Last updated 11 April 2018
Here at Rose and Ammi Flowers we take your privacy seriously and will only use your personal information to provide the products and services you have requested from us. This policy is compliant with General Data Protection Regulation (GDPR), Europe's framework for data protection laws – it replaces the previous 1995 data protection directive. GDPR gives you rights to access the information we hold about you and makes sure we meet our obligations for data management.
What this policy means for our customers
Storing your data
We only use your data to provide you with products and services you've asked us for. If you order from our online shop, our third party partner Shopify will also have your data relating to your order. They are GDPR compliant to the best of our knowledge. For more information on how they use your data please refer to their website.
If you place an order with us over the phone or on our website, we'll have a written or printed record which we will keep for three months to allow us to deal with any queries you may have. This will then be shredded and carefully disposed of.
If you place an order by emailing us, any data contained in the email will be held in a password protected account and not used in any other way. Emails will be deleted as appropriate and we won't use your email address for out bound marketing activity, unless you have opted into our mailing list.
The data we hold
We only hold the data you give us to allow us to provide you with the goods and services you've asked us for. This includes your:
Name and phone number of recipient of goods and services
We don't capture any billing data, such as payment card details. Our payments are processed via Payatrader and PayPal; both organisations are GDPR compliant to the best of our knowledge. For more information on how they use your data please refer to their websites.
Your right to access your data
If you ask us for a copy of your data we will give this to you within a month. You also have the following rights:
the right to be informed;
the right of access;
the right to rectification;
the right to erasure;
the right to restrict processing;
the right to data portability;
the right to object; and
the right not to be subject to automated decision-making including
Our mailing list
We will only send you emails relating to the specific products or services you have ordered from us, unless you have opted into our mailing list either on our website, social media or when placing an order on shop via shopify.
If you have opted in we won't share your data with any third parties and promise not to bombard you with emails. You can expect around one email a month containing relevant info on what's happening here at Rose and Ammi, such as new products, top plant care tips or upcoming workshops.
What this policy means for our job applicants
If you share your CV with us or apply for a role here at Rose and Ammi, we will hold your details on file for a maximum of six months and only use this information for the purpose of assessing your suitability for the role.
What we will do if we think our data has been breached
If we think that our data has been breached we will follow the Information Commissioner's Office's (ICO) guidance. We will notify them of any breach where it is likely to result in a risk to the rights and freedoms of individuals – if, for example, it could result in discrimination, damage to reputation, financial loss, loss of confidentiality or any other significant economic or social disadvantage. Where a breach is likely to result in a high risk to the rights and freedoms of individuals, we will also notify those concerned directly in most cases.
What are cookies?
Cookies can expire at the end of a browser session (from when a user opens the browser window to when they exit the browser), or they can be stored for longer.
First and third party cookies
Whether a cookie is ‘first’ or ‘third’ party refers to the website or domain placing the cookie. First party cookies in basic terms are cookies set by a website visited by the user - the website displayed in the URL window. Third party cookies are cookies that are set by a domain other than the one being visited by the user. If a user visits a website and a separate company sets a cookie through that website this would be a third party cookie.
Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org.
You can prevent the setting of cookies by adjusting the settings on your browser (see your browser Help for how to do this). Be aware that disabling cookies will affect the functionality of this site and many other websites that you visit. Disabling cookies will also usually result in disabling certain functionality and features of this site. Therefore it is recommended that you do not disable cookies.
First Party Cookies
Third Party Cookies
This site uses Google Analytics which is one of the most widespread and trusted analytics solution on the web for helping us to understand how you use the site and ways that we can improve your experience. These cookies may track things such as how long you spend on the site and the pages that you visit so we can continue to produce engaging content. For more information on Google Analytics cookies, see the official Google Analytics page.
Other third party analytics software may be used to track and measure usage of this site so that we can continue to produce engaging content. These cookies may track things such as how long you spend on the site or pages you visit which helps us to understand how we can improve the site for you.
From time to time our website providers may test new features and make subtle changes to the way that the site is delivered. When new features are tested, cookies may be used to ensure that you receive a consistent experience whilst on the site. It will also ensure that we understand which optimisations our users appreciate the most.
As we sell a service it's important for us to understand statistics about how many of the visitors to our site actually sign up online, and as such this is the kind of data that cookies will track. This is important to you as it means that we can accurately make business predictions that allow us to monitor our advertising and product costs to ensure the best possible price.
Hopefully that has clarified things for you and as was previously mentioned if there is something that you aren't sure whether you need or not it's usually safer to leave cookies enabled in case it does interact with one of the features you use on our site. However if you are still looking for more information then you can contact our data controller at the address at the end of this document.
Under GDPR 'data controller' means a person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are, or are to be processed. Our data controller is:
Rose and Ammi Flowers
2 Gillespie Crescent
Please contact her if you have any questions about this policy and what it means for you.