Privacy Policy for Florist Woodford Customers

Introduction

This Privacy Policy outlines how Florist Woodford collects, processes, and protects your personal information. It applies to all customers placing orders from Woodford and the surrounding districts. Florist Woodford is committed to safeguarding your privacy and ensuring your data is handled in accordance with the General Data Protection Regulation (GDPR).

Information We Collect

When you place an order with Florist Woodford, we collect and process the following categories of personal data:

  • Identification Data: Name, contact details (such as address, phone number), and sometimes personal notes for recipients if provided.
  • Order Details: Products or services ordered, delivery instructions, and any preferences you specify.
  • Payment Information: Payment method and transaction details. Payment card details are processed by our secure payment processors and are not stored by Florist Woodford.
  • Usage Data: Information about how you use our website, including IP addresses, cookies, and browsing activity for site analytics and security.

Lawful Basis for Processing

Our processing of your personal data is based on the lawful grounds permitted under GDPR:

  • Contractual Necessity: Processing your data is necessary for fulfilling your order, delivering our products and services, and managing transactions.
  • Legitimate Interests: We may process data to improve our services, ensure website security, and communicate essential information regarding your order.
  • Legal Obligations: Data may be processed to comply with applicable legal and regulatory requirements.
  • Consent: Where we require your consent (e.g., for marketing activities), we will always ask you separately and allow you to withdraw that consent at any time.

How We Use Your Data

We use your data for various purposes, including:

  • Processing and fulfilling your orders and deliveries
  • Communicating with you about your orders or inquiries
  • Improving our website, products, and services
  • Maintaining internal records for accounting and compliance
  • Responding to requests, questions, or feedback
  • Sending limited service-related notifications

Data Retention

Florist Woodford retains personal data only for as long as necessary to fulfill the explicit purpose for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. Typically, order-related personal data is retained for up to seven years, complying with tax and financial regulations. Analytical data regarding website usage may be retained in anonymized form for website improvement purposes. After the retention period, your information is securely deleted or anonymized.

Processors and Data Sharing

We may use third-party service providers (“processors”) to facilitate certain business functions:

  • Payment Processors: Securely manage payments and transactions on our behalf.
  • IT Service Providers: Host our website and manage related IT infrastructure.
  • Delivery Partners: Assist with order deliveries in Woodford and surrounding districts.

Our processors are carefully selected to ensure they comply with GDPR and provide adequate technical and organizational security. We do not sell or lease your data to third parties. We only share information with trusted processors to the extent necessary for order fulfillment and service delivery. Where legally obliged, we may also share data with law enforcement or regulatory authorities.

International Data Transfers

Florist Woodford endeavors to keep your data within the European Economic Area (EEA). In the rare event that a processor is located outside the EEA, we take steps to ensure your data is protected with appropriate safeguards such as Standard Contractual Clauses approved by the European Commission.

Your Data Protection Rights

Under GDPR, you have several rights concerning your personal data:

  • Right of Access: Request a copy of your personal data held by us.
  • Right to Rectification: Request correction of any incomplete or inaccurate data about you.
  • Right to Erasure ("Right to be Forgotten"): Request erasure of your personal data under certain conditions.
  • Right to Restriction: Request limitation on the processing of your data in specific circumstances.
  • Right to Object: Object to our processing of your personal data based on legitimate interests or for direct marketing.
  • Right to Data Portability: Request the transfer of your data to another organization or directly to you, where technically feasible.
  • Right to Withdraw Consent: Where you have provided consent, you may withdraw it at any time (this does not affect the lawfulness of processing before withdrawal).

To exercise any of these rights, please contact us using our website's contact form or by writing to us at our business premises.

How We Protect Your Data

Florist Woodford implements appropriate security measures aimed at protecting your personal information from accidental loss, unauthorized access, alteration, disclosure, or destruction. These measures include physical safeguards, secure IT systems, employee confidentiality, and regular security reviews.

Policy Updates

We reserve the right to update or change this Privacy Policy at any time. Any updates will be posted on our website with a revised effective date. We encourage you to review this policy periodically to stay informed about how we protect your privacy.

Contact and Complaints

If you have any questions, concerns, or requests regarding this Privacy Policy or your data, you can contact Florist Woodford using our website contact form or by post at our business address. If you are not satisfied with our response, you may lodge a complaint with your local data protection authority.

Applicability

This Privacy Policy applies to all Florist Woodford customers placing orders from Woodford and the surrounding districts. By ordering from us, you acknowledge that you have read and understood this Privacy Policy.