Customer Privacy Policy for Flowers Mayfair Orders

Introduction

At Flowers Mayfair, we are committed to protecting the privacy and personal information of our customers. This Privacy Policy outlines how we collect, use, store, and protect your personal data when you place an order with us from Mayfair and the surrounding districts. The policy has been prepared in accordance with the General Data Protection Regulation (GDPR) and related legal standards, ensuring your personal information is treated with the utmost care and respect.

Scope of This Privacy Policy

This policy applies to all individuals who place orders with Flowers Mayfair, whether through our website, by telephone, or in person, for delivery to addresses in Mayfair and the surrounding districts. It covers how we manage your information throughout the order process and after your transaction is complete.

Personal Data We Collect

When you place an order with Flowers Mayfair, we may collect and process the following types of personal data:

  • Contact Information: Name, delivery address, billing address, telephone number, and email address.
  • Order Details: Purchased items, delivery instructions, recipient’s name and address (if different from the customer).
  • Payment Information: Payment method, partial card details (the full card number is never stored by us), and transaction reference numbers via our secure payment processor.
  • Communication Data: Any correspondence sent to or received from Flowers Mayfair, including queries, feedback, or customer service communications.
  • Technical Data: IP address, device type, browser type, and browsing patterns if you place your order via our website.

Lawful Basis for Processing Personal Data

Our collection and use of your personal data is governed by one or more of the following lawful bases under GDPR:

  • Contract: The processing of your personal data is necessary for us to fulfill your order and provide the services you request.
  • Legal Obligation: We may process your data to comply with our legal and tax obligations.
  • Legitimate Interests: We may process your data to enhance our services, handle queries, prevent fraud, and improve customer experience, provided these interests do not override your fundamental rights.
  • Consent: Where none of the above bases apply, particularly regarding marketing communications, we will only process your data with your explicit consent, which can be withdrawn at any time.

How We Use Your Personal Data

Flowers Mayfair uses your information for purposes including:

  • Processing and fulfilling your orders
  • Communicating with you regarding your order status or questions
  • Delivering goods to specified recipients
  • Handling queries, complaints, and service feedback
  • Meeting our regulatory and legal obligations
  • Improving our website and service offerings
  • Sending direct marketing communications where permitted by law and only if you have opted in

Data Retention

We retain your personal data only for as long as it is necessary for the purposes set out in this policy. Typically, order information and related data will be retained for up to seven years to comply with tax and accounting regulations. After this period, your data will be securely deleted or anonymised unless we are required by law to retain it for a longer period. Where data is processed based on your consent (such as for marketing), we will retain it only until you withdraw your consent.

Data Processors and Third Parties

To deliver our services efficiently, we may engage reputable third-party service providers (data processors). These may include:

  • Payment processors: Securely handling transaction payments on our behalf.
  • IT and hosting providers: Supporting our website and data infrastructure.
  • Delivery partners: Assisting in the delivery of orders.
  • Professional advisers: Such as accountants and legal advisers for compliance purposes.

We ensure that all third-party processors adhere to the same standards of data protection as those outlined in this policy. They are authorised to use your data only as necessary to provide the relevant services to us and are not permitted to use your data for unrelated purposes.

Your Rights Under GDPR

Under the General Data Protection Regulation, you have crucial rights regarding the personal data we hold about you:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can have inaccurate or incomplete data corrected.
  • Right to Erasure: You can request deletion of your personal data, subject to any legal holds.
  • Right to Restrict Processing: You may ask us to pause certain processing of your data.
  • Right to Data Portability: You can request a copy of your data in a commonly used format that can be transferred to another provider.
  • Right to Object: You may object to certain types of processing, including direct marketing.
  • Right to Withdraw Consent: Where we rely on your consent, you may withdraw it at any time without affecting the lawfulness of processing based on consent before its withdrawal.

If you wish to exercise any of your rights, please contact us using the details at the end of this policy or by speaking directly to our team when placing an order.

Security of Your Personal Data

We take data security seriously and implement both technical and organisational measures to safeguard your personal data against loss, misuse, unauthorised access, disclosure, alteration, or destruction. This includes secure networks, restricted access to personal data, encryption of sensitive information, regular security reviews, and staff training on data protection.

International Data Transfers

Your personal data is generally stored and processed within the UK or the European Economic Area (EEA). Where we engage processors or providers outside the EEA, we ensure appropriate safeguards are in place to protect your information in line with GDPR requirements.

Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or in regulatory requirements. The date of the most recent revision will be shown at the bottom of the policy. We encourage you to review this policy from time to time for updates.

Contacting Flowers Mayfair

If you have any questions or concerns regarding this Privacy Policy or wish to exercise your rights, please contact our customer service team. We are committed to promptly addressing your concerns and upholding your privacy rights in accordance with applicable law.

Last updated: June 2024