Camden Flowers Privacy Policy and Your Personal Data

Introduction

At Camden Flowers, we are committed to protecting the privacy and personal data of our customers. This Privacy Policy explains how and why we collect, store, use, and share your personal information when you place orders with us from Camden and the surrounding districts. By using our services, you acknowledge and agree to the terms of this policy, which is designed to comply with the requirements of the General Data Protection Regulation (GDPR).

Who This Policy Applies To

This Privacy Policy applies to all individuals who place flower orders with Camden Flowers and who reside in or place orders for delivery to Camden and surrounding districts. It covers all data processing activities related to order handling, customer communication, and marketing within this region.

Personal Data We Collect

When you use Camden Flowers, we may collect and process the following categories of personal data:

  • Contact Information: This includes your name, delivery address, billing address, and other details required to process your order.
  • Order Details: Details about the products you order, delivery instructions, and messages included with your flowers.
  • Communication Data: Records of your correspondence with us, such as emails or contact forms submitted via our website.
  • Payment Information: Details necessary to process your payment. Please note, we do not store your full payment card details; payment information is processed securely by our third-party payment processor.
  • Usage Data: Information on how you use our website and services, such as IP address, browser type, and pages visited. This is typically collected via cookies and analytics tools to improve our services.

Lawful Basis for Processing

We process your personal data on the following lawful bases as defined under the GDPR:

  • Contractual Necessity: Processing is necessary to fulfill our contract with you when you place an order, including processing payment and arranging delivery.
  • Legal Obligation: Processing may be required in order to comply with the law, such as maintaining proper records for tax and accounting purposes.
  • Legitimate Interests: We may process data for our legitimate interests, such as improving our products and services, preventing fraud, and maintaining the security of our systems. We ensure that your rights and interests do not override ours in these cases.
  • Consent: Where we rely on your consent — for example, for sending you marketing emails — you have the right to withdraw your consent at any time.

How We Use Your Data

Your personal information is used for the following purposes:

  • To process and deliver your orders, including providing updates on order status and delivery schedules.
  • To communicate with you regarding your order or to resolve any customer service issues.
  • To respond to your queries, feedback, or complaints.
  • To maintain business records and comply with applicable legal requirements.
  • To send you promotional materials about our products and services, only if you have provided your consent.
  • To analyze website usage and enhance our website and services.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes described in this policy. Typically, order and transaction data will be retained for up to seven years in accordance with tax and accounting obligations. Customer communications and other non-essential data will be retained for no longer than is necessary for the purposes for which it was collected. Once your data is no longer required, we will securely delete or anonymize it.

Data Processors and Sharing Information

To provide our services, Camden Flowers may share your personal data with trusted third parties acting as data processors. These include:

  • Payment processing companies for handling secure transactions.
  • Delivery partners for fulfilling your orders.
  • IT and website hosting providers to ensure the functionality and security of our digital platforms.
  • Marketing partners engaged to distribute marketing communications, only with your explicit consent.

We carefully select and monitor all processors to ensure they handle your personal data securely and in accordance with GDPR obligations. We do not sell your personal data to any third parties.

Your Data Protection Rights

Under the GDPR, you have the following rights regarding the personal data we hold about you:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can ask us to correct any data that is incomplete or inaccurate.
  • Right to Erasure: Under certain circumstances, you can ask us to delete your personal data.
  • Right to Restrict Processing: You can request that we restrict the processing of your personal data in certain situations.
  • Right to Data Portability: You may request your data to be transferred to you or another organization.
  • Right to Object: You have the right to object to certain processing activities, including direct marketing.
  • Right to Withdraw Consent: If processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing prior to withdrawal.

To exercise any of your rights, please contact us through the available communication methods on our website. We will respond to your request within one month, as required by GDPR.

Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect or process personal data from children.

International Transfers

Your personal data is held securely within the United Kingdom or European Economic Area. If it is ever necessary to transfer your data outside of this area, we will ensure that appropriate safeguards are in place to protect your information.

Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes to our practices or to comply with legal requirements. The latest version will always be available on our website, and we recommend reviewing it periodically.

Contact and Complaints

If you have any questions or concerns about how we process your personal data, or if you wish to make a complaint, please use the methods of communication provided on our website. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection.

Thank you for trusting Camden Flowers with your personal information. We are dedicated to ensuring your data is handled safely and respectfully.