Privacy Policy for Flower Delivery Marylebone Customers

Introduction

This Privacy Policy outlines how Flower Delivery Marylebone collects, processes, stores, and protects your personal data when you place an order with us. The policy covers customers ordering flower delivery services from Marylebone and nearby districts, ensuring transparency and compliance with the General Data Protection Regulation (GDPR).

What Personal Data We Collect

When you interact with Flower Delivery Marylebone, we may collect and process the following categories of personal data:

• Identity Data: Such as your full name and, in some instances, the recipient’s name.
• Contact Data: Including billing and delivery addresses, telephone number, and instructions for delivery.
• Transactional Data: Information related to your order history, payment method (no payment card details are stored by us beyond those strictly necessary for the transaction), and purchase details.
• Technical Data: IP address, browser type, device identifiers, and information collected via cookies to support website functionality.
• Communication Data: Any correspondence you have with us regarding your order or customer service enquiries.

Lawful Basis for Processing Personal Data

The GDPR requires us to have a valid lawful basis to process your personal data. Flower Delivery Marylebone relies on the following lawful bases:

• Performance of a Contract: We process personal data necessary to fulfil your flower delivery order, including delivery and customer support.
• Legal Obligation: We may process data where required to comply with legal and regulatory requirements, such as record-keeping for accounting or tax purposes.
• Legitimate Interests: For purposes such as improving our services, handling customer queries, or managing and expanding our business, provided these interests are not overridden by your rights or interests.
• Consent: For direct marketing communications, we will only use your data with your explicit consent, and you can withdraw this at any time.

Retention of Your Personal Data

We will retain your personal data only for as long as is necessary for the purposes we collected it, including for satisfying any legal, accounting, or reporting requirements. Typically, order-related information is kept for a period of up to six years in compliance with statutory financial regulations. After this period, data is securely deleted or anonymised.

Sharing and Processors

To fulfill your order and operate our services, we may share your data with trusted third-party service providers who act as data processors. These may include:

• Payment gateways: To securely process financial transactions.
• Delivery partners: So we can deliver your flowers to the chosen address.
• IT service providers: Supporting our website and technical infrastructure.
• Professional advisers: Including lawyers, accountants, and insurance providers, where necessary.

Our processors are contractually obliged to handle your data strictly as instructed, and to uphold security standards according to GDPR. We do not sell or rent your personal information to third parties.

Data Security

We use technical and organisational measures appropriate to the sensitivity of your personal data to protect it from loss, misuse, unauthorised access, disclosure, alteration, or destruction. This includes encrypted data transfers, secure access controls, and regular staff training on data protection.

Your Rights as a Data Subject

Under data protection laws, you have several rights in relation to your personal data processed by Flower Delivery Marylebone:

• Right of Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request correction of any incomplete or inaccurate data.
• Right to Erasure: Ask us to delete or remove your personal data where there is no valid reason for us continuing to process it.
• Right to Restrict Processing: Ask us to suspend the processing of your personal data in certain circumstances.
• Right to Data Portability: Request the transfer of your personal data to you or a third party in a structured, commonly used, and machine-readable format.
• Right to Object: Object to us processing your personal data where we are relying on a legitimate interest or sending marketing communications by email or text.
• Right to Withdraw Consent: Where your consent is required, you may withdraw this at any time.

We will respond to all requests within the timeframes set by law and may require verification of your identity before assisting with your enquiry.

International Data Transfers

Flower Delivery Marylebone aims to store and process your personal data within the European Economic Area (EEA). Should it become necessary to transfer your data outside the EEA, we will ensure relevant safeguards are in place to maintain the same standard of protection required by the GDPR.

Cookies and Website Usage

To improve website functionality and user experience, Flower Delivery Marylebone uses cookies and other trackers. Cookies record certain technical details about your visit, such as your device type and browsing activity. You can adjust your browser’s settings to refuse or manage cookies, though this may affect some functionalities of the website.

Policy Updates

We may update this Privacy Policy from time to time to reflect legal changes or improvements to our practices. When we do, we will revise the issue date at the top of the policy. We encourage customers to periodically review this page to stay informed about how we protect your information.

Contacting Us

If you have any questions regarding this Privacy Policy or how your personal data is handled, please contact us using the communication methods featured on our website. We are committed to working with you to resolve any concerns promptly and transparently.