Privacy Practices for Flowers Millwall Customers

Introduction

This Privacy Policy explains how Flowers Millwall collects, uses, stores, and safeguards your personal data while complying with the General Data Protection Regulation (GDPR) and applicable UK data protection laws. This policy is relevant to all customers placing orders with Flowers Millwall in Millwall and the surrounding districts. We are dedicated to maintaining your privacy and protecting your data rights when you use our services.

Scope of This Privacy Policy

Flowers Millwall’s Privacy Policy applies to all personal data collected from customers in relation to orders placed within Millwall and the neighboring areas. By engaging with our services, you agree to the collection and processing of your data as outlined here.

What Data We Collect

We collect the following types of personal data when you place an order with Flowers Millwall:

  • Identity Data: Your full name and, if required, details of the recipient.
  • Contact Data: Delivery address, billing address, telephone number, and occasionally other contact information necessary for order fulfillment.
  • Order Data: Details about the specific products you order, order history, preferences, and instructions related to your order.
  • Payment Data: Payment confirmation details (however, we do not store full payment card numbers or security codes; these are processed securely via third-party payment processors).
  • Technical Data: When you order via our website, we may collect your device and browser type, anonymized IP address, and cookie identifiers, used for security and site functionality.
  • Correspondence Data: Records of queries and communications related to your order, such as feedback or complaints.

Lawful Basis for Processing Personal Data

Flowers Millwall processes your personal data on the following lawful bases in accordance with GDPR:

  • Contractual necessity: Most data is processed to fulfill and deliver your flower order, communicate with you, and manage payment.
  • Legal obligation: We retain certain data as required by tax and accounting laws, and to comply with other legal requirements.
  • Legitimate interests: Where necessary, we may process your data to improve our services, maintain security, carry out fraud prevention, or keep you updated on your order status, so long as these interests do not override your fundamental rights.
  • Consent: For optional direct marketing communications, we rely on your explicit consent, which can be withdrawn at any time.

How We Use Your Data

We use your data exclusively for purposes compatible with those stated above, including:

  • Processing and delivering your orders
  • Communicating with you about your order status and delivery
  • Handling customer queries, complaints, or support requests
  • Complying with legal, regulatory, and accounting obligations
  • Improving our website and customer service processes
  • Sending marketing material, only where consent has been obtained

How Long We Retain Your Data

Your personal data will not be retained longer than necessary for the purposes explained here. Specifically:

  • Order Data: Kept for up to 6 years to comply with legal, accounting, and tax obligations, as well as for potential dispute resolution.
  • Marketing Data: Retained only until you withdraw your consent or unsubscribe from communications.
  • Technical and Analytical Data: Typically anonymized and retained for improving our services and security for a maximum of 12 months.

Once retention periods lapse, data is securely deleted or anonymized.

Processors & Data Security

Flowers Millwall may use trusted data processors to facilitate order processing, payment, and delivery. These include:

  • Payment Service Providers: Handle payments securely; we do not receive or store your full payment card details.
  • IT and Web Service Providers: Enable the functioning, hosting, and security of our website and systems.
  • Delivery Partners: Provided only with necessary contact and order details to fulfill flower deliveries.

All data processors are contractually bound to adhere to GDPR standards, only process data according to our instructions, and implement strong data protection measures.

Your Data Protection Rights

As a customer of Flowers Millwall, you have the following rights under GDPR:

  • Right to access: Request details or copies of your personal data processed by us.
  • Right to rectification: Request correction of inaccurate or incomplete data.
  • Right to erasure: Request deletion of your data when there is no legal basis for us to retain it.
  • Right to restrict processing: Ask us to cease processing your data in certain circumstances.
  • Right to object: Object to processing based on legitimate interests or direct marketing at any time.
  • Right to data portability: Obtain your data in a portable format to transfer to another provider, where technically feasible.
  • Right to withdraw consent: Withdraw consent at any time, where we rely on it for processing.

We respond to data rights requests within one month. Note that certain requests may be limited by statutory or legal retention requirements.

Children's Privacy

Flowers Millwall does not knowingly collect or process personal data from children under the age of 16. If we become aware that we have collected information from a minor without appropriate consent, we will delete it promptly.

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our services or legal obligations. The latest version will always be available before you place an order and will include the effective date.

Contacting Us About Your Data

If you have concerns, questions, or wish to exercise your data rights, you may contact us using the details provided on our website. We will handle all requests in accordance with GDPR and applicable UK privacy laws.