Flower Delivery Hampton Privacy Policy

Introduction

At Flower Delivery Hampton, respecting your privacy and safeguarding your personal data is central to our commitment as a leading flower delivery service for Hampton and the surrounding districts. This Privacy Policy explains what personal information we collect when you place an order with us, the lawful bases for processing your data, how long we retain your information, which third-party processors we use, and your rights under the General Data Protection Regulation (GDPR).

Scope of This Policy

This Privacy Policy applies to all individuals who place orders for flower deliveries through Flower Delivery Hampton, whether online, by telephone, or via in-person ordering, and who are located in Hampton and nearby districts. By using our services, you acknowledge and agree to the practices described in this policy.

What Data We Collect

When placing an order with Flower Delivery Hampton, we may collect and process the following categories of personal data:

  • Contact Information: such as your full name, delivery address, billing address, and contact number.
  • Order Details: including bouquet preferences, messages to recipients, requested delivery dates, and any special instructions.
  • Payment Information: such as card details, payment confirmation, and transaction records. (Note: Card information is processed securely via our payment service provider and is not retained by us.)
  • Communications: including emails, order confirmations, and customer support queries.
  • Website Usage Data: such as IP address, browser type, and cookies, where applicable, to enhance your user experience and for security and analytics.

Lawful Basis for Data Processing

We only process personal data where there is a lawful basis under the GDPR. The main grounds on which we rely are:

  • Contractual necessity: To process and fulfill your flower delivery order, including communication with you about your order’s status.
  • Legal obligation: To comply with applicable laws, such as record-keeping for tax purposes.
  • Legitimate interests: For certain activities that are necessary for our business, such as managing our relationship with you, improving our services, or ensuring the security of transactions, provided your interests are not overridden.
  • Consent: Where required, for example, for direct marketing communications. Where consent is relied upon, you are always free to withdraw it.

Data Retention

We only keep your personal data for as long as necessary to fulfill the purposes for which it was collected. This generally means:

  • Order and transaction data are retained for up to seven years to comply with financial and legal record-keeping obligations.
  • Contact and communication data, used for customer service, are kept for up to three years after your last interaction with us, unless you request deletion sooner (where possible).
  • Cookie and website usage data are retained according to the cookie policy and analytics retention schedules.

Once your data is no longer required, we will securely erase or anonymize it.

Use of Processors and Third Parties

To provide our services efficiently, we may share your information with trusted third-party processors who act on our behalf. These may include:

  • Secure payment processors for handling financial transactions (for example, debit/credit card providers).
  • IT and hosting providers for the secure management of our website and customer database.
  • Delivery and courier companies responsible for facilitating the delivery of your order.
  • Professional advisers for legal and accountancy support.

Every processor is carefully selected and is contractually required to comply with GDPR standards, process your data only as instructed, and maintain robust security measures. No personal data is sold or shared for unrelated third-party marketing.

Your Rights Under GDPR

Under the GDPR, you are entitled to a range of rights regarding your personal data. These include:

  • Right of Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You may ask us to correct any inaccurate or incomplete information.
  • Right to Erasure: You may request that your data be deleted, subject to certain conditions, such as legal record-keeping requirements.
  • Right to Restrict Processing: In some circumstances, you can ask us to restrict how we process your data.
  • Right to Data Portability: You can request your information in a structured, machine-readable format to transfer to another provider, where feasible.
  • Right to Object: You may object to certain types of processing, including direct marketing.
  • Rights related to automated decision-making: Where applicable, you have the right not to be subject to decisions made solely by automated means.

If you wish to exercise any of these rights, please contact us using the details provided on our Contact page. We will respond to your request within one month and may require identity verification for security purposes.

Data Security

We take the security of your personal data seriously. We implement appropriate technical and organisational measures, such as encrypted connections (SSL), access controls, and staff training, to protect your data from unauthorised access, loss, misuse, or disclosure.

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices or regulatory requirements. We encourage you to review this policy periodically. The current version will always reflect the date of issue.

Contact and Concerns

If you have any questions about your personal data, this Privacy Policy, or if you wish to make a complaint about how your data is processed, please contact us using the details provided on our website’s Contact page. You may also lodge a complaint with your local supervisory authority if you are dissatisfied with our response.

Your trust is important to us, and we are always happy to clarify how we use and protect your information.