orders and, only with your consent, updates or promotions about Flower Delivery Reigate.

Data Retention

Your personal data will only be retained for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. We apply the following general retention periods:

  • Order Data: Retained for up to 6 years in line with statutory record-keeping obligations.
  • Communications: Stored as long as required to resolve your enquiry or provide customer support, after which it is deleted or anonymized.
  • Marketing Data: Retained until you withdraw your consent or unsubscribe.
  • Technical Data: Retained in accordance with our cookie policy, generally no longer than 2 years.

At the end of the retention period, your data will be securely deleted or anonymized so it can no longer be associated with you.

Processors and Data Sharing

We only share your personal data with third parties where strictly necessary for our business. These may include:

  • Payment service providers for secure processing of payments. We do not store your full payment card information.
  • IT and system administration providers for hosting our website and maintaining our digital infrastructure.
  • Delivery partners or courier services, only as needed to fulfill flower deliveries.
  • Legal and regulatory authorities if required by law.

All third-party service providers act only on our instructions and are required to respect the confidentiality and security of your data, as outlined in their contracts with us. We do not sell or rent your personal data to any other organisations.

Your Rights Under GDPR

You have wide-ranging rights concerning your personal data, including:

  • Right of Access: You are entitled to request access to the personal data we hold about you.
  • Right to Rectification: You can ask us to correct inaccurate or incomplete data.
  • Right to Erasure ('Right to be Forgotten'): You may request that your personal information is deleted where there is no compelling reason for us to retain it.
  • Right to Restrict Processing: You have the right to ask us to suspend the processing of your personal data in certain circumstances.
  • Right to Data Portability: You may request a copy of your data in a commonly used electronic form, or request us to transfer it to another provider.
  • Right to Object: You may object to processing where we are relying on our legitimate interests or for marketing purposes.
  • Right to Withdraw Consent: Where you have provided consent to processing, you may withdraw this at any time without affecting the lawfulness of processing before withdrawal.

To exercise any of your rights, please contact us through our usual communication channels. We may need to verify your identity before processing your request. We will respond to all legitimate requests in accordance with applicable data protection laws.

Data Security

We are committed to ensuring your data is safe. We employ up-to-date security measures including encryption, secure server technology, restricted access controls, and regular staff training to protect your personal data against loss, unauthorized access, or misuse.

International Transfers

Your personal data is held within the United Kingdom. Should any future transfers outside the UK or EEA become necessary, we will ensure that appropriate safeguards are in place to comply with all applicable data protection laws.

Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes to our practices or for other operational, legal, or regulatory reasons. We encourage you to review this page periodically to stay informed about how we protect your personal information.

Contact and Questions

If you have any questions about this Privacy Policy or how your information is handled, please get in touch with Flower Delivery Reigate through our usual communication methods. We value your privacy and will address your concerns promptly and thoroughly.